1<?php 2 3$web = 'index.php'; 4 5if (in_array('phar', stream_get_wrappers()) && class_exists('Phar', 0)) { 6Phar::interceptFileFuncs(); 7set_include_path('phar://' . __FILE__ . PATH_SEPARATOR . get_include_path()); 8Phar::webPhar(null, $web); 9include 'phar://' . __FILE__ . '/' . Extract_Phar::START; 10return; 11} 12 13if (@(isset($_SERVER['REQUEST_URI']) && isset($_SERVER['REQUEST_METHOD']) && ($_SERVER['REQUEST_METHOD'] == 'GET' || $_SERVER['REQUEST_METHOD'] == 'POST'))) { 14Extract_Phar::go(true); 15$mimes = array( 16'phps' => 2, 17'c' => 'text/plain', 18'cc' => 'text/plain', 19'cpp' => 'text/plain', 20'c++' => 'text/plain', 21'dtd' => 'text/plain', 22'h' => 'text/plain', 23'log' => 'text/plain', 24'rng' => 'text/plain', 25'txt' => 'text/plain', 26'xsd' => 'text/plain', 27'php' => 1, 28'inc' => 1, 29'avi' => 'video/avi', 30'bmp' => 'image/bmp', 31'css' => 'text/css', 32'gif' => 'image/gif', 33'htm' => 'text/html', 34'html' => 'text/html', 35'htmls' => 'text/html', 36'ico' => 'image/x-ico', 37'jpe' => 'image/jpeg', 38'jpg' => 'image/jpeg', 39'jpeg' => 'image/jpeg', 40'js' => 'application/x-javascript', 41'midi' => 'audio/midi', 42'mid' => 'audio/midi', 43'mod' => 'audio/mod', 44'mov' => 'movie/quicktime', 45'mp3' => 'audio/mp3', 46'mpg' => 'video/mpeg', 47'mpeg' => 'video/mpeg', 48'pdf' => 'application/pdf', 49'png' => 'image/png', 50'swf' => 'application/shockwave-flash', 51'tif' => 'image/tiff', 52'tiff' => 'image/tiff', 53'wav' => 'audio/wav', 54'xbm' => 'image/xbm', 55'xml' => 'text/xml', 56); 57 58header("Cache-Control: no-cache, must-revalidate"); 59header("Pragma: no-cache"); 60 61$basename = basename(__FILE__); 62if (!strpos($_SERVER['REQUEST_URI'], $basename)) { 63chdir(Extract_Phar::$temp); 64include $web; 65return; 66} 67$pt = substr($_SERVER['REQUEST_URI'], strpos($_SERVER['REQUEST_URI'], $basename) + strlen($basename)); 68if (!$pt || $pt == '/') { 69$pt = $web; 70header('HTTP/1.1 301 Moved Permanently'); 71header('Location: ' . $_SERVER['REQUEST_URI'] . '/' . $pt); 72exit; 73} 74$a = realpath(Extract_Phar::$temp . DIRECTORY_SEPARATOR . $pt); 75if (!$a || strlen(dirname($a)) < strlen(Extract_Phar::$temp)) { 76header('HTTP/1.0 404 Not Found'); 77echo "<html>\n <head>\n <title>File Not Found<title>\n </head>\n <body>\n <h1>404 - File ", $pt, " Not Found</h1>\n </body>\n</html>"; 78exit; 79} 80$b = pathinfo($a); 81if (!isset($b['extension'])) { 82header('Content-Type: text/plain'); 83header('Content-Length: ' . filesize($a)); 84readfile($a); 85exit; 86} 87if (isset($mimes[$b['extension']])) { 88if ($mimes[$b['extension']] === 1) { 89include $a; 90exit; 91} 92if ($mimes[$b['extension']] === 2) { 93highlight_file($a); 94exit; 95} 96header('Content-Type: ' .$mimes[$b['extension']]); 97header('Content-Length: ' . filesize($a)); 98readfile($a); 99exit; 100} 101} 102 103class Extract_Phar 104{ 105static $temp; 106static $origdir; 107const GZ = 0x1000; 108const BZ2 = 0x2000; 109const MASK = 0x3000; 110const START = 'index.php'; 111const LEN = 6685; 112 113static function go($return = false) 114{ 115$fp = fopen(__FILE__, 'rb'); 116fseek($fp, self::LEN); 117$L = unpack('V', $a = (binary)fread($fp, 4)); 118$m = (binary)''; 119 120do { 121$read = 8192; 122if ($L[1] - strlen($m) < 8192) { 123$read = $L[1] - strlen($m); 124} 125$last = (binary)fread($fp, $read); 126$m .= $last; 127} while (strlen($last) && strlen($m) < $L[1]); 128 129if (strlen($m) < $L[1]) { 130die('ERROR: manifest length read was "' . 131strlen($m) .'" should be "' . 132$L[1] . '"'); 133} 134 135$info = self::_unpack($m); 136$f = $info['c']; 137 138if ($f & self::GZ) { 139if (!function_exists('gzinflate')) { 140die('Error: zlib extension is not enabled -' . 141' gzinflate() function needed for zlib-compressed .phars'); 142} 143} 144 145if ($f & self::BZ2) { 146if (!function_exists('bzdecompress')) { 147die('Error: bzip2 extension is not enabled -' . 148' bzdecompress() function needed for bz2-compressed .phars'); 149} 150} 151 152$temp = self::tmpdir(); 153 154if (!$temp || !is_writable($temp)) { 155$sessionpath = session_save_path(); 156if (strpos ($sessionpath, ";") !== false) 157$sessionpath = substr ($sessionpath, strpos ($sessionpath, ";")+1); 158if (!file_exists($sessionpath) || !is_dir($sessionpath)) { 159die('Could not locate temporary directory to extract phar'); 160} 161$temp = $sessionpath; 162} 163 164$temp .= '/pharextract/'.basename(__FILE__, '.phar'); 165self::$temp = $temp; 166self::$origdir = getcwd(); 167@mkdir($temp, 0777, true); 168$temp = realpath($temp); 169 170if (!file_exists($temp . DIRECTORY_SEPARATOR . md5_file(__FILE__))) { 171self::_removeTmpFiles($temp, getcwd()); 172@mkdir($temp, 0777, true); 173@file_put_contents($temp . '/' . md5_file(__FILE__), ''); 174 175foreach ($info['m'] as $path => $file) { 176$a = !file_exists(dirname($temp . '/' . $path)); 177@mkdir(dirname($temp . '/' . $path), 0777, true); 178clearstatcache(); 179 180if ($path[strlen($path) - 1] == '/') { 181@mkdir($temp . '/' . $path, 0777); 182} else { 183file_put_contents($temp . '/' . $path, self::extractFile($path, $file, $fp)); 184@chmod($temp . '/' . $path, 0666); 185} 186} 187} 188 189chdir($temp); 190 191if (!$return) { 192include self::START; 193} 194} 195 196static function tmpdir() 197{ 198if (strpos(PHP_OS, 'WIN') !== false) { 199if ($var = getenv('TMP') ? getenv('TMP') : getenv('TEMP')) { 200return $var; 201} 202if (is_dir('/temp') || mkdir('/temp')) { 203return realpath('/temp'); 204} 205return false; 206} 207if ($var = getenv('TMPDIR')) { 208return $var; 209} 210return realpath('/tmp'); 211} 212 213static function _unpack($m) 214{ 215$info = unpack('V', substr($m, 0, 4)); 216 $l = unpack('V', substr($m, 10, 4)); 217$m = substr($m, 14 + $l[1]); 218$s = unpack('V', substr($m, 0, 4)); 219$o = 0; 220$start = 4 + $s[1]; 221$ret['c'] = 0; 222 223for ($i = 0; $i < $info[1]; $i++) { 224 $len = unpack('V', substr($m, $start, 4)); 225$start += 4; 226 $savepath = substr($m, $start, $len[1]); 227$start += $len[1]; 228 $ret['m'][$savepath] = array_values(unpack('Va/Vb/Vc/Vd/Ve/Vf', substr($m, $start, 24))); 229$ret['m'][$savepath][3] = sprintf('%u', $ret['m'][$savepath][3] 230& 0xffffffff); 231$ret['m'][$savepath][7] = $o; 232$o += $ret['m'][$savepath][2]; 233$start += 24 + $ret['m'][$savepath][5]; 234$ret['c'] |= $ret['m'][$savepath][4] & self::MASK; 235} 236return $ret; 237} 238 239static function extractFile($path, $entry, $fp) 240{ 241$data = ''; 242$c = $entry[2]; 243 244while ($c) { 245if ($c < 8192) { 246$data .= @fread($fp, $c); 247$c = 0; 248} else { 249$c -= 8192; 250$data .= @fread($fp, 8192); 251} 252} 253 254if ($entry[4] & self::GZ) { 255$data = gzinflate($data); 256} elseif ($entry[4] & self::BZ2) { 257$data = bzdecompress($data); 258} 259 260if (strlen($data) != $entry[0]) { 261die("Invalid internal .phar file (size error " . strlen($data) . " != " . 262$stat[7] . ")"); 263} 264 265if ($entry[3] != sprintf("%u", crc32((binary)$data) & 0xffffffff)) { 266die("Invalid internal .phar file (checksum error)"); 267} 268 269return $data; 270} 271 272static function _removeTmpFiles($temp, $origdir) 273{ 274chdir($temp); 275 276foreach (glob('*') as $f) { 277if (file_exists($f)) { 278is_dir($f) ? @rmdir($f) : @unlink($f); 279if (file_exists($f) && is_dir($f)) { 280self::_removeTmpFiles($f, getcwd()); 281} 282} 283} 284 285@rmdir($temp); 286clearstatcache(); 287chdir($origdir); 288} 289} 290 291Extract_Phar::go(); 292__HALT_COMPILER(); ?>ebug54992-ca.pemc��)\c�iʤbug54992.pem ��)\ K� �-----BEGIN CERTIFICATE----- 293MIIGAzCCA+ugAwIBAgIUZ7ZvvfVqSEf1EswMT9LfMIPc/U8wDQYJKoZIhvcNAQEL 294BQAwgZAxCzAJBgNVBAYTAlBUMQ8wDQYDVQQIDAZMaXNib2ExDzANBgNVBAcMBkxp 295c2JvYTEXMBUGA1UECgwOUEhQIEZvdW5kYXRpb24xHjAcBgNVBAMMFVJvb3QgQ0Eg 296Zm9yIFBIUCBUZXN0czEmMCQGCSqGSIb3DQEJARYXaW50ZXJuYWxzQGxpc3RzLnBo 297cC5uZXQwHhcNMTgxMjMxMDg0NDU3WhcNMjAwMjA0MDg0NDU3WjCBkDELMAkGA1UE 298BhMCUFQxDzANBgNVBAgMBkxpc2JvYTEPMA0GA1UEBwwGTGlzYm9hMRcwFQYDVQQK 299DA5QSFAgRm91bmRhdGlvbjEeMBwGA1UEAwwVUm9vdCBDQSBmb3IgUEhQIFRlc3Rz 300MSYwJAYJKoZIhvcNAQkBFhdpbnRlcm5hbHNAbGlzdHMucGhwLm5ldDCCAiIwDQYJ 301KoZIhvcNAQEBBQADggIPADCCAgoCggIBAPVThsunmhda5hbNi+pXD3WF9ijryB9H 302JDnIbPW/vMffWcQgtiRzc+6aCykBygnhnN91NNRpxOsoLCb7OjUMM0TjhSE9DxKD 303aVLRoDcs5VSaddQjq3AwdkU6ek9InUOeDuZ8gatrpWlEyuQPwwnMAfR9NkcTajuF 304hGO0BlqkHg98GckQD0N5x6CrrDJt6RE6hf9gUZSGSWdPTiETBQUN8LTuxo/ybFSN 305hcpVNCF+r3eozATbSU8YvQU52RmPIZWHHmYb7KtMO3TEX4LnLJUOefUK4qk+ZJ0s 306f4JfnY7RhBlZGh2kIyE5jwqz8/KzKtxrutNaupdTFZO8nX09QSgmDCxVWVclrPaG 307q2ZFYpeauTy71pTm8DjF7PwQI/+PUrBdFIX0V6uxqUEG0pvPdb8zenVbaK4Jh39u 308w0V5tH/rbtd7zZX4vl3bmKo1Wk0SQxd83iXitxLiJnWNOsmrJcM/Hx91kE10+/ly 309zgL/w5A9HSA616kfPdNzny0laH1TXVLJsnyyV3DyfnU4O6VI0JG3WjhgRdMkgobn 310GvGJ2ZsZAxds9lBtT2y+gw5BU+jkSilPk3jM9MA7Kmyci93U9xxMuDNzyUzfcnXR 311UIq99dZWeMMy1LT3buZXrAWu1WRgPdQtDKcQHDIQaIkxlWsT8q2q/wIirb6fwxlw 312vXkFp+aEP35BAgMBAAGjUzBRMB0GA1UdDgQWBBR37F1+W1gcCp8bhZaFFi9JKQhu 313tTAfBgNVHSMEGDAWgBR37F1+W1gcCp8bhZaFFi9JKQhutTAPBgNVHRMBAf8EBTAD 314AQH/MA0GCSqGSIb3DQEBCwUAA4ICAQAYHqpISUI/x8UW33i35rYkFYNvXBMQDc8J 315v4G2eqEBNCOVmHg6P//lq1F2jrtAEr/saESN1uS1Q80sUsthlVsceV1z1isdpugG 316kMbfHxLe0QpthnP3PEChQw30TPB22BThuGVkteNSZKTCPGdzjSTPq2kOR6PCBZRd 317r0r/TW3lT/Ng3KgjT6g7E3ZUpAeFEQMlmNYr/eEOL7K+1jzQrbCLmXbs6rmtffr7 318n4p+wMPMPaSRqQoQ86ff9GPzxWuAQGlytVoiS5Xt3jotd/RWlOy0YQ2QSzOQvFUW 3194te5lwdOvOFnJTo43U3DqASqMcaazvIsN41zVlOyOyKEr9oZERju6FU1aZmuZtHQ 320wMCmXVj/Swj67Zp9tG+vVQenbEk314+8c2nenuOIFP1F2C/NG3vMLIpENRGxpmAm 321s5gIT6mXvJ4JCwWYc75zucOr2KVkDmEziJh/pARuOrOAPdc6NjKku8HBC9UI96+x 322Db4hG2SqXUzShkFX/px7vlCADvgO3FDk2aiyW02PFsItob2O6OB98VGsU26hgRO/ 323Czz/jbjWTPHNOt6/fcL0m7XLwlJ+K9gRArY15DeJGumcHEq/Vd/Z8iPQKKdzgF4O 3249XFZvu+VHP82AS5TeiYHCddFJyzktQYcNu5/OBuxzO83d7rpqrLFETTEOL4cN8O7 325LJ7Q89hYAQ== 326-----END CERTIFICATE----- 327-----BEGIN CERTIFICATE----- 328MIID7jCCAdYCFDw0rvm7q8y5HfispK5A2I2+RBqHMA0GCSqGSIb3DQEBCwUAMIGQ 329MQswCQYDVQQGEwJQVDEPMA0GA1UECAwGTGlzYm9hMQ8wDQYDVQQHDAZMaXNib2Ex 330FzAVBgNVBAoMDlBIUCBGb3VuZGF0aW9uMR4wHAYDVQQDDBVSb290IENBIGZvciBQ 331SFAgVGVzdHMxJjAkBgkqhkiG9w0BCQEWF2ludGVybmFsc0BsaXN0cy5waHAubmV0 332MB4XDTE4MTIzMTA4NDY0M1oXDTIwMDIwNDA4NDY0M1owWjEXMBUGA1UEAxMOYnVn 333NTQ5OTIubG9jYWwxCzAJBgNVBAYTAlBUMQ8wDQYDVQQHEwZMaXNib2ExDzANBgNV 334BAgTBkxpc2JvYTEQMA4GA1UEChMHcGhwLm5ldDCBnzANBgkqhkiG9w0BAQEFAAOB 335jQAwgYkCgYEAtUAVQKTgpUPgtFOJ3w3kDJETS45tWeT96kUg1NeYLKW+jNbFhxPo 336PJv7XhfemCaqh2tbq1cdYW906Wp1L+eNQvdTYA2IQG4EQBUlmfyIakOIMsN/RizV 337kF09vlNQwTpaMpqTv7wB8vvwbxb9jbC2ZhQUBEg6PIn18dSstbM9FZ0CAwEAATAN 338BgkqhkiG9w0BAQsFAAOCAgEAKtSMguV5ZQ2KpdZ9MAFa+GiHL0APb58OrvwNK4BF 3396032UZLOWnsBZlo85WGLNnIT/GNzKKr7n9jHeuZcBVOFQLsebahSlfJZs9FPatlI 3409Md1tRzVoTKohjG86HeFhhL+gZQ69SdIcK40wpH1qNv7KyMGA8gnx6rRKbOxZqsx 341pkA/wS7CTqP9/DeOxh/MZPg7N/GZXW1QOz+SE537E9iyiRsbldNYFtwn5iaVfjpr 342xz09wYYW3HJpR+QKPCfJ79JxDhuMHMoUOpIy8vGFnt5zVTcFLa378Sy3vCT1Qwvt 343tTavFGHby4A7OqT6xu+9GTW37OaiV91UelLLV0+MoR4XiMVMX76mvqzmKCp6L9ae 3447RYHrrCtNxkYUKUSkOEc2VHnT+sENkJIZu7zzN7/QNlc0yE9Rtsmgy4QAxo2m9u0 345pUZLAulZ1lS7g/sr7/8Pp17RDvJiJh+oAPyVYZ7OoLF1IoHDHcZI0bqcqhDhiHZs 346PXYqyMCxyYzHFOAOgvbrEkmp8z/E8ATVwdUbAYN1dMrYHre1P4HFEtJh2QiGG2KE 3474jheuNhH1R25AizbwYbD33Kdp7ltCgBlfYqjl771SlgY45QYs0mUdc1Pv39SGIwf 348ZUm7mOWjaTBdYANrkvGM5NNT9kESjKkWykyTg4UF5rHV6nlyexR4b3fjabroi4BS 349v6w= 350-----END CERTIFICATE----- 351-----BEGIN RSA PRIVATE KEY----- 352MIICXgIBAAKBgQC1QBVApOClQ+C0U4nfDeQMkRNLjm1Z5P3qRSDU15gspb6M1sWH 353E+g8m/teF96YJqqHa1urVx1hb3TpanUv541C91NgDYhAbgRAFSWZ/IhqQ4gyw39G 354LNWQXT2+U1DBOloympO/vAHy+/BvFv2NsLZmFBQESDo8ifXx1Ky1sz0VnQIDAQAB 355AoGBALUEnHUkdgv4P7o5WJACAomedqPWSlYmgoVvpvuLmrq0ihuFAGAIvL+TlTgD 356JNfWfiejTDlSVtCSDTR1kzZVztitfXDxRkWEjGtFjMhk/DJkql3w10SUtcqCiWqw 357/XknyPHZ7A+w7Fu5KRO2LoSIze2ZLKvCfP/M/pLR2fTKGTHtAkEA2NreT1GUnvzj 358u1lb2J0nTZbSQHvEkfpEej9akl0Bc5UkskenEsiXE3cJYA1TbEGSqYCmt23x3Rd2 359FYxm6MwV6wJBANX34ZuUOllsS0FJPbkEAps3M4s59daQSFiEkQc5XjPgVB0xVV7s 360OEBlGkM3eqcCUOMnMI8L9wfBk49sELZCeJcCQQC/y/TL2q/EXo9c6I/faj+U1Exp 361VA5rvhpKtTX6NeBOxh6Kv+z5JAja4nGcTqz2FpkM6giKO+erUFDUhjWOuNK5AkEA 362xkmHnCRLxp8jRodXWeQrfigz7ixydLsVMGL5+9XgRPb5PGyBjwwePR70raH2Wls9 363FqU0zPvrnBZ6Zwlgm2cSVQJAPLYA51Z9piajbTuggpioQ5qbUEDkJjmYHbm8eJnK 364h5NW/EtCk4SBxAc+8ElPrvJjtZyOPWfm4vZF5sDKtC3Fkg== 365-----END RSA PRIVATE KEY----- 366ݬ;l�5aOi`u��aB��bRGBMB